Prosím o kontrolu Logu - chyba s flash videi

Zizkin · Příspěvekod **Zizkin** » 06 črc 2015 12:47

Ahoj, prosím, mrkněte mi na log a řekněte, co se s tím dá dělat.

problém: již nějakou dobu (cca 3 měsíce) mi začali blbnout flash videa v prohlížečích (Chrome, Explorer, zkusil jsem pro kontrolu i další), a to tak, že obraz je zelený, zvuk ok. (YouTube ale neblbne)
Je to ale občas, není to pravidelné. proste videa normálně fungují, a pak třeba 5 minut nejdou a pak zase jdou.

Zkusil jsem: odinstalovat/nainstalovat poslední verzi FLASHe v prohlížečích, ovladačů grafiky, kodeků (používám K-Lite)
Bohužel výsledek stejný, chvíli jde, a pak chvíli ne. Jedná se pouze o web videa, normalní videa v PC .avi, .mkv, .mp4 jdou bez problémů.

Na foru jsem našel, abych si zkusil HiJackThis,
tak jsem to projel a pak online nechal projel. Výsledek: 6 křížků (1 z nich je verze Exploreru, takze 5x %systemroot%\system32).

Děkuji za odpovědi

► Zobrazit spoiler

http://www.hijackthis.cz/default.htm

Reklama

Příspěvekod **jerabina** » 06 črc 2015 13:17

Ahoj, vítej na fóru PC-HELP.CZ!

Podíváme se, co se s tím dá dělat :-)

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected. Poté klikni na Main (hlavní stránku ) a klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.

- Pokud používáš jen Google Chrome , tak ATF nemusíš použít.

===================================================

Stáhni si TFC
Otevři soubor a zavři všechny ostatní okna, Klikni na Start k zahájení procesu. Program by neměl trvat dlouho.
Poté by se měl PC restartovat, pokud ne , proveď sám.

===================================================

Stáhni AdwCleaner (by Xplode)

Ulož si ho na svojí plochu
Ukonči všechny programy , okna a prohlížeče
Spusť program poklepáním a klikni na „Prohledat-Scan“
Po skenu se objeví log ( jinak je uložen systémovem disku jako AdwCleaner[R?].txt), jeho obsah sem celý vlož.

===================================================

Stáhni si Malwarebytes' Anti-Malware
- Při instalaci odeber zatržítko u „Povolit bezplatnou zkušební verzi Malwarebytes' Anti-Malware Premium“
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Aktualizace Malwarebytes' Anti-Malware a Spustit aplikaci Malwarebytes' Anti-Malware, pokud jo tak klikni na tlačítko konec
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a klikni na Skenovat nyní a
- po proběhnutí programu se ti objeví hláška vpravo dole tak klikni na Kopírovat do schránky a a vlož sem celý log.

- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).

Pokud budou problémy , spusť v nouz. režimu.

Zizkin · Příspěvekod **Zizkin** » 06 črc 2015 15:42

ahoj :)
díky za přijetí :)
tady posílam vse potrevne, jak jsi psal:

=====================
ADW Clenaner:

► Zobrazit spoiler

=====================
Malware:

► Zobrazit spoiler

Příspěvekod **jerabina** » 06 črc 2015 15:48

Vidím tam nálezy, které by to mohly způsobovat, takže to smažeme a uvidíme ;-)

Pro příště jenom prosím nevkládej logy do tagu spoiler, blbě se mi to čte, dávej to jako normální text do příspěvku. Děkuju za pochopení :-)

Spusť znovu AdwCleaner (u Windows Vista či Windows7, klikni na AdwCleaner pravým a vyber „Spustit jako správce“
klikni na „Prohledat-Scan“, po prohledání klikni na „ Vymazat-Clean“

Program provede opravu, po automatickém restartu neukáže log (C:\AdwCleaner [S?].txt) , jeho obsah sem celý vlož.

Spusť znovu MbAM a dej Skenovat nyní
- po proběhnutí programu se ti objeví hláška tak klikni na „Vše do karantény(smazat vybrané)“ a na „Exportovat záznam“ a vyber „textový soubor“ , soubor nějak pojmenuj a někam ho ulož. Zkopíruj se celý obsah toho logu.

Stáhni si Junkware Removal Tool by Thisisu

na svojí plochu.

Deaktivuj si svůj antivirový program. Pravým tl. myši klikni na JRT.exe a vyber „spustit jako správce“. Pro pokračování budeš vyzván ke stisknutí jakékoliv klávesy. Na nějakou klikni.
Začne skenování programu. Skenování může trvat dloho , podle množství nákaz. Po ukončení skenu se objeví log (JRT.txt) , který se uloží na ploše.
Zkopíruj sem prosím celý jeho obsah.

Stáhni si RogueKiller
32bit.:
http://www.sur-la-toile.com/RogueKiller/RogueKiller.exe
64bit.:
http://www.sur-la-toile.com/RogueKiller ... lerX64.exe
na svojí plochu.
- Zavři všechny ostatní programy a prohlížeče.
- Pro OS Vista a win7 spusť program RogueKiller.exe jako správce , u XP poklepáním.
- počkej až skončí Prescan -vyhledávání škodlivých procesů.
-Potom klikni na „Prohledat“.
- Program skenuje procesy PC. Po proskenování klikni na „Zpráva“celý obsah logu sem zkopíruj.
Pokud je program blokován , zkus ho spustit několikrát. Pokud dále program nepůjde spustit a pracovat, přejmenuj ho na winlogon.exe.

Zizkin · Příspěvekod **Zizkin** » 06 črc 2015 16:26

ok, promin, jsem zvykly z jinych fór, kde prave dbají na to, aby "nesmyslné" veci byly ve spoilerech, prootze pak nikoho nebavi listovat.

takže:

===============
ADW:

***** [ Služby ] *****

***** [ Soubory / Složky ] *****

Složka Smazáno : C:\ProgramData\4357358427666729547
Složka Smazáno : C:\ProgramData\{d13ac16f-8d81-5d8b-d13a-ac16f8d805be}
Složka Smazáno : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MiniLyrics
Složka Smazáno : C:\Program Files (x86)\MiniLyrics
Složka Smazáno : C:\Users\AGA\AppData\Roaming\OpenCandy
Složka Smazáno : C:\Users\AGA\AppData\Roaming\etranslator
Složka Smazáno : C:\Users\AGA\AppData\Roaming\AceWebExtension
Složka Smazáno : C:\Users\AGA\AppData\Roaming\MiniLyrics
Složka Smazáno : C:\Users\AGA\AppData\Local\Google\Chrome\User Data\Default\Extensions\mfhnkgpdlogbknkhlgdjlejeljbhflim
Soubor Smazáno : C:\WINDOWS\System32\roboot64.exe

***** [ Naplánované úlohy ] *****

Úloha Smazáno : nethost task

***** [ Zástupci ] *****

***** [ Registry ] *****

Klíč Smazáno : HKLM\SOFTWARE\Google\Chrome\Extensions\pfjgibhmcgncmjhdodpaolfbjpjjajal
Klíč Smazáno : HKLM\SOFTWARE\Google\Chrome\Extensions\mfmjpfoggikolkfilofbpgcnhdcgahib
Klíč Smazáno : HKLM\SOFTWARE\Classes\CLSID\{F83D1872-D9FF-47F8-B5A0-49CC51E24EE8}
Klíč Smazáno : HKLM\SOFTWARE\Classes\TypeLib\{5D9FB48A-5CE2-4118-B19F-F88ADDB0F814}
Klíč Smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{A06ED961-D98F-4CF9-A89B-80AB11DB149C}
Klíč Smazáno : HKCU\Software\AceStream
Klíč Smazáno : HKCU\Software\MiniLyrics
Klíč Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\AceStream
Klíč Smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MiniLyrics
Klíč Smazáno : HKLM\SOFTWARE\Classes\Installer\Features\93BAD29AC2E44034A96BCB446EB8552E
Klíč Smazáno : HKLM\SOFTWARE\Classes\Installer\Products\93BAD29AC2E44034A96BCB446EB8552E
Klíč Smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\93BAD29AC2E44034A96BCB446EB8552E
Data Smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings [ProxyOverride] - *.local

***** [ Prohlížeče ] *****

-\\ Internet Explorer v11.0.9600.17840

-\\ Google Chrome v43.0.2357.130

[C:\Users\AGA\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Smazáno [Search Provider] : hxxp://go-search.ru/search?q={searchTerms}
[C:\Users\AGA\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Smazáno [Search Provider] : hxxp://en.softonic.com/s/{searchTerms}
[C:\Users\AGA\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] - Smazáno [Startup_URLs] : 32E468026F2FDAAD62E4FF921DF816E76C8C7B9E528D93F1E5148F615DB4BFDB"},"software_reporter":{"prompt_reason":"1772F09DAF2EAC99332EDBA28FD064818C372C4126F7718AAAB6E7D09FF45BE1","prompt_seed":"2B5AE064D5EE8CFC405C1B5376E083A4B968BCC4D0C8E65FE5484B1D1B55100E","prompt_version":"8D167E910EA680A4A12E0AC66136C8CF0B902ABDEB3E9C6EF7F69895C60A213F"},"sync":{"remaining_rollback_tries":"97115AD14199459001D3E04D8F83001ACC9FACFB4397A82DED0E4BF970B5252A"}},"super_mac":"C498DDD70B3E5F665AE513562B3FD761D2855DF2CD298F99BBC127CB27DD1467"},"session":{"restore_on_startup":1,"startup_urls":["hxxp://search.conduit.com/?ctid=CT3282330&SearchSource=48&CUI=UN59509198595251016&UM=2

*************************

AdwCleaner[R0].txt - [3845 bytů] - [06/07/2015 15:22:34]
AdwCleaner[R1].txt - [3903 bytů] - [06/07/2015 15:51:58]
AdwCleaner[S0].txt - [3585 bytů] - [06/07/2015 15:52:42]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [3643 bytů] ##########
====================

MbAM:

vse jsem smazal, ale hned po smazani mi to napsala restart PC a ze vysledek je uložen. pc se tedy restartoval, ale zadny log jsem nenasel.
jak jsi psal hned po smazani export, popravde jsem na nej zapomnel (protoze mi hned vybehlo okno s restartem)

======================
JRT:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 7.3.3 (07.06.2015:2)
OS: Windows 8.1 Pro x64
Ran by AGA on po 06. 07. 2015 at 16:10:36,68
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

~~~ Services

~~~ Tasks

~~~ Registry Values

Successfully repaired: [Registry Value] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search\\SearchAssistant

~~~ Registry Keys

~~~ Files

~~~ Folders

Successfully deleted: [Folder] C:\Users\AGA\appdata\local\systemdir

~~~ Chrome

Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Google\Chrome\Extensions\pgaidlfgjkmeendhknafahppllbniejm

[C:\Users\AGA\appdata\local\Google\Chrome\User Data\Default\Preferences] - default search provider reset

[C:\Users\AGA\appdata\local\Google\Chrome\User Data\Default\Preferences] - Extensions Deleted:

[C:\Users\AGA\appdata\local\Google\Chrome\User Data\Default\Secure Preferences] - default search provider reset

[C:\Users\AGA\appdata\local\Google\Chrome\User Data\Default\Secure Preferences] - Extensions Deleted:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on po 06. 07. 2015 at 16:12:29,99
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

=======================================
Rogue:

RogueKiller V10.9.0.0 (x64) [Jul 6 2015] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Webová stránka : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com

Opera?ní systém : Windows 8.1 (6.3.9200 ) 64 bits version
Spu?t?no : Normální re?im
U?ivatel : AGA [Práva správce]
Started from : C:\Users\AGA\Desktop\RogueKillerX64.exe
Mód : Prohledat -- Datum : 07/06/2015 16:19:34

¤¤¤ Procesy : 0 ¤¤¤

¤¤¤ Registry : 6 ¤¤¤
[Suspicious.Path] (X64) HKEY_USERS\S-1-5-21-600620042-11250831-617673667-1001\Software\Microsoft\Windows\CurrentVersion\Run | AceWebException : C:\Users\AGA\AppData\Roaming\AceWebExtension\updater\ace_web_extension.exe [x] -> Nalezeno
[Suspicious.Path] (X86) HKEY_USERS\S-1-5-21-600620042-11250831-617673667-1001\Software\Microsoft\Windows\CurrentVersion\Run | AceWebException : C:\Users\AGA\AppData\Roaming\AceWebExtension\updater\ace_web_extension.exe [x] -> Nalezeno
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-600620042-11250831-617673667-1001\Software\Microsoft\Internet Explorer\Main | Start Page : http://seznam.cz/ -> Nalezeno
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-600620042-11250831-617673667-1001\Software\Microsoft\Internet Explorer\Main | Start Page : http://seznam.cz/ -> Nalezeno
[PUM.Policies] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Nalezeno
[PUM.Policies] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Nalezeno

¤¤¤ Úlohy : 0 ¤¤¤

¤¤¤ Soubory : 0 ¤¤¤

¤¤¤ Soubor HOSTS : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Nahrán) ¤¤¤

¤¤¤ Webové prohlí?e?e : 0 ¤¤¤

¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: Crucial_CT240M500SSD1 +++++
--- User ---
[MBR] 764ff8faca2344d372391cef1cc9eec8
[BSP] 472bbabc00bdb61b7360cd574cde2ea8 : Windows Vista/7/8|VT.Unknown MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 350 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 718848 | Size: 228584 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive1: Hitachi HDT725032VLA360 +++++
--- User ---
[MBR] 6d3e136c2fb6710d5ae88a7f0f398b10
[BSP] 272ce6b16e5eaf469d06bf566763d9c2 : Windows XP|VT.Unknown MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 63 | Size: 305244 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive2: ST2000DM001-1ER164 +++++
--- User ---
[MBR] e06e7c6fa0feb4dff72b67ddf8fe77e8
[BSP] 0451c9be6747b7c25db5bc71732b3e87 : Windows Vista/7/8|VT.Unknown MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 1907727 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive3: ST2000DL003-9VT166 +++++
--- User ---
[MBR] 7d10b91d7f74f9968b7289c414dba8f5
[BSP] 35260c4111d061936e97f2d74d5ef133 : Windows Vista/7/8|VT.Unknown MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 1907727 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive4: ST3000DM001-1ER166 +++++
--- User ---
[MBR] 0086f36f0b7bc8b257f89fc226376c3d
[BSP] 9e3b3c473b1db0daa516427cdae6e1cc : Windows Vista/7/8 MBR Code
Partition table:
0 - Microsoft reserved partition | Offset (sectors): 34 | Size: 128 MB
1 - Basic data partition | Offset (sectors): 264192 | Size: 2861459 MB
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive5: Generic- Multi-Card USB Device +++++
--- User ---
[MBR] 1cc296961e69b07968b9ad0722f1d5f4
[BSP] df4f83c1f72e36823a12b0dfc7617313 : Empty MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 32768 | Size: 60890 MB [Unknown Bootstrap | Unknown Bootloader]
User = LL1 ... OK
Error reading LL2 MBR! ([32] Po?adavek není podporován. )

Příspěvekod **jerabina** » 06 črc 2015 17:02

V pořádku, nám se to tady lépe louská, když je to jako normální text :-)

Udělej ten MBAM sken znovu a log sem vlož, uvidíme jestli se to nevrací.

Zavři všechny programy a prohlížeče. Deaktivuj antivir a firewall.
Prosím, odpoj všechny USB (kromě myši s klávesnice) nebo externí disky z počítače před spuštěním tohoto programu.
Spusť znovu RogueKiller ( Pro Windows Vista nebo Windows 7, klepni pravým a vyber "Spustit jako správce", ve Windows XP poklepej ke spuštění).
- Počkej, až Prescan dokončí práci...
- Pak klikni na "Prohledat " ,po jeho skončení:
- V záložkách (Registry , Tasks , Web Browser apod.) vše zatrhni (dej zatržítka)
(musíš dát myší zatržítko do toho čtverečku vlevo od registru ap.)
- Klikni na "Smazat"
- Počkej, dokud Status box nezobrazí " Mazání dokončeno "
- Klikni na "Zpráva " a zkopíruj a vlož obsah té zprávy prosím sem. Log je možno nalézt v RKreport [číslo]. txt na ploše.
- Zavři RogueKiller

Vypni antivir
Stáhni
Zoek.exe

a uloz si ho na plochu.
Zavři všechny ostatní programy , okna i prohlížeče.
Spusť Zoek.exe ( u win vista , win7, 8 klikni na něj pravým a vyber : „Spustit jako správce“
- pozor , náběh programu může trvat déle.

Do okna programu vlož skript níže:

Kód: Vybrat vše

autoclean;
emptyclsid;
iedefaults;
FFdefaults;
CHRdefaults;
emptyalltemp;
resethosts;

klikni na Run Script
Program provede sken , opravu, sken i oprava může trvat i více minut ,je třeba posečkat do konce. Do okna neklikej!
Program nabídne restart , potvrď .

Po restartu se může nějaký čas ukázat pouze černá plocha , to je normální. Je třeba počkat až se vytvoří log. Ten si můžeš uložit třeba do dokumentů , jinak se sám ukládá do:
C:\zoek-results.log
Zkopíruj sem celý obsah toho logu.

Vlož nový log z HJT + informuj o problémech.

Zizkin · Příspěvekod **Zizkin** » 06 črc 2015 18:43

Tak tady je vše:

=======================================================================
MbAM

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 6. 7. 2015
Čas skenování: 17:28
Protokol: MbAM.txt
Správce: Ano

Verze: 2.1.8.1057
Databáze malwaru: v2015.07.06.04
Databáze rootkitů: v2015.07.05.03
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto

OS: Windows 8.1
CPU: x64
Souborový systém: NTFS
Uživatel: AGA

Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 393278
Uplynulý čas: 9 min, 26 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 0
(Nenalezeny žádné škodlivé položky)

Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)

Data registru: 0
(Nenalezeny žádné škodlivé položky)

Složky: 0
(Nenalezeny žádné škodlivé položky)

Soubory: 0
(Nenalezeny žádné škodlivé položky)

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)

(end)

======================================================================================
ROGUE

RogueKiller V10.9.0.0 (x64) [Jul 6 2015] by Adlice Software
mail : http://www.adlice.com/contact/
Feedback : http://forum.adlice.com
Webová stránka : http://www.adlice.com/softwares/roguekiller/
Blog : http://www.adlice.com

Opera?ní systém : Windows 8.1 (6.3.9200 ) 64 bits version
Spu?t?no : Normální re?im
U?ivatel : AGA [Práva správce]
Started from : C:\Users\AGA\Desktop\RogueKillerX64.exe
Mód : Smazat -- Datum : 07/06/2015 17:44:44

¤¤¤ Procesy : 0 ¤¤¤

¤¤¤ Registry : 6 ¤¤¤
[Suspicious.Path] (X64) HKEY_USERS\S-1-5-21-600620042-11250831-617673667-1001\Software\Microsoft\Windows\CurrentVersion\Run | AceWebException : C:\Users\AGA\AppData\Roaming\AceWebExtension\updater\ace_web_extension.exe [x] -> Smazáno
[Suspicious.Path] (X86) HKEY_USERS\S-1-5-21-600620042-11250831-617673667-1001\Software\Microsoft\Windows\CurrentVersion\Run | AceWebException : C:\Users\AGA\AppData\Roaming\AceWebExtension\updater\ace_web_extension.exe [x] -> ERROR [2]
[PUM.HomePage] (X64) HKEY_USERS\S-1-5-21-600620042-11250831-617673667-1001\Software\Microsoft\Internet Explorer\Main | Start Page : http://seznam.cz/ -> Nahrazeno (http://go.microsoft.com/fwlink/p/?LinkId=255141)
[PUM.HomePage] (X86) HKEY_USERS\S-1-5-21-600620042-11250831-617673667-1001\Software\Microsoft\Internet Explorer\Main | Start Page : http://seznam.cz/ -> Nahrazeno (http://go.microsoft.com/fwlink/p/?LinkId=255141)
[PUM.Policies] (X64) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Nahrazeno (2)
[PUM.Policies] (X86) HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System | ConsentPromptBehaviorAdmin : 0 -> Nahrazeno (2)

¤¤¤ Úlohy : 0 ¤¤¤

¤¤¤ Soubory : 0 ¤¤¤

¤¤¤ Soubor HOSTS : 0 ¤¤¤

¤¤¤ Antirootkit : 0 (Driver: Nahrán) ¤¤¤

¤¤¤ Webové prohlí?e?e : 0 ¤¤¤

¤¤¤ Kontrola MBR : ¤¤¤
+++++ PhysicalDrive0: Crucial_CT240M500SSD1 +++++
--- User ---
[MBR] 764ff8faca2344d372391cef1cc9eec8
[BSP] 472bbabc00bdb61b7360cd574cde2ea8 : Windows Vista/7/8|VT.Unknown MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 350 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
1 - [XXXXXX] NTFS (0x7) [VISIBLE] Offset (sectors): 718848 | Size: 228584 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive1: +++++
--- User ---
[MBR] 6d3e136c2fb6710d5ae88a7f0f398b10
[BSP] 272ce6b16e5eaf469d06bf566763d9c2 : Windows XP|VT.Unknown MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 63 | Size: 305244 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive2: ST2000DM001-1ER164 +++++
--- User ---
[MBR] e06e7c6fa0feb4dff72b67ddf8fe77e8
[BSP] 0451c9be6747b7c25db5bc71732b3e87 : Windows Vista/7/8|VT.Unknown MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 1907727 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive3: ST2000DL003-9VT166 +++++
--- User ---
[MBR] 7d10b91d7f74f9968b7289c414dba8f5
[BSP] 35260c4111d061936e97f2d74d5ef133 : Windows Vista/7/8|VT.Unknown MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x7) [VISIBLE] Offset (sectors): 2048 | Size: 1907727 MB [Windows Vista/7/8 Bootstrap | Windows Vista/7/8 Bootloader]
User = LL1 ... OK
User = LL2 ... OK

+++++ PhysicalDrive4: ST3000DM001-1ER166 +++++
--- User ---
[MBR] 0086f36f0b7bc8b257f89fc226376c3d
[BSP] 9e3b3c473b1db0daa516427cdae6e1cc : Windows Vista/7/8 MBR Code
Partition table:
0 - Microsoft reserved partition | Offset (sectors): 34 | Size: 128 MB
1 - Basic data partition | Offset (sectors): 264192 | Size: 2861459 MB
User = LL1 ... OK
User = LL2 ... OK

========================================================================================
Zoek

Zoek.exe v5.0.0.0 Updated 04-May-2015
Tool run by AGA on po 06. 07. 2015 at 17:46:15,82.
Microsoft Windows 8.1 Pro 6.3.9600 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\AGA\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

6. 7. 2015 17:47:01 Zoek.exe System Restore Point Created Successfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

127.0.0.1 localhost

==== Empty Folders Check ======================

C:\PROGRA~2\AGEIA Technologies deleted successfully
C:\Users\AGA\AppData\Roaming\HpUpdate deleted successfully
C:\Users\AGA\AppData\Roaming\Vso deleted successfully
C:\Users\AGA\AppData\Local\EmieBrowserModeList deleted successfully
C:\Users\AGA\AppData\Local\EmieSiteList deleted successfully
C:\Users\AGA\AppData\Local\EmieUserList deleted successfully

==== Deleting CLSID Registry Keys ======================

==== Deleting CLSID Registry Values ======================

==== Deleting Services ======================

==== Deleting Files \ Folders ======================

C:\PROGRA~2\AGEIA Technologies not found
C:\Users\AGA\AppData\Roaming\.ACEStream deleted
C:\PROGRA~2\SopCast deleted
C:\Users\AGA\AppData\Roaming\pcouffin.log deleted
C:\PROGRA~3\Package Cache deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\Users\AGA\Downloads\SopCast-3.5.0_by_Wiziwig.tv.zip deleted
C:\windows\SysNative\GroupPolicy\Machine deleted
C:\windows\SysNative\GroupPolicy\User deleted
C:\windows\SysNative\GroupPolicy\GPT.INI deleted
C:\WINDOWS\Syswow64\GroupPolicy\gpt.ini deleted

==== Chromium Look ======================

Google Chrome Version: 43.0.2357.130

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
fcimjkehglmijlhnpbmjbpoiamjiegod - No path found[]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
fcimjkehglmijlhnpbmjbpoiamjiegod - No path found[]
lmjegmlicamnimmfhcmpkclmigmmcbeh - No path found[]

StoreBirds - AGA\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcimjkehglmijlhnpbmjbpoiamjiegod
Google Drive App Launcher - AGA\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh

==== Chromium Startpages ======================

C:\Users\AGA\AppData\Local\Google\Chrome\User Data\Default\Preferences
/www.googleapis.com/auth/gcm","https://www.googleapis.com/auth/googlenow"]},"optional_permissions":["background"],"permissions":["alarms","gcm","identity","metricsPrivate","notifications","storage","tabs","webstorePrivate","*://*.google.com/*","*://*.gstatic.com/*","https://*.googleapis.com/chromenow/v1/*","https://*.googleapis.com/gcm/*","https://*.googleusercontent.com/*"],"version":"1.2.0.1"},"path":"C:\\Program Files (x86)\\Google\\Chrome\\Application\\43.0.2357.130\\resources\\google_now","preferences":{},"regular_only_preferences":{},"state":1,"was_installed_by_default":false,"was_installed_by_oem":false}}},"pinned_tabs":[],"protection":{"macs":{"browser":{"show_home_button":"F35ADEF01DD3205E2B8A2BC5A04C53FC3A878986AA2E924DBEB1100EAE8944F6"},"default_search_provider":{"keyword":"1411C8196E71FD9D86B3B4538009B96DB13598A53E3C8C541A5A443C416FAB75","name":"C35375A0E78540F1A2C5005B4BD3C7D11CA5266317C468638A9998CDE30F1C89","search_url":"A3A260B95B51032B2A3836A28544774A465A6704BE07509D37096547B1BE0B28"},"default_search_provider_data":{"template_url_data":"37AB03DC7C1C0BE2338717E65D6DF89037B24857B2F34499B0E5C27C562DB0D4"},"extensions":{"settings":{"ahfgeienlihckogmohjhadlkjgocpleb":"87BD7392D376CB6E41B0601C5F198DE2FEDFBF9EAE072EA749E98629CE004A7F","bepbmhgboaologfdajaanbcjmnhjmhfn":"3E6C201D9D073FB26497849E4894906C76E851215D255ECC981993E64EE53E8E","eemcgdkfndhakfknompkggombfjjjeno":"038D1F935F0110E4DB347D954D1D598863FFDDCA2235F7ACBFD165DC3885CB86","ennkphjdgehloodpbhlhldgbnhmacadg":"E9940E067C2F5EE2366B889DFBBCF8363FFEE95918E489C073B15D2A674C4CFE","fcimjkehglmijlhnpbmjbpoiamjiegod":"ECA7D84DD3988EFEA886B4661052AFE64347311EE5AD917606994A5581CDEBB9","gfdkimpbcpahaombhbimeihdjnejgicl":"771BA73230A4088FB61D1245EEAB3415C108E26AB69AF11BD491DE38CB09F9F4","kmendfapggjehodndflmmgagdbamhnfd":"2524BBF3EBF1B54BF5585C9D6E8B46D623E1308D41E236A39F561334CF2A319A","lmjegmlicamnimmfhcmpkclmigmmcbeh":"15A399933B3F9FE6B3596A3798E140FB04CC5FEAC877C6B654496A8DC478666A","mfehgcgbbipciphmccgaenjidiccnmng":"08760FB59D85B629C5E7413EF78B8F06313653E6792F4758C41CCD2CC2E9062B","mfffpogegjflfpflabcdkioaeobkgjik":"C17DB1775ABBB5C4AC7DF6B65932AC3CF9C4851EF1544F66899D4C9522043A27","mgndgikekgjfcpckkfioiadnlibdjbkf":"5CCED6166153A732ECFF613E1D7590F3D25E4573C9C898EAA0F8B03F694A769A","mhjfbmdgcfjbbpaeojofohoefgiehjai":"0DE49B25C2C55BB335F5F9C30260FBED6C4C2530FB7FCED322CD2FA6DE71458E","neajdppkdcdipfabeoofebfddakdcjhd":"95739BED4AD85BA299F133995EC80C48F21798036841341FC55CA279CFE8DF12","nkeimhogjdpnpccoofpliimaahmaaome":"4DDD16703958BD73BA25F5407EB510A7326710E4DD2075EFBC81F67A8B661C49","nmmhkkegccagdldgiimedpiccmgmieda":"DCD6646195536100243D4243CC34442711BCF8CB4DC2F69368C04B889D47A703","pafkbggdmjlpgkdkcbjmhmfcdpncadgh":"AF294722C45298EB10F24B20A185A1F73155132CC97BFDC231C3F7083CDC993E"}},"google":{"services":{"last_username":"D1401477412B5C40AF7D9DB369F0B829D00E2E98C745DA374FD76BA37970C706","username":"DECD6DF151B603584A63B45485AFFE6B6BC8514128B59EDF7D31AD658B6130DB"}},"homepage":"9C9F3237E3E1853F4CAC966944753FBEF27386C297BB1520DA26F952D2D952F0","homepage_is_newtabpage":"27B202BDD1CEDC642FDAA63DE7103503B127B87687A39307DE95643191544792","pinned_tabs":"4CB74A68BB40913DF03822F56A7AA7D6BC6E4053250295EF5359969AAA12A322","prefs":{"preference_reset_time":"A990D5213FCCFEAC5B36DD7C21A17468A5A9E8128C50520BA13E55309AB4AF20"},"profile":{"reset_prompt_memento":"E34F5545B693CBE1B131B9F1A8F027D335D15961ADC8F447795E8DC6159A23AD"},"safebrowsing":{"incidents_sent":"D69E5792C794C8C4E930B92BB147C3037D071B30657632117A0656059EBB36DD"},"search_provider_overrides":"C8644413366D4B1AF3D317DB445217A1AB754FA133149DEE4DABCBDB16723A49","session":{"restore_on_startup":"513B11AC4DDC124FDB6CE86605431C5FB15440533B58CCFF10B96735FBF7C5BD","startup_urls":"363F5340DDFA068AA3052C4FDC2542386893D575BA1F10BBA771B6C212B319E7"},"software_reporter":{"prompt_reason":"1772F09DAF2EAC99332EDBA28FD064818C372C4126F7718AAAB6E7D09FF45BE1","prompt_seed":"2B5AE064D5EE8CFC405C1B5376E083A4B968BCC4D0C8E65FE5484B1D1B55100E","prompt_version":"8D167E910EA680A4A12E0AC66136C8CF0B902ABDEB3E9C6EF7F69895C60A213F"},"sync":{"remaining_rollback_tries":"A0A4D08A88FC5BE96F558BA3A55B26F92D8F36785B05C4B6AECB836513D8A402"}},"super_mac":"7D4F5848534637023BAF2F4C1F70B5F6EF64B80D5C26DCE7ED4B1B4D655D3FCA"}}

==== Chromium Fix ======================

C:\Users\AGA\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage deleted successfully
C:\Users\AGA\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_static.olark.com_0.localstorage-journal deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"
"Search Page"="http://www.google.com"
"Search Bar"="http://www.google.com/ie"
"Default_Search_URL"="http://www.google.com/ie"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
@="http://www.google.com/search?q=%s"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"SearchAssistant"="http://www.google.com"
"Default_Search_URL"="http://www.google.com/ie"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Search Page"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Search Bar"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]
"Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896"
"SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Goo Url="http://www.google.com/search?q={sear"

==== Reset Google Chrome ======================

C:\Users\AGA\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\AGA\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\AGA\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences.bad was reset successfully
C:\Users\AGA\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\AGA\AppData\Local\Google\Chrome\User Data\Default\Web Data Temp was reset successfully
C:\Users\AGA\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\Software\wow6432node\Policies\Google deleted successfully

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\AGA\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\AGA\AppData\Local\Microsoft\Windows\INetCache\Low\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\AGA\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\Users\AGA\AppData\Local\Microsoft\Windows\INetCache\Low\IE emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\AGA\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

No Flash Cache Found

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=161 folders=49 45383532 bytes)

==== Empty Temp Folders ======================

C:\Users\AGA\AppData\Local\Temp will be emptied at reboot
C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\AGA\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on po 06. 07. 2015 at 18:36:30,45 ======================

==========================================================================================================
novy HJT

Running processes:
C:\Program Files (x86)\TeamViewer\TeamViewer.exe
C:\Users\AGA\AppData\Local\Dropbox\Update\DropboxUpdate.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
C:\Users\AGA\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\PROGRA~2\Raptr\raptr_im.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\AGA\Downloads\hijackthis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Gila] C:\Program Files (x86)\Genius\Gila\mousehid.exe
O4 - HKLM\..\Run: [Sound Blaster EVO Control Panel] "C:\Programy\Creative\Sound Blaster EVO\Sound Blaster EVO Control Panel\SBEVO.exe" /r
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [Raptr] C:\PROGRA~2\Raptr\raptrstub.exe --startup
O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Dropbox Update] "C:\Users\AGA\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
O4 - HKCU\..\Run: [iCloudServices] C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] "C:\PROGRAMY\ZONER\PHOTO STUDIO 17\Program32\ZPSTRAY.EXE"
O4 - Startup: Dropbox.lnk = AGA\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Global Startup: Killer Network Manager.lnk = ?
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do Microsoft Excelu - res://C:\Programy\MICROS~1\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do OneNotu - res://C:\Programy\MICROS~1\Office15\ONBttnIE.dll/105
O9 - Extra button: Odeslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do OneNotu - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} (Creative Software AutoUpdate Support Package 2) - http://ccfiles.creative.com/Web/softwar ... PIDPDE.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwar ... /CTPID.cab
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP DS Service - Hewlett-Packard Company - C:\Program Files (x86)\HP\HPBDSService\HPBDSService.exe
O23 - Service: HP LaserJet Service - HP - C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Qualcomm Atheros Killer Service V2 - Qualcomm Atheros - C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Service KMSELDI - Unknown owner - C:\Programy\KMSpico\Service_KMS.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: TeamViewer 10 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10077 bytes

===========================================================================================================

tak jsem zvědav na tvuj závěr :)

jinak mohu se zpet prihlasit do chromu a klasicky jej pouzivat? nebo je tam stale neco a jedeme dál...?

díky :)

Příspěvekod **jerabina** » 06 črc 2015 18:52

Zavři ostatní programy/prohlížeče, odpoj se od internetu a v HJT fixni:
NÁVOD

Kód: Vybrat vše

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
F2 - REG:system.ini: UserInit=userinit.exe,
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Dropbox Update] "C:\Users\AGA\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] "C:\PROGRAMY\ZONER\PHOTO STUDIO 17\Program32\ZPSTRAY.EXE"

Zapni Chrome a pusť se do testování :-)

Potom dej vědět, jestli to pomohlo a doklidíme :-)

Zizkin · Příspěvekod **Zizkin** » 06 črc 2015 19:24

tak jsem tak učinil - proklikal jsem na test pár videí na facebooku a už jsou opět zelená. Ze začátku v pohode, a jak jsem je postupne postel, tak asi cca 12. uz bylo zelene.

Příspěvekod **jerabina** » 06 črc 2015 19:26

Prosím stáhni příslušnou verzi programu pro Tvůj systém 32-bit/64-bit Farbar Recovery Scan Tool (FRST)
32bit.:
http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
64bit.:
http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
a ulož jej na plochu. ,pak spusť FRST jako správce
Potvrď způsob užití.
Neměň žádné z výchozích nastavení a klikni na položku „Scan“ („Skenovat“) .Když je skenování dokončeno, ukážou se dva logy = FRST.txt a Addition.txt a uloží se na ploše.Prosím zkopíruj sem celý jejich obsah.

Zizkin · Příspěvekod **Zizkin** » 06 črc 2015 19:32

FRST:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:05-07-2015
Ran by AGA (administrator) on AGA-PC on 06-07-2015 19:27:55
Running from C:\Users\AGA\Desktop
Loaded Profiles: AGA (Available Profiles: AGA)
Platform: Windows 8.1 Pro (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Advanced Micro Devices, Inc.) C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(HP) C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Qualcomm Atheros) C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Saitek) C:\Program Files\Saitek\VolumeTracker\SaiVolume.exe
(Saitek) C:\Program Files\SmartTechnology\Software\ProfilerU.exe
(Saitek) C:\Program Files\SmartTechnology\Software\SaiMfd.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe
(Dropbox, Inc.) C:\Users\AGA\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\CCC.exe
(Raptr, Inc) C:\Program Files (x86)\Raptr\raptr.exe
(Raptr, Inc) C:\Program Files (x86)\Raptr\raptr_im.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Raptr Inc.) C:\Program Files (x86)\Raptr\raptr_ep64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SaiVolume] => C:\Program Files\Saitek\VolumeTracker\SaiVolume.exe [152064 2012-10-15] (Saitek)
HKLM\...\Run: [ProfilerU] => C:\Program Files\SmartTechnology\Software\ProfilerU.exe [454144 2013-04-16] (Saitek)
HKLM\...\Run: [SaiMfd] => C:\Program Files\SmartTechnology\Software\SaiMfd.exe [158208 2013-04-16] (Saitek)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-10-01] (Microsoft Corporation)
HKLM\...\Run: [Creative SB Monitoring Utility Launcher] => RunDll32 SBAVMonL.dll,SBAVMonitorLauncher
HKLM-x32\...\Run: [Gila] => C:\Program Files (x86)\Genius\Gila\mousehid.exe [307712 2013-01-07] ()
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Sound Blaster EVO Control Panel] => C:\Programy\Creative\Sound Blaster EVO\Sound Blaster EVO Control Panel\SBEVO.exe [910848 2013-08-29] (Creative Technology Ltd)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2014-11-20] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr\raptrstub.exe [55568 2015-05-15] (Raptr, Inc)
HKU\S-1-5-19\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-20\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-21-600620042-11250831-617673667-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [21969480 2015-05-19] (Google)
HKU\S-1-5-21-600620042-11250831-617673667-1001\...\Run: [iCloudServices] => C:\Program Files (x86)\Common Files\Apple\Internet Services\iCloudServices.exe [43816 2015-04-26] (Apple Inc.)
HKU\S-1-5-21-600620042-11250831-617673667-1001\...\MountPoints2: {af7482cd-69bc-11e4-8262-d8cb8a13fa26} - "H:\.autorun\autorun.exe"
HKU\S-1-5-21-600620042-11250831-617673667-1001\...\MountPoints2: {af748391-69bc-11e4-8262-d8cb8a13fa26} - "I:\Autorun.exe"
HKU\S-1-5-21-600620042-11250831-617673667-1001\Control Panel\Desktop\\SCRNSAVE.EXE ->
HKU\S-1-5-18\Control Panel\Desktop\\SCRNSAVE.EXE ->
Startup: C:\Users\AGA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2014-12-14]
ShortcutTarget: Dropbox.lnk -> C:\Users\AGA\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Killer Network Manager.lnk [2013-08-22]
ShortcutTarget: Killer Network Manager.lnk -> C:\Windows\Installer\{A32F7F52-0DC5-40EF-84BD-7D30CC20D157}\NetworkManager.exe_130C27D738F34C89BDDF21BCFD74B56D.exe (Flexera Software LLC)
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\AGA\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll [2015-06-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\AGA\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll [2015-06-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\AGA\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll [2015-06-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\AGA\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll [2015-06-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\AGA\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll [2015-06-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\AGA\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll [2015-06-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\AGA\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll [2015-06-10] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\AGA\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll [2015-06-10] (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-600620042-11250831-617673667-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = http://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-600620042-11250831-617673667-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = http://www.google.com/search?q={sear
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll [2015-02-25] (Oracle Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL [2015-05-13] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-02-25] (Oracle Corporation)
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} http://ccfiles.creative.com/Web/softwar ... PIDPDE.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} http://ccfiles.creative.com/Web/softwar ... /CTPID.cab
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Programy\Microsoft Office\Office15\MSOSB.DLL [2014-10-15] (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{D2B363F3-5336-40DA-9345-7ADD763E645E}: [DhcpNameServer] 192.168.0.1

FireFox:
========
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-16] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Programy\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2014-04-28] (Adobe Systems)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll [2015-02-13] (Google, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-02-25] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-02-25] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40416.0\npctrl.dll [2015-04-15] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL [2014-01-21] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-17] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-05-01] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2014-04-28] (Adobe Systems)
FF Plugin HKU\S-1-5-21-600620042-11250831-617673667-1001: @acestream.net/acestreamplugin,version=3.0.3 -> C:\Users\AGA\AppData\Roaming\ACEStream\player\npace_plugin.dll [2014-12-07] (Innovative Digital Technologies)

Chrome:
=======
CHR Profile: C:\Users\AGA\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\AGA\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-07-06]
CHR Extension: (Google Docs) - C:\Users\AGA\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-07-06]
CHR Extension: (Google Drive) - C:\Users\AGA\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-07-06]
CHR Extension: (YouTube) - C:\Users\AGA\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-07-06]
CHR Extension: (Adblock Plus) - C:\Users\AGA\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-07-06]
CHR Extension: (Download FB Album mod) - C:\Users\AGA\AppData\Local\Google\Chrome\User Data\Default\Extensions\cgjnhhjpfcdhbhlcmmjppicjmgfkppok [2015-07-06]
CHR Extension: (Google Search) - C:\Users\AGA\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-07-06]
CHR Extension: (Google Tasks (by Google)) - C:\Users\AGA\AppData\Local\Google\Chrome\User Data\Default\Extensions\dmglolhoplikcoamfgjgammjbgchgjdd [2015-07-06]
CHR Extension: (Photo Zoom for Facebook) - C:\Users\AGA\AppData\Local\Google\Chrome\User Data\Default\Extensions\elioihkkcdgakfbahdoddophfngopipi [2015-07-06]
CHR Extension: (Translate Selection) - C:\Users\AGA\AppData\Local\Google\Chrome\User Data\Default\Extensions\fbpgglmkehdiacglkflejohldbhekcjn [2015-07-06]
CHR Extension: (StoreBirds) - C:\Users\AGA\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcimjkehglmijlhnpbmjbpoiamjiegod [2015-07-06]
CHR Extension: (Google Sheets) - C:\Users\AGA\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-07-06]
CHR Extension: (Chrome Remote Desktop) - C:\Users\AGA\AppData\Local\Google\Chrome\User Data\Default\Extensions\gbchcmhmhahfdphkhkmpfmihenigjmpp [2015-07-06]
CHR Extension: (Google Calendar (by Google)) - C:\Users\AGA\AppData\Local\Google\Chrome\User Data\Default\Extensions\gmbgaklkmjakoegficnlkhebmhkjfich [2015-07-06]
CHR Extension: (Google Keep - notes and lists) - C:\Users\AGA\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2015-07-06]
CHR Extension: (Page Refresh) - C:\Users\AGA\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmooaemjmediafeacjplpbpenjnpcneg [2015-07-06]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\AGA\AppData\Local\Google\Chrome\User Data\Default\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2015-07-06]
CHR Extension: (Google Wallet) - C:\Users\AGA\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-05-22]
CHR Extension: (Hover Zoom) - C:\Users\AGA\AppData\Local\Google\Chrome\User Data\Default\Extensions\nonjdcjchghhkdoolnlbekcfllmednbl [2015-07-06]
CHR Extension: (Gmail) - C:\Users\AGA\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-07-06]
CHR HKLM\...\Chrome\Extension: [fcimjkehglmijlhnpbmjbpoiamjiegod] - http://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-600620042-11250831-617673667-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcimjkehglmijlhnpbmjbpoiamjiegod] - http://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-600620042-11250831-617673667-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - https://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fcimjkehglmijlhnpbmjbpoiamjiegod] - http://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD FUEL Service; C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [344064 2014-11-20] (Advanced Micro Devices, Inc.) [File not signed]
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-20] (Apple Inc.)
S3 BthHFSrv; C:\Windows\System32\BthHFSrv.dll [324608 2014-10-29] (Microsoft Corporation)
S3 HP DS Service; C:\Program Files (x86)\HP\HPBDSService\HPBDSService.exe [13824 2010-10-27] (Hewlett-Packard Company) [File not signed]
R2 HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [145920 2010-10-27] (HP) [File not signed]
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R2 Qualcomm Atheros Killer Service V2; C:\Program Files\Qualcomm Atheros\Network Manager\KillerService.exe [387584 2014-09-19] (Qualcomm Atheros) [File not signed]
S2 Service KMSELDI; C:\Programy\KMSpico\Service_KMS.exe [977088 2014-03-02] () [File not signed]
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5495056 2015-06-18] (TeamViewer GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366520 2015-02-04] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2015-02-04] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S0 amdkmafd; C:\Windows\System32\drivers\amdkmafd.sys [21160 2012-09-23] (Advanced Micro Devices, Inc.)
R2 AODDriver4.3; C:\Program Files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [59616 2014-02-11] (Advanced Micro Devices)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWB6.sys [223232 2014-06-21] (Advanced Micro Devices)
S1 BfLwf; C:\Windows\system32\DRIVERS\bwcW8x64.sys [97968 2014-09-11] (Qualcomm Atheros, Inc.)
S3 BthA2DP; C:\Windows\system32\drivers\BthA2DP.sys [132608 2015-01-30] (Microsoft Corporation)
S3 BthHFAud; C:\Windows\System32\drivers\BthHfAud.sys [32768 2014-10-08] (Microsoft Corporation)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-11-11] (Disc Soft Ltd)
R3 Ke2200; C:\Windows\system32\DRIVERS\e22w8x64.sys [130224 2014-03-27] (Qualcomm Atheros, Inc.)
S3 ksaud; C:\Windows\system32\drivers\ksaud.sys [2056192 2013-09-04] (Creative Technology Ltd.)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-06-18] (Malwarebytes Corporation)
R3 SaiK1107; C:\Windows\system32\DRIVERS\SaiK1107.sys [180584 2012-12-05] (Saitek)
R3 SaiMini; C:\Windows\System32\drivers\SaiMini.sys [25120 2013-04-30] (Saitek)
R3 SaiNtBus; C:\Windows\system32\drivers\SaiBus.sys [52640 2013-04-30] (Saitek)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2015-02-04] (Microsoft Corporation)
S3 xb1usb; C:\Windows\System32\drivers\xb1usb.sys [34016 2014-05-27] (Microsoft Corporation)
S3 xusb22; C:\Windows\System32\drivers\xusb22.sys [87040 2014-03-18] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-07-06 19:27 - 2015-07-06 19:28 - 00019175 _____ C:\Users\AGA\Desktop\FRST.txt
2015-07-06 19:27 - 2015-07-06 19:27 - 02112512 _____ (Farbar) C:\Users\AGA\Desktop\FRST64.exe
2015-07-06 19:27 - 2015-07-06 19:27 - 00000000 ____D C:\FRST
2015-07-06 19:16 - 2015-07-06 19:16 - 00000000 ____D C:\Users\AGA\Downloads\backups
2015-07-06 18:38 - 2015-07-06 19:13 - 00009924 _____ C:\Users\AGA\Downloads\hijackthis.log
2015-07-06 18:38 - 2015-07-06 19:13 - 00009924 _____ C:\Users\AGA\Desktop\hijackthis2.txt
2015-07-06 18:38 - 2015-07-06 18:38 - 00388608 _____ (Trend Micro Inc.) C:\Users\AGA\Downloads\hijackthis.exe
2015-07-06 18:36 - 2015-07-06 18:36 - 00012568 _____ C:\Users\AGA\Desktop\zoek-results.txt
2015-07-06 17:56 - 2015-07-06 17:46 - 00024064 _____ C:\WINDOWS\zoek-delete.exe
2015-07-06 17:46 - 2015-07-06 18:36 - 00012568 _____ C:\zoek-results.log
2015-07-06 17:46 - 2015-07-06 17:55 - 00000000 ____D C:\zoek_backup
2015-07-06 17:45 - 2015-07-06 17:45 - 00003870 _____ C:\Users\AGA\Desktop\rogue2.txt
2015-07-06 17:43 - 2015-07-06 17:43 - 00000000 _____ C:\Users\AGA\Desktop\script.txt
2015-07-06 17:38 - 2015-07-06 17:38 - 00001134 _____ C:\Users\AGA\Desktop\MbAM.txt
2015-07-06 17:27 - 2015-07-06 17:27 - 01308672 _____ C:\Users\AGA\Desktop\zoek.exe
2015-07-06 16:20 - 2015-07-06 16:20 - 00004170 _____ C:\Users\AGA\Desktop\rogue.txt
2015-07-06 16:13 - 2015-07-06 17:41 - 00037624 _____ C:\WINDOWS\system32\Drivers\TrueSight.sys
2015-07-06 16:13 - 2015-07-06 16:21 - 00000000 ____D C:\ProgramData\RogueKiller
2015-07-06 16:10 - 2015-07-06 16:10 - 00000207 _____ C:\WINDOWS\tweaking.com-regbackup-AGA-PC-Windows-8.1-Pro-(64-bit).dat
2015-07-06 16:10 - 2015-07-06 16:10 - 00000000 ____D C:\RegBackup
2015-07-06 15:53 - 2015-07-06 17:57 - 00002768 _____ C:\WINDOWS\PFRO.log
2015-07-06 15:51 - 2015-07-06 15:51 - 21942344 _____ C:\Users\AGA\Desktop\RogueKillerX64.exe
2015-07-06 15:51 - 2015-07-06 15:51 - 02953457 _____ (Malwarebytes Corporation) C:\Users\AGA\Desktop\JRT.exe
2015-07-06 15:26 - 2015-07-06 17:28 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-07-06 15:26 - 2015-07-06 15:26 - 00001110 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-07-06 15:26 - 2015-07-06 15:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-07-06 15:26 - 2015-07-06 15:26 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-07-06 15:26 - 2015-07-06 15:26 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-07-06 15:26 - 2015-06-18 08:42 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-07-06 15:26 - 2015-06-18 08:41 - 00109272 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-07-06 15:26 - 2015-06-18 08:41 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2015-07-06 15:22 - 2015-07-06 15:52 - 00000000 ____D C:\AdwCleaner
2015-07-06 15:08 - 2015-07-06 15:08 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\AGA\Desktop\mbam-setup-2.1.8.1057.exe
2015-07-06 15:07 - 2015-07-06 15:08 - 02244096 _____ C:\Users\AGA\Desktop\AdwCleaner.exe
2015-07-06 15:07 - 2015-07-06 15:07 - 00448512 _____ (OldTimer Tools) C:\Users\AGA\Desktop\TFC.exe
2015-07-06 12:19 - 2015-07-06 12:19 - 00009452 _____ C:\Users\AGA\Desktop\hijackthis.log
2015-07-06 12:18 - 2015-07-06 12:18 - 00388608 _____ (Trend Micro Inc.) C:\Users\AGA\Desktop\hijackthis.exe
2015-07-05 21:53 - 2015-07-05 21:53 - 00000000 ____D C:\ProgramData\ATI
2015-07-05 21:49 - 2015-07-05 21:49 - 00063792 _____ C:\WINDOWS\SysWOW64\CCCInstall_201507052149028068.log
2015-07-05 21:49 - 2015-07-05 21:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Catalyst Control Center
2015-07-05 21:49 - 2015-07-05 21:49 - 00000000 ____D C:\Program Files (x86)\AMD AVT
2015-07-05 21:48 - 2015-07-05 21:48 - 00000000 ____D C:\Program Files (x86)\AMD
2015-07-05 21:47 - 2015-07-05 21:48 - 00000000 ____D C:\Program Files\AMD
2015-07-05 21:41 - 2015-07-05 21:41 - 05451464 _____ (Advanced Micro Devices, Inc.) C:\Users\AGA\Desktop\autodetectutility.exe
2015-07-05 21:40 - 2015-07-05 21:41 - 302277752 _____ (AMD Inc.) C:\Users\AGA\Desktop\amd-catalyst-omega-14.12-with-dotnet45-win8.1-64bit.exe
2015-07-05 21:40 - 2015-07-05 21:40 - 50694624 _____ (AMD Inc.) C:\Users\AGA\Desktop\amd-catalyst-omega-14.12-sb-sata-ahci-win8.1-win7.exe
2015-07-05 21:40 - 2015-07-05 21:40 - 00057519 _____ C:\WINDOWS\SysWOW64\CCCInstall_201507052140258693.log
2015-07-05 21:12 - 2015-05-16 00:01 - 00133288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2015-07-05 21:12 - 2015-05-15 23:05 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2015-07-05 21:12 - 2015-05-15 22:47 - 00355328 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinSetupUI.dll
2015-07-05 21:12 - 2015-05-15 22:23 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wups.dll
2015-07-05 21:12 - 2015-05-15 21:42 - 03682304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-07-05 21:12 - 2015-05-15 21:32 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2015-07-05 21:12 - 2015-05-15 21:31 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2015-07-05 21:12 - 2015-05-15 21:28 - 02223104 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2015-07-05 21:12 - 2015-05-15 21:28 - 00408064 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2015-07-05 21:12 - 2015-05-15 21:28 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2015-07-05 21:12 - 2015-05-15 21:27 - 00891904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2015-07-05 21:12 - 2015-05-15 21:21 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2015-07-05 21:12 - 2015-05-15 21:21 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2015-07-05 21:12 - 2015-05-15 21:19 - 00721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2015-07-05 21:12 - 2015-05-15 21:19 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2015-07-05 21:12 - 2015-05-11 20:17 - 01201664 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2015-07-05 21:12 - 2015-05-07 19:50 - 22292672 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-07-05 21:12 - 2015-05-07 19:00 - 03109376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2015-07-05 21:12 - 2015-05-07 18:53 - 19734960 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-07-05 21:12 - 2015-05-07 18:12 - 02706432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ExplorerFrame.dll
2015-07-05 21:12 - 2015-05-07 17:21 - 00522240 _____ (Microsoft Corporation) C:\WINDOWS\system32\GeofenceMonitorService.dll
2015-07-05 21:12 - 2015-05-07 17:05 - 00367104 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\GeofenceMonitorService.dll
2015-07-05 21:12 - 2015-05-03 02:39 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2015-07-05 21:12 - 2015-04-30 01:22 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\WiFiDisplay.dll
2015-07-05 21:11 - 2015-05-12 15:19 - 00294912 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemEventsBrokerServer.dll
2015-07-05 21:11 - 2015-05-12 02:24 - 00536920 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2015-07-05 21:11 - 2015-05-11 18:34 - 00332800 _____ (Microsoft Corporation) C:\WINDOWS\system32\fhcpl.dll
2015-07-05 21:11 - 2015-05-07 18:47 - 00564224 _____ (Microsoft Corporation) C:\WINDOWS\system32\apphelp.dll
2015-07-05 21:11 - 2015-05-03 17:09 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-05 21:11 - 2015-05-03 17:07 - 07784448 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2015-07-05 21:11 - 2015-05-03 16:58 - 00210944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-07-05 21:11 - 2015-05-03 16:57 - 05264384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Data.Pdf.dll
2015-07-05 21:11 - 2015-05-03 16:55 - 00971776 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSShared.dll
2015-07-05 21:11 - 2015-05-03 16:49 - 00811008 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSShared.dll
2015-07-05 21:11 - 2015-05-02 01:33 - 00410739 _____ C:\WINDOWS\system32\ApnDatabase.xml
2015-07-05 21:11 - 2015-05-01 03:13 - 06521800 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2015-07-05 21:11 - 2015-05-01 03:13 - 01488000 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2015-07-05 21:11 - 2015-05-01 03:13 - 00261376 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2015-07-05 21:11 - 2015-04-28 15:13 - 00513480 _____ C:\WINDOWS\SysWOW64\locale.nls
2015-07-05 21:11 - 2015-04-28 15:13 - 00513480 _____ C:\WINDOWS\system32\locale.nls
2015-07-05 21:11 - 2015-04-25 04:25 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usb8023.sys
2015-07-05 21:11 - 2015-04-23 17:47 - 03084288 _____ (Microsoft Corporation) C:\WINDOWS\system32\msftedit.dll
2015-07-05 21:11 - 2015-04-23 17:16 - 02471424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msftedit.dll
2015-07-05 21:10 - 2015-07-05 21:10 - 18784812 _____ C:\Users\AGA\Downloads\Windows8.1-KB3074219-x64.msu
2015-07-05 20:51 - 2015-07-05 20:51 - 01155248 _____ (Adobe Systems Incorporated) C:\Users\AGA\Downloads\ED91.tmp
2015-07-05 20:33 - 2015-07-05 20:33 - 01155248 _____ (Adobe Systems Incorporated) C:\Users\AGA\Desktop\uninstall_flash_player.exe
2015-07-05 19:49 - 2015-07-05 19:52 - 00000000 ____D C:\Users\AGA\Desktop\jicin
2015-07-05 07:49 - 2015-07-05 07:49 - 913162445 _____ C:\WINDOWS\MEMORY.DMP
2015-07-05 07:49 - 2015-07-05 07:49 - 00280976 _____ C:\WINDOWS\Minidump\070515-12187-01.dmp
2015-07-03 21:43 - 2015-07-03 21:45 - 40735937 _____ ( ) C:\Users\AGA\Desktop\K-Lite_Codec_Pack_1120_Mega.exe
2015-07-03 19:11 - 2015-07-03 19:11 - 00013928 _____ C:\Users\AGA\Downloads\1A0.tmp
2015-07-03 19:11 - 2015-07-03 19:11 - 00013928 _____ C:\Users\AGA\Desktop\[CzT]Teorie_velkeho_tresku_The_Big_Bang_Theory_S08E04_Fabulace_o_posmrtnem_uletu_CZ_TvRip_.torrent
2015-07-02 21:25 - 2015-07-02 21:25 - 00012340 _____ C:\Users\AGA\Desktop\[CzT]Teorie_velkeho_tresku_The_Big_Bang_Theory_S08E02_Naschvaly_odborneho_asistenta_CZ_TvRip_.torrent
2015-07-02 21:24 - 2015-07-02 21:24 - 00013159 _____ C:\Users\AGA\Desktop\[CzT]Teorie_velkeho_tresku_The_Big_Bang_Theory_S08E03_Nedostatecnost_baseballove_prupravy_CZ_TvRip_.torrent
2015-07-02 21:24 - 2015-07-02 21:24 - 00009115 _____ C:\Users\AGA\Desktop\[CzT]Teorie_velkeho_tresku_The_Big_Bang_Theory_S08E01_Loupez_ve_spacim_kupe_CZ_TvRip_.torrent
2015-06-29 19:02 - 2015-06-29 19:02 - 00002431 _____ C:\Users\AGA\Desktop\[CzT]Windows_7_Loader_Version_2_2_1.torrent
2015-06-28 13:43 - 2015-06-28 13:49 - 00000000 ____D C:\Users\AGA\Desktop\hw
2015-06-28 09:24 - 2015-06-28 09:25 - 00000000 ____D C:\Users\AGA\Desktop\TmNationsForever
2015-06-28 09:24 - 2015-06-28 09:24 - 00000000 ____D C:\ProgramData\TrackMania
2015-06-27 18:47 - 2015-06-27 18:47 - 00019092 _____ C:\Users\AGA\Desktop\[CzT]Kokain_Blow_2001_.torrent
2015-06-27 18:46 - 2015-06-27 18:46 - 00019093 _____ C:\Users\AGA\Downloads\4709.tmp
2015-06-27 17:56 - 2015-06-27 17:56 - 00104927 _____ C:\WINDOWS\DirectX.log
2015-06-27 17:55 - 2015-06-27 17:55 - 00019627 _____ C:\Users\AGA\Desktop\[CzT]J_Edgar_2011_CZ_.torrent
2015-06-24 21:09 - 2015-06-25 17:53 - 00189722 _____ C:\Users\AGA\Desktop\KUFRY.xlsx
2015-06-21 17:20 - 2015-06-21 17:20 - 00034553 _____ C:\Users\AGA\Downloads\B935.tmp
2015-06-21 17:12 - 2015-06-21 17:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iCloud
2015-06-21 17:10 - 2015-06-21 17:10 - 00034552 _____ C:\Users\AGA\Downloads\7F4F.tmp
2015-06-18 18:57 - 2015-07-06 19:02 - 00000924 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-600620042-11250831-617673667-1001UA.job
2015-06-18 18:57 - 2015-07-06 19:02 - 00000872 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-600620042-11250831-617673667-1001Core.job
2015-06-18 18:57 - 2015-06-18 18:57 - 00003866 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-600620042-11250831-617673667-1001UA
2015-06-18 18:57 - 2015-06-18 18:57 - 00003486 _____ C:\WINDOWS\System32\Tasks\DropboxUpdateTaskUserS-1-5-21-600620042-11250831-617673667-1001Core
2015-06-18 18:57 - 2015-06-18 18:57 - 00000000 ____D C:\Users\AGA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-06-18 18:57 - 2015-06-18 18:57 - 00000000 ____D C:\Users\AGA\AppData\Local\Dropbox
2015-06-18 18:57 - 2015-06-18 18:57 - 00000000 ____D C:\ProgramData\Dropbox
2015-06-13 09:47 - 2015-06-13 09:48 - 00989536 _____ C:\Users\AGA\Downloads\DC21.tmp
2015-06-13 09:46 - 2015-06-13 09:46 - 06612992 _____ C:\Users\AGA\Downloads\5631.tmp
2015-06-10 19:34 - 2015-05-22 15:08 - 00700416 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2015-06-10 19:34 - 2015-05-21 15:08 - 01119232 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2015-06-10 19:34 - 2015-05-21 15:08 - 01020928 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2015-06-10 19:34 - 2015-05-21 15:08 - 00756736 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2015-06-10 19:34 - 2015-05-21 15:08 - 00422912 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2015-06-10 19:34 - 2015-05-21 15:08 - 00193536 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2015-06-10 19:34 - 2015-05-21 15:08 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-06-10 19:34 - 2015-04-17 00:07 - 00227328 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepdu.dll
2015-06-10 19:33 - 2015-05-25 15:23 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcResources.dll
2015-06-10 19:33 - 2015-05-25 15:07 - 01430528 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2015-06-10 19:32 - 2015-04-25 04:34 - 00653824 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2015-06-10 19:32 - 2015-04-25 04:33 - 00549888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\comctl32.dll
2015-06-10 19:31 - 2015-05-27 16:35 - 24917504 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-06-10 19:31 - 2015-05-27 16:08 - 19607040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-06-10 19:31 - 2015-05-23 05:15 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-06-10 19:31 - 2015-05-23 05:14 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2015-06-10 19:31 - 2015-05-23 05:10 - 02278912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-06-10 19:31 - 2015-05-23 05:05 - 00664064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-06-10 19:31 - 2015-05-23 05:04 - 00620032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9diag.dll
2015-06-10 19:31 - 2015-05-23 04:48 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2015-06-10 19:31 - 2015-05-23 04:47 - 04305920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-06-10 19:31 - 2015-05-23 04:47 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2015-06-10 19:31 - 2015-05-23 04:47 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2015-06-10 19:31 - 2015-05-23 04:43 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2015-06-10 19:31 - 2015-05-23 04:38 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2015-06-10 19:31 - 2015-05-23 04:38 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2015-06-10 19:31 - 2015-05-23 04:37 - 02052608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-06-10 19:31 - 2015-05-23 04:28 - 12829696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-06-10 19:31 - 2015-05-23 04:28 - 01042944 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2015-06-10 19:31 - 2015-05-23 04:20 - 01950720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-06-10 19:31 - 2015-05-23 04:16 - 01309696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-06-10 19:31 - 2015-05-23 04:14 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2015-06-10 19:31 - 2015-05-22 21:00 - 02885632 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-06-10 19:31 - 2015-05-22 21:00 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-06-10 19:31 - 2015-05-22 21:00 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2015-06-10 19:31 - 2015-05-22 20:52 - 06026240 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-06-10 19:31 - 2015-05-22 20:48 - 00633856 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2015-06-10 19:31 - 2015-05-22 20:47 - 00816640 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-06-10 19:31 - 2015-05-22 20:47 - 00814080 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2015-06-10 19:31 - 2015-05-22 20:24 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2015-06-10 19:31 - 2015-05-22 20:23 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2015-06-10 19:31 - 2015-05-22 20:21 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2015-06-10 19:31 - 2015-05-22 20:15 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2015-06-10 19:31 - 2015-05-22 20:09 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2015-06-10 19:31 - 2015-05-22 20:08 - 00374272 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2015-06-10 19:31 - 2015-05-22 20:06 - 00801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-06-10 19:31 - 2015-05-22 20:05 - 02125824 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-06-10 19:31 - 2015-05-22 19:57 - 14404096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-06-10 19:31 - 2015-05-22 19:50 - 02426880 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-06-10 19:31 - 2015-05-22 19:49 - 02865152 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-06-10 19:31 - 2015-05-22 19:38 - 01545728 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-06-10 19:31 - 2015-05-22 19:26 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2015-06-10 19:31 - 2015-05-21 18:47 - 04177920 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-06-07 17:12 - 2015-06-07 17:12 - 00000110 ____H C:\Users\AGA\Desktop\DSC_2950.jpg.uid-zps
2015-06-07 17:04 - 2015-06-07 17:04 - 00000110 ____H C:\Users\AGA\Desktop\DSC_2950.xmp.uid-zps
2015-06-07 07:32 - 2013-07-23 16:55 - 00089600 _____ C:\WINDOWS\system32\CmdRtr64.DLL
2015-06-07 07:32 - 2013-07-23 16:55 - 00074240 _____ C:\WINDOWS\SysWOW64\CmdRtr.DLL
2015-06-07 07:32 - 2013-07-23 16:54 - 00350208 _____ C:\WINDOWS\system32\APOMgr64.DLL
2015-06-07 07:32 - 2013-07-23 16:52 - 00263168 _____ C:\WINDOWS\SysWOW64\APOMngr.DLL
2015-06-06 20:51 - 2015-06-07 17:21 - 00000000 ____D C:\Users\AGA\Desktop\foto_motorka

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-07-06 19:26 - 2013-08-22 10:07 - 00003590 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-600620042-11250831-617673667-1001
2015-07-06 19:23 - 2014-11-12 23:53 - 01745984 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-07-06 19:23 - 2013-08-23 00:08 - 00738682 _____ C:\WINDOWS\system32\perfh005.dat
2015-07-06 19:23 - 2013-08-23 00:08 - 00151404 _____ C:\WINDOWS\system32\perfc005.dat
2015-07-06 19:20 - 2015-05-22 19:27 - 00000000 ____D C:\Users\AGA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome
2015-07-06 19:20 - 2014-12-14 20:53 - 00000000 ___RD C:\Users\AGA\Dropbox
2015-07-06 19:20 - 2014-12-14 20:52 - 00000000 ____D C:\Users\AGA\AppData\Roaming\Dropbox
2015-07-06 19:18 - 2015-05-30 10:05 - 01263654 _____ C:\WINDOWS\WindowsUpdate.log
2015-07-06 19:18 - 2014-11-11 17:07 - 00000970 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-07-06 19:17 - 2015-05-30 11:03 - 00024348 _____ C:\WINDOWS\setupact.log
2015-07-06 19:17 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-07-06 19:00 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\sru
2015-07-06 18:48 - 2014-11-11 17:07 - 00000974 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-07-06 18:37 - 2015-05-06 18:03 - 00000000 ____D C:\Users\AGA\AppData\Roaming\Raptr
2015-07-06 17:57 - 2014-11-16 17:04 - 00000008 __RSH C:\ProgramData\ntuser.pol
2015-07-06 17:55 - 2013-08-22 17:36 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2015-07-06 17:55 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2015-07-06 16:25 - 2013-08-22 12:09 - 00003954 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{67171B04-84DF-45C1-ACFD-8AF6116B441A}
2015-07-06 16:20 - 2015-05-30 19:04 - 00000000 ____D C:\Users\AGA\Desktop\Nová složka
2015-07-06 15:26 - 2015-05-22 19:27 - 00002203 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-07-06 15:26 - 2014-11-12 23:50 - 00001418 _____ C:\Users\AGA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2015-07-06 15:21 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-07-06 15:18 - 2014-11-23 22:54 - 00000000 ____D C:\Users\AGA\AppData\Local\CrashDumps
2015-07-06 15:11 - 2014-11-11 21:23 - 00000000 ____D C:\Users\AGA\AppData\Roaming\AIMP3
2015-07-06 12:19 - 2013-08-22 10:03 - 00000000 ____D C:\Users\AGA\AppData\Local\VirtualStore
2015-07-06 11:26 - 2014-11-13 19:24 - 01462784 ___SH C:\Users\AGA\Desktop\Thumbs.db
2015-07-05 21:49 - 2015-05-06 18:03 - 00000000 ____D C:\Program Files (x86)\Raptr
2015-07-05 21:49 - 2013-08-22 11:49 - 00000000 ____D C:\ProgramData\AMD
2015-07-05 21:45 - 2013-08-22 11:47 - 00000000 ____D C:\AMD
2015-07-05 21:43 - 2015-01-27 11:29 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2015-07-05 21:17 - 2013-08-22 17:36 - 00000000 ___RD C:\WINDOWS\ToastData
2015-07-05 21:17 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\WinStore
2015-07-05 21:17 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2015-07-05 21:10 - 2013-08-22 17:20 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-07-05 21:02 - 2014-11-27 18:39 - 00000000 ____D C:\Users\AGA\AppData\Local\Adobe
2015-07-05 20:54 - 2013-08-22 10:03 - 00000000 ____D C:\Users\AGA\AppData\Local\Packages
2015-07-05 12:08 - 2014-11-11 17:17 - 00300704 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2015-07-05 07:58 - 2014-11-12 23:45 - 00000000 ____D C:\Users\AGA
2015-07-05 07:49 - 2014-11-20 20:52 - 00000000 ____D C:\WINDOWS\Minidump
2015-07-05 07:47 - 2014-11-11 20:18 - 00000000 ____D C:\Users\AGA\AppData\Roaming\uTorrent
2015-07-03 21:46 - 2015-03-12 00:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack
2015-07-03 21:46 - 2014-12-11 21:31 - 00000000 ____D C:\Program Files (x86)\K-Lite Codec Pack
2015-06-28 23:36 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-06-28 04:46 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\rescache
2015-06-27 18:01 - 2014-11-16 13:12 - 00000000 ____D C:\Games
2015-06-27 17:59 - 2014-11-11 21:15 - 00000000 ____D C:\Users\AGA\Documents\TrackMania
2015-06-27 17:57 - 2014-12-07 12:46 - 00220672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplayx.dll
2015-06-27 17:57 - 2014-12-07 12:46 - 00046592 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpwsockx.dll
2015-06-27 17:57 - 2014-12-07 12:45 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dplaysvr.exe
2015-06-27 17:57 - 2014-12-07 12:45 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpmodemx.dll
2015-06-27 17:57 - 2013-08-22 13:22 - 00461312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnet.dll
2015-06-27 17:57 - 2013-08-22 13:22 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnsvr.exe
2015-06-27 17:57 - 2013-08-22 13:17 - 00066560 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnathlp.dll
2015-06-27 17:57 - 2013-08-22 13:17 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhupnp.dll
2015-06-27 17:57 - 2013-08-22 13:17 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpnhpast.dll
2015-06-27 17:57 - 2013-08-22 05:56 - 00377856 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnet.dll
2015-06-27 17:57 - 2013-08-22 05:56 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnsvr.exe
2015-06-27 17:57 - 2013-08-22 05:51 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnathlp.dll
2015-06-27 17:57 - 2013-08-22 05:51 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhupnp.dll
2015-06-27 17:57 - 2013-08-22 05:51 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dpnhpast.dll
2015-06-25 17:54 - 2015-02-08 17:37 - 00000000 ___RD C:\Users\AGA\iCloudDrive
2015-06-25 17:54 - 2014-11-17 12:13 - 00000000 ___RD C:\Users\AGA\Disk Google
2015-06-24 18:49 - 2015-01-27 11:29 - 00000983 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 10.lnk
2015-06-24 17:52 - 2015-05-18 20:17 - 00003886 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2015-06-20 05:02 - 2013-08-22 17:38 - 00792568 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-06-20 05:02 - 2013-08-22 17:38 - 00178168 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-06-17 19:50 - 2014-12-03 22:33 - 00000000 ____D C:\Users\AGA\AppData\Roaming\Apple Computer
2015-06-15 20:28 - 2015-01-27 11:30 - 00000000 ____D C:\Users\AGA\AppData\Roaming\TeamViewer
2015-06-12 19:08 - 2013-08-22 16:44 - 05108768 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-06-12 03:12 - 2015-04-17 00:15 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-06-12 03:12 - 2014-12-07 14:31 - 00000000 ___SD C:\WINDOWS\system32\CompatTel
2015-06-11 19:56 - 2014-11-17 11:48 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-06-11 19:55 - 2014-11-17 11:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2015-06-10 19:34 - 2014-11-11 17:59 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-06-10 19:30 - 2014-11-11 17:59 - 140135120 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-06-07 16:58 - 2014-11-17 11:54 - 00000000 ____D C:\Users\AGA\AppData\Roaming\Zoner
2015-06-07 07:32 - 2015-01-12 23:39 - 00000258 ___RH C:\WINDOWS\ctfile.rfc

==================== Files in the root of some directories =======

2015-02-17 20:37 - 2015-02-17 20:37 - 0099384 _____ () C:\Users\AGA\AppData\Roaming\inst.exe
2015-02-17 20:37 - 2015-02-17 20:37 - 0007859 _____ () C:\Users\AGA\AppData\Roaming\pcouffin.cat
2015-02-17 20:37 - 2015-02-17 20:37 - 0001167 _____ () C:\Users\AGA\AppData\Roaming\pcouffin.inf
2015-02-17 20:37 - 2015-02-17 20:37 - 0082816 _____ (VSO Software) C:\Users\AGA\AppData\Roaming\pcouffin.sys
2013-08-22 11:44 - 2013-08-22 11:44 - 0000000 _____ () C:\Users\AGA\AppData\Local\Driver_LOM_8161Present.flag
2015-02-20 23:13 - 2015-02-20 23:13 - 0003282 _____ () C:\Users\AGA\AppData\Local\recently-used.xbel
2015-04-20 18:48 - 2015-04-20 18:48 - 0011610 _____ () C:\Users\AGA\AppData\Local\Temp-log.txt
2015-01-12 23:39 - 2013-05-23 17:27 - 0001697 _____ () C:\ProgramData\CfGH0250.ini
2015-01-12 23:39 - 2013-05-23 17:27 - 0001696 _____ () C:\ProgramData\CfGH0280.ini
2015-01-12 23:39 - 2009-02-24 15:27 - 0001026 _____ () C:\ProgramData\cfSB0270.ini
2015-01-12 23:39 - 2009-02-24 15:27 - 0001026 _____ () C:\ProgramData\cfSB0271.ini
2015-01-12 23:39 - 2009-02-24 15:27 - 0001302 _____ () C:\ProgramData\cfSB0300.ini
2015-01-12 23:39 - 2009-02-24 15:27 - 0001282 _____ () C:\ProgramData\cfSB0471.ini
2015-01-12 23:39 - 2009-02-24 15:27 - 0001208 _____ () C:\ProgramData\cfSB0490.ini
2015-01-12 23:39 - 2009-02-24 15:27 - 0001027 _____ () C:\ProgramData\cfSB0560.ini
2015-01-12 23:39 - 2009-02-24 15:27 - 0001352 _____ () C:\ProgramData\cfSB0910.ini
2015-01-12 23:39 - 2009-02-24 15:27 - 0000590 _____ () C:\ProgramData\cfSB0950.ini
2015-01-12 23:39 - 2009-02-24 15:27 - 0001352 _____ () C:\ProgramData\cfSB1090.ini
2015-01-12 23:39 - 2010-06-29 16:04 - 0001772 _____ () C:\ProgramData\cfSB1095.ini
2015-01-12 23:39 - 2013-07-01 10:35 - 0001772 _____ () C:\ProgramData\cfSB1095A.ini
2015-01-12 23:39 - 2009-02-24 15:27 - 0001346 _____ () C:\ProgramData\cfSB1100.ini
2015-01-12 23:39 - 2009-03-20 19:07 - 0000939 _____ () C:\ProgramData\CfSB1170.ini
2015-01-12 23:39 - 2009-11-17 16:54 - 0002844 _____ () C:\ProgramData\cfSB1240.ini
2015-01-12 23:39 - 2013-03-08 17:15 - 0002844 _____ () C:\ProgramData\cfSB1240A.ini
2015-01-12 23:39 - 2010-06-23 15:54 - 0003077 _____ () C:\ProgramData\cfSB1290.ini
2015-01-12 23:39 - 2013-03-08 17:15 - 0003077 _____ () C:\ProgramData\cfSB1290A.ini
2015-01-12 23:39 - 2010-11-26 12:07 - 0000806 _____ () C:\ProgramData\cfSB1300.ini
2015-01-12 23:39 - 2013-07-01 10:35 - 0000806 _____ () C:\ProgramData\cfSB1300A.ini
2015-01-12 23:39 - 2011-09-26 17:33 - 0000715 _____ () C:\ProgramData\CfSB1360.ini
2015-01-12 23:39 - 2012-02-09 16:11 - 0000715 _____ () C:\ProgramData\CfSB1380.ini
2015-01-12 23:39 - 2012-02-09 16:11 - 0000715 _____ () C:\ProgramData\CfSB1390.ini
2015-01-12 23:39 - 2012-12-07 19:01 - 0000715 _____ () C:\ProgramData\CfSB1530.ini
2015-01-12 23:39 - 2012-12-07 19:01 - 0000715 _____ () C:\ProgramData\CfSB1532.ini
2015-01-12 23:39 - 2013-06-11 18:37 - 0001980 _____ () C:\ProgramData\cfSB1560.ini

Some files in TEMP:
====================
C:\Users\AGA\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpmhcvhb.dll

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-07-05 05:04

==================== End of log ============================

========================================================================================

Zizkin · Příspěvekod **Zizkin** » 06 črc 2015 19:32

Addition:

Additional scan result of Farbar Recovery Scan Tool (x64) Version:05-07-2015
Ran by AGA at 2015-07-06 19:28:22
Running from C:\Users\AGA\Desktop
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-600620042-11250831-617673667-500 - Administrator - Disabled)
AGA (S-1-5-21-600620042-11250831-617673667-1001 - Administrator - Enabled) => C:\Users\AGA
Guest (S-1-5-21-600620042-11250831-617673667-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-600620042-11250831-617673667-1004 - Limited - Enabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

1.3 (HKLM-x32\...\{4E099E76-A259-4FC8-894C-6D4FC4E3F69F}_is1) (Version: 1.3 - WB Games, Inc.)
64 Bit HP CIO Components Installer (Version: 8.2.1 - Hewlett-Packard) Hidden
Adobe After Effects CS6 (HKLM-x32\...\{4817D846-700B-474E-A31B-80892B3E92E3}) (Version: 11 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 3.1.0.4880 - Adobe Systems Incorporated)
Adobe Help Manager (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 4.0.244 - Adobe Systems Incorporated)
Adobe Premiere Pro CC 2014 (HKLM-x32\...\{07BE616F-9E42-4C90-AF4F-0F32A5B088E7}) (Version: 8.0.1 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.11) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.11 - Adobe Systems Incorporated)
AIMP3 (HKLM-x32\...\AIMP3) (Version: v3.60.1483, 27.02.2015 - AIMP DevTeam)
AMD Catalyst Install Manager (HKLM\...\{F2A7CE36-57BF-5C86-952D-90DBF3746D82}) (Version: 8.0.916.0 - Advanced Micro Devices, Inc.)
Apple Mobile Device Support (HKLM\...\{C4123106-B685-48E6-B9BD-E4F911841EB4}) (Version: 8.1.1.3 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Assassins Creed - Unity (HKLM-x32\...\{9L5KR86L-0F3I-4HJ7-HKY5-DRTL4V36QG2X}_is1) (Version: 1.1.0.0 - Ubisoft)
Astroburn Lite (HKLM-x32\...\Astroburn Lite) (Version: 1.8.0.0182 - Disc Soft Ltd)
Blur(TM) verze Update 2 (HKLM-x32\...\{E624A72E-1470-4D2F-979B-1A76522DF59B}_is1) (Version: Update 2 - Activision)
Bonjour (HKLM\...\{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}) (Version: 3.0.0.10 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 4.11 - Piriform)
COD - Advanced Warfare (HKLM-x32\...\COD - Advanced Warfare_is1) (Version: 1.2.0.4107 - Activision)
Command & Conquer 3 (HKLM-x32\...\{B0C30E93-D3D9-4F04-A2AC-54749B573275}) (Version: 1.00.0000 - Electronic Arts Inc.)
Command & Conquer™ 3: Kane's Wrath (HKLM-x32\...\{CC2422C9-F7B5-4175-B295-5EC2283AA674}) (Version: 1.00.0000 - Electronic Arts Inc.)
Counter-Strike Source verze 2230303 (HKLM\...\{28659B67-FC49-49DB-9DAC-1AD52203D75A}_is1) (Version: 2230303 - Strogino CS Portal)
Counter-Strike: Global Offensive (HKLM-x32\...\{6E50DE62-987E-49E8-83BD-45453D84D8E9}_is1) (Version: 1.32.9.0 - Tolyak26)
Creative System Information (HKLM-x32\...\SysInfo) (Version: 1.10 - Creative Technology Limited)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
Dropbox (HKU\S-1-5-21-600620042-11250831-617673667-1001\...\Dropbox) (Version: 3.6.7 - Dropbox, Inc.)
Far Cry 4 (HKLM-x32\...\Far Cry 4_is1) (Version: 1.0.0 - Ubisoft)
FIFA 14 Incl. MW 3.8.1 Repack (HKLM-x32\...\FIFA 14_is1) (Version: 1.7.0.0 - Electronic Arts, Repack by Joker_RETURNS)
Flame Over (HKLM-x32\...\RmxhbWVPdmVy_is1) (Version: 1 - )
Fraps (HKLM-x32\...\Fraps) (Version: - )
Gila Gaming Mouse (HKLM-x32\...\{FB3A54A3-F867-456E-971F-712CC13DC830}}_is1) (Version: - )
GIMP 2.8.14 (HKLM\...\GIMP-2_is1) (Version: 2.8.14 - The GIMP Team)
Google Drive (HKLM-x32\...\{CBC9F5FD-5CFA-4A33-81CD-369EAB77E3A6}) (Version: 1.22.9403.0223 - Google, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 43.0.2357.130 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.27.5 - Google Inc.) Hidden
Grand Theft Auto V (HKLM-x32\...\R3JhbmRUaGVmdEF1dG9W_is1) (Version: 1 - )
HP LaserJet 100 color MFP M175 (HKLM-x32\...\{965D0289-10E1-45ec-B11F-A60AC9AE8D4D}) (Version: - Hewlett-Packard)
HP Update (HKLM-x32\...\{B0069CFA-5BB9-4C03-B1C6-89CE290E5AFE}) (Version: 5.002.006.003 - Hewlett-Packard)
hpbDSService (x32 Version: 001.001.05133 - Hewlett-Packard) Hidden
hpbM175DSService (x32 Version: 001.001.05133 - Hewlett-Packard) Hidden
HPLaserJet100ColorMFPM175_HelpLearnCenter_SI (HKLM-x32\...\{19542156-285B-458C-994D-2A21889001DF}) (Version: 1.00.0000 - Hewlett-Packard)
HPLJUT (x32 Version: 1.00.0012 - HP) Hidden
hppLaserJetService (x32 Version: 002.015.00602 - Hewlett-Packard) Hidden
hppM175LaserJetService (x32 Version: 001.014.00480 - Hewlett-Packard) Hidden
iCloud (HKLM\...\{709A2D23-C25E-47B5-9268-CB6FEE648504}) (Version: 4.1.1.53 - Apple Inc.)
InstanceFinder (x32 Version: 1.00.0001 - HP) Hidden
iTunes (HKLM\...\{93F2A022-6C37-48B8-B241-FFABD9F60C30}) (Version: 12.1.2.27 - Apple Inc.)
Java 8 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)
K-Lite Mega Codec Pack 11.2.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 11.2.0 - )
KMSpico v9.2.3 (HKLM\...\KMSpico_is1) (Version: 9.2.3 - )
Magical Jelly Bean KeyFinder (HKLM-x32\...\KeyFinder_is1) (Version: 2.0.10.10 - Magical Jelly Bean)
Malwarebytes Anti-Malware verze 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 (HKLM\...\Office15.PROPLUS) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40416.0 - Microsoft Corporation)
Microsoft Sync Framework 2.0 Core Components (x64) ENU (HKLM\...\{8CCBEC22-D2DB-4DC9-A58A-E1A1F3A38C8A}) (Version: 2.0.1578.0 - Microsoft Corporation)
Microsoft Sync Framework 2.0 Provider Services (x64) ENU (HKLM\...\{03AC245F-4C64-425C-89CF-7783C1D3AB2C}) (Version: 2.0.1578.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61187 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61186 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{350AA351-21FA-3270-8B7A-835434E766AD}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.7523 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.7523 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.7523 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Additional Runtime - 12.0.21005 (HKLM\...\{929FBD26-9020-399B-9A7A-751D61F0B942}) (Version: 12.0.21005 - Microsoft Corporation)
Microsoft Visual C++ 2013 x64 Minimum Runtime - 12.0.21005 (HKLM\...\{A749D8E6-B613-3BE3-8F5F-045C84EBA29B}) (Version: 12.0.21005 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005 (HKLM-x32\...\{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}) (Version: 12.0.21005 - Microsoft Corporation)
Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005 (HKLM-x32\...\{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}) (Version: 12.0.21005 - Microsoft Corporation)
Microsoft Visual F# 2.0 Runtime (HKLM-x32\...\{85467CBC-7A39-33C9-8940-D72D9269B84F}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft)
Microsoft Xbox One Controller for Windows (HKLM\...\{DC2CB48C-FD96-48EB-A36A-7D995BB587EB}) (Version: 1.0.2 - Microsoft Corporation)
Mortal Kombat - Komplete Edition 1.0 (HKLM-x32\...\Mortal Kombat - Komplete Edition_is1) (Version: - )
Mortal Kombat X version Mortal Kombat X (HKLM-x32\...\Mortal Kombat X_is1) (Version: Mortal Kombat X - )
MotoGP 14 (HKLM-x32\...\MotoGP 14_is1) (Version: 1.0.4.0 - )
Nástroje kontroly pravopisu pro Microsoft Office 2013 – čeština (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Nástroje korektúry balíka Microsoft Office 2013 - slovenčina (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Need for Speed Most Wanted 2012 v1.0.0.0 (HKLM-x32\...\Need for Speed Most Wanted 2012_is1) (Version: 1.0.0.0 - EA Games)
Need For Speed Rivals (HKLM-x32\...\Need For Speed Rivals v1.4.0.0 + 4DLC - Repack b~8CA0C8DB_is1) (Version: 1.0. - Danik1B9)
NVIDIA PhysX (HKLM-x32\...\{80407BA7-7763-4395-AB98-5233F1B34E65}) (Version: 9.13.1220 - NVIDIA Corporation)
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
Pidgin (HKLM-x32\...\Pidgin) (Version: 2.10.11 - )
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}) (Version: 3.1.3 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{D7B824DE-DA32-4772-9E5E-39C5158136A7}) (Version: 3.1.3 - Apple Inc.)
Project CARS Update v1.2 (HKLM-x32\...\UHJvamVjdENBUlM=_is1) (Version: 1 - )
Qualcomm Atheros Bandwidth Control Filter Driver (Version: 1.1.47.1058 - Qualcomm Atheros) Hidden
Qualcomm Atheros Killer E220x Drivers (Version: 1.1.47.1058 - Qualcomm Atheros) Hidden
Qualcomm Atheros Killer Performance Suite (HKLM-x32\...\{E70DB50B-10B4-46BC-9DE2-AB8B49E061EE}) (Version: 1.1.47.1058 - Qualcomm Atheros)
Qualcomm Atheros Network Manager (Version: 1.1.47.1058 - Qualcomm Atheros) Hidden
QuickTime 7 (HKLM-x32\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
Raptr (HKLM-x32\...\Raptr) (Version: - )
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7469 - Realtek Semiconductor Corp.)
RIDE version 1.0.0 (HKLM-x32\...\RIDE_is1) (Version: 1.0.0 - Milestone)
Rockstar Games Social Club (HKLM-x32\...\Rockstar Games Social Club) (Version: 1.1.5.8 - Rockstar Games)
Saints Row: The Third v 1.0.0.1 (HKLM-x32\...\Saints Row: The Third_is1) (Version: 1.0.0.1 - THQ)
Skype™ 7.3 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.3.101 - Skype Technologies S.A.)
Smart Technology Programming Software 7.0.27.13 (HKLM\...\{6C7F773B-F1B2-4E94-8FC6-884922E7BAD7}) (Version: 7.0.27.13 - Mad Catz)
Smart Technology Volume Tracker 7.0.23.0 (HKLM\...\{7C2F1B90-E6E6-4ECF-B626-4545CF6EEB2D}) (Version: 7.0.23.0 - Mad Catz)
Sniper Elite 3 (HKLM-x32\...\U25pcGVyRWxpdGUz_is1) (Version: 1 - )
SopCast 3.5.0 (HKLM-x32\...\SopCast) (Version: 3.5.0 - www.sopcast.com)
Sound Blaster EVO Zx/ZxR (HKLM-x32\...\{491DF32F-C82B-4BAC-930B-449F6D461441}) (Version: 1.01.02 - Creative Technology Limited)
Sound Blaster EVO Zx/ZxR Extras (HKLM-x32\...\{D55BF3B9-AE2D-45BB-9E3D-2426EE92ED08}) (Version: 1.0 - Creative Technology Limited)
SyncToy 2.1 (x64) (HKLM\...\{88DAAF05-5A72-46D2-A7C5-C3759697E943}) (Version: 2.1.0 - Microsoft)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.43879 - TeamViewer)
TechPowerUp GPU-Z (HKLM-x32\...\TechPowerUp GPU-Z) (Version: - TechPowerUp)
ToolboxProxy (x32 Version: 1.00.0001 - HP) Hidden
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.51a - Ghisler Software GmbH)
Trine 2 (HKLM-x32\...\Trine 2_is1) (Version: - )
UmmyVideoDownloader (HKLM-x32\...\{E028DBDA-EEE7-48A0-ADF7-D250589A02C5}_is1) (Version: 1.2.1.1 - )
Update for Skype for Business 2015 (KB2889853) 64-Bit Edition (HKLM\...\{90150000-012B-0405-1000-0000000FF1CE}_Office15.PROPLUS_{2B44F588-2B80-4DD3-B577-B10B3C6865EA}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB3054791) 64-Bit Edition (HKLM\...\{90150000-0011-0000-1000-0000000FF1CE}_Office15.PROPLUS_{591150FB-47D4-495C-9E76-F8D354A2577D}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB3054791) 64-Bit Edition (HKLM\...\{90150000-00C1-0000-1000-0000000FF1CE}_Office15.PROPLUS_{591150FB-47D4-495C-9E76-F8D354A2577D}) (Version: - Microsoft)
Update for Skype for Business 2015 (KB3054791) 64-Bit Edition (HKLM\...\{90150000-012B-0405-1000-0000000FF1CE}_Office15.PROPLUS_{591150FB-47D4-495C-9E76-F8D354A2577D}) (Version: - Microsoft)
VSO ConvertXToDVD (HKLM-x32\...\{CE1F93C0-4353-4C9D-84DA-AB4E7C63ED32}_is1) (Version: 5.1.0.12 - VSO Software)
Windows Driver Package - GoPro (WinUSB) Universal Serial Bus devices (03/07/2012 ) (HKLM\...\0B624A43DD66DBF5CF3EDFA9741A364E688062A4) (Version: 03/07/2012 - GoPro)
WinRAR 5.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)
Zoner Photo Studio 17 (HKLM\...\ZonerPhotoStudio17_CZ_is1) (Version: 17.0.1.9 - ZONER software)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-600620042-11250831-617673667-1001_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\AGA\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-600620042-11250831-617673667-1001_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\AGA\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-600620042-11250831-617673667-1001_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\AGA\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-600620042-11250831-617673667-1001_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\AGA\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-600620042-11250831-617673667-1001_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\AGA\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-600620042-11250831-617673667-1001_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\AGA\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-600620042-11250831-617673667-1001_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\AGA\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-600620042-11250831-617673667-1001_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\AGA\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-600620042-11250831-617673667-1001_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\AGA\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-600620042-11250831-617673667-1001_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\AGA\AppData\Roaming\Dropbox\bin\DropboxExt64.26.dll (Dropbox, Inc.)

==================== Restore Points =========================

21-06-2015 18:00:56 Naplánovaný kontrolní bod
24-06-2015 18:47:55 Windows Update
27-06-2015 17:56:19 Nainstalováno rozhraní DirectX
05-07-2015 05:15:30 Naplánovaný kontrolní bod
06-07-2015 17:46:54 zoek.exe restore point

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2015-07-06 17:47 - 00000753 ____A C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 localhost

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {04840686-DCF0-4818-A2B6-983AD2A04793} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-600620042-11250831-617673667-1001UA => C:\Users\AGA\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-18] (Dropbox, Inc.)
Task: {1BD011D0-735F-4180-9DC7-39D8DEFA58CE} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {42E67431-2E39-4C34-838D-6895C577C58D} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Programy\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {5C526C94-0B4C-467D-8F1D-A4CE040C5633} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2011-06-01] (Apple Inc.)
Task: {711CAE7F-0FB4-40AC-BD75-72AEF6170295} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-06-10] (Microsoft Corporation)
Task: {83E0DA29-8343-4877-87B1-C0C83FAD373C} - System32\Tasks\AutoPico Daily Restart => C:\Programy\KMSpico\AutoPico.exe [2014-03-02] ()
Task: {91727166-CD64-42EE-806F-DAC3B60E70DA} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-06-12] (Adobe Systems Incorporated)
Task: {B4D69BB4-1FF7-4E7A-A3E1-C9AFE2714EF2} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-11] (Google Inc.)
Task: {B78B557F-7ABF-42EA-94FE-A4CCB716A5A0} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Programy\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {BDFB155A-7639-484E-84C4-DA6467B7CB32} - System32\Tasks\HPLJCustParticipation => C:\Program Files (x86)\HP\HPLJUT\HPLJUTSCH.exe [2010-09-22] (Hewlett Packard)
Task: {C21B211E-7816-4377-B903-16D5465F1B12} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-02-20] (Piriform Ltd)
Task: {C58A22D2-F0B1-4080-B26E-FC9D5DE18CC0} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2015-05-31] ()
Task: {F504FE22-E79B-45C9-A39D-D2D30080989B} - System32\Tasks\{EE3CB99A-8C8B-4118-902A-8ADFCAC61A51} => pcalua.exe -a "C:\Programy\GoPro\GoPro Studio\GoPro\GoPro Studio\uninst.exe"
Task: {F671D9E4-1C67-4EE2-87BC-80FBB440B31D} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-600620042-11250831-617673667-1001Core => C:\Users\AGA\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-18] (Dropbox, Inc.)
Task: {FB93D908-BA26-42CB-AEC0-4BA85B9AF91A} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-11-11] (Google Inc.)
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-600620042-11250831-617673667-1001Core.job => C:\Users\AGA\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-600620042-11250831-617673667-1001UA.job => C:\Users\AGA\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2014-11-20 21:23 - 2014-11-20 21:23 - 00214528 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Container.PerformanceTuning.dll
2014-02-11 06:08 - 2014-02-11 06:08 - 00817152 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Device.dll
2014-02-11 06:08 - 2014-02-11 06:08 - 03650560 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Platform.dll
2015-01-20 23:35 - 2015-01-20 23:35 - 00085832 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-01-20 23:35 - 2015-01-20 23:35 - 01346344 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2015-06-07 07:32 - 2013-07-23 16:55 - 00089600 _____ () C:\WINDOWS\SYSTEM32\CmdRtr64.DLL
2015-06-07 07:32 - 2013-07-23 16:54 - 00350208 _____ () C:\WINDOWS\SYSTEM32\APOMgr64.DLL
2014-11-20 21:23 - 2014-11-20 21:23 - 00102400 _____ () C:\Program Files\AMD\ATI.ACE\Fuel\Fuel.Proxy.Native.dll
2015-01-20 23:35 - 2015-01-20 23:35 - 01044776 _____ () C:\Program Files (x86)\Common Files\Apple\Apple Application Support\libxml2.dll
2015-07-06 19:18 - 2015-07-06 19:18 - 00043008 _____ () c:\users\aga\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpmhcvhb.dll
2015-03-04 23:45 - 2015-03-19 09:15 - 00750080 _____ () C:\Users\AGA\AppData\Roaming\Dropbox\bin\libGLESv2.dll
2015-03-04 23:45 - 2015-03-19 09:15 - 00047616 _____ () C:\Users\AGA\AppData\Roaming\Dropbox\bin\libEGL.dll
2015-03-04 23:45 - 2015-03-19 09:15 - 00865280 _____ () C:\Users\AGA\AppData\Roaming\Dropbox\bin\plugins\platforms\qwindows.dll
2015-03-04 23:45 - 2015-03-19 09:15 - 00200704 _____ () C:\Users\AGA\AppData\Roaming\Dropbox\bin\plugins\imageformats\qjpeg.dll
2015-03-04 23:45 - 2015-03-19 09:15 - 00010240 _____ () C:\Users\AGA\AppData\Roaming\Dropbox\bin\QtQuick.2\qtquick2plugin.dll
2015-03-04 23:45 - 2015-03-19 09:15 - 00726016 _____ () C:\Users\AGA\AppData\Roaming\Dropbox\bin\QtQuick\Controls\qtquickcontrolsplugin.dll
2015-03-04 23:45 - 2015-03-19 09:15 - 00010240 _____ () C:\Users\AGA\AppData\Roaming\Dropbox\bin\QtQuick\Window.2\windowplugin.dll
2010-11-23 00:56 - 2010-11-23 00:56 - 00087040 _____ () C:\Program Files (x86)\Raptr\_ctypes.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00043008 _____ () C:\Program Files (x86)\Raptr\_socket.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00805376 _____ () C:\Program Files (x86)\Raptr\_ssl.pyd
2014-05-14 01:26 - 2014-05-14 01:26 - 05812736 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtGui.pyd
2014-05-14 01:26 - 2014-05-14 01:26 - 00067584 _____ () C:\Program Files (x86)\Raptr\sip.pyd
2014-05-14 01:26 - 2014-05-14 01:26 - 01662464 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtCore.pyd
2014-05-14 01:26 - 2014-05-14 01:26 - 00494592 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtNetwork.pyd
2010-11-23 00:57 - 2010-11-23 00:57 - 00096256 _____ () C:\Program Files (x86)\Raptr\win32api.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00110592 _____ () C:\Program Files (x86)\Raptr\pywintypes26.dll
2010-11-23 00:56 - 2010-11-23 00:56 - 00010240 _____ () C:\Program Files (x86)\Raptr\select.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00356864 _____ () C:\Program Files (x86)\Raptr\_hashlib.pyd
2010-11-23 00:57 - 2010-11-23 00:57 - 00036352 _____ () C:\Program Files (x86)\Raptr\win32process.pyd
2010-11-23 00:57 - 2010-11-23 00:57 - 00111104 _____ () C:\Program Files (x86)\Raptr\win32file.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00044544 _____ () C:\Program Files (x86)\Raptr\_sqlite3.pyd
2011-02-15 20:17 - 2011-02-15 20:17 - 00417501 _____ () C:\Program Files (x86)\Raptr\sqlite3.dll
2010-11-23 00:57 - 2010-11-23 00:57 - 00167936 _____ () C:\Program Files (x86)\Raptr\win32gui.pyd
2014-05-14 01:26 - 2014-05-14 01:26 - 00313856 _____ () C:\Program Files (x86)\Raptr\PyQt4.QtWebKit.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00127488 _____ () C:\Program Files (x86)\Raptr\pyexpat.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00009216 _____ () C:\Program Files (x86)\Raptr\winsound.pyd
2014-08-14 02:37 - 2014-08-14 02:37 - 00113171 _____ () C:\Program Files (x86)\Raptr\libvlc.dll
2014-08-14 02:37 - 2014-08-14 02:37 - 02396691 _____ () C:\Program Files (x86)\Raptr\libvlccore.dll
2013-11-21 02:05 - 2013-11-21 02:05 - 00256000 _____ () C:\Program Files (x86)\Raptr\amd_ags.dll
2010-11-23 00:56 - 2010-11-23 00:56 - 00583680 _____ () C:\Program Files (x86)\Raptr\unicodedata.pyd
2010-11-23 00:56 - 2010-11-23 00:56 - 00354304 _____ () C:\Program Files (x86)\Raptr\pythoncom26.dll
2010-11-23 00:57 - 2010-11-23 00:57 - 00263168 _____ () C:\Program Files (x86)\Raptr\win32com.shell.shell.pyd
2010-11-23 00:57 - 2010-11-23 00:57 - 00141312 _____ () C:\Program Files (x86)\Raptr\gobject._gobject.pyd
2014-06-18 02:56 - 2014-06-18 02:56 - 02717595 _____ () C:\Program Files (x86)\Raptr\heliotrope._purple.pyd
2011-02-15 20:17 - 2011-02-15 20:17 - 01213633 _____ () C:\Program Files (x86)\Raptr\libxml2-2.dll
2010-11-23 01:06 - 2010-11-23 01:06 - 00055808 _____ () C:\Program Files (x86)\Raptr\zlib1.dll
2013-05-10 01:52 - 2013-05-10 01:52 - 00495680 _____ () C:\Program Files (x86)\Raptr\plugins\libaim.dll
2013-05-10 01:52 - 2013-05-10 01:52 - 01183699 _____ () C:\Program Files (x86)\Raptr\liboscar.dll
2013-05-10 01:52 - 2013-05-10 01:52 - 00483306 _____ () C:\Program Files (x86)\Raptr\plugins\libicq.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 00655356 _____ () C:\Program Files (x86)\Raptr\plugins\libirc.dll
2013-05-03 20:56 - 2013-05-03 20:56 - 01306387 _____ () C:\Program Files (x86)\Raptr\plugins\libmsn.dll
2013-05-03 20:56 - 2013-05-03 20:56 - 00565461 _____ () C:\Program Files (x86)\Raptr\plugins\libxmpp.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 01640221 _____ () C:\Program Files (x86)\Raptr\libjabber.dll
2013-05-03 20:56 - 2013-05-03 20:56 - 00506276 _____ () C:\Program Files (x86)\Raptr\plugins\libyahoo.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 01053730 _____ () C:\Program Files (x86)\Raptr\libymsg.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 00497782 _____ () C:\Program Files (x86)\Raptr\plugins\libyahoojp.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 00603326 _____ () C:\Program Files (x86)\Raptr\plugins\ssl-nss.dll
2013-05-03 20:57 - 2013-05-03 20:57 - 00474199 _____ () C:\Program Files (x86)\Raptr\plugins\ssl.dll
2015-06-22 17:49 - 2015-06-20 07:46 - 01281864 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.130\libglesv2.dll
2015-06-22 17:49 - 2015-06-20 07:46 - 00080712 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.130\libegl.dll
2015-06-22 17:49 - 2015-06-20 07:46 - 15003976 _____ () C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.130\PepperFlash\pepflashplayer.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\TEMP:054203E4

==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-600620042-11250831-617673667-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\AGA\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper
DNS Servers: 192.168.0.1

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\StartupFolder: => "Killer Network Manager.lnk"
HKLM\...\StartupApproved\Run: => "XboxStat"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run32: => "Gila"
HKLM\...\StartupApproved\Run32: => "Sound Blaster Cinema 2"
HKLM\...\StartupApproved\Run32: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "AdobeCEPServiceManager"
HKU\S-1-5-21-600620042-11250831-617673667-1001\...\StartupApproved\Run: => "GoogleChromeAutoLaunch_CA7614A1E7479BC175FD4EBD30703534"
HKU\S-1-5-21-600620042-11250831-617673667-1001\...\StartupApproved\Run: => "GoogleDriveSync"
HKU\S-1-5-21-600620042-11250831-617673667-1001\...\StartupApproved\Run: => "Zoner Photo Studio Autoupdate"
HKU\S-1-5-21-600620042-11250831-617673667-1001\...\StartupApproved\Run: => "AceWebException"
HKU\S-1-5-21-600620042-11250831-617673667-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-600620042-11250831-617673667-1001\...\StartupApproved\Run: => "kometaup"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppextcomobj.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppextcomobj.exe
FirewallRules: [UDP Query User{7A6897DF-5C11-430A-A05E-1A8ADC4B504C}C:\users\aga\appdata\roaming\acestream\engine\ace_engine.exe] => (Allow) C:\users\aga\appdata\roaming\acestream\engine\ace_engine.exe
FirewallRules: [TCP Query User{6423DC59-F3BD-4B61-B868-82981A3F59D0}C:\users\aga\appdata\roaming\acestream\engine\ace_engine.exe] => (Allow) C:\users\aga\appdata\roaming\acestream\engine\ace_engine.exe
FirewallRules: [UDP Query User{D05CC8BC-AB9D-4CE6-943F-9A9CF04A33C0}C:\users\aga\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\aga\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{624736D8-BE98-4FEB-8B1B-4AF78AAA6F04}C:\users\aga\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\aga\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{702BC9D4-44D0-4DBA-A6B0-BD0A82286C17}] => (Allow) C:\Programy\KMSpico\KMSELDI.exe
FirewallRules: [{1CCA3636-7E5A-4B56-AD0E-AA9A3914B188}] => (Allow) C:\Programy\KMSpico\KMSELDI.exe
FirewallRules: [{40ABAF44-F817-4AAB-81F2-FB255ACF4527}] => (Allow) C:\Programy\KMSpico\AutoPico.exe
FirewallRules: [{16B0BD0E-6928-4486-876B-AB84F37A59F4}] => (Allow) C:\Programy\KMSpico\AutoPico.exe
FirewallRules: [{E589C91E-0245-4350-9887-2E2890E64CDC}] => (Allow) C:\Programy\Zoner\Photo Studio 17\Program32\MediaServer.exe
FirewallRules: [{77EBB05D-0E90-49A5-A944-6741C125AA16}] => (Allow) C:\Programy\KMSpico\Service_KMS.exe
FirewallRules: [{E7C00860-F55D-4B21-A5A3-0CF5FC21C673}] => (Allow) C:\Programy\KMSpico\Service_KMS.exe
FirewallRules: [TCP Query User{406A035F-AC2B-46FA-8B7A-1AF207F29CB3}C:\program files (x86)\sopcast\sopcast.exe] => (Allow) C:\program files (x86)\sopcast\sopcast.exe
FirewallRules: [UDP Query User{3A4A1488-963C-4E70-9AC1-8CE4F8B935C3}C:\program files (x86)\sopcast\sopcast.exe] => (Allow) C:\program files (x86)\sopcast\sopcast.exe
FirewallRules: [{62A0D57A-8A92-4BB1-8B0E-1846AB724FEE}] => (Allow) C:\Games\FIFA 14\Game\fifa14.exe
FirewallRules: [{05844A2B-D273-47E4-9690-9D8B0EA26524}] => (Allow) C:\Games\FIFA 14\Game\fifa14.exe
FirewallRules: [TCP Query User{BE31ECAF-71CA-4A08-B447-90103C51949B}E:\games\mortal kombat - komplete edition\mkke.exe] => (Block) E:\games\mortal kombat - komplete edition\mkke.exe
FirewallRules: [UDP Query User{C19584A6-A961-4E0F-AC81-7A924F810325}E:\games\mortal kombat - komplete edition\mkke.exe] => (Block) E:\games\mortal kombat - komplete edition\mkke.exe
FirewallRules: [TCP Query User{9E4C21DA-6B04-4D77-8D83-B8599BB1CCF1}E:\games\blur\blur.exe] => (Block) E:\games\blur\blur.exe
FirewallRules: [UDP Query User{E4CA5CE0-5AD7-4BA9-B97A-4CB03EE99F97}E:\games\blur\blur.exe] => (Block) E:\games\blur\blur.exe
FirewallRules: [{09822605-99E2-4CDC-941F-B2B0DB144F9E}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{9F37E60F-3AA5-4B81-8AFF-224E0A2CBC99}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{68D6E876-85F5-4C2F-B612-2282EA20A1D1}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{CE7CD4C9-FCF1-43BF-972B-D8A56156992F}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{F899C874-603B-45D4-8895-7F463F74454F}] => (Allow) C:\Users\AGA\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{C296CBE5-5D89-4244-98CE-CC9993F6D1CC}] => (Allow) C:\Users\AGA\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [TCP Query User{D5BFD29F-B6A3-4593-A659-40663212E5DF}C:\games\saints row the third\saintsrowthethird_dx11.exe] => (Allow) C:\games\saints row the third\saintsrowthethird_dx11.exe
FirewallRules: [UDP Query User{5ECA0968-5F64-4291-BC7C-3149D19A5E4F}C:\games\saints row the third\saintsrowthethird_dx11.exe] => (Allow) C:\games\saints row the third\saintsrowthethird_dx11.exe
FirewallRules: [TCP Query User{FDB81B2D-1DDE-4529-8D10-0671DE841EEB}E:\games\far cry 4\bin\farcry4.exe] => (Allow) E:\games\far cry 4\bin\farcry4.exe
FirewallRules: [UDP Query User{91E95526-23F1-4544-8345-E5BAE011006C}E:\games\far cry 4\bin\farcry4.exe] => (Allow) E:\games\far cry 4\bin\farcry4.exe
FirewallRules: [TCP Query User{558A7FB1-80E6-4D58-9426-50FBC7CBFD09}E:\games\batman arkham city\binaries\win32\batmanac.exe] => (Allow) E:\games\batman arkham city\binaries\win32\batmanac.exe
FirewallRules: [UDP Query User{4F3660BF-F318-464C-A1CF-BB78581D718E}E:\games\batman arkham city\binaries\win32\batmanac.exe] => (Allow) E:\games\batman arkham city\binaries\win32\batmanac.exe
FirewallRules: [{C88DC922-465E-4FE1-8943-375360CFF9B7}] => (Allow) E:\Games\Electronic Arts\Command & Conquer 3 Kane's Wrath\RetailExe\1.2\cnc3ep1.dat
FirewallRules: [TCP Query User{5D08FC5A-9AD6-48B3-8203-68C5EF4FA67A}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{CD690FA9-DD98-4138-84AD-D807568F18C5}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{6A86DC12-9876-4475-A3CB-F96ED95236DD}] => (Allow) C:\Program Files\iTunes\iTunes.exe
FirewallRules: [TCP Query User{4FB71FEB-C965-44AB-A34D-0A57617FF63B}E:\games\ride\ridex64.exe] => (Allow) E:\games\ride\ridex64.exe
FirewallRules: [UDP Query User{2A6B4704-BFFF-4BF9-A2F7-897B8621EAA6}E:\games\ride\ridex64.exe] => (Allow) E:\games\ride\ridex64.exe
FirewallRules: [TCP Query User{A05A90FF-D916-440F-9676-216CB13223A0}E:\games\motogp 14\motogp14x64.exe] => (Allow) E:\games\motogp 14\motogp14x64.exe
FirewallRules: [UDP Query User{F657F6BA-DC37-4EF6-91CC-E4D5F64833F7}E:\games\motogp 14\motogp14x64.exe] => (Allow) E:\games\motogp 14\motogp14x64.exe
FirewallRules: [TCP Query User{4E5672F1-08D4-4D38-BE35-1D75F6AA74CE}E:\games\counter-strike global offensive\csgo.exe] => (Allow) E:\games\counter-strike global offensive\csgo.exe
FirewallRules: [UDP Query User{C4D1D259-EBCC-4670-952B-703771E82589}E:\games\counter-strike global offensive\csgo.exe] => (Allow) E:\games\counter-strike global offensive\csgo.exe
FirewallRules: [TCP Query User{A4D0DCC8-97C2-4C3B-81B0-A24B69E11EDF}E:\games\grand theft auto v\gta5.exe] => (Block) E:\games\grand theft auto v\gta5.exe
FirewallRules: [UDP Query User{C320A217-B011-4F2C-A269-83C70544F75C}E:\games\grand theft auto v\gta5.exe] => (Block) E:\games\grand theft auto v\gta5.exe
FirewallRules: [TCP Query User{70C4CA4F-066E-4E9A-91DD-288D9B52C2EB}E:\games\counter strike source\hl2.exe] => (Allow) E:\games\counter strike source\hl2.exe
FirewallRules: [UDP Query User{415384B6-EB99-428E-9D92-2EBED2C04E13}E:\games\counter strike source\hl2.exe] => (Allow) E:\games\counter strike source\hl2.exe
FirewallRules: [TCP Query User{3959325B-AAD7-4C6D-A584-9A6DC7E178A1}E:\games\counter-strike source\hl2.exe] => (Allow) E:\games\counter-strike source\hl2.exe
FirewallRules: [UDP Query User{F84BCF36-B4D3-4949-AD03-A6C12E0DE23E}E:\games\counter-strike source\hl2.exe] => (Allow) E:\games\counter-strike source\hl2.exe
FirewallRules: [TCP Query User{55DEEB12-5486-4EC0-AB5B-81F3651536F7}F:\downloads\counter-strike source\counter-strike source\hl2.exe] => (Block) F:\downloads\counter-strike source\counter-strike source\hl2.exe
FirewallRules: [UDP Query User{0EF077DD-BC35-47F8-8BB2-C0C94E028BBC}F:\downloads\counter-strike source\counter-strike source\hl2.exe] => (Block) F:\downloads\counter-strike source\counter-strike source\hl2.exe
FirewallRules: [{A2589F1A-0272-42FD-A8D0-8564919FF139}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{42A1AF71-FC26-4A0F-BF9E-77D4CA2205F5}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{439ADA85-42FF-4B60-9F5E-5AC704F86105}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{B54B1CB0-7D45-4BCD-96BD-441C3A1EF80A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{C571210B-D3DE-4601-81E2-3A30A200B37D}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [TCP Query User{D0A536F6-5EBF-4AA3-BDAB-3A16BF772846}C:\games\tmnationsforever\tmforever.exe] => (Allow) C:\games\tmnationsforever\tmforever.exe
FirewallRules: [UDP Query User{CBE96CC4-EF5A-420C-BEA4-23C28753C66C}C:\games\tmnationsforever\tmforever.exe] => (Allow) C:\games\tmnationsforever\tmforever.exe
FirewallRules: [TCP Query User{2B40BEE6-AB5B-4D7A-9801-375EB7C334C2}L:\tmnationsforever\tmforever.exe] => (Allow) L:\tmnationsforever\tmforever.exe
FirewallRules: [UDP Query User{8B57BE25-3214-4B2A-AE0D-28B8F8E312E6}L:\tmnationsforever\tmforever.exe] => (Allow) L:\tmnationsforever\tmforever.exe
FirewallRules: [{B85B7664-87BC-44A3-87AA-10AF98A6D5A5}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{1AC6F39D-39CD-4446-85E2-AB16A56F0463}] => (Allow) C:\Program Files (x86)\Raptr\raptr.exe
FirewallRules: [{B1D115ED-30F9-4ECA-BACE-E666C93BBAE3}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{5BFCFA27-9EF0-40F8-851C-86254A83B0B5}] => (Allow) C:\Program Files (x86)\Raptr\raptr_im.exe
FirewallRules: [{265FF7B2-FE65-4DE6-A128-49A72671FE98}] => (Allow) C:\Programy\KMSpico\Service_KMS.exe
FirewallRules: [{1DB47D29-3968-4C9C-A1A5-CC63977305A3}] => (Allow) C:\Programy\KMSpico\Service_KMS.exe

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
==================
Error: (07/06/2015 05:46:55 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (07/06/2015 03:24:48 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program NOTEPAD.EXE verze 6.3.9600.17415 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 418

Čas spuštění: 01d0b7eef381bd5f

Čas ukončení: 0

Cesta k aplikaci: C:\WINDOWS\system32\NOTEPAD.EXE

ID hlášení: 5e36c16f-23e2-11e5-835e-000272d1ee73

Úplný název chybujícího balíčku:

ID aplikace související s chybujícím balíčkem:

Error: (07/06/2015 03:18:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: Explorer.EXE, verze: 6.3.9600.17667, časové razítko: 0x54c6f7c2
Název chybujícího modulu: combase.dll, verze: 6.3.9600.17415, časové razítko: 0x545044f9
Kód výjimky: 0xc0000005
Posun chyby: 0x000000000003a02f
ID chybujícího procesu: 0x7b8
Čas spuštění chybující aplikace: 0xExplorer.EXE0
Cesta k chybující aplikaci: Explorer.EXE1
Cesta k chybujícímu modulu: Explorer.EXE2
ID zprávy: Explorer.EXE3
Úplný název chybujícího balíčku: Explorer.EXE4
ID aplikace související s chybujícím balíčkem: Explorer.EXE5

Error: (07/05/2015 08:51:37 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program chrome.exe verze 43.0.2357.130 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 169c

Čas spuštění: 01d0b75360b70684

Čas ukončení: 7

Cesta k aplikaci: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

ID hlášení: dc02b16f-2346-11e5-8358-000272d1ee73

Úplný název chybujícího balíčku:

ID aplikace související s chybujícím balíčkem:

Error: (07/05/2015 05:15:32 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (07/03/2015 09:50:06 PM) (Source: Microsoft-Windows-LocationProvider) (EventID: 2006) (User: NT AUTHORITY)
Description: There was an error with the Windows Location Provider database

Error: (07/03/2015 07:11:14 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program chrome.exe verze 43.0.2357.130 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 1320

Čas spuštění: 01d0b5b271f4e1b6

Čas ukončení: 0

Cesta k aplikaci: C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

ID hlášení: 812b4db4-21a6-11e5-8355-000272d1ee73

Úplný název chybujícího balíčku:

ID aplikace související s chybujícím balíčkem:

Error: (07/02/2015 06:42:34 PM) (Source: Microsoft-Windows-Defrag) (EventID: 257) (User: )
Description: Svazek Rezervováno systémem nebyl optimalizován, protože byla zjištěna chyba: Parametr není správný. (0x80070057).

Error: (06/28/2015 02:11:53 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program mpc-hc64.exe verze 1.7.8.95 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 1f94

Čas spuštění: 01d0b19b92098790

Čas ukončení: 16

Cesta k aplikaci: C:\Program Files (x86)\K-Lite Codec Pack\MPC-HC64\mpc-hc64.exe

ID hlášení: dbace987-1d8e-11e5-8350-000272d1ee73

Úplný název chybujícího balíčku:

ID aplikace související s chybujícím balíčkem:

Error: (06/28/2015 02:11:31 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program mpc-hc64.exe verze 1.7.8.95 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 1a30

Čas spuštění: 01d0b19b83030428

Čas ukončení: 19

Cesta k aplikaci: C:\Program Files (x86)\K-Lite Codec Pack\MPC-HC64\mpc-hc64.exe

ID hlášení: ce1bd29c-1d8e-11e5-8350-000272d1ee73

Úplný název chybujícího balíčku:

ID aplikace související s chybujícím balíčkem:

System errors:
=============
Error: (07/06/2015 07:17:53 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Service KMSELDI byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (07/06/2015 05:57:22 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Service KMSELDI byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (07/06/2015 05:56:50 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Superfetch byla ukončena s následující chybou:
%%1062

Error: (07/06/2015 05:55:22 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (07/06/2015 05:55:22 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (07/06/2015 05:55:21 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (07/06/2015 05:55:21 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (07/06/2015 05:55:21 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (07/06/2015 04:10:56 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Windows Media Player Network Sharing byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.

Error: (07/06/2015 04:10:55 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Instalační služba modulů systému Windows byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 120000 milisekund: Restartovat službu.

Microsoft Office:
=========================
Error: (07/06/2015 05:46:55 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description:
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.

Error: (07/06/2015 03:24:48 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: NOTEPAD.EXE6.3.9600.1741541801d0b7eef381bd5f0C:\WINDOWS\system32\NOTEPAD.EXE5e36c16f-23e2-11e5-835e-000272d1ee73

Error: (07/06/2015 03:18:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Explorer.EXE6.3.9600.1766754c6f7c2combase.dll6.3.9600.17415545044f9c0000005000000000003a02f7b801d0b75c42d8ab3cC:\WINDOWS\Explorer.EXEC:\WINDOWS\SYSTEM32\combase.dll7c23a237-23e1-11e5-835d-000272d1ee73

Error: (07/05/2015 08:51:37 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: chrome.exe43.0.2357.130169c01d0b75360b706847C:\Program Files (x86)\Google\Chrome\Application\chrome.exedc02b16f-2346-11e5-8358-000272d1ee73

Error: (07/05/2015 05:15:32 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description:
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.

Error: (07/03/2015 09:50:06 PM) (Source: Microsoft-Windows-LocationProvider) (EventID: 2006) (User: NT AUTHORITY)
Description: -2147024883

Error: (07/03/2015 07:11:14 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: chrome.exe43.0.2357.130132001d0b5b271f4e1b60C:\Program Files (x86)\Google\Chrome\Application\chrome.exe812b4db4-21a6-11e5-8355-000272d1ee73

Error: (07/02/2015 06:42:34 PM) (Source: Microsoft-Windows-Defrag) (EventID: 257) (User: )
Description: Rezervováno systémemParametr není správný. (0x80070057)

Error: (06/28/2015 02:11:53 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: mpc-hc64.exe1.7.8.951f9401d0b19b9209879016C:\Program Files (x86)\K-Lite Codec Pack\MPC-HC64\mpc-hc64.exedbace987-1d8e-11e5-8350-000272d1ee73

Error: (06/28/2015 02:11:31 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: mpc-hc64.exe1.7.8.951a3001d0b19b8303042819C:\Program Files (x86)\K-Lite Codec Pack\MPC-HC64\mpc-hc64.exece1bd29c-1d8e-11e5-8350-000272d1ee73

CodeIntegrity Errors:
===================================
Date: 2015-07-06 02:02:17.523
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-07-04 02:10:54.601
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-07-02 18:42:31.038
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-07-01 19:30:35.276
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-06-30 17:39:17.280
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-06-29 18:10:57.290
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE15\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-06-28 13:51:21.769
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-06-28 13:51:21.585
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Bonjour\mdnsNSP.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-06-28 13:51:21.397
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-06-28 13:51:21.216
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

==================== Memory info ===========================

Processor: AMD FX-8320E Eight-Core Processor
Percentage of memory in use: 14%
Total physical RAM: 16332.32 MB
Available physical RAM: 13975.41 MB
Total Virtual: 32716.32 MB
Available Virtual: 29942.47 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:223.23 GB) (Free:30.06 GB) NTFS
Drive d: (Místní disk) (Fixed) (Total:298.09 GB) (Free:86.56 GB) NTFS
Drive e: (Místní disk) (Fixed) (Total:1863.01 GB) (Free:1035.04 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive f: (Místní disk) (Fixed) (Total:1863.01 GB) (Free:87.52 GB) NTFS ==>[System with boot components (obtained from reading drive)]
Drive z: (Zaloha) (Fixed) (Total:2794.39 GB) (Free:2535.03 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or

(Size: 223.6 GB) (Disk ID: E9A4DF4E)
Partition 1: (Active) - (Size=350 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=223.2 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (Size: 298.1 GB) (Disk ID: FE03FE03)
Partition 1: (Active) - (Size=298.1 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (MBR Code: Windows 7 or

(Size: 1863 GB) (Disk ID: E9A4DF4A)
Partition 1: (Active) - (Size=1863 GB) - (Type=07 NTFS)

========================================================
Disk: 3 (MBR Code: Windows 7 or

(Size: 1863 GB) (Disk ID: 60EBACE7)
Partition 1: (Active) - (Size=1863 GB) - (Type=07 NTFS)

========================================================
Disk: 4 (MBR Code: Windows 7 or

(Size: 2794.5 GB) (Disk ID: 00000000)

Partition: GPT Partition Type.

==================== End of log ============================

Prosím o kontrolu Logu - chyba s flash videi

Prosím o kontrolu Logu - chyba s flash videi

Re: Prosím o kontrolu Logu - chyba s flash videi

Re: Prosím o kontrolu Logu - chyba s flash videi

Re: Prosím o kontrolu Logu - chyba s flash videi

Re: Prosím o kontrolu Logu - chyba s flash videi

Re: Prosím o kontrolu Logu - chyba s flash videi

Re: Prosím o kontrolu Logu - chyba s flash videi

Re: Prosím o kontrolu Logu - chyba s flash videi

Re: Prosím o kontrolu Logu - chyba s flash videi

Re: Prosím o kontrolu Logu - chyba s flash videi

Re: Prosím o kontrolu Logu - chyba s flash videi

Re: Prosím o kontrolu Logu - chyba s flash videi

Kdo je online