Pomalé PC

DJAdam · Příspěvekod **DJAdam** » 09 zář 2015 18:47

Zoek.exe v5.0.0.0 Updated 08-September-2015
Tool run by Hanus on st 09.09.2015 at 18:27:36,93.
Microsoft Windows 8.1 6.3.9600 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Hanus\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

9.9.2015 18:28:50 Zoek.exe System Restore Point Created Successfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

127.0.0.1 localhost

==== Empty Folders Check ======================

C:\Program Files\Windows Media Player deleted successfully
C:\Users\Hanus\AppData\Roaming\Publish Providers deleted successfully
C:\Users\Hanus\AppData\Local\Adobe deleted successfully
C:\Users\Hanus\AppData\Local\EmieSiteList deleted successfully
C:\Users\Hanus\AppData\Local\EmieUserList deleted successfully

==== Deleting CLSID Registry Keys ======================

==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\{4ED1F68A-5463-4931-9384-8FFF5ED91D92} deleted successfully
HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\{4ED1F68A-5463-4931-9384-8FFF5ED91D92} deleted successfully

==== Deleting Services ======================

==== Deleting Files \ Folders ======================

C:\Users\Public\Pokki deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\Default\AppData\Local\Pokki deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Search.lnk deleted
C:\Users\Hanus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PC App Store.lnk deleted
C:\WINDOWS\SysNative\config\systemprofile\Searches deleted
"C:\Windows\Installer\861f2.msi" deleted
"C:\Windows\Installer\5abe5.msi" deleted

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"wrc@avast.com"="C:\Program Files\AVAST Software\Avast\WebRep\FF" [11.08.2015 11:01]

==== Chromium Look ======================

Google Chrome Version: 45.0.2454.85

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
eofcbnmajmjmplflapaojjnihcjkigck - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx[11.08.2015 11:01]
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[11.08.2015 11:01]

Avast SafePrice - Hanus\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck
Avast Online Security - Hanus\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki
Avast SafePrice - C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck
Avast Online Security - C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IESR02"

==== Reset Google Chrome ======================

C:\Users\Hanus\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Hanus\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\Hanus\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\Hanus\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\203E62EEA6789D84098513925E9B9999 deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\02F6486B12843E11F869800002C0A966 deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{EE26E302-876A-48D9-9058-3129E5B99999} deleted successfully
HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{B6846F20-4821-11E3-8F96-0800200C9A66} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\203E62EEA6789D84098513925E9B9999 deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\02F6486B12843E11F869800002C0A966 deleted successfully

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Hanus\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\Content.IE5 emptied successfully
C:\Users\Hanus\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\INetCache\IE emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\Hanus\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully
C:\WINDOWS\sysWoW64\config\systemprofile\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

No Flash Cache Found

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=5719 folders=133 299303472 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Hanus\AppData\Local\Temp will be emptied at reboot
C:\WINDOWS\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\WINDOWS\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied
C:\Users\Hanus\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on st 09.09.2015 at 18:43:31,39 ======================

Reklama

DJAdam · Příspěvekod **DJAdam** » 09 zář 2015 18:49

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 18:49:09, on 9.9.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17840)

Boot mode: Normal

Running processes:
C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Users\Hanus\AppData\Local\NVIDIA\NvBackend\ApplicationOntology\NvOAWrapperCache.exe
C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Hanus\Desktop\HijackThis.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\WINDOWS\SysWOW64\DllHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [ProductUpdater] C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
O4 - HKCU\..\Run: [Steam] "D:\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe"
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Avast Firewall (avast! Firewall) - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)

--
End of file - 8220 bytes

DJAdam · Příspěvekod **DJAdam** » 09 zář 2015 18:50

Už je vidno že PC ide plynulejšie,v CS:GO mi to pridalo asi 20-30FPS

Příspěvekod **jaro3** » 09 zář 2015 21:27

Zavři ostatní aplikace a prohlížeče, odpoj se od netu a fixni v HJT:
Návod

Kód: Vybrat vše

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
F2 - REG:system.ini: UserInit=userinit.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

Stáhni si zde DelFix
https://toolslib.net/downloads/viewdownload/2-delfix/

ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7 a 8, musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore)
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci

Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem.Jinak je zpráva zde:
v C: \ DelFix.txt

Pokud nejsou problémy , je to vše a můžeš dát vyřešeno , zelenou fajfku.

DJAdam · Příspěvekod **DJAdam** » 10 zář 2015 07:04

# DelFix v1.011 - Logfile created 10/09/2015 at 07:03:33
# Updated 18/08/2015 by Xplode
# Username : Hanus - HANUS-PC
# Operating System : Windows 8.1 (64 bits)

~ Removing disinfection tools ...

Deleted : C:\zoek_backup
Deleted : C:\AdwCleaner
Deleted : C:\zoek-results.log
Deleted : C:\Users\Hanus\Desktop\adwcleaner_5.006.exe
Deleted : C:\Users\Hanus\Desktop\JRT.exe
Deleted : C:\Users\Hanus\Desktop\JRT.txt
Deleted : C:\Users\Hanus\Desktop\HijackThis.exe
Deleted : C:\Users\Hanus\Desktop\hijackthis.log
Deleted : C:\Users\Hanus\Desktop\RogueKillerX64.exe
Deleted : C:\Users\Hanus\Desktop\TFC.exe
Deleted : C:\Users\Hanus\Desktop\zoek.exe
Deleted : HKLM\SOFTWARE\OldTimer Tools
Deleted : HKLM\SOFTWARE\AdwCleaner
Deleted : HKLM\SOFTWARE\TrendMicro\Hijackthis

~ Cleaning system restore ...

New restore point created !

########## - EOF - ##########

DJAdam · Příspěvekod **DJAdam** » 10 zář 2015 07:05

ALe PC sa mi ešte zapína celkom dlho,chod PC je už fajn ten ide dobre ale ked sa PC zapína tak si myslím že by to malo isť ešte o niečo rychlejšie..

Příspěvekod **jerabina** » 10 zář 2015 07:11

Prosím stáhni příslušnou verzi programu pro Tvůj systém 32-bit/64-bit Farbar Recovery Scan Tool (FRST)
32bit.:
http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
64bit.:
http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
a ulož jej na plochu. ,pak spusť FRST jako správce
Potvrď způsob užití.
Neměň žádné z výchozích nastavení a klikni na položku „Scan“ („Skenovat“) .Když je skenování dokončeno, ukážou se dva logy = FRST.txt a Addition.txt a uloží se na ploše.Prosím zkopíruj sem celý jejich obsah.

DJAdam · Příspěvekod **DJAdam** » 10 zář 2015 07:22

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:07-09-2015
Ran by Hanus (administrator) on HANUS-PC (10-09-2015 07:20:31)
Running from C:\Users\Hanus\Desktop
Loaded Profiles: Hanus (Available Profiles: Hanus)
Platform: Windows 8.1 (X64) Language: Slovenčina (Slovensko)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
(Spotify Ltd) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\ng\ngtool.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13650648 2013-08-21] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2634896 2015-07-24] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6111824 2015-08-26] (AVAST Software)
HKLM-x32\...\Run: [ProductUpdater] => C:\Program Files (x86)\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe [62464 2015-06-18] ()
HKU\S-1-5-21-3812361727-838257335-1277264128-1001\...\Run: [Steam] => D:\Steam\steam.exe [2899136 2015-08-19] (Valve Corporation)
HKU\S-1-5-21-3812361727-838257335-1277264128-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53737488 2015-08-07] (Skype Technologies S.A.)
HKU\S-1-5-21-3812361727-838257335-1277264128-1001\...\Run: [Spotify Web Helper] => C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe [1168896 2014-06-17] (Spotify Ltd)
HKU\S-1-5-21-3812361727-838257335-1277264128-1001\...\Run: [WarThunderLauncher] => D:\WarThunder\launcher.exe [6043696 2015-08-13] (Gaijin Entertainment)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-08-11] (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{45EBB24D-83FA-43A8-B741-2F2DCFC276C4}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4DDE0E17-7512-4773-AE02-D9007D1B58DA}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
SearchScopes: HKLM -> DefaultScope value is missing
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope value is missing
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3812361727-838257335-1277264128-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_51\bin\ssv.dll [2015-08-04] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-08-11] (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_51\bin\jp2ssv.dll [2015-08-04] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-08-11] (AVAST Software)

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-09-06] ()
FF Plugin: @java.com/DTPlugin,version=11.51.2 -> C:\Program Files\Java\jre1.8.0_51\bin\dtplugin\npDeployJava1.dll [2015-08-04] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.51.2 -> C:\Program Files\Java\jre1.8.0_51\bin\plugin2\npjp2.dll [2015-08-04] (Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-09-06] ()
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-08-25] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-08-25] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-29] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems Inc.)
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-08-11]

Chrome:
=======
CHR Profile: C:\Users\Hanus\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Google Slides) - C:\Users\Hanus\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-09-09]
CHR Extension: (Google Docs) - C:\Users\Hanus\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-09-09]
CHR Extension: (Google Drive) - C:\Users\Hanus\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-09-09]
CHR Extension: (YouTube) - C:\Users\Hanus\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-09]
CHR Extension: (Google Search) - C:\Users\Hanus\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-09-09]
CHR Extension: (Avast SafePrice) - C:\Users\Hanus\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2015-08-16]
CHR Extension: (Google Sheets) - C:\Users\Hanus\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-09-09]
CHR Extension: (Google Docs Offline) - C:\Users\Hanus\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-09]
CHR Extension: (Avast Online Security) - C:\Users\Hanus\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-08-11]
CHR Extension: (Chrome Web Store Payments) - C:\Users\Hanus\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-03]
CHR Extension: (Gmail) - C:\Users\Hanus\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-09-09]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2015-08-11]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-08-11]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S4 ASGT; C:\Windows\SysWOW64\ASGT.exe [55296 2012-01-17] () [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-08-11] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [109008 2015-08-11] (AVAST Software)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [4047768 2015-08-11] (Avast Software)
S4 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Portal\CCDMonitorService.exe [2797312 2014-01-17] (Acer Incorporated)
S4 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1155216 2015-07-24] (NVIDIA Corporation)
S4 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-16] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1871504 2015-07-24] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [5544592 2015-07-24] (NVIDIA Corporation)
S4 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [222952 2014-01-25] (acer)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-08-11] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [28144 2015-08-11] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [90968 2015-08-11] (AVAST Software)
R0 aswNdisFlt; C:\Windows\System32\DRIVERS\aswNdisFlt.sys [454016 2015-08-11] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-08-11] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-08-11] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1048344 2015-08-14] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [447944 2015-08-11] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [150672 2015-08-11] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [274808 2015-08-11] (AVAST Software)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-06-18] (Malwarebytes Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
S3 mfencbdc; C:\Windows\System32\DRIVERS\mfencbdc.sys [529080 2015-06-28] (McAfee, Inc.)
S3 mfencrk; C:\Windows\System32\DRIVERS\mfencrk.sys [109728 2015-06-28] (McAfee, Inc.)
R0 ngvss; C:\Windows\System32\Drivers\ngvss.sys [115152 2015-08-11] (AVAST Software)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-07-24] (NVIDIA Corporation)
R3 NVVADARM; C:\Windows\system32\drivers\nvvadarm.sys [39032 2015-08-25] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [47976 2015-07-03] (NVIDIA Corporation)
R2 RtkIOAC60; C:\Windows\system32\DRIVERS\RtkIOAC60.sys [29912 2013-07-19] (Realtek semiconductor corp)
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [273824 2015-08-11] (Avast Software)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-10 07:20 - 2015-09-10 07:20 - 00014644 _____ C:\Users\Hanus\Desktop\FRST.txt
2015-09-10 07:20 - 2015-09-10 07:20 - 00000000 ____D C:\FRST
2015-09-10 07:19 - 2015-09-10 07:19 - 02190336 _____ (Farbar) C:\Users\Hanus\Desktop\FRST64.exe
2015-09-10 07:03 - 2015-09-10 07:04 - 00000884 _____ C:\DelFix.txt
2015-09-10 06:59 - 2015-09-10 06:59 - 00000000 ____D C:\Users\Hanus\Desktop\backups
2015-09-09 18:42 - 2015-09-10 06:53 - 00000696 _____ C:\WINDOWS\setupact.log
2015-09-09 18:42 - 2015-09-09 18:42 - 00000000 _____ C:\WINDOWS\setuperr.log
2015-09-09 18:40 - 2015-09-09 18:40 - 00000328 _____ C:\WINDOWS\PFRO.log
2015-09-09 18:37 - 2015-09-09 18:27 - 00024064 _____ C:\WINDOWS\zoek-delete.exe
2015-09-09 16:35 - 2015-09-10 07:06 - 00143976 _____ C:\WINDOWS\WindowsUpdate.log
2015-09-09 15:04 - 2015-09-09 15:04 - 01199856 _____ ( ) C:\Users\Hanus\Downloads\hwmonitor_1.28.exe
2015-09-09 15:04 - 2015-09-09 15:04 - 00000950 _____ C:\Users\Public\Desktop\CPUID HWMonitor.lnk
2015-09-09 15:04 - 2015-09-09 15:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CPUID
2015-09-09 15:04 - 2015-09-09 15:04 - 00000000 ____D C:\Program Files\CPUID
2015-09-09 14:21 - 2015-09-09 18:16 - 00037624 _____ C:\WINDOWS\system32\Drivers\TrueSight.sys
2015-09-09 14:21 - 2015-09-09 15:04 - 00000000 ____D C:\ProgramData\RogueKiller
2015-09-09 06:54 - 2015-09-03 04:18 - 02531400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2015-09-09 06:54 - 2015-09-03 04:17 - 01903848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml6.dll
2015-09-09 06:54 - 2015-09-02 20:48 - 02345472 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2015-09-09 06:54 - 2015-09-02 19:09 - 01556992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2015-09-09 06:54 - 2015-08-27 04:48 - 00136904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2015-09-09 06:54 - 2015-08-26 20:00 - 00721920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2015-09-09 06:54 - 2015-08-26 20:00 - 00124928 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuwebv.dll
2015-09-09 06:54 - 2015-08-26 20:00 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wudriver.dll
2015-09-09 06:54 - 2015-08-26 20:00 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapp.exe
2015-09-09 06:54 - 2015-08-26 16:46 - 03705344 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-09-09 06:54 - 2015-08-26 16:29 - 02240512 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltux.dll
2015-09-09 06:54 - 2015-08-26 16:27 - 00891904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2015-09-09 06:54 - 2015-08-26 16:27 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WUSettingsProvider.dll
2015-09-09 06:54 - 2015-08-26 16:26 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuwebv.dll
2015-09-09 06:54 - 2015-08-26 16:26 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\system32\wudriver.dll
2015-09-09 06:54 - 2015-08-26 16:26 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapp.exe
2015-09-09 06:54 - 2015-08-22 20:19 - 25188352 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-09-09 06:54 - 2015-08-22 19:35 - 02886144 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-09-09 06:54 - 2015-08-22 19:34 - 00585216 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-09-09 06:54 - 2015-08-22 19:22 - 19856384 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-09-09 06:54 - 2015-08-22 19:21 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-09-09 06:54 - 2015-08-22 19:20 - 05923840 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2015-09-09 06:54 - 2015-08-22 18:55 - 00504832 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-09-09 06:54 - 2015-08-22 18:50 - 02279424 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-09-09 06:54 - 2015-08-22 18:50 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2015-09-09 06:54 - 2015-08-22 18:45 - 00665600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-09-09 06:54 - 2015-08-22 18:44 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2015-09-09 06:54 - 2015-08-22 18:41 - 14451712 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-09-09 06:54 - 2015-08-22 18:41 - 00801280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2015-09-09 06:54 - 2015-08-22 18:41 - 00720384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2015-09-09 06:54 - 2015-08-22 18:41 - 00374784 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2015-09-09 06:54 - 2015-08-22 18:39 - 02126336 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2015-09-09 06:54 - 2015-08-22 18:28 - 04520448 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2015-09-09 06:54 - 2015-08-22 18:26 - 02427392 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-09-09 06:54 - 2015-08-22 18:23 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2015-09-09 06:54 - 2015-08-22 18:22 - 12857344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-09-09 06:54 - 2015-08-22 18:20 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2015-09-09 06:54 - 2015-08-22 18:18 - 02052608 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2015-09-09 06:54 - 2015-08-22 18:18 - 00689152 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2015-09-09 06:54 - 2015-08-22 18:18 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2015-09-09 06:54 - 2015-08-22 18:14 - 01545728 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-09-09 06:54 - 2015-08-22 18:01 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2015-09-09 06:54 - 2015-08-22 18:00 - 01951232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2015-09-09 06:54 - 2015-08-22 17:56 - 01310720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2015-09-09 06:54 - 2015-08-22 17:55 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2015-09-09 06:54 - 2015-07-30 19:18 - 00268288 _____ (Microsoft Corporation) C:\WINDOWS\system32\InkEd.dll
2015-09-09 06:54 - 2015-07-30 18:22 - 00230912 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\InkEd.dll
2015-09-09 06:54 - 2015-07-22 16:19 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\UtcResources.dll
2015-09-09 06:54 - 2015-07-22 15:52 - 01633792 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2015-09-09 06:54 - 2015-07-17 16:15 - 00951296 _____ (Microsoft Corporation) C:\WINDOWS\system32\tdh.dll
2015-09-09 06:54 - 2015-07-17 16:10 - 00749568 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\tdh.dll
2015-09-09 06:54 - 2015-07-03 23:51 - 01380056 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32.dll
2015-09-09 06:54 - 2015-07-03 16:00 - 01097216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\gdi32.dll
2015-09-09 06:54 - 2015-06-27 13:47 - 00118616 _____ (Microsoft Corporation) C:\WINDOWS\system32\consent.exe
2015-09-09 06:53 - 2015-09-02 04:56 - 04175872 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2015-09-09 06:53 - 2015-09-02 04:55 - 00358912 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-09-09 06:53 - 2015-09-02 04:50 - 00044032 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-09-09 06:53 - 2015-09-02 04:17 - 00301568 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-09-09 06:53 - 2015-09-02 04:13 - 00035840 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-09-09 06:53 - 2015-08-03 23:15 - 00074928 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidapi.dll
2015-09-09 06:53 - 2015-08-03 23:15 - 00065600 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\appidapi.dll
2015-09-09 06:53 - 2015-08-01 16:22 - 00039936 _____ (Microsoft Corporation) C:\WINDOWS\system32\appidsvc.dll
2015-09-09 06:53 - 2015-08-01 05:47 - 00229376 _____ (Microsoft Corporation) C:\WINDOWS\system32\schtasks.exe
2015-09-09 06:53 - 2015-08-01 05:45 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\schtasks.exe
2015-09-09 06:53 - 2015-08-01 05:38 - 01265152 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2015-09-09 06:53 - 2015-08-01 05:37 - 00468992 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskeng.exe
2015-09-09 06:53 - 2015-08-01 05:37 - 00359936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\taskeng.exe

DJAdam · Příspěvekod **DJAdam** » 10 zář 2015 07:23

2015-09-09 06:53 - 2015-07-22 16:34 - 02775552 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-09-09 06:53 - 2015-07-22 16:33 - 01728000 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-09-09 06:53 - 2015-07-22 16:25 - 02461184 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-09-09 06:53 - 2015-07-22 16:25 - 01546752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-09-09 06:53 - 2015-07-18 20:31 - 00194048 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2015-09-09 06:53 - 2015-07-18 20:29 - 00655872 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2015-09-09 06:53 - 2015-07-18 20:29 - 00148480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2015-09-09 06:53 - 2015-07-18 20:27 - 00520192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2015-09-09 06:53 - 2015-07-13 21:10 - 00411455 _____ C:\WINDOWS\system32\ApnDatabase.xml
2015-09-09 06:53 - 2015-07-09 18:14 - 00228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2015-09-09 06:53 - 2015-06-19 19:07 - 02819072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers.dll
2015-09-09 06:51 - 2015-07-14 05:27 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\tzsync.exe
2015-09-08 14:25 - 2015-09-09 14:03 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-09-08 14:25 - 2015-09-08 14:25 - 00001078 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-09-08 14:25 - 2015-09-08 14:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-09-08 14:25 - 2015-09-08 14:25 - 00000000 ____D C:\ProgramData\Malwarebytes
2015-09-08 14:25 - 2015-09-08 14:25 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-09-08 14:25 - 2015-06-18 08:42 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-09-08 14:25 - 2015-06-18 08:41 - 00109272 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-09-08 14:25 - 2015-06-18 08:41 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2015-09-08 14:22 - 2015-09-08 14:24 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\Hanus\Downloads\mbam-setup-2.1.8.1057.exe
2015-09-06 13:01 - 2015-09-10 07:21 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-09-06 13:01 - 2015-09-06 13:01 - 00003718 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2015-09-05 18:21 - 2015-09-05 18:21 - 00000000 ____D C:\Users\Hanus\AppData\Roaming\Spotify
2015-09-05 18:21 - 2015-09-05 18:21 - 00000000 ____D C:\Users\Hanus\AppData\Local\Spotify
2015-09-01 18:46 - 2015-09-01 18:46 - 00002113 _____ C:\Users\Hanus\Desktop\3D Vision Photo Viewer.lnk
2015-09-01 18:46 - 2015-08-25 16:08 - 00574072 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2015-09-01 18:43 - 2015-08-25 20:46 - 42840368 _____ C:\WINDOWS\system32\nvcompiler.dll
2015-09-01 18:43 - 2015-08-25 20:46 - 37819184 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2015-09-01 18:43 - 2015-08-25 20:46 - 22525560 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2015-09-01 18:43 - 2015-08-25 20:46 - 18543736 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2015-09-01 18:43 - 2015-08-25 20:46 - 16637336 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2015-09-01 18:43 - 2015-08-25 20:46 - 15512888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2015-09-01 18:43 - 2015-08-25 20:46 - 14936264 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2015-09-01 18:43 - 2015-08-25 20:46 - 14635792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2015-09-01 18:43 - 2015-08-25 20:46 - 13661160 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2015-09-01 18:43 - 2015-08-25 20:46 - 12185152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2015-09-01 18:43 - 2015-08-25 20:46 - 11089200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2015-09-01 18:43 - 2015-08-25 20:46 - 02940720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2015-09-01 18:43 - 2015-08-25 20:46 - 02627704 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2015-09-01 18:43 - 2015-08-25 20:46 - 01898288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435582.dll
2015-09-01 18:43 - 2015-08-25 20:46 - 01558648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435582.dll
2015-09-01 18:43 - 2015-08-25 20:46 - 01106672 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2015-09-01 18:43 - 2015-08-25 20:46 - 01075320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2015-09-01 18:43 - 2015-08-25 20:46 - 01064752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2015-09-01 18:43 - 2015-08-25 20:46 - 00986232 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2015-09-01 18:43 - 2015-08-25 20:46 - 00945456 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2015-09-01 18:43 - 2015-08-25 20:46 - 00944736 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2015-09-01 18:43 - 2015-08-25 20:46 - 00879000 _____ C:\WINDOWS\system32\nvmcumd.dll
2015-09-01 18:43 - 2015-08-25 20:46 - 00512904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2015-09-01 18:43 - 2015-08-25 20:46 - 00421544 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2015-09-01 18:43 - 2015-08-25 20:46 - 00408184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2015-09-01 18:43 - 2015-08-25 20:46 - 00364336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2015-09-01 18:43 - 2015-08-25 20:46 - 00176904 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2015-09-01 18:43 - 2015-08-25 20:46 - 00155792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2015-09-01 18:43 - 2015-08-25 20:46 - 00150832 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2015-09-01 18:43 - 2015-08-25 20:46 - 00128512 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2015-09-01 18:43 - 2015-08-25 20:46 - 00117368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcaparm.dll
2015-09-01 18:43 - 2015-08-25 20:46 - 00039032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvadarm.sys
2015-08-30 14:44 - 2015-08-30 14:44 - 00358895 _____ C:\Users\Hanus\Desktop\Mount-&-Blade-with-Fire-and-Sword---Cestina.rar
2015-08-30 14:42 - 2015-08-30 16:34 - 00000000 ____D C:\Users\Hanus\AppData\Roaming\Mount&Blade With Fire and Sword
2015-08-30 14:42 - 2015-08-30 14:49 - 00000000 ____D C:\Users\Hanus\Documents\Mount&Blade With Fire and Sword
2015-08-30 14:29 - 2015-08-30 14:29 - 00000732 _____ C:\Users\Hanus\Desktop\Mount&Blade With Fire and Sword.lnk
2015-08-30 14:29 - 2015-08-30 14:29 - 00000000 ____D C:\Users\Hanus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mount&Blade With Fire and Sword
2015-08-30 14:29 - 2015-08-30 14:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mount&Blade With Fire and Sword
2015-08-30 13:15 - 2015-08-30 14:26 - 892561872 _____ C:\Users\Hanus\Desktop\mb_wfas_setup_1143.exe
2015-08-29 08:58 - 2015-09-10 07:03 - 00000962 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0cd9ff5d8ba59.job
2015-08-29 08:58 - 2015-09-10 06:54 - 00000958 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-08-27 12:58 - 2015-08-27 12:58 - 00000000 ____D C:\Users\Hanus\Tracing
2015-08-27 12:57 - 2015-09-02 15:40 - 00000000 ____D C:\Users\Hanus\AppData\Roaming\Skype
2015-08-27 12:57 - 2015-08-27 12:57 - 00002729 _____ C:\Users\Public\Desktop\Skype.lnk
2015-08-27 12:57 - 2015-08-27 12:57 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-08-27 12:57 - 2015-08-27 12:57 - 00000000 ____D C:\Users\Hanus\AppData\Local\Skype
2015-08-27 12:57 - 2015-08-27 12:57 - 00000000 ____D C:\ProgramData\Skype
2015-08-27 12:57 - 2015-08-27 12:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-08-21 16:07 - 2015-09-08 20:22 - 00000000 ____D C:\KMPlayer
2015-08-21 14:59 - 2015-08-21 14:58 - 00000990 _____ C:\Users\Hanus\Desktop\vegas120.exe.lnk
2015-08-21 14:56 - 2015-08-21 14:56 - 00001300 _____ C:\Users\Public\Desktop\Freemake Video Converter.lnk
2015-08-21 14:56 - 2015-08-21 14:56 - 00000000 ____D C:\Users\Hanus\Documents\Freemake
2015-08-21 14:56 - 2015-08-21 14:56 - 00000000 ____D C:\Users\Hanus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Freemake
2015-08-21 14:56 - 2015-08-21 14:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Freemake
2015-08-21 14:56 - 2015-08-21 14:56 - 00000000 ____D C:\ProgramData\Freemake
2015-08-21 14:56 - 2015-08-21 14:56 - 00000000 ____D C:\Program Files (x86)\Freemake
2015-08-21 14:52 - 2015-08-27 16:16 - 00026624 ___SH C:\Users\Hanus\Downloads\Thumbs.db
2015-08-21 14:47 - 2015-08-21 14:47 - 00001872 _____ C:\Users\Hanus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\avast! antivirus.lnk
2015-08-21 14:42 - 2015-08-21 14:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sony
2015-08-21 14:41 - 2015-08-21 14:48 - 00000000 ____D C:\Users\Hanus\AppData\Local\Sony
2015-08-21 14:41 - 2015-08-21 14:41 - 00000000 ____D C:\ProgramData\Sony
2015-08-21 14:41 - 2015-08-21 14:41 - 00000000 ____D C:\Program Files (x86)\Sony
2015-08-21 14:40 - 2015-08-21 15:11 - 00000000 ____D C:\Users\Hanus\AppData\Roaming\Sony
2015-08-21 14:30 - 2015-08-21 14:30 - 00000553 _____ C:\Users\Hanus\Desktop\Dxtory.lnk
2015-08-21 14:30 - 2015-08-21 14:30 - 00000000 ____D C:\Users\Hanus\AppData\Local\Dxtory Software
2015-08-21 14:30 - 2015-08-21 14:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dxtory2.0
2015-08-21 14:30 - 2011-05-23 23:29 - 03673600 _____ (Dxtory Software) C:\WINDOWS\system32\DxtoryCodec64.dll
2015-08-21 14:30 - 2011-05-23 23:23 - 03166720 _____ (Dxtory Software) C:\WINDOWS\SysWOW64\DxtoryCodec.dll
2015-08-21 14:29 - 2015-08-21 14:29 - 00000000 ____D C:\Users\Hanus\AppData\Roaming\WinRAR
2015-08-21 14:29 - 2013-02-20 20:18 - 00000000 ____D C:\Users\Hanus\Desktop\Sony Vegas Pro 12.0 build 394 x64 Incl. Patch - MPT [deepstatus]
2015-08-21 14:29 - 2013-02-05 20:40 - 00000000 ____D C:\Users\Hanus\Desktop\Dxtory 2.0.119 License[A4]
2015-08-21 14:28 - 2015-08-21 14:28 - 00000000 ____D C:\Users\Hanus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-08-21 14:28 - 2015-08-21 14:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR
2015-08-21 14:28 - 2015-08-21 14:28 - 00000000 ____D C:\Program Files\WinRAR
2015-08-21 09:52 - 2015-08-21 09:52 - 00000000 ____D C:\Users\Hanus\AppData\Local\Ubisoft
2015-08-20 20:37 - 2015-08-20 20:37 - 00000000 ____D C:\Program Files\Reference Assemblies
2015-08-20 20:37 - 2015-08-20 20:37 - 00000000 ____D C:\Program Files\MSBuild
2015-08-20 20:37 - 2015-08-20 20:37 - 00000000 ____D C:\Program Files (x86)\Reference Assemblies
2015-08-20 20:37 - 2015-08-20 20:37 - 00000000 ____D C:\Program Files (x86)\MSBuild
2015-08-20 19:12 - 2015-08-20 20:39 - 00035298 _____ C:\WINDOWS\system32\perfh01B.dat
2015-08-20 19:12 - 2015-08-20 20:39 - 00007782 _____ C:\WINDOWS\system32\perfc01B.dat
2015-08-20 13:48 - 2015-08-20 13:48 - 00000202 _____ C:\Users\Hanus\Desktop\Tom Clancy's Ghost Recon Phantoms - EU.url
2015-08-19 14:39 - 2015-08-21 14:48 - 00000000 ____D C:\Users\Hanus\AppData\Roaming\NVIDIA
2015-08-19 12:34 - 2015-08-19 12:34 - 00003202 _____ C:\WINDOWS\System32\Tasks\{B76101F8-924B-4B66-BE9F-242D134925DA}
2015-08-19 11:15 - 2015-08-19 11:15 - 00000000 ____D C:\Users\Hanus\Documents\CyberLink
2015-08-19 11:15 - 2015-08-19 11:15 - 00000000 ____D C:\Users\Hanus\AppData\Roaming\CyberLink
2015-08-19 11:15 - 2015-08-19 11:15 - 00000000 ____D C:\Users\Hanus\AppData\Local\CyberLink
2015-08-19 10:34 - 2015-08-19 10:34 - 00000202 _____ C:\Users\Hanus\Desktop\Total War Arena.url
2015-08-15 12:34 - 2015-08-07 13:06 - 01898104 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6435560.dll
2015-08-15 12:34 - 2015-08-07 13:06 - 01558832 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6435560.dll
2015-08-14 13:02 - 2015-08-14 13:02 - 00000000 ____D C:\Users\Hanus\AppData\Local\Intel
2015-08-13 15:09 - 2015-07-30 16:04 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-13 15:09 - 2015-07-30 15:48 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-13 08:46 - 2015-08-08 15:55 - 00794088 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-08-13 08:46 - 2015-08-08 15:55 - 00179688 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-08-12 16:41 - 2015-08-12 16:41 - 00000625 _____ C:\Users\Hanus\Desktop\World of Warships.lnk
2015-08-12 16:41 - 2015-08-12 16:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warships
2015-08-12 09:52 - 2015-07-16 22:36 - 00417792 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2015-08-12 09:52 - 2015-07-16 22:23 - 00615936 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieui.dll
2015-08-12 09:52 - 2015-07-16 21:53 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2015-08-12 09:52 - 2015-07-16 21:50 - 00341504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2015-08-12 09:52 - 2015-07-16 21:41 - 00479232 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieui.dll
2015-08-12 09:52 - 2015-07-16 21:14 - 02880000 _____ (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-08-12 09:52 - 2015-07-16 20:52 - 01048576 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2015-08-12 09:44 - 2015-07-16 02:29 - 07458648 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-08-12 09:44 - 2015-07-16 02:29 - 01735000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-08-12 09:44 - 2015-07-16 02:29 - 00101720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mountmgr.sys
2015-08-12 09:44 - 2015-07-16 02:28 - 01499920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-08-12 09:44 - 2015-07-10 19:54 - 01217024 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysmain.dll
2015-08-12 09:44 - 2015-07-07 11:40 - 00270168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdFilter.sys
2015-08-12 09:44 - 2015-07-07 11:40 - 00114520 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdNisDrv.sys
2015-08-12 09:44 - 2015-07-07 11:40 - 00044560 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdBoot.sys
2015-08-12 09:43 - 2015-07-13 21:46 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\csrsrv.dll
2015-08-12 09:43 - 2015-07-13 21:45 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\basesrv.dll
2015-08-12 09:28 - 2015-07-29 01:24 - 00025776 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2015-08-12 09:28 - 2015-07-28 16:24 - 01148416 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2015-08-12 09:28 - 2015-07-28 16:24 - 01116160 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2015-08-12 09:28 - 2015-07-28 16:24 - 00774144 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2015-08-12 09:28 - 2015-07-28 16:24 - 00743424 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2015-08-12 09:28 - 2015-07-28 16:24 - 00437248 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2015-08-12 09:28 - 2015-07-28 16:24 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-08-12 09:28 - 2015-07-09 19:13 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\notepad.exe
2015-08-12 09:28 - 2015-07-09 19:13 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\notepad.exe
2015-08-12 09:28 - 2015-07-09 18:30 - 00212992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\notepad.exe
2015-08-12 09:28 - 2015-07-02 00:19 - 00228864 _____ (Microsoft Corporation) C:\WINDOWS\system32\WebClnt.dll
2015-08-12 09:28 - 2015-07-02 00:16 - 00104448 _____ (Microsoft Corporation) C:\WINDOWS\system32\davclnt.dll
2015-08-12 09:28 - 2015-07-01 23:37 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WebClnt.dll
2015-08-12 09:28 - 2015-07-01 23:35 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\davclnt.dll
2015-08-12 09:27 - 2015-07-29 16:37 - 01994752 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2015-08-12 09:27 - 2015-07-29 16:30 - 01381888 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2015-08-12 09:27 - 2015-07-29 16:23 - 01559552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DWrite.dll
2015-08-12 09:27 - 2015-07-10 20:19 - 01101824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdvidcrl.dll
2015-08-12 09:27 - 2015-07-10 19:14 - 00856064 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\rdvidcrl.dll
2015-08-12 09:27 - 2015-07-10 19:13 - 07032320 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2015-08-12 09:27 - 2015-07-10 18:31 - 06213120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mstscax.dll
2015-08-11 11:03 - 2015-08-11 11:03 - 00000000 ____D C:\Users\Hanus\AppData\Roaming\AVAST Software
2015-08-11 11:02 - 2015-08-11 11:03 - 00000000 ____D C:\WINDOWS\SysWOW64\vbox
2015-08-11 11:02 - 2015-08-11 11:03 - 00000000 ____D C:\WINDOWS\system32\vbox
2015-08-11 11:01 - 2015-09-10 06:54 - 00004182 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2015-08-11 11:01 - 2015-08-14 07:58 - 01048344 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys
2015-08-11 11:01 - 2015-08-11 11:01 - 00454016 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNdisFlt.sys
2015-08-11 11:01 - 2015-08-11 11:01 - 00447944 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2015-08-11 11:01 - 2015-08-11 11:01 - 00378880 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2015-08-11 11:01 - 2015-08-11 11:01 - 00274808 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2015-08-11 11:01 - 2015-08-11 11:01 - 00150672 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2015-08-11 11:01 - 2015-08-11 11:01 - 00115152 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\ngvss.sys
2015-08-11 11:01 - 2015-08-11 11:01 - 00093528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2015-08-11 11:01 - 2015-08-11 11:01 - 00090968 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2015-08-11 11:01 - 2015-08-11 11:01 - 00065224 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2015-08-11 11:01 - 2015-08-11 11:01 - 00043112 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2015-08-11 11:01 - 2015-08-11 11:01 - 00028656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2015-08-11 11:01 - 2015-08-11 11:01 - 00028144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2015-08-11 11:01 - 2015-08-11 11:01 - 00002002 _____ C:\Users\Public\Desktop\Avast SafeZone.lnk
2015-08-11 11:01 - 2015-08-11 11:01 - 00001942 _____ C:\Users\Public\Desktop\Avast Premier.lnk
2015-08-11 11:01 - 2015-08-11 11:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2015-08-11 10:48 - 2015-08-11 10:48 - 00000000 ____D C:\ProgramData\AVAST Software
2015-08-11 10:48 - 2015-08-11 10:48 - 00000000 ____D C:\Program Files\AVAST Software

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-10 07:00 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\sru
2015-09-10 06:58 - 2015-08-03 00:41 - 00003970 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{1F85D8D3-BFBD-487A-96B3-E6C2E0978322}
2015-09-10 06:53 - 2014-06-17 15:17 - 00000000 ____D C:\ProgramData\NVIDIA
2015-09-10 06:53 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-09-09 19:52 - 2015-08-03 00:41 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3812361727-838257335-1277264128-1001
2015-09-09 18:43 - 2015-08-08 15:07 - 00087552 ___SH C:\Users\Hanus\Desktop\Thumbs.db
2015-09-09 18:41 - 2013-08-22 16:44 - 00337760 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-09-09 18:39 - 2013-08-22 21:11 - 00000000 ____D C:\Program Files\Windows Journal
2015-09-09 18:39 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\sk-SK
2015-09-09 18:39 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2015-09-09 15:06 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\rescache
2015-09-09 14:20 - 2013-08-22 17:20 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-09-09 14:15 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\SysWOW64\sk-SK
2015-09-09 07:29 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-09-08 06:58 - 2015-08-03 00:35 - 00000000 ____D C:\Users\Hanus\AppData\Local\VirtualStore
2015-09-06 09:32 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-09-03 13:04 - 2015-08-03 00:44 - 00002179 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-09-01 18:46 - 2015-08-03 00:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-09-01 18:46 - 2014-06-17 15:17 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-08-29 08:58 - 2015-08-03 05:53 - 00003934 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA1d0cd9ff5d8ba59
2015-08-29 08:58 - 2015-08-03 00:44 - 00003698 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-08-27 17:10 - 2015-07-10 20:33 - 00000000 ___HD C:\$Windows.~BT
2015-08-27 16:17 - 2014-03-06 08:36 - 00000000 ____D C:\WINDOWS\Panther
2015-08-27 12:58 - 2015-08-03 00:35 - 00000000 ____D C:\Users\Hanus
2015-08-25 20:46 - 2015-08-03 10:47 - 03527696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2015-08-25 20:46 - 2015-08-03 10:47 - 01558648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmcvadgenco64.dll
2015-08-25 20:46 - 2015-08-03 00:48 - 00033025 _____ C:\WINDOWS\system32\nvinfo.pb
2015-08-25 20:46 - 2015-08-03 00:46 - 17082392 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2015-08-25 20:46 - 2015-08-03 00:46 - 12515016 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2015-08-25 20:46 - 2015-08-03 00:45 - 03112904 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2015-08-25 20:46 - 2014-06-17 15:17 - 00112760 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2015-08-25 20:46 - 2014-06-17 15:17 - 00105264 _____ (Khronos Group) C:\WINDOWS\SysWOW64\OpenCL.dll
2015-08-25 16:24 - 2014-06-17 15:17 - 06884984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2015-08-25 16:24 - 2014-06-17 15:17 - 03496752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2015-08-25 16:24 - 2014-06-17 15:17 - 02558584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2015-08-25 16:24 - 2014-06-17 15:17 - 00937776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2015-08-25 16:24 - 2014-06-17 15:17 - 00385144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2015-08-25 16:24 - 2014-06-17 15:17 - 00062584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2015-08-25 14:35 - 2014-06-17 15:17 - 05165808 _____ C:\WINDOWS\system32\nvcoproc.bin
2015-08-21 10:44 - 2015-08-02 20:12 - 00000000 ____D C:\WINDOWS\pss
2015-08-20 19:09 - 2013-08-22 17:36 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-20 13:48 - 2015-08-02 20:29 - 00000000 ____D C:\Users\Hanus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2015-08-19 12:34 - 2015-08-03 05:58 - 00000000 ____D C:\Users\Hanus\Documents\My Games
2015-08-19 12:34 - 2014-06-17 15:14 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-08-19 11:20 - 2014-06-17 15:29 - 00000000 ____D C:\ProgramData\CyberLink
2015-08-19 11:17 - 2014-06-17 15:30 - 00000000 ____D C:\Users\Public\CyberLink
2015-08-19 10:14 - 2014-03-06 08:43 - 00863592 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-08-18 09:55 - 2014-03-06 09:40 - 00002487 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2015-08-18 09:46 - 2014-03-06 09:40 - 00000000 ____D C:\ProgramData\Adobe
2015-08-17 12:18 - 2015-08-03 17:08 - 00000000 ____D C:\Users\Hanus\AppData\Roaming\TS3Client
2015-08-15 13:32 - 2015-08-04 11:38 - 00000000 ____D C:\Users\Hanus\AppData\Roaming\WildTangent
2015-08-15 13:32 - 2014-03-06 09:31 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-08-15 13:32 - 2014-03-06 09:31 - 00000000 ____D C:\ProgramData\WildTangent
2015-08-14 13:03 - 2014-06-17 15:18 - 00000000 ____D C:\ProgramData\Intel
2015-08-12 22:09 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-08-12 22:09 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2015-08-12 22:09 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Windows Defender
2015-08-12 22:09 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files (x86)\Windows Defender
2015-08-12 22:08 - 2015-08-03 13:04 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-08-12 22:06 - 2015-08-03 13:04 - 132483416 ____N (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-08-12 16:41 - 2015-08-04 08:32 - 00000000 ____D C:\WINDOWS\SysWOW64\directx
2015-08-12 09:38 - 2015-08-03 15:18 - 00000000 ___SD C:\WINDOWS\system32\CompatTel
2015-08-12 09:38 - 2015-08-03 15:18 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-08-12 09:38 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-12 09:38 - 2013-08-22 17:36 - 00000000 ___RD C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
2015-08-11 10:44 - 2014-03-06 09:42 - 00000000 ____D C:\ProgramData\McAfee
2015-08-11 10:44 - 2014-03-06 09:42 - 00000000 ____D C:\Program Files (x86)\McAfee
2015-08-11 10:33 - 2015-08-04 12:49 - 00000000 ____D C:\WINDOWS\System32\Tasks\McAfee
2015-08-11 10:33 - 2013-08-22 17:36 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2015-08-11 10:33 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\ELAM

==================== Files in the root of some directories =======

2014-08-04 15:46 - 2014-08-04 15:46 - 0155453 _____ () C:\Program Files\changelog.txt
2013-11-13 14:36 - 2013-11-13 14:36 - 0110106 _____ () C:\Program Files\createfileassoc.exe
2014-08-04 15:46 - 2014-08-04 15:46 - 0204232 _____ (TeamSpeak Systems GmbH) C:\Program Files\error_report.exe
2014-06-05 15:48 - 2014-06-05 15:48 - 1653248 _____ (The OpenSSL Project, http://www.openssl.org/) C:\Program Files\libeay32.dll
2014-08-04 15:46 - 2014-08-04 15:46 - 0036932 _____ () C:\Program Files\license.txt
2012-11-05 22:26 - 2012-11-05 22:26 - 0661456 _____ (Microsoft Corporation) C:\Program Files\msvcp110.dll
2012-11-05 22:26 - 2012-11-05 22:26 - 0849360 _____ (Microsoft Corporation) C:\Program Files\msvcr110.dll
2014-05-19 13:15 - 2014-05-19 13:15 - 1313056 _____ (Overwolf) C:\Program Files\OverwolfTeamSpeakInstaller.exe
2014-08-04 15:46 - 2014-08-04 15:46 - 0236488 _____ (TeamSpeak Systems GmbH) C:\Program Files\package_inst.exe
2014-08-04 10:29 - 2014-08-04 10:29 - 0000321 _____ () C:\Program Files\plugin_sdk.html
2014-02-27 16:47 - 2014-02-27 16:47 - 5459968 _____ (Digia Plc and/or its subsidiary(-ies)) C:\Program Files\Qt5Core.dll
2014-02-27 16:48 - 2014-02-27 16:48 - 3573760 _____ (Digia Plc and/or its subsidiary(-ies)) C:\Program Files\Qt5Gui.dll
2014-02-27 16:47 - 2014-02-27 16:47 - 1068032 _____ (Digia Plc and/or its subsidiary(-ies)) C:\Program Files\Qt5Network.dll
2014-02-27 16:47 - 2014-02-27 16:47 - 0214528 _____ (Digia Plc and/or its subsidiary(-ies)) C:\Program Files\Qt5Sql.dll
2014-02-27 16:50 - 2014-02-27 16:50 - 5336064 _____ (Digia Plc and/or its subsidiary(-ies)) C:\Program Files\Qt5Widgets.dll
2014-02-28 11:14 - 2014-02-28 11:14 - 0173568 _____ () C:\Program Files\quazip.dll
2014-06-05 15:48 - 2014-06-05 15:48 - 0345088 _____ (The OpenSSL Project, http://www.openssl.org/) C:\Program Files\ssleay32.dll
2014-08-04 15:45 - 2014-08-04 15:45 - 10725320 _____ (TeamSpeak Systems GmbH) C:\Program Files\ts3client_win64.exe
2015-08-03 17:08 - 2015-08-03 17:08 - 0126290 _____ (TeamSpeak Systems GmbH) C:\Program Files\Uninstall.exe
2014-08-04 15:46 - 2014-08-04 15:46 - 0824296 _____ (TeamSpeak Systems GmbH) C:\Program Files\update.exe
2014-06-20 09:44 - 2014-06-20 09:44 - 0520934 _____ () C:\Program Files\usb.ids
2015-08-05 12:33 - 2015-08-05 12:34 - 1065984 _____ () C:\Users\Hanus\AppData\Local\file__0.localstorage

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-09-06 19:31

==================== End of FRST.txt ============================

DJAdam · Příspěvekod **DJAdam** » 10 zář 2015 07:24

Additional scan result of Farbar Recovery Scan Tool (x64) Version:07-09-2015
Ran by Hanus (2015-09-10 07:21:20)
Running from C:\Users\Hanus\Desktop
Windows 8.1 (X64) (2015-08-02 22:34:51)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-3812361727-838257335-1277264128-500 - Administrator - Disabled)
Guest (S-1-5-21-3812361727-838257335-1277264128-501 - Limited - Disabled)
Hanus (S-1-5-21-3812361727-838257335-1277264128-1001 - Administrator - Enabled) => C:\Users\Hanus
HomeGroupUser$ (S-1-5-21-3812361727-838257335-1277264128-1003 - Limited - Enabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Enabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Acer Docs (HKLM-x32\...\{CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}) (Version: 1.03.2003 - Acer Incorporated)
Acer Docs Office AddIn (HKLM-x32\...\{DCBF3379-246B-47E1-8173-639B63940838}) (Version: 2.04.2005 - Acer)
Acer Explorer Agent (HKLM\...\{4D0F42CF-1693-43D9-BDC8-19141D023EE0}) (Version: 2.00.3000 - Acer Incorporated)
Acer Media (HKLM-x32\...\{E9AF1707-3F3A-49E2-8345-4F2D629D0876}) (Version: 2.04.2006.0 - Acer Incorporated)
Acer Photo (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 2.04.2006.0 - Acer Incorporated)
Acer Portal (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 2.04.2007 - Acer Incorporated)
Acer Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.8106 - Acer Incorporated)
Acer Remote Files (HKLM\...\{13885028-098C-4799-9B71-27DAC96502D5}) (Version: 1.02.2003 - Acer Incorporated)
Acer User Experience Improvement Program App Monitor Plugin (HKLM\...\{978724F6-1863-4DD5-9E66-FB77F5AB5613}) (Version: 1.01.3003 - Acer Incorporated)
Acer User Experience Improvement Program Framework (HKLM\...\{12A718F2-2357-4D41-9E1F-18583A4745F7}) (Version: 1.01.3003 - Acer Incorporated)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.12) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AB0000000001}) (Version: 11.0.12 - Adobe Systems Incorporated)
Aktualizácie NVIDIA 2.5.12.11 (Version: 2.5.12.11 - NVIDIA Corporation) Hidden
ASUS GPU Tweak (HKLM-x32\...\InstallShield_{532F6E8A-AF97-41C3-915F-39F718EC07D1}) (Version: 2.6.8.3 - ASUSTek COMPUTER INC.)
ASUS GPU Tweak (x32 Version: 2.6.8.3 - ASUSTek COMPUTER INC.) Hidden
Avast Premier (HKLM-x32\...\Avast) (Version: 10.3.2225 - AVAST Software)
CCleaner (HKLM\...\CCleaner) (Version: 4.11 - Piriform)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
CPUID HWMonitor 1.28 (HKLM\...\CPUID HWMonitor_is1) (Version: - )
CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.3716.57 - CyberLink Corp.)
Defraggler (HKLM\...\Defraggler) (Version: 2.19 - Piriform)
Dxtory version 2.0.119 (HKLM-x32\...\Dxtory2.0_is1) (Version: 2.0.119 - Dxtory Software)
Freemake Video Converter verzia 4.1.6 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.6 - Ellora Assets Corporation)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 45.0.2454.85 - Spoločnosť Google Inc.)
Google Update Helper (x32 Version: 1.3.21.115 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.13 - Google Inc.) Hidden
Hotkey Utility (HKLM-x32\...\{A6DC88AD-501A-44BC-884D-57435F972E2C}) (Version: 3.00.8102 - Acer Incorporated)
Identity Card (HKLM-x32\...\{3D9CB654-99AD-4301-89C6-0D12A790767C}) (Version: 2.00.8101 - Acer Incorporated)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Java 8 Update 51 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418051F0}) (Version: 8.0.510 - Oracle Corporation)
KMPlayer (HKLM-x32\...\The KMPlayer) (Version: 3.9.1.135 - PandoraTV)
Malwarebytes Anti-Malware verzia 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Mount&Blade With Fire and Sword (HKLM-x32\...\Mount&Blade With Fire and Sword) (Version: - )
Nero BackItUp 12 Essentials OEM.a01 (HKLM-x32\...\{551AC8F2-FEA2-4B45-ACF7-C98681233CC9}) (Version: 12.5.01200 - Nero AG)
NVIDIA 3D Vision radič ovládača 352.65 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 352.65 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.5.12.11 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.5.12.11 - NVIDIA Corporation)
NVIDIA Grafický ovládač 355.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 355.82 - NVIDIA Corporation)
NVIDIA Ovládač 3D Vision 355.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 355.82 - NVIDIA Corporation)
NVIDIA Ovládač zvuku HD 1.3.34.3 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.3 - NVIDIA Corporation)
NVIDIA Softvér systému s podporou technológie PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
NVIDIA Virtuálny zvuk Miracast 355.82 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 355.82 - NVIDIA Corporation)
Ovládací panel NVIDIA 355.82 (Version: 355.82 - NVIDIA Corporation) Hidden
Prerequisite installer (x32 Version: 12.0.0003 - Nero AG) Hidden
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.3.34 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.18.621.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7023 - Realtek Semiconductor Corp.)
SHIELD Streaming (Version: 4.1.3000 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.5.12.11 - NVIDIA Corporation) Hidden
Skype™ 7.8 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.8.102 - Skype Technologies S.A.)
Spotify (HKLM-x32\...\Spotify) (Version: 0.9.6.81.gd359a796 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stronghold Kingdoms (HKLM-x32\...\Steam App 47410) (Version: - FireFly Studios)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
Tom Clancy's Ghost Recon Phantoms - EU (HKLM-x32\...\Steam App 272350) (Version: - Ubisoft Singapore)
Total War: Arena (HKLM-x32\...\Steam App 227520) (Version: - Creative Assembly)
Vegas Pro 12.0 (64-bit) (HKLM\...\{87CEB7C0-1D35-11E2-8F19-F04DA23A5C58}) (Version: 12.0.394 - Sony)
War Thunder Launcher 1.0.1.538 (HKLM-x32\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Entertainment)
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
World of Tanks (HKU\S-1-5-21-3812361727-838257335-1277264128-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812eu}_is1) (Version: - Wargaming.net)
World of Warships (HKU\S-1-5-21-3812361727-838257335-1277264128-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C814eu}_is1) (Version: - Wargaming.net)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== Restore Points =========================

10-09-2015 07:03:47 End of disinfection

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2015-09-09 18:29 - 00000753 ____A C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 localhost

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {1AFB4CD0-7918-429A-8BDD-BDC63674CF9F} - System32\Tasks\Recovery Management\Notification => C:\Program Files\Acer\Acer Recovery Management\Notification\Notification.exe [2014-03-19] (Acer Incorporated)
Task: {2EF02F32-7C42-41A5-AE30-4D6626FC43AA} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe invagent.dll,RunUpdate -noappraiser
Task: {35E08C0D-E22E-4AF0-9E09-43AC00BA536C} - System32\Tasks\AcerCloud => C:\Program Files (x86)\Acer\Acer Portal\acpanel_win.exe [2014-01-17] (Acer Incorporated)
Task: {69E99D77-5906-4AD0-906A-F41820765B60} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-02-20] (Piriform Ltd)
Task: {84C5AF9F-7871-4A33-B3DE-5DA044729B4B} - System32\Tasks\ALU => C:\Program Files (x86)\Acer\Live Updater\updater.exe [2013-07-09] ()
Task: {8A6784D7-E7AA-4EC3-AB7C-06203DA68212} - System32\Tasks\Hotkey Utility => C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe [2013-12-31] (Acer Incorporated)
Task: {90EB7AAA-E70E-4600-BD1D-C72EE4548DCE} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program\Framework\TriggerFramework.exe [2014-01-25] (TODO: <Company name>)
Task: {992EA99B-D592-4B7E-B44C-0FC33163C8DA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {AAF24893-5FB2-4494-B290-E7CE764B4F9D} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-08-12] (Microsoft Corporation)
Task: {AC2BDFE8-0D3D-4320-B058-B219581DA871} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe [2013-01-22] ()
Task: {BC020A7B-62F1-480B-9042-C2C9B3EF0666} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-09-06] (Adobe Systems Incorporated)
Task: {BE069FC0-EB2D-4B25-A681-2DFD40695A70} - System32\Tasks\{B76101F8-924B-4B66-BE9F-242D134925DA} => pcalua.exe -a C:\PROGRA~2\COMMON~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe -c /M{7B9CC60A-9B81-46A3-A953-76B6BF9EEC97}
Task: {D47B9BD8-00A0-4E59-BC5F-EA6CFD727F2C} - System32\Tasks\GoogleUpdateTaskMachineUA1d0cd9ff5d8ba59 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {E6370CA8-7919-4DA3-98F7-56274D52187D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {FF19F340-EB5B-487B-9F9F-8F1B3347E85B} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-08-11] (AVAST Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0cd9ff5d8ba59.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2014-06-17 15:17 - 2015-08-25 16:24 - 00116344 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2015-08-11 11:01 - 2015-08-11 11:01 - 00102864 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-08-11 11:01 - 2015-08-11 11:01 - 00123976 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-09-09 13:27 - 2015-09-09 13:27 - 02962432 _____ () C:\Program Files\AVAST Software\Avast\defs\15090900\algo.dll
2015-09-10 06:56 - 2015-09-10 06:56 - 02962944 _____ () C:\Program Files\AVAST Software\Avast\defs\15090902\algo.dll
2015-08-03 10:18 - 2015-07-24 06:22 - 00011920 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2015-08-11 11:01 - 2015-08-11 11:01 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-06-17 15:18 - 2013-09-16 21:20 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3812361727-838257335-1277264128-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Hanus\AppData\Roaming\Microsoft\Windows Photo Viewer\Tapeta programu Windows Photo Viewer.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is disabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: ASGT => 2
MSCONFIG\Services: CCDMonitorService => 2
MSCONFIG\Services: GamesAppIntegrationService => 2
MSCONFIG\Services: GamesAppService => 3
MSCONFIG\Services: GfExperienceService => 2
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: IDriverT => 3
MSCONFIG\Services: NAUpdate => 2
MSCONFIG\Services: Steam Client Service => 3
MSCONFIG\Services: UEIPSvc => 3
HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run32: => "ProductUpdater"
HKU\S-1-5-21-3812361727-838257335-1277264128-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-3812361727-838257335-1277264128-1001\...\StartupApproved\Run: => "WarThunderLauncher"
HKU\S-1-5-21-3812361727-838257335-1277264128-1001\...\StartupApproved\Run: => "Skype"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{87B85081-3E32-4106-9D74-D19C4CE201BF}] => (Allow) C:\Program Files (x86)\Nero\Nero 12\Nero BackItUp\BackItUp.exe
FirewallRules: [{0CEE9708-BE4F-49D7-A586-CCF23DC15174}] => (Allow) C:\Program Files (x86)\Nero\Nero 12\Nero BackItUp\BackItUp.exe
FirewallRules: [{36AE0A00-9940-4852-BC99-4833108176D4}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{33156252-D3C0-4E7A-8CC4-C5B7BA8E06EB}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{9303AF6C-AEFD-4DFD-864D-A73602A9B920}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe
FirewallRules: [{BB7884FD-15CD-4216-B64E-1EA78ADD4E68}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe
FirewallRules: [{9BC65F97-9A38-4D34-B342-8A54D64E36C1}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
FirewallRules: [{EA789DCF-8BED-451E-AEA4-07FD6B5372D6}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
FirewallRules: [{77AA6952-28EE-4C46-9033-A6ADFA8945E3}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe
FirewallRules: [{F8E57FFC-0A17-4CAD-A067-0AC4D3FBB307}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMR\PowerDVD12DMREngine.exe
FirewallRules: [{ACE53969-102B-4392-A076-8D2C251E1C98}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
FirewallRules: [{CF548BE1-0BD0-4A38-9E59-E7494098E666}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12Agent.exe
FirewallRules: [{3FC56E80-8B74-4BB8-AE6F-09C7A51595BD}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe
FirewallRules: [{5BCD5C63-6890-44D6-92E6-7790EF464EBF}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe
FirewallRules: [{4E8B47B6-D1A5-4447-B728-79F6765F74A0}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\DMCDaemon.exe
FirewallRules: [{C001D7F0-FF53-4A0F-8DF7-C2E24E55D977}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\DMCDaemon.exe
FirewallRules: [{7FAE1BB1-C253-44D1-AD50-EFD5753EE1CA}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\WindowsUpnpMV.exe
FirewallRules: [{87D08164-0BF5-4D99-8C16-01FF7A20FCC8}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\WindowsUpnpMV.exe
FirewallRules: [{4CFD343D-14D0-4CFA-91E2-63F206A4847F}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\DMCDaemon.exe
FirewallRules: [{3C3DB117-B8AA-487B-B33C-943735CC9370}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\DMCDaemon.exe
FirewallRules: [{828C2343-D255-4B70-B092-B8F58E82A709}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\WindowsUpnpMV.exe
FirewallRules: [{73FE9000-F346-4724-B27D-B73F44700D3B}] => (Allow) C:\Program Files (x86)\Acer\Acer Media\WindowsUpnpMV.exe
FirewallRules: [{6DBA8A07-FAB7-4E4F-A07A-AF98FD9D612F}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\DMCDaemon.exe
FirewallRules: [{6A934A80-296C-4D91-BCCE-71A4C878BFAA}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\DMCDaemon.exe
FirewallRules: [{523154D1-2C6C-486A-B2DA-1DD7CA347486}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\WindowsUpnp.exe
FirewallRules: [{5E5EE3F6-C6B6-4551-A0C9-40D99A7A7D82}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\WindowsUpnp.exe
FirewallRules: [{D74922EC-327F-483F-A2D8-21E9FC906478}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\DMCDaemon.exe
FirewallRules: [{A4E38B32-85C4-4975-BB1B-949EE20D71A7}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\DMCDaemon.exe
FirewallRules: [{ED7B7A90-BF28-4404-BFBF-1CFF1CAB75B7}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\WindowsUpnp.exe
FirewallRules: [{AF6E177A-B050-4108-89B7-A175C681A5AF}] => (Allow) C:\Program Files (x86)\Acer\Acer Photo\WindowsUpnp.exe
FirewallRules: [{C98D4E03-FAE9-4C60-8B98-59FA7BFBD42D}] => (Allow) C:\Program Files (x86)\Acer\Acer Portal\ccd.exe
FirewallRules: [{ED92C300-A2A8-4D9D-A67F-2D3C9DCDE145}] => (Allow) C:\Program Files (x86)\Acer\Acer Portal\ccd.exe
FirewallRules: [{0F0C96A0-EC93-41EF-8FED-058A5C57ABEE}] => (Allow) C:\Program Files (x86)\Acer\Acer Portal\Sdd.exe
FirewallRules: [{5FAF2E35-8BEA-40F2-9B4D-7209CCC743C8}] => (Allow) C:\Program Files (x86)\Acer\Acer Portal\Sdd.exe
FirewallRules: [{EB376606-4702-400D-86E5-3430F43362AF}] => (Allow) C:\Program Files (x86)\Acer\Acer Portal\virtualdrive.exe
FirewallRules: [{4C3BCB25-F701-405C-A13A-B914964B9EA0}] => (Allow) C:\Program Files (x86)\Acer\Acer Portal\virtualdrive.exe
FirewallRules: [{89A2D963-DFAD-4F57-A3BC-0BB1239AB754}] => (Allow) C:\Program Files (x86)\Acer\Acer Portal\ccd.exe
FirewallRules: [{009C5EC0-15D9-4B16-9F72-43D96D339165}] => (Allow) C:\Program Files (x86)\Acer\Acer Portal\ccd.exe
FirewallRules: [{8D97166D-C7AE-42B2-9A58-579E77DF1CEF}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{CCD2C83C-9E0E-43B5-B4B0-7DDD94066BA6}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{D4CC9B98-88BB-4338-86DD-FBFD604C05C8}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{C46D24EE-8041-4A2B-BCCC-0C4C882FEEA2}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{4DC7970B-589C-4627-A68A-E265C90D6E7E}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{571025CA-8060-4ED7-970D-EA2ECBF0E0E6}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{871BEECF-FFD0-440E-8C28-1EE85220EF51}] => (Allow) D:\WarThunder\launcher.exe
FirewallRules: [{9B923312-5251-45B6-887B-257A3B8181DE}] => (Allow) D:\WarThunder\launcher.exe
FirewallRules: [{A374980F-FEAF-465C-AFAF-048255955051}] => (Allow) D:\WarThunder\bpreport.exe
FirewallRules: [{C54167DC-68FC-42E0-9AD7-636AE3CBF667}] => (Allow) D:\WarThunder\bpreport.exe
FirewallRules: [{13CFA98B-CCFD-4680-A168-919EE8FD3293}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{BCA7F8B3-8E2D-4960-905B-5BFC63DD40A3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{16FFB7F0-5812-44C7-AF4A-6704497BF558}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{99A46D91-F7A8-4D6B-91F6-A06BD48978F6}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{DBDF8369-75CA-412D-BEE2-8967E006DEB8}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{7BA77CB6-62F7-4815-85AD-F87FE2A5B8F3}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{2A5DEC40-61B1-4BD3-A67D-FE9657943A3D}] => (Allow) D:\Steam\steamapps\common\Stronghold Kingdoms\StrongholdKingdoms.exe
FirewallRules: [{D16B4F5D-531E-47C0-8592-515811A5705A}] => (Allow) D:\Steam\steamapps\common\Stronghold Kingdoms\StrongholdKingdoms.exe
FirewallRules: [{EA48FB27-9BC9-4E3C-A16E-B9FA6CDC3BEB}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{13E0581D-964C-46B9-9A07-98F6CFDB8926}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [TCP Query User{4EAFD4C7-CE52-415A-91FE-567EC1189183}D:\world of tanks\worldoftanks.exe] => (Block) D:\world of tanks\worldoftanks.exe
FirewallRules: [UDP Query User{F7DC0447-A59A-4280-92B3-0BB6716C50C5}D:\world of tanks\worldoftanks.exe] => (Block) D:\world of tanks\worldoftanks.exe
FirewallRules: [{EB87AEE0-7640-4D25-9F2A-CCE57D55BBCD}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{E794AEC9-E2EA-4340-9182-01B405DE90ED}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [TCP Query User{43A8DE7F-C19C-450E-877C-97F4E4165669}D:\warthunder\aces.exe] => (Allow) D:\warthunder\aces.exe
FirewallRules: [UDP Query User{389DDADE-A973-4A15-A8AB-00E434A0B12B}D:\warthunder\aces.exe] => (Allow) D:\warthunder\aces.exe
FirewallRules: [TCP Query User{F4970585-D85C-4A08-830D-226B9B9820FF}D:\world of warships\wowslauncher.exe] => (Allow) D:\world of warships\wowslauncher.exe
FirewallRules: [UDP Query User{8A956451-D1F8-4DA4-AABB-32907276D708}D:\world of warships\wowslauncher.exe] => (Allow) D:\world of warships\wowslauncher.exe
FirewallRules: [TCP Query User{FAA84C8C-2C57-4592-B116-B1538116F9F6}D:\steam\steamapps\common\total war arena\arena.exe] => (Block) D:\steam\steamapps\common\total war arena\arena.exe
FirewallRules: [UDP Query User{06472B63-ACE3-4CD9-B8EF-E8875E8D6623}D:\steam\steamapps\common\total war arena\arena.exe] => (Block) D:\steam\steamapps\common\total war arena\arena.exe
FirewallRules: [TCP Query User{7A40ADC1-4453-414C-9E1A-21D0F164BDE2}D:\world of tanks\wotlauncher.exe] => (Allow) D:\world of tanks\wotlauncher.exe
FirewallRules: [UDP Query User{26A95EAE-97E0-46B2-B279-0ABF000C3EDA}D:\world of tanks\wotlauncher.exe] => (Allow) D:\world of tanks\wotlauncher.exe
FirewallRules: [{F0E781E9-36DF-4734-BBFB-700EAEFDEBBD}] => (Allow) D:\Steam\steamapps\common\Tom Clancy's Ghost Recon Phantoms - EU\Launcher.exe
FirewallRules: [{5161FAF4-C137-4C10-8CD2-B133FCCBA612}] => (Allow) D:\Steam\steamapps\common\Tom Clancy's Ghost Recon Phantoms - EU\Launcher.exe
FirewallRules: [TCP Query User{36A23A7D-2924-4421-8695-9037981DC775}D:\steam\steamapps\common\tom clancy's ghost recon phantoms - eu\game\pdc-live\ghostreconphantoms.exe] => (Allow) D:\steam\steamapps\common\tom clancy's ghost recon phantoms - eu\game\pdc-live\ghostreconphantoms.exe
FirewallRules: [UDP Query User{92CACA72-F6BD-464B-B2DE-A948BE13D845}D:\steam\steamapps\common\tom clancy's ghost recon phantoms - eu\game\pdc-live\ghostreconphantoms.exe] => (Allow) D:\steam\steamapps\common\tom clancy's ghost recon phantoms - eu\game\pdc-live\ghostreconphantoms.exe
FirewallRules: [TCP Query User{4BA68414-E6FA-457E-B20E-60CFBAC0FDFC}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{1955A99C-9A08-452F-BB29-B1C5FAAE4FEE}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{63E86DB5-4D94-46A9-B588-739E77545F5B}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{8F17D077-1323-41AD-B1E7-6F5C305F81FF}] => (Allow) D:\Steam\steamapps\common\Total War Arena\launcher\launcher.exe
FirewallRules: [{E86B10AF-16FC-4D7B-A55F-230B35969241}] => (Allow) D:\Steam\steamapps\common\Total War Arena\launcher\launcher.exe

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
==================
Error: (09/04/2015 12:58:18 PM) (Source: Microsoft-Windows-LocationProvider) (EventID: 2006) (User: NT AUTHORITY)
Description: There was an error with the Windows Location Provider database

Error: (09/01/2015 07:27:55 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: worldofwarships.exe, verzia: 0.4.0.45318, časová značka: 0x55c8cbf4
Názov chybujúceho modulu: MSVCR110.dll, verzia: 11.0.51106.1, časová značka: 0x5098858e
Kód výnimky: 0xc0000409
Odstup chyby: 0x000a326c
Identifikácia chybujúceho procesu: 0x1330
Čas spustenia chybujúcej aplikácie: 0xworldofwarships.exe0
Cesta chybujúcej aplikácie: worldofwarships.exe1
Cesta chybujúceho modulu: worldofwarships.exe2
Identifikácia hlásenia: worldofwarships.exe3
Celé meno chybujúceho balíka: worldofwarships.exe4
Identifikácia chybujúcej aplikácie vzhľadom na balík: worldofwarships.exe5

Error: (08/31/2015 10:26:35 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: GWXUX.exe, verzia: 6.3.9600.17924, časová značka: 0x55959290
Názov chybujúceho modulu: ntdll.dll, verzia: 6.3.9600.17936, časová značka: 0x55a68e0c
Kód výnimky: 0xc0000005
Odstup chyby: 0x000000000003d86e
Identifikácia chybujúceho procesu: 0x123c
Čas spustenia chybujúcej aplikácie: 0xGWXUX.exe0
Cesta chybujúcej aplikácie: GWXUX.exe1
Cesta chybujúceho modulu: GWXUX.exe2
Identifikácia hlásenia: GWXUX.exe3
Celé meno chybujúceho balíka: GWXUX.exe4
Identifikácia chybujúcej aplikácie vzhľadom na balík: GWXUX.exe5

Error: (08/30/2015 02:42:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: mb_wfas.exe, verzia: 1.0.0.0, časová značka: 0x4e1da199
Názov chybujúceho modulu: fmodex.dll, verzia: 6.3.9600.17936, časová značka: 0x55a68dd1
Kód výnimky: 0xc0000135
Odstup chyby: 0x0009d4f2
Identifikácia chybujúceho procesu: 0xacc
Čas spustenia chybujúcej aplikácie: 0xmb_wfas.exe0
Cesta chybujúcej aplikácie: mb_wfas.exe1
Cesta chybujúceho modulu: mb_wfas.exe2
Identifikácia hlásenia: mb_wfas.exe3
Celé meno chybujúceho balíka: mb_wfas.exe4
Identifikácia chybujúcej aplikácie vzhľadom na balík: mb_wfas.exe5

Error: (08/30/2015 02:42:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: mb_wfas.exe, verzia: 1.0.0.0, časová značka: 0x4e1da199
Názov chybujúceho modulu: fmodex.dll, verzia: 6.3.9600.17936, časová značka: 0x55a68dd1
Kód výnimky: 0xc0000135
Odstup chyby: 0x0009d4f2
Identifikácia chybujúceho procesu: 0x404
Čas spustenia chybujúcej aplikácie: 0xmb_wfas.exe0
Cesta chybujúcej aplikácie: mb_wfas.exe1
Cesta chybujúceho modulu: mb_wfas.exe2
Identifikácia hlásenia: mb_wfas.exe3
Celé meno chybujúceho balíka: mb_wfas.exe4
Identifikácia chybujúcej aplikácie vzhľadom na balík: mb_wfas.exe5

Error: (08/27/2015 12:52:18 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Hanus-PC)
Description: Aktivácia aplikácie Microsoft.SkypeApp_kzf8qxf38zg5c!App zlyhala pre chybu: -2144927142 Ďalšie informácie nájdete v denníku Microsoft-Windows-TWinUI/Operational.

Error: (08/25/2015 12:11:01 PM) (Source: Microsoft-Windows-LocationProvider) (EventID: 2006) (User: NT AUTHORITY)
Description: There was an error with the Windows Location Provider database

Error: (08/25/2015 10:12:26 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: WSHost.exe, verzia: 6.3.9600.17415, časová značka: 0x545040f3
Názov chybujúceho modulu: WinStoreUI.dll, verzia: 6.3.9600.17819, časová značka: 0x554636a9
Kód výnimky: 0xc0000005
Odstup chyby: 0x00000000000569d9
Identifikácia chybujúceho procesu: 0xa5c
Čas spustenia chybujúcej aplikácie: 0xWSHost.exe0
Cesta chybujúcej aplikácie: WSHost.exe1
Cesta chybujúceho modulu: WSHost.exe2
Identifikácia hlásenia: WSHost.exe3
Celé meno chybujúceho balíka: WSHost.exe4
Identifikácia chybujúcej aplikácie vzhľadom na balík: WSHost.exe5

Error: (08/24/2015 08:21:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: worldofwarships.exe, verzia: 0.4.0.45318, časová značka: 0x55c8cbf4
Názov chybujúceho modulu: MSVCR110.dll, verzia: 11.0.51106.1, časová značka: 0x5098858e
Kód výnimky: 0xc0000409
Odstup chyby: 0x000a326c
Identifikácia chybujúceho procesu: 0x1034
Čas spustenia chybujúcej aplikácie: 0xworldofwarships.exe0
Cesta chybujúcej aplikácie: worldofwarships.exe1
Cesta chybujúceho modulu: worldofwarships.exe2
Identifikácia hlásenia: worldofwarships.exe3
Celé meno chybujúceho balíka: worldofwarships.exe4
Identifikácia chybujúcej aplikácie vzhľadom na balík: worldofwarships.exe5

Error: (08/24/2015 09:34:00 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Názov chybujúcej aplikácie: WSHost.exe, verzia: 6.3.9600.17415, časová značka: 0x545040f3
Názov chybujúceho modulu: WinStoreUI.dll, verzia: 6.3.9600.17819, časová značka: 0x554636a9
Kód výnimky: 0xc0000005
Odstup chyby: 0x00000000000569d9
Identifikácia chybujúceho procesu: 0x1120
Čas spustenia chybujúcej aplikácie: 0xWSHost.exe0
Cesta chybujúcej aplikácie: WSHost.exe1
Cesta chybujúceho modulu: WSHost.exe2
Identifikácia hlásenia: WSHost.exe3
Celé meno chybujúceho balíka: WSHost.exe4
Identifikácia chybujúcej aplikácie vzhľadom na balík: WSHost.exe5

System errors:
=============
Error: (09/10/2015 06:53:36 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: Modul WLAN Extensibility Module sa nepodarilo spustiť.

Cesta k modulu: C:\WINDOWS\system32\athExt.dll
Kód chyby: 126

Error: (09/09/2015 06:42:21 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: Modul WLAN Extensibility Module sa nepodarilo spustiť.

Cesta k modulu: C:\WINDOWS\system32\athExt.dll
Kód chyby: 126

Error: (09/09/2015 06:36:01 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označená ako interaktívna služba. Systém je však nakonfigurovaný tak, aby nepovolil interaktívne služby. Služba pravdepodobne nebude pracovať správne.

Error: (09/09/2015 06:36:01 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označená ako interaktívna služba. Systém je však nakonfigurovaný tak, aby nepovolil interaktívne služby. Služba pravdepodobne nebude pracovať správne.

Error: (09/09/2015 06:36:01 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označená ako interaktívna služba. Systém je však nakonfigurovaný tak, aby nepovolil interaktívne služby. Služba pravdepodobne nebude pracovať správne.

Error: (09/09/2015 06:36:00 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označená ako interaktívna služba. Systém je však nakonfigurovaný tak, aby nepovolil interaktívne služby. Služba pravdepodobne nebude pracovať správne.

Error: (09/09/2015 06:36:00 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označená ako interaktívna služba. Systém je však nakonfigurovaný tak, aby nepovolil interaktívne služby. Služba pravdepodobne nebude pracovať správne.

Error: (09/09/2015 04:36:49 PM) (Source: volsnap) (EventID: 36) (User: )
Description: The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.

Error: (09/09/2015 03:03:04 PM) (Source: DCOM) (EventID: 10010) (User: Hanus-PC)
Description: {BF6C1E47-86EC-4194-9CE5-13C15DCB2001}

Error: (09/09/2015 03:02:34 PM) (Source: DCOM) (EventID: 10010) (User: Hanus-PC)
Description: {1B1F472E-3221-4826-97DB-2C2324D389AE}

Microsoft Office:
=========================
Error: (09/04/2015 12:58:18 PM) (Source: Microsoft-Windows-LocationProvider) (EventID: 2006) (User: NT AUTHORITY)
Description: -2147024883

Error: (09/01/2015 07:27:55 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: worldofwarships.exe0.4.0.4531855c8cbf4MSVCR110.dll11.0.51106.15098858ec0000409000a326c133001d0e4db30e399f0D:\World Of Warships\worldofwarships.exeD:\World Of Warships\MSVCR110.dllc740e401-50ce-11e5-8294-448a5b9b27f4

Error: (08/31/2015 10:26:35 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: GWXUX.exe6.3.9600.1792455959290ntdll.dll6.3.9600.1793655a68e0cc0000005000000000003d86e123c01d0e3c6ae3037ddC:\WINDOWS\System32\GWX\GWXUX.exeC:\WINDOWS\SYSTEM32\ntdll.dllfd794db9-4fb9-11e5-8293-448a5b9b27f4

Error: (08/30/2015 02:42:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: mb_wfas.exe1.0.0.04e1da199fmodex.dll6.3.9600.1793655a68dd1c00001350009d4f2acc01d0e32150fbac5eC:\Users\Hanus\Desktop\mb_wfas.exefmodex.dll8f68dfed-4f14-11e5-8292-448a5b9b27f4

Error: (08/30/2015 02:42:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: mb_wfas.exe1.0.0.04e1da199fmodex.dll6.3.9600.1793655a68dd1c00001350009d4f240401d0e3214a422000C:\Users\Hanus\Desktop\mb_wfas.exefmodex.dll898dbf4c-4f14-11e5-8292-448a5b9b27f4

Error: (08/27/2015 12:52:18 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Hanus-PC)
Description: Microsoft.SkypeApp_kzf8qxf38zg5c!App-2144927142

Error: (08/25/2015 12:11:01 PM) (Source: Microsoft-Windows-LocationProvider) (EventID: 2006) (User: NT AUTHORITY)
Description: -2147024883

Error: (08/25/2015 10:12:26 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: WSHost.exe6.3.9600.17415545040f3WinStoreUI.dll6.3.9600.17819554636a9c000000500000000000569d9a5c01d0df0dc4c9c46cC:\WINDOWS\WinStore\WSHost.exeC:\WINDOWS\winstore\WinStoreUI.dll052294ea-4b01-11e5-8288-448a5b9b27f4

Error: (08/24/2015 08:21:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: worldofwarships.exe0.4.0.4531855c8cbf4MSVCR110.dll11.0.51106.15098858ec0000409000a326c103401d0de99933ace38D:\World Of Warships\worldofwarships.exeD:\World Of Warships\MSVCR110.dllfe4270ae-4a8c-11e5-8287-448a5b9b27f4

Error: (08/24/2015 09:34:00 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: WSHost.exe6.3.9600.17415545040f3WinStoreUI.dll6.3.9600.17819554636a9c000000500000000000569d9112001d0de3f3cce9133C:\WINDOWS\WinStore\WSHost.exeC:\WINDOWS\winstore\WinStoreUI.dll7bef0ce1-4a32-11e5-8287-448a5b9b27f4

==================== Memory info ===========================

Processor: Intel(R) Pentium(R) CPU G3220 @ 3.00GHz
Percentage of memory in use: 53%
Total physical RAM: 4035.32 MB
Available physical RAM: 1876.78 MB
Total Virtual: 7588.32 MB
Available Virtual: 5209.97 MB

==================== Drives ================================

Drive c: (Acer) (Fixed) (Total:223.88 GB) (Free:183.69 GB) NTFS
Drive d: (DATA) (Fixed) (Total:223.88 GB) (Free:142.5 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 1761ADAE)

Partition: GPT.

==================== End of Addition.txt ============================

Příspěvekod **jaro3** » 10 zář 2015 08:42

Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.

Kód: Vybrat vše

Start
CloseProcesses:
SearchScopes: HKLM -> DefaultScope value is missing
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKLM-x32 -> DefaultScope value is missing
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-3812361727-838257335-1277264128-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
S3 mfencbdc; C:\Windows\System32\DRIVERS\mfencbdc.sys [529080 2015-06-28] (McAfee, Inc.)
S3 mfencrk; C:\Windows\System32\DRIVERS\mfencrk.sys [109728 2015-06-28] (McAfee, Inc.)
2015-08-29 08:58 - 2015-09-10 07:03 - 00000962 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0cd9ff5d8ba59.job
2015-08-29 08:58 - 2015-09-10 06:54 - 00000958 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\System32\DRIVERS\mfencbdc.sys
C:\Windows\System32\DRIVERS\mfencrk.sys
C:\WINDOWS\system32\perfh01B.dat
C:\WINDOWS\system32\perfc01B.dat
C:\WINDOWS\System32\Tasks\{B76101F8-924B-4B66-BE9F-242D134925DA}
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\ProgramData\McAfee
C:\Program Files (x86)\McAfee
C:\WINDOWS\System32\Tasks\McAfee
Task: {992EA99B-D592-4B7E-B44C-0FC33163C8DA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {D47B9BD8-00A0-4E59-BC5F-EA6CFD727F2C} - System32\Tasks\GoogleUpdateTaskMachineUA1d0cd9ff5d8ba59 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {E6370CA8-7919-4DA3-98F7-56274D52187D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0cd9ff5d8ba59.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
FirewallRules: [{36AE0A00-9940-4852-BC99-4833108176D4}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{33156252-D3C0-4E7A-8CC4-C5B7BA8E06EB}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe

EmptyTemp:
End

(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).

Ulož jej na na plochu jako fixlist.txt

Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.

Stáhni si aswMBR
na svojí plochu. Uzavři všechna okna , programy a prohlížeče. Poklepej na aswMBR.exe. Pokud se objeví hláška o možnosti stáhnutí databáze Avastu , klikni na NE. Poté klikni na „Scan“ . Po skenu klikni na „Save Log“ a ulož si log na plochu .Zkopíruj sem celý obsah toho logu. Pak klikni na „Exit“ k zavření programu.

V možnostech složky si povol zobrazování skrytých souborů a složek+ odškrtni zatržítko skrýt chráněné soubory operačního systému

Toto otestuj na Virustotal
C:\Program Files\createfileassoc.exe
C:\Program Files\error_report.exe
C:\Program Files\quazip.dll
C:\Program Files\ts3client_win64.exe
C:\Program Files\Uninstall.exe
C:\Program Files\update.exe
C:\Program Files\usb.ids

Klikni vpravo od okénka na Vybrat a v Exploreru najdi požadovaný soubor v Tvém PC. Označ ho myší a klikni na Otevřít , poté klikni na Send File. Pokud už byl soubor testován , objeví se okno ve kterém klikni na Reanalyze. Soubor se začne postupně testovat více antivirovými programy. Až skončí test posledního antiviru , objeví se nahoře result a červeně počet nákaz , např. 0/43 , nebo 1/43. Pak zkopíruj myší odkaz na tuto stránku a vlož ji do svého příspěvku.

Nebo na:
http://www.virscan.org/

DJAdam · Příspěvekod **DJAdam** » 10 zář 2015 14:10

Fix result of Farbar Recovery Scan Tool (x64) Version:07-09-2015
Ran by Hanus (2015-09-10 14:02:08) Run:2
Running from C:\Users\Hanus\Desktop
Loaded Profiles: Hanus (Available Profiles: Hanus)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
SearchScopes: HKLM -> DefaultScope value is missing
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope value is missing
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3812361727-838257335-1277264128-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
S3 mfencbdc; C:\Windows\System32\DRIVERS\mfencbdc.sys [529080 2015-06-28] (McAfee, Inc.)
S3 mfencrk; C:\Windows\System32\DRIVERS\mfencrk.sys [109728 2015-06-28] (McAfee, Inc.)
2015-08-29 08:58 - 2015-09-10 07:03 - 00000962 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0cd9ff5d8ba59.job
2015-08-29 08:58 - 2015-09-10 06:54 - 00000958 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\System32\DRIVERS\mfencbdc.sys
C:\Windows\System32\DRIVERS\mfencrk.sys
C:\WINDOWS\system32\perfh01B.dat
C:\WINDOWS\system32\perfc01B.dat
C:\WINDOWS\System32\Tasks\{B76101F8-924B-4B66-BE9F-242D134925DA}
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
C:\ProgramData\McAfee
C:\Program Files (x86)\McAfee
C:\WINDOWS\System32\Tasks\McAfee
Task: {992EA99B-D592-4B7E-B44C-0FC33163C8DA} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {D47B9BD8-00A0-4E59-BC5F-EA6CFD727F2C} - System32\Tasks\GoogleUpdateTaskMachineUA1d0cd9ff5d8ba59 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {E6370CA8-7919-4DA3-98F7-56274D52187D} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0cd9ff5d8ba59.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
FirewallRules: [{36AE0A00-9940-4852-BC99-4833108176D4}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe
FirewallRules: [{33156252-D3C0-4E7A-8CC4-C5B7BA8E06EB}] => (Allow) C:\Program Files\Common Files\mcafee\platform\McSvcHost\McSvHost.exe

EmptyTemp:
End
*****************

Processes closed successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found.
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found.
HKCR\Wow6432Node\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found.
HKU\S-1-5-21-3812361727-838257335-1277264128-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} => key not found.
HKCR\CLSID\{012E1000-F331-11DB-8314-0800200C9A66} => key not found.
mfencbdc => service not found.
mfencrk => service not found.
"C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0cd9ff5d8ba59.job" => File/Folder not found.
"C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job" => File/Folder not found.
"C:\Windows\System32\DRIVERS\mfencbdc.sys" => File/Folder not found.
"C:\Windows\System32\DRIVERS\mfencrk.sys" => File/Folder not found.
"C:\WINDOWS\system32\perfh01B.dat" => File/Folder not found.
"C:\WINDOWS\system32\perfc01B.dat" => File/Folder not found.
"C:\WINDOWS\System32\Tasks\{B76101F8-924B-4B66-BE9F-242D134925DA}" => File/Folder not found.
"C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore" => File/Folder not found.
"C:\ProgramData\McAfee" => File/Folder not found.
"C:\Program Files (x86)\McAfee" => File/Folder not found.
"C:\WINDOWS\System32\Tasks\McAfee" => File/Folder not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{992EA99B-D592-4B7E-B44C-0FC33163C8DA}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{992EA99B-D592-4B7E-B44C-0FC33163C8DA}" => key removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D47B9BD8-00A0-4E59-BC5F-EA6CFD727F2C}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D47B9BD8-00A0-4E59-BC5F-EA6CFD727F2C}" => key removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA1d0cd9ff5d8ba59 => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA1d0cd9ff5d8ba59" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E6370CA8-7919-4DA3-98F7-56274D52187D}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E6370CA8-7919-4DA3-98F7-56274D52187D}" => key removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => key removed successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => not found.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0cd9ff5d8ba59.job => not found.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{36AE0A00-9940-4852-BC99-4833108176D4} => value removed successfully
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{33156252-D3C0-4E7A-8CC4-C5B7BA8E06EB} => value removed successfully
EmptyTemp: => 394.5 MB temporary data Removed.

The system needed a reboot..

==== End of Fixlog 14:02:17 ====

Pomalé PC Vyřešeno

Re: Pomalé PC

Re: Pomalé PC

Re: Pomalé PC

Re: Pomalé PC

Re: Pomalé PC

Re: Pomalé PC

Re: Pomalé PC

Re: Pomalé PC

Re: Pomalé PC

Re: Pomalé PC

Re: Pomalé PC

Re: Pomalé PC

Kdo je online