Zatížení grafické karty: nejspíše vir

mikrosini · Příspěvekod **mikrosini** » 04 led 2015 19:29

Zoek.exe v5.0.0.0 Updated 31-12-2014
Tool run by Mario Flachs on ne 04. 01. 2015 at 19:16:09,11.
Microsoft Windows 8.1 Pro 6.3.9600 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Mario Flachs\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

4. 1. 2015 19:16:49 Zoek.exe System Restore Point Created Succesfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

127.0.0.1 localhost

==== Empty Folders Check ======================

C:\PROGRA~2\COMMON~1\EAInstaller deleted successfully
C:\PROGRA~2\COMMON~1\Services deleted successfully
C:\PROGRA~3\{BAF091CA-86C4-4627-ADA1-897E2621C1B0} deleted successfully
C:\Users\Mario Flachs\AppData\Roaming\Publish Providers deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-403370392-2708246811-2563906322-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} deleted successfully
HKEY_USERS\S-1-5-21-403370392-2708246811-2563906322-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} deleted successfully
HKEY_USERS\S-1-5-21-403370392-2708246811-2563906322-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DBC80044-A445-435b-BC74-9C25C1C588A9} deleted successfully
HKEY_USERS\S-1-5-21-403370392-2708246811-2563906322-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{DBC80044-A445-435b-BC74-9C25C1C588A9} deleted successfully
HKEY_USERS\S-1-5-21-403370392-2708246811-2563906322-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{7AEFE841-DCA1-4A95-80CB-BE935D020501} deleted successfully
HKEY_USERS\S-1-5-21-403370392-2708246811-2563906322-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7AEFE841-DCA1-4A95-80CB-BE935D020501} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7AEFE841-DCA1-4A95-80CB-BE935D020501} deleted successfully

==== Deleting CLSID Registry Values ======================

==== Deleting Services ======================

==== Deleting Files \ Folders ======================

C:\PROGRA~3\{BAF091CA-86C4-4627-ADA1-897E2621C1B0} not found
C:\PROGRA~3\ProductData deleted
C:\PROGRA~3\Package Cache deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\Windows\SysNative\config\systemprofile\Searches deleted
C:\windows\SysNative\GroupPolicy\Machine deleted
C:\windows\SysNative\GroupPolicy\User deleted
C:\windows\SysNative\GroupPolicy\gpt.ini deleted

==== Chromium Look ======================

Google Chrome Version: 39.0.2171.95 (Up to date, latest Stable version: 39.0.2171.95)

µBlock - Mario Flachs\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm

==== Chromium Fix ======================

C:\Users\Mario Flachs\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_savesforgames.com_0.localstorage deleted successfully
C:\Users\Mario Flachs\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_savesforgames.com_0.localstorage-journal deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"

==== Reset Google Chrome ======================

C:\Users\Mario Flachs\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Mario Flachs\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Mario Flachs\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\Mario Flachs\AppData\Local\Microsoft\Windows\INetCache\IE\356VQR68 will be deleted at reboot
C:\Users\Mario Flachs\AppData\Local\Microsoft\Windows\INetCache\IE\KMGY8ECJ will be deleted at reboot
C:\Users\Mario Flachs\AppData\Local\Microsoft\Windows\INetCache\IE\OQDXKFEI will be deleted at reboot
C:\Users\Mario Flachs\AppData\Local\Microsoft\Windows\INetCache\IE\SQL31IC8 will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\Mario Flachs\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=33 folders=39 27925896 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Mario Flachs\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\MARIOF~1\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\Mario Flachs\AppData\Local\Microsoft\Windows\INetCache\IE\356VQR68" not found
"C:\Users\Mario Flachs\AppData\Local\Microsoft\Windows\INetCache\IE\KMGY8ECJ" not found
"C:\Users\Mario Flachs\AppData\Local\Microsoft\Windows\INetCache\IE\OQDXKFEI" not found
"C:\Users\Mario Flachs\AppData\Local\Microsoft\Windows\INetCache\IE\SQL31IC8" not found

==== EOF on ne 04. 01. 2015 at 19:27:09,38 ======================

Reklama

Příspěvekod **Orcus** » 05 led 2015 09:26

Ještě TDSS.

mikrosini · Příspěvekod **mikrosini** » 06 led 2015 17:07

TDSS ? co to je

Příspěvekod **jaro3** » 06 led 2015 18:23

Stáhni si TDSSKiller
Na svojí plochu.Ujisti se , že máš zavřeny všechny ostatní aplikace a prohlížeče. Rozbal soubor a spusť TDSSKiller.exe. Restartuj PC . Log z TDSSKilleru najdeš zde:
C:\TDSSKiller. 2.8.16.0_(datum)_log.txt , vlož sem prosím celý obsah logu.
-pokud bude mít log více než 60.000 znaků , rozděl ho a vlož do více příspěvků

Prosím stáhni příslušnou verzi programu pro Tvůj systém 32-bit/64-bit FarbarRecovery Scan Tool (FrSt)
32bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/81/
64bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/82/
a ulož jej na plochu. ,pak spusť FrSt.
Potvrď způsob užití.
Neměň žádné z výchozích nastavení a klikni na položku „Scan“ („Skenovat“) .Když je skenování dokončeno, ukážou se dva logy = FRST.txt a Addition.txt a uloží se na ploše.Prosím zkopíruj sem celý jejich obsah.

mikrosini · Příspěvekod **mikrosini** » 07 led 2015 22:25

TDSS nejde stáhnout

mikrosini · Příspěvekod **mikrosini** » 07 led 2015 22:28

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 07-01-2015
Ran by Mario Flachs (administrator) on XXX on 07-01-2015 22:25:58
Running from C:\Users\Mario Flachs\Desktop
Loaded Profile: Mario Flachs (Available profiles: Mario Flachs)
Platform: Windows 8.1 Pro (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(HP) C:\Windows\System32\HPSIsvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Malwarebytes Corporation) D:\Aplikace\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) D:\Aplikace\Malwarebytes Anti-Malware\mbamservice.exe
() D:\Aplikace\Command Center\MSIControlService.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(AMD) C:\Windows\System32\atieclxx.exe
(Malwarebytes Corporation) D:\Aplikace\Malwarebytes Anti-Malware\mbam.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2014-11-20] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [AdobeCEPServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CEPServiceManager4\CEPServiceManager.exe [1039248 2013-03-13] (Adobe Systems Incorporated)
HKU\S-1-5-21-403370392-2708246811-2563906322-1001\...\Run: [DAEMON Tools Lite] => D:\Aplikace\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-403370392-2708246811-2563906322-1001\...\MountPoints2: {38084dba-7869-11e4-824f-806e6f6e6963} - "E:\DVDSetup.exe"
HKU\S-1-5-21-403370392-2708246811-2563906322-1001\...\Winlogon: [Shell] C:\Windows\explorer.exe [2501368 2014-10-29] (Microsoft Corporation) <==== ATTENTION
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} => D:\Aplikace\Office 2010\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 2 (GFS Stub)] -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => D:\Aplikace\Office 2010\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} => D:\Aplikace\Office 2010\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 3 (GFS Folder)] -> {16F3DD56-1AF5-4347-846D-7C10C4192619} => D:\Aplikace\Office 2010\Office14\GROOVEEX.DLL (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => D:\Aplikace\Office 2010\Office14\GROOVEEX.DLL (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-403370392-2708246811-2563906322-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-403370392-2708246811-2563906322-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> D:\Aplikace\Office 2010\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> D:\Aplikace\Office 2010\Office14\URLREDIR.DLL (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_15_0_0_246.dll ()
FF Plugin: @esn/npbattlelog,version=2.5.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelogx64.dll No File
FF Plugin: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_246.dll ()
FF Plugin-x32: @esn/npbattlelog,version=2.5.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelog.dll No File
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.25.2 -> D:\Aplikace\Java\bin\dtplugin\npDeployJava1.dll No File
FF Plugin-x32: @java.com/JavaPlugin,version=11.25.2 -> D:\Aplikace\Java\bin\plugin2\npjp2.dll No File
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> D:\Aplikace\Office 2010\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> D:\Aplikace\Office 2010\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> D:\Aplikace\VLC\npvlc.dll (VideoLAN)

Chrome:
=======
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/"
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\Mario Flachs\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\Mario Flachs\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-01-04]
CHR Extension: (Dokumenty Google) - C:\Users\Mario Flachs\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-01-04]
CHR Extension: (Disk Google) - C:\Users\Mario Flachs\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-12-06]
CHR Extension: (YouTube) - C:\Users\Mario Flachs\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-12-06]
CHR Extension: (µBlock) - C:\Users\Mario Flachs\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2014-12-30]
CHR Extension: (Vyhledávání Google) - C:\Users\Mario Flachs\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-12-06]
CHR Extension: (Světlo) - C:\Users\Mario Flachs\AppData\Local\Google\Chrome\User Data\Default\Extensions\dacdieigeclacgkdlmnojihknoblpafo [2014-12-06]
CHR Extension: (Tabulky Google) - C:\Users\Mario Flachs\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-01-04]
CHR Extension: (Peněženka Google) - C:\Users\Mario Flachs\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-12-04]
CHR Extension: (Gmail) - C:\Users\Mario Flachs\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-12-06]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
R2 MBAMScheduler; D:\Aplikace\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2014-11-21] (Malwarebytes Corporation)
R2 MBAMService; D:\Aplikace\Malwarebytes Anti-Malware\mbamservice.exe [969016 2014-11-21] (Malwarebytes Corporation)
S3 Microsoft SharePoint Workspace Audit Service; D:\Aplikace\Office 2010\Office14\GROOVE.EXE [30814400 2013-12-19] (Microsoft Corporation)
S3 MSIBIOSData_CC; D:\Aplikace\Command Center\BIOSData\MSIBIOSDataService.exe [2099712 2014-10-21] (MSI) [File not signed]
S3 MSIClock_CC; D:\Aplikace\Command Center\ClockGen\MSIClockService.exe [4026880 2014-09-26] (MSI) [File not signed]
S3 MSICOMM_CC; D:\Aplikace\Command Center\MSICommService.exe [2118656 2014-10-23] () [File not signed]
S3 MSICPU_CC; D:\Aplikace\Command Center\CPU\MSICPUService.exe [4157440 2014-09-26] () [File not signed]
R2 MSICTL_CC; D:\Aplikace\Command Center\MSIControlService.exe [1993216 2014-09-26] () [File not signed]
S3 MSIDDR_CC; D:\Aplikace\Command Center\DDR\MSIDDRService.exe [2242048 2014-10-21] () [File not signed]
S3 MSISMB_CC; D:\Aplikace\Command Center\SMBus\MSISMBService.exe [2063360 2014-07-28] () [File not signed]
S3 MSISuperIO_CC; D:\Aplikace\Command Center\SuperIO\MSISuperIOService.exe [550400 2014-09-25] () [File not signed]
S3 MSI_Trigger_Service; C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe [30240 2013-09-26] (MICRO-STAR INTERNATIONAL CO., LTD.)
S3 Origin Client Service; D:\Aplikace\Origin\OriginClientService.exe [1903472 2014-12-25] (Electronic Arts)
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76152 2014-12-07] ()
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-09-22] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2014-09-22] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [21160 2012-09-23] (Advanced Micro Devices, Inc.)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWB6.sys [223232 2014-06-21] (Advanced Micro Devices)
R3 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-12-18] (Disc Soft Ltd)
S3 Hamachi; C:\Windows\system32\DRIVERS\Hamdrv.sys [45112 2014-12-13] (LogMeIn Inc.)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2014-11-21] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\Windows\system32\drivers\MBAMSwissArmy.sys [129752 2015-01-07] (Malwarebytes Corporation)
R3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [64216 2014-11-21] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
S3 mvusbews; C:\Windows\System32\Drivers\mvusbews.sys [20480 2012-12-24] (Marvell Semiconductor, Inc.)
S3 NTIOLib_MSIClock_CC; D:\Aplikace\Command Center\ClockGen\NTIOLib_X64.sys [13368 2012-11-20] (MSI)
S3 NTIOLib_MSICOMM_CC; D:\Aplikace\Command Center\NTIOLib_X64.sys [13368 2012-11-19] (MSI)
S3 NTIOLib_MSICPU_CC; D:\Aplikace\Command Center\CPU\NTIOLib_X64.sys [13368 2012-11-20] (MSI)
S3 NTIOLib_MSIDDR_CC; D:\Aplikace\Command Center\DDR\NTIOLib_X64.sys [13368 2012-11-26] (MSI)
S3 NTIOLib_MSIFrequency_CC; D:\Aplikace\Command Center\ClockGen\CPU_Frequency\NTIOLib_X64.sys [13368 2012-11-20] (MSI)
S3 NTIOLib_MSIRatio_CC; D:\Aplikace\Command Center\CPU\CPU_Ratio\NTIOLib_X64.sys [13368 2012-11-20] (MSI)
S3 NTIOLib_MSISMB_CC; D:\Aplikace\Command Center\SMBus\NTIOLib_X64.sys [13368 2012-11-19] (MSI)
S3 NTIOLib_MSISuperIO_CC; D:\Aplikace\Command Center\SuperIO\NTIOLib_X64.sys [13368 2012-11-19] (MSI)
S3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [40392 2014-08-01] (NVIDIA Corporation)
S3 taphss6; C:\Windows\system32\DRIVERS\taphss6.sys [42184 2014-05-17] (Anchorfree Inc.)
S3 tapoas; C:\Windows\system32\DRIVERS\tapoas.sys [30720 2012-07-15] (The OpenVPN Project)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-09-22] (Microsoft Corporation)
S3 cpuz137; \??\C:\Users\MARIOF~1\AppData\Local\Temp\cpuz137\cpuz137_x64.sys [X]
S3 MSICDSetup; \??\E:\CDriver64.sys [X]
S3 NTIOLib_1_0_C; \??\E:\NTIOLib_X64.sys [X]
S3 NTIOLib_FastBoot; \??\D:\Aplikace\Fast Boot\NTIOLib_X64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-07 22:25 - 2015-01-07 22:26 - 00015322 _____ () C:\Users\Mario Flachs\Desktop\FRST.txt
2015-01-07 22:25 - 2015-01-07 22:26 - 00000000 ____D () C:\FRST
2015-01-07 22:24 - 2015-01-07 22:23 - 02124288 _____ (Farbar) C:\Users\Mario Flachs\Desktop\FRST64.exe
2015-01-07 22:23 - 2015-01-07 22:23 - 02124288 _____ (Farbar) C:\Users\Mario Flachs\Downloads\FRST64.exe
2015-01-07 22:14 - 2015-01-07 22:14 - 24743106 _____ () C:\Users\Mario Flachs\Downloads\vlc-2.1.5-win32.exe
2015-01-07 16:34 - 2015-01-07 16:49 - 254527831 _____ () C:\Users\Mario Flachs\Downloads\pedrosgame_mclp_150dil_save.rar
2015-01-06 19:53 - 2015-01-06 19:53 - 00010636 _____ () C:\Users\Mario Flachs\Downloads\uvod_str.zip
2015-01-04 19:24 - 2015-01-04 19:16 - 00024064 _____ () C:\Windows\zoek-delete.exe
2015-01-04 19:16 - 2015-01-04 19:27 - 00008718 _____ () C:\zoek-results.log
2015-01-04 19:16 - 2015-01-04 19:23 - 00000000 ____D () C:\zoek_backup
2015-01-04 19:15 - 2015-01-04 19:14 - 01295360 _____ () C:\Users\Mario Flachs\Desktop\zoek.exe
2015-01-04 13:41 - 2015-01-07 20:14 - 00000000 ____D () C:\Users\Mario Flachs\AppData\Roaming\.minecraft
2015-01-04 12:53 - 2014-09-11 07:57 - 02480312 _____ (Sysinternals - www.sysinternals.com) C:\Users\Mario Flachs\Desktop\procexp.exe
2015-01-04 12:53 - 2014-08-05 07:24 - 00072154 _____ () C:\Users\Mario Flachs\Desktop\procexp.chm
2015-01-04 12:53 - 2014-08-05 07:24 - 00007005 _____ () C:\Users\Mario Flachs\Desktop\Eula.txt
2015-01-04 12:43 - 2015-01-04 19:11 - 00037624 _____ () C:\Windows\system32\Drivers\TrueSight.sys
2015-01-04 12:43 - 2015-01-04 12:43 - 00000000 ____D () C:\ProgramData\RogueKiller
2015-01-04 12:43 - 2015-01-04 12:40 - 18423384 _____ () C:\Users\Mario Flachs\Desktop\RogueKillerX64.exe
2015-01-04 09:49 - 2015-01-07 07:10 - 00000000 ____D () C:\Users\Mario Flachs\AppData\Local\Adobe
2015-01-04 09:35 - 2015-01-04 12:40 - 00000000 ____D () C:\AdwCleaner
2015-01-04 09:35 - 2015-01-04 09:35 - 02173952 _____ () C:\Users\Mario Flachs\Desktop\AdwCleaner.exe
2015-01-04 09:34 - 2015-01-04 09:34 - 00000000 ____D () C:\Users\Mario Flachs\AppData\Local\ATI
2015-01-04 09:32 - 2015-01-04 09:32 - 00448512 _____ (OldTimer Tools) C:\Users\Mario Flachs\Desktop\TFC.exe
2015-01-04 09:31 - 2015-01-04 09:31 - 00050688 _____ (Atribune.org) C:\Users\Mario Flachs\Desktop\ATF-Cleaner.exe
2015-01-04 09:18 - 2015-01-04 09:18 - 00388608 _____ (Trend Micro Inc.) C:\Users\Mario Flachs\Desktop\hijackthis.exe
2015-01-03 19:00 - 2015-01-04 13:33 - 00000000 ____D () C:\Program Files (x86)\Adobe Arkalis
2015-01-03 19:00 - 2015-01-03 19:00 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft Launcher 1.8
2015-01-03 19:00 - 2015-01-03 19:00 - 00000000 ____D () C:\ProgramData\Caphyon
2015-01-03 18:59 - 2015-01-03 18:59 - 00000000 ____D () C:\Users\Mario Flachs\AppData\Roaming\Mojang
2015-01-03 17:29 - 2015-01-03 17:29 - 537202964 _____ () C:\Windows\MEMORY.DMP
2015-01-03 17:29 - 2015-01-03 17:29 - 00281040 _____ () C:\Windows\Minidump\010315-16140-01.dmp
2015-01-03 17:29 - 2015-01-03 17:29 - 00000000 ____D () C:\Windows\Minidump
2015-01-01 09:53 - 2015-01-01 11:11 - 00000000 ____D () C:\Users\Mario Flachs\Documents\MSDCSC
2014-12-30 22:06 - 2014-12-30 22:07 - 00000000 ____D () C:\ProgramData\TuneUp Software
2014-12-30 22:06 - 2014-12-30 22:06 - 00000000 __SHD () C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}
2014-12-30 18:01 - 2015-01-07 22:20 - 00003596 _____ () C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-403370392-2708246811-2563906322-1001
2014-12-30 17:55 - 2015-01-04 19:26 - 00011038 _____ () C:\Windows\PFRO.log
2014-12-30 15:04 - 2014-12-30 15:04 - 00111016 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge-64.dll
2014-12-30 15:04 - 2014-12-30 15:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2014-12-30 15:03 - 2014-12-30 15:03 - 00000000 ____D () C:\Program Files\Java
2014-12-30 14:55 - 2014-12-30 14:55 - 00000000 ____D () C:\Users\Mario Flachs\AppData\Local\LogMeIn
2014-12-30 14:55 - 2014-12-30 14:55 - 00000000 ____D () C:\ProgramData\LogMeIn
2014-12-29 00:55 - 2014-12-29 00:55 - 00000793 _____ () C:\Users\Mario Flachs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR.lnk
2014-12-28 16:53 - 2014-12-28 16:53 - 00000000 ____D () C:\Users\Mario Flachs\AppData\Roaming\LolClient
2014-12-27 17:14 - 2014-12-31 18:59 - 00000000 ____D () C:\Users\Mario Flachs\AppData\Roaming\TS3Client
2014-12-27 16:53 - 2014-12-27 16:53 - 00001285 _____ () C:\Users\Mario Flachs\Desktop\TS3.lnk
2014-12-27 16:53 - 2014-12-27 16:53 - 00000000 ____D () C:\Users\Mario Flachs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\TeamSpeak 3 Client
2014-12-27 16:53 - 2014-12-27 16:53 - 00000000 ____D () C:\Users\Mario Flachs\AppData\Local\TeamSpeak 3 Client
2014-12-27 09:58 - 2015-01-07 15:22 - 00003004 _____ () C:\Windows\System32\Tasks\MSIAfterburner
2014-12-26 22:40 - 2014-12-26 22:40 - 00000652 _____ () C:\Users\Public\Desktop\CPUID CPU-Z.lnk
2014-12-26 20:06 - 2014-12-26 20:06 - 00000884 _____ () C:\Users\Mario Flachs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CommandCenter.lnk
2014-12-26 14:48 - 2015-01-07 22:11 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-12-26 14:48 - 2014-12-26 14:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2014-12-26 14:48 - 2014-11-21 06:14 - 00093400 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-12-26 14:48 - 2014-11-21 06:14 - 00064216 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2014-12-26 14:48 - 2014-11-21 06:14 - 00025816 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-12-26 14:47 - 2014-12-26 14:47 - 00254956 _____ () C:\ProgramData\1419601588.bdinstall.bin
2014-12-26 14:40 - 2014-12-26 14:40 - 00000385 _____ () C:\Windows\system32\user_gensett.xml
2014-12-26 14:40 - 2014-12-26 14:40 - 00000385 _____ () C:\Users\Mario Flachs\AppData\Roaminguser_gensett.xml
2014-12-26 14:40 - 2014-12-26 14:40 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_Kernel_avchv_01009.Wdf
2014-12-26 14:40 - 2014-12-26 14:40 - 00000000 ____D () C:\ProgramData\BDLogging
2014-12-26 14:40 - 2014-12-02 16:37 - 00074000 _____ (BitDefender SRL) C:\Windows\SysWOW64\bdsandboxuiskin32.dll
2014-12-26 14:40 - 2007-04-11 11:11 - 00511328 _____ (Microsoft Corporation) C:\Windows\capicom.dll
2014-12-26 14:34 - 2014-12-26 14:34 - 00000000 _____ () C:\Windows\system32\BDSandBoxUISkin32.dll
2014-12-26 14:34 - 2014-12-02 16:37 - 00084336 _____ (BitDefender SRL) C:\Windows\system32\BDSandBoxUISkin.dll
2014-12-26 14:34 - 2014-12-02 13:37 - 00033360 _____ (BitDefender SRL) C:\Windows\system32\BDSandBoxUH.dll
2014-12-26 14:33 - 2014-12-26 14:47 - 00000000 ____D () C:\Program Files\Common Files\Bitdefender
2014-12-26 13:38 - 2014-12-12 19:19 - 00000966 _____ () C:\Users\Mario Flachs\Desktop\Downloads.lnk
2014-12-26 09:26 - 2014-12-26 14:40 - 00000299 _____ () C:\Windows\setupact.log
2014-12-26 09:26 - 2014-12-26 09:26 - 00000000 _____ () C:\Windows\setuperr.log
2014-12-26 09:20 - 2015-01-07 16:58 - 01117624 _____ () C:\Windows\WindowsUpdate.log
2014-12-26 01:18 - 2014-12-26 01:18 - 00000817 _____ () C:\Users\Mario Flachs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CCleaner.lnk
2014-12-25 12:02 - 2014-12-25 12:02 - 00000000 ____D () C:\Users\Mario Flachs\AppData\Roaming\PDAppFlex
2014-12-25 11:51 - 2014-12-25 11:51 - 00001017 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe After Effects CC 2014.lnk
2014-12-25 11:51 - 2014-12-25 11:51 - 00000000 ____D () C:\Program Files\Adobe
2014-12-25 11:09 - 2014-12-29 17:05 - 00000000 ____D () C:\Users\Mario Flachs\Desktop\Bandicam
2014-12-23 05:52 - 2014-12-23 05:52 - 00000000 ____D () C:\Users\Mario Flachs\AppData\Roaming\ATI
2014-12-22 22:50 - 2014-12-29 01:17 - 00000000 ____D () C:\Users\Mario Flachs\AppData\Local\Kosata6
2014-12-22 22:50 - 2010-12-09 16:57 - 00693248 _____ (Kosata6) C:\Users\Mario Flachs\Desktop\Shutdown.exe
2014-12-22 19:14 - 2014-12-22 19:14 - 00000000 ____D () C:\Users\Mario Flachs\Documents\Rockstar Games
2014-12-22 09:42 - 2014-12-22 09:42 - 00000866 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Premiere Pro CC.lnk
2014-12-22 09:41 - 2014-12-22 09:41 - 00000874 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Media Encoder CC.lnk
2014-12-22 08:59 - 2014-12-22 09:05 - 00000000 ____D () C:\ProgramData\NVIDIA Corporation
2014-12-22 08:58 - 2014-12-22 09:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2014-12-22 08:56 - 2014-08-01 06:42 - 00040392 _____ (NVIDIA Corporation) C:\Windows\system32\Drivers\nvvad64v.sys
2014-12-22 08:56 - 2014-08-01 06:42 - 00037320 _____ (NVIDIA Corporation) C:\Windows\system32\nvaudcap64v.dll
2014-12-22 08:56 - 2014-08-01 06:42 - 00034760 _____ (NVIDIA Corporation) C:\Windows\SysWOW64\nvaudcap32v.dll
2014-12-21 21:49 - 2014-12-21 21:49 - 00003506 _____ () C:\Windows\System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-mariobbros@outlook.com
2014-12-21 20:59 - 2014-12-21 20:59 - 00001401 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
2014-12-21 20:59 - 2014-12-21 20:59 - 00001332 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
2014-12-21 20:59 - 2014-12-21 20:59 - 00000000 ____D () C:\Windows\cs
2014-12-21 20:59 - 2014-12-21 20:59 - 00000000 ____D () C:\Program Files (x86)\Windows Live
2014-12-21 15:35 - 2010-05-29 20:48 - 00081920 _____ () C:\Windows\system32\xlive.dll
2014-12-21 14:57 - 2014-12-21 19:41 - 00000000 ____D () C:\Users\Mario Flachs\Documents\Adobe
2014-12-21 14:57 - 2014-12-21 14:57 - 00000000 ____D () C:\ProgramData\PACE Anti-Piracy
2014-12-21 14:48 - 2014-12-21 14:48 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2014-12-21 13:59 - 2014-12-21 22:29 - 00000000 ____D () C:\Users\Mario Flachs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IVMP
2014-12-21 13:48 - 2014-12-21 22:04 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe
2014-12-21 12:46 - 2014-12-22 19:12 - 00000000 ____D () C:\Users\Mario Flachs\AppData\Local\Rockstar Games
2014-12-21 12:46 - 2014-12-21 12:46 - 00000000 __SHD () C:\ProgramData\SecuROM
2014-12-21 12:36 - 2014-12-21 12:36 - 00178800 _____ (Sony DADC Austria AG.) C:\Windows\SysWOW64\CmdLineExt_x64.dll
2014-12-21 12:36 - 2014-12-21 12:36 - 00000000 __RHD () C:\Users\Mario Flachs\AppData\Roaming\SecuROM
2014-12-21 12:29 - 2014-12-21 12:29 - 00000000 ___RD () C:\Users\Mario Flachs\Creative Cloud Files
2014-12-20 22:31 - 2014-12-20 22:37 - 00000000 ____D () C:\Users\Mario Flachs\Documents\Assassin's Creed Unity
2014-12-20 22:06 - 2014-12-20 22:06 - 01060864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfc71.dll
2014-12-20 22:01 - 2014-12-20 22:06 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Comodo
2014-12-20 22:00 - 2014-12-20 22:44 - 00000049 _____ () C:\Windows\SysWOW64\ScrRecX.log
2014-12-20 22:00 - 2008-08-18 18:18 - 00077824 _____ (Fox Magic Software) C:\Windows\SysWOW64\fmcodec.DLL
2014-12-20 20:24 - 2014-12-20 20:24 - 00000000 ____D () C:\Users\Mario Flachs\AppData\Roaming\Assassin's Creed Unity
2014-12-20 20:24 - 2014-12-20 20:24 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\R.G. Mechanics
2014-12-20 12:05 - 2014-12-23 05:51 - 05176576 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-12-20 12:03 - 2013-08-22 12:44 - 48847872 _____ (Microsoft Corporation) C:\Windows\system32\imageres.dll
2014-12-20 12:03 - 2013-08-22 05:16 - 48847872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imageres.dll
2014-12-20 11:57 - 2014-12-20 11:57 - 00000000 ____D () C:\Users\Mario Flachs\AppData\Roaming\MetroSidebar
2014-12-20 11:56 - 2014-12-20 11:56 - 00000000 ___HD () C:\W7P_Backups
2014-12-19 19:39 - 2014-12-19 19:39 - 00000000 ____D () C:\Windows\Downloaded Installations
2014-12-19 19:36 - 2014-12-19 19:36 - 01689384 _____ (techPowerUp (www.techpowerup.com)) C:\Users\Mario Flachs\Desktop\GPU-Z.0.8.0.exe
2014-12-19 19:33 - 2014-12-19 19:34 - 00000000 ____D () C:\Users\Mario Flachs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\MSI Afterburner
2014-12-18 15:23 - 2014-12-18 15:23 - 00000000 ____D () C:\Program Files (x86)\ElcomSoft
2014-12-18 15:08 - 2014-12-18 15:08 - 00283064 _____ (Disc Soft Ltd) C:\Windows\system32\Drivers\dtsoftbus01.sys
2014-12-18 15:08 - 2014-12-18 15:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2014-12-18 15:07 - 2015-01-03 18:50 - 00000000 ____D () C:\Users\Mario Flachs\AppData\Roaming\DAEMON Tools Lite
2014-12-18 15:06 - 2014-12-18 15:08 - 00000000 ____D () C:\ProgramData\DAEMON Tools Lite
2014-12-17 11:14 - 2014-12-17 11:14 - 00129752 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\5E752482.sys
2014-12-15 20:32 - 2014-12-25 12:11 - 00000000 ____D () C:\Users\Mario Flachs\Desktop\MP3
2014-12-15 19:48 - 2014-12-15 19:48 - 00000000 ____D () C:\ProgramData\Apple
2014-12-15 17:01 - 2014-12-19 21:14 - 00000000 ____D () C:\ProgramData\Stardock
2014-12-14 18:12 - 2014-12-14 18:12 - 00000000 ____D () C:\Windows\PCHEALTH
2014-12-14 16:56 - 2014-12-14 16:56 - 00000660 _____ () C:\Users\Mario Flachs\Desktop\Bandicam.lnk
2014-12-14 16:56 - 2014-12-14 16:56 - 00000000 ____D () C:\Users\Mario Flachs\AppData\Roaming\BANDISOFT
2014-12-14 16:56 - 2014-12-14 16:56 - 00000000 ____D () C:\Program Files (x86)\BandiMPEG1
2014-12-13 20:05 - 2014-12-13 20:05 - 00000000 ____D () C:\Program Files\Sony
2014-12-13 17:06 - 2014-12-13 17:06 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-12-13 17:05 - 2014-12-13 17:05 - 00000000 ____D () C:\Users\Default\AppData\Local\Microsoft Help
2014-12-13 17:05 - 2014-12-13 17:05 - 00000000 ____D () C:\Users\Default User\AppData\Local\Microsoft Help
2014-12-13 17:01 - 2014-12-13 17:01 - 00045112 ____H (LogMeIn Inc.) C:\Windows\system32\Drivers\Hamdrv.sys
2014-12-13 15:44 - 2014-12-21 22:09 - 00000000 ____D () C:\Users\Mario Flachs\Desktop\PSD
2014-12-13 09:41 - 2014-12-21 21:00 - 00000000 ____D () C:\Users\Mario Flachs\AppData\Local\Windows Live
2014-12-13 09:30 - 2014-12-21 21:56 - 00038220 _____ () C:\Windows\system32\--traceoff
2014-12-13 09:30 - 2014-12-13 09:30 - 00000000 _____ () C:\Windows\system32\--debugoff
2014-12-13 08:13 - 2014-12-13 08:13 - 00466456 _____ (Creative Labs) C:\Windows\system32\wrap_oal.dll
2014-12-13 08:13 - 2014-12-13 08:13 - 00444952 _____ (Creative Labs) C:\Windows\SysWOW64\wrap_oal.dll
2014-12-13 08:13 - 2014-12-13 08:13 - 00122904 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\system32\OpenAL32.dll
2014-12-13 08:13 - 2014-12-13 08:13 - 00109080 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\SysWOW64\OpenAL32.dll
2014-12-13 00:08 - 2014-12-13 19:14 - 00000000 ____D () C:\Users\Mario Flachs\AppData\Roaming\OBS
2014-12-13 00:08 - 2014-12-13 00:08 - 00000000 ____D () C:\Users\Mario Flachs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Open Broadcaster Software
2014-12-13 00:08 - 2014-12-13 00:08 - 00000000 ____D () C:\Program Files\OBS
2014-12-13 00:08 - 2014-12-13 00:08 - 00000000 ____D () C:\Program Files (x86)\OBS
2014-12-12 23:57 - 2014-12-25 15:30 - 00000132 _____ () C:\Users\Mario Flachs\AppData\Roaming\Adobe Formát PNG CS6 – předvolby
2014-12-12 23:27 - 2014-12-12 23:27 - 00000000 ____D () C:\Users\Mario Flachs\AppData\Roaming\library_dir
2014-12-12 19:15 - 2014-12-12 19:15 - 00000000 ____D () C:\Windows\system32\appraiser
2014-12-10 19:47 - 2014-12-10 19:47 - 00000000 ____D () C:\Users\Mario Flachs\AppData\Roaming\fp
2014-12-10 19:37 - 2014-11-26 22:10 - 00714720 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2014-12-10 19:37 - 2014-11-26 22:10 - 00106976 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2014-12-10 19:33 - 2014-12-04 00:37 - 00227328 _____ (Microsoft Corporation) C:\Windows\system32\aepdu.dll
2014-12-10 19:33 - 2014-12-04 00:09 - 00830464 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2014-12-10 19:33 - 2014-12-03 00:09 - 01083392 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2014-12-10 19:33 - 2014-12-03 00:09 - 00740864 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2014-12-10 19:33 - 2014-12-03 00:09 - 00412672 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2014-12-10 19:33 - 2014-12-03 00:09 - 00396288 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2014-12-10 19:33 - 2014-12-03 00:09 - 00192000 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2014-12-10 19:33 - 2014-11-22 04:13 - 25059840 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-12-10 19:33 - 2014-11-22 03:50 - 00580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-12-10 19:33 - 2014-11-22 03:49 - 02885120 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-12-10 19:33 - 2014-11-22 03:49 - 00417280 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2014-12-10 19:33 - 2014-11-22 03:48 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-12-10 19:33 - 2014-11-22 03:35 - 00812544 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2014-12-10 19:33 - 2014-11-22 03:34 - 06039552 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-12-10 19:33 - 2014-11-22 03:22 - 19749376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-12-10 19:33 - 2014-11-22 03:08 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-12-10 19:33 - 2014-11-22 03:07 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-12-10 19:33 - 2014-11-22 03:06 - 00340992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2014-12-10 19:33 - 2014-11-22 03:06 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2014-12-10 19:33 - 2014-11-22 03:05 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-12-10 19:33 - 2014-11-22 03:05 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-12-10 19:33 - 2014-11-22 03:01 - 02277888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-12-10 19:33 - 2014-11-22 02:59 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2014-12-10 19:33 - 2014-11-22 02:55 - 00661504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2014-12-10 19:33 - 2014-11-22 02:52 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2014-12-10 19:33 - 2014-11-22 02:49 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-12-10 19:33 - 2014-11-22 02:49 - 00718848 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-12-10 19:33 - 2014-11-22 02:49 - 00373760 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-12-10 19:33 - 2014-11-22 02:46 - 02125312 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-12-10 19:33 - 2014-11-22 02:43 - 14412800 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-12-10 19:33 - 2014-11-22 02:35 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-12-10 19:33 - 2014-11-22 02:34 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2014-12-10 19:33 - 2014-11-22 02:33 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-12-10 19:33 - 2014-11-22 02:29 - 04299264 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-12-10 19:33 - 2014-11-22 02:29 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2014-12-10 19:33 - 2014-11-22 02:28 - 02358272 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-12-10 19:33 - 2014-11-22 02:25 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2014-12-10 19:33 - 2014-11-22 02:23 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-12-10 19:33 - 2014-11-22 02:23 - 00326656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-12-10 19:33 - 2014-11-22 02:22 - 02052096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-12-10 19:33 - 2014-11-22 02:15 - 01548288 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-12-10 19:33 - 2014-11-22 02:13 - 12836864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-12-10 19:33 - 2014-11-22 02:03 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-12-10 19:33 - 2014-11-22 02:00 - 01888256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-12-10 19:33 - 2014-11-22 01:56 - 01307136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-12-10 19:33 - 2014-11-22 01:54 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-12-10 19:33 - 2014-11-17 21:17 - 00672984 _____ (Microsoft Corporation) C:\Windows\system32\MDMAgent.exe
2014-12-10 19:33 - 2014-11-17 21:17 - 00273240 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlows.exe
2014-12-10 19:33 - 2014-11-15 20:05 - 00801584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfplat.dll
2014-12-10 19:33 - 2014-11-15 07:29 - 00962216 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2014-12-10 19:33 - 2014-11-14 15:36 - 00055776 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2014-12-10 19:33 - 2014-11-14 08:10 - 03558400 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2014-12-10 19:33 - 2014-11-14 07:58 - 00116736 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsDatabase.dll
2014-12-10 19:33 - 2014-11-14 07:58 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2014-12-10 19:33 - 2014-11-14 07:57 - 01027584 _____ (Microsoft Corporation) C:\Windows\system32\MFMediaEngine.dll
2014-12-10 19:33 - 2014-11-14 07:57 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2014-12-10 19:33 - 2014-11-14 07:54 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettings.Handlers.dll
2014-12-10 19:33 - 2014-11-14 07:54 - 00407552 _____ (Microsoft Corporation) C:\Windows\system32\WUSettingsProvider.dll
2014-12-10 19:33 - 2014-11-14 07:54 - 00095744 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2014-12-10 19:33 - 2014-11-14 07:53 - 00894976 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2014-12-10 19:33 - 2014-11-14 07:52 - 01714176 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2014-12-10 19:33 - 2014-11-14 07:46 - 02171904 _____ (Microsoft Corporation) C:\Windows\system32\SystemSettingsAdminFlowUI.dll
2014-12-10 19:33 - 2014-11-14 07:46 - 01091072 _____ (Microsoft Corporation) C:\Windows\system32\MrmCoreR.dll
2014-12-10 19:33 - 2014-11-14 07:39 - 02819584 _____ (Microsoft Corporation) C:\Windows\system32\SettingsHandlers.dll
2014-12-10 19:33 - 2014-11-14 06:04 - 00029696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2014-12-10 19:33 - 2014-11-14 06:03 - 00885760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MFMediaEngine.dll
2014-12-10 19:33 - 2014-11-14 06:03 - 00124928 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2014-12-10 19:33 - 2014-11-14 06:01 - 00723968 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2014-12-10 19:33 - 2014-11-14 06:01 - 00081920 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2014-12-10 19:33 - 2014-11-14 05:53 - 00790528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MrmCoreR.dll
2014-12-10 19:33 - 2014-11-11 01:39 - 22290560 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2014-12-10 19:33 - 2014-11-11 01:17 - 19731824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2014-12-10 19:33 - 2014-11-10 19:06 - 02485056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2014-12-10 19:33 - 2014-11-10 19:06 - 00473408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-12-10 19:33 - 2014-11-10 19:06 - 00428864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\FWPKCLNT.SYS
2014-12-10 19:33 - 2014-11-10 19:06 - 00136512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wfplwfs.sys
2014-12-10 19:33 - 2014-11-10 03:57 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\agilevpn.sys
2014-12-10 19:33 - 2014-11-10 02:37 - 00845312 _____ (Microsoft Corporation) C:\Windows\system32\BFE.DLL
2014-12-10 19:33 - 2014-11-10 02:34 - 01084416 _____ (Microsoft Corporation) C:\Windows\system32\IKEEXT.DLL
2014-12-10 19:33 - 2014-11-10 02:26 - 00422400 _____ (Microsoft Corporation) C:\Windows\system32\FWPUCLNT.DLL
2014-12-10 19:33 - 2014-11-10 02:20 - 00420864 _____ (Microsoft Corporation) C:\Windows\system32\vpnike.dll
2014-12-10 19:33 - 2014-11-10 02:09 - 00272384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\FWPUCLNT.DLL
2014-12-10 19:33 - 2014-11-10 02:08 - 00702464 _____ (Microsoft Corporation) C:\Windows\system32\rasapi32.dll
2014-12-10 19:33 - 2014-11-10 02:06 - 00713216 _____ (Microsoft Corporation) C:\Windows\system32\nshwfp.dll
2014-12-10 19:33 - 2014-11-10 01:57 - 00624640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasapi32.dll
2014-12-10 19:33 - 2014-11-10 01:57 - 00561664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\nshwfp.dll
2014-12-10 19:33 - 2014-11-08 11:42 - 01390928 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2014-12-10 19:33 - 2014-11-08 11:23 - 01127976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2014-12-10 19:33 - 2014-11-08 05:00 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys
2014-12-10 19:33 - 2014-11-08 05:00 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndistapi.sys
2014-12-10 19:33 - 2014-11-08 04:58 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rasl2tp.sys
2014-12-10 19:33 - 2014-11-08 04:58 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys
2014-12-10 19:33 - 2014-11-08 04:56 - 00048128 _____ (Microsoft Corporation) C:\Windows\system32\kmddsp.tsp
2014-12-10 19:33 - 2014-11-08 04:56 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\rasmxs.dll
2014-12-10 19:33 - 2014-11-08 04:56 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\rasser.dll
2014-12-10 19:33 - 2014-11-08 04:24 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\rasdiag.dll
2014-12-10 19:33 - 2014-11-08 04:13 - 00039424 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kmddsp.tsp
2014-12-10 19:33 - 2014-11-08 04:13 - 00033280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasmxs.dll
2014-12-10 19:33 - 2014-11-08 04:13 - 00022528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasser.dll
2014-12-10 19:33 - 2014-11-08 03:48 - 00061440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rasdiag.dll
2014-12-10 19:33 - 2014-11-08 03:38 - 00166912 _____ (Microsoft Corporation) C:\Windows\system32\AppxAllUserStore.dll
2014-12-10 19:33 - 2014-11-08 03:17 - 00143360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AppxAllUserStore.dll
2014-12-10 19:33 - 2014-11-08 03:09 - 00182784 _____ (Microsoft Corporation) C:\Windows\system32\rascfg.dll
2014-12-10 19:33 - 2014-11-08 03:03 - 00733696 _____ (Microsoft Corporation) C:\Windows\system32\SkyDriveTelemetry.dll
2014-12-10 19:33 - 2014-11-08 02:59 - 00162304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rascfg.dll
2014-12-10 19:33 - 2014-11-08 02:58 - 04837376 _____ (Microsoft Corporation) C:\Windows\system32\SyncEngine.dll
2014-12-10 19:33 - 2014-11-08 02:49 - 01154048 _____ (Microsoft Corporation) C:\Windows\system32\SkyDrive.exe
2014-12-10 19:33 - 2014-11-07 04:58 - 00952896 _____ (Microsoft Corporation) C:\Windows\system32\mfmp4srcsnk.dll
2014-12-10 19:33 - 2014-11-07 04:20 - 00786120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfmp4srcsnk.dll
2014-12-10 19:33 - 2014-11-05 03:12 - 00211968 _____ (Microsoft Corporation) C:\Windows\system32\QSHVHOST.DLL
2014-12-10 19:33 - 2014-11-05 03:12 - 00128000 _____ (Microsoft Corporation) C:\Windows\system32\QSVRMGMT.DLL
2014-12-10 19:33 - 2014-11-05 03:06 - 00514048 _____ (Microsoft Corporation) C:\Windows\system32\DevicePairing.dll
2014-12-10 19:33 - 2014-11-05 02:44 - 00657920 _____ (Microsoft Corporation) C:\Windows\system32\dnsapi.dll
2014-12-10 19:33 - 2014-11-05 02:43 - 00252416 _____ (Microsoft Corporation) C:\Windows\system32\dnsrslvr.dll
2014-12-10 19:33 - 2014-11-05 02:41 - 00558080 _____ (Microsoft Corporation) C:\Windows\system32\untfs.dll
2014-12-10 19:33 - 2014-11-05 02:39 - 00155648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\QSHVHOST.DLL
2014-12-10 19:33 - 2014-11-05 02:39 - 00094208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\QSVRMGMT.DLL
2014-12-10 19:33 - 2014-11-05 02:33 - 00465408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DevicePairing.dll
2014-12-10 19:33 - 2014-11-05 02:21 - 00658432 _____ (Microsoft Corporation) C:\Windows\system32\WSDApi.dll
2014-12-10 19:33 - 2014-11-05 02:20 - 00498688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dnsapi.dll
2014-12-10 19:33 - 2014-11-05 02:18 - 00507392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\untfs.dll
2014-12-10 19:33 - 2014-11-05 02:14 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\WSDMon.dll
2014-12-10 19:33 - 2014-11-05 02:06 - 00555520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WSDApi.dll
2014-12-10 19:33 - 2014-11-04 20:33 - 00058176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dam.sys
2014-12-10 19:33 - 2014-11-04 20:25 - 00059712 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\kbdclass.sys
2014-12-10 19:33 - 2014-11-04 20:25 - 00051008 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\mouclass.sys
2014-12-10 19:33 - 2014-11-04 07:55 - 00026112 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\sermouse.sys
2014-12-10 19:33 - 2014-11-04 07:54 - 00108544 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\i8042prt.sys
2014-12-10 19:33 - 2014-11-04 07:54 - 00032256 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\kbdhid.sys
2014-12-10 19:33 - 2014-11-04 07:54 - 00030208 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\mouhid.sys
2014-12-10 19:33 - 2014-11-04 07:27 - 00128512 _____ (Microsoft Corporation) C:\Windows\splwow64.exe
2014-12-10 19:33 - 2014-11-04 06:01 - 00827392 _____ (Microsoft Corporation) C:\Windows\system32\spoolsv.exe
2014-12-10 19:33 - 2014-10-31 01:51 - 18823168 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2014-12-10 19:33 - 2014-10-31 01:10 - 15158784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2014-12-10 19:33 - 2014-10-31 00:39 - 01970432 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2014-12-10 19:33 - 2014-10-31 00:38 - 01612992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\crypt32.dll
2014-12-10 19:33 - 2014-10-30 23:37 - 00129536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\poqexec.exe
2014-12-10 19:33 - 2014-10-30 23:34 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2014-12-10 19:33 - 2014-10-30 06:55 - 07473472 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2014-12-10 19:33 - 2014-10-30 06:47 - 01499384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2014-12-10 19:33 - 2014-10-30 06:41 - 01733952 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2014-12-10 19:33 - 2014-10-29 04:05 - 00551232 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\vhdmp.sys
2014-12-10 19:33 - 2014-10-29 03:02 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2014-12-10 19:33 - 2014-10-29 03:02 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2014-12-10 19:33 - 2014-10-29 02:57 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2014-12-10 19:33 - 2014-10-29 02:55 - 00242176 _____ (Microsoft Corporation) C:\Windows\system32\WinSCard.dll
2014-12-10 19:33 - 2014-10-29 02:15 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2014-12-10 19:33 - 2014-10-29 02:15 - 00005632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2014-12-10 19:33 - 2014-10-29 02:14 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2014-12-10 19:33 - 2014-10-29 02:13 - 00169984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WinSCard.dll
2014-12-10 19:33 - 2014-10-29 02:13 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2014-12-10 19:33 - 2014-10-29 02:13 - 00008704 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2014-12-10 19:33 - 2014-10-26 23:10 - 00390841 _____ () C:\Windows\system32\ApnDatabase.xml
2014-12-10 19:33 - 2014-10-21 02:59 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\eventcls.dll
2014-12-10 19:33 - 2014-10-21 02:19 - 00015360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\eventcls.dll
2014-12-10 19:33 - 2014-10-21 01:50 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\vsstrace.dll
2014-12-10 19:33 - 2014-10-21 01:31 - 01574400 _____ (Microsoft Corporation) C:\Windows\system32\vssapi.dll
2014-12-10 19:33 - 2014-10-21 01:31 - 00055296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vsstrace.dll
2014-12-10 19:33 - 2014-10-21 01:30 - 01454080 _____ (Microsoft Corporation) C:\Windows\system32\VSSVC.exe
2014-12-10 19:33 - 2014-10-21 01:20 - 01142272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vssapi.dll
2014-12-10 19:33 - 2014-10-17 05:56 - 00238912 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\sdbus.sys
2014-12-10 19:33 - 2014-10-17 05:56 - 00153920 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\dumpsd.sys
2014-12-10 19:33 - 2014-10-17 05:56 - 00039744 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\intelpep.sys
2014-12-10 19:33 - 2014-10-17 04:35 - 00086336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2014-12-10 19:32 - 2014-12-10 19:32 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2014-12-10 19:32 - 2014-12-10 19:32 - 00051712 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2014-12-10 19:32 - 2014-12-10 19:32 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2014-12-10 19:32 - 2014-12-10 19:32 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\wuaext.dll
2014-12-10 19:32 - 2014-11-10 03:29 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\DeviceSetupStatusProvider.dll
2014-12-10 19:32 - 2014-11-10 02:51 - 00028672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DeviceSetupStatusProvider.dll
2014-12-10 19:32 - 2014-11-07 05:16 - 01762840 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2014-12-10 19:32 - 2014-11-07 04:26 - 01489072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2014-12-10 19:24 - 2014-12-10 19:24 - 00000000 ____D () C:\ProgramData\ATI
2014-12-10 19:23 - 2014-12-10 19:23 - 00053392 _____ () C:\Windows\SysWOW64\CCCInstall_201412101923013343.log
2014-12-10 19:23 - 2014-12-10 19:23 - 00000000 ____D () C:\Program Files (x86)\AMD AVT
2014-12-10 19:22 - 2014-12-10 19:22 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2014-12-10 19:22 - 2014-12-10 19:22 - 00000000 ____D () C:\Program Files (x86)\AMD
2014-12-10 19:18 - 2014-11-21 03:44 - 11076784 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atidxx64.dll
2014-12-10 19:18 - 2014-11-21 03:44 - 09401480 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atidxx32.dll
2014-12-10 19:18 - 2014-11-21 03:44 - 01348928 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\aticfx64.dll
2014-12-10 19:18 - 2014-11-21 03:44 - 01127496 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\aticfx32.dll
2014-12-10 19:18 - 2014-11-21 03:44 - 00144328 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiuxp64.dll
2014-12-10 19:18 - 2014-11-21 03:44 - 00128384 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\amdhcp64.dll
2014-12-10 19:18 - 2014-11-21 03:44 - 00126848 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiuxpag.dll
2014-12-10 19:18 - 2014-11-21 03:44 - 00118096 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\amdhcp32.dll
2014-12-10 19:18 - 2014-11-21 03:44 - 00118096 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiu9p64.dll
2014-12-10 19:18 - 2014-11-21 03:44 - 00100032 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiu9pag.dll
2014-12-10 19:18 - 2014-11-21 03:44 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atimpc64.dll
2014-12-10 19:18 - 2014-11-21 03:44 - 00078432 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdpcom64.dll
2014-12-10 19:18 - 2014-11-21 03:44 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atimpc32.dll
2014-12-10 19:18 - 2014-11-21 03:44 - 00071704 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdpcom32.dll
2014-12-10 19:18 - 2014-11-21 03:43 - 08379720 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd6a.dll
2014-12-10 19:18 - 2014-11-21 03:43 - 08369408 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiumd64.dll
2014-12-10 19:18 - 2014-11-21 03:43 - 07558816 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdva.dll
2014-12-10 19:18 - 2014-11-21 03:43 - 07077776 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiumdag.dll
2014-12-10 19:18 - 2014-11-21 03:41 - 00294600 _____ (Advanced Micro Devices) C:\Windows\system32\Drivers\amdacpksd.sys
2014-12-10 19:18 - 2014-11-21 03:40 - 18959360 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmdag.sys
2014-12-10 19:18 - 2014-11-21 03:33 - 47899136 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\amdocl64.dll
2014-12-10 19:18 - 2014-11-21 03:33 - 00235008 _____ () C:\Windows\system32\clinfo.exe
2014-12-10 19:18 - 2014-11-21 03:33 - 00098816 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OpenVideo64.dll
2014-12-10 19:18 - 2014-11-21 03:33 - 00086528 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\OVDecode64.dll
2014-12-10 19:18 - 2014-11-21 03:33 - 00083456 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OpenVideo.dll
2014-12-10 19:18 - 2014-11-21 03:33 - 00073216 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\OVDecode.dll
2014-12-10 19:18 - 2014-11-21 03:32 - 40987136 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\amdocl.dll
2014-12-10 19:18 - 2014-11-21 03:31 - 00442368 _____ () C:\Windows\system32\amdmiracast.dll
2014-12-10 19:18 - 2014-11-21 03:31 - 00065024 _____ (Khronos Group) C:\Windows\system32\OpenCL.dll
2014-12-10 19:18 - 2014-11-21 03:31 - 00058880 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.dll
2014-12-10 19:18 - 2014-11-21 03:25 - 00134656 _____ () C:\Windows\system32\amdhdl64.dll
2014-12-10 19:18 - 2014-11-21 03:25 - 00123392 _____ () C:\Windows\SysWOW64\amdhdl32.dll
2014-12-10 19:18 - 2014-11-21 03:24 - 28354560 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atio6axx.dll
2014-12-10 19:18 - 2014-11-21 03:19 - 23621632 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atioglxx.dll
2014-12-10 19:18 - 2014-11-21 03:19 - 00049664 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmmcl6.dll
2014-12-10 19:18 - 2014-11-21 03:19 - 00038912 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmmcl.dll

mikrosini · Příspěvekod **mikrosini** » 07 led 2015 22:28

2014-12-10 19:18 - 2014-11-21 03:18 - 05837312 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdmantle64.dll
2014-12-10 19:18 - 2014-11-21 03:18 - 00127488 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantle64.dll
2014-12-10 19:18 - 2014-11-21 03:18 - 00113664 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantle32.dll
2014-12-10 19:18 - 2014-11-21 03:17 - 03437632 _____ () C:\Windows\system32\atiumd6a.cap
2014-12-10 19:18 - 2014-11-21 03:17 - 00631912 _____ () C:\Windows\SysWOW64\atiapfxx.blb
2014-12-10 19:18 - 2014-11-21 03:17 - 00631912 _____ () C:\Windows\system32\atiapfxx.blb
2014-12-10 19:18 - 2014-11-21 03:17 - 00367104 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiapfxx.exe
2014-12-10 19:18 - 2014-11-21 03:17 - 00062464 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalrt64.dll
2014-12-10 19:18 - 2014-11-21 03:17 - 00052224 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalrt.dll
2014-12-10 19:18 - 2014-11-21 03:16 - 15716352 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticaldd64.dll
2014-12-10 19:18 - 2014-11-21 03:16 - 14302208 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticaldd.dll
2014-12-10 19:18 - 2014-11-21 03:16 - 00055808 _____ (Advanced Micro Devices Inc.) C:\Windows\system32\aticalcl64.dll
2014-12-10 19:18 - 2014-11-21 03:16 - 00049152 _____ (Advanced Micro Devices Inc.) C:\Windows\SysWOW64\aticalcl.dll
2014-12-10 19:18 - 2014-11-21 03:15 - 04590592 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdmantle32.dll
2014-12-10 19:18 - 2014-11-21 03:13 - 03471376 _____ () C:\Windows\SysWOW64\atiumdva.cap
2014-12-10 19:18 - 2014-11-21 03:13 - 00091648 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\mantleaxl64.dll
2014-12-10 19:18 - 2014-11-21 03:13 - 00085504 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\mantleaxl32.dll
2014-12-10 19:18 - 2014-11-21 03:12 - 00774656 _____ (AMD) C:\Windows\system32\atieclxx.exe
2014-12-10 19:18 - 2014-11-21 03:12 - 00442368 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atidemgy.dll
2014-12-10 19:18 - 2014-11-21 03:12 - 00244736 _____ (AMD) C:\Windows\system32\atiesrxx.exe
2014-12-10 19:18 - 2014-11-21 03:12 - 00190976 _____ (AMD) C:\Windows\system32\atitmm64.dll
2014-12-10 19:18 - 2014-11-21 03:12 - 00031232 _____ (AMD) C:\Windows\system32\atimuixx.dll
2014-12-10 19:18 - 2014-11-21 03:10 - 00843776 _____ (AMD) C:\Windows\system32\coinst_14.50.dll
2014-12-10 19:18 - 2014-11-21 03:09 - 01214976 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\atiadlxx.dll
2014-12-10 19:18 - 2014-11-21 03:09 - 00903168 _____ (Advanced Micro Devices, Inc.) C:\Windows\SysWOW64\atiadlxy.dll
2014-12-10 19:18 - 2014-11-21 03:09 - 00095744 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\amdave64.dll
2014-12-10 19:18 - 2014-11-21 03:09 - 00090112 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\amdave32.dll
2014-12-10 19:18 - 2014-11-21 03:09 - 00089088 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atisamu64.dll
2014-12-10 19:18 - 2014-11-21 03:09 - 00080896 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atisamu32.dll
2014-12-10 19:18 - 2014-11-21 03:09 - 00075264 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6pxx.dll
2014-12-10 19:18 - 2014-11-21 03:09 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atiglpxx.dll
2014-12-10 19:18 - 2014-11-21 03:09 - 00069632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atiglpxx.dll
2014-12-10 19:18 - 2014-11-21 03:08 - 00589312 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\atikmpag.sys
2014-12-10 19:18 - 2014-11-21 03:08 - 00146944 _____ (Advanced Micro Devices, Inc. ) C:\Windows\system32\atig6txx.dll
2014-12-10 19:18 - 2014-11-21 03:08 - 00133632 _____ (Advanced Micro Devices, Inc. ) C:\Windows\SysWOW64\atigktxx.dll
2014-12-10 19:18 - 2014-11-21 03:08 - 00043520 _____ (Advanced Micro Devices, Inc.) C:\Windows\system32\Drivers\ati2erec.dll
2014-12-10 19:18 - 2014-09-24 07:36 - 00765851 _____ () C:\Windows\system32\amdicdxx.dat
2014-12-10 19:18 - 2014-09-18 17:22 - 00238144 _____ () C:\Windows\system32\ativvaxy_cz_nd.dat
2014-12-10 19:18 - 2014-09-03 20:26 - 00323252 _____ () C:\Windows\system32\ativvaxy_vi.dat
2014-12-10 19:18 - 2014-09-03 19:40 - 00321712 _____ () C:\Windows\system32\ativvaxy_vi_nd.dat
2014-12-10 19:18 - 2014-08-29 16:43 - 00158944 _____ () C:\Windows\system32\ativce03.dat
2014-12-10 19:18 - 2014-08-29 15:08 - 00157248 _____ () C:\Windows\system32\amde31a.dat
2014-12-10 19:18 - 2014-08-20 20:35 - 00234292 _____ () C:\Windows\system32\ativvaxy_cik.dat
2014-12-10 19:18 - 2014-08-20 20:33 - 00232624 _____ () C:\Windows\system32\ativvaxy_cik_nd.dat
2014-12-10 19:18 - 2014-08-14 18:54 - 00083312 _____ () C:\Windows\system32\ativce02.dat
2014-12-10 18:16 - 2014-12-10 18:16 - 00000000 ____D () C:\Users\Mario Flachs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Minecraft
2014-12-10 18:05 - 2014-12-10 18:05 - 00000000 ____D () C:\Users\Mario Flachs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent
2014-12-10 17:57 - 2015-01-04 13:45 - 00000000 ____D () C:\Users\Mario Flachs\Desktop\Hry
2014-12-10 17:42 - 2014-12-26 22:40 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2014-12-09 04:18 - 2014-12-09 04:18 - 00000000 ____H () C:\Windows\system32\Drivers\Msft_User_WpdFs_01_11_00.Wdf
2014-12-08 15:00 - 2014-12-08 15:00 - 00348928 _____ () C:\Windows\SysWOW64\PnkBstrB.exe
2014-12-08 14:59 - 2014-12-08 14:59 - 00280904 _____ () C:\Windows\SysWOW64\PnkBstrB.ex0

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-01-07 22:16 - 2014-12-01 22:32 - 00000000 ____D () C:\Users\Mario Flachs\AppData\Roaming\vlc
2015-01-07 22:10 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\sru
2015-01-07 20:45 - 2014-11-30 09:52 - 00000972 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-01-07 20:34 - 2014-11-30 19:51 - 00000914 _____ () C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-01-07 17:14 - 2014-12-06 17:14 - 00000218 _____ () C:\Windows\Tasks\AutoKMSDaily.job
2015-01-07 15:22 - 2014-11-30 09:52 - 00000968 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-01-07 15:21 - 2014-11-30 09:57 - 00000000 ___DO () C:\Users\Mario Flachs\SkyDrive
2015-01-07 07:10 - 2014-11-30 09:48 - 00003978 _____ () C:\Windows\System32\Tasks\User_Feed_Synchronization-{44DEE6DE-51BB-49FA-9A14-58C23AE30875}
2015-01-06 22:15 - 2014-11-30 10:02 - 00000000 ____D () C:\Users\Mario Flachs\AppData\Roaming\Skype
2015-01-06 20:05 - 2014-11-30 12:14 - 00000000 ____D () C:\Users\Mario Flachs\Documents\ET3
2015-01-06 19:25 - 2014-11-30 17:01 - 02312704 ___SH () C:\Users\Mario Flachs\Desktop\Thumbs.db
2015-01-04 19:32 - 2013-09-30 05:20 - 01745984 _____ () C:\Windows\system32\PerfStringBackup.INI
2015-01-04 19:32 - 2013-09-30 04:57 - 00738682 _____ () C:\Windows\system32\perfh005.dat
2015-01-04 19:32 - 2013-09-30 04:57 - 00151404 _____ () C:\Windows\system32\perfc005.dat
2015-01-04 19:26 - 2014-11-30 17:22 - 00000008 __RSH () C:\ProgramData\ntuser.pol
2015-01-04 19:26 - 2014-11-30 14:04 - 00000222 _____ () C:\Windows\Tasks\AutoKMS.job
2015-01-04 19:26 - 2013-08-22 15:45 - 00000006 ____H () C:\Windows\Tasks\SA.DAT
2015-01-04 19:23 - 2013-08-22 16:36 - 00000000 ___HD () C:\Windows\system32\GroupPolicy
2015-01-04 12:41 - 2013-08-22 14:25 - 00262144 ___SH () C:\Windows\system32\config\BBI
2015-01-03 18:47 - 2014-12-02 17:56 - 00127488 ___SH () C:\Users\Mario Flachs\Downloads\Thumbs.db
2015-01-03 17:30 - 2014-11-30 09:32 - 00000000 ____D () C:\Users\Mario Flachs
2015-01-02 09:55 - 2014-11-30 16:52 - 00000000 ___HD () C:\MSIServiceCfg_CC
2015-01-01 16:11 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\AppReadiness
2015-01-01 10:16 - 2014-11-30 09:50 - 00000000 ____D () C:\MSI
2014-12-31 12:14 - 2014-11-30 11:03 - 00298120 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-12-30 21:51 - 2014-11-30 09:33 - 00000000 ____D () C:\Users\Mario Flachs\AppData\Local\Packages
2014-12-30 17:55 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\ELAMBKUP
2014-12-28 22:38 - 2014-11-30 10:02 - 00000000 ___RD () C:\Program Files (x86)\Skype
2014-12-28 22:38 - 2014-11-30 10:02 - 00000000 ____D () C:\ProgramData\Skype
2014-12-26 20:12 - 2014-11-30 09:51 - 00000000 ___HD () C:\Program Files (x86)\InstallShield Installation Information
2014-12-26 14:40 - 2013-08-22 14:25 - 00262144 ___SH () C:\Windows\system32\config\ELAM
2014-12-26 01:08 - 2014-11-30 19:51 - 00003802 _____ () C:\Windows\System32\Tasks\Adobe Flash Player Updater
2014-12-26 01:05 - 2014-11-30 16:47 - 00002776 _____ () C:\Windows\System32\Tasks\CCleanerSkipUAC
2014-12-25 23:06 - 2014-12-06 00:23 - 00007608 _____ () C:\Users\Mario Flachs\AppData\Local\resmon.resmoncfg
2014-12-25 11:51 - 2014-11-30 19:31 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2014-12-25 08:58 - 2014-11-30 14:07 - 00000000 ____D () C:\ProgramData\Origin
2014-12-25 08:56 - 2014-11-30 14:09 - 00000000 ____D () C:\Users\Mario Flachs\AppData\Roaming\Origin
2014-12-22 09:42 - 2014-11-30 09:33 - 00000000 ____D () C:\Users\Mario Flachs\AppData\Roaming\Adobe
2014-12-22 09:23 - 2014-11-30 19:34 - 00000000 ____D () C:\ProgramData\regid.1986-12.com.adobe
2014-12-22 09:06 - 2014-11-30 14:01 - 00000000 ____D () C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2014-12-21 21:43 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-12-21 21:42 - 2014-11-30 19:28 - 00000000 ____D () C:\ProgramData\Adobe
2014-12-21 18:32 - 2014-11-30 19:32 - 00000000 ____D () C:\Program Files (x86)\Adobe
2014-12-21 12:40 - 2014-11-30 09:49 - 00000000 ____D () C:\Program Files\AMD
2014-12-20 11:59 - 2014-11-30 23:35 - 00000000 ____D () C:\Windows\pss
2014-12-20 11:59 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\Branding
2014-12-20 11:56 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\Cursors
2014-12-19 19:26 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\Registration
2014-12-18 07:36 - 2013-08-22 16:20 - 00000000 ____D () C:\Windows\CbsTemp
2014-12-16 20:45 - 2014-11-30 09:33 - 00000000 ____D () C:\Users\Mario Flachs\AppData\Local\VirtualStore
2014-12-14 18:15 - 2014-11-30 13:58 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-12-14 18:12 - 2013-08-22 14:25 - 00000167 _____ () C:\Windows\win.ini
2014-12-13 08:13 - 2014-12-01 20:08 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Blue Ripple Sound
2014-12-13 08:13 - 2014-12-01 20:08 - 00000000 ____D () C:\Program Files (x86)\BRS
2014-12-12 19:15 - 2014-11-30 15:49 - 00000000 ___SD () C:\Windows\system32\CompatTel
2014-12-12 19:15 - 2013-08-22 16:36 - 00000000 ___RD () C:\Windows\ToastData
2014-12-12 19:15 - 2013-08-22 16:36 - 00000000 ___RD () C:\Windows\ImmersiveControlPanel
2014-12-12 19:15 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\SysWOW64\setup
2014-12-12 19:15 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\setup
2014-12-12 19:15 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\PolicyDefinitions
2014-12-12 19:14 - 2014-12-01 17:50 - 00000000 ____D () C:\Users\Mario Flachs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2014-12-12 19:13 - 2014-12-04 15:56 - 00000000 ____D () C:\Windows\system32\appmgmt
2014-12-12 18:51 - 2014-12-01 20:14 - 00000000 ____D () C:\Users\Mario Flachs\Documents\My Games
2014-12-10 19:39 - 2014-11-30 11:00 - 00000000 ____D () C:\Windows\system32\MRT
2014-12-10 19:39 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\sr-Latn-RS
2014-12-10 19:39 - 2013-08-22 16:36 - 00000000 ____D () C:\Windows\system32\sr-Latn-CS
2014-12-10 19:38 - 2014-11-30 11:00 - 112710672 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-12-10 19:23 - 2014-11-30 10:01 - 00000000 ____D () C:\ProgramData\AMD
2014-12-10 19:17 - 2014-11-30 09:49 - 00000000 ____D () C:\AMD
2014-12-08 15:00 - 2014-11-30 23:23 - 00348928 _____ () C:\Windows\SysWOW64\PnkBstrB.xtr

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-01-02 17:49

==================== End Of Log ============================

mikrosini · Příspěvekod **mikrosini** » 07 led 2015 22:28

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 07-01-2015
Ran by Mario Flachs at 2015-01-07 22:27:15
Running from C:\Users\Mario Flachs\Desktop
Boot Mode: Normal
==========================================================

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe After Effects CC 2014 (HKLM-x32\...\{2B22C750-5C3B-4738-B621-BA786AC7A494}) (Version: 13.0.0 - Adobe Systems Incorporated)
Adobe Flash Player 15 Plugin (HKLM-x32\...\Adobe Flash Player Plugin) (Version: 15.0.0.246 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Adobe Premiere Pro CC (HKLM-x32\...\{505FF1AC-E7F5-4462-BBA7-08900E7E9EEF}) (Version: 7.0.0 - Adobe Systems Incorporated)
Assassin's Creed Unity (HKLM-x32\...\Assassin's Creed Unity_R.G. Mechanics_is1) (Version: - R.G. Mechanics, spider91)
Bandicam (HKLM-x32\...\Bandicam) (Version: 2.1.1.731 - Bandisoft.com)
Bandisoft MPEG-1 Decoder (HKLM-x32\...\BandiMPEG1) (Version: - Bandisoft.com)
Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
CPUID CPU-Z 1.71.1 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
CPUID HWMonitor 1.26 (HKLM\...\CPUID HWMonitor_is1) (Version: - )
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
DiRT 3 (HKLM-x32\...\Steam App 44320) (Version: - Codemasters Racing Studio)
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 39.0.2171.95 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Grand Theft Auto IV (HKLM-x32\...\Steam App 12210) (Version: - Rockstar North)
Grand Theft Auto IV (x32 Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
HP LaserJet Professional P1100-P1560-P1600 Series (HKLM\...\HP LaserJet Professional P1100-P1560-P1600 Series) (Version: - )
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1011 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Intel(R) Update Manager (x32 Version: 1.0.0.36888 - Intel Corporation) Hidden
Java 8 Update 25 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418025F0}) (Version: 8.0.250 - Oracle Corporation)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
Malwarebytes Anti-Malware verze 2.0.4.1028 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{42AA4CA8-DCD8-4308-BCAB-0B6D75856A9D}) (Version: 3.5.95.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUSR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MSI Afterburner 4.0.0 (HKLM-x32\...\Afterburner) (Version: 4.0.0 - MSI Co., LTD)
MSI Command Center (HKLM-x32\...\{85A2564E-9ED9-448A-91E4-B9211EE58A08}_is1) (Version: 1.0.0.84 - MSI)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - )
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Origin (HKLM-x32\...\Origin) (Version: 9.5.2.2829 - Electronic Arts, Inc.)
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.991 - Even Balance, Inc.)
Rapture3D 2.4.8 Game (HKLM-x32\...\{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1) (Version: - Blue Ripple Sound)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.20.815.2013 - Realtek)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
Speccy (HKLM\...\Speccy) (Version: 1.26 - Piriform)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeamSpeak 3 Client (HKU\S-1-5-21-403370392-2708246811-2563906322-1001\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
VGA Boost (HKLM-x32\...\{809ACFAE-9A4D-4C60-9223-D8B615CD8CBA}}_is1) (Version: 1.0.0.7 - MSI)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.1.5 - VideoLAN)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

==================== Restore Points =========================

30-12-2014 14:54:57 Installed LogMeIn Hamachi
03-01-2015 19:00:06 Nainstalováno: Minecraft Launcher 1.8
04-01-2015 19:16:35 zoek.exe restore point

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 14:25 - 2015-01-04 19:16 - 00000753 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 localhost

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, it will be removed from registry. Any associated file could be listed separately to be moved.)

Task: {0AE355E1-3BE1-4548-856B-EC4F9FB7ABB2} - System32\Tasks\MSIAfterburner => D:\Aplikace\MSI Afterburner\MSIAfterburner.exe [2014-08-31] ()
Task: {30B4FF3C-6C83-4EE8-BBA9-991462682200} - System32\Tasks\AdobeAAMUpdater-1.0-MicrosoftAccount-mariobbros@outlook.com => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2014-10-14] (Adobe Systems Incorporated)
Task: {44739B2A-7218-429B-B08A-4D9D781B26DF} - \AutoKMS No Task File <==== ATTENTION
Task: {94D20500-6003-4B7C-8C0E-68720C6D6036} - System32\Tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask => Sc.exe start osppsvc
Task: {94F959C0-E74A-4835-BF55-1055C6BD8301} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-30] (Google Inc.)
Task: {97C95E74-950B-4F85-AB7B-0B2F7EB6B203} - System32\Tasks\CCleanerSkipUAC => D:\Aplikace\CCleaner\CCleaner.exe [2014-12-12] (Piriform Ltd)
Task: {AF260132-74DD-4CCA-96AB-0B066FF65E4F} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-12-09] (Adobe Systems Incorporated)
Task: {CE3EFB50-AA69-4C0E-9101-696C7E4A45F4} - System32\Tasks\Intel(R) Small Business Advantage\Notifier => C:\Program Files\Intel\Intel(R) Small Business Advantage\UI\SBA_Notifier.exe
Task: {D88032C2-138A-4B23-9A34-6FBB71581DE0} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-30] (Google Inc.)
Task: {E1B14B24-14F5-4E44-8D0A-155FB33C8092} - \AutoKMSDaily No Task File <==== ATTENTION
Task: {E9E87AA6-1D46-4B51-BEF9-3A7EE133AD3B} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\Windows\system32\MRT.exe [2014-12-10] (Microsoft Corporation)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\AutoKMS.job => C:\Windows\AutoKMS.exe
Task: C:\Windows\Tasks\AutoKMSDaily.job => C:\Windows\AutoKMS.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (whitelisted) =============

2014-11-30 16:07 - 2012-08-31 15:03 - 00288768 _____ () C:\Windows\System32\HP1100LM.DLL
2014-11-30 16:06 - 2012-08-31 15:02 - 00074240 _____ () C:\Windows\system32\spool\PRTPROCS\x64\HP1100PP.DLL
2014-11-30 16:05 - 2012-08-31 15:03 - 03034112 _____ () C:\Windows\system32\spool\DRIVERS\x64\3\hp1100su.dll
2014-11-30 16:05 - 2012-08-31 15:02 - 01038336 _____ () C:\Windows\system32\spool\DRIVERS\x64\3\HP1100GC.dll
2014-11-30 16:52 - 2014-09-26 11:44 - 01993216 _____ () D:\Aplikace\Command Center\MSIControlService.exe
2014-12-07 00:39 - 2014-12-07 10:37 - 00076152 _____ () C:\Windows\SysWOW64\PnkBstrA.exe
2013-09-05 00:17 - 2013-09-05 00:17 - 04300456 _____ () C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2014-11-30 09:52 - 2013-09-16 20:19 - 01242584 ____R () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2013-09-05 00:14 - 2013-09-05 00:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2014-12-12 15:45 - 2014-12-06 02:50 - 01077064 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\libglesv2.dll
2014-12-12 15:45 - 2014-12-06 02:50 - 00211272 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\libegl.dll
2014-12-12 15:45 - 2014-12-06 02:50 - 09009480 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\pdf.dll
2014-12-12 15:45 - 2014-12-06 02:50 - 01677128 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\ffmpegsumo.dll
2014-12-12 15:45 - 2014-12-06 02:50 - 14913352 _____ () C:\Program Files (x86)\Google\Chrome\Application\39.0.2171.95\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Users\Mario Flachs\SkyDrive:ms-properties
AlternateDataStreams: C:\Users\Mario Flachs\Soubory cookie:3nWgKaNBqoZEjQXcY
AlternateDataStreams: C:\Users\Mario Flachs\AppData\Local\Temporary Internet Files:ix8KOdhfT147EqGTln5rkbWON

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

==================== EXE Association (whitelisted) =============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)

==================== MSCONFIG/TASK MANAGER disabled items =========

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "InstallerLauncher"
HKLM\...\StartupApproved\Run32: => "APSDaemon"
HKLM\...\StartupApproved\Run32: => "AdobeCEPServiceManager"
HKLM\...\StartupApproved\Run32: => "QuickTime Task"
HKU\S-1-5-21-403370392-2708246811-2563906322-1001\...\StartupApproved\Run: => "GSplay.exe"
HKU\S-1-5-21-403370392-2708246811-2563906322-1001\...\StartupApproved\Run: => "RocketDock"
HKU\S-1-5-21-403370392-2708246811-2563906322-1001\...\StartupApproved\Run: => "Win8StartScreen"
HKU\S-1-5-21-403370392-2708246811-2563906322-1001\...\StartupApproved\Run: => "TornTv Downloader"
HKU\S-1-5-21-403370392-2708246811-2563906322-1001\...\StartupApproved\Run: => "DAEMON Tools Lite"

========================= Accounts: ==========================

Administrator (S-1-5-21-403370392-2708246811-2563906322-500 - Administrator - Disabled)
Guest (S-1-5-21-403370392-2708246811-2563906322-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-403370392-2708246811-2563906322-1003 - Limited - Enabled)
Mario Flachs (S-1-5-21-403370392-2708246811-2563906322-1001 - Administrator - Enabled) => C:\Users\Mario Flachs

==================== Faulty Device Manager Devices =============

Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

==================== Event log errors: =========================

Application errors:
==================
Error: (01/07/2015 10:11:42 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
hr=0xC004F074
Argument příkazového řádku:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (01/07/2015 06:00:08 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
hr=0xC004F074
Argument příkazového řádku:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (01/07/2015 03:22:25 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
hr=0xC004F074
Argument příkazového řádku:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=UserLogon;SessionId=3

Error: (01/07/2015 03:18:02 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
hr=0xC004F074
Argument příkazového řádku:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (01/07/2015 03:18:00 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
hr=0xC004F074
Argument příkazového řádku:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (01/07/2015 07:08:47 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
hr=0xC004F074
Argument příkazového řádku:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=UserLogon;SessionId=1

Error: (01/07/2015 07:07:29 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
hr=0xC004F074
Argument příkazového řádku:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (01/06/2015 05:27:18 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_a9ed7f470139b3c1.manifest1 se nezdařilo. Chyba v souboru manifestu nebo zásad C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_a9ed7f470139b3c1.manifest2 na řádku C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_a9ed7f470139b3c1.manifest3.
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_a9ed7f470139b3c1.manifest.
Součást 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifest.

Error: (01/06/2015 04:21:52 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
hr=0xC004F074
Argument příkazového řádku:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (01/06/2015 04:21:50 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: Aktivace licence (slui.exe) se nezdařila s následujícím kódem chyby:
hr=0xC004F074
Argument příkazového řádku:
RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable

System errors:
=============
Error: (01/04/2015 07:26:53 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Pomocník pro připojení k síti závisí na službě Pomocná služba protokolu IP, která neuspěla při spuštění v důsledku následující chyby:
%%1058

Error: (01/04/2015 07:23:21 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (01/04/2015 07:23:21 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (01/04/2015 07:23:20 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (01/04/2015 07:23:20 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (01/04/2015 07:23:20 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (01/04/2015 05:39:03 PM) (Source: DCOM) (EventID: 10010) (User: XXX)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (01/04/2015 00:41:50 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba Pomocník pro připojení k síti závisí na službě Pomocná služba protokolu IP, která neuspěla při spuštění v důsledku následující chyby:
%%1058

Error: (01/04/2015 00:41:15 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba zařazování tisku neuspěla při spuštění v důsledku následující chyby:
%%1069

Error: (01/04/2015 00:41:15 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Služba Spooler se nemohla přihlásit jako NT AUTHORITY\SYSTEM s aktuálně konfigurovaným heslem z důvodu následující chyby:
%%50

Chcete-li zajistit správnou konfiguraci služby, použijte modul snap-in Služby konzoly Microsoft Management Console (MMC).

Microsoft Office Sessions:
=========================
Error: (01/07/2015 10:11:42 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: hr=0xC004F074RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (01/07/2015 06:00:08 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: hr=0xC004F074RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (01/07/2015 03:22:25 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: hr=0xC004F074RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=UserLogon;SessionId=3

Error: (01/07/2015 03:18:02 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: hr=0xC004F074RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (01/07/2015 03:18:00 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: hr=0xC004F074RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (01/07/2015 07:08:47 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: hr=0xC004F074RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=UserLogon;SessionId=1

Error: (01/07/2015 07:07:29 AM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: hr=0xC004F074RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (01/06/2015 05:27:18 PM) (Source: SideBySide) (EventID: 78) (User: )
Description: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_a9ed7f470139b3c1.manifestC:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17415_none_6240486fecbd8abb.manifestD:\Aplikace\CCleaner\CCleaner.exe

Error: (01/06/2015 04:21:52 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: hr=0xC004F074RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable

Error: (01/06/2015 04:21:50 PM) (Source: Software Protection Platform Service) (EventID: 8198) (User: )
Description: hr=0xC004F074RuleId=502ff3ba-669a-4674-bbb1-601f34a3b968;Action=AutoActivateSilent;AppId=55c92734-d682-4d71-983e-d6ec3f16059f;SkuId=c06b6981-d7fd-4a35-b7b4-054742b7af67;NotificationInterval=1440;Trigger=NetworkAvailable

CodeIntegrity Errors:
===================================
Date: 2015-01-04 03:22:01.456
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-01-02 17:51:44.371
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-01-01 11:05:31.288
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-12-31 15:20:05.294
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2014-12-26 15:06:49.850
Description: Code Integrity determined that a process (\Device\HarddiskVolume3\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume3\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5-4570 CPU @ 3.20GHz
Percentage of memory in use: 18%
Total physical RAM: 8119.99 MB
Available physical RAM: 6648.26 MB
Total Pagefile: 16311.99 MB
Available Pagefile: 13979.09 MB
Total Virtual: 131072 MB
Available Virtual: 131071.8 MB

==================== Drives ================================

Drive c: (WD2500AAJS-00M0A0) (Fixed) (Total:232.88 GB) (Free:189.79 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive d: (ST1000DM003-1CH162) (Fixed) (Total:931.41 GB) (Free:847.78 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or

(Size: 931.5 GB) (Disk ID: 9317803F)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=931.4 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 232.9 GB) (Disk ID: 00000001)
Partition 1: (Active) - (Size=232.9 GB) - (Type=07 NTFS)

==================== End Of Log ============================

Příspěvekod **jaro3** » 08 led 2015 10:16

Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.

Kód: Vybrat vše

HKU\S-1-5-21-403370392-2708246811-2563906322-1001\...\MountPoints2: {38084dba-7869-11e4-824f-806e6f6e6963} - "E:\DVDSetup.exe" 
HKU\S-1-5-21-403370392-2708246811-2563906322-1001\...\Winlogon: [Shell] C:\Windows\explorer.exe [2501368 2014-10-29] (Microsoft Corporation) <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-403370392-2708246811-2563906322-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-403370392-2708246811-2563906322-1001 -> {012E1000-
FF Plugin: @esn/npbattlelog,version=2.5.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelogx64.dll No File
FF Plugin-x32: @esn/npbattlelog,version=2.5.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelog.dll No File
FF Plugin-x32: @java.com/DTPlugin,version=11.25.2 -> D:\Aplikace\Java\bin\dtplugin\npDeployJava1.dll No File
C:\Windows\Tasks\AutoKMSDaily.job
Task: {44739B2A-7218-429B-B08A-4D9D781B26DF} - \AutoKMS No Task File <==== ATTENTION
Task: {44739B2A-7218-429B-B08A-4D9D781B26DF} - \AutoKMS No Task File <==== ATTENTION
Task: C:\Windows\Tasks\AutoKMS.job => C:\Windows\AutoKMS.exe
Task: C:\Windows\Tasks\AutoKMSDaily.job => C:\Windows\AutoKMS.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
C:\Windows\AutoKMS.exe
AlternateDataStreams: C:\Users\Mario Flachs\AppData\Local\Temporary Internet Files:ix8KOdhfT147EqGTln5rkbWON

(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).

Ulož jej na na plochu jako fixlist.txt

Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.

V možnostech složky si povol zobrazování skrytých souborů a složek+ odškrtni zatržítko skrýt chráněné soubory operačního systému

Toto otestuj na Virustotal
C:\Windows\system32\Drivers\5E752482.sys

Klikni vpravo od okénka na Vybrat a v Exploreru najdi požadovaný soubor v Tvém PC. Označ ho myší a klikni na Otevřít , poté klikni na Send File. Pokud už byl soubor testován , objeví se okno ve kterém klikni na Reanalyze. Soubor se začne postupně testovat více antivirovými programy. Až skončí test posledního antiviru , objeví se nahoře result a červeně počet nákaz , např. 0/43 , nebo 1/43. Pak zkopíruj myší odkaz na tuto stránku a vlož ji do svého příspěvku.

Nebo na:
http://www.virscan.org/

mikrosini · Příspěvekod **mikrosini** » 09 led 2015 23:11

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 07-01-2015
Ran by Mario Flachs at 2015-01-09 23:10:58 Run:2
Running from C:\Users\Mario Flachs\Desktop
Loaded Profile: Mario Flachs (Available profiles: Mario Flachs)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
HKU\S-1-5-21-403370392-2708246811-2563906322-1001\...\MountPoints2: {38084dba-7869-11e4-824f-806e6f6e6963} - "E:\DVDSetup.exe"
HKU\S-1-5-21-403370392-2708246811-2563906322-1001\...\Winlogon: [Shell] C:\Windows\explorer.exe [2501368 2014-10-29] (Microsoft Corporation) <==== ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-403370392-2708246811-2563906322-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-403370392-2708246811-2563906322-1001 -> {012E1000-
FF Plugin: @esn/npbattlelog,version=2.5.1 -> C:\Program Files (x86)\Battlelog Web Plugins\2.5.1\npbattlelogx64.dll No File
*****************

HKU\S-1-5-21-403370392-2708246811-2563906322-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{38084dba-7869-11e4-824f-806e6f6e6963} => Key not found.
HKCR\CLSID\{38084dba-7869-11e4-824f-806e6f6e6963} => Key not found.
HKU\S-1-5-21-403370392-2708246811-2563906322-1001\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell => Value not found.
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer => Key not found.
HKU\S-1-5-21-403370392-2708246811-2563906322-1001\SOFTWARE\Policies\Microsoft\Internet Explorer => Key not found.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value not found.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value not found.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value not found.
HKU\S-1-5-21-403370392-2708246811-2563906322-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\SearchScopes: HKU\S-1-5-21-403370392-2708246811-2563906322-1001 -> {012E1000- => Value not found.
HKLM\Software\MozillaPlugins\@esn/npbattlelog,version=2.5.1 => Key not found.

==== End of Fixlog 23:10:58 ====

mikrosini · Příspěvekod **mikrosini** » 09 led 2015 23:17

http://www.virscan.org/scan/f28abd9fc4d ... 9e2c304583

Příspěvekod **jaro3** » 10 led 2015 09:37

Ten script udělej znovu , v nouz. režimu.

Virustotal neodkazuje , zkus znovu.

Zatížení grafické karty: nejspíše vir Vyřešeno

Re: Zatížení grafické karty: nejspíše vir

Re: Zatížení grafické karty: nejspíše vir

Re: Zatížení grafické karty: nejspíše vir

Re: Zatížení grafické karty: nejspíše vir

Re: Zatížení grafické karty: nejspíše vir

Re: Zatížení grafické karty: nejspíše vir

Re: Zatížení grafické karty: nejspíše vir

Re: Zatížení grafické karty: nejspíše vir

Re: Zatížení grafické karty: nejspíše vir

Re: Zatížení grafické karty: nejspíše vir

Re: Zatížení grafické karty: nejspíše vir

Re: Zatížení grafické karty: nejspíše vir

Kdo je online