Spomalený PC Vyřešeno

[DJAdam]

ale už to nerobí tak jak predtým,možno je to normálne a Windows ide celkom plynulo len pár krát nejaký ten sek..
No ale ked už som tu tak by som chcel PC uplne prečistit ako sa len dá,nechce sa mi sem dávať príspevok každý mesiac

[Reklama]

[jaro3]

Prosím stáhni příslušnou verzi programu pro Tvůj systém 32-bit/64-bit FarbarRecovery Scan Tool (FrSt)
32bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/81/
64bit.:
http://www.bleepingcomputer.com/downloa ... ool/dl/82/
a ulož jej na plochu. ,pak spusť FrSt.
Potvrď způsob užití.
Neměň žádné z výchozích nastavení a klikni na položku „Scan“ („Skenovat“) .Když je skenování dokončeno, ukážou se dva logy = FRST.txt a Addition.txt a uloží se na ploše.Prosím zkopíruj sem celý jejich obsah.

[DJAdam]

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:05-05-2016 01
Ran by Hanus (administrator) on HANUS-PC (05-05-2016 09:37:54)
Running from C:\Users\Hanus\Desktop
Loaded Profiles: Hanus (Available Profiles: Hanus)
Platform: Windows 8.1 (X64) Language: Slovenčina (Slovensko)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13650648 2013-08-21] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2789248 2016-02-17] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7391632 2016-05-03] (AVAST Software)
HKU\S-1-5-21-3812361727-838257335-1277264128-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [53737488 2015-08-07] (Skype Technologies S.A.)
HKU\S-1-5-21-3812361727-838257335-1277264128-1001\...\Run: [Spotify Web Helper] => C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe [1168896 2014-06-17] (Spotify Ltd)
HKU\S-1-5-21-3812361727-838257335-1277264128-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [23484296 2016-04-25] (Google)
HKU\S-1-5-21-3812361727-838257335-1277264128-1001\...\Run: [GalaxyClient] => [X]
HKU\S-1-5-21-3812361727-838257335-1277264128-1001\...\Run: [GSplay.exe] => C:\Users\Hanus\Desktop\Hry\GSplay.exe [4772747 2014-03-12] ()
HKU\S-1-5-21-3812361727-838257335-1277264128-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8686296 2016-03-11] (Piriform Ltd)
HKU\S-1-5-21-3812361727-838257335-1277264128-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4289728 2016-04-04] (Disc Soft Ltd)
HKU\S-1-5-21-3812361727-838257335-1277264128-1001\...\MountPoints2: {582e6474-feeb-11e5-8411-448a5b9b27f4} - "F:\autorun.exe"
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-04-25] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-04-25] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-04-25] (Google)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-05-03] (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{45EBB24D-83FA-43A8-B741-2F2DCFC276C4}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4DDE0E17-7512-4773-AE02-D9007D1B58DA}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3812361727-838257335-1277264128-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-04-17] (AVAST Software)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-04-17] (AVAST Software)

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_21_0_0_213.dll [2016-04-07] ()
FF Plugin: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-09-12] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-09-12] (Oracle Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_213.dll [2016-04-07] ()
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-03-22] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-03-22] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-04-14] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-04-14] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-06-29] (Adobe Systems Inc.)
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-05-03]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-05-03]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF

Chrome:
=======
CHR Profile: C:\Users\Hanus\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentácie Google) - C:\Users\Hanus\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-05-04]
CHR Extension: (Dokumenty Google) - C:\Users\Hanus\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-05-04]
CHR Extension: (Disk Google) - C:\Users\Hanus\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-05-04]
CHR Extension: (YouTube) - C:\Users\Hanus\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-05-04]
CHR Extension: (Avast SafePrice) - C:\Users\Hanus\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2016-05-04]
CHR Extension: (Tabuľky Google) - C:\Users\Hanus\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-05-04]
CHR Extension: (Dokumenty Google v režime offline) - C:\Users\Hanus\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-05-04]
CHR Extension: (Avast Online Security) - C:\Users\Hanus\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-05-04]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Hanus\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-05-04]
CHR Extension: (Gmail) - C:\Users\Hanus\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-05-04]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2016-04-17]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-04-17]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S4 ASGT; C:\Windows\SysWOW64\ASGT.exe [55296 2012-01-17] () [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [243296 2016-05-03] (AVAST Software)
S4 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1443520 2016-04-04] (Disc Soft Ltd)
S4 GalaxyClientService; C:\Program Files (x86)\GalaxyClient\GalaxyClientService.exe [231480 2016-04-30] (GOG.com)
S4 GalaxyCommunication; C:\ProgramData\GOG.com\Galaxy\redists\GalaxyCommunication.exe [6133816 2016-04-13] (GOG.com)
S4 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1164672 2016-02-17] (NVIDIA Corporation)
S4 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-27] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-27] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-16] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
S4 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1880960 2016-02-17] (NVIDIA Corporation)
S4 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [6474112 2016-02-17] (NVIDIA Corporation)
S4 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2609024 2016-02-17] (NVIDIA Corporation)
S4 UEIPSvc; C:\Program Files\Acer\User Experience Improvement Program\Framework\UBTService.exe [222952 2014-01-25] (acer)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-05-03] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-05-03] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [107792 2016-05-03] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-05-03] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-05-03] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1070904 2016-05-03] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [465792 2016-05-03] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [166432 2016-05-03] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [287528 2016-05-03] (AVAST Software)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2016-04-20] (Disc Soft Ltd)
R3 dtliteusbbus; C:\Windows\System32\drivers\dtliteusbbus.sys [47672 2016-04-20] (Disc Soft Ltd)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28032 2016-02-17] (NVIDIA Corporation)
R3 NVVADARM; C:\Windows\system32\drivers\nvvadarm.sys [46016 2016-03-22] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [47760 2015-12-18] (NVIDIA Corporation)
R2 RtkIOAC60; C:\Windows\system32\DRIVERS\RtkIOAC60.sys [29912 2013-07-19] (Realtek semiconductor corp)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-05-05 09:37 - 2016-05-05 09:38 - 00014204 _____ C:\Users\Hanus\Desktop\FRST.txt
2016-05-05 09:37 - 2016-05-05 09:37 - 02378240 _____ (Farbar) C:\Users\Hanus\Desktop\FRST64.exe
2016-05-04 19:27 - 2016-05-04 19:05 - 00024064 _____ C:\WINDOWS\zoek-delete.exe
2016-05-04 19:04 - 2016-05-04 19:04 - 01309184 _____ C:\Users\Hanus\Desktop\zoek.exe
2016-05-04 14:05 - 2016-05-04 14:07 - 24017992 _____ C:\Users\Hanus\Desktop\RogueKillerX64.exe
2016-05-04 13:58 - 2016-05-04 13:58 - 00000896 _____ C:\Users\Hanus\Desktop\JRT.txt
2016-05-04 13:56 - 2016-05-04 13:56 - 01610816 _____ (Malwarebytes) C:\Users\Hanus\Desktop\JRT.exe
2016-05-04 11:18 - 2016-05-04 11:18 - 03615296 _____ C:\Users\Hanus\Desktop\AdwCleaner (1).exe
2016-05-04 11:08 - 2016-05-04 11:08 - 00448512 _____ (OldTimer Tools) C:\Users\Hanus\Desktop\TFC.exe
2016-05-03 18:17 - 2016-05-03 18:17 - 00398152 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2016-05-03 18:17 - 2016-05-03 18:17 - 00052184 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2016-05-01 15:55 - 2016-05-01 15:55 - 01999192 _____ C:\Users\Hanus\Downloads\laigle141hotfix.rar
2016-05-01 15:54 - 2016-05-01 15:54 - 09145734 _____ C:\Users\Hanus\Downloads\laiglever1p4.rar
2016-05-01 13:35 - 2016-05-01 14:20 - 610727371 _____ C:\Users\Hanus\Downloads\laiglefull1point3.rar
2016-04-30 18:58 - 2016-04-30 18:58 - 00963232 _____ (Microsoft Corporation) C:\Program Files\msvcr120.dll
2016-04-30 18:58 - 2016-04-30 18:58 - 00660128 _____ (Microsoft Corporation) C:\Program Files\msvcp120.dll
2016-04-30 17:55 - 2016-04-30 17:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Witcher® 3 - Wild Hunt [GOG.com]
2016-04-27 14:02 - 2016-04-27 14:32 - 418173385 _____ C:\Users\Hanus\Downloads\MaxPayne3_cesky_0_58_1_0.exe
2016-04-27 09:07 - 2016-04-27 09:07 - 00000000 ____D C:\ProgramData\Rockstar Games
2016-04-23 16:32 - 2016-04-23 16:33 - 06378189 _____ C:\Users\Hanus\Downloads\Extreme_Fortifications_3.0_PC.zip
2016-04-21 14:32 - 2016-04-21 14:32 - 00001342 _____ C:\Users\Hanus\Desktop\Napoleonic Era 2.lnk
2016-04-21 14:32 - 2016-04-21 14:32 - 00001116 _____ C:\Users\Hanus\Desktop\NE 2.1.7b Release Notes.lnk
2016-04-21 14:32 - 2016-04-21 14:32 - 00000000 ____D C:\Users\Hanus\AppData\Roaming\Microsoft\Windows\Start Menu\Napoleonic Era 2
2016-04-21 13:37 - 2016-04-21 14:24 - 676386816 _____ C:\Users\Hanus\Downloads\Age-of-Empires-III.-The-Warchiefs-Expansion.iso
2016-04-20 19:58 - 2016-04-20 20:36 - 541633984 _____ (Macrovision Corporation ) C:\Users\Hanus\Downloads\setup.exe
2016-04-20 19:58 - 2016-04-20 19:58 - 00000000 ____D C:\Users\Hanus\Downloads\Age.of.Empires.III.The.WarChiefs - Razor1911
2016-04-20 19:57 - 2016-04-20 19:57 - 00018240 _____ C:\Users\Hanus\Downloads\Age.of.Empires.III.The.WarChiefs - Razor1911.torrent
2016-04-20 17:19 - 2016-04-20 17:25 - 00000000 ____D C:\Age of Empires III
2016-04-20 17:13 - 2016-04-20 17:18 - 79252124 _____ (Napoleonic Era Team ) C:\Users\Hanus\Desktop\ne217b_setup.exe
2016-04-20 17:05 - 2016-04-20 17:05 - 00000000 ____D C:\ProgramData\Age of Empires 3
2016-04-20 16:59 - 2016-04-20 16:59 - 00047672 _____ (Disc Soft Ltd) C:\WINDOWS\system32\Drivers\dtliteusbbus.sys
2016-04-20 16:58 - 2016-04-20 16:59 - 00000000 ____D C:\Program Files\DAEMON Tools Lite
2016-04-20 16:58 - 2016-04-20 16:58 - 00030264 _____ (Disc Soft Ltd) C:\WINDOWS\system32\Drivers\dtlitescsibus.sys
2016-04-20 16:58 - 2016-04-20 16:58 - 00001789 _____ C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
2016-04-20 16:58 - 2016-04-20 16:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
2016-04-20 16:58 - 2016-04-20 16:58 - 00000000 ____D C:\ProgramData\DAEMON Tools Lite
2016-04-20 16:56 - 2016-04-20 16:56 - 00690448 _____ (Disc Soft Ltd.) C:\Users\Hanus\Desktop\DTLiteInstaller.exe
2016-04-20 15:40 - 2016-04-20 16:21 - 588793325 _____ C:\Users\Hanus\Downloads\Age_Of_Empire_3_Expansion-AsianDynasties_www.download.ir.rar
2016-04-20 15:35 - 2016-04-20 15:35 - 00002137 _____ C:\Users\Public\Desktop\Age of Empires III.lnk
2016-04-20 15:35 - 2016-04-20 15:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games
2016-04-17 12:25 - 2016-05-04 11:02 - 00003924 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1460888704
2016-04-17 12:25 - 2016-05-04 11:02 - 00001057 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2016-04-17 12:25 - 2016-04-17 12:25 - 00001057 _____ C:\Users\Public\Desktop\Avast SafeZone Browser.lnk
2016-04-17 12:24 - 2016-05-03 18:17 - 00037144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2016-04-17 12:17 - 2016-04-17 12:17 - 00001942 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2016-04-17 12:17 - 2016-04-17 12:17 - 00000000 ____D C:\Users\Hanus\AppData\Roaming\AVAST Software
2016-04-17 12:17 - 2016-04-17 12:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2016-04-17 12:16 - 2016-05-05 09:32 - 00004182 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2016-04-17 12:16 - 2016-05-03 18:17 - 01070904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2016-04-17 12:16 - 2016-05-03 18:17 - 00465792 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2016-04-17 12:16 - 2016-05-03 18:17 - 00287528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2016-04-17 12:16 - 2016-05-03 18:17 - 00166432 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2016-04-17 12:16 - 2016-05-03 18:17 - 00107792 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2016-04-17 12:16 - 2016-05-03 18:17 - 00103064 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2016-04-17 12:16 - 2016-05-03 18:17 - 00074544 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2016-04-17 12:16 - 2016-05-03 18:17 - 00037656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2016-04-17 12:11 - 2016-04-17 12:24 - 00000000 ____D C:\Program Files\AVAST Software
2016-04-17 12:09 - 2016-04-17 12:10 - 05168280 _____ (AVAST Software) C:\Users\Hanus\Downloads\avast_free_antivirus_setup_online.exe
2016-04-16 11:52 - 2016-03-31 02:54 - 25817600 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-04-16 11:52 - 2016-03-31 02:31 - 02892800 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-04-16 11:52 - 2016-03-31 02:28 - 00571904 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-04-16 11:52 - 2016-03-31 02:25 - 06052352 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-04-16 11:52 - 2016-03-31 02:17 - 00817664 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2016-04-16 11:52 - 2016-03-31 02:03 - 20352512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-04-16 11:52 - 2016-03-31 01:56 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2016-04-16 11:52 - 2016-03-31 01:56 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-04-16 11:52 - 2016-03-31 01:55 - 00315392 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2016-04-16 11:52 - 2016-03-31 01:53 - 00496640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2016-04-16 11:52 - 2016-03-31 01:51 - 02285056 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2016-04-16 11:52 - 2016-03-31 01:50 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-04-16 11:52 - 2016-03-31 01:45 - 00663552 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2016-04-16 11:52 - 2016-03-31 01:45 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2016-04-16 11:52 - 2016-03-31 01:43 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2016-04-16 11:52 - 2016-03-31 01:43 - 00725504 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2016-04-16 11:52 - 2016-03-31 01:43 - 00379392 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2016-04-16 11:52 - 2016-03-31 01:42 - 02131968 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2016-04-16 11:52 - 2016-03-31 01:39 - 15415808 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-04-16 11:52 - 2016-03-31 01:30 - 04611072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2016-04-16 11:52 - 2016-03-31 01:30 - 02596864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-04-16 11:52 - 2016-03-31 01:30 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2016-04-16 11:52 - 2016-03-31 01:30 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2016-04-16 11:52 - 2016-03-31 01:27 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2016-04-16 11:52 - 2016-03-31 01:24 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2016-04-16 11:52 - 2016-03-31 01:23 - 02056192 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2016-04-16 11:52 - 2016-03-31 01:23 - 00693248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2016-04-16 11:52 - 2016-03-31 01:23 - 00330752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2016-04-16 11:52 - 2016-03-31 01:21 - 13811712 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-04-16 11:52 - 2016-03-31 01:18 - 01547264 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-04-16 11:52 - 2016-03-31 01:06 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-04-16 11:52 - 2016-03-31 01:05 - 02121216 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-04-16 11:52 - 2016-03-31 01:02 - 01311744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-04-16 11:52 - 2016-03-31 01:00 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2016-04-16 11:51 - 2016-03-10 21:19 - 07452512 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-04-16 11:51 - 2016-03-10 21:17 - 01663192 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-04-16 11:51 - 2016-03-10 21:17 - 01523216 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-04-16 11:51 - 2016-03-10 21:17 - 01490128 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-04-16 11:51 - 2016-03-10 21:17 - 01358960 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-04-16 11:51 - 2016-03-10 21:17 - 01133752 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-04-16 11:51 - 2016-03-10 19:48 - 00862720 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\KernelBase.dll
2016-04-16 11:51 - 2016-03-10 19:43 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msorcl32.dll
2016-04-16 11:51 - 2016-03-10 18:55 - 00166400 _____ (Microsoft Corporation) C:\WINDOWS\system32\mtxoci.dll
2016-04-16 11:51 - 2016-03-10 18:42 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mtxoci.dll
2016-04-16 11:51 - 2016-03-03 18:13 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\basesrv.dll
2016-04-16 11:50 - 2016-04-04 08:35 - 00046768 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-04-16 11:50 - 2016-04-02 15:26 - 01386496 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-04-16 11:50 - 2016-04-02 15:26 - 01169408 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-04-16 11:50 - 2016-03-28 15:21 - 00698368 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-04-16 11:50 - 2016-03-28 15:21 - 00499200 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-04-16 11:50 - 2016-03-28 15:21 - 00279040 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-04-16 11:50 - 2016-03-28 15:21 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2016-04-16 11:50 - 2016-03-28 15:21 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-04-16 11:50 - 2016-03-16 01:00 - 00561952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-04-16 11:50 - 2016-03-15 16:14 - 01441792 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-04-16 11:50 - 2016-03-11 16:48 - 00833024 _____ (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-04-16 11:50 - 2016-03-10 20:22 - 00201728 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb20.sys
2016-04-16 11:50 - 2016-03-10 20:21 - 00401920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb.sys
2016-04-16 11:50 - 2016-03-10 20:20 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxsmb10.sys
2016-04-16 11:50 - 2016-03-10 19:44 - 00445440 _____ (Microsoft Corporation) C:\WINDOWS\system32\certcli.dll
2016-04-16 11:50 - 2016-03-10 19:16 - 00324096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\certcli.dll
2016-04-16 11:50 - 2016-03-10 19:03 - 00111616 _____ (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2016-04-16 11:50 - 2016-03-10 18:48 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2016-04-16 11:50 - 2016-03-03 18:47 - 02345472 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2016-04-16 11:50 - 2016-03-03 18:33 - 01556992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2016-04-16 11:50 - 2016-03-03 03:39 - 01661576 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-04-16 11:50 - 2016-03-03 03:39 - 01212248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ole32.dll
2016-04-16 11:49 - 2016-03-29 16:05 - 04175872 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-04-14 16:16 - 2016-04-14 16:16 - 00000000 ____D C:\Users\Default\AppData\Local\Google
2016-04-14 16:16 - 2016-04-14 16:16 - 00000000 ____D C:\Users\Default User\AppData\Local\Google
2016-04-14 16:04 - 2016-05-01 07:48 - 00000962 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0cd9ff5d8ba59.job
2016-04-14 16:04 - 2016-05-01 07:48 - 00000958 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-04-14 16:04 - 2016-04-30 11:16 - 00003936 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA1d0cd9ff5d8ba59
2016-04-14 16:04 - 2016-04-30 11:16 - 00003700 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2016-04-14 13:52 - 2016-05-01 12:15 - 00002790 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2016-04-14 13:52 - 2016-04-14 13:52 - 00000838 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-04-14 13:52 - 2016-04-14 13:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-04-14 13:52 - 2016-04-14 13:52 - 00000000 ____D C:\Program Files\CCleaner
2016-04-14 13:51 - 2016-04-14 13:51 - 06868672 _____ (Piriform Ltd) C:\Users\Hanus\Downloads\ccsetup516.exe
2016-04-13 16:00 - 2016-03-22 04:10 - 00112184 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2016-04-13 15:57 - 2016-03-22 06:12 - 42923576 _____ C:\WINDOWS\system32\nvcompiler.dll
2016-04-13 15:57 - 2016-03-22 06:12 - 37567424 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2016-04-13 15:57 - 2016-03-22 06:12 - 31555008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2016-04-13 15:57 - 2016-03-22 06:12 - 25321408 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2016-04-13 15:57 - 2016-03-22 06:12 - 21355248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2016-04-13 15:57 - 2016-03-22 06:12 - 20897416 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2016-04-13 15:57 - 2016-03-22 06:12 - 17748712 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2016-04-13 15:57 - 2016-03-22 06:12 - 17342392 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2016-04-13 15:57 - 2016-03-22 06:12 - 17248408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2016-04-13 15:57 - 2016-03-22 06:12 - 16446032 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2016-04-13 15:57 - 2016-03-22 06:12 - 12567608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2016-04-13 15:57 - 2016-03-22 06:12 - 10550736 _____ C:\WINDOWS\system32\nvptxJitCompiler.dll
2016-04-13 15:57 - 2016-03-22 06:12 - 08659472 _____ C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2016-04-13 15:57 - 2016-03-22 06:12 - 03235896 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2016-04-13 15:57 - 2016-03-22 06:12 - 02809280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2016-04-13 15:57 - 2016-03-22 06:12 - 01924152 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6436472.dll
2016-04-13 15:57 - 2016-03-22 06:12 - 01573432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6436472.dll
2016-04-13 15:57 - 2016-03-22 06:12 - 00959544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2016-04-13 15:57 - 2016-03-22 06:12 - 00889400 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2016-04-13 15:57 - 2016-03-22 06:12 - 00879000 _____ C:\WINDOWS\system32\nvmcumd.dll
2016-04-13 15:57 - 2016-03-22 06:12 - 00753208 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2016-04-13 15:57 - 2016-03-22 06:12 - 00695864 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2016-04-13 15:57 - 2016-03-22 06:12 - 00678520 _____ C:\WINDOWS\system32\nvfatbinaryLoader.dll
2016-04-13 15:57 - 2016-03-22 06:12 - 00571912 _____ C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2016-04-13 15:57 - 2016-03-22 06:12 - 00501896 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2016-04-13 15:57 - 2016-03-22 06:12 - 00473592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2016-04-13 15:57 - 2016-03-22 06:12 - 00425016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2016-04-13 15:57 - 2016-03-22 06:12 - 00423080 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2016-04-13 15:57 - 2016-03-22 06:12 - 00391632 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2016-04-13 15:57 - 2016-03-22 06:12 - 00377792 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2016-04-13 15:57 - 2016-03-22 06:12 - 00175368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2016-04-13 15:57 - 2016-03-22 06:12 - 00153392 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2016-04-13 15:57 - 2016-03-22 06:12 - 00151368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2016-04-13 15:57 - 2016-03-22 06:12 - 00129208 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2016-04-13 15:57 - 2016-03-22 06:12 - 00126008 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcaparm.dll
2016-04-13 15:57 - 2016-03-22 06:12 - 00046016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvadarm.sys
2016-04-13 15:57 - 2016-03-22 06:12 - 00000139 _____ C:\WINDOWS\SysWOW64\nv-vk32.json
2016-04-13 15:57 - 2016-03-22 06:12 - 00000139 _____ C:\WINDOWS\system32\nv-vk64.json
2016-04-05 19:12 - 2016-04-05 19:12 - 00000000 ____D C:\Users\Hanus\AppData\LocalLow\Adobe
2016-04-05 19:12 - 2016-04-05 19:12 - 00000000 ____D C:\Users\Hanus\AppData\Local\Adobe

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-05-05 09:37 - 2015-11-06 12:27 - 00000000 ____D C:\FRST
2016-05-05 09:35 - 2015-08-03 00:41 - 00003970 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{1F85D8D3-BFBD-487A-96B3-E6C2E0978322}
2016-05-05 09:31 - 2013-08-22 16:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-05-04 19:24 - 2015-11-05 15:03 - 00000000 ____D C:\zoek_backup
2016-05-04 19:21 - 2015-12-13 14:22 - 00000830 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-05-04 18:51 - 2015-09-09 14:21 - 00028272 _____ C:\WINDOWS\system32\Drivers\TrueSight.sys
2016-05-04 16:21 - 2015-09-29 14:27 - 00000000 ___RD C:\Users\Hanus\Desktop\Hry
2016-05-04 15:55 - 2015-11-05 15:03 - 00008192 _____ C:\WINDOWS\system32\edb.chk
2016-05-04 11:48 - 2015-08-03 00:41 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3812361727-838257335-1277264128-1001
2016-05-04 11:24 - 2015-09-08 14:25 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-05-04 11:19 - 2015-11-04 21:55 - 00000000 ____D C:\AdwCleaner
2016-05-04 11:11 - 2014-06-17 15:17 - 00000000 ____D C:\ProgramData\NVIDIA
2016-05-04 11:01 - 2013-08-22 15:36 - 00000000 ____D C:\WINDOWS\Inf
2016-05-03 18:20 - 2016-01-03 15:06 - 00007602 _____ C:\Users\Hanus\AppData\Local\resmon.resmoncfg
2016-05-03 18:11 - 2015-08-03 00:35 - 00000000 ____D C:\Users\Hanus
2016-05-03 08:53 - 2015-08-03 00:44 - 00002191 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-05-01 22:10 - 2013-08-22 15:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-05-01 16:06 - 2016-01-24 20:39 - 00000000 ____D C:\Users\Hanus\Documents\Mount&Blade Warband Savegames
2016-05-01 13:09 - 2015-08-03 00:58 - 00000000 ____D C:\Users\Hanus\AppData\Local\ElevatedDiagnostics
2016-05-01 12:15 - 2015-08-02 20:29 - 00000000 ____D C:\Users\Hanus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-04-30 19:38 - 2015-08-03 17:08 - 00000000 ____D C:\Users\Hanus\AppData\Roaming\TS3Client
2016-04-30 18:58 - 2015-08-03 17:08 - 00000000 ____D C:\Program Files\translations
2016-04-30 18:58 - 2015-08-03 17:08 - 00000000 ____D C:\Program Files\plugins
2016-04-30 18:58 - 2015-08-03 17:08 - 00000000 ____D C:\Program Files\news
2016-04-30 18:58 - 2014-08-04 15:46 - 01532184 _____ (TeamSpeak Systems GmbH) C:\Program Files\update.exe
2016-04-30 18:58 - 2014-08-04 15:46 - 00474904 _____ (TeamSpeak Systems GmbH) C:\Program Files\package_inst.exe
2016-04-30 18:58 - 2014-08-04 15:46 - 00447256 _____ (TeamSpeak Systems GmbH) C:\Program Files\error_report.exe
2016-04-30 18:58 - 2014-08-04 15:46 - 00161399 _____ C:\Program Files\changelog.txt
2016-04-30 18:58 - 2014-08-04 15:45 - 11480344 _____ (TeamSpeak Systems GmbH) C:\Program Files\ts3client_win64.exe
2016-04-30 18:58 - 2014-08-04 10:29 - 00000313 _____ C:\Program Files\plugin_sdk.html
2016-04-30 18:58 - 2014-06-20 09:44 - 00579975 _____ C:\Program Files\usb.ids
2016-04-30 18:58 - 2014-06-05 15:48 - 02084352 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\Program Files\libeay32.dll
2016-04-30 18:58 - 2014-06-05 15:48 - 00349696 _____ (The OpenSSL Project, hxxp://www.openssl.org/) C:\Program Files\ssleay32.dll
2016-04-30 18:58 - 2014-05-19 13:15 - 01704176 _____ (Overwolf) C:\Program Files\OverwolfTeamSpeakInstaller.exe
2016-04-30 18:58 - 2014-02-28 11:14 - 00174872 _____ C:\Program Files\quazip.dll
2016-04-30 18:58 - 2014-02-27 16:50 - 05426176 _____ (The Qt Company Ltd) C:\Program Files\Qt5Widgets.dll
2016-04-30 18:58 - 2014-02-27 16:48 - 03935744 _____ (The Qt Company Ltd) C:\Program Files\Qt5Gui.dll
2016-04-30 18:58 - 2014-02-27 16:47 - 05629952 _____ (The Qt Company Ltd) C:\Program Files\Qt5Core.dll
2016-04-30 18:58 - 2014-02-27 16:47 - 01094656 _____ (The Qt Company Ltd) C:\Program Files\Qt5Network.dll
2016-04-30 18:58 - 2014-02-27 16:47 - 00216576 _____ (The Qt Company Ltd) C:\Program Files\Qt5Sql.dll
2016-04-30 18:58 - 2013-11-13 14:36 - 00375336 _____ C:\Program Files\createfileassoc.exe
2016-04-30 18:04 - 2015-12-17 16:49 - 00000000 ____D C:\Users\Hanus\Documents\The Witcher 3
2016-04-30 17:54 - 2015-12-17 16:17 - 00000000 ____D C:\Program Files (x86)\GalaxyClient
2016-04-30 11:16 - 2014-06-17 15:31 - 00002914 _____ C:\WINDOWS\System32\Tasks\Hotkey Utility
2016-04-29 12:38 - 2013-08-22 17:36 - 00000000 ___HD C:\Program Files\WindowsApps
2016-04-29 12:38 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-04-28 15:16 - 2015-10-24 11:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2016-04-27 12:40 - 2015-09-12 16:01 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows Marketplace
2016-04-27 09:16 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-04-27 09:13 - 2015-09-13 18:25 - 00000000 ____D C:\Users\Hanus\Documents\Rockstar Games
2016-04-21 15:18 - 2015-12-30 14:20 - 00000000 ____D C:\Users\Hanus\AppData\Roaming\uTorrent
2016-04-21 14:30 - 2014-06-17 15:14 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-04-21 13:39 - 2016-03-21 17:31 - 00000000 ____D C:\Program Files (x86)\Microsoft Games
2016-04-21 13:31 - 2013-08-22 16:44 - 00337792 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-04-20 17:26 - 2015-08-03 05:58 - 00000000 ____D C:\Users\Hanus\Documents\My Games
2016-04-18 18:52 - 2013-08-22 17:36 - 00000000 ____D C:\WINDOWS\rescache
2016-04-17 12:24 - 2015-08-11 10:48 - 00000000 ____D C:\ProgramData\AVAST Software
2016-04-16 12:11 - 2015-08-03 15:18 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-04-16 11:59 - 2013-08-22 17:20 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-04-16 11:58 - 2015-08-03 13:04 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-04-16 11:55 - 2015-08-03 13:04 - 135176864 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-04-16 11:50 - 2016-01-20 17:22 - 00177488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ksecpkg.sys
2016-04-16 11:49 - 2016-03-10 15:17 - 01737080 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-04-16 11:49 - 2016-03-10 15:17 - 01501488 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2016-04-16 11:49 - 2016-03-10 15:17 - 00246784 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-04-15 17:09 - 2015-09-05 18:21 - 00000000 ____D C:\Users\Hanus\AppData\Roaming\Spotify
2016-04-14 01:45 - 2015-08-04 16:52 - 00453280 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-04-13 16:01 - 2016-02-04 15:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-04-13 16:01 - 2014-06-17 15:17 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-04-13 15:59 - 2014-06-17 15:16 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-04-10 17:49 - 2014-03-06 08:43 - 00765714 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-04-08 15:09 - 2015-11-04 22:00 - 00001078 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-04-08 15:09 - 2015-09-08 14:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-04-08 15:09 - 2015-09-08 14:25 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-04-07 19:22 - 2015-09-06 13:01 - 00003718 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2016-04-05 23:53 - 2016-03-30 13:50 - 00829944 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-04-05 23:53 - 2016-03-30 13:50 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-04-05 19:12 - 2015-08-03 00:35 - 00000000 ____D C:\Users\Hanus\AppData\Roaming\Adobe

==================== Files in the root of some directories =======

2014-08-04 15:46 - 2016-04-30 18:58 - 0161399 _____ () C:\Program Files\changelog.txt
2013-11-13 14:36 - 2016-04-30 18:58 - 0375336 _____ () C:\Program Files\createfileassoc.exe
2014-08-04 15:46 - 2016-04-30 18:58 - 0447256 _____ (TeamSpeak Systems GmbH) C:\Program Files\error_report.exe
2014-06-05 15:48 - 2016-04-30 18:58 - 2084352 _____ (The OpenSSL Project, http://www.openssl.org/) C:\Program Files\libeay32.dll
2016-04-30 18:58 - 2016-04-30 18:58 - 0660128 _____ (Microsoft Corporation) C:\Program Files\msvcp120.dll
2016-04-30 18:58 - 2016-04-30 18:58 - 0963232 _____ (Microsoft Corporation) C:\Program Files\msvcr120.dll
2014-05-19 13:15 - 2016-04-30 18:58 - 1704176 _____ (Overwolf) C:\Program Files\OverwolfTeamSpeakInstaller.exe
2014-08-04 15:46 - 2016-04-30 18:58 - 0474904 _____ (TeamSpeak Systems GmbH) C:\Program Files\package_inst.exe
2014-08-04 10:29 - 2016-04-30 18:58 - 0000313 _____ () C:\Program Files\plugin_sdk.html
2014-02-27 16:47 - 2016-04-30 18:58 - 5629952 _____ (The Qt Company Ltd) C:\Program Files\Qt5Core.dll
2014-02-27 16:48 - 2016-04-30 18:58 - 3935744 _____ (The Qt Company Ltd) C:\Program Files\Qt5Gui.dll
2014-02-27 16:47 - 2016-04-30 18:58 - 1094656 _____ (The Qt Company Ltd) C:\Program Files\Qt5Network.dll
2014-02-27 16:47 - 2016-04-30 18:58 - 0216576 _____ (The Qt Company Ltd) C:\Program Files\Qt5Sql.dll
2014-02-27 16:50 - 2016-04-30 18:58 - 5426176 _____ (The Qt Company Ltd) C:\Program Files\Qt5Widgets.dll
2014-02-28 11:14 - 2016-04-30 18:58 - 0174872 _____ () C:\Program Files\quazip.dll
2014-06-05 15:48 - 2016-04-30 18:58 - 0349696 _____ (The OpenSSL Project, http://www.openssl.org/) C:\Program Files\ssleay32.dll
2014-08-04 15:45 - 2016-04-30 18:58 - 11480344 _____ (TeamSpeak Systems GmbH) C:\Program Files\ts3client_win64.exe
2015-08-03 17:08 - 2015-08-03 17:08 - 0126290 _____ (TeamSpeak Systems GmbH) C:\Program Files\Uninstall.exe
2014-08-04 15:46 - 2016-04-30 18:58 - 1532184 _____ (TeamSpeak Systems GmbH) C:\Program Files\update.exe
2014-06-20 09:44 - 2016-04-30 18:58 - 0579975 _____ () C:\Program Files\usb.ids
2015-08-05 12:33 - 2015-08-05 12:34 - 1065984 _____ () C:\Users\Hanus\AppData\Local\file__0.localstorage
2016-01-03 15:06 - 2016-05-03 18:20 - 0007602 _____ () C:\Users\Hanus\AppData\Local\resmon.resmoncfg

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-05-04 11:48

==================== End of FRST.txt ============================

[DJAdam]

Additional scan result of Farbar Recovery Scan Tool (x64) Version:05-05-2016 01
Ran by Hanus (2016-05-05 09:38:51)
Running from C:\Users\Hanus\Desktop
Windows 8.1 (X64) (2015-08-02 22:34:51)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3812361727-838257335-1277264128-500 - Administrator - Disabled)
Guest (S-1-5-21-3812361727-838257335-1277264128-501 - Limited - Disabled)
Hanus (S-1-5-21-3812361727-838257335-1277264128-1001 - Administrator - Enabled) => C:\Users\Hanus
HomeGroupUser$ (S-1-5-21-3812361727-838257335-1277264128-1003 - Limited - Enabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-3812361727-838257335-1277264128-1001\...\uTorrent) (Version: 3.4.5.41865 - BitTorrent Inc.)
Acer Docs Office AddIn (HKLM-x32\...\{DCBF3379-246B-47E1-8173-639B63940838}) (Version: 2.04.2005 - Acer)
Acer Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.8106 - Acer Incorporated)
Acer Remote Files (HKLM\...\{13885028-098C-4799-9B71-27DAC96502D5}) (Version: 1.02.2003 - Acer Incorporated)
Acer User Experience Improvement Program App Monitor Plugin (HKLM\...\{978724F6-1863-4DD5-9E66-FB77F5AB5613}) (Version: 1.01.3003 - Acer Incorporated)
Acer User Experience Improvement Program Framework (HKLM\...\{12A718F2-2357-4D41-9E1F-18583A4745F7}) (Version: 1.01.3003 - Acer Incorporated)
Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.213 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.12) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AB0000000001}) (Version: 11.0.12 - Adobe Systems Incorporated)
Age Of Empire-II The Age Of Kings (HKLM-x32\...\Age Of Empire-II The Age Of Kings) (Version: - )
Age Of Empires 2 & The Conquerors Expansion - Full Game (HKLM-x32\...\Age Of Empires 2 & The Conquerors Expansion - Full Game) (Version: - )
Age of Empires III - The Asian Dynasties (HKLM-x32\...\InstallShield_{C43C1415-3DFC-4089-9A32-0BECF28A6046}) (Version: 1.00.0000 - Microsoft Game Studios)
Age of Empires III - The Asian Dynasties (x32 Version: 1.00.0000 - Microsoft Game Studios) Hidden
Age of Empires III - The Napoleonic Era version 2.1.8 (HKLM-x32\...\{647233CC-A29F-4961-9CB0-50AD445C7238}_is1) (Version: 2.1.8 - Napoleonic Era Team)
Age of Empires III - The WarChiefs (HKLM-x32\...\InstallShield_{1C08A24C-B168-407E-A826-68FAF5F20710}) (Version: 1.00.0000 - Microsoft Game Studios)
Age of Empires III - The WarChiefs (x32 Version: 1.00.0000 - Microsoft Game Studios) Hidden
Age of Empires III - The WarChiefs Trial (x32 Version: 1.00.0000 - Microsoft Game Studios) Hidden
Age of Empires III (HKLM-x32\...\InstallShield_{7B9CC60A-9B81-46A3-A953-76B6BF9EEC97}) (Version: 1.00.0000 - Microsoft Game Studios)
Age of Empires III (x32 Version: 1.00.0000 - Microsoft Game Studios) Hidden
Age of Chivalry Hegemony 2.00 (HKLM-x32\...\Age of Chivalry Hegemony) (Version: 2.00 - )
Aktualizácie NVIDIA 2.10.2.40 (Version: 2.10.2.40 - NVIDIA Corporation) Hidden
ASUS GPU Tweak (HKLM-x32\...\InstallShield_{532F6E8A-AF97-41C3-915F-39F718EC07D1}) (Version: 2.6.8.3 - ASUSTek COMPUTER INC.)
ASUS GPU Tweak (x32 Version: 2.6.8.3 - ASUSTek COMPUTER INC.) Hidden
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 11.2.2262 - AVAST Software)
CCleaner (HKLM\...\CCleaner) (Version: 5.16 - Piriform)
Counter-Strike (HKLM-x32\...\Steam App 10) (Version: - Valve)
Counter-Strike: Global Offensive (HKLM-x32\...\Steam App 730) (Version: - Valve)
CPUID CPU-Z 1.72 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
CPUID HWMonitor 1.28 (HKLM\...\CPUID HWMonitor_is1) (Version: - )
CrystalDiskInfo 6.7.0 (HKLM-x32\...\CrystalDiskInfo_is1) (Version: 6.7.0 - Crystal Dew World)
CyberLink PowerDVD 12 (HKLM-x32\...\InstallShield_{B46BEA36-0B71-4A4E-AE41-87241643FA0A}) (Version: 12.0.3716.57 - CyberLink Corp.)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.3.0.0154 - Disc Soft Ltd)
Defraggler (HKLM\...\Defraggler) (Version: 2.19 - Piriform)
Dxtory version 2.0.119 (HKLM-x32\...\Dxtory2.0_is1) (Version: 2.0.119 - Dxtory Software)
Empire: Total War (HKLM-x32\...\Steam App 10500) (Version: - The Creative Assembly)
Floris Mod Pack 2.54 (HKLM-x32\...\Floris Mod Pack_is1) (Version: - )
Freemake Video Converter verzia 4.1.6 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.6 - Ellora Assets Corporation)
GOG Galaxy (HKLM-x32\...\{7258BA11-600C-430E-A759-27E2C691A335}_is1) (Version: - GOG.com)
Google Drive (HKLM-x32\...\{D7269C20-B3CE-4CD0-8E88-3D307D3BD41A}) (Version: 1.29.2074.1528 - Google, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 50.0.2661.94 - Spoločnosť Google Inc.)
Google Update Helper (x32 Version: 1.3.21.115 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden
Grand Theft Auto IV (x32 Version: 1.0.0013.131 - Rockstar Games Inc.) Hidden
Hotkey Utility (HKLM-x32\...\{A6DC88AD-501A-44BC-884D-57435F972E2C}) (Version: 3.00.8102 - Acer Incorporated)
Chivalry: Medieval Warfare (HKLM-x32\...\Steam App 219640) (Version: - Torn Banner Studios)
Identity Card (HKLM-x32\...\{3D9CB654-99AD-4301-89C6-0D12A790767C}) (Version: 2.00.8101 - Acer Incorporated)
Insurgency (HKLM-x32\...\Steam App 222880) (Version: - New World Interactive)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Java 8 Update 51 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418051F0}) (Version: 8.0.510 - Oracle Corporation)
Java 8 Update 60 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418060F0}) (Version: 8.0.600.27 - Oracle Corporation)
KMPlayer (HKLM-x32\...\The KMPlayer) (Version: 3.9.1.135 - PandoraTV)
Malwarebytes Anti-Malware verzia 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Medieval II: Total War (HKLM-x32\...\Steam App 4700) (Version: - The Creative Assembly)
Men of War: Assault Squad 2 (HKLM-x32\...\Steam App 244450) (Version: - Digitalmindsoft)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (HKLM-x32\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.0.0 - Microsoft Corporation)
Microsoft Office (HKLM-x32\...\{90150000-0138-0409-0000-0000000FF1CE}) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23026 (HKLM-x32\...\{74d0e5db-b326-4dae-a6b2-445b9de1836e}) (Version: 14.0.23026.0 - Microsoft Corporation)
Mount&Blade Warband (HKLM-x32\...\Mount&Blade Warband) (Version: - )
Mount&Blade With Fire and Sword (HKLM-x32\...\Mount&Blade With Fire and Sword) (Version: - )
Nero BackItUp 12 Essentials OEM.a01 (HKLM-x32\...\{551AC8F2-FEA2-4B45-ACF7-C98681233CC9}) (Version: 12.5.01200 - Nero AG)
NVIDIA 3D Vision radič ovládača 364.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 364.44 - NVIDIA Corporation)
NVIDIA GeForce Experience 2.10.2.40 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.10.2.40 - NVIDIA Corporation)
NVIDIA Grafický ovládač 364.72 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 364.72 - NVIDIA Corporation)
NVIDIA Ovládač 3D Vision 364.72 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 364.72 - NVIDIA Corporation)
NVIDIA Ovládač zvuku HD 1.3.34.4 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.4 - NVIDIA Corporation)
NVIDIA Softvér systému s podporou technológie PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
NVIDIA Virtuálny zvuk Miracast 364.72 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Miracast.VirtualAudio) (Version: 364.72 - NVIDIA Corporation)
Opera Stable 32.0.1948.69 (HKLM-x32\...\Opera 32.0.1948.69) (Version: 32.0.1948.69 - Opera Software)
Ovládací panel NVIDIA 364.72 (Version: 364.72 - NVIDIA Corporation) Hidden
Prerequisite installer (x32 Version: 12.0.0003 - Nero AG) Hidden
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.3.3.34 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.18.621.2013 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7023 - Realtek Semiconductor Corp.)
SafeZone Stable 1.48.2066.101 (x32 Version: 1.48.2066.101 - Avast Software) Hidden
SHIELD Streaming (Version: 5.1.0270 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.10.2.40 - NVIDIA Corporation) Hidden
Skype™ 7.8 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.8.102 - Skype Technologies S.A.)
Speccy (HKLM\...\Speccy) (Version: 1.28 - Piriform)
Spotify (HKLM-x32\...\Spotify) (Version: 0.9.6.81.gd359a796 - Spotify AB)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
Stronghold Crusader 2 - The Emperor and The Hermit (HKLM-x32\...\Stronghold Crusader 2: The Emperor and The Hermit_is1) (Version: 2.0.0.5 - GOG.com)
Stronghold Crusader 2 - The Jackall and The Khan (HKLM-x32\...\Stronghold Crusader 2: The Jackall and The Khan_is1) (Version: 2.0.0.5 - GOG.com)
Stronghold Crusader 2 - The Princess and The Pig (HKLM-x32\...\Stronghold Crusader 2: The Princess and The Pig_is1) (Version: 2.0.0.5 - GOG.com)
Stronghold Crusader 2 - The Templar and The Duke (HKLM-x32\...\Stronghold Crusader 2: The Templar and The Duke_is1) (Version: 2.0.0.5 - GOG.com)
Stronghold Crusader 2 (HKLM-x32\...\1433852499_is1) (Version: 2.2.0.7 - GOG.com)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
The Witcher 2: Assassins of Kings Enhanced Edition (HKLM-x32\...\Steam App 20920) (Version: - CD PROJEKT RED)
The Witcher 3 - Wild Hunt (HKLM-x32\...\1207664643_is1) (Version: 1.12.1.0 - GOG.com)
The Witcher 3: Wild Hunt - Free DLC program (16 DLC) (HKLM-x32\...\Free DLC program (16 DLC)_is1) (Version: 1.12.1.0 - GOG.com)
The Witcher: Enhanced Edition (HKLM-x32\...\Steam App 20900) (Version: - CD PROJEKT RED)
Uplay (HKLM-x32\...\Uplay) (Version: 4.8 - Ubisoft)
Vegas Pro 12.0 (64-bit) (HKLM\...\{87CEB7C0-1D35-11E2-8F19-F04DA23A5C58}) (Version: 12.0.394 - Sony)
War Thunder Launcher 1.0.1.538 (HKLM-x32\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Entertainment)
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
World of Tanks (HKU\S-1-5-21-3812361727-838257335-1277264128-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812eu}_is1) (Version: - Wargaming.net)
World of Warships (HKU\S-1-5-21-3812361727-838257335-1277264128-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C814eu}_is1) (Version: - Wargaming.net)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0569992F-D841-474C-8034-6B887E480B68} - System32\Tasks\GoogleUpdateTaskMachineUA1d0cd9ff5d8ba59 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {1AFB4CD0-7918-429A-8BDD-BDC63674CF9F} - System32\Tasks\Recovery Management\Notification => C:\Program Files\Acer\Acer Recovery Management\Notification\Notification.exe [2014-03-19] (Acer Incorporated)
Task: {1E3998FF-401F-4869-951B-0561C38A4311} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {59EA53F2-E2B9-4542-A792-947A7C33BAA0} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-05-03] (AVAST Software)
Task: {84C5AF9F-7871-4A33-B3DE-5DA044729B4B} - System32\Tasks\ALU => C:\Program Files (x86)\Acer\Live Updater\updater.exe [2013-07-09] ()
Task: {8A6784D7-E7AA-4EC3-AB7C-06203DA68212} - System32\Tasks\Hotkey Utility => C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe [2013-12-31] (Acer Incorporated)
Task: {90EB7AAA-E70E-4600-BD1D-C72EE4548DCE} - System32\Tasks\UbtFrameworkService => C:\Program Files\Acer\User Experience Improvement Program\Framework\TriggerFramework.exe [2014-01-25] (TODO: <Company name>)
Task: {99CE1743-1169-4E83-B12F-51B9CAABF68B} - System32\Tasks\Opera scheduled Autoupdate 1441991824 => C:\Program Files (x86)\Opera\launcher.exe [2015-09-25] (Opera Software)
Task: {AC2BDFE8-0D3D-4320-B058-B219581DA871} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe [2013-01-22] ()
Task: {BC020A7B-62F1-480B-9042-C2C9B3EF0666} - System32\Tasks\Adobe Flash Player Updater => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-04-07] (Adobe Systems Incorporated)
Task: {C9154531-98FE-4D25-8806-991275D1C4CE} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-03-11] (Piriform Ltd)
Task: {CAE69EB5-799B-4096-A3EF-99BC334C7C85} - System32\Tasks\SafeZone scheduled Autoupdate 1460888704 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-04-15] (Avast Software)
Task: {E74F8540-770E-4688-96E3-7F50ADEF0D81} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2016-04-16] (Microsoft Corporation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0cd9ff5d8ba59.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2016-02-04 15:26 - 2016-03-22 04:25 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-05-03 18:17 - 2016-05-03 18:17 - 00123344 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2016-05-03 18:17 - 2016-05-03 18:17 - 00135816 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-05-04 14:08 - 2016-05-04 14:08 - 02891776 _____ () C:\Program Files\AVAST Software\Avast\defs\16050401\algo.dll
2016-05-05 09:33 - 2016-05-05 09:33 - 02892288 _____ () C:\Program Files\AVAST Software\Avast\defs\16050404\algo.dll
2016-05-03 18:17 - 2016-05-03 18:17 - 00479680 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-02-04 15:59 - 2016-02-17 09:02 - 00020352 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-04-17 12:16 - 2016-04-17 12:16 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-06-17 15:18 - 2013-09-16 21:20 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2016-05-04 19:07 - 00000753 ____A C:\WINDOWS\system32\Drivers\etc\hosts


127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3812361727-838257335-1277264128-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Hanus\Downloads\stretched-1680-1050-560845.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\Services: ASGT => 2
MSCONFIG\Services: CCDMonitorService => 2
MSCONFIG\Services: Disc Soft Lite Bus Service => 3
MSCONFIG\Services: GalaxyClientService => 3
MSCONFIG\Services: GalaxyCommunication => 3
MSCONFIG\Services: GamesAppIntegrationService => 2
MSCONFIG\Services: GamesAppService => 3
MSCONFIG\Services: GfExperienceService => 2
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: IDriverT => 3
MSCONFIG\Services: NAUpdate => 2
MSCONFIG\Services: NvNetworkService => 2
MSCONFIG\Services: NvStreamNetworkSvc => 3
MSCONFIG\Services: NvStreamSvc => 2
MSCONFIG\Services: Origin Client Service => 3
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\Services: Steam Client Service => 3
MSCONFIG\Services: Stereo Service => 2
MSCONFIG\Services: UEIPSvc => 3
MSCONFIG\Services: wuauserv => 3
HKLM\...\StartupApproved\Run: => "RTHDVCPL"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "ProductUpdater"
HKU\S-1-5-21-3812361727-838257335-1277264128-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-3812361727-838257335-1277264128-1001\...\StartupApproved\Run: => "WarThunderLauncher"
HKU\S-1-5-21-3812361727-838257335-1277264128-1001\...\StartupApproved\Run: => "Skype"
HKU\S-1-5-21-3812361727-838257335-1277264128-1001\...\StartupApproved\Run: => "RGSC"
HKU\S-1-5-21-3812361727-838257335-1277264128-1001\...\StartupApproved\Run: => "Spotify Web Helper"
HKU\S-1-5-21-3812361727-838257335-1277264128-1001\...\StartupApproved\Run: => "GoogleDriveSync"
HKU\S-1-5-21-3812361727-838257335-1277264128-1001\...\StartupApproved\Run: => "GalaxyClient"
HKU\S-1-5-21-3812361727-838257335-1277264128-1001\...\StartupApproved\Run: => "GSplay.exe"
HKU\S-1-5-21-3812361727-838257335-1277264128-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-3812361727-838257335-1277264128-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{87B85081-3E32-4106-9D74-D19C4CE201BF}] => (Allow) C:\Program Files (x86)\Nero\Nero 12\Nero BackItUp\BackItUp.exe
FirewallRules: [{0CEE9708-BE4F-49D7-A586-CCF23DC15174}] => (Allow) C:\Program Files (x86)\Nero\Nero 12\Nero BackItUp\BackItUp.exe
FirewallRules: [{9303AF6C-AEFD-4DFD-864D-A73602A9B920}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe
FirewallRules: [{BB7884FD-15CD-4216-B64E-1EA78ADD4E68}] => (Allow) C:\Program Files (x86)\Spotify\spotify.exe
FirewallRules: [{9BC65F97-9A38-4D34-B342-8A54D64E36C1}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
FirewallRules: [{EA789DCF-8BED-451E-AEA4-07FD6B5372D6}] => (Allow) C:\Program Files (x86)\Spotify\Data\SpotifyWebHelper.exe
FirewallRules: [{77AA6952-28EE-4C46-9033-A6ADFA8945E3}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12.exe
FirewallRules: [{3FC56E80-8B74-4BB8-AE6F-09C7A51595BD}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12ML.exe
FirewallRules: [{5BCD5C63-6890-44D6-92E6-7790EF464EBF}] => (Allow) c:\Program Files (x86)\CyberLink\PowerDVD12\Movie\PowerDVD.exe
FirewallRules: [{D4CC9B98-88BB-4338-86DD-FBFD604C05C8}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{C46D24EE-8041-4A2B-BCCC-0C4C882FEEA2}] => (Allow) D:\Steam\Steam.exe
FirewallRules: [{4DC7970B-589C-4627-A68A-E265C90D6E7E}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{571025CA-8060-4ED7-970D-EA2ECBF0E0E6}] => (Allow) D:\Steam\bin\steamwebhelper.exe
FirewallRules: [{871BEECF-FFD0-440E-8C28-1EE85220EF51}] => (Allow) D:\WarThunder\launcher.exe
FirewallRules: [{9B923312-5251-45B6-887B-257A3B8181DE}] => (Allow) D:\WarThunder\launcher.exe
FirewallRules: [{A374980F-FEAF-465C-AFAF-048255955051}] => (Allow) D:\WarThunder\bpreport.exe
FirewallRules: [{C54167DC-68FC-42E0-9AD7-636AE3CBF667}] => (Allow) D:\WarThunder\bpreport.exe
FirewallRules: [{EA48FB27-9BC9-4E3C-A16E-B9FA6CDC3BEB}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{13E0581D-964C-46B9-9A07-98F6CFDB8926}] => (Allow) D:\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [TCP Query User{4EAFD4C7-CE52-415A-91FE-567EC1189183}D:\world of tanks\worldoftanks.exe] => (Block) D:\world of tanks\worldoftanks.exe
FirewallRules: [UDP Query User{F7DC0447-A59A-4280-92B3-0BB6716C50C5}D:\world of tanks\worldoftanks.exe] => (Block) D:\world of tanks\worldoftanks.exe
FirewallRules: [TCP Query User{43A8DE7F-C19C-450E-877C-97F4E4165669}D:\warthunder\aces.exe] => (Allow) D:\warthunder\aces.exe
FirewallRules: [UDP Query User{389DDADE-A973-4A15-A8AB-00E434A0B12B}D:\warthunder\aces.exe] => (Allow) D:\warthunder\aces.exe
FirewallRules: [TCP Query User{F4970585-D85C-4A08-830D-226B9B9820FF}D:\world of warships\wowslauncher.exe] => (Allow) D:\world of warships\wowslauncher.exe
FirewallRules: [UDP Query User{8A956451-D1F8-4DA4-AABB-32907276D708}D:\world of warships\wowslauncher.exe] => (Allow) D:\world of warships\wowslauncher.exe
FirewallRules: [TCP Query User{7A40ADC1-4453-414C-9E1A-21D0F164BDE2}D:\world of tanks\wotlauncher.exe] => (Allow) D:\world of tanks\wotlauncher.exe
FirewallRules: [UDP Query User{26A95EAE-97E0-46B2-B279-0ABF000C3EDA}D:\world of tanks\wotlauncher.exe] => (Allow) D:\world of tanks\wotlauncher.exe
FirewallRules: [TCP Query User{4BA68414-E6FA-457E-B20E-60CFBAC0FDFC}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{1955A99C-9A08-452F-BB29-B1C5FAAE4FEE}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{392487C6-7639-4201-96ED-CBC93BD75DF7}D:\world of warships\wowslauncher.exe] => (Allow) D:\world of warships\wowslauncher.exe
FirewallRules: [UDP Query User{3C3B52FC-DA68-468D-8E4E-96FC89518A12}D:\world of warships\wowslauncher.exe] => (Allow) D:\world of warships\wowslauncher.exe
FirewallRules: [TCP Query User{DDE212A9-E064-4022-B28A-6215007EFA7D}D:\warthunder\launcher.exe] => (Allow) D:\warthunder\launcher.exe
FirewallRules: [UDP Query User{ED5028AA-7727-45B7-AB7E-9F59495A2C8F}D:\warthunder\launcher.exe] => (Allow) D:\warthunder\launcher.exe
FirewallRules: [TCP Query User{BDDF06B6-BE2C-44FD-9D42-91C862235BC6}D:\warthunder\aces.exe] => (Allow) D:\warthunder\aces.exe
FirewallRules: [UDP Query User{A3A7B054-FE2D-4751-9CE8-8598E1FDC424}D:\warthunder\aces.exe] => (Allow) D:\warthunder\aces.exe
FirewallRules: [TCP Query User{710C479E-9ABB-4B90-9DD7-5D44B7213CA0}D:\world of tanks\wotlauncher.exe] => (Allow) D:\world of tanks\wotlauncher.exe
FirewallRules: [UDP Query User{DCFD65F3-7F28-4732-A895-05C349A03E3B}D:\world of tanks\wotlauncher.exe] => (Allow) D:\world of tanks\wotlauncher.exe
FirewallRules: [{000B07B7-34F0-46A1-BD5D-508B7C9529DB}] => (Allow) D:\Steam\steamapps\common\insurgency2\insurgency.exe
FirewallRules: [{15B06FC7-2C63-42B0-999A-1500A5C98C5D}] => (Allow) D:\Steam\steamapps\common\insurgency2\insurgency.exe
FirewallRules: [{39C81872-99A8-4729-98DA-4EA7E74AC653}] => (Allow) D:\Steam\steamapps\common\The Witcher Enhanced Edition\System\witcher.exe
FirewallRules: [{2CC92D41-7EAB-4493-97A9-9602BC4F3AD9}] => (Allow) D:\Steam\steamapps\common\The Witcher Enhanced Edition\System\witcher.exe
FirewallRules: [{06225CD6-A61F-49D5-B488-E8570579D225}] => (Allow) D:\Steam\steamapps\common\The Witcher Enhanced Edition\System\djinni!.exe
FirewallRules: [{CFA42265-2DD2-4F0B-87FB-9602FA049A0E}] => (Allow) D:\Steam\steamapps\common\The Witcher Enhanced Edition\System\djinni!.exe
FirewallRules: [{AF1F2499-1B96-41D5-911C-0DA1FB2ABE45}] => (Allow) D:\Steam\steamapps\common\The Witcher Enhanced Edition\Digital Comic\DigitalComic.exe
FirewallRules: [{5296AAA7-4059-4130-8780-799ABE041A6E}] => (Allow) D:\Steam\steamapps\common\The Witcher Enhanced Edition\Digital Comic\DigitalComic.exe
FirewallRules: [{238919D2-BF28-4A1C-8183-14F3DE9C85A8}] => (Allow) D:\Steam\steamapps\common\the witcher 2\Launcher.exe
FirewallRules: [{0AD6A48A-597E-4F80-9721-EAD31173CE79}] => (Allow) D:\Steam\steamapps\common\the witcher 2\Launcher.exe
FirewallRules: [TCP Query User{90786252-8057-48D8-BB92-89CF50534A3E}D:\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) D:\steam\steamapps\common\the witcher 2\bin\witcher2.exe
FirewallRules: [UDP Query User{35C09DFE-1387-4038-924B-CAF89D466BEE}D:\steam\steamapps\common\the witcher 2\bin\witcher2.exe] => (Allow) D:\steam\steamapps\common\the witcher 2\bin\witcher2.exe
FirewallRules: [TCP Query User{60EFCAAF-FB63-4F06-BFCF-EB94361FB040}D:\warthunder\win64\aces.exe] => (Allow) D:\warthunder\win64\aces.exe
FirewallRules: [UDP Query User{A3BCA762-96B1-4340-8171-DF59210817CA}D:\warthunder\win64\aces.exe] => (Allow) D:\warthunder\win64\aces.exe
FirewallRules: [{8201F9DB-326D-4276-B410-FB4733853ECB}] => (Allow) C:\Users\Hanus\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{C342B4B2-FE4A-4B5B-B430-58FC7FBBAB41}] => (Allow) C:\Users\Hanus\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{EDC52221-D55E-4972-A9F9-BF62DAF7BC59}] => (Allow) C:\Users\Hanus\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{23986DBC-31B6-4EB7-B6CA-CE6CF66F2198}] => (Allow) C:\Users\Hanus\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{4F4B5166-C767-44F5-A337-2353908DC69B}] => (Allow) C:\Users\Hanus\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{30910B41-9219-4073-82BD-E64CFEC4DBE7}] => (Allow) C:\Users\Hanus\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{ED98C0AF-11CA-4ABF-9D46-2466C85FAD27}C:\gog games\stronghold crusader 2\bin\win32_galaxy_release\crusader2.exe] => (Allow) C:\gog games\stronghold crusader 2\bin\win32_galaxy_release\crusader2.exe
FirewallRules: [UDP Query User{6D178691-9548-4F32-9522-DBD840C0F92D}C:\gog games\stronghold crusader 2\bin\win32_galaxy_release\crusader2.exe] => (Allow) C:\gog games\stronghold crusader 2\bin\win32_galaxy_release\crusader2.exe
FirewallRules: [TCP Query User{892ACE59-1543-4549-9459-3C4988737EE8}C:\gog games\stronghold crusader 2\bin\win32_galaxy_release\mapeditor.exe] => (Allow) C:\gog games\stronghold crusader 2\bin\win32_galaxy_release\mapeditor.exe
FirewallRules: [UDP Query User{B94F4269-C397-4F60-A9AB-80D467F5EDEA}C:\gog games\stronghold crusader 2\bin\win32_galaxy_release\mapeditor.exe] => (Allow) C:\gog games\stronghold crusader 2\bin\win32_galaxy_release\mapeditor.exe
FirewallRules: [{6A3245D9-7502-4BDD-A76D-B240901047C4}] => (Allow) D:\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win64\CMW.exe
FirewallRules: [{AA879E62-DD74-4B9C-91E2-E7357DFA349B}] => (Allow) D:\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win64\CMW.exe
FirewallRules: [{3121224E-FA4B-4E39-BC82-EF7B6AFB9BA8}] => (Allow) D:\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win32\CMW.exe
FirewallRules: [{BBBE37DA-6E8F-4C27-A2F4-9D0194E3E2FD}] => (Allow) D:\Steam\steamapps\common\chivalrymedievalwarfare\Binaries\Win32\CMW.exe
FirewallRules: [{0C9B7925-34E7-46BA-BB35-46EB18383825}] => (Allow) D:\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
FirewallRules: [{AF7F00D7-6D68-4EAA-9935-31F0D618C67F}] => (Allow) D:\Steam\steamapps\common\chivalrymedievalwarfare\ChivLauncher.exe
FirewallRules: [{BB5DA14F-FFDD-4662-AF70-441A37B1D908}] => (Allow) D:\Steam\steamapps\common\Men of War Assault Squad 2\mowas_2.exe
FirewallRules: [{D1314B6D-1CD2-4108-BBA0-6C86EB5FB4BB}] => (Allow) D:\Steam\steamapps\common\Men of War Assault Squad 2\mowas_2.exe
FirewallRules: [{0AB0AA26-6E63-40AA-A62F-924CC5EE38D4}] => (Allow) D:\Steam\steamapps\common\Men of War Assault Squad 2\mowas_2_ed.exe
FirewallRules: [{5C764B10-B679-4A99-9BCE-79D8762580B4}] => (Allow) D:\Steam\steamapps\common\Men of War Assault Squad 2\mowas_2_ed.exe
FirewallRules: [{E69C4306-26AC-40CF-A662-C6846D1F72C7}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{0F1DE7C1-3CD1-4B7F-A58F-BDC675CE98AB}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{637538B7-6B3F-4C1A-AC64-E4C3A295C1C0}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{F19FB852-FC7C-4AE7-B63A-62870910D202}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{0CED0247-225E-4927-B632-20D55A8AD548}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{D1A18CCF-1B3A-47EC-99E5-17B19063FE6F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{4F2F7BC7-7352-4783-B708-8569D1E0C3DB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{93C28944-269F-4F7E-9F3E-750E6902C7E9}] => (Allow) D:\Steam\steamapps\common\Half-Life\hl.exe
FirewallRules: [{87DE8601-0B00-47CA-A534-B49030AE276B}] => (Allow) D:\Steam\steamapps\common\Half-Life\hl.exe
FirewallRules: [{74C9C830-4A31-4C95-93DB-9A978A13A57A}] => (Allow) C:\Steam\steamapps\common\Empire Total War\Empire.exe
FirewallRules: [{C436382E-8679-435C-837D-CC803ED37283}] => (Allow) C:\Steam\steamapps\common\Empire Total War\Empire.exe
FirewallRules: [{AE214F34-4154-4FA8-9882-3ECEC13A1DCF}] => (Allow) D:\Steam\steamapps\common\Medieval II Total War\medieval2.exe
FirewallRules: [{8917F71A-B2D5-4D27-BA9D-25628A4F0393}] => (Allow) D:\Steam\steamapps\common\Medieval II Total War\medieval2.exe
FirewallRules: [TCP Query User{78374F0F-DA39-4090-B65A-B27C29398925}C:\program files\java\jre1.8.0_60\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_60\bin\javaw.exe
FirewallRules: [UDP Query User{AE4A0F4E-CBEC-4BBC-BCC8-EE3A91035417}C:\program files\java\jre1.8.0_60\bin\javaw.exe] => (Allow) C:\program files\java\jre1.8.0_60\bin\javaw.exe
FirewallRules: [TCP Query User{9D20BD32-1347-44CB-B3AD-9450173F3A08}C:\program files (x86)\age of empires 2 & the conquerors expansion - full game\age2_x1.exe] => (Allow) C:\program files (x86)\age of empires 2 & the conquerors expansion - full game\age2_x1.exe
FirewallRules: [UDP Query User{5A181959-73DF-49D2-83BB-9BBBFEAD6C46}C:\program files (x86)\age of empires 2 & the conquerors expansion - full game\age2_x1.exe] => (Allow) C:\program files (x86)\age of empires 2 & the conquerors expansion - full game\age2_x1.exe
FirewallRules: [{F3A57A9E-29B8-4683-A395-619329BD5881}] => (Allow) C:\Program Files (x86)\Age Of Empires 2 & The Conquerors Expansion - Full Game\Age2_x1\age2_x1.exe
FirewallRules: [{FB32A891-6C24-44EA-9E97-F20B93F3291B}] => (Allow) C:\Program Files (x86)\Age Of Empires 2 & The Conquerors Expansion - Full Game\Age2_x1\age2_x1.exe
FirewallRules: [{201C28CD-A48D-4302-9EF0-7D4EBAAA20C1}] => (Allow) C:\Windows\SysWOW64\dplaysvr.exe
FirewallRules: [{EB26907A-27BF-4932-AD82-5E63388DC965}] => (Allow) C:\Windows\SysWOW64\dplaysvr.exe
FirewallRules: [{77FE0E84-1260-4379-97F3-C32F17240890}] => (Allow) C:\Program Files (x86)\Age Of Empires 2 & The Conquerors Expansion - Full Game\Age2_x1\aoc.exe
FirewallRules: [{89B9CBAE-ECCD-4381-99D1-CBD60EF88AAD}] => (Allow) C:\Program Files (x86)\Age Of Empires 2 & The Conquerors Expansion - Full Game\Age2_x1\aoc.exe
FirewallRules: [{0BFC4ECC-A4F1-4F53-8AF5-0DE635BB7DF1}] => (Allow) C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3y.exe
FirewallRules: [{836CF81C-BCCA-4EA7-88B4-6C95C1EE6267}] => (Allow) C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3y.exe
FirewallRules: [TCP Query User{3B56604A-67E8-4A14-97E1-D0C6EF091770}C:\program files (x86)\microsoft games\age of empires iii\age3n.exe] => (Block) C:\program files (x86)\microsoft games\age of empires iii\age3n.exe
FirewallRules: [UDP Query User{3FB5BE2F-9ACF-4A32-BA15-8C7208404396}C:\program files (x86)\microsoft games\age of empires iii\age3n.exe] => (Block) C:\program files (x86)\microsoft games\age of empires iii\age3n.exe
FirewallRules: [{D42514BA-E1AF-4A47-B6DA-D3FB4CAB66CF}] => (Allow) C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3x.exe
FirewallRules: [{8EEA46C7-3C16-494F-893C-FBECD85D695A}] => (Allow) C:\Program Files (x86)\Microsoft Games\Age of Empires III\age3x.exe
FirewallRules: [{F44CC431-6927-4DCD-BE75-E6FB9EF5B5C9}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

17-04-2016 12:15:29 Scheduled Checkpoint
20-04-2016 15:17:13 Installed Age of Empires III
20-04-2016 15:21:44 Installed Age of Empires III
20-04-2016 15:26:40 Installed Age of Empires III
20-04-2016 17:00:39 Installed Age of Empires III - The Asian Dynasties
20-04-2016 20:52:06 Installed Age of Empires III - The WarChiefs Trial
21-04-2016 14:26:30 Installed Age of Empires III - The WarChiefs
27-04-2016 09:04:30 Installed DirectX
27-04-2016 09:09:27 Installed DirectX
27-04-2016 12:20:19 Removed Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
04-05-2016 13:57:10 JRT Pre-Junkware Removal
04-05-2016 19:06:50 zoek.exe restore point

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (05/04/2016 03:55:21 PM) (Source: Microsoft-Windows-LocationProvider) (EventID: 2006) (User: NT AUTHORITY)
Description: There was an error with the Windows Location Provider database

Error: (05/04/2016 03:55:21 PM) (Source: ESENT) (EventID: 455) (User: )
Description: WUDFHost (4040) WindowsLocationProviderDatabase: Error -1032 (0xfffffbf8) occurred while opening logfile C:\ProgramData\Microsoft\Windows\LocationProvider\edb.log.

Error: (05/04/2016 03:55:21 PM) (Source: ESENT) (EventID: 489) (User: )
Description: WUDFHost (4040) WindowsLocationProviderDatabase: An attempt to open the file "C:\ProgramData\Microsoft\Windows\LocationProvider\edb.log" for read only access failed with system error 5 (0x00000005): "Prístup je odmietnutý. ". The open file operation will fail with error -1032 (0xfffffbf8).

Error: (05/04/2016 03:55:11 PM) (Source: ESENT) (EventID: 455) (User: )
Description: WUDFHost (4040) WindowsLocationProviderDatabase: Error -1032 (0xfffffbf8) occurred while opening logfile C:\ProgramData\Microsoft\Windows\LocationProvider\edb.log.

Error: (05/04/2016 03:55:11 PM) (Source: ESENT) (EventID: 489) (User: )
Description: WUDFHost (4040) WindowsLocationProviderDatabase: An attempt to open the file "C:\ProgramData\Microsoft\Windows\LocationProvider\edb.log" for read only access failed with system error 5 (0x00000005): "Prístup je odmietnutý. ". The open file operation will fail with error -1032 (0xfffffbf8).

Error: (05/04/2016 03:55:01 PM) (Source: ESENT) (EventID: 490) (User: )
Description: WUDFHost (4040) WindowsLocationProviderDatabase: An attempt to open the file "C:\ProgramData\Microsoft\Windows\LocationProvider\edb.chk" for read / write access failed with system error 5 (0x00000005): "Prístup je odmietnutý. ". The open file operation will fail with error -1032 (0xfffffbf8).

Error: (05/04/2016 01:35:04 PM) (Source: Microsoft-Windows-LocationProvider) (EventID: 2006) (User: NT AUTHORITY)
Description: There was an error with the Windows Location Provider database

Error: (05/04/2016 01:35:04 PM) (Source: ESENT) (EventID: 455) (User: )
Description: WUDFHost (4896) WindowsLocationProviderDatabase: Error -1032 (0xfffffbf8) occurred while opening logfile C:\ProgramData\Microsoft\Windows\LocationProvider\edb.log.

Error: (05/04/2016 01:35:04 PM) (Source: ESENT) (EventID: 489) (User: )
Description: WUDFHost (4896) WindowsLocationProviderDatabase: An attempt to open the file "C:\ProgramData\Microsoft\Windows\LocationProvider\edb.log" for read only access failed with system error 5 (0x00000005): "Prístup je odmietnutý. ". The open file operation will fail with error -1032 (0xfffffbf8).

Error: (05/04/2016 01:34:54 PM) (Source: ESENT) (EventID: 455) (User: )
Description: WUDFHost (4896) WindowsLocationProviderDatabase: Error -1032 (0xfffffbf8) occurred while opening logfile C:\ProgramData\Microsoft\Windows\LocationProvider\edb.log.


System errors:
=============
Error: (05/05/2016 09:31:43 AM) (Source: DCOM) (EventID: 10016) (User: Hanus-PC)
Description: application-specificLocalLaunch{7022A3B3-D004-4F52-AF11-E9E987FEE25F}{ADA41B3C-C6FD-4A08-8CC1-D6EFDE67BE7D}Hanus-PCHanusS-1-5-21-3812361727-838257335-1277264128-1001LocalHost (Using LRPC)UnavailableUnavailable

Error: (05/05/2016 09:31:18 AM) (Source: NETLOGON) (EventID: 3095) (User: )
Description: This computer is configured as a member of a workgroup, not as
a member of a domain. The Netlogon service does not need to run in this
configuration.

Error: (05/05/2016 09:30:48 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: Modul WLAN Extensibility Module sa nepodarilo spustiť.

Cesta k modulu: C:\WINDOWS\system32\athExt.dll
Kód chyby: 126

Error: (05/04/2016 07:29:22 PM) (Source: NETLOGON) (EventID: 3095) (User: )
Description: This computer is configured as a member of a workgroup, not as
a member of a domain. The Netlogon service does not need to run in this
configuration.

Error: (05/04/2016 07:29:06 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10000) (User: NT AUTHORITY)
Description: Modul WLAN Extensibility Module sa nepodarilo spustiť.

Cesta k modulu: C:\WINDOWS\system32\athExt.dll
Kód chyby: 126

Error: (05/04/2016 07:24:32 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označená ako interaktívna služba. Systém je však nakonfigurovaný tak, aby nepovolil interaktívne služby. Služba pravdepodobne nebude pracovať správne.

Error: (05/04/2016 07:24:31 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označená ako interaktívna služba. Systém je však nakonfigurovaný tak, aby nepovolil interaktívne služby. Služba pravdepodobne nebude pracovať správne.

Error: (05/04/2016 07:24:31 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označená ako interaktívna služba. Systém je však nakonfigurovaný tak, aby nepovolil interaktívne služby. Služba pravdepodobne nebude pracovať správne.

Error: (05/04/2016 07:24:31 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označená ako interaktívna služba. Systém je však nakonfigurovaný tak, aby nepovolil interaktívne služby. Služba pravdepodobne nebude pracovať správne.

Error: (05/04/2016 07:24:30 PM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označená ako interaktívna služba. Systém je však nakonfigurovaný tak, aby nepovolil interaktívne služby. Služba pravdepodobne nebude pracovať správne.


CodeIntegrity:
===================================
Date: 2016-01-24 08:50:38.540
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-01-23 08:18:38.571
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-01-22 16:09:36.388
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-01-22 13:31:05.880
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-01-21 13:31:45.144
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-01-20 13:35:30.403
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-01-19 16:57:46.618
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-01-19 14:04:57.579
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-01-18 13:47:16.994
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2016-01-17 08:37:20.307
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

Processor: Intel(R) Pentium(R) CPU G3220 @ 3.00GHz
Percentage of memory in use: 13%
Total physical RAM: 8131.32 MB
Available physical RAM: 7003.73 MB
Total Virtual: 11684.32 MB
Available Virtual: 10597.13 MB

==================== Drives ================================

Drive c: (Acer) (Fixed) (Total:223.88 GB) (Free:91.54 GB) NTFS
Drive d: (DATA) (Fixed) (Total:223.88 GB) (Free:79.28 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 1761ADAE)

Partition: GPT.

==================== End of Addition.txt ============================

[jaro3]

Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.

Kód: Vybrat vše

Start
CloseProcesses:
HKU\S-1-5-21-3812361727-838257335-1277264128-1001\...\MountPoints2: {582e6474-feeb-11e5-8411-448a5b9b27f4} - "F:\autorun.exe"
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3812361727-838257335-1277264128-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0cd9ff5d8ba59.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA1d0cd9ff5d8ba59
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
Task: {0569992F-D841-474C-8034-6B887E480B68} - System32\Tasks\GoogleUpdateTaskMachineUA1d0cd9ff5d8ba59 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {1E3998FF-401F-4869-951B-0561C38A4311} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0cd9ff5d8ba59.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3

EmptyTemp:
End

(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).

Ulož jej na na plochu jako fixlist.txt


Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.

[DJAdam]

Fix result of Farbar Recovery Scan Tool (x64) Version:06-05-2016
Ran by Hanus (2016-05-05 12:08:09) Run:4
Running from C:\Users\Hanus\Desktop
Loaded Profiles: Hanus (Available Profiles: Hanus)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
HKU\S-1-5-21-3812361727-838257335-1277264128-1001\...\MountPoints2: {582e6474-feeb-11e5-8411-448a5b9b27f4} - "F:\autorun.exe"
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3812361727-838257335-1277264128-1001 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0cd9ff5d8ba59.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA1d0cd9ff5d8ba59
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
Task: {0569992F-D841-474C-8034-6B887E480B68} - System32\Tasks\GoogleUpdateTaskMachineUA1d0cd9ff5d8ba59 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: {1E3998FF-401F-4869-951B-0561C38A4311} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-29] (Google Inc.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0cd9ff5d8ba59.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3

EmptyTemp:
End
*****************

Processes closed successfully.
"HKU\S-1-5-21-3812361727-838257335-1277264128-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{582e6474-feeb-11e5-8411-448a5b9b27f4}" => key removed successfully
HKCR\CLSID\{582e6474-feeb-11e5-8411-448a5b9b27f4} => key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => key removed successfully
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
"HKU\S-1-5-21-3812361727-838257335-1277264128-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66}" => key removed successfully
HKCR\CLSID\{012E1000-F331-11DB-8314-0800200C9A66} => key not found.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0cd9ff5d8ba59.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA1d0cd9ff5d8ba59 => moved successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0569992F-D841-474C-8034-6B887E480B68}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0569992F-D841-474C-8034-6B887E480B68}" => key removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA1d0cd9ff5d8ba59 => not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA1d0cd9ff5d8ba59" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{1E3998FF-401F-4869-951B-0561C38A4311}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1E3998FF-401F-4869-951B-0561C38A4311}" => key removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => key removed successfully
C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => not found.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA1d0cd9ff5d8ba59.job => not found.
MSCONFIG\Services: gupdate => 2 => Error: No automatic fix found for this entry.
MSCONFIG\Services: gupdatem => 3 => Error: No automatic fix found for this entry.
EmptyTemp: => 821.9 MB temporary data Removed.


The system needed a reboot.

==== End of Fixlog 12:08:31 ====

[Orcus]

Lepší?

[DJAdam]

Jasné je to plynulejšie

[jerabina]

Stáhni si zde DelFix
https://toolslib.net/downloads/viewdownload/2-delfix/

ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7 a 8, musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore) .
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci.

Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem. Jinak je zpráva zde:
v C: \ DelFix.txt

Pokud nejsou problémy, je to vše a můžeš dát vyřešeno - zelenou "fajfku"

[DJAdam]

# DelFix v1.013 - Logfile created 05/05/2016 at 19:41:46
# Updated 17/04/2016 by Xplode
# Username : Hanus - HANUS-PC
# Operating System : Windows 8.1 (64 bits)

~ Removing disinfection tools ...

Deleted : C:\_OTL
Deleted : C:\FRST
Deleted : C:\zoek_backup
Deleted : C:\AdwCleaner
Deleted : C:\RegBackup
Deleted : C:\Users\Hanus\Desktop\FRST-OlderVersion
Deleted : C:\zoek-results.log
Deleted : C:\Users\Hanus\Desktop\Addition.txt
Deleted : C:\Users\Hanus\Desktop\AdwCleaner (1).exe
Deleted : C:\Users\Hanus\Desktop\Fixlog.txt
Deleted : C:\Users\Hanus\Desktop\FRST.txt
Deleted : C:\Users\Hanus\Desktop\FRST64.exe
Deleted : C:\Users\Hanus\Desktop\JRT.exe
Deleted : C:\Users\Hanus\Desktop\JRT.txt
Deleted : C:\Users\Hanus\Desktop\HijackThis.exe
Deleted : C:\Users\Hanus\Desktop\hijackthis.log
Deleted : C:\Users\Hanus\Desktop\RogueKillerX64.exe
Deleted : C:\Users\Hanus\Desktop\TFC.exe
Deleted : C:\Users\Hanus\Desktop\zoek.exe
Deleted : C:\Users\Hanus\Downloads\AdwCleaner.exe
Deleted : HKLM\SOFTWARE\OldTimer Tools
Deleted : HKLM\SOFTWARE\AdwCleaner
Deleted : HKLM\SOFTWARE\TrendMicro\Hijackthis

~ Cleaning system restore ...

Deleted : RP #114 [Installed Age of Empires III - The WarChiefs Trial | 04/20/2016 18:52:06]
Deleted : RP #115 [Installed Age of Empires III - The WarChiefs | 04/21/2016 12:26:30]
Deleted : RP #116 [Installed DirectX | 04/27/2016 07:04:30]
Deleted : RP #117 [Installed DirectX | 04/27/2016 07:09:27]
Deleted : RP #118 [Removed Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 | 04/27/2016 10:20:19]
Deleted : RP #119 [JRT Pre-Junkware Removal | 05/04/2016 11:57:10]
Deleted : RP #120 [zoek.exe restore point | 05/04/2016 17:06:50]

New restore point created !

########## - EOF - ##########

[DJAdam]

okay,dakujem vám MOC :)