Prosím o kontrolu logu, využití procesoru na 100% Vyřešeno

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: memphisto, Mods_senior, Security team

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 39709
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: Prosím o kontrolu logu, využití procesoru na 100%

Příspěvekod jaro3 » 09 črc 2019 23:03

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

zítra pokračujeme.


Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

Reklama
Tomas438
nováček
Příspěvky: 19
Registrován: červen 19
Pohlaví: Muž

Re: Prosím o kontrolu logu, využití procesoru na 100%

Příspěvekod Tomas438 » 15 črc 2019 20:43

ComboFix nechce spolupracovat. Nechal jsem to skenovat asi dvě hodiny a stále tam byla hláška, že to může trvat 10 minut až dvojnásobek. Po spuštění v nouzovém režimu počítače a startu ComboFixu to napsalo, že platnost vypršela a ComboFix zmizel. Ta ikona, co jsem měl na ploše:-) Zmizela komplet i složka v C:, kterou si program vytvořil.
Zjistil jsem, že procesor začne běžet na 100% až když spustím soubor FlatOut.exe. Je to obyčejná hra, bez které se obejdu. Mám to odinstalolovat?

Tomas438
nováček
Příspěvky: 19
Registrován: červen 19
Pohlaví: Muž

Re: Prosím o kontrolu logu, využití procesoru na 100%

Příspěvekod Tomas438 » 15 črc 2019 20:58

Pardon, samozřejmě přeji dobrý večer.

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 39709
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: Prosím o kontrolu logu, využití procesoru na 100%

Příspěvekod jaro3 » 15 črc 2019 21:27

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

Vyčisti systém CCleanerem

Stáhni si OTC

na plochu. Poklepej na něj. Potom klikni na Clean up!.
Restartuj PC , pokud Ti bude doporučeno.

Prosím stáhni příslušnou verzi programu pro Tvůj systém 32-bit/64-bit FarbarRecovery Scan Tool (FrSt)
32bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/81/
64bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/82/
a ulož jej na plochu. ,pak spusť FrSt.
Potvrď způsob užití.
Neměň žádné z výchozích nastavení a klikni na položku „Scan“ („Skenovat“) .Když je skenování dokončeno, ukážou se dva logy = FRST.txt a Addition.txt a uloží se na ploše.Prosím zkopíruj sem celý jejich obsah.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

Tomas438
nováček
Příspěvky: 19
Registrován: červen 19
Pohlaví: Muž

Re: Prosím o kontrolu logu, využití procesoru na 100%

Příspěvekod Tomas438 » 15 črc 2019 22:03

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 15-07-2019 01
Ran by Tomas (administrator) on TOMAS-PC (Gigabyte Technology Co., Ltd. GA-880GM-D2H) (15-07-2019 21:42:33)
Running from C:\Users\Tomas\Desktop
Loaded Profiles: Tomas (Available Profiles: Tomas & mamina)
Platform: Microsoft Windows 7 Professional Service Pack 1 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() [File not signed] C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
(Adobe Systems, Incorporated -> Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc. -> AMD) C:\Windows\System32\atiesrxx.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Browser\Update\1.4.136.333\AvastBrowserCrashHandler.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe
(Canon Inc. -> ) C:\Program Files\Canon\IJPLM\ijplmsvc.exe
(Canon Inc. -> CANON INC.) C:\Program Files\Canon\IJ Scan Utility\SETEVENT.exe
(Canon Inc. -> CANON INC.) C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE
(Canon Inc. -> CANON INC.) C:\Program Files\Canon\Quick Menu\CNQMUPDT.EXE
(Even Balance, Inc. -> ) C:\Windows\System32\PnkBstrA.exe
(GAINWARD TECHNOLOGY INT'L LIMITED -> Gainward Co. Ltd.) C:\Program Files\EXPERTool\TBPanel.exe
(Chinery & Heindoerfer GbR -> pdfforge GbR) C:\Program Files\PDF Architect\ConversionService.exe
(Chinery & Heindoerfer GbR -> pdfforge GbR) C:\Program Files\PDF Architect\HelperService.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Corporation -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation -> Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\VS7DEBUG\MDM.EXE
(Microsoft Windows -> Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\msiexec.exe
(Microsoft Windows Hardware Compatibility Publisher -> Pixart Imaging Inc) C:\Windows\System32\TiltWheelMouse.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(NVIDIA Corporation -> Node.js) C:\Program Files\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Realtek Semiconductor Corp -> Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Safer Networking Ltd. -> Safer Networking Ltd.) C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Samsung Electronics Co., Ltd. -> Samsung Electronics Co. Ltd.) C:\Program Files\Samsung\Samsung Magician\SamsungMagician.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [12111576 2014-12-11] (Realtek Semiconductor Corp -> Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [226184 2019-06-18] (AVAST Software s.r.o. -> AVAST Software)
HKLM\...\Run: [CanonQuickMenu] => C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE [1314432 2016-06-09] (Canon Inc. -> CANON INC.)
HKLM\...\Run: [MouseDriver] => C:\Windows\system32\TiltWheelMouse.exe [241152 2012-12-19] (Microsoft Windows Hardware Compatibility Publisher -> Pixart Imaging Inc)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [645456 2019-04-01] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-220579093-4111955792-2631698323-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3514176 2011-11-10] (DT Soft Ltd -> DT Soft Ltd)
HKU\S-1-5-21-220579093-4111955792-2631698323-1000\...\Run: [TBPanel] => C:\Program Files\EXPERTool\TBPanel.exe [2052400 2018-01-04] (GAINWARD TECHNOLOGY INT'L LIMITED -> Gainward Co. Ltd.)
HKU\S-1-5-21-220579093-4111955792-2631698323-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner.exe [16509040 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-220579093-4111955792-2631698323-1000\...\MountPoints2: {4246243a-1447-11e1-bbf3-1c6f65d600cc} - E:\setup.EXE /AUTORUN
HKU\S-1-5-21-220579093-4111955792-2631698323-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Mystify.scr [221184 2010-11-20] (Microsoft Windows -> Microsoft Corporation)
HKLM\...\Drivers32: [msacm.ac3filter] => C:\Windows\system32\ac3filter.acm [497664 2009-08-11] () [File not signed]
HKLM\...\Drivers32: [VIDC.FFDS] => C:\Windows\system32\ff_vfw.dll [85504 2010-03-03] () [File not signed]
HKLM\...\Drivers32: [vidc.XVID] => C:\Windows\system32\xvidvfw.dll [180224 2009-06-07] () [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2D46B6DC-2207-486B-B523-A557E6D54B47}] -> C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
HKLM\Software\Microsoft\Active Setup\Installed Components: [{30C521FB-255B-46C8-9F0D-EE5AE371C9AA}] -> C:\Program Files\AVAST Software\Browser\Application\75.0.1447.80\Installer\chrmstp.exe [2019-06-28] (AVAST Software s.r.o. -> AVAST Software)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{73FA19D0-2D75-11D2-995D-00C04F98BBC9}] ->
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2019-05-03] (Adobe Inc. -> Adobe Systems, Inc.)
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {07953A11-5E6A-49EC-9C76-16DD509B82B9} - System32\Tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater32.exe [551360 2018-01-04] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {0948DAB1-2B51-4D12-92B6-D530DC67CACF} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [16509040 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {1EEF78C7-F1B9-41F8-BAD4-33007EADF51E} - System32\Tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [466880 2018-01-04] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {1F4541BC-8538-4AF2-B8DA-38D7CE53FA79} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerLogon => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1448512 2019-07-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {1FED3B0B-A843-4422-800C-478D563337F7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {259B2BDD-376C-4BBA-9417-188822784F6F} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [113616 2019-07-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {2B2411A3-8E1F-4E53-9B2E-9B91774F84A7} - System32\Tasks\{16BC5D04-C262-4147-B3D2-B82FC1E37EFD} => "c:\program files\mozilla firefox\firefox.exe" hxxp://ui.skype.com/ui/0/7.27.0.101/cs/ ... Error=1603
Task: {2C98AAC2-FA4A-478A-908B-DAE62C574C02} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [4544064 2019-06-27] (Microsoft Corporation -> Microsoft Corporation)
Task: {311C3C92-D04B-416A-AB8D-87898B4BCC4C} - System32\Tasks\EXPERTool => C:\Program Files\EXPERTool\TBPanel.exe [2052400 2018-01-04] (GAINWARD TECHNOLOGY INT'L LIMITED -> Gainward Co. Ltd.)
Task: {50144255-87C0-4BC3-90AD-367B93041B96} - System32\Tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvTmMon.exe [521152 2018-01-04] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {5210028D-5B1B-4C5B-917D-2BFD0B57E692} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1913648 2019-06-04] (AVAST Software s.r.o. -> AVAST Software)
Task: {526E996E-6177-4E0F-9665-F8A03C294D97} - System32\Tasks\SamsungMagician => C:\Program Files\Samsung\Samsung Magician\SamsungMagician.exe [1138320 2018-01-08] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co. Ltd.)
Task: {58298951-F397-49D7-896C-CA41606FF226} - System32\Tasks\{8B1C2B0E-83A8-486E-8A3C-7104E82FED92} => C:\Windows\system32\pcalua.exe -a "E:\PC loznice\instalačky\nero63125\nero63125.exe" -d "E:\PC loznice\instalačky\nero63125"
Task: {736473E5-45A9-4117-9825-89BC93889E6D} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2394504 2019-06-18] (AVAST Software s.r.o. -> AVAST Software)
Task: {744BD4FA-BFB8-4BC2-9012-36354B0BAB13} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [20166760 2019-06-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {7ACFDFC7-CFD0-440B-B5B8-D99A872EDC42} - System32\Tasks\Microsoft\Office\OfficeBackgroundTaskHandlerRegistration => C:\Program Files\Microsoft Office\root\Office16\officebackgroundtaskhandler.exe [1448512 2019-07-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {838514F4-E6AC-48CA-9421-F9F3C167C771} - System32\Tasks\{F3461006-18A6-4980-8EF4-7FF3C3FAFD85} => "c:\program files\mozilla firefox\firefox.exe" hxxp://ui.skype.com/ui/0/7.27.0.101/cs/ ... rogressBar
Task: {871EA0FB-9121-4B51-BBE8-8FDF0AB95616} - System32\Tasks\{2F29E708-58CB-4363-9DBB-1F052CBD5AD9} => C:\Windows\system32\pcalua.exe -a C:\Users\Tomas\Downloads\Navigon.7.serial.maker\Navigon.7.serial.maker.exe -d C:\Users\Tomas\Downloads\Navigon.7.serial.maker
Task: {8CB2263A-5227-4D75-B594-BF12D90F42EC} - System32\Tasks\AMHelper => C:\Program Files\Zemana\AntiMalware\AntiMalware.exe [657480 2019-06-26] (Zemana D.O.O. Sarajevo -> Zemana Ltd.)
Task: {8D7C0CB3-926B-490A-B191-C6B82C6D7B50} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-07-09] (Adobe Inc. -> Adobe)
Task: {910A8706-CE17-4961-B1A9-A3F69DF31DC0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {94EBA849-8967-42E9-867B-2ED1938AC820} - System32\Tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvTmRep.exe [745920 2018-01-04] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9AEC9720-B260-4ECD-A228-672339C8D559} - System32\Tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NvNode\nvnodejslauncher.exe [964544 2018-01-04] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {9AF5602A-C3F6-431F-A774-2F48D25047F0} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1195544 2018-12-16] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
Task: {9F1BD8C7-A11B-42A4-A819-B796FE64CA9B} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\VFS\ProgramFilesCommonX86\Microsoft Shared\Office16\sdxhelper.exe [113616 2019-07-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {B79070AA-D99D-4979-B21C-66EFE90FF9CB} - System32\Tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvTmRep.exe [745920 2018-01-04] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {B7ABD53A-07C3-4F86-A6FB-A98335076462} - System32\Tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater32.exe [551360 2018-01-04] (NVIDIA Corporation -> NVIDIA Corporation)
Task: {D143B934-7741-4F85-B45B-D131BDD471F9} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [20166760 2019-06-25] (Microsoft Corporation -> Microsoft Corporation)
Task: {D7BB135A-9081-4CF8-9617-EE90A6531503} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1} C:\Program Files\Windows Live\SOXE\wlsoxe.dll [179584 2010-11-10] (Microsoft Corporation -> Microsoft Corporation)
Task: {E4EC30A3-9FA0-4286-82A0-E9FD371F0E79} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {E9560884-9008-47A6-A666-FE8568EC95DD} - System32\Tasks\{AB9CB99B-A523-49F0-B31A-80605EEB5FA1} => "c:\program files\mozilla firefox\firefox.exe" hxxp://ui.skype.com/ui/0/7.27.0.101/cs/ ... Error=1603
Task: {EA95E077-F14A-45B6-80D6-2AE8D612606C} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [619416 2019-04-04] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {F36C7EBA-4D29-4038-AB7E-26072AF6D47F} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [4544064 2019-06-27] (Microsoft Corporation -> Microsoft Corporation)
Task: {FD176116-0083-4A4A-9B09-B8303CB95CA8} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\system32\Macromed\Flash\FlashUtil32_32_0_0_223_Plugin.exe [1457208 2019-07-09] (Adobe Inc. -> Adobe)
Task: {FFD32FB4-5A9E-4375-8B71-DE25A561BD8E} - System32\Tasks\NVIDIA GeForce Experience SelfUpdate_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} => C:\Program Files\NVIDIA Corporation\NVIDIA GeForce Experience\NVIDIA GeForce Experience.exe [1864640 2018-01-04] (NVIDIA Corporation -> NVIDIA Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\..\Interfaces\{A1771C71-A26E-402A-BE43-360DFE8B36AF}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-220579093-4111955792-2631698323-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-220579093-4111955792-2631698323-1000 -> {A7B23918-9EB9-4FB1-B018-C71F3610407E} URL = hxxp://www.google.cz/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}
BHO: Canon Easy-WebPrint EX BHO -> {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} -> C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2016-02-23] (Canon Inc. -> CANON INC.)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_211\bin\ssv.dll [2019-05-02] (Oracle America, Inc. -> Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corporation -> Microsoft Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\Office16\URLREDIR.DLL [2019-06-27] (Microsoft Corporation -> Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_211\bin\jp2ssv.dll [2019-05-02] (Oracle America, Inc. -> Oracle Corporation)
Toolbar: HKLM - Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2016-02-23] (Canon Inc. -> CANON INC.)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\MSITSS.DLL [2000-04-19] (Microsoft Corporation) [File not signed]
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-10] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-10] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-10] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2019-07-10] (Microsoft Corporation -> Microsoft Corporation)

FireFox:
========
FF DefaultProfile: 2bcixo24.default
FF ProfilePath: C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\2bcixo24.default [2019-07-15]
FF Homepage: Mozilla\Firefox\Profiles\2bcixo24.default -> hxxps://www.seznam.cz/
FF NewTab: Mozilla\Firefox\Profiles\2bcixo24.default -> about:newtab
FF Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\2bcixo24.default\Extensions\sp@avast.com.xpi [2019-06-05]
FF Extension: (Avast Online Security) - C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\2bcixo24.default\Extensions\wrc@avast.com.xpi [2019-07-15] [UpdateUrl:hxxps://firefoxext.avcdn.net/firefoxext/avast/aos/update.json]
FF Extension: (No Name) - C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\2bcixo24.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2019-04-30]
FF SearchPlugin: C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\2bcixo24.default\searchplugins\zbocz.xml [2016-02-15]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_32_0_0_223.dll [2019-07-09] (Adobe Inc. -> )
FF Plugin: @adobe.com/ShockwavePlayer -> C:\Windows\system32\Adobe\Director\np32dsw_1224194.dll [2016-02-19] (Adobe Systems, Inc.) [File not signed]
FF Plugin: @canon.com/EPPEX -> C:\Program Files\Canon\My Image Garden\AddOn\CIG\npmigfpi.dll [2015-10-29] (CANON INC.) [File not signed]
FF Plugin: @java.com/DTPlugin,version=11.211.2 -> C:\Program Files\Java\jre1.8.0_211\bin\dtplugin\npDeployJava1.dll [2019-05-02] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.211.2 -> C:\Program Files\Java\jre1.8.0_211\bin\plugin2\npjp2.dll [2019-05-02] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2019-03-12] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @nokia.com/EnablerPlugin -> C:\Program Files\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll [2014-11-19] (Nokia -> )
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2018-03-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2018-03-24] (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed]
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.34.11\npGoogleUpdate3.dll [2019-05-15] (Google Inc -> Google LLC)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2019-05-03] (Adobe Inc. -> Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [217088 2012-11-16] (Advanced Micro Devices, Inc. -> AMD)
S3 AppleChargerSrv; C:\Windows\System32\AppleChargerSrv.exe [31272 2010-04-06] (Giga-Byte Technology -> )
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5584416 2019-06-18] (AVAST Software s.r.o. -> AVAST Software)
S2 avast; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-07] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [359864 2019-06-18] (AVAST Software s.r.o. -> AVAST Software)
S3 avastm; C:\Program Files\AVAST Software\Browser\Update\AvastBrowserUpdate.exe [164984 2018-04-07] (AVAST Software s.r.o. -> AVAST Software)
S3 AvastSecureBrowserElevationService; C:\Program Files\AVAST Software\Browser\Application\75.0.1447.80\elevation_service.exe [978720 2019-06-12] (AVAST Software s.r.o. -> AVAST Software)
R2 CIJSRegister; C:\Program Files\Canon\IJ Scan Utility\SETEVENT.exe [144464 2015-02-19] (Canon Inc. -> CANON INC.)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [7314528 2019-06-25] (Microsoft Corporation -> Microsoft Corporation)
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 IJPLMSVC; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [387144 2016-02-04] (Canon Inc. -> )
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [5247944 2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [466880 2018-01-04] (NVIDIA Corporation -> NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [466880 2018-01-04] (NVIDIA Corporation -> NVIDIA Corporation)
R2 PassThru Service; C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] () [File not signed]
R2 PDF Architect Helper Service; C:\Program Files\PDF Architect\HelperService.exe [1324104 2013-01-09] (Chinery & Heindoerfer GbR -> pdfforge GbR)
R2 PDF Architect Service; C:\Program Files\PDF Architect\ConversionService.exe [795208 2013-01-09] (Chinery & Heindoerfer GbR -> pdfforge GbR)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [75136 2012-10-01] (Even Balance, Inc. -> )
R2 SBSDWSCService; C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe [1153368 2009-01-26] (Safer Networking Ltd. -> Safer Networking Ltd.)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-07-22] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 NVDisplay.ContainerLocalSystem; "C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe" -s NVDisplay.ContainerLocalSystem -f "C:\ProgramData\NVIDIA\NVDisplay.ContainerLocalSystem.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem" -r -p 30000
R2 NvTelemetryContainer; "C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe" -s NvTelemetryContainer -f "C:\ProgramData\NVIDIA\NvTelemetryContainer.log" -l 3 -d "C:\Program Files\NVIDIA Corporation\NvTelemetry\plugins" -r
S2 PEVSystemStart; "C:\ComboFix\pev.3XE" EXEC /i "C:\ComboFix\HIDEC.3XE" "C:\ComboFix\SWREG.3XE" ACL "HKEY_LOCAL_MACHINE\System\CurrentControlSet\Enum\Root\LEGACY_Beep" /RESET /Q

Tomas438
nováček
Příspěvky: 19
Registrován: červen 19
Pohlaví: Muž

Re: Prosím o kontrolu logu, využití procesoru na 100%

Příspěvekod Tomas438 » 15 črc 2019 22:05

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 amdkmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [4194816 2009-07-14] (Microsoft Windows -> ATI Technologies Inc.)
S3 amdkmdap; C:\Windows\System32\DRIVERS\atikmpag.sys [290304 2012-11-16] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.)
R1 amsdk; C:\Windows\system32\drivers\amsdk.sys [208824 2019-07-09] (Zemana D.O.O. Sarajevo -> Copyright 2018.)
R1 AppleCharger; C:\Windows\System32\DRIVERS\AppleCharger.sys [18544 2011-01-10] (Giga-Byte Technology -> )
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [34488 2019-06-18] (AVAST Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [173232 2019-06-18] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [225608 2019-06-18] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [171520 2019-06-18] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [56296 2019-06-18] (AVAST Software s.r.o. -> AVAST Software)
R1 aswHdsKe; C:\Windows\System32\drivers\aswHdsKe.sys [214736 2019-06-18] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [40688 2019-06-18] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [139568 2019-06-20] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [100984 2019-06-18] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [72800 2019-06-18] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [783024 2019-06-18] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [403680 2019-06-18] (AVAST Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [167360 2019-06-18] (AVAST Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [312248 2019-06-18] (AVAST Software s.r.o. -> AVAST Software)
S3 atikmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [4194816 2009-07-14] (Microsoft Windows -> ATI Technologies Inc.)
S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [109456 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [239168 2011-11-21] (DT Soft Ltd -> DT Soft Ltd)
S3 gdrv; C:\Windows\gdrv.sys [17488 2011-10-31] (Giga-Byte Technology -> Windows (R) 2000 DDK provider)
S3 GVTDrv; C:\Windows\system32\Drivers\GVTDrv.sys [24944 2011-10-31] (GIGA-BYTE TECHNOLOGY CO., LTD -> )
R3 hamachi; C:\Windows\System32\DRIVERS\hamachi.sys [25280 2012-02-07] (LogMeIn, Inc. -> LogMeIn, Inc.)
S3 HTCAND32; C:\Windows\System32\Drivers\ANDROIDUSB.sys [25088 2009-10-26] (Microsoft Windows Hardware Compatibility Publisher -> HTC, Corporation)
S3 htcnprot; C:\Windows\System32\DRIVERS\htcnprot.sys [23040 2012-12-07] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [241760 2019-07-15] (Malwarebytes Corporation -> Malwarebytes)
S3 nmwcd; C:\Windows\System32\drivers\ccdcmb.sys [18560 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 nmwcdc; C:\Windows\System32\drivers\ccdcmbo.sys [23168 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 nmwcdnsu; C:\Windows\System32\drivers\nmwcdnsu.sys [137600 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 nmwcdnsuc; C:\Windows\System32\drivers\nmwcdnsuc.sys [8576 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27584 2018-01-04] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad32v.sys [44992 2018-01-04] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvvhci; C:\Windows\System32\DRIVERS\nvvhci.sys [50112 2018-01-04] (NVIDIA Corporation -> NVIDIA Corporation)
S3 pccsmcfd; C:\Windows\System32\DRIVERS\pccsmcfd.sys [19072 2012-10-17] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 RimVSerPort; C:\Windows\System32\DRIVERS\RimSerial.sys [35840 2012-12-10] (Microsoft Windows Hardware Compatibility Publisher -> Research in Motion Ltd)
S3 RTHDMIAzAudService; C:\Windows\System32\drivers\RtHDMIV.sys [204448 2010-05-25] (Realtek Semiconductor Corp -> Realtek Semiconductor Corp.)
S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [147344 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
R3 t_mouse.sys; C:\Windows\System32\DRIVERS\t_mouse.sys [5120 2012-12-19] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 upperdev; C:\Windows\System32\DRIVERS\usbser_lowerflt.sys [8192 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 UsbserFilt; C:\Windows\System32\DRIVERS\usbser_lowerfltj.sys [8192 2013-01-23] (Microsoft Windows Hardware Compatibility Publisher -> Nokia)
S3 wdm_usb; C:\Windows\System32\DRIVERS\usb2ser.sys [128704 2016-08-16] (NGO -> MBB)
S3 amdiox86; system32\DRIVERS\amdiox86.sys [X]
S3 EagleNT; \??\C:\Windows\system32\drivers\EagleNT.sys [X]
S3 RimUsb; System32\Drivers\RimUsb.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One month (created) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-07-15 21:42 - 2019-07-15 21:43 - 000033382 _____ C:\Users\Tomas\Desktop\FRST.txt
2019-07-15 21:42 - 2019-07-15 21:42 - 000000000 ____D C:\FRST
2019-07-15 21:41 - 2019-07-15 21:41 - 001446912 _____ (Farbar) C:\Users\Tomas\Desktop\FRST.exe
2019-07-15 21:40 - 2019-07-15 21:40 - 000241760 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2019-07-15 16:18 - 2019-07-15 16:18 - 000000000 ____D C:\Windows\erdnt
2019-07-09 22:01 - 2019-07-09 22:01 - 000001781 _____ C:\Users\Tomas\Desktop\AdwCleaner[C02] 9.7..txt
2019-07-09 21:55 - 2019-07-15 21:36 - 000000000 ____D C:\Users\Tomas\AppData\Local\CrashDumps
2019-07-09 21:38 - 2019-07-09 21:59 - 000000000 ____D C:\Program Files\Mozilla Firefox
2019-07-09 21:28 - 2019-07-09 21:28 - 000009788 _____ C:\Users\Tomas\Desktop\hijackthis_9.7
2019-07-09 21:20 - 2019-07-15 21:42 - 000041773 _____ C:\Windows\ZAM.krnl.trace
2019-07-09 21:20 - 2019-07-09 21:20 - 000208824 _____ (Copyright 2018.) C:\Windows\system32\Drivers\amsdk.sys
2019-07-09 21:20 - 2019-07-09 21:20 - 000001996 _____ C:\Users\Public\Desktop\Zemana AntiMalware.lnk
2019-07-09 21:20 - 2019-07-09 21:20 - 000000000 ____D C:\Users\Tomas\AppData\Local\Zemana
2019-07-09 21:20 - 2019-07-09 21:20 - 000000000 ____D C:\Users\Tomas\AppData\Local\AMSDK
2019-07-09 21:20 - 2019-07-09 21:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zemana AntiMalware
2019-07-09 21:20 - 2019-07-09 21:20 - 000000000 ____D C:\Program Files\Zemana
2019-07-09 21:19 - 2019-07-09 21:19 - 012567480 _____ (Zemana Ltd. ) C:\Users\Tomas\Desktop\AntiMalware_Setup.exe
2019-07-09 21:11 - 2019-07-09 21:11 - 000021410 _____ C:\Users\Tomas\Desktop\zoek-results.txt
2019-07-09 21:07 - 2019-07-09 21:07 - 000000000 ____D C:\Users\Tomas\AppData\Local\GHISLER
2019-07-09 21:00 - 2014-02-13 23:59 - 000024064 _____ C:\Windows\zoek-delete.exe
2019-07-09 20:36 - 2019-07-09 20:53 - 000000000 ____D C:\zoek_backup
2019-07-09 19:56 - 2019-06-28 07:23 - 000829440 _____ (Microsoft Corporation) C:\Windows\system32\wlansvc.dll
2019-07-09 19:56 - 2019-06-28 07:23 - 000428032 _____ (Microsoft Corporation) C:\Windows\system32\wlanmsm.dll
2019-07-09 19:56 - 2019-06-28 07:23 - 000392704 _____ (Microsoft Corporation) C:\Windows\system32\wlansec.dll
2019-07-09 19:56 - 2019-06-28 07:23 - 000083968 _____ (Microsoft Corporation) C:\Windows\system32\wlanhlp.dll
2019-07-09 19:56 - 2019-06-28 07:23 - 000080896 _____ (Microsoft Corporation) C:\Windows\system32\wlanapi.dll
2019-07-09 19:56 - 2019-06-21 05:05 - 000628224 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2019-07-09 19:56 - 2019-06-21 04:44 - 002406912 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2019-07-09 19:56 - 2019-06-21 03:41 - 001251840 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2019-07-09 19:56 - 2019-06-20 10:15 - 000348976 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2019-07-09 19:56 - 2019-06-19 05:06 - 006135296 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2019-07-09 19:56 - 2019-06-18 05:56 - 020274688 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2019-07-09 19:56 - 2019-06-18 05:51 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2019-07-09 19:56 - 2019-06-18 05:50 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2019-07-09 19:56 - 2019-06-18 05:39 - 000496128 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2019-07-09 19:56 - 2019-06-18 05:39 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2019-07-09 19:56 - 2019-06-18 05:38 - 000341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2019-07-09 19:56 - 2019-06-18 05:38 - 000047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2019-07-09 19:56 - 2019-06-18 05:37 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2019-07-09 19:56 - 2019-06-18 05:35 - 002297344 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2019-07-09 19:56 - 2019-06-18 05:32 - 000047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2019-07-09 19:56 - 2019-06-18 05:32 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2019-07-09 19:56 - 2019-06-18 05:30 - 000476160 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2019-07-09 19:56 - 2019-06-18 05:29 - 000663040 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2019-07-09 19:56 - 2019-06-18 05:29 - 000620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2019-07-09 19:56 - 2019-06-18 05:29 - 000115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2019-07-09 19:56 - 2019-06-18 05:29 - 000104960 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2019-07-09 19:56 - 2019-06-18 05:23 - 000668160 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2019-07-09 19:56 - 2019-06-18 05:21 - 000416256 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2019-07-09 19:56 - 2019-06-18 05:16 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2019-07-09 19:56 - 2019-06-18 05:16 - 000073216 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2019-07-09 19:56 - 2019-06-18 05:16 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2019-07-09 19:56 - 2019-06-18 05:13 - 000168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2019-07-09 19:56 - 2019-06-18 05:13 - 000076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2019-07-09 19:56 - 2019-06-18 05:11 - 000279040 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2019-07-09 19:56 - 2019-06-18 05:10 - 000130048 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2019-07-09 19:56 - 2019-06-18 05:07 - 004494336 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2019-07-09 19:56 - 2019-06-18 05:04 - 000230400 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2019-07-09 19:56 - 2019-06-18 05:03 - 013706752 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2019-07-09 19:56 - 2019-06-18 05:03 - 002060288 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2019-07-09 19:56 - 2019-06-18 05:03 - 000696320 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2019-07-09 19:56 - 2019-06-18 05:03 - 000692224 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2019-07-09 19:56 - 2019-06-18 05:02 - 001155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2019-07-09 19:56 - 2019-06-18 04:44 - 004386304 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2019-07-09 19:56 - 2019-06-18 04:41 - 001323008 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2019-07-09 19:56 - 2019-06-18 04:39 - 000710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2019-07-09 19:56 - 2019-06-13 05:23 - 000135400 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2019-07-09 19:56 - 2019-06-13 05:17 - 000593920 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2019-07-09 19:56 - 2019-06-12 17:25 - 001310520 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2019-07-09 19:56 - 2019-06-12 17:24 - 000189672 _____ (Microsoft Corporation) C:\Windows\system32\halmacpi.dll
2019-07-09 19:56 - 2019-06-12 17:24 - 000189672 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2019-07-09 19:56 - 2019-06-12 17:24 - 000135912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2019-07-09 19:56 - 2019-06-12 17:24 - 000067304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2019-07-09 19:56 - 2019-06-12 17:23 - 004057320 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2019-07-09 19:56 - 2019-06-12 17:23 - 003964136 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2019-07-09 19:56 - 2019-06-12 17:23 - 000136424 _____ (Microsoft Corporation) C:\Windows\system32\halacpi.dll
2019-07-09 19:56 - 2019-06-12 17:23 - 000078568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2019-07-09 19:56 - 2019-06-12 17:21 - 012574208 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2019-07-09 19:56 - 2019-06-12 17:21 - 011411968 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2019-07-09 19:56 - 2019-06-12 17:21 - 000617984 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2019-07-09 19:56 - 2019-06-12 17:21 - 000179712 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2019-07-09 19:56 - 2019-06-12 17:21 - 000172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2019-07-09 19:56 - 2019-06-12 17:21 - 000171008 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2019-07-09 19:56 - 2019-06-12 17:20 - 003207168 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2019-07-09 19:56 - 2019-06-12 17:20 - 001329664 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2019-07-09 19:56 - 2019-06-12 17:20 - 001072640 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2019-07-09 19:56 - 2019-06-12 17:20 - 000988160 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2019-07-09 19:56 - 2019-06-12 17:20 - 000872448 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2019-07-09 19:56 - 2019-06-12 17:20 - 000655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2019-07-09 19:56 - 2019-06-12 17:20 - 000555520 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2019-07-09 19:56 - 2019-06-12 17:20 - 000519680 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2019-07-09 19:56 - 2019-06-12 17:20 - 000504320 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2019-07-09 19:56 - 2019-06-12 17:20 - 000489984 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2019-07-09 19:56 - 2019-06-12 17:20 - 000442368 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2019-07-09 19:56 - 2019-06-12 17:20 - 000406016 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2019-07-09 19:56 - 2019-06-12 17:20 - 000400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2019-07-09 19:56 - 2019-06-12 17:20 - 000354816 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2019-07-09 19:56 - 2019-06-12 17:20 - 000294400 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2019-07-09 19:56 - 2019-06-12 17:20 - 000276480 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2019-07-09 19:56 - 2019-06-12 17:20 - 000265216 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2019-07-09 19:56 - 2019-06-12 17:20 - 000261632 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2019-07-09 19:56 - 2019-06-12 17:20 - 000254464 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2019-07-09 19:56 - 2019-06-12 17:20 - 000223232 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2019-07-09 19:56 - 2019-06-12 17:20 - 000167936 _____ (Microsoft Corporation) C:\Windows\system32\srvsvc.dll
2019-07-09 19:56 - 2019-06-12 17:20 - 000157184 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2019-07-09 19:56 - 2019-06-12 17:20 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2019-07-09 19:56 - 2019-06-12 17:20 - 000141312 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2019-07-09 19:56 - 2019-06-12 17:20 - 000103424 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2019-07-09 19:56 - 2019-06-12 17:20 - 000099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2019-07-09 19:56 - 2019-06-12 17:20 - 000070144 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2019-07-09 19:56 - 2019-06-12 17:20 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2019-07-09 19:56 - 2019-06-12 17:20 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2019-07-09 19:56 - 2019-06-12 17:20 - 000046592 _____ (Microsoft Corporation) C:\Windows\system32\mssign32.dll
2019-07-09 19:56 - 2019-06-12 17:20 - 000043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2019-07-09 19:56 - 2019-06-12 17:20 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2019-07-09 19:56 - 2019-06-12 17:20 - 000008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2019-07-09 19:56 - 2019-06-12 17:20 - 000002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2019-07-09 19:56 - 2019-06-12 17:19 - 001177088 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2019-07-09 19:56 - 2019-06-12 17:19 - 001005056 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2019-07-09 19:56 - 2019-06-12 17:19 - 000744960 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2019-07-09 19:56 - 2019-06-12 17:19 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2019-07-09 19:56 - 2019-06-12 17:19 - 000644096 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2019-07-09 19:56 - 2019-06-12 17:19 - 000474624 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2019-07-09 19:56 - 2019-06-12 17:19 - 000373248 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2019-07-09 19:56 - 2019-06-12 17:19 - 000195072 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2019-07-09 19:56 - 2019-06-12 17:19 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2019-07-09 19:56 - 2019-06-12 17:19 - 000106496 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2019-07-09 19:56 - 2019-06-12 17:19 - 000082432 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2019-07-09 19:56 - 2019-06-12 17:19 - 000080896 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2019-07-09 19:56 - 2019-06-12 17:19 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2019-07-09 19:56 - 2019-06-12 17:19 - 000038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2019-07-09 19:56 - 2019-06-12 17:19 - 000017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2019-07-09 19:56 - 2019-06-12 17:19 - 000006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2019-07-09 19:56 - 2019-06-12 17:19 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2019-07-09 19:56 - 2019-06-12 17:19 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2019-07-09 19:56 - 2019-06-12 17:19 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2019-07-09 19:56 - 2019-06-12 17:19 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2019-07-09 19:56 - 2019-06-12 17:19 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2019-07-09 19:56 - 2019-06-12 17:19 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2019-07-09 19:56 - 2019-06-12 17:19 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2019-07-09 19:56 - 2019-06-12 17:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2019-07-09 19:56 - 2019-06-12 17:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2019-07-09 19:56 - 2019-06-12 17:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2019-07-09 19:56 - 2019-06-12 17:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2019-07-09 19:56 - 2019-06-12 17:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2019-07-09 19:56 - 2019-06-12 17:19 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2019-07-09 19:56 - 2019-06-12 17:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2019-07-09 19:56 - 2019-06-12 17:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-07-09 19:56 - 2019-06-12 17:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2019-07-09 19:56 - 2019-06-12 17:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2019-07-09 19:56 - 2019-06-12 17:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2019-07-09 19:56 - 2019-06-12 17:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2019-07-09 19:56 - 2019-06-12 17:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2019-07-09 19:56 - 2019-06-12 17:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2019-07-09 19:56 - 2019-06-12 17:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2019-07-09 19:56 - 2019-06-12 17:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2019-07-09 19:56 - 2019-06-12 17:19 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2019-07-09 19:56 - 2019-06-12 17:16 - 000593920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2019-07-09 19:56 - 2019-06-12 17:06 - 000008192 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2019-07-09 19:56 - 2019-06-12 17:06 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2019-07-09 19:56 - 2019-06-12 17:06 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2019-07-09 19:56 - 2019-06-12 17:05 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2019-07-09 19:56 - 2019-06-12 17:04 - 000100352 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2019-07-09 19:56 - 2019-06-12 17:04 - 000023040 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2019-07-09 19:56 - 2019-06-12 16:58 - 000010752 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2019-07-09 19:56 - 2019-06-12 16:55 - 000097792 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2019-07-09 19:56 - 2019-06-12 16:55 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2019-07-09 19:56 - 2019-06-12 16:55 - 000029696 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2019-07-09 19:56 - 2019-06-12 16:55 - 000016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2019-07-09 19:56 - 2019-06-12 16:55 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\sscore.dll
2019-07-09 19:56 - 2019-06-12 16:54 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2019-07-09 19:56 - 2019-06-12 16:52 - 000271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2019-07-09 19:56 - 2019-06-12 16:51 - 000262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2019-07-09 19:56 - 2019-06-12 16:51 - 000107008 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys
2019-07-09 19:56 - 2019-06-12 16:50 - 000028160 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2019-07-09 19:56 - 2019-06-12 16:50 - 000009728 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe
2019-07-09 19:56 - 2019-06-12 16:50 - 000008192 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2019-07-09 19:56 - 2019-06-12 16:49 - 000205312 _____ (Microsoft Corporation) C:\Windows\system32\Dism.exe
2019-07-09 19:56 - 2019-06-12 16:48 - 000317440 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2019-07-09 19:56 - 2019-06-12 16:48 - 000314880 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2019-07-09 19:56 - 2019-06-12 16:48 - 000226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2019-07-09 19:56 - 2019-06-12 16:48 - 000125952 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2019-07-09 19:56 - 2019-06-12 16:48 - 000116736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2019-07-09 19:56 - 2019-06-12 16:48 - 000098816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2019-07-09 19:56 - 2019-06-12 16:47 - 000069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2019-07-09 19:56 - 2019-06-12 16:47 - 000055296 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys
2019-07-09 19:56 - 2019-06-12 16:47 - 000053760 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys
2019-07-09 19:56 - 2019-06-12 16:47 - 000053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\viac7.sys
2019-07-09 19:56 - 2019-06-12 16:47 - 000052736 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys
2019-07-09 19:56 - 2019-06-12 16:47 - 000052224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys
2019-07-09 19:56 - 2019-06-12 16:47 - 000036352 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2019-07-09 19:56 - 2019-06-12 16:47 - 000035328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\npfs.sys
2019-07-09 19:56 - 2019-06-12 16:47 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2019-07-09 19:56 - 2019-06-12 16:47 - 000015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2019-07-09 19:56 - 2019-06-12 16:46 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2019-07-09 19:56 - 2019-06-12 16:46 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2019-07-09 19:56 - 2019-06-12 16:46 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2019-07-09 19:56 - 2019-06-12 16:46 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2019-07-09 19:56 - 2019-06-11 04:59 - 002703360 _____ (Microsoft Corporation) C:\Windows\system32\aitstatic.exe
2019-07-09 19:56 - 2019-06-11 04:59 - 001460224 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2019-07-09 19:56 - 2019-06-11 04:59 - 000617984 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2019-07-09 19:56 - 2019-06-11 04:59 - 000535040 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2019-07-09 19:56 - 2019-06-11 04:59 - 000378368 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2019-07-09 19:56 - 2019-06-11 04:59 - 000366080 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2019-07-09 19:56 - 2019-06-11 04:59 - 000257024 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2019-07-09 19:56 - 2019-06-11 04:59 - 000206848 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2019-07-09 19:56 - 2019-06-07 17:18 - 001425920 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2019-07-09 19:56 - 2019-06-07 17:18 - 000380416 _____ (Microsoft Corporation) C:\Windows\system32\rpcss.dll
2019-07-09 19:56 - 2019-06-07 17:18 - 000026112 _____ (Microsoft Corporation) C:\Windows\system32\oleres.dll
2019-07-09 19:56 - 2019-06-07 16:55 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\comcat.dll
2019-07-09 19:56 - 2019-06-02 06:07 - 000180224 _____ (Microsoft Corporation) C:\Windows\system32\rdpclip.exe
2019-07-09 17:58 - 2019-07-09 17:24 - 001588029 _____ C:\Users\Tomas\Desktop\gutachten_ráfky Superb.pdf
2019-07-09 17:24 - 2019-07-09 17:24 - 001588029 _____ C:\Users\mamina\Desktop\gutachten_ráfky Superb.pdf
2019-07-09 15:21 - 2019-07-09 15:21 - 000082893 _____ C:\Users\Tomas\Desktop\KOSKY.com_ Potvrzení.pdf
2019-06-30 14:49 - 2019-06-30 14:49 - 000006178 _____ C:\Users\Tomas\Desktop\RogueKiller.txt
2019-06-30 13:27 - 2019-06-30 14:51 - 000000000 ____D C:\ProgramData\RogueKiller
2019-06-30 12:31 - 2019-06-30 12:31 - 000000000 _____ C:\Users\Tomas\Desktop\Nový textový dokument.txt
2019-06-30 11:21 - 2019-06-30 11:21 - 000000000 ____D C:\ProgramData\Sophos
2019-06-30 11:20 - 2019-06-30 11:20 - 000002747 _____ C:\Users\Public\Desktop\Sophos Virus Removal Tool.lnk
2019-06-30 11:20 - 2019-06-30 11:20 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sophos
2019-06-30 11:20 - 2019-06-30 11:20 - 000000000 ____D C:\Program Files\Sophos
2019-06-30 11:07 - 2019-06-30 11:07 - 000008309 _____ C:\Users\Tomas\Desktop\MalwareBytes.txt
2019-06-30 10:56 - 2019-06-30 10:56 - 000005528 _____ C:\Users\Tomas\Desktop\JRT_1.txt
2019-06-30 10:53 - 2019-06-30 10:53 - 000005528 _____ C:\Users\Tomas\Desktop\JRT.txt
2019-06-30 10:51 - 2019-06-30 10:51 - 001790024 _____ (Malwarebytes) C:\Users\Tomas\Desktop\JRT.exe
2019-06-30 10:49 - 2019-06-30 10:49 - 000003151 _____ C:\Users\Tomas\Desktop\AdwCleaner_1[S01].txt
2019-06-25 22:29 - 2019-06-25 22:29 - 000578408 _____ C:\Users\Tomas\Desktop\Festival Slunce 2019.pdf
2019-06-25 22:28 - 2019-06-25 22:28 - 000000000 ____D C:\Users\Tomas\AppData\Local\Adobe
2019-06-22 23:03 - 2019-06-22 23:03 - 001220922 _____ C:\Users\mamina\Desktop\Hradistan_eTicket_9738.pdf
2019-06-21 21:38 - 2019-06-21 21:38 - 000000000 ____D C:\Users\mamina\AppData\Local\Adobe
2019-06-20 22:19 - 2019-06-20 22:19 - 000000000 ____D C:\Users\mamina\AppData\Local\mbamtray
2019-06-20 22:19 - 2019-06-20 22:19 - 000000000 ____D C:\Users\mamina\AppData\Local\Ahead
2019-06-20 16:47 - 2019-06-20 16:47 - 000010955 _____ C:\Users\Tomas\Desktop\vysledky malware skenu.txt
2019-06-20 16:39 - 2019-06-20 16:39 - 000002020 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-06-20 16:39 - 2019-06-20 16:39 - 000000000 ____D C:\Users\Tomas\AppData\Local\mbamtray
2019-06-20 16:39 - 2019-06-20 16:39 - 000000000 ____D C:\Users\Tomas\AppData\Local\mbam
2019-06-20 16:39 - 2019-06-20 16:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-06-20 16:39 - 2019-06-20 16:39 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-06-20 16:39 - 2019-06-20 16:39 - 000000000 ____D C:\Program Files\Malwarebytes
2019-06-20 16:39 - 2019-01-08 16:32 - 000128552 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae.sys
2019-06-20 16:38 - 2019-06-20 16:38 - 063182216 _____ (Malwarebytes ) C:\Users\Tomas\Desktop\mb3-setup-37469.37469-3.7.1.2839-1.0.586-1.0.10430.exe
2019-06-20 16:33 - 2019-07-09 21:58 - 000000000 ____D C:\AdwCleaner
2019-06-20 16:33 - 2019-06-20 16:32 - 007025360 _____ (Malwarebytes) C:\Users\Tomas\Desktop\AdwCleaner.exe
2019-06-20 16:25 - 2019-06-20 16:24 - 000448512 _____ (OldTimer Tools) C:\Users\Tomas\Desktop\TFC.exe
2019-06-20 16:23 - 2019-06-20 16:19 - 000050688 _____ (Atribune.org) C:\Users\Tomas\Desktop\ATF-Cleaner.exe
2019-06-18 22:07 - 2019-06-18 21:50 - 000388608 _____ (Trend Micro Inc.) C:\Users\Tomas\Desktop\hijackthis.exe
2019-06-18 15:24 - 2019-06-18 15:24 - 000311176 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe

==================== One month (modified) ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-07-15 21:41 - 2018-08-24 17:34 - 000000000 ____D C:\ProgramData\NVIDIA
2019-07-15 21:40 - 2018-07-17 20:57 - 000000000 ____D C:\Users\Tomas\AppData\LocalLow\Mozilla
2019-07-15 21:40 - 2009-07-14 06:53 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-07-15 21:39 - 2009-07-14 04:37 - 000000000 ____D C:\Windows\inf
2019-07-15 20:43 - 2011-06-03 22:34 - 001583226 _____ C:\Windows\system32\PerfStringBackup.INI
2019-07-15 20:43 - 2009-07-14 10:44 - 000668542 _____ C:\Windows\system32\perfh005.dat
2019-07-15 20:43 - 2009-07-14 10:44 - 000141202 _____ C:\Windows\system32\perfc005.dat
2019-07-15 20:43 - 2009-07-14 06:34 - 000026544 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-07-15 20:43 - 2009-07-14 06:34 - 000026544 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-07-15 12:27 - 2018-07-17 20:55 - 000000000 ____D C:\Users\mamina\AppData\LocalLow\Mozilla
2019-07-12 16:42 - 2012-03-17 12:21 - 000069632 _____ C:\Users\Tomas\Desktop\výplaty.xls
2019-07-10 22:17 - 2018-04-10 19:29 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2019-07-10 22:15 - 2011-06-04 09:36 - 000000000 ____D C:\Program Files\Microsoft Office
2019-07-10 20:24 - 2009-07-14 04:37 - 000000000 ____D C:\Windows\rescache
2019-07-09 23:08 - 2009-07-14 06:33 - 000432088 _____ C:\Windows\system32\FNTCACHE.DAT
2019-07-09 23:07 - 2014-12-11 23:03 - 000000000 ____D C:\Windows\system32\appraiser
2019-07-09 23:07 - 2014-04-24 07:33 - 000000000 ___SD C:\Windows\system32\CompatTel
2019-07-09 23:07 - 2009-07-14 04:37 - 000000000 ____D C:\Windows\system32\Dism
2019-07-09 22:58 - 2013-08-21 21:05 - 000000000 ____D C:\Windows\system32\MRT
2019-07-09 22:52 - 2011-06-04 09:47 - 133475400 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2019-07-09 21:59 - 2012-05-02 14:39 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2019-07-09 21:20 - 2017-05-17 12:18 - 000000000 _____ C:\Windows\system32\last.dump
2019-07-09 20:54 - 2011-06-03 22:32 - 000000000 ____D C:\Users\Tomas
2019-07-09 20:44 - 2012-04-14 15:56 - 000842296 _____ (Adobe) C:\Windows\system32\FlashPlayerApp.exe
2019-07-09 20:44 - 2011-06-03 23:35 - 000175160 _____ (Adobe) C:\Windows\system32\FlashPlayerCPLApp.cpl
2019-07-09 20:44 - 2011-06-03 23:35 - 000000000 ____D C:\Windows\system32\Macromed
2019-07-08 15:40 - 2017-12-14 19:34 - 000000000 ____D C:\Users\mamina\AppData\Local\CrashDumps
2019-07-01 22:51 - 2018-04-10 19:31 - 000000000 ___RD C:\Users\Tomas\OneDrive
2019-07-01 22:50 - 2018-04-10 19:31 - 000002154 _____ C:\Users\Tomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Microsoft OneDrive.lnk
2019-07-01 13:11 - 2016-11-09 19:18 - 000000000 ____D C:\ProgramData\CanonIJPLM
2019-06-30 11:06 - 2016-03-31 21:02 - 000000000 ____D C:\Program Files\Samorost 3
2019-06-30 11:06 - 2014-11-12 20:12 - 000000000 ____D C:\Users\Tomas\Desktop\Crack CoD
2019-06-28 17:45 - 2018-04-07 21:04 - 000002375 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Secure Browser.lnk
2019-06-28 17:45 - 2018-04-07 21:04 - 000002332 _____ C:\Users\Public\Desktop\Avast Secure Browser.lnk
2019-06-24 00:07 - 2009-07-14 04:37 - 000000000 ____D C:\Program Files\Common Files\microsoft shared
2019-06-20 18:32 - 2011-06-30 22:08 - 000007599 _____ C:\Users\Tomas\AppData\Local\resmon.resmoncfg
2019-06-20 16:16 - 2014-12-09 18:16 - 000139568 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2019-06-18 22:01 - 2015-05-12 20:06 - 000000000 ____D C:\Users\Tomas\AppData\Roaming\vlc
2019-06-18 15:25 - 2014-12-09 18:16 - 000312248 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2019-06-18 15:25 - 2014-12-09 18:16 - 000167360 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2019-06-18 15:24 - 2019-01-22 21:03 - 000225608 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2019-06-18 15:24 - 2019-01-22 21:02 - 000171520 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2019-06-18 15:24 - 2019-01-22 21:02 - 000056296 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2019-06-18 15:24 - 2019-01-22 21:02 - 000034488 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
2019-06-18 15:24 - 2018-12-17 18:16 - 000040688 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2019-06-18 15:24 - 2017-12-23 23:57 - 000214736 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHdsKe.sys
2019-06-18 15:24 - 2017-11-10 22:57 - 000173232 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2019-06-18 15:24 - 2014-12-09 18:16 - 000783024 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2019-06-18 15:24 - 2014-12-09 18:16 - 000403680 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2019-06-18 15:24 - 2014-12-09 18:16 - 000100984 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2019-06-18 15:24 - 2014-12-09 18:16 - 000072800 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys

==================== Files in the root of some directories ================

2011-07-19 21:49 - 2011-08-01 08:00 - 000062434 _____ () C:\Users\Tomas\AppData\Roaming\mdbu.bin
2012-04-16 17:52 - 2014-11-12 21:07 - 000022328 _____ () C:\Users\Tomas\AppData\Roaming\PnkBstrK.sys
2011-06-18 13:40 - 2018-09-07 22:33 - 000017408 _____ () C:\Users\Tomas\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2011-06-30 22:08 - 2019-06-20 18:32 - 000007599 _____ () C:\Users\Tomas\AppData\Local\resmon.resmoncfg
2011-10-19 23:38 - 2014-03-10 08:53 - 000020351 _____ () C:\Users\Tomas\AppData\Local\SRDownloader.err
2011-10-19 23:37 - 2014-03-10 09:01 - 000001136 _____ () C:\Users\Tomas\AppData\Local\SRDownloader.nast

==================== SigCheck ===============================

(There is no automatic fix for files that do not pass verification.)


LastRegBack: 2019-07-13 10:52
==================== End of FRST.txt ============================

Tomas438
nováček
Příspěvky: 19
Registrován: červen 19
Pohlaví: Muž

Re: Prosím o kontrolu logu, využití procesoru na 100%

Příspěvekod Tomas438 » 15 črc 2019 22:05

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 15-07-2019 01
Ran by Tomas (15-07-2019 21:43:35)
Running from C:\Users\Tomas\Desktop
Microsoft Windows 7 Professional Service Pack 1 (X86) (2011-06-03 20:31:58)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-220579093-4111955792-2631698323-500 - Administrator - Disabled)
Guest (S-1-5-21-220579093-4111955792-2631698323-501 - Limited - Enabled)
HomeGroupUser$ (S-1-5-21-220579093-4111955792-2631698323-1002 - Limited - Enabled)
mamina (S-1-5-21-220579093-4111955792-2631698323-1003 - Limited - Enabled) => C:\Users\mamina
Tomas (S-1-5-21-220579093-4111955792-2631698323-1000 - Administrator - Enabled) => C:\Users\Tomas
UpdatusUser (S-1-5-21-220579093-4111955792-2631698323-1185 - Limited - Enabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

@BIOS (HKLM\...\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}) (Version: 2.11 - GIGABYTE)
AC3Filter 1.63b (HKLM\...\AC3Filter_is1) (Version: 1.63b - Alexander Vigovsky)
Active WebCam (HKLM\...\Active WebCam) (Version: - )
Adobe Acrobat Reader DC - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.012.20035 - Adobe Systems Incorporated)
Adobe Flash Player 32 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 32.0.0.223 - Adobe)
Adobe Flash Player 32 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 32.0.0.223 - Adobe)
Adobe Shockwave Player 12.2 (HKLM\...\Adobe Shockwave Player) (Version: 12.2.4.194 - Adobe Systems, Inc.)
Aktualizace NVIDIA 31.0.1.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 31.0.1.0 - NVIDIA Corporation) Hidden
AMD Catalyst Install Manager (HKLM\...\{B4ED6FC8-F145-87B6-B1C2-305F6316BC39}) (Version: 8.0.877.0 - Advanced Micro Devices, Inc.)
Apple Application Support (HKLM\...\{EB879750-CCBD-4013-BFD5-0294D4DA5BD0}) (Version: 2.1.7 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Arkanoid 2 (HKLM\...\Arkanoid 2) (Version: - )
Audacity 1.2.6 (HKLM\...\Audacity_is1) (Version: - )
AutoGreen B10.1021.1 (HKLM\...\{C75FAD21-EC08-42F3-92D6-C9C0AB355345}) (Version: 1.00.0000 - GIGABYTE) Hidden
AutoGreen B10.1021.1 (HKLM\...\InstallShield_{C75FAD21-EC08-42F3-92D6-C9C0AB355345}) (Version: 1.00.0000 - GIGABYTE)
Avast Free Antivirus (HKLM\...\Avast Antivirus) (Version: 19.5.2378 - AVAST Software)
Avast Secure Browser (HKLM\...\Avast Secure Browser) (Version: 75.0.1447.80 - Autoři prohlížeče Avast Secure Browser)
AviSynth 2.5 (HKLM\...\AviSynth) (Version: - )
Balíček ovladače systému Windows - Nokia pccsmcfd “LegacyDriver” (05/31/2012 7.1.2.0) (HKLM\...\17D063A0A9F5D5A225B76B1D9BCB5ADBE85C8382) (Version: 05/31/2012 7.1.2.0 - Nokia)
Botanicula (HKLM\...\Botanicula_is1) (Version: - GOG.com)
Call of Duty(R) - World at War(TM) (HKLM\...\{D80A6A73-E58A-4673-AFF5-F12D7110661F}) (Version: 1.0 - Activision) Hidden
Call of Duty(R) - World at War(TM) (HKLM\...\InstallShield_{D80A6A73-E58A-4673-AFF5-F12D7110661F}) (Version: 1.0 - Activision)
Canon Easy-WebPrint EX (HKLM\...\Easy-WebPrint EX) (Version: 1.7.0.0 - Canon Inc.)
Canon IJ Scan Utility (HKLM\...\Canon_IJ_Scan_Utility) (Version: 1.1.20.13 - Canon Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM\...\CANONIJPLM100) (Version: 5.2.0 - Canon Inc.)
Canon MG6800 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG6800_series) (Version: 1.00 - Canon Inc.)
Canon MG6800 series On-screen Manual (HKLM\...\Canon MG6800 series On-screen Manual) (Version: 7.8.0 - Canon Inc.)
Canon My Image Garden (HKLM\...\Canon My Image Garden) (Version: 3.5.1 - Canon Inc.)
Canon My Image Garden Design Files (HKLM\...\Canon My Image Garden Design Files) (Version: 3.5.0 - Canon Inc.)
Canon My Printer (HKLM\...\CanonMyPrinter) (Version: 3.3.0 - Canon Inc.)
Canon Quick Menu (HKLM\...\CanonQuickMenu) (Version: 2.7.1 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.56 - Piriform)
CDex extraction audio (HKLM\...\CDex) (Version: - )
Compatibility Pack for the 2007 Office system (HKLM\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Compiled Driver Disk (Samsung) 1.0 (HKLM\...\{3DCF00F5-04A5-4543-A088-705480811206}_is1) (Version: 1.0.8.1 - COMPELSON Labs)
CoreAAC Audio Decoder (remove only) (HKLM\...\CoreAAC Audio Decoder) (Version: - )
D3DX10 (HKLM\...\{E09C4DB7-630C-4F06-A631-8EA7239923AF}) (Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 4.45.1.0236 - DT Soft Ltd)
DisplayDriverAnalyzer (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_DisplayDriverAnalyzer) (Version: 390.65 - NVIDIA Corporation) Hidden
Easy Tune 6 B11.0120.1 (HKLM\...\{457D7505-D665-4F95-91C3-ECB8C56E9ACA}) (Version: 1.00.0000 - GIGABYTE) Hidden
Easy Tune 6 B11.0120.1 (HKLM\...\InstallShield_{457D7505-D665-4F95-91C3-ECB8C56E9ACA}) (Version: 1.00.0000 - GIGABYTE)
EXPERTool v10.7 (HKLM\...\{551D9481-9487-4D0C-9A1D-6BC3E7B6D991}_is1) (Version: 10.7.0.1 - Gainward Co. Ltd.)
F1 Challenge 99-02 (HKLM\...\{5FB31CB9-A4A2-49FD-00AF-41785B21FDEE}) (Version: - )
ffdshow [rev 3299] [2010-03-03] (HKLM\...\ffdshow_is1) (Version: 1.0.0.3299 - )
FlacSquisher 1.3.7 (HKLM\...\FlacSquisher) (Version: 1.3.7 - FlacSquisher)
FlatOut (HKLM\...\{84BAD30E-07CD-496A-AC88-EE9C8DFE2327}_is1) (Version: 1.0 - US - ACTION, s.r.o.)
Garmin USB Drivers (HKLM\...\{B1102A25-3AA3-446B-AA0F-A699B07A02FD}) (Version: 1.0.0.0 - Garmin Ltd or its subsidiaries)
GmapTool 0.7.158 (HKLM\...\{1873789F-59D5-4002-8A2F-60A827B78F98}_is1) (Version: - AP)
Google Earth Pro (HKLM\...\{9D524A1E-F2FC-444D-B12A-7592CEB56EB5}) (Version: 7.3.2.5776 - Google)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.34.11 - Google LLC) Hidden
Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
Haali Media Splitter (HKLM\...\HaaliMkx) (Version: - )
Hamachi 1.0.3.0 (HKLM\...\Hamachi) (Version: - )
HappyFoto-Designer 5.4 (HKLM\...\HappyFoto-Designer_is1) (Version: - )
Chessmaster 10th Edition (HKLM\...\{AEA03D8E-87B5-4862-B82A-B5FE5A469BA0}_is1) (Version: 1.0.0 - Ubisoft)
CHUCHEL (HKLM\...\1825910123_is1) (Version: 1.0.0 - GOG.com)
IPTInstaller (HKLM\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.8 - HTC)
IrfanView 4.52 (32-bit) (HKLM\...\IrfanView) (Version: 4.52 - Irfan Skiljan)
Italy Topo 20 v1.0 (HKLM\...\ITopo20_is1) (Version: - info@italymaps.tk)
Jardinains! (HKLM\...\Jardinains!) (Version: - )
Java 8 Update 211 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180211F0}) (Version: 8.0.2110.12 - Oracle Corporation)
Machinarium (HKLM\...\Machinarium) (Version: 11.10.09 - Amanita Design, s.r.o.)
Malwarebytes verze 3.7.1.2839 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.7.1.2839 - Malwarebytes)
Mesh Runtime (HKLM\...\{8C6D6116-B724-4810-8F2D-D047E6B7D68E}) (Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft .NET Framework 4.7.2 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (HKLM\...\{90110405-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - cs-cz (HKLM\...\ProplusRetail - cs-cz) (Version: 16.0.11727.20244 - Microsoft Corporation)
Microsoft Office Professional Plus 2016 - en-us (HKLM\...\ProplusRetail - en-us) (Version: 16.0.11727.20244 - Microsoft Corporation)
Microsoft OneDrive (HKU\.DEFAULT\...\OneDriveSetup.exe) (Version: 17.3.6743.1212 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-220579093-4111955792-2631698323-1000\...\OneDriveSetup.exe) (Version: 19.103.0527.0003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
MOBILedit! Support Libraries (HKLM\...\{1A834332-A9EE-440C-9505-2D07F445F05A}) (Version: 4.0.0 - COMPELSON Labs)
MOBILedit! Support Libraries (HKLM\...\{9DF587A2-054C-46A2-9B1A-4A230F389E4B}) (Version: 12.0.0 - COMPELSON Labs)
MOBILedit! ver. 8.2.0.8057 (HKLM\...\{47DA7D2E-408C-4050-B75F-95F6D2E6A332}_is1) (Version: 8.2.0.8057 - COMPELSON Labs)
Moorfrosch XS (HKLM\...\{10F15459-C54E-41BA-AC83-F12ACAF24690}) (Version: - )
Mozilla Firefox 68.0 (x86 cs) (HKLM\...\Mozilla Firefox 68.0 (x86 cs)) (Version: 68.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 68.0.0.7125 - Mozilla)
MSVC80_x86_v2 (HKLM\...\{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}) (Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x86 (HKLM\...\{AF111648-99A1-453E-81DD-80DBBF6DAD0D}) (Version: 1.0.1.2 - Nokia) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
NAVIGON Fresh 3.4.1 (HKLM\...\NAVIGON Fresh) (Version: 3.4.1 - NAVIGON)
Need For Speed - Porsche Unleashed (HKLM\...\Need For Speed - Porsche Unleashed) (Version: - )
Nero 7 Ultra Edition (HKLM\...\{91C0B95B-B83A-4828-A775-BBE2DD421029}) (Version: 7.02.9752 - Nero AG)
Nokia Connectivity Cable Driver (HKLM\...\{29373274-977E-413C-A4DE-DC0F8E80C429}) (Version: 7.1.172.0 - Nokia)
Nokia Suite (HKLM\...\{88B6F9DE-C80F-4A70-ACF6-BEE933679170}) (Version: 3.8.54.0 - Nokia) Hidden
Nokia Suite (HKLM\...\Nokia Suite) (Version: 3.8.54.0 - Nokia)
NVIDIA GeForce Experience 3.11.0.73 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 3.11.0.73 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 391.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 391.35 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.36.6 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.36.6 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 390.41 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 390.41 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 391.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 391.35 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.17.0524 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.17.0524 - NVIDIA Corporation)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-0000-0000000FF1CE}) (Version: 16.0.11727.20244 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-0000-0000000FF1CE}) (Version: 16.0.11727.20244 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-0000-0000000FF1CE}) (Version: 16.0.11727.20244 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0409-0000-0000000FF1CE}) (Version: 16.0.11727.20244 - Microsoft Corporation) Hidden
ON_OFF Charge B11.0110.1 (HKLM\...\{3DECD372-76A1-4483-BF10-B547790A3261}) (Version: 1.00.0001 - GIGABYTE)
Ovládací panel NVIDIA 391.35 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 391.35 - NVIDIA Corporation) Hidden
Ovládací prvek ActiveX platformy Windows Live Mesh pro vzdálená připojení (HKLM\...\{B6190387-0036-4BEB-8D74-A0AFC5F14706}) (Version: 15.4.5722.2 - Microsoft Corporation)
PC Connectivity Solution (HKLM\...\{6D01D1B1-17BD-4F10-BB11-F08F0C47D42B}) (Version: 12.0.109.0 - Nokia)
PDF Architect (HKLM\...\{80A07844-CA64-4DE4-AB61-D37DDBE8074F}) (Version: 1.0.52.8917 - pdfforge)
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 1.6.2 - pdfforge)
Phone Drivers Downloader 1.1 (HKLM\...\{BDDB58A5-F98E-4D3C-B554-4A4D31C6D405}_is1) (Version: 1.1.0.0 - COMPELSON Labs)
PunkBuster Services (HKLM\...\PunkBusterSvc) (Version: 0.986 - Even Balance, Inc.)
QIP 2012 4.0.6848 (HKU\S-1-5-21-220579093-4111955792-2631698323-1000\...\QIP 2012) (Version: 4.0.6848 - )
QIP Infium 3.0.9044 (HKU\S-1-5-21-220579093-4111955792-2631698323-1000\...\QIP Infium) (Version: 3.0.9044 - )
QuickTime 7 (HKLM\...\{FF59BD75-466A-4D5A-AD23-AAD87C5FD44C}) (Version: 7.79.80.95 - Apple Inc.)
Rajče průvodce verze 1.59.52.267 (HKLM\...\rajce.net_is1) (Version: - rajce.net)
Realtek Ethernet Controller Driver (HKLM\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.38.113.2011 - Realtek)
Realtek HDMI Audio Driver for ATI (HKLM\...\{5449FB4F-1802-4D5B-A6D8-087DB1142147}) (Version: 6.0.1.6121 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7404 - Realtek Semiconductor Corp.)
Registrace uživatele zařízení Canon MG6800 series (HKLM\...\Registrace uživatele zařízení Canon MG6800 series) (Version: - ‭Canon Inc.)
Return to Castle Wolfenstein (HKLM\...\Return to Castle Wolfenstein) (Version: 1.0 - Activision, Inc.)
Samorost 3 (HKLM\...\c2Ftb3Jvc3Qz_is1) (Version: 1 - )
Samsung Data Migration (HKLM\...\{3B304604-0BF5-488E-AB95-F2F2E31206F3}) (Version: 3.1 - Samsung)
Samsung Kies3 (HKLM\...\{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.16084.2 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies3 (HKLM\...\InstallShield_{88547073-C566-4895-9005-EBE98EA3F7C7}) (Version: 3.2.16084.2 - Samsung Electronics Co., Ltd.)
Samsung Magician (HKLM\...\{29AE3F9F-7158-4ca7-B1ED-28A73ECDB215}_is1) (Version: 5.2.0.1610 - Samsung Electronics)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.61.0 - Samsung Electronics Co., Ltd.)
Silicon Laboratories CP210x USB to UART Bridge (Driver Removal) (HKLM\...\SLABCOMM&10C4&EA60) (Version: - Silicon Laboratories)
Silicon Laboratories CP210x VCP Drivers for Windows XP/2003 Server/Vista/7 (HKLM\...\{FFB34373-5294-47BC-8B3C-261455B79B04}) (Version: 6.2.00 - Silicon Laboratories, Inc.)
Silicon Laboratories CP210x VCP Drivers for Windows XP/2003 Server/Vista/7_2 (c:\SiLabs\MCU\CP210x\Windows_XP_S2K3_Vista_7_2) (HKLM\...\{B5D1E170-B2DF-445A-BB78-43E9F36390AE}) (Version: 6.2.00 - Silicon Laboratories, Inc.)
Skype verze 8.43 (HKLM\...\Skype_is1) (Version: 8.43 - Skype Technologies S.A.)
Smart Switch (HKLM\...\{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.2.18052.28 - Samsung Electronics Co., Ltd.) Hidden
Smart Switch (HKLM\...\InstallShield_{74FA5314-85C8-4E2A-907D-D9ECCCB770A7}) (Version: 4.2.18052.28 - Samsung Electronics Co., Ltd.)
Sophos Virus Removal Tool (HKLM\...\{B829E117-D072-41EA-9606-9826A38D34C1}) (Version: 2.7.0 - Sophos Limited)
swMSM (HKLM\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Symbian Developer Certificate Request (HKLM\...\{EA6C1A80-D188-427C-8102-226CF9E35AF4}) (Version: 2.0 - Symbian Software Ltd)
TEC-IT TBarCode 11 (HKLM\...\{EAA3DDAA-6165-4635-93A7-A2557033F80A}) (Version: 11.1.0.14491 - TEC-IT Datenverarbeitung GmbH)
TechPowerUp GPU-Z (HKLM\...\TechPowerUp GPU-Z) (Version: - TechPowerUp)
Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version: 7.56a - Ghisler Software GmbH)
VC80CRTRedist - 8.0.50727.6195 (HKLM\...\{933B4015-4618-4716-A828-5289FC03165F}) (Version: 1.2.0 - DivX, Inc) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 3.0.6 - VideoLAN)
VNC Free Edition 4.1.3 (HKLM\...\RealVNC_is1) (Version: 4.1.3 - RealVNC Ltd.)
Vulkan Run Time Libraries 1.0.65.1 (HKLM\...\VulkanRT1.0.65.1) (Version: 1.0.65.1 - LunarG, Inc.) Hidden
Winamp (HKLM\...\Winamp) (Version: 5.621 - Nullsoft, Inc)
Winamp Detector Plug-in (HKU\S-1-5-21-220579093-4111955792-2631698323-1000\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
WinDjView 2.0.2 (HKLM\...\WinDjView) (Version: 2.0.2 - Andrew Zhezherun)
Windows Driver Package - Garmin (grmnusb) GARMIN Devices (03/08/2007 2.2.1.0) (HKLM\...\45A7283175C62FAC673F913C1F532C5361F97841) (Version: 03/08/2007 2.2.1.0 - Garmin)
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinRAR 5.70 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
WM Converter 2.0 (HKLM\...\WM Converter 2.0) (Version: - )
Xvid 1.2.2 final uninstall (HKLM\...\Xvid_is1) (Version: 1.2 - Xvid team (Koepi))
CENZURA 2.5 (HKLM\...\YouTube Downloader_is1) (Version: - FDRLab)
Zemana AntiMalware verze 3.1.320 (HKLM\...\{4E1F3677-C72E-4F7D-B66E-85467B1A289E}_is1) (Version: 3.1.320 - Zemana)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-220579093-4111955792-2631698323-1000_Classes\CLSID\{00B7E0AB-817A-44AD-A04B-D1148D524136}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-220579093-4111955792-2631698323-1000_Classes\CLSID\{7C6E29BC-8B8B-4C3D-859E-AF6CD158BE0F}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-220579093-4111955792-2631698323-1000_Classes\CLSID\{88D969C0-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-220579093-4111955792-2631698323-1000_Classes\CLSID\{88D969C1-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-220579093-4111955792-2631698323-1000_Classes\CLSID\{88D969C2-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-220579093-4111955792-2631698323-1000_Classes\CLSID\{88D969C3-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-220579093-4111955792-2631698323-1000_Classes\CLSID\{88D969C4-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-220579093-4111955792-2631698323-1000_Classes\CLSID\{88D969C5-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-220579093-4111955792-2631698323-1000_Classes\CLSID\{88D969C6-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-220579093-4111955792-2631698323-1000_Classes\CLSID\{88D969C8-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-220579093-4111955792-2631698323-1000_Classes\CLSID\{88D969C9-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-220579093-4111955792-2631698323-1000_Classes\CLSID\{88D969CA-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-220579093-4111955792-2631698323-1000_Classes\CLSID\{88D969D6-F192-11D4-A65F-0040963251E5}\InprocServer32 -> C:\Windows\system32\msxml4.dll (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-06-18] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-06-18] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [Cover Designer] -> {73FCA462-9BD5-4065-A73F-A8E5F6904EF7} => C:\Program Files\Nero\Nero 7\Nero CoverDesigner\CoverEdExtension.dll [2007-06-28] (Nero AG -> Nero AG)
ContextMenuHandlers1: [PDFArchitectExtension] -> {DBDB3433-0E01-40CE-A026-D9F54FAC3CA9} => C:\Program Files\PDF Architect\ContextMenuExt.dll [2013-01-09] (Chinery & Heindoerfer GbR -> pdfforge GbR)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-06-18] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => -> No File
ContextMenuHandlers5: [NvCplDesktopContext] -> {3D1975AF-48C6-4f8e-A182-BE0E08FA86A9} => C:\Windows\system32\nvshext.dll [2018-03-24] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2019-06-18] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-02-01] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


Shortcut: C:\Users\Tomas\AppData\Roaming\Microsoft\Windows\Network Shortcuts\Webové servery ve službě MSN\target.lnk -> hxxp://www.msnusers.co

==================== Loaded Modules (Whitelisted) ==============

2012-12-07 18:27 - 2012-12-07 18:27 - 000167424 _____ () [File not signed] C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
2016-11-09 19:31 - 2016-06-09 12:57 - 000561152 _____ (CANON INC. ) [File not signed] C:\Program Files\Canon\Quick Menu\CCL.dll
2016-11-09 19:31 - 2016-06-09 14:35 - 000588800 _____ (CANON INC.) [File not signed] C:\Program Files\Canon\Quick Menu\CNQMMWRP.dll
2003-03-18 21:12 - 2003-03-18 21:12 - 001047552 _____ (Microsoft Corporation) [File not signed] C:\Program Files\Common Files\Ahead\Lib\MFC71U.DLL
2003-03-19 07:14 - 2003-03-19 07:14 - 000499712 _____ (Microsoft Corporation) [File not signed] C:\Program Files\Common Files\Ahead\Lib\MSVCP71.dll
2003-02-21 15:42 - 2003-02-21 15:42 - 000348160 _____ (Microsoft Corporation) [File not signed] C:\Program Files\Common Files\Ahead\Lib\MSVCR71.dll
2003-03-19 07:20 - 2003-03-19 07:20 - 001060864 _____ (Microsoft Corporation) [File not signed] C:\Program Files\Nero\Nero 7\Nero CoverDesigner\MFC71.DLL
2013-01-29 09:46 - 2012-10-17 10:50 - 000758784 _____ (Microsoft Corporation) [File not signed] C:\Windows\system32\spool\DRIVERS\W32X86\3\PS5UI.DLL
2018-08-28 21:27 - 2018-03-24 01:05 - 000764640 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed] C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPI.dll
2018-08-28 21:27 - 2018-03-24 01:05 - 000320032 _____ (NVIDIA Corporation PE Sign v2016 -> NVIDIA Corporation) [File not signed] C:\Program Files\NVIDIA Corporation\Display.NvContainer\plugins\LocalSystem\NvStereo\_nvstapisvr.dll
2013-01-29 09:46 - 2013-01-11 12:39 - 000088576 _____ (pdfforge GbR) [File not signed] C:\Windows\System32\pdfcmon.dll
2013-01-09 17:24 - 2013-01-09 17:24 - 000299008 _____ (The cURL library, hxxp://curl.haxx.se/) [File not signed] C:\Program Files\PDF Architect\libcurl.dll
2013-01-09 17:24 - 2013-01-09 17:24 - 001122304 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\PDF Architect\LIBEAY32.dll
2013-01-09 17:24 - 2013-01-09 17:24 - 000274432 _____ (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\PDF Architect\SSLEAY32.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\amsdk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\amsdk.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:04 - 2019-07-09 20:38 - 000000841 _____ C:\Windows\system32\drivers\etc\hosts

127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-220579093-4111955792-2631698323-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Tomas\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.0.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is disabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.

MSCONFIG\startupreg: APSDaemon => "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} => "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
MSCONFIG\startupreg: DAEMON Tools Lite => "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
MSCONFIG\startupreg: NeroFilterCheck => C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
MSCONFIG\startupreg: SpybotSD TeaTimer => C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
MSCONFIG\startupreg: WinampAgent => "C:\Program Files\Winamp\winampa.exe"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe (Microsoft Windows -> Microsoft Corporation)
FirewallRules: [TCP Query User{C67C718A-DFCB-456A-AFBC-7FB96E6D38FC}C:\totalcmd\totalcmd.exe] => (Allow) C:\totalcmd\totalcmd.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [UDP Query User{57918CAB-9436-47B8-9FF5-489A28B9D73E}C:\totalcmd\totalcmd.exe] => (Allow) C:\totalcmd\totalcmd.exe (Ghisler Software GmbH -> Ghisler Software GmbH)
FirewallRules: [TCP Query User{8B3C8B01-3F1F-4F8E-92AA-E0ABD589977C}C:\program files\qip infium\infium.exe] => (Allow) C:\program files\qip infium\infium.exe (OOO Russkie Internet Reshenija -> QIP) [File not signed]
FirewallRules: [UDP Query User{9B3EB9EC-2490-4387-97FA-5834700DBE36}C:\program files\qip infium\infium.exe] => (Allow) C:\program files\qip infium\infium.exe (OOO Russkie Internet Reshenija -> QIP) [File not signed]
FirewallRules: [{D80BF07A-76E9-4896-A4B0-35DF0474A817}] => (Allow) C:\Program Files\Windows Live\Contacts\wlcomm.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{7AAABA21-67F3-4FF7-9A15-BE5ECD2CB03C}] => (Allow) LPort=2869
FirewallRules: [{CB972AE0-0597-47C2-B249-01C4556F874F}] => (Allow) LPort=1900
FirewallRules: [{55FC9967-2E0F-47D6-AC81-3D1DB1748D23}] => (Allow) C:\Program Files\Windows Live\Mesh\MOE.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [TCP Query User{ADFFCA5B-73AD-40E8-A1F2-7FB92768E11C}C:\program files\nero\nero 7\nero showtime\showtime.exe] => (Allow) C:\program files\nero\nero 7\nero showtime\showtime.exe (Nero AG -> Nero AG)
FirewallRules: [UDP Query User{117BC226-CDB0-4DAC-A607-6A31DA8F5854}C:\program files\nero\nero 7\nero showtime\showtime.exe] => (Allow) C:\program files\nero\nero 7\nero showtime\showtime.exe (Nero AG -> Nero AG)
FirewallRules: [TCP Query User{9AEC2AFD-0E6A-4512-8256-85864EBD6352}C:\program files\flatout\flatout.exe] => (Allow) C:\program files\flatout\flatout.exe () [File not signed]
FirewallRules: [UDP Query User{38AB0C46-3F3D-4452-BB2D-229C86B78200}C:\program files\flatout\flatout.exe] => (Allow) C:\program files\flatout\flatout.exe () [File not signed]
FirewallRules: [{EE7621C0-174F-4A90-B98C-FD98C229D510}] => (Block) C:\program files\flatout\flatout.exe () [File not signed]
FirewallRules: [{671DA756-B9D4-4157-84D2-FFC9ABE80B57}] => (Block) C:\program files\flatout\flatout.exe () [File not signed]
FirewallRules: [{A3E5D68F-A7E2-4730-A4AC-F7FAADED5C00}] => (Allow) C:\Program Files\nokia\nokia suite\nokiasuite.exe (Nokia -> Nokia)
FirewallRules: [TCP Query User{18E7A82D-EC64-44F7-92EF-8AF3F09287DE}C:\program files\mozilla firefox\plugin-container.exe] => (Block) C:\program files\mozilla firefox\plugin-container.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [UDP Query User{36CDF7D0-B2EE-4430-A543-3B8BD26D7509}C:\program files\mozilla firefox\plugin-container.exe] => (Block) C:\program files\mozilla firefox\plugin-container.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{B1735053-C9E9-4B62-B30C-FCB6FD7C8DA4}] => (Allow) C:\Windows\System32\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{4461A908-875A-4C91-9ED8-4C7C751E94D6}] => (Allow) C:\Windows\System32\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{B378BB01-071F-4ADF-9F51-B200CB48871A}] => (Allow) C:\Windows\System32\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{58EB6031-1500-4ADF-92DF-9854A470A09D}] => (Allow) C:\Windows\System32\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{F324B2EB-0C7E-4F9B-9938-47BF00349F3E}] => (Allow) C:\Program Files\Activision\Call of Duty - World at War\CoDWaWmp.exe (Activision Publishing -> Activision Blizzard, Inc.)
FirewallRules: [{C300DFEE-9997-48CB-A6D7-2872E95F0AD6}] => (Allow) C:\Program Files\Activision\Call of Duty - World at War\CoDWaWmp.exe (Activision Publishing -> Activision Blizzard, Inc.)
FirewallRules: [{2FB22232-B641-4E70-954A-FF073F78E100}] => (Allow) C:\Program Files\Activision\Call of Duty - World at War\CoDWaW.exe (Activision Blizzard, Inc.) [File not signed]
FirewallRules: [{EC6DDD97-B5BA-40D0-A2AC-00A8CD0ECA2E}] => (Allow) C:\Program Files\Activision\Call of Duty - World at War\CoDWaW.exe (Activision Blizzard, Inc.) [File not signed]
FirewallRules: [{0655B394-A525-4B16-998B-78FAEE95D773}] => (Allow) C:\Program Files\nokia\nokia suite\nokiasuite.exe (Nokia -> Nokia)
FirewallRules: [{83543B8F-5847-48DC-AAD2-8F4E8E6F77E3}] => (Allow) C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe (Apple Inc. -> Apple Inc.)
FirewallRules: [{43005F2B-6611-4022-B97F-A9B9A179E11E}] => (Allow) C:\Program Files\nokia\nokia suite\nokiasuite.exe (Nokia -> Nokia)
FirewallRules: [{C35C26B6-FDD7-4332-B0B4-190E98097AB5}] => (Allow) C:\Program Files\nokia\nokia suite\nokiasuite.exe (Nokia -> Nokia)
FirewallRules: [{539900E8-D2E1-404D-9CEE-0F7520D60A5D}] => (Allow) LPort=4481
FirewallRules: [{42F632A4-B1C8-4A03-B15F-6455E2A6DDD4}] => (Allow) LPort=4481
FirewallRules: [{51E73AF1-C5CC-4A4D-9EE4-C7ADA25B5561}] => (Allow) LPort=4482
FirewallRules: [{CBDEF7D7-7A87-4D50-B009-7CAA0E85FF31}] => (Allow) LPort=4482
FirewallRules: [{B119CFB2-017A-4670-BE19-AC8150C2F232}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{484C2FD3-504E-4C62-938F-E762EE4C3043}] => (Allow) C:\Program Files\nokia\nokia suite\nokiasuite.exe (Nokia -> Nokia)
FirewallRules: [{31ADEA82-5D3D-421F-A036-8CDFE9E366C8}] => (Allow) C:\Windows\System32\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{EF7B58F5-9FBC-4D7D-84DA-F4A13A181F66}] => (Allow) C:\Windows\System32\PnkBstrA.exe (Even Balance, Inc. -> )
FirewallRules: [{CC301F19-9BE1-46C5-9E4A-D1B03B594CE5}] => (Allow) C:\Windows\System32\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{70EFAE60-88F1-47AF-B8FE-79C2E8466082}] => (Allow) C:\Windows\System32\PnkBstrB.exe (Even Balance, Inc. -> )
FirewallRules: [{EE1ACAF0-830A-446F-B35B-7C72651EE6D6}] => (Allow) C:\Program Files\Activision\Call of Duty - World at War\CoDWaWmp.exe (Activision Publishing -> Activision Blizzard, Inc.)
FirewallRules: [{E5A4CD08-2B4C-40A8-9967-3F57CFDA9E58}] => (Allow) C:\Program Files\Activision\Call of Duty - World at War\CoDWaWmp.exe (Activision Publishing -> Activision Blizzard, Inc.)
FirewallRules: [{BBC024D9-8A97-4D0D-AA7A-9843AF991EDF}] => (Allow) C:\Program Files\Activision\Call of Duty - World at War\CoDWaW.exe (Activision Blizzard, Inc.) [File not signed]
FirewallRules: [{794E30DD-1812-4AF4-A990-9B3DFBDB6BEE}] => (Allow) C:\Program Files\Activision\Call of Duty - World at War\CoDWaW.exe (Activision Blizzard, Inc.) [File not signed]
FirewallRules: [{B71A4F7B-DCB9-4CE0-8B6E-040471FA5FDD}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{D150600A-BBEE-4D8B-A660-573C3739C8D7}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{7B175F71-B2CF-4B8A-B8BB-08EC68291BE2}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{D1D084CA-0604-45CA-B254-53EDF6E5CD43}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{E593101D-35D3-400B-BD4D-DCB4C38E364E}] => (Allow) C:\Program Files\Siemens\LOGOComfort_V8\LOGOComfort.exe () [File not signed]
FirewallRules: [{B223F5E1-4973-443E-84ED-2689CB67DB3A}] => (Allow) C:\Program Files\Siemens\LOGOComfort_V8\LOGOComfort.exe () [File not signed]
FirewallRules: [{CA07F13C-A99B-4886-A6DD-B89BBAE67301}] => (Allow) C:\Program Files\Siemens\LOGOComfort_V8\LOGOComfort.exe () [File not signed]
FirewallRules: [{02C0EC8D-5F9D-44F4-AEDA-A831CBF52E0F}] => (Allow) C:\Program Files\Siemens\LOGOComfort_V8\LOGOComfort.exe () [File not signed]
FirewallRules: [{82BB2E19-9BBB-467D-A7C8-67EE6AACF813}] => (Allow) C:\Program Files\nokia\nokia suite\nokiasuite.exe (Nokia -> Nokia)
FirewallRules: [{D4C25518-C87E-4C91-BCB7-6918B181A888}] => (Allow) C:\Users\Tomas\AppData\Local\Microsoft\OneDrive\OneDrive.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{0B0FBDFA-D358-4F41-9481-7D17D96D7159}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F08231B4-020E-4387-AA8E-7E1BC92D7780}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{25DC3CBE-D38F-4928-84B3-41C00D379DFE}] => (Allow) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{BBE379F1-2F90-43CD-8DE2-375873C1A20B}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{F93331FA-C164-4D6A-B1D2-00DBF43E51CF}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe (NVIDIA Corporation -> NVIDIA Corporation)
FirewallRules: [{CB0BC5DC-559B-40E7-8874-B976997C0F6D}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{1BB68A39-740B-4B09-A609-825A23FD1B04}] => (Allow) C:\Program Files\CCleaner\CCUpdate.exe (Piriform Software Ltd -> Piriform Software Ltd)
FirewallRules: [{4A5E1FFC-761B-4998-9ACD-0677E41E8F38}] => (Allow) C:\Program Files\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{676A359E-1905-40B0-B954-6BF11FA62463}] => (Allow) C:\Program Files\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{A83709D4-4767-408C-9745-BE58E7D5B5D9}] => (Allow) C:\Program Files\AVAST Software\Browser\Application\AvastBrowser.exe (AVAST Software s.r.o. -> AVAST Software)

==================== Restore Points =========================

09-07-2019 20:38:05 zoek.exe restore point
09-07-2019 22:52:18 Windows Update
15-07-2019 15:47:26 bod obnoveni

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (07/15/2019 09:43:18 PM) (Source: BROWSER) (EventID: 8032) (User: )
Description: \Device\NetBT_Tcpip_{A1771C71-A26E-402A-BE43-360DFE8B36AF}

Error: (07/15/2019 09:42:28 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (07/15/2019 09:12:38 PM) (Source: Customer Experience Improvement Program) (EventID: 1008) (User: )
Description: Problém zabránil odeslání dat programu Zlepšování softwaru a služeb na základě zkušeností uživatelů společnosti Microsoft, (chyba 80004005).

Error: (07/15/2019 08:46:55 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (07/15/2019 08:38:59 PM) (Source: BROWSER) (EventID: 8032) (User: )
Description: \Device\NetBT_Tcpip_{A1771C71-A26E-402A-BE43-360DFE8B36AF}

Error: (07/15/2019 08:38:10 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (07/15/2019 08:25:39 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.

Error: (07/15/2019 06:04:54 PM) (Source: MsiInstaller) (EventID: 11316) (User: NT AUTHORITY)
Description: Product: Avast Update Helper -- Error 1316. Zadaný účet již existuje.


System errors:
=============
Error: (07/15/2019 08:29:33 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Služba seznamu sítí závisí na službě Sledování umístění v síti (NLA), která neuspěla při spuštění v důsledku následující chyby:
Nepodařilo se zahájit závislou službu nebo skupinu.

Error: (07/15/2019 08:29:04 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Služba seznamu sítí závisí na službě Sledování umístění v síti (NLA), která neuspěla při spuštění v důsledku následující chyby:
Nepodařilo se zahájit závislou službu nebo skupinu.

Error: (07/15/2019 08:29:04 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Služba seznamu sítí závisí na službě Sledování umístění v síti (NLA), která neuspěla při spuštění v důsledku následující chyby:
Nepodařilo se zahájit závislou službu nebo skupinu.

Error: (07/15/2019 08:29:04 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Služba seznamu sítí závisí na službě Sledování umístění v síti (NLA), která neuspěla při spuštění v důsledku následující chyby:
Nepodařilo se zahájit závislou službu nebo skupinu.

Error: (07/15/2019 08:29:04 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Služba seznamu sítí závisí na službě Sledování umístění v síti (NLA), která neuspěla při spuštění v důsledku následující chyby:
Nepodařilo se zahájit závislou službu nebo skupinu.

Error: (07/15/2019 08:29:04 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Služba seznamu sítí závisí na službě Sledování umístění v síti (NLA), která neuspěla při spuštění v důsledku následující chyby:
Nepodařilo se zahájit závislou službu nebo skupinu.

Error: (07/15/2019 08:29:04 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Služba seznamu sítí závisí na službě Sledování umístění v síti (NLA), která neuspěla při spuštění v důsledku následující chyby:
Nepodařilo se zahájit závislou službu nebo skupinu.

Error: (07/15/2019 08:29:03 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Služba seznamu sítí závisí na službě Sledování umístění v síti (NLA), která neuspěla při spuštění v důsledku následující chyby:
Nepodařilo se zahájit závislou službu nebo skupinu.


Windows Defender:
===================================
Date: 2015-06-09 21:36:34.969
Description:
Prohledávání Windows Defender rozpoznalo spyware nebo jiný potenciálně nežádoucí software.
Další informace:
http://go.microsoft.com/fwlink/?linkid= ... tid=208273
Název:SoftwareBundler:Win32/InstalleRex
ID:208273
Závažnost:Vysoké
Kategorie:Software instalující další produkty
Nalezeno v cestě:file:C:\ProgramData\{a98b988d-49d3-4d74-a98b-b988d49d6235}\download.exe;file:C:\Windows\System32\Tasks\Bidaily Synchronize Task[973b];file:C:\Windows\Tasks\Bidaily Synchronize Task[973b].job;process:pid:5376;taskscheduler:C:\Windows\System32\Tasks\Bidaily Synchronize Task[973b];taskscheduler:C:\Windows\Tasks\Bidaily Synchronize Task[973b].job
Typ zjišťování:Konkrétní
Zdroj zjišťování:Ochrana v reálném čase
Stav:Neznámý
Uživatel:\
Název procesu:

Date: 2015-06-09 21:36:02.332
Description:
Prohledávání Windows Defender rozpoznalo spyware nebo jiný potenciálně nežádoucí software.
Další informace:
http://go.microsoft.com/fwlink/?linkid= ... tid=208273
Název:SoftwareBundler:Win32/InstalleRex
ID:208273
Závažnost:Vysoké
Kategorie:Software instalující další produkty
Nalezeno v cestě:file:C:\ProgramData\{a98b988d-49d3-4d74-a98b-b988d49d6235}\download.exe;process:pid:5376
Typ zjišťování:Konkrétní
Zdroj zjišťování:Ochrana v reálném čase
Stav:Neznámý
Uživatel:\
Název procesu:

==================== Memory info ===========================

BIOS: Award Software International, Inc. F6 08/31/2010
Motherboard: Gigabyte Technology Co., Ltd. GA-880GM-D2H
Processor: AMD Athlon(tm) II X2 265 Processor
Percentage of memory in use: 97%
Total physical RAM: 3069.55 MB
Available physical RAM: 81.41 MB
Total Virtual: 6137.48 MB
Available Virtual: 2939.05 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:465.66 GB) (Free:343.54 GB) NTFS
Drive f: () (Fixed) (Total:298.08 GB) (Free:111.37 GB) NTFS

\\?\Volume{e00ecdd2-2935-11e8-86d4-806e6f6e6963}\ () (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 298.1 GB) (Disk ID: EAEDEAED)
Partition 1: (Active) - (Size=298.1 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 465.8 GB) (Disk ID: 10D9B258)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 39709
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: Prosím o kontrolu logu, využití procesoru na 100%

Příspěvekod jaro3 » 15 črc 2019 23:12

Odinstaluj:
Spybot - Search & Destroy ( pokud najdeš)


Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.

Kód: Vybrat vše

Start
CreateRestorePoint:
CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-220579093-4111955792-2631698323-1000\...\MountPoints2: {4246243a-1447-11e1-bbf3-1c6f65d600cc} - E:\setup.EXE /AUTORUN
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {1FED3B0B-A843-4422-800C-478D563337F7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {910A8706-CE17-4961-B1A9-A3F69DF31DC0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
SearchScopes: HKU\S-1-5-21-220579093-4111955792-2631698323-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-220579093-4111955792-2631698323-1000 -> {A7B23918-9EB9-4FB1-B018-C71F3610407E} URL = hxxp://www.google.cz/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}
FF Extension: (No Name) - C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\2bcixo24.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2019-04-30]
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
R2 SBSDWSCService; C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe [1153368 2009-01-26] (Safer Networking Ltd. -> Safer Networking Ltd.)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => -> No File

Virustotal: C:\Users\Tomas\AppData\Roaming\mdbu.bin

EmptyTemp:
End

(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).

Ulož jej na na plochu jako fixlist.txt


Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

Tomas438
nováček
Příspěvky: 19
Registrován: červen 19
Pohlaví: Muž

Re: Prosím o kontrolu logu, využití procesoru na 100%

Příspěvekod Tomas438 » 16 črc 2019 16:00

Fix result of Farbar Recovery Scan Tool (x86) Version: 15-07-2019 01
Ran by Tomas (16-07-2019 15:53:21) Run:1
Running from C:\Users\Tomas\Desktop
Loaded Profiles: Tomas (Available Profiles: Tomas & mamina)
Boot Mode: Normal

==============================================

fixlist content:
*****************
Start
CreateRestorePoint:
CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-220579093-4111955792-2631698323-1000\...\MountPoints2: {4246243a-1447-11e1-bbf3-1c6f65d600cc} - E:\setup.EXE /AUTORUN
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {1FED3B0B-A843-4422-800C-478D563337F7} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
Task: {910A8706-CE17-4961-B1A9-A3F69DF31DC0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [144200 2015-08-31] (Google Inc -> Google Inc.)
SearchScopes: HKU\S-1-5-21-220579093-4111955792-2631698323-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-220579093-4111955792-2631698323-1000 -> {A7B23918-9EB9-4FB1-B018-C71F3610407E} URL = hxxp://www.google.cz/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}
FF Extension: (No Name) - C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\2bcixo24.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2019-04-30]
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN -> VideoLAN)
R2 SBSDWSCService; C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe [1153368 2009-01-26] (Safer Networking Ltd. -> Safer Networking Ltd.)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => -> No File

Virustotal: C:\Users\Tomas\AppData\Roaming\mdbu.bin

EmptyTemp:
End
*****************

Restore point was successfully created.
Processes closed successfully.
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => removed successfully.
HKU\S-1-5-21-220579093-4111955792-2631698323-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4246243a-1447-11e1-bbf3-1c6f65d600cc} => removed successfully.
HKLM\Software\Classes\CLSID\{4246243a-1447-11e1-bbf3-1c6f65d600cc} => not found
HKLM\SOFTWARE\Policies\Mozilla => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1FED3B0B-A843-4422-800C-478D563337F7}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1FED3B0B-A843-4422-800C-478D563337F7}" => removed successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{910A8706-CE17-4961-B1A9-A3F69DF31DC0}" => removed successfully.
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{910A8706-CE17-4961-B1A9-A3F69DF31DC0}" => removed successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully.
HKU\S-1-5-21-220579093-4111955792-2631698323-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} => removed successfully.
HKLM\Software\Classes\CLSID\{012E1000-F331-11DB-8314-0800200C9A66} => not found
HKU\S-1-5-21-220579093-4111955792-2631698323-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{A7B23918-9EB9-4FB1-B018-C71F3610407E} => removed successfully.
HKLM\Software\Classes\CLSID\{A7B23918-9EB9-4FB1-B018-C71F3610407E} => not found
C:\Users\Tomas\AppData\Roaming\Mozilla\Firefox\Profiles\2bcixo24.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi => moved successfully
HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE => removed successfully.
"HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN" => not found
C:\Program Files\VideoLAN\VLC\npvlc.dll => moved successfully
"HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN" => not found
"C:\Program Files\VideoLAN\VLC\npvlc.dll" => not found
SBSDWSCService => service not found.
HKLM\Software\Classes\Directory\Background\ShellEx\ContextMenuHandlers\ACE => removed successfully.
HKLM\Software\Classes\CLSID\{5E2121EE-0300-11D4-8D3B-444553540000} => not found
VirusTotal: C:\Users\Tomas\AppData\Roaming\mdbu.bin => https://www.virustotal.com/file/abb57f0 ... 563285242/

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 8650069 B
Java, Flash, Steam htmlcache => 1154 B
Windows/system/drivers => 633337 B
Edge => 0 B
Chrome => 100542 B
Firefox => 70193966 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 33058 B
Public => 0 B
ProgramData => 0 B
systemprofile => 33490 B
LocalService => 33125 B
NetworkService => 33765 B
Tomas => 36454240 B
mamina => 6775997 B

RecycleBin => 1760 B
EmptyTemp: => 125.2 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 15:54:02 ====

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 39709
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: Prosím o kontrolu logu, využití procesoru na 100%

Příspěvekod jaro3 » 16 črc 2019 18:23

Stáhni si CrystalDiskInfo
Spusť program a klikni na Úpravy-Kopírovat. Poté sem vlož pomocí Ctrl+V obsah logu.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra

Tomas438
nováček
Příspěvky: 19
Registrován: červen 19
Pohlaví: Muž

Re: Prosím o kontrolu logu, využití procesoru na 100%

Příspěvekod Tomas438 » 16 črc 2019 20:32

----------------------------------------------------------------------------
CrystalDiskInfo 8.2.0 (C) 2008-2019 hiyohiyo
Crystal Dew World : https://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 7 Professional SP1 [6.1 Build 7601] (x86)
Date : 2019/07/16 20:30:55

-- Controller Map ----------------------------------------------------------
+ ATA Channel 1 (1) [ATA]
- ST3320613AS ATA Device
+ ATA Channel 0 (0) [ATA]
- HL-DT-ST DVDRAM GSA-4167B ATA Device
- ATA Channel 1 (1) [ATA]
+ PCI Standardní dvoukanálový řadič IDE [ATA]
- ATA Channel 0 (0)
- ATA Channel 1 (1)
+ PCI Standardní dvoukanálový řadič IDE [ATA]
+ ATA Channel 0 (0)
- Samsung SSD 850 EVO 500GB ATA Device
- ATA Channel 1 (1)

-- Disk List ---------------------------------------------------------------
(1) ST3320613AS : 320,0 GB [0/1/0, pd1] - st
(2) Samsung SSD 850 EVO 500GB : 500,1 GB [1/0/0, pd1] - sg

----------------------------------------------------------------------------
(1) ST3320613AS
----------------------------------------------------------------------------
Model : ST3320613AS
Firmware : SD11
Serial Number : 9SZ06ELH
Disk Size : 320,0 GB (8,4/137,4/320,0/320,0)
Buffer Size : 16384 KB
Queue Depth : 32
# of Sectors : 625142448
Rotation Rate : 7200 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 4
Transfer Mode : ---- | SATA/300
Power On Hours : 14105 hod.
Power On Count : 4497 krát
Temperature : 27 C (80 F)
Health Status : Dobrý
Features : S.M.A.R.T., 48bit LBA, NCQ
APM Level : ----
AAM Level : ----
Drive Letter : F:

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 117 _99 __6 00000955BF8A Počet chyb čtení
03 _97 _91 __0 000000000000 Čas na roztočení ploten
04 _94 _94 _20 000000001AD5 Počet spuštění/zastavení
05 100 100 _36 000000000000 Počet přemapovaných sektorů
07 _72 _60 _30 000E13376595 Počet chybných hledání
09 _84 _84 __0 000000003719 Hodin v činnosti
0A 100 100 _97 000000000010 Počet opakovaných pokusů o roztočení ploten
0C _96 _96 _20 000000001191 Počet cyklů zapnutí zařízení
B8 100 100 _99 000000000000 Ukončovacích chyb
BB 100 100 __0 000000000000 Ohlášeno neopravitelných chyb
BC 100 _99 __0 00010001005E Časový limit příkazu
BD 100 100 __0 000000000000 Vysoká rychlost zápisu
BE _73 _42 _45 00061B19001B Teplota toku vzduchu
C2 _27 _58 __0 000C0000001B Teplota
C3 _33 _25 __0 00000955BF8A Počet oprav chybného čtení
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0C5A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2020 2020 2020 2020 3953 5A30 3645 4C48
020: 0000 8000 0004 5344 3131 2020 2020 5354 3333 3230
030: 3631 3341 5320 2020 2020 2020 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4000 0200 0200 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 0506 0000 0048 0040
080: 01F0 0029 346B 7D01 4023 3469 BC01 4023 407F 001B
090: 001B 0000 FFFE 0000 FE00 0000 0000 0000 0000 0000
100: EAB0 2542 0000 0000 0000 0000 0000 0000 0000 0000
110: 0000 0000 0000 0000 0000 0000 0000 0000 0000 400E
120: 400C 0000 0000 0000 0000 0000 0000 0000 0029 EAB0
130: 2542 EAB0 2542 0000 0002 0140 0100 5000 3C06 3C0A
140: 0000 003C 0000 0008 0000 0000 000F 0280 0000 0000
150: 0008 0000 0000 0000 0000 0000 0000 0000 2D00 8000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 103B 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 1C20 0000 0000
220: 0000 0000 1010 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 D9A5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 0A 00 01 0F 00 75 63 8A BF 55 09 00 00 00 03 03
010: 00 61 5B 00 00 00 00 00 00 00 04 32 00 5E 5E D5
020: 1A 00 00 00 00 00 05 33 00 64 64 00 00 00 00 00
030: 00 00 07 0F 00 48 3C 95 65 37 13 0E 00 00 09 32
040: 00 54 54 19 37 00 00 00 00 00 0A 13 00 64 64 10
050: 00 00 00 00 00 00 0C 32 00 60 60 91 11 00 00 00
060: 00 00 B8 32 00 64 64 00 00 00 00 00 00 00 BB 32
070: 00 64 64 00 00 00 00 00 00 00 BC 32 00 64 63 5E
080: 00 01 00 01 00 00 BD 3A 00 64 64 00 00 00 00 00
090: 00 00 BE 22 00 49 2A 1B 00 19 1B 06 00 00 C2 22
0A0: 00 1B 3A 1B 00 00 00 0C 00 00 C3 1A 00 21 19 8A
0B0: BF 55 09 00 00 00 C5 12 00 64 64 00 00 00 00 00
0C0: 00 00 C6 10 00 64 64 00 00 00 00 00 00 00 C7 3E
0D0: 00 C8 C8 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 82 00 58 02 00 7B
170: 03 00 01 00 01 3F 02 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 01 03 03 03 03 03 03 03
190: 03 00 00 00 00 00 00 00 00 01 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 62 FA 33 FD 2E 2E 00 00
1B0: 00 00 00 00 01 00 FF FF 52 3A 7C F1 49 00 00 00
1C0: 06 4F 70 5C 84 03 00 00 00 00 00 00 76 89 E7 13
1D0: 00 00 00 00 00 00 00 00 7E 00 00 00 27 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 3A
1F0: 10 00 00 00 00 00 00 00 00 00 00 00 00 00 00 CD

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 01 00 01 06 00 00 00 00 00 00 00 00 00 00 03 00
010: 00 00 00 00 00 00 00 00 00 00 04 14 00 00 00 00
020: 00 00 00 00 00 00 05 24 00 00 00 00 00 00 00 00
030: 00 00 07 1E 00 00 00 00 00 00 00 00 00 00 09 00
040: 00 00 00 00 00 00 00 00 00 00 0A 61 00 00 00 00
050: 00 00 00 00 00 00 0C 14 00 00 00 00 00 00 00 00
060: 00 00 B8 63 00 00 00 00 00 00 00 00 00 00 BB 00
070: 00 00 00 00 00 00 00 00 00 00 BC 00 00 00 00 00
080: 00 00 00 00 00 00 BD 00 00 00 00 00 00 00 00 00
090: 00 00 BE 2D 00 00 00 00 00 00 00 00 00 00 C2 00
0A0: 00 00 00 00 00 00 00 00 00 00 C3 00 00 00 00 00
0B0: 00 00 00 00 00 00 C5 00 00 00 00 00 00 00 00 00
0C0: 00 00 C6 00 00 00 00 00 00 00 00 00 00 00 C7 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 EA

----------------------------------------------------------------------------
(2) Samsung SSD 850 EVO 500GB
----------------------------------------------------------------------------
Model : Samsung SSD 850 EVO 500GB
Firmware : EMT03B6Q
Serial Number : S3R3NF0JB94699J
Disk Size : 500,1 GB (8,4/137,4/500,1/500,1)
Buffer Size : Neznámy údaj
Queue Depth : 32
# of Sectors : 976773168
Rotation Rate : ---- (SSD)
Interface : Serial ATA
Major Version : ACS-2
Minor Version : ATA8-ACS version 4c
Transfer Mode : SATA/300 | SATA/600
Power On Hours : 2721 hod.
Power On Count : 728 krát
Host Writes : 2265 GB
Wear Level Count : 3
Temperature : 32 C (89 F)
Health Status : Dobrý (100 %)
Features : S.M.A.R.T., 48bit LBA, NCQ, TRIM, DevSleep
APM Level : ----
AAM Level : ----
Drive Letter : C:

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
05 100 100 _10 000000000000 Reallocated Sector Count
09 _99 _99 __0 000000000AA1 Power-on Hours
0C _99 _99 __0 0000000002D8 Power-on Count
B1 _99 _99 __0 000000000003 Wear Leveling Count
B3 100 100 _10 000000000000 Used Reserved Block Count (Total)
B5 100 100 _10 000000000000 Program Fail Count (Total)
B6 100 100 _10 000000000000 Erase Fail Count (Total)
B7 100 100 _10 000000000000 Runtime Bad Block (Total)
BB 100 100 __0 000000000000 Uncorrectable Error Count
BE _68 _57 __0 000000000020 Airflow Temperature
C3 200 200 __0 000000000000 ECC Error Rate
C7 100 100 __0 000000000000 CRC Error Count
EB _99 _99 __0 000000000005 POR Recovery Count
F1 _99 _99 __0 00011B219B0F Total LBA Written

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0040 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 5333 5233 4E46 304A 4239 3436 3939 4A20 2020 2020
020: 0000 0000 0000 454D 5430 3342 3651 5361 6D73 756E
030: 6720 5353 4420 3835 3020 4556 4F20 3530 3047 4220
040: 2020 2020 2020 2020 2020 2020 2020 8001 4001 2F00
050: 4000 0200 0200 0007 3FFF 0010 003F FC10 00FB 0101
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0F10
070: 0000 0000 0000 0000 0000 001F 850E 00C4 016C 0060
080: 03FC 0039 746B 7D01 4163 7469 BC01 4163 407F 0001
090: 0004 0000 FFFE 0000 0000 0000 0000 0000 0000 0000
100: 6030 3A38 0000 0000 0000 0008 4000 0000 5002 538D
110: 4271 78FB 0000 0000 0000 0000 0000 0000 0000 401E
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 0000
130: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0003 0001
170: 2020 2020 2020 2020 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 003D 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 0001 0000 0000
220: 0000 0000 107F 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0800 0000 0000 0000 0000
240: 0000 0000 0000 4000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 16A5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 01 00 05 33 00 64 64 00 00 00 00 00 00 00 09 32
010: 00 63 63 A1 0A 00 00 00 00 00 0C 32 00 63 63 D8
020: 02 00 00 00 00 00 B1 13 00 63 63 03 00 00 00 00
030: 00 00 B3 13 00 64 64 00 00 00 00 00 00 00 B5 32
040: 00 64 64 00 00 00 00 00 00 00 B6 32 00 64 64 00
050: 00 00 00 00 00 00 B7 13 00 64 64 00 00 00 00 00
060: 00 00 BB 32 00 64 64 00 00 00 00 00 00 00 BE 32
070: 00 44 39 20 00 00 00 00 00 00 C3 1A 00 C8 C8 00
080: 00 00 00 00 00 00 C7 3E 00 64 64 00 00 00 00 00
090: 00 00 EB 12 00 63 63 05 00 00 00 00 00 00 F1 32
0A0: 00 63 63 0F 9B 21 1B 01 00 00 00 00 00 00 00 00
0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 53
170: 03 00 01 00 02 FF 00 09 01 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 F3

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 01 00 05 0A 00 00 00 00 00 00 00 00 00 00 09 00
010: 00 00 00 00 00 00 00 00 00 00 0C 00 00 00 00 00
020: 00 00 00 00 00 00 B1 00 00 00 00 00 00 00 00 00
030: 00 00 B3 0A 00 00 00 00 00 00 00 00 00 00 B5 0A
040: 00 00 00 00 00 00 00 00 00 00 B6 0A 00 00 00 00
050: 00 00 00 00 00 00 B7 0A 00 00 00 00 00 00 00 00
060: 00 00 BB 00 00 00 00 00 00 00 00 00 00 00 BE 00
070: 00 00 00 00 00 00 00 00 00 00 C3 00 00 00 00 00
080: 00 00 00 00 00 00 C7 00 00 00 00 00 00 00 00 00
090: 00 00 EB 00 00 00 00 00 00 00 00 00 00 00 F1 00
0A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 4E

Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 39709
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž

Re: Prosím o kontrolu logu, využití procesoru na 100%

Příspěvekod jaro3 » 16 črc 2019 21:03

(1) ST3320613AS
000000000010 Počet opakovaných pokusů o roztočení ploten
Spin Retry Count
Počet opakovaných pokusů o roztočení ploten. Pokud není rovno nule, zálohujte.

00010001005E Časový limit příkazu
Časový limit - príkaz Command Timeout Počet operací, které byly přerušené kvůli časovému limitu pro pevný disk. Za normálních okolností by se tato hodnota měla rovnat nule. Jestliže je hodnota vyšší než nula, pravděpodobně jsou nějaké problémy s napájením, nebo je datový kabel zoxidovaný. Vyměň datový kabel SATA a dej ho do jiného konektoru SATA.

(2) Samsung SSD 850 EVO 500GB
000000000005 POR Recovery Count
Power Recovery Count

A count of the number of sudden power off cases. If there is a sudden power off, the firmware must recover all of the mapping and user data during the next power on. This is a count of the number of times this has happened.
Počet případů náhlého vypnutí. Pokud dojde k náhlému vypnutí, firmware musí během příštího zapnutí obnovit všechna mapovací a uživatelská data. To je počet, kolikrát se to stalo.


Pokud jsou stále problémy:
Stáhni si Memtest:

Políčko , ve kterém je napsáno:
All unused RAM , změň na 2048.
-dej Start , nech nejméně 2h běžet , pokud bude po 2h stále 0 errors , jsou v pořádku.
V případě vyšších kapacit RAM je třeba Memtest spustit několikrát , pro 2GB ( jednotlivá největší kapacita RAM) 2x , pro 4GB 3x , pro 8Gb 4x ap.
poklepej na Memtest , pak znovu a znovu , do políček všech Memtestů napiš 2048 , pak dej u všech Memtestů "Start".
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra


Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: CommonCrawl [Bot] a 6 hostů