Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Okno se stane neaktivní

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
sabatp
Návštěvník
Návštěvník
Příspěvky: 11
Registrován: 20 kvě 2016 09:35

Okno se stane neaktivní

#1 Příspěvek od sabatp »

Dobrý den, stává se mi při psaní, ať už do vyhledávače nebo do textu , že mi nejde psát, okno se stane jakoby neaktivní, zešedne. Musím kliknout zpět do řádku a pokračovat ve psaní.Prosím tedy o pomoc. Děkuju moc!

log přikládám:

Logfile of random's system information tool 1.10 (written by random/random)
Run by Luda at 2016-05-20 10:32:09
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 101 GB (51%) free of 200 GB
Total RAM: 4007 MB (61% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:32:10, on 20.5.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18315)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\NetSoftware\NetSoftware.exe
C:\Users\Luda\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Users\Luda\AppData\Local\Temp\TeamViewer\Version7\TeamViewer.exe
C:\Program Files (x86)\Internet Explorer\IELowutil.exe
C:\Program Files\trend micro\Luda.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.search.ask.com/?tpid=ARSSP2- ... psv=&pt=tb
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [NetSoftware] "C:\Program Files\NetSoftware\Starter.exe" /path="C:\Program Files\NetSoftware"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Luda\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Luda\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [HP Officejet Pro 8620 (NET)] "C:\Program Files\HP\HP Officejet Pro 8620\Bin\ScanToPCActivationApp.exe" -deviceID "CN4AED40WJ:NW" -scfn "HP Officejet Pro 8620 (NET)" -AutoStart 1
O4 - HKCU\..\RunOnce: [Application Restart #0] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --user-data-dir="C:\Users\Luda\AppData\Roaming\Seznam.cz\bin\..\data\libchinst\chromeprofile" --flag-switches-begin --flag-switches-end --restore-last-session http://software.seznam.cz/listicka?browser=chrome#auto
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-687614002-2261084449-1791667554-1001\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-687614002-2261084449-1791667554-1001\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O4 - S-1-5-21-687614002-2261084449-1791667554-1001 User Startup: Uninstall SafeKey RunOnce.lnk = C:\Program Files (x86)\Common Files\lpuninstall.exe (User 'UpdatusUser')
O8 - Extra context menu item: SafeKey Fill Forms - file://C:\Users\Luda\AppData\LocalLow\SafeKey\context.html?cmd=fillforms
O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O9 - Extra 'Tools' menuitem: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{532C448F-6929-488E-A04B-8E4E8040BB60}: NameServer = 0.0.0.0
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: 602Updater (602XML Updater) - Software602 a.s. - C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Avast Firewall (avast! Firewall) - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SInstalátor (ssinstall) - PS Media s.r.o. - C:\Windows\SysWOW64\ssins.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 11448 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe 36218176
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe"
\??\C:\Windows\system32\conhost.exe "3412788291514639686-1768898186199643062620975450881667646051124778847-1824373986
"C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe"
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
taskeng.exe {42C8E298-CE64-40D6-9C47-7F0BDFD36C1D}
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\AVAST Software\Avast\afwServ.exe"
"C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Windows\system32\Dwm.exe"
"taskhost.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
taskeng.exe {5B87E786-88B2-41B5-84E2-A3E991EF54DB}
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
taskeng.exe {7E9CB141-FE8E-40DF-861A-6B866494C12E}
"C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe"
"C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service
"C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel Wireless Tray
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe"
"C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service
"C:\Program Files\iTunes\iTunesHelper.exe"
ATKOSD.exe
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
WDC.exe
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Windows\system32\GWX\GWX.exe"
"C:\Program Files\HP\HP Officejet Pro 8620\Bin\ScanToPCActivationApp.exe" -deviceID "CN4AED40WJ:NW" -scfn "HP Officejet Pro 8620 (NET)" -AutoStart 1
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files\NetSoftware\NetSoftware.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\iPod\bin\iPodService.exe"
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
szndesktop.exe default start
"C:\Users\Luda\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe"
\??\C:\Windows\system32\conhost.exe "1927457610-20798060501604496091-1239468500106046240-4106459092136556844-1516202790
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
C:\Windows\system32\svchost.exe -k SDRSVC
"C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe"
"C:\Users\Luda\AppData\Local\Temp\TeamViewer\Version7\TeamViewer.exe" --dre
"C:\Users\Luda\AppData\Local\Temp\TeamViewer\Version7\tv_w32.exe" --action hooks --log C:\Users\Luda\AppData\Roaming\TeamViewer\TeamViewer7_Logfile.log
"C:\Users\Luda\AppData\Local\Temp\TeamViewer\Version7\tv_x64.exe" --action hooks --log C:\Users\Luda\AppData\Roaming\TeamViewer\TeamViewer7_Logfile.log
"c:\users\luda\appdata\local\temp\teamviewer\version7\TeamViewer_Desktop.exe" --IPCport 6039

taskmgr.exe /3
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
C:\Windows\system32\DllHost.exe /Processid:{E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}
"C:\Users\Luda\Desktop\VIR\RSITx64.exe"
"C:\Program Files (x86)\Internet Explorer\IELowutil.exe" -PID:123

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

=========Mozilla firefox=========

ProfilePath - C:\Users\Luda\AppData\Roaming\Mozilla\Firefox\Profiles\75162r8s.default

prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/"

"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
"sp@avast.com"=C:\Program Files\AVAST Software\Avast\SafePrice\FF


[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.242 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.91.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.91.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@software602.cz/602XML Filler]
"Description"=602XML Filler Plugin
"Path"=C:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.242 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_242.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled


C:\Users\Luda\AppData\Roaming\Mozilla\Firefox\Profiles\75162r8s.default\extensions\
{ea614400-e918-4741-9a97-7a972ff7c30b}

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-05-16 902624]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-05-16 462400]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-05-16 679680]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-05-16 173120]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IntelWireless"=C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [2010-11-02 1933584]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2016-05-11 176952]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"cz.seznam.software.autoupdate"=C:\Users\Luda\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\Luda\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
"HP Officejet Pro 8620 (NET)"=C:\Program Files\HP\HP Officejet Pro 8620\Bin\ScanToPCActivationApp.exe [2014-03-06 3487240]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Application Restart #0"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2016-05-11 881304]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"ATKOSD2"=C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2010-08-17 5732992]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [2010-10-07 170624]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2016-05-16 7400576]
"NetSoftware"=C:\Program Files\NetSoftware\Starter.exe [2016-04-20 228600]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-04-01 596504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2014-01-30 442880]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McNaiAnn]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"DisableTaskMgr"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoResolveTrack"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
"NoRun"=0
"NoFolderOptions"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-05-20 10:31:11 ----D---- C:\rsit
2016-05-17 06:42:04 ----D---- C:\Program Files (x86)\iTunes
2016-05-17 06:42:03 ----D---- C:\Program Files\iPod
2016-05-17 06:42:02 ----D---- C:\Program Files\iTunes
2016-05-16 17:41:58 ----A---- C:\Windows\system32\aswBoot.exe
2016-05-16 17:41:47 ----A---- C:\Windows\avastSS.scr
2016-05-16 17:41:30 ----A---- C:\Windows\system32\drivers\aswNetNd6.sys
2016-05-16 10:15:38 ----D---- C:\Program Files (x86)\Apple Software Update
2016-05-13 08:44:50 ----D---- C:\Program Files\trend micro
2016-05-13 08:42:15 ----D---- C:\Users\Luda\AppData\Roaming\TeamViewer
2016-05-12 09:29:30 ----A---- C:\Windows\system32\win32k.sys
2016-05-12 09:29:29 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2016-05-12 09:29:29 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2016-05-12 09:29:29 ----A---- C:\Windows\system32\cdd.dll
2016-05-12 09:29:28 ----A---- C:\Windows\SYSWOW64\tzres.dll
2016-05-12 09:29:28 ----A---- C:\Windows\system32\tzres.dll
2016-05-12 09:29:24 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2016-05-12 09:29:24 ----A---- C:\Windows\system32\d3d10level9.dll
2016-05-12 09:29:23 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2016-05-12 09:29:23 ----A---- C:\Windows\system32\gdi32.dll
2016-05-12 09:29:22 ----A---- C:\Windows\system32\jnwmon.dll
2016-05-12 09:29:20 ----A---- C:\Windows\SYSWOW64\inseng.dll
2016-05-12 09:29:20 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2016-05-12 09:29:20 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2016-05-12 09:29:19 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-05-12 09:29:19 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-05-12 09:29:19 ----A---- C:\Windows\SYSWOW64\occache.dll
2016-05-12 09:29:19 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2016-05-12 09:29:19 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2016-05-12 09:29:19 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-05-12 09:29:19 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-05-12 09:29:19 ----A---- C:\Windows\system32\inseng.dll
2016-05-12 09:29:19 ----A---- C:\Windows\system32\iernonce.dll
2016-05-12 09:29:19 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-05-12 09:29:19 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-05-12 09:29:19 ----A---- C:\Windows\system32\ie4uinit.exe
2016-05-12 09:29:18 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-05-12 09:29:18 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-05-12 09:29:18 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2016-05-12 09:29:18 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-05-12 09:29:17 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-05-12 09:29:17 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2016-05-12 09:29:17 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-05-12 09:29:17 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-05-12 09:29:17 ----A---- C:\Windows\system32\urlmon.dll
2016-05-12 09:29:17 ----A---- C:\Windows\system32\occache.dll
2016-05-12 09:29:17 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-05-12 09:29:17 ----A---- C:\Windows\system32\iedkcs32.dll
2016-05-12 09:29:16 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2016-05-12 09:29:16 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2016-05-12 09:29:16 ----A---- C:\Windows\SYSWOW64\ieui.dll
2016-05-12 09:29:16 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2016-05-12 09:29:16 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-05-12 09:29:16 ----A---- C:\Windows\system32\msfeeds.dll
2016-05-12 09:29:16 ----A---- C:\Windows\system32\dxtrans.dll
2016-05-12 09:29:15 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-05-12 09:29:15 ----A---- C:\Windows\system32\iesetup.dll
2016-05-12 09:29:15 ----A---- C:\Windows\system32\ieapfltr.dll
2016-05-12 09:29:14 ----A---- C:\Windows\system32\iertutil.dll
2016-05-12 09:29:13 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-05-12 09:29:13 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2016-05-12 09:29:13 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2016-05-12 09:29:13 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-05-12 09:29:13 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2016-05-12 09:29:13 ----A---- C:\Windows\system32\vbscript.dll
2016-05-12 09:29:13 ----A---- C:\Windows\system32\jsproxy.dll
2016-05-12 09:29:12 ----A---- C:\Windows\SYSWOW64\msrating.dll
2016-05-12 09:29:10 ----A---- C:\Windows\system32\dxtmsft.dll
2016-05-12 09:29:09 ----A---- C:\Windows\system32\mshtmled.dll
2016-05-12 09:29:09 ----A---- C:\Windows\system32\ieui.dll
2016-05-12 09:29:09 ----A---- C:\Windows\system32\ieframe.dll
2016-05-12 09:29:08 ----A---- C:\Windows\system32\webcheck.dll
2016-05-12 09:29:08 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-05-12 09:29:08 ----A---- C:\Windows\system32\jscript9diag.dll
2016-05-12 09:29:08 ----A---- C:\Windows\system32\jscript.dll
2016-05-12 09:29:08 ----A---- C:\Windows\system32\ieUnatt.exe
2016-05-12 09:29:07 ----A---- C:\Windows\system32\wininet.dll
2016-05-12 09:29:07 ----A---- C:\Windows\system32\jscript9.dll
2016-05-12 09:29:06 ----A---- C:\Windows\system32\msrating.dll
2016-05-12 09:29:06 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-05-12 09:29:05 ----A---- C:\Windows\system32\mshtml.dll
2016-05-12 09:27:46 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2016-05-12 09:27:46 ----A---- C:\Windows\system32\WindowsCodecs.dll
2016-05-12 09:27:41 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-05-12 09:27:40 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2016-05-12 09:27:40 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2016-05-12 09:27:40 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2016-05-12 09:27:40 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2016-05-12 09:27:40 ----A---- C:\Windows\system32\rpcrt4.dll
2016-05-12 09:27:40 ----A---- C:\Windows\system32\lsasrv.dll
2016-05-12 09:27:40 ----A---- C:\Windows\system32\kerberos.dll
2016-05-12 09:27:39 ----A---- C:\Windows\system32\ntdll.dll
2016-05-12 09:27:36 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2016-05-12 09:27:36 ----A---- C:\Windows\SYSWOW64\certcli.dll
2016-05-12 09:27:36 ----A---- C:\Windows\system32\smss.exe
2016-05-12 09:27:36 ----A---- C:\Windows\system32\kernel32.dll
2016-05-12 09:27:36 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-05-12 09:27:36 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-05-12 09:27:36 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-05-12 09:27:36 ----A---- C:\Windows\system32\certcli.dll
2016-05-12 09:27:36 ----A---- C:\Windows\system32\advapi32.dll
2016-05-12 09:27:35 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2016-05-12 09:27:35 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2016-05-12 09:27:35 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2016-05-12 09:27:35 ----A---- C:\Windows\SYSWOW64\srclient.dll
2016-05-12 09:27:35 ----A---- C:\Windows\SYSWOW64\schannel.dll
2016-05-12 09:27:35 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2016-05-12 09:27:35 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2016-05-12 09:27:35 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2016-05-12 09:27:35 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2016-05-12 09:27:35 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2016-05-12 09:27:35 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\wow64win.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\wow64cpu.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\wow64.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\winsrv.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\wdigest.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\TSpkg.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\sspisrv.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\sspicli.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\srcore.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\srclient.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\schannel.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\setbcdlocale.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\secur32.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\rstrui.exe
2016-05-12 09:27:35 ----A---- C:\Windows\system32\rpchttp.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\ncrypt.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\msv1_0.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\lsass.exe
2016-05-12 09:27:35 ----A---- C:\Windows\system32\KernelBase.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-05-12 09:27:35 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-05-12 09:27:35 ----A---- C:\Windows\system32\drivers\appid.sys
2016-05-12 09:27:35 ----A---- C:\Windows\system32\csrsrv.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\cryptbase.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\credssp.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\conhost.exe
2016-05-12 09:27:35 ----A---- C:\Windows\system32\appidsvc.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\appidapi.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-05-12 09:27:34 ----A---- C:\Windows\SYSWOW64\wow32.dll
2016-05-12 09:27:34 ----A---- C:\Windows\SYSWOW64\user.exe
2016-05-12 09:27:34 ----A---- C:\Windows\SYSWOW64\setup16.exe
2016-05-12 09:27:34 ----A---- C:\Windows\SYSWOW64\secur32.dll
2016-05-12 09:27:34 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2016-05-12 09:27:34 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2016-05-12 09:27:34 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2016-05-12 09:27:34 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2016-05-12 09:27:34 ----A---- C:\Windows\SYSWOW64\instnm.exe
2016-05-12 09:27:34 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2016-05-12 09:27:34 ----A---- C:\Windows\SYSWOW64\credssp.dll
2016-05-12 09:27:34 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2016-05-12 09:27:34 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2016-05-12 09:27:34 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2016-05-12 09:27:34 ----A---- C:\Windows\system32\ntvdm64.dll
2016-05-12 09:27:34 ----A---- C:\Windows\system32\msobjs.dll
2016-05-12 09:27:34 ----A---- C:\Windows\system32\msaudite.dll
2016-05-12 09:27:34 ----A---- C:\Windows\system32\auditpol.exe
2016-05-12 09:27:34 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2016-05-12 09:27:34 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2016-05-12 09:27:34 ----A---- C:\Windows\system32\apisetschema.dll
2016-05-12 09:27:34 ----A---- C:\Windows\system32\adtschema.dll
2016-05-08 08:30:07 ----D---- C:\Program Files\CCleaner
2016-05-07 21:32:26 ----A---- C:\Windows\system32\icaapi.dll
2016-05-07 21:32:26 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2016-05-07 21:32:08 ----A---- C:\Windows\SYSWOW64\KBDAZE.DLL
2016-05-07 21:32:07 ----A---- C:\Windows\SYSWOW64\kbdgeoqw.dll
2016-05-07 21:32:07 ----A---- C:\Windows\SYSWOW64\KBDAZEL.DLL
2016-05-07 21:32:07 ----A---- C:\Windows\system32\kbdgeoqw.dll
2016-05-07 21:32:06 ----A---- C:\Windows\system32\KBDAZEL.DLL
2016-05-07 21:32:06 ----A---- C:\Windows\system32\KBDAZE.DLL
2016-05-07 21:32:05 ----A---- C:\Windows\SYSWOW64\nlsbres.dll
2016-05-07 21:32:05 ----A---- C:\Windows\system32\nlsbres.dll
2016-05-07 21:31:58 ----A---- C:\Windows\system32\msi.dll
2016-05-07 21:31:58 ----A---- C:\Windows\system32\authui.dll
2016-05-07 21:31:57 ----A---- C:\Windows\SYSWOW64\msi.dll
2016-05-07 21:31:56 ----A---- C:\Windows\SYSWOW64\msimsg.dll
2016-05-07 21:31:56 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2016-05-07 21:31:56 ----A---- C:\Windows\SYSWOW64\authui.dll
2016-05-07 21:31:56 ----A---- C:\Windows\system32\msimsg.dll
2016-05-07 21:31:56 ----A---- C:\Windows\system32\msihnd.dll
2016-05-07 21:31:56 ----A---- C:\Windows\system32\consent.exe
2016-05-07 21:31:56 ----A---- C:\Windows\system32\appinfo.dll
2016-05-07 21:28:58 ----A---- C:\Windows\SYSWOW64\webio.dll
2016-05-07 21:28:58 ----A---- C:\Windows\system32\webio.dll
2016-05-07 21:28:57 ----A---- C:\Windows\SYSWOW64\winhttp.dll
2016-05-07 21:28:57 ----A---- C:\Windows\system32\winhttp.dll
2016-05-07 21:28:56 ----A---- C:\Windows\SYSWOW64\InkEd.dll
2016-05-07 21:28:56 ----A---- C:\Windows\system32\InkEd.dll
2016-05-02 09:21:09 ----D---- C:\Users\Luda\AppData\Roaming\Kastner software
2016-05-02 09:20:53 ----D---- C:\ProgramData\KASTNER software

======List of files/folders modified in the last 1 month======

2016-05-20 10:32:09 ----D---- C:\Windows\Temp
2016-05-20 10:32:07 ----D---- C:\Program Files\NetSoftware
2016-05-20 10:32:00 ----D---- C:\Windows\Prefetch
2016-05-20 10:17:17 ----D---- C:\ProgramData\NetSoftware
2016-05-20 09:07:14 ----HD---- C:\ProgramData
2016-05-20 08:58:11 ----D---- C:\ksoft
2016-05-19 20:06:01 ----D---- C:\Users\Luda\AppData\Roaming\Seznam.cz
2016-05-19 19:59:32 ----D---- C:\Windows\system32\config
2016-05-19 15:27:10 ----SHD---- C:\Windows\Installer
2016-05-19 15:12:58 ----SHD---- C:\System Volume Information
2016-05-17 09:00:28 ----D---- C:\Windows\rescache
2016-05-17 06:47:51 ----D---- C:\Windows\system32\DriverStore
2016-05-17 06:47:51 ----D---- C:\Windows\inf
2016-05-17 06:42:04 ----RD---- C:\Program Files (x86)
2016-05-17 06:42:03 ----RD---- C:\Program Files
2016-05-17 06:42:02 ----D---- C:\Program Files\Common Files\Apple
2016-05-17 06:14:22 ----D---- C:\Windows
2016-05-16 17:45:33 ----D---- C:\Windows\system32\Tasks
2016-05-16 17:44:30 ----D---- C:\Windows\system32\drivers
2016-05-16 17:42:04 ----D---- C:\Windows\winsxs
2016-05-16 17:41:58 ----D---- C:\Windows\System32
2016-05-16 15:12:53 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-05-16 10:31:38 ----D---- C:\Windows\system32\catroot
2016-05-16 10:31:17 ----D---- C:\Users\Luda\AppData\Roaming\Skype
2016-05-16 10:27:37 ----D---- C:\Windows\Microsoft.NET
2016-05-16 10:18:53 ----D---- C:\Program Files (x86)\Mozilla Thunderbird
2016-05-16 10:11:55 ----D---- C:\Program Files (x86)\Common Files
2016-05-16 10:11:24 ----D---- C:\Windows\SysWOW64
2016-05-16 10:11:15 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2016-05-16 10:11:00 ----D---- C:\Program Files (x86)\Java
2016-05-16 10:10:41 ----D---- C:\ProgramData\Skype
2016-05-16 10:10:33 ----RD---- C:\Program Files (x86)\Skype
2016-05-15 06:23:02 ----RSD---- C:\Windows\assembly
2016-05-14 12:44:30 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2016-05-13 08:49:56 ----D---- C:\Windows\Tasks
2016-05-12 17:24:49 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-05-12 15:00:56 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-05-12 15:00:56 ----D---- C:\Windows\system32\cs-CZ
2016-05-12 15:00:56 ----D---- C:\Windows\system32\appraiser
2016-05-12 15:00:55 ----D---- C:\Windows\ehome
2016-05-12 15:00:54 ----D---- C:\Program Files\Windows Journal
2016-05-12 15:00:53 ----D---- C:\Windows\SYSWOW64\en-US
2016-05-12 15:00:53 ----D---- C:\Program Files\Internet Explorer
2016-05-12 15:00:51 ----D---- C:\Windows\system32\en-US
2016-05-12 15:00:49 ----D---- C:\Program Files (x86)\Internet Explorer
2016-05-12 15:00:36 ----D---- C:\Windows\AppPatch
2016-05-12 15:00:35 ----D---- C:\Windows\system32\Boot
2016-05-12 11:39:11 ----D---- C:\Windows\system32\MRT
2016-05-12 11:30:25 ----A---- C:\Windows\system32\MRT.exe
2016-05-12 09:25:15 ----D---- C:\Windows\system32\catroot2
2016-05-09 16:55:36 ----D---- C:\Program Files (x86)\Mozilla Firefox
2016-05-08 09:59:43 ----D---- C:\Windows\debug
2016-05-08 09:27:00 ----D---- C:\Windows\Panther
2016-05-07 22:16:55 ----RSD---- C:\Windows\Fonts
2016-05-07 22:15:26 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2016-05-07 21:16:14 ----SD---- C:\Windows\SYSWOW64\GWX
2016-05-07 21:16:14 ----SD---- C:\Windows\system32\GWX
2016-05-02 08:48:49 ----D---- C:\Windows\Minidump
2016-05-02 08:48:49 ----D---- C:\Windows\Logs
2016-04-21 15:05:02 ----N---- C:\Windows\system32\MpSigStub.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2016-05-16 74544]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2016-05-16 287528]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2013-04-08 30496]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2016-05-16 37144]
R1 aswNetSec;aswNetSec; C:\Windows\system32\drivers\aswNetSec.sys [2016-05-16 536312]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2016-05-16 103064]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2016-05-16 1070904]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2016-05-16 465792]
R1 ATKWMIACPIIO;ATKWMIACPI Driver; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-05-25 17536]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-02 15416]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2016-05-16 37656]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2016-05-16 107792]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2016-05-16 166432]
R3 asmthub3;ASMedia USB3 Hub Service; C:\Windows\system32\DRIVERS\asmthub3.sys [2011-06-02 128488]
R3 asmtxhci;ASMEDIA XHCI Service; C:\Windows\system32\DRIVERS\asmtxhci.sys [2011-06-02 401896]
R3 aswNetNd6;Avast Firewall NDIS6 Helper; C:\Windows\system32\DRIVERS\aswNetNd6.sys [2016-05-16 28312]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-10-03 33240]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2014-01-30 5363200]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]
R3 NETwNs64;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 7 64 Bit; C:\Windows\system32\DRIVERS\NETwNs64.sys [2010-11-09 8500736]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-06-23 333928]
R3 StillCam;Ovladač digitálního fotoaparátu pro sériový port; C:\Windows\system32\DRIVERS\serscan.sys [2009-07-14 12288]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUVStor.sys [2014-11-05 290920]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2015-06-17 54784]
S3 WinUsb;WinUsb; C:\Windows\system32\drivers\WinUsb.sys [2010-11-21 41984]
S3 WSDPrintDevice;Podpora tisku WSD prostřednictvím funkce UMB; C:\Windows\system32\DRIVERS\WSDPrint.sys [2009-07-14 23040]
S3 WSDScan;Podpora skenování WSD přes UMB; C:\Windows\system32\DRIVERS\WSDScan.sys [2009-07-14 25088]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 602XML Updater;602Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [2011-10-10 85344]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-04-22 82128]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2016-03-02 83768]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2009-06-15 84536]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2009-12-15 96896]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-05-16 243296]
R2 avast! Firewall;Avast Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2016-05-16 370656]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2015-08-12 462096]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2016-04-29 1433216]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2016-04-29 1773696]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2010-11-02 1515792]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-03-14 884512]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-04-08 1260320]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2010-11-02 836880]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2016-05-11 651576]
R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2010-11-02 340240]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2015-11-05 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2015-11-05 125112]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-06 154440]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-03-23 327808]
S2 ssinstall;SInstalátor; C:\Windows\SysWOW64\ssins.exe [2015-08-10 2324216]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-05-14 269504]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2014-01-30 279000]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-06 154440]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-04-23 114688]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-05-09 146888]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-11-05 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-11-05 51376]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118243
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Okno se stane neaktivní

#2 Příspěvek od Rudy »

Zdravím!
Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
sabatp
Návštěvník
Návštěvník
Příspěvky: 11
Registrován: 20 kvě 2016 09:35

Re: Okno se stane neaktivní

#3 Příspěvek od sabatp »

Dobrý den,
přikládám, předem děkuji-
Log:

# AdwCleaner v5.117 - Log soubor vytvořen 21/05/2016 o 12:40:12
# Aktualizováno 15/05/2016 by Xplode
# Databáze : 2016-05-15.2 [Server]
# Operační systém : Windows 7 Home Premium Service Pack 1 (X64)
# Jméno uživatele : Luda - LUDA-PC
# Spuštěno z : C:\Users\Luda\Desktop\VIR\adwcleaner_5.117.exe
# Volba : Čištění
# Podpora : http://toolslib.net/forum

***** [ Služby ] *****


***** [ Složky ] *****

[-] Složka smazáno : C:\ProgramData\apn
[-] Složka smazáno : C:\ProgramData\AVG Security Toolbar
[-] Složka smazáno : C:\ProgramData\avg web tuneup
[-] Složka smazáno : C:\ProgramData\Avg_Update_0215tb
[#] Složka smazáno : C:\ProgramData\Application Data\apn
[#] Složka smazáno : C:\ProgramData\Application Data\AVG Security Toolbar
[#] Složka smazáno : C:\ProgramData\Application Data\avg web tuneup
[#] Složka smazáno : C:\ProgramData\Application Data\Avg_Update_0215tb
[-] Složka smazáno : C:\Users\Luda\AppData\Roaming\Mozilla\Firefox\Profiles\75162r8s.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
[-] Složka smazáno : C:\Users\Luda\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\cmaiofennmphjldldcpphcechfnnohja
[-] Složka smazáno : C:\Users\Luda\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\aaaalipaokhkccgmgkdglfinfnfhflko

***** [ Soubory ] *****

[-] Soubor smazáno : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wtu-secure-search.xml
[-] Soubor smazáno : C:\Users\Luda\AppData\Local\Comodo\Dragon\User Data\Default\Local Storage\chrome-extension_cmaiofennmphjldldcpphcechfnnohja_0.localstorage
[-] Soubor smazáno : C:\Users\Luda\AppData\Local\Comodo\Dragon\User Data\Default\Local Storage\chrome-extension_aaaalipaokhkccgmgkdglfinfnfhflko_0.localstorage

***** [ DLLs ] *****


***** [ WMI ] *****


***** [ Zástupci ] *****


***** [ Naplánované úkoly ] *****


***** [ Registr ] *****

[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
[-] Klávesa smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Klávesa smazáno : HKU\.DEFAULT\Software\AskPartnerNetwork
[-] Data Obnoveno : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Data Obnoveno : HKU\S-1-5-21-687614002-2261084449-1791667554-1000\Software\Microsoft\Internet Explorer\Main [Start Page]
[-] Klávesa smazáno : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{65E8A377-77C3-4830-AF5C-FBFCCAEBE4D7}

***** [ Webové prohlížeče ] *****

[-] [C:\Users\Luda\AppData\Roaming\Mozilla\Firefox\Profiles\75162r8s.default\prefs.js] smazáno : user_pref("browser.search.defaultenginename", "AVG Secure Search");
[-] [C:\Users\Luda\AppData\Roaming\Mozilla\Firefox\Profiles\75162r8s.default\prefs.js] smazáno : user_pref("browser.search.selectedEngine", "AVG Secure Search");
[-] [C:\Users\Luda\AppData\Local\Comodo\Dragon\User Data\Default\Web Data] [Search Provider] smazáno : ask.com

*************************

:: "Tracing" odstraněných kláves
:: Nastavení Winsock odstraněno

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [3368 bytes] - [21/05/2016 12:40:12]
C:\AdwCleaner\AdwCleaner[S1].txt - [4076 bytes] - [21/05/2016 12:37:02]

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [3514 bytes] ##########
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118243
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Okno se stane neaktivní

#4 Příspěvek od Rudy »

Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
sabatp
Návštěvník
Návštěvník
Příspěvky: 11
Registrován: 20 kvě 2016 09:35

Re: Okno se stane neaktivní

#5 Příspěvek od sabatp »

Přikládám, děkuji moc.

Logfile of random's system information tool 1.10 (written by random/random)
Run by Luda at 2016-05-21 18:21:38
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 113 GB (57%) free of 200 GB
Total RAM: 4007 MB (60% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:21:52, on 21.5.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18315)
Boot mode: Normal

Running processes:
C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
C:\Users\Luda\AppData\Roaming\Seznam.cz\szninstall.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Users\Luda\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\NetSoftware\NetSoftware.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Luda.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [NetSoftware] "C:\Program Files\NetSoftware\Starter.exe" /path="C:\Program Files\NetSoftware"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Luda\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Luda\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [HP Officejet Pro 8620 (NET)] "C:\Program Files\HP\HP Officejet Pro 8620\Bin\ScanToPCActivationApp.exe" -deviceID "CN4AED40WJ:NW" -scfn "HP Officejet Pro 8620 (NET)" -AutoStart 1
O4 - HKCU\..\RunOnce: [Application Restart #0] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --user-data-dir="C:\Users\Luda\AppData\Roaming\Seznam.cz\bin\..\data\libchinst\chromeprofile" --flag-switches-begin --flag-switches-end --restore-last-session http://software.seznam.cz/listicka?browser=chrome#auto
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: SafeKey Fill Forms - file://C:\Users\Luda\AppData\LocalLow\SafeKey\context.html?cmd=fillforms
O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O9 - Extra 'Tools' menuitem: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{532C448F-6929-488E-A04B-8E4E8040BB60}: NameServer = 0.0.0.0
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: 602Updater (602XML Updater) - Software602 a.s. - C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Avast Firewall (avast! Firewall) - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SInstalátor (ssinstall) - PS Media s.r.o. - C:\Windows\SysWOW64\ssins.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10958 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe 2463584
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe"
\??\C:\Windows\system32\conhost.exe "-5799582741850014770-87497411311646547-462197114-18598067012036389239-1736563837
"C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe"
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
taskeng.exe {73749609-439C-4579-9909-D43EEB22E44C}
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe" /backup /iavs
"C:\Program Files\AVAST Software\Avast\afwServ.exe"
"C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe" /service
"C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe" /service
C:\Windows\System32\svchost.exe -k utcsvc
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
"C:\Program Files (x86)\Skype\Updater\Updater.exe"
C:\Windows\SysWOW64\ssins.exe
taskeng.exe {11D582E9-733F-4EFA-AD40-0C69464CE6E5}
taskeng.exe {2D1A8736-4D00-4F50-83E9-38B458F08835}
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
"C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe"
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k secsvcs
ATKOSD.exe
C:\Windows\system32\svchost.exe -k bthsvcs
WDC.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel Wireless Tray
"C:\Program Files\iTunes\iTunesHelper.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Users\Luda\AppData\Roaming\Seznam.cz\szninstall.exe" -c
"C:\Program Files\HP\HP Officejet Pro 8620\Bin\ScanToPCActivationApp.exe" -deviceID "CN4AED40WJ:NW" -scfn "HP Officejet Pro 8620 (NET)" -AutoStart 1
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\iPod\bin\iPodService.exe"
"C:\Program Files\HP\HP Officejet Pro 8620\Bin\HPNetworkCommunicatorCom.exe" -Embedding
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
C:\Windows\system32\wbem\unsecapp.exe -Embedding
szndesktop.exe default start
"C:\Users\Luda\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe"
\??\C:\Windows\system32\conhost.exe "1471689041776464333-1299911429170616128920836454646519349012145844306722458597
"C:\Windows\system32\GWX\GWX.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\sppsvc.exe
"C:\Program Files\NetSoftware\NetSoftware.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" "--user-data-dir=C:\Users\Luda\AppData\Roaming\Seznam.cz\bin\..\data\libchinst\chromeprofile" "http://software.seznam.cz/listicka?browser=chrome#auto"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4736.0.533462251\627028074" --user-data-dir="C:\Users\Luda\AppData\Roaming\Seznam.cz\bin\..\data\libchinst\chromeprofile" --disable-direct-composition --supports-dual-gpus=false --gpu-driver-bug-workarounds=4,12,15,24,53,71 --gpu-vendor-id=0x8086 --gpu-device-id=0x0106 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=9.17.10.3347 --user-data-dir="C:\Users\Luda\AppData\Roaming\Seznam.cz\bin\..\data\libchinst\chromeprofile" --ignored=" --type=renderer " /prefetch:2
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,IncidentReportingModuleLoadAnalysis<SafeBrowsingIncidentReportingServiceFeatures,IncidentReportingSuspiciousModuleReporting<SafeBrowsingIncidentReportingServiceFeatures,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup,WebFontsIntervention<WebFontsIntervention --lang=cs --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/BrotliEncoding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/CrossDevicePromo/Control/*DataReductionProxyConfigService/Enabled/*DirectWriteFontProxy/UseDirectWriteFontProxy/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PreRead/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Launch50pct_11011_1_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/SSLCommonNameMismatchHandling/Control/*SafeBrowsingIncidentReportingService/Default/*SafeBrowsingIncidentReportingServiceFeatures/WithSuspiciousModuleReporting/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_61/*UMA-Uniformity-Trial-10-Percent/default/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/WebFontsIntervention/Enabled/WebRTC-LocalIPPermissionCheck/Enabled/ --user-data-dir="C:\Users\Luda\AppData\Roaming\Seznam.cz\bin\..\data\libchinst\chromeprofile" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=fetchDeferLateScripts=true,fetchIncreaseFontPriority=true,fetchIncreasePriorities=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --channel="4736.1.8352820\876655379" /prefetch:1
C:\Windows\System32\svchost.exe -k WerSvcGroup
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,IncidentReportingModuleLoadAnalysis<SafeBrowsingIncidentReportingServiceFeatures,IncidentReportingSuspiciousModuleReporting<SafeBrowsingIncidentReportingServiceFeatures,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup,WebFontsIntervention<WebFontsIntervention --lang=cs --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/BrotliEncoding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/Control/*DataReductionProxyConfigService/Enabled/*DirectWriteFontProxy/UseDirectWriteFontProxy/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/PreRead/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Launch50pct_11011_1_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/SSLCommonNameMismatchHandling/Control/*SafeBrowsingIncidentReportingService/Default/*SafeBrowsingIncidentReportingServiceFeatures/WithSuspiciousModuleReporting/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_61/*UMA-Uniformity-Trial-10-Percent/default/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*WebFontsIntervention/Enabled/WebRTC-LocalIPPermissionCheck/Enabled/ --user-data-dir="C:\Users\Luda\AppData\Roaming\Seznam.cz\bin\..\data\libchinst\chromeprofile" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=fetchDeferLateScripts=true,fetchIncreaseFontPriority=true,fetchIncreasePriorities=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --channel="4736.2.1519486025\523542652" /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features=AutomaticTabDiscarding<AutomaticTabDiscarding,IncidentReportingModuleLoadAnalysis<SafeBrowsingIncidentReportingServiceFeatures,IncidentReportingSuspiciousModuleReporting<SafeBrowsingIncidentReportingServiceFeatures,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup,WebFontsIntervention<WebFontsIntervention --lang=cs --force-fieldtrials=AppBannerTriggering/Aggressive/AutofillProfileOrderByFrecency/Enabled/*AutomaticTabDiscarding/Enabled_Once_10-gen2/BrotliEncoding/Default/CaptivePortalInterstitial/Enabled/ChildAccountDetection/Disabled/*ClientSideDetectionModel/Model0/*CrossDevicePromo/Control/*DataReductionProxyConfigService/Enabled/*DirectWriteFontProxy/UseDirectWriteFontProxy/*ExtensionActionRedesign/Enabled/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GFE/Default/InstanceID/Enabled/MaterialDesignDownloads/Enabled/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/Unused_2/PasswordBranding/Disabled/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Disable/*PreRead/Default/*QUIC/EnabledNoId/ReportCertificateErrors/ShowAndPossiblySend/*ResourcePriorities/Launch50pct_11011_1_1_10/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/Off/SSLCommonNameMismatchHandling/Control/*SafeBrowsingIncidentReportingService/Default/*SafeBrowsingIncidentReportingServiceFeatures/WithSuspiciousModuleReporting/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/SafeBrowsingUpdateFrequency/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_61/*UMA-Uniformity-Trial-10-Percent/default/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_04/*UMA-Uniformity-Trial-5-Percent/group_13/*UMA-Uniformity-Trial-50-Percent/group_01/*UseDelayAgnosticAEC/DefaultEnabled/*WebFontsIntervention/Enabled/WebRTC-LocalIPPermissionCheck/Enabled/ --user-data-dir="C:\Users\Luda\AppData\Roaming\Seznam.cz\bin\..\data\libchinst\chromeprofile" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=fetchDeferLateScripts=true,fetchIncreaseFontPriority=true,fetchIncreasePriorities=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --channel="4736.4.1696430810\1351603567" /prefetch:1
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\AVAST Software\Avast\setup\instup.exe" /instop:update_vps
"C:\Users\Luda\Desktop\VIR\RSITx64.exe"
"C:\Program Files (x86)\Java\jre1.8.0_91\bin\keytool.exe" -exportcert -alias "avastsslscannerroot" -keystore "C:\Program Files (x86)\Java\jre1.8.0_91\lib\security\cacerts" -storepass changeit
\??\C:\Windows\system32\conhost.exe "1674228366-1317163911755199288845057951809634640-1513511570-284062630-1052086856
"C:\Program Files (x86)\Java\jre1.8.0_91\bin\keytool.exe" -importcert -alias "avastsslscannerroot" -file "C:\ProgramData\AVAST Software\Avast\wscert.der" -keystore "C:\Program Files (x86)\Java\jre1.8.0_91\lib\security\cacerts" -storepass changeit -noprompt
\??\C:\Windows\system32\conhost.exe "527291836-21079050051800950335-1534188906-3957192026863507271917108206-231149513

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

=========Mozilla firefox=========

ProfilePath - C:\Users\Luda\AppData\Roaming\Mozilla\Firefox\Profiles\75162r8s.default

prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/"

"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
"sp@avast.com"=C:\Program Files\AVAST Software\Avast\SafePrice\FF


[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.242 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.91.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.91.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@software602.cz/602XML Filler]
"Description"=602XML Filler Plugin
"Path"=C:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.242 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_242.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-05-16 902624]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-05-16 462400]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-05-16 679680]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-05-16 173120]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IntelWireless"=C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [2010-11-02 1933584]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2016-05-11 176952]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"cz.seznam.software.autoupdate"=C:\Users\Luda\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\Luda\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
"HP Officejet Pro 8620 (NET)"=C:\Program Files\HP\HP Officejet Pro 8620\Bin\ScanToPCActivationApp.exe [2014-03-06 3487240]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Application Restart #0"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2016-05-11 881304]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"ATKOSD2"=C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2010-08-17 5732992]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [2010-10-07 170624]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2016-05-16 7400576]
"NetSoftware"=C:\Program Files\NetSoftware\Starter.exe [2016-04-20 228600]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-04-01 596504]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2014-01-30 442880]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McNaiAnn]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"DisableTaskMgr"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoResolveTrack"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
"NoRun"=0
"NoFolderOptions"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-05-21 12:36:34 ----D---- C:\AdwCleaner
2016-05-20 10:31:11 ----D---- C:\rsit
2016-05-17 06:42:04 ----D---- C:\Program Files (x86)\iTunes
2016-05-17 06:42:03 ----D---- C:\Program Files\iPod
2016-05-17 06:42:02 ----D---- C:\Program Files\iTunes
2016-05-16 17:41:58 ----A---- C:\Windows\system32\aswBoot.exe
2016-05-16 17:41:47 ----A---- C:\Windows\avastSS.scr
2016-05-16 17:41:30 ----A---- C:\Windows\system32\drivers\aswNetNd6.sys
2016-05-16 10:15:38 ----D---- C:\Program Files (x86)\Apple Software Update
2016-05-13 08:44:50 ----D---- C:\Program Files\trend micro
2016-05-13 08:42:15 ----D---- C:\Users\Luda\AppData\Roaming\TeamViewer
2016-05-12 09:29:30 ----A---- C:\Windows\system32\win32k.sys
2016-05-12 09:29:29 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2016-05-12 09:29:29 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2016-05-12 09:29:29 ----A---- C:\Windows\system32\cdd.dll
2016-05-12 09:29:28 ----A---- C:\Windows\SYSWOW64\tzres.dll
2016-05-12 09:29:28 ----A---- C:\Windows\system32\tzres.dll
2016-05-12 09:29:24 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2016-05-12 09:29:24 ----A---- C:\Windows\system32\d3d10level9.dll
2016-05-12 09:29:23 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2016-05-12 09:29:23 ----A---- C:\Windows\system32\gdi32.dll
2016-05-12 09:29:22 ----A---- C:\Windows\system32\jnwmon.dll
2016-05-12 09:29:20 ----A---- C:\Windows\SYSWOW64\inseng.dll
2016-05-12 09:29:20 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2016-05-12 09:29:20 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2016-05-12 09:29:19 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-05-12 09:29:19 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-05-12 09:29:19 ----A---- C:\Windows\SYSWOW64\occache.dll
2016-05-12 09:29:19 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2016-05-12 09:29:19 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2016-05-12 09:29:19 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-05-12 09:29:19 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-05-12 09:29:19 ----A---- C:\Windows\system32\inseng.dll
2016-05-12 09:29:19 ----A---- C:\Windows\system32\iernonce.dll
2016-05-12 09:29:19 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-05-12 09:29:19 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-05-12 09:29:19 ----A---- C:\Windows\system32\ie4uinit.exe
2016-05-12 09:29:18 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-05-12 09:29:18 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-05-12 09:29:18 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2016-05-12 09:29:18 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-05-12 09:29:17 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-05-12 09:29:17 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2016-05-12 09:29:17 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-05-12 09:29:17 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-05-12 09:29:17 ----A---- C:\Windows\system32\urlmon.dll
2016-05-12 09:29:17 ----A---- C:\Windows\system32\occache.dll
2016-05-12 09:29:17 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-05-12 09:29:17 ----A---- C:\Windows\system32\iedkcs32.dll
2016-05-12 09:29:16 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2016-05-12 09:29:16 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2016-05-12 09:29:16 ----A---- C:\Windows\SYSWOW64\ieui.dll
2016-05-12 09:29:16 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2016-05-12 09:29:16 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-05-12 09:29:16 ----A---- C:\Windows\system32\msfeeds.dll
2016-05-12 09:29:16 ----A---- C:\Windows\system32\dxtrans.dll
2016-05-12 09:29:15 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-05-12 09:29:15 ----A---- C:\Windows\system32\iesetup.dll
2016-05-12 09:29:15 ----A---- C:\Windows\system32\ieapfltr.dll
2016-05-12 09:29:14 ----A---- C:\Windows\system32\iertutil.dll
2016-05-12 09:29:13 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-05-12 09:29:13 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2016-05-12 09:29:13 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2016-05-12 09:29:13 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-05-12 09:29:13 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2016-05-12 09:29:13 ----A---- C:\Windows\system32\vbscript.dll
2016-05-12 09:29:13 ----A---- C:\Windows\system32\jsproxy.dll
2016-05-12 09:29:12 ----A---- C:\Windows\SYSWOW64\msrating.dll
2016-05-12 09:29:10 ----A---- C:\Windows\system32\dxtmsft.dll
2016-05-12 09:29:09 ----A---- C:\Windows\system32\mshtmled.dll
2016-05-12 09:29:09 ----A---- C:\Windows\system32\ieui.dll
2016-05-12 09:29:09 ----A---- C:\Windows\system32\ieframe.dll
2016-05-12 09:29:08 ----A---- C:\Windows\system32\webcheck.dll
2016-05-12 09:29:08 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-05-12 09:29:08 ----A---- C:\Windows\system32\jscript9diag.dll
2016-05-12 09:29:08 ----A---- C:\Windows\system32\jscript.dll
2016-05-12 09:29:08 ----A---- C:\Windows\system32\ieUnatt.exe
2016-05-12 09:29:07 ----A---- C:\Windows\system32\wininet.dll
2016-05-12 09:29:07 ----A---- C:\Windows\system32\jscript9.dll
2016-05-12 09:29:06 ----A---- C:\Windows\system32\msrating.dll
2016-05-12 09:29:06 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-05-12 09:29:05 ----A---- C:\Windows\system32\mshtml.dll
2016-05-12 09:27:46 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2016-05-12 09:27:46 ----A---- C:\Windows\system32\WindowsCodecs.dll
2016-05-12 09:27:41 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-05-12 09:27:40 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2016-05-12 09:27:40 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2016-05-12 09:27:40 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2016-05-12 09:27:40 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2016-05-12 09:27:40 ----A---- C:\Windows\system32\rpcrt4.dll
2016-05-12 09:27:40 ----A---- C:\Windows\system32\lsasrv.dll
2016-05-12 09:27:40 ----A---- C:\Windows\system32\kerberos.dll
2016-05-12 09:27:39 ----A---- C:\Windows\system32\ntdll.dll
2016-05-12 09:27:36 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2016-05-12 09:27:36 ----A---- C:\Windows\SYSWOW64\certcli.dll
2016-05-12 09:27:36 ----A---- C:\Windows\system32\smss.exe
2016-05-12 09:27:36 ----A---- C:\Windows\system32\kernel32.dll
2016-05-12 09:27:36 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-05-12 09:27:36 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-05-12 09:27:36 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-05-12 09:27:36 ----A---- C:\Windows\system32\certcli.dll
2016-05-12 09:27:36 ----A---- C:\Windows\system32\advapi32.dll
2016-05-12 09:27:35 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2016-05-12 09:27:35 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2016-05-12 09:27:35 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2016-05-12 09:27:35 ----A---- C:\Windows\SYSWOW64\srclient.dll
2016-05-12 09:27:35 ----A---- C:\Windows\SYSWOW64\schannel.dll
2016-05-12 09:27:35 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2016-05-12 09:27:35 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2016-05-12 09:27:35 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2016-05-12 09:27:35 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2016-05-12 09:27:35 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2016-05-12 09:27:35 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\wow64win.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\wow64cpu.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\wow64.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\winsrv.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\wdigest.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\TSpkg.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\sspisrv.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\sspicli.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\srcore.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\srclient.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\schannel.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\setbcdlocale.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\secur32.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\rstrui.exe
2016-05-12 09:27:35 ----A---- C:\Windows\system32\rpchttp.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\ncrypt.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\msv1_0.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\lsass.exe
2016-05-12 09:27:35 ----A---- C:\Windows\system32\KernelBase.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-05-12 09:27:35 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-05-12 09:27:35 ----A---- C:\Windows\system32\drivers\appid.sys
2016-05-12 09:27:35 ----A---- C:\Windows\system32\csrsrv.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\cryptbase.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\credssp.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\conhost.exe
2016-05-12 09:27:35 ----A---- C:\Windows\system32\appidsvc.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\appidapi.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-05-12 09:27:34 ----A---- C:\Windows\SYSWOW64\wow32.dll
2016-05-12 09:27:34 ----A---- C:\Windows\SYSWOW64\user.exe
2016-05-12 09:27:34 ----A---- C:\Windows\SYSWOW64\setup16.exe
2016-05-12 09:27:34 ----A---- C:\Windows\SYSWOW64\secur32.dll
2016-05-12 09:27:34 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2016-05-12 09:27:34 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2016-05-12 09:27:34 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2016-05-12 09:27:34 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2016-05-12 09:27:34 ----A---- C:\Windows\SYSWOW64\instnm.exe
2016-05-12 09:27:34 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2016-05-12 09:27:34 ----A---- C:\Windows\SYSWOW64\credssp.dll
2016-05-12 09:27:34 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2016-05-12 09:27:34 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2016-05-12 09:27:34 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2016-05-12 09:27:34 ----A---- C:\Windows\system32\ntvdm64.dll
2016-05-12 09:27:34 ----A---- C:\Windows\system32\msobjs.dll
2016-05-12 09:27:34 ----A---- C:\Windows\system32\msaudite.dll
2016-05-12 09:27:34 ----A---- C:\Windows\system32\auditpol.exe
2016-05-12 09:27:34 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2016-05-12 09:27:34 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2016-05-12 09:27:34 ----A---- C:\Windows\system32\apisetschema.dll
2016-05-12 09:27:34 ----A---- C:\Windows\system32\adtschema.dll
2016-05-08 08:30:07 ----D---- C:\Program Files\CCleaner
2016-05-07 21:32:26 ----A---- C:\Windows\system32\icaapi.dll
2016-05-07 21:32:26 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2016-05-07 21:32:08 ----A---- C:\Windows\SYSWOW64\KBDAZE.DLL
2016-05-07 21:32:07 ----A---- C:\Windows\SYSWOW64\kbdgeoqw.dll
2016-05-07 21:32:07 ----A---- C:\Windows\SYSWOW64\KBDAZEL.DLL
2016-05-07 21:32:07 ----A---- C:\Windows\system32\kbdgeoqw.dll
2016-05-07 21:32:06 ----A---- C:\Windows\system32\KBDAZEL.DLL
2016-05-07 21:32:06 ----A---- C:\Windows\system32\KBDAZE.DLL
2016-05-07 21:32:05 ----A---- C:\Windows\SYSWOW64\nlsbres.dll
2016-05-07 21:32:05 ----A---- C:\Windows\system32\nlsbres.dll
2016-05-07 21:31:58 ----A---- C:\Windows\system32\msi.dll
2016-05-07 21:31:58 ----A---- C:\Windows\system32\authui.dll
2016-05-07 21:31:57 ----A---- C:\Windows\SYSWOW64\msi.dll
2016-05-07 21:31:56 ----A---- C:\Windows\SYSWOW64\msimsg.dll
2016-05-07 21:31:56 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2016-05-07 21:31:56 ----A---- C:\Windows\SYSWOW64\authui.dll
2016-05-07 21:31:56 ----A---- C:\Windows\system32\msimsg.dll
2016-05-07 21:31:56 ----A---- C:\Windows\system32\msihnd.dll
2016-05-07 21:31:56 ----A---- C:\Windows\system32\consent.exe
2016-05-07 21:31:56 ----A---- C:\Windows\system32\appinfo.dll
2016-05-07 21:28:58 ----A---- C:\Windows\SYSWOW64\webio.dll
2016-05-07 21:28:58 ----A---- C:\Windows\system32\webio.dll
2016-05-07 21:28:57 ----A---- C:\Windows\SYSWOW64\winhttp.dll
2016-05-07 21:28:57 ----A---- C:\Windows\system32\winhttp.dll
2016-05-07 21:28:56 ----A---- C:\Windows\SYSWOW64\InkEd.dll
2016-05-07 21:28:56 ----A---- C:\Windows\system32\InkEd.dll
2016-05-02 09:21:09 ----D---- C:\Users\Luda\AppData\Roaming\Kastner software
2016-05-02 09:20:53 ----D---- C:\ProgramData\KASTNER software

======List of files/folders modified in the last 1 month======

2016-05-21 18:21:52 ----D---- C:\Windows\Prefetch
2016-05-21 18:21:37 ----D---- C:\Windows\Temp
2016-05-21 18:20:29 ----D---- C:\Program Files\NetSoftware
2016-05-21 18:20:28 ----D---- C:\ProgramData\NetSoftware
2016-05-21 12:59:08 ----D---- C:\Windows\system32\config
2016-05-21 12:49:34 ----D---- C:\Windows\System32
2016-05-21 12:49:34 ----D---- C:\Windows\inf
2016-05-21 12:49:34 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-05-21 12:47:44 ----D---- C:\Users\Luda\AppData\Roaming\Seznam.cz
2016-05-21 12:41:52 ----D---- C:\Windows
2016-05-21 12:40:12 ----HD---- C:\ProgramData
2016-05-21 08:59:00 ----D---- C:\ksoft
2016-05-20 17:39:36 ----SHD---- C:\Windows\Installer
2016-05-20 17:38:59 ----D---- C:\Windows\SysWOW64
2016-05-19 15:12:58 ----SHD---- C:\System Volume Information
2016-05-17 09:00:28 ----D---- C:\Windows\rescache
2016-05-17 06:47:51 ----D---- C:\Windows\system32\DriverStore
2016-05-17 06:42:04 ----RD---- C:\Program Files (x86)
2016-05-17 06:42:03 ----RD---- C:\Program Files
2016-05-17 06:42:02 ----D---- C:\Program Files\Common Files\Apple
2016-05-16 17:45:33 ----D---- C:\Windows\system32\Tasks
2016-05-16 17:44:30 ----D---- C:\Windows\system32\drivers
2016-05-16 17:42:04 ----D---- C:\Windows\winsxs
2016-05-16 15:12:53 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-05-16 10:31:38 ----D---- C:\Windows\system32\catroot
2016-05-16 10:31:17 ----D---- C:\Users\Luda\AppData\Roaming\Skype
2016-05-16 10:27:37 ----D---- C:\Windows\Microsoft.NET
2016-05-16 10:18:53 ----D---- C:\Program Files (x86)\Mozilla Thunderbird
2016-05-16 10:11:55 ----D---- C:\Program Files (x86)\Common Files
2016-05-16 10:11:15 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2016-05-16 10:11:00 ----D---- C:\Program Files (x86)\Java
2016-05-16 10:10:41 ----D---- C:\ProgramData\Skype
2016-05-16 10:10:33 ----RD---- C:\Program Files (x86)\Skype
2016-05-15 06:23:02 ----RSD---- C:\Windows\assembly
2016-05-14 12:44:30 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2016-05-13 08:49:56 ----D---- C:\Windows\Tasks
2016-05-12 15:00:56 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-05-12 15:00:56 ----D---- C:\Windows\system32\cs-CZ
2016-05-12 15:00:56 ----D---- C:\Windows\system32\appraiser
2016-05-12 15:00:55 ----D---- C:\Windows\ehome
2016-05-12 15:00:54 ----D---- C:\Program Files\Windows Journal
2016-05-12 15:00:53 ----D---- C:\Windows\SYSWOW64\en-US
2016-05-12 15:00:53 ----D---- C:\Program Files\Internet Explorer
2016-05-12 15:00:51 ----D---- C:\Windows\system32\en-US
2016-05-12 15:00:49 ----D---- C:\Program Files (x86)\Internet Explorer
2016-05-12 15:00:36 ----D---- C:\Windows\AppPatch
2016-05-12 15:00:35 ----D---- C:\Windows\system32\Boot
2016-05-12 11:39:11 ----D---- C:\Windows\system32\MRT
2016-05-12 11:30:25 ----A---- C:\Windows\system32\MRT.exe
2016-05-12 09:25:15 ----D---- C:\Windows\system32\catroot2
2016-05-09 16:55:36 ----D---- C:\Program Files (x86)\Mozilla Firefox
2016-05-08 09:59:43 ----D---- C:\Windows\debug
2016-05-08 09:27:00 ----D---- C:\Windows\Panther
2016-05-07 22:16:55 ----RSD---- C:\Windows\Fonts
2016-05-07 22:15:26 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2016-05-07 21:16:14 ----SD---- C:\Windows\SYSWOW64\GWX
2016-05-07 21:16:14 ----SD---- C:\Windows\system32\GWX
2016-05-02 08:48:49 ----D---- C:\Windows\Minidump
2016-05-02 08:48:49 ----D---- C:\Windows\Logs

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2016-05-16 74544]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2016-05-16 287528]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2013-04-08 30496]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2016-05-16 37144]
R1 aswNetSec;aswNetSec; C:\Windows\system32\drivers\aswNetSec.sys [2016-05-16 536312]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2016-05-16 103064]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2016-05-16 1070904]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2016-05-16 465792]
R1 ATKWMIACPIIO;ATKWMIACPI Driver; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-05-25 17536]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-02 15416]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2016-05-16 37656]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2016-05-16 107792]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2016-05-16 166432]
R3 asmthub3;ASMedia USB3 Hub Service; C:\Windows\system32\DRIVERS\asmthub3.sys [2011-06-02 128488]
R3 asmtxhci;ASMEDIA XHCI Service; C:\Windows\system32\DRIVERS\asmtxhci.sys [2011-06-02 401896]
R3 aswNetNd6;Avast Firewall NDIS6 Helper; C:\Windows\system32\DRIVERS\aswNetNd6.sys [2016-05-16 28312]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-10-03 33240]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2014-01-30 5363200]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]
R3 NETwNs64;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 7 64 Bit; C:\Windows\system32\DRIVERS\NETwNs64.sys [2010-11-09 8500736]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-06-23 333928]
R3 StillCam;Ovladač digitálního fotoaparátu pro sériový port; C:\Windows\system32\DRIVERS\serscan.sys [2009-07-14 12288]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUVStor.sys [2014-11-05 290920]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2015-06-17 54784]
S3 WinUsb;WinUsb; C:\Windows\system32\drivers\WinUsb.sys [2010-11-21 41984]
S3 WSDPrintDevice;Podpora tisku WSD prostřednictvím funkce UMB; C:\Windows\system32\DRIVERS\WSDPrint.sys [2009-07-14 23040]
S3 WSDScan;Podpora skenování WSD přes UMB; C:\Windows\system32\DRIVERS\WSDScan.sys [2009-07-14 25088]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 602XML Updater;602Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [2011-10-10 85344]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-04-22 82128]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2016-03-02 83768]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2009-06-15 84536]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2009-12-15 96896]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-05-16 243296]
R2 avast! Firewall;Avast Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2016-05-16 370656]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2015-08-12 462096]
R2 c2cautoupdatesvc;Skype Click to Call Updater; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2016-04-29 1433216]
R2 c2cpnrsvc;Skype Click to Call PNR Service; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2016-04-29 1773696]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2010-11-02 1515792]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-03-14 884512]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2010-11-02 836880]
R2 ssinstall;SInstalátor; C:\Windows\SysWOW64\ssins.exe [2015-08-10 2324216]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2016-05-11 651576]
R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2010-11-02 340240]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2015-11-05 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2015-11-05 125112]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-06 154440]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-04-08 1260320]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-03-23 327808]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-05-14 269504]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2014-01-30 279000]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-06 154440]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-04-23 114688]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-05-09 146888]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-11-05 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-11-05 51376]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118243
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Okno se stane neaktivní

#6 Příspěvek od Rudy »

Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:

:files
C:\Program Files (x86)\Skype\Toolbars
:reg
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=-

:services
Bonjour Service
c2cautoupdatesvc
c2cpnrsvc

:commands
[Purity]
[Emptytemp]
[Emptyflash]
a klikněte na >MoveIt!<. Před skenem vypběte antivir a po něm restartujte PC. Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
sabatp
Návštěvník
Návštěvník
Příspěvky: 11
Registrován: 20 kvě 2016 09:35

Re: Okno se stane neaktivní

#7 Příspěvek od sabatp »

Logfile of random's system information tool 1.10 (written by random/random)
Run by Luda at 2016-05-21 20:24:45
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 115 GB (58%) free of 200 GB
Total RAM: 4007 MB (58% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:24:53, on 21.5.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18315)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
C:\Users\Luda\AppData\Roaming\Seznam.cz\szninstall.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\NetSoftware\NetSoftware.exe
C:\Users\Luda\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Luda.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [NetSoftware] "C:\Program Files\NetSoftware\Starter.exe" /path="C:\Program Files\NetSoftware"
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Luda\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Luda\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [HP Officejet Pro 8620 (NET)] "C:\Program Files\HP\HP Officejet Pro 8620\Bin\ScanToPCActivationApp.exe" -deviceID "CN4AED40WJ:NW" -scfn "HP Officejet Pro 8620 (NET)" -AutoStart 1
O4 - HKCU\..\RunOnce: [Application Restart #0] C:\Program Files (x86)\Google\Chrome\Application\chrome.exe --user-data-dir="C:\Users\Luda\AppData\Roaming\Seznam.cz\bin\..\data\libchinst\chromeprofile" --flag-switches-begin --flag-switches-end --restore-last-session http://software.seznam.cz/listicka?browser=chrome#auto
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-687614002-2261084449-1791667554-1001\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-687614002-2261084449-1791667554-1001\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O4 - S-1-5-21-687614002-2261084449-1791667554-1001 User Startup: Uninstall SafeKey RunOnce.lnk = C:\Program Files (x86)\Common Files\lpuninstall.exe (User 'UpdatusUser')
O8 - Extra context menu item: SafeKey Fill Forms - file://C:\Users\Luda\AppData\LocalLow\SafeKey\context.html?cmd=fillforms
O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O9 - Extra 'Tools' menuitem: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\Smart Print\SmartPrintSetup.exe
O9 - Extra button: Skype Click to Call settings - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (file missing)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{532C448F-6929-488E-A04B-8E4E8040BB60}: NameServer = 0.0.0.0
O18 - Protocol: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (file missing)
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: 602Updater (602XML Updater) - Software602 a.s. - C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device Service - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Avast Firewall (avast! Firewall) - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SInstalátor (ssinstall) - PS Media s.r.o. - C:\Windows\SysWOW64\ssins.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 11116 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\WLANExt.exe 4359504
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe"
\??\C:\Windows\system32\conhost.exe "-1924685221-1231341881-568868816-187207530917309309401226118726-215544068-18975053
"C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe"
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
taskeng.exe {62241C41-E7C6-4A2B-BCA8-DB65251C3792}
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\AVAST Software\Avast\afwServ.exe"
"C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"taskhost.exe"
"C:\Program Files (x86)\Google\Update\GoogleUpdate.exe" /c
taskeng.exe {713A0DE6-65D2-41CB-BA1D-F44258C6C601}
"C:\Windows\system32\Dwm.exe"
taskeng.exe {6F7D3C86-EEA9-4775-B346-2633E0EC2FF2}
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
"C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe"
ATKOSD.exe
WDC.exe
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\Windows\SysWOW64\ssins.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\system32\GWX\GWX.exe"
C:\Windows\system32\sppsvc.exe
C:\Windows\system32\svchost.exe -k bthsvcs
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
"C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel Wireless Tray
"C:\Program Files\iTunes\iTunesHelper.exe"
"C:\Users\Luda\AppData\Roaming\Seznam.cz\szninstall.exe" -c
"C:\Program Files\HP\HP Officejet Pro 8620\Bin\ScanToPCActivationApp.exe" -deviceID "CN4AED40WJ:NW" -scfn "HP Officejet Pro 8620 (NET)" -AutoStart 1
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Program Files\HP\HP Officejet Pro 8620\Bin\HPNetworkCommunicatorCom.exe" -Embedding
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\iPod\bin\iPodService.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files\NetSoftware\NetSoftware.exe"
szndesktop.exe default start
"C:\Users\Luda\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
\??\C:\Windows\system32\conhost.exe "20293734917390044931025784401-623895843-653248198-14834932481030622046396207389
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" "--user-data-dir=C:\Users\Luda\AppData\Roaming\Seznam.cz\bin\..\data\libchinst\chromeprofile" "http://software.seznam.cz/listicka?browser=chrome#auto"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4972.0.1910960825\1562802898" --user-data-dir="C:\Users\Luda\AppData\Roaming\Seznam.cz\bin\..\data\libchinst\chromeprofile" --disable-direct-composition --supports-dual-gpus=false --gpu-driver-bug-workarounds=4,12,15,24,53,71 --gpu-vendor-id=0x8086 --gpu-device-id=0x0106 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=9.17.10.3347 --user-data-dir="C:\Users\Luda\AppData\Roaming\Seznam.cz\bin\..\data\libchinst\chromeprofile" --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --user-data-dir="C:\Users\Luda\AppData\Roaming\Seznam.cz\bin\..\data\libchinst\chromeprofile" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --channel="4972.1.1871046527\834147681" /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --user-data-dir="C:\Users\Luda\AppData\Roaming\Seznam.cz\bin\..\data\libchinst\chromeprofile" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --channel="4972.10.1179605207\532606478" /prefetch:1
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --user-data-dir="C:\Users\Luda\AppData\Roaming\Seznam.cz\bin\..\data\libchinst\chromeprofile" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --channel="4972.15.1663578590\969948594" /prefetch:1
"C:\Users\Luda\Desktop\VIR\RSITx64.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
C:\Windows\system32\GWX\GWXConfigManager.exe /RefreshConfigAndContent
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

=========Mozilla firefox=========

ProfilePath - C:\Users\Luda\AppData\Roaming\Mozilla\Firefox\Profiles\75162r8s.default

prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/"

"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
"sp@avast.com"=C:\Program Files\AVAST Software\Avast\SafePrice\FF


[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.242 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.91.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.91.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@software602.cz/602XML Filler]
"Description"=602XML Filler Plugin
"Path"=C:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 21.0.0.242 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_21_0_0_242.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-05-16 902624]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-05-16 462400]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-05-16 679680]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-05-16 173120]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IntelWireless"=C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [2010-11-02 1933584]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2016-05-11 176952]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"cz.seznam.software.autoupdate"=C:\Users\Luda\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\Luda\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
"HP Officejet Pro 8620 (NET)"=C:\Program Files\HP\HP Officejet Pro 8620\Bin\ScanToPCActivationApp.exe [2014-03-06 3487240]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Application Restart #0"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2016-05-11 881304]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"ATKOSD2"=C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2010-08-17 5732992]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [2010-10-07 170624]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2016-05-16 7400576]
"NetSoftware"=C:\Program Files\NetSoftware\Starter.exe [2016-04-20 228600]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2014-01-30 442880]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McNaiAnn]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"DisableTaskMgr"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoResolveTrack"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
"NoRun"=0
"NoFolderOptions"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-05-21 20:17:59 ----D---- C:\_OTM
2016-05-21 12:36:34 ----D---- C:\AdwCleaner
2016-05-20 10:31:11 ----D---- C:\rsit
2016-05-17 06:42:04 ----D---- C:\Program Files (x86)\iTunes
2016-05-17 06:42:03 ----D---- C:\Program Files\iPod
2016-05-17 06:42:02 ----D---- C:\Program Files\iTunes
2016-05-16 17:41:58 ----A---- C:\Windows\system32\aswBoot.exe
2016-05-16 17:41:47 ----A---- C:\Windows\avastSS.scr
2016-05-16 17:41:30 ----A---- C:\Windows\system32\drivers\aswNetNd6.sys
2016-05-16 10:15:38 ----D---- C:\Program Files (x86)\Apple Software Update
2016-05-13 08:44:50 ----D---- C:\Program Files\trend micro
2016-05-13 08:42:15 ----D---- C:\Users\Luda\AppData\Roaming\TeamViewer
2016-05-12 09:29:30 ----A---- C:\Windows\system32\win32k.sys
2016-05-12 09:29:29 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2016-05-12 09:29:29 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2016-05-12 09:29:29 ----A---- C:\Windows\system32\cdd.dll
2016-05-12 09:29:28 ----A---- C:\Windows\SYSWOW64\tzres.dll
2016-05-12 09:29:28 ----A---- C:\Windows\system32\tzres.dll
2016-05-12 09:29:24 ----A---- C:\Windows\SYSWOW64\d3d10level9.dll
2016-05-12 09:29:24 ----A---- C:\Windows\system32\d3d10level9.dll
2016-05-12 09:29:23 ----A---- C:\Windows\SYSWOW64\gdi32.dll
2016-05-12 09:29:23 ----A---- C:\Windows\system32\gdi32.dll
2016-05-12 09:29:22 ----A---- C:\Windows\system32\jnwmon.dll
2016-05-12 09:29:20 ----A---- C:\Windows\SYSWOW64\inseng.dll
2016-05-12 09:29:20 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2016-05-12 09:29:20 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2016-05-12 09:29:19 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2016-05-12 09:29:19 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2016-05-12 09:29:19 ----A---- C:\Windows\SYSWOW64\occache.dll
2016-05-12 09:29:19 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2016-05-12 09:29:19 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2016-05-12 09:29:19 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2016-05-12 09:29:19 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2016-05-12 09:29:19 ----A---- C:\Windows\system32\inseng.dll
2016-05-12 09:29:19 ----A---- C:\Windows\system32\iernonce.dll
2016-05-12 09:29:19 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-05-12 09:29:19 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-05-12 09:29:19 ----A---- C:\Windows\system32\ie4uinit.exe
2016-05-12 09:29:18 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2016-05-12 09:29:18 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2016-05-12 09:29:18 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2016-05-12 09:29:18 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-05-12 09:29:17 ----A---- C:\Windows\SYSWOW64\jscript.dll
2016-05-12 09:29:17 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2016-05-12 09:29:17 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2016-05-12 09:29:17 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2016-05-12 09:29:17 ----A---- C:\Windows\system32\urlmon.dll
2016-05-12 09:29:17 ----A---- C:\Windows\system32\occache.dll
2016-05-12 09:29:17 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-05-12 09:29:17 ----A---- C:\Windows\system32\iedkcs32.dll
2016-05-12 09:29:16 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2016-05-12 09:29:16 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2016-05-12 09:29:16 ----A---- C:\Windows\SYSWOW64\ieui.dll
2016-05-12 09:29:16 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2016-05-12 09:29:16 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-05-12 09:29:16 ----A---- C:\Windows\system32\msfeeds.dll
2016-05-12 09:29:16 ----A---- C:\Windows\system32\dxtrans.dll
2016-05-12 09:29:15 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2016-05-12 09:29:15 ----A---- C:\Windows\system32\iesetup.dll
2016-05-12 09:29:15 ----A---- C:\Windows\system32\ieapfltr.dll
2016-05-12 09:29:14 ----A---- C:\Windows\system32\iertutil.dll
2016-05-12 09:29:13 ----A---- C:\Windows\SYSWOW64\wininet.dll
2016-05-12 09:29:13 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2016-05-12 09:29:13 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2016-05-12 09:29:13 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2016-05-12 09:29:13 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2016-05-12 09:29:13 ----A---- C:\Windows\system32\vbscript.dll
2016-05-12 09:29:13 ----A---- C:\Windows\system32\jsproxy.dll
2016-05-12 09:29:12 ----A---- C:\Windows\SYSWOW64\msrating.dll
2016-05-12 09:29:10 ----A---- C:\Windows\system32\dxtmsft.dll
2016-05-12 09:29:09 ----A---- C:\Windows\system32\mshtmled.dll
2016-05-12 09:29:09 ----A---- C:\Windows\system32\ieui.dll
2016-05-12 09:29:09 ----A---- C:\Windows\system32\ieframe.dll
2016-05-12 09:29:08 ----A---- C:\Windows\system32\webcheck.dll
2016-05-12 09:29:08 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-05-12 09:29:08 ----A---- C:\Windows\system32\jscript9diag.dll
2016-05-12 09:29:08 ----A---- C:\Windows\system32\jscript.dll
2016-05-12 09:29:08 ----A---- C:\Windows\system32\ieUnatt.exe
2016-05-12 09:29:07 ----A---- C:\Windows\system32\wininet.dll
2016-05-12 09:29:07 ----A---- C:\Windows\system32\jscript9.dll
2016-05-12 09:29:06 ----A---- C:\Windows\system32\msrating.dll
2016-05-12 09:29:06 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-05-12 09:29:05 ----A---- C:\Windows\system32\mshtml.dll
2016-05-12 09:27:46 ----A---- C:\Windows\SYSWOW64\WindowsCodecs.dll
2016-05-12 09:27:46 ----A---- C:\Windows\system32\WindowsCodecs.dll
2016-05-12 09:27:41 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-05-12 09:27:40 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2016-05-12 09:27:40 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2016-05-12 09:27:40 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2016-05-12 09:27:40 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2016-05-12 09:27:40 ----A---- C:\Windows\system32\rpcrt4.dll
2016-05-12 09:27:40 ----A---- C:\Windows\system32\lsasrv.dll
2016-05-12 09:27:40 ----A---- C:\Windows\system32\kerberos.dll
2016-05-12 09:27:39 ----A---- C:\Windows\system32\ntdll.dll
2016-05-12 09:27:36 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2016-05-12 09:27:36 ----A---- C:\Windows\SYSWOW64\certcli.dll
2016-05-12 09:27:36 ----A---- C:\Windows\system32\smss.exe
2016-05-12 09:27:36 ----A---- C:\Windows\system32\kernel32.dll
2016-05-12 09:27:36 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-05-12 09:27:36 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-05-12 09:27:36 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-05-12 09:27:36 ----A---- C:\Windows\system32\certcli.dll
2016-05-12 09:27:36 ----A---- C:\Windows\system32\advapi32.dll
2016-05-12 09:27:35 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2016-05-12 09:27:35 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2016-05-12 09:27:35 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2016-05-12 09:27:35 ----A---- C:\Windows\SYSWOW64\srclient.dll
2016-05-12 09:27:35 ----A---- C:\Windows\SYSWOW64\schannel.dll
2016-05-12 09:27:35 ----A---- C:\Windows\SYSWOW64\rpchttp.dll
2016-05-12 09:27:35 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2016-05-12 09:27:35 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2016-05-12 09:27:35 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2016-05-12 09:27:35 ----A---- C:\Windows\SYSWOW64\appidapi.dll
2016-05-12 09:27:35 ----A---- C:\Windows\SYSWOW64\advapi32.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\wow64win.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\wow64cpu.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\wow64.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\winsrv.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\wdigest.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\TSpkg.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\sspisrv.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\sspicli.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\srcore.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\srclient.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\schannel.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\setbcdlocale.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\secur32.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\rstrui.exe
2016-05-12 09:27:35 ----A---- C:\Windows\system32\rpchttp.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\ncrypt.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\msv1_0.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\lsass.exe
2016-05-12 09:27:35 ----A---- C:\Windows\system32\KernelBase.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-05-12 09:27:35 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-05-12 09:27:35 ----A---- C:\Windows\system32\drivers\appid.sys
2016-05-12 09:27:35 ----A---- C:\Windows\system32\csrsrv.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\cryptbase.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\credssp.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\conhost.exe
2016-05-12 09:27:35 ----A---- C:\Windows\system32\appidsvc.dll
2016-05-12 09:27:35 ----A---- C:\Windows\system32\appidapi.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-05-12 09:27:34 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-05-12 09:27:34 ----A---- C:\Windows\SYSWOW64\wow32.dll
2016-05-12 09:27:34 ----A---- C:\Windows\SYSWOW64\user.exe
2016-05-12 09:27:34 ----A---- C:\Windows\SYSWOW64\setup16.exe
2016-05-12 09:27:34 ----A---- C:\Windows\SYSWOW64\secur32.dll
2016-05-12 09:27:34 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2016-05-12 09:27:34 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2016-05-12 09:27:34 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2016-05-12 09:27:34 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2016-05-12 09:27:34 ----A---- C:\Windows\SYSWOW64\instnm.exe
2016-05-12 09:27:34 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2016-05-12 09:27:34 ----A---- C:\Windows\SYSWOW64\credssp.dll
2016-05-12 09:27:34 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2016-05-12 09:27:34 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2016-05-12 09:27:34 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2016-05-12 09:27:34 ----A---- C:\Windows\system32\ntvdm64.dll
2016-05-12 09:27:34 ----A---- C:\Windows\system32\msobjs.dll
2016-05-12 09:27:34 ----A---- C:\Windows\system32\msaudite.dll
2016-05-12 09:27:34 ----A---- C:\Windows\system32\auditpol.exe
2016-05-12 09:27:34 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2016-05-12 09:27:34 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2016-05-12 09:27:34 ----A---- C:\Windows\system32\apisetschema.dll
2016-05-12 09:27:34 ----A---- C:\Windows\system32\adtschema.dll
2016-05-08 08:30:07 ----D---- C:\Program Files\CCleaner
2016-05-07 21:32:26 ----A---- C:\Windows\system32\icaapi.dll
2016-05-07 21:32:26 ----A---- C:\Windows\system32\drivers\tssecsrv.sys
2016-05-07 21:32:08 ----A---- C:\Windows\SYSWOW64\KBDAZE.DLL
2016-05-07 21:32:07 ----A---- C:\Windows\SYSWOW64\kbdgeoqw.dll
2016-05-07 21:32:07 ----A---- C:\Windows\SYSWOW64\KBDAZEL.DLL
2016-05-07 21:32:07 ----A---- C:\Windows\system32\kbdgeoqw.dll
2016-05-07 21:32:06 ----A---- C:\Windows\system32\KBDAZEL.DLL
2016-05-07 21:32:06 ----A---- C:\Windows\system32\KBDAZE.DLL
2016-05-07 21:32:05 ----A---- C:\Windows\SYSWOW64\nlsbres.dll
2016-05-07 21:32:05 ----A---- C:\Windows\system32\nlsbres.dll
2016-05-07 21:31:58 ----A---- C:\Windows\system32\msi.dll
2016-05-07 21:31:58 ----A---- C:\Windows\system32\authui.dll
2016-05-07 21:31:57 ----A---- C:\Windows\SYSWOW64\msi.dll
2016-05-07 21:31:56 ----A---- C:\Windows\SYSWOW64\msimsg.dll
2016-05-07 21:31:56 ----A---- C:\Windows\SYSWOW64\msihnd.dll
2016-05-07 21:31:56 ----A---- C:\Windows\SYSWOW64\authui.dll
2016-05-07 21:31:56 ----A---- C:\Windows\system32\msimsg.dll
2016-05-07 21:31:56 ----A---- C:\Windows\system32\msihnd.dll
2016-05-07 21:31:56 ----A---- C:\Windows\system32\consent.exe
2016-05-07 21:31:56 ----A---- C:\Windows\system32\appinfo.dll
2016-05-07 21:28:58 ----A---- C:\Windows\SYSWOW64\webio.dll
2016-05-07 21:28:58 ----A---- C:\Windows\system32\webio.dll
2016-05-07 21:28:57 ----A---- C:\Windows\SYSWOW64\winhttp.dll
2016-05-07 21:28:57 ----A---- C:\Windows\system32\winhttp.dll
2016-05-07 21:28:56 ----A---- C:\Windows\SYSWOW64\InkEd.dll
2016-05-07 21:28:56 ----A---- C:\Windows\system32\InkEd.dll
2016-05-02 09:21:09 ----D---- C:\Users\Luda\AppData\Roaming\Kastner software
2016-05-02 09:20:53 ----D---- C:\ProgramData\KASTNER software

======List of files/folders modified in the last 1 month======

2016-05-21 20:24:53 ----D---- C:\Windows\Temp
2016-05-21 20:23:16 ----D---- C:\Windows\Prefetch
2016-05-21 20:23:12 ----D---- C:\ProgramData\NetSoftware
2016-05-21 20:23:12 ----D---- C:\Program Files\NetSoftware
2016-05-21 20:20:58 ----D---- C:\Windows\system32\config
2016-05-21 20:18:00 ----RD---- C:\Program Files (x86)\Skype
2016-05-21 20:17:05 ----D---- C:\Windows\System32
2016-05-21 20:17:05 ----D---- C:\Windows\inf
2016-05-21 20:17:05 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-05-21 18:25:03 ----D---- C:\Users\Luda\AppData\Roaming\Seznam.cz
2016-05-21 12:41:52 ----D---- C:\Windows
2016-05-21 12:40:12 ----HD---- C:\ProgramData
2016-05-21 08:59:00 ----D---- C:\ksoft
2016-05-20 17:39:36 ----SHD---- C:\Windows\Installer
2016-05-20 17:38:59 ----D---- C:\Windows\SysWOW64
2016-05-19 15:12:58 ----SHD---- C:\System Volume Information
2016-05-17 09:00:28 ----D---- C:\Windows\rescache
2016-05-17 06:47:51 ----D---- C:\Windows\system32\DriverStore
2016-05-17 06:42:04 ----RD---- C:\Program Files (x86)
2016-05-17 06:42:03 ----RD---- C:\Program Files
2016-05-17 06:42:02 ----D---- C:\Program Files\Common Files\Apple
2016-05-16 17:45:33 ----D---- C:\Windows\system32\Tasks
2016-05-16 17:44:30 ----D---- C:\Windows\system32\drivers
2016-05-16 17:42:04 ----D---- C:\Windows\winsxs
2016-05-16 15:12:53 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-05-16 10:31:38 ----D---- C:\Windows\system32\catroot
2016-05-16 10:31:17 ----D---- C:\Users\Luda\AppData\Roaming\Skype
2016-05-16 10:27:37 ----D---- C:\Windows\Microsoft.NET
2016-05-16 10:18:53 ----D---- C:\Program Files (x86)\Mozilla Thunderbird
2016-05-16 10:11:55 ----D---- C:\Program Files (x86)\Common Files
2016-05-16 10:11:15 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2016-05-16 10:11:00 ----D---- C:\Program Files (x86)\Java
2016-05-16 10:10:41 ----D---- C:\ProgramData\Skype
2016-05-15 06:23:02 ----RSD---- C:\Windows\assembly
2016-05-14 12:44:30 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2016-05-13 08:49:56 ----D---- C:\Windows\Tasks
2016-05-12 15:00:56 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-05-12 15:00:56 ----D---- C:\Windows\system32\cs-CZ
2016-05-12 15:00:56 ----D---- C:\Windows\system32\appraiser
2016-05-12 15:00:55 ----D---- C:\Windows\ehome
2016-05-12 15:00:54 ----D---- C:\Program Files\Windows Journal
2016-05-12 15:00:53 ----D---- C:\Windows\SYSWOW64\en-US
2016-05-12 15:00:53 ----D---- C:\Program Files\Internet Explorer
2016-05-12 15:00:51 ----D---- C:\Windows\system32\en-US
2016-05-12 15:00:49 ----D---- C:\Program Files (x86)\Internet Explorer
2016-05-12 15:00:36 ----D---- C:\Windows\AppPatch
2016-05-12 15:00:35 ----D---- C:\Windows\system32\Boot
2016-05-12 11:39:11 ----D---- C:\Windows\system32\MRT
2016-05-12 11:30:25 ----A---- C:\Windows\system32\MRT.exe
2016-05-12 09:25:15 ----D---- C:\Windows\system32\catroot2
2016-05-09 16:55:36 ----D---- C:\Program Files (x86)\Mozilla Firefox
2016-05-08 09:59:43 ----D---- C:\Windows\debug
2016-05-08 09:27:00 ----D---- C:\Windows\Panther
2016-05-07 22:16:55 ----RSD---- C:\Windows\Fonts
2016-05-07 22:15:26 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2016-05-07 21:16:14 ----SD---- C:\Windows\SYSWOW64\GWX
2016-05-07 21:16:14 ----SD---- C:\Windows\system32\GWX
2016-05-02 08:48:49 ----D---- C:\Windows\Minidump
2016-05-02 08:48:49 ----D---- C:\Windows\Logs

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2016-05-16 74544]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2016-05-16 287528]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2013-04-08 30496]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2016-05-16 37144]
R1 aswNetSec;aswNetSec; C:\Windows\system32\drivers\aswNetSec.sys [2016-05-16 536312]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2016-05-16 103064]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2016-05-16 1070904]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2016-05-16 465792]
R1 ATKWMIACPIIO;ATKWMIACPI Driver; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-05-25 17536]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-02 15416]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2016-05-16 37656]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2016-05-16 107792]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2016-05-16 166432]
R3 asmthub3;ASMedia USB3 Hub Service; C:\Windows\system32\DRIVERS\asmthub3.sys [2011-06-02 128488]
R3 asmtxhci;ASMEDIA XHCI Service; C:\Windows\system32\DRIVERS\asmtxhci.sys [2011-06-02 401896]
R3 aswNetNd6;Avast Firewall NDIS6 Helper; C:\Windows\system32\DRIVERS\aswNetNd6.sys [2016-05-16 28312]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-10-03 33240]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2014-01-30 5363200]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]
R3 NETwNs64;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 7 64 Bit; C:\Windows\system32\DRIVERS\NETwNs64.sys [2010-11-09 8500736]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-06-23 333928]
R3 StillCam;Ovladač digitálního fotoaparátu pro sériový port; C:\Windows\system32\DRIVERS\serscan.sys [2009-07-14 12288]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUVStor.sys [2014-11-05 290920]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2015-06-17 54784]
S3 WinUsb;WinUsb; C:\Windows\system32\drivers\WinUsb.sys [2010-11-21 41984]
S3 WSDPrintDevice;Podpora tisku WSD prostřednictvím funkce UMB; C:\Windows\system32\DRIVERS\WSDPrint.sys [2009-07-14 23040]
S3 WSDScan;Podpora skenování WSD přes UMB; C:\Windows\system32\DRIVERS\WSDScan.sys [2009-07-14 25088]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 602XML Updater;602Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [2011-10-10 85344]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-04-22 82128]
R2 Apple Mobile Device Service;Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2016-03-02 83768]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2009-06-15 84536]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2009-12-15 96896]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-05-16 243296]
R2 avast! Firewall;Avast Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2016-05-16 370656]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2010-11-02 1515792]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-03-14 884512]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-04-08 1260320]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2010-11-02 836880]
R2 ssinstall;SInstalátor; C:\Windows\SysWOW64\ssins.exe [2015-08-10 2324216]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2016-05-11 651576]
R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2010-11-02 340240]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2015-11-05 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2015-11-05 125112]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-06 154440]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-03-23 327808]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-05-14 269504]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2014-01-30 279000]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-02-06 154440]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-04-23 114688]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-05-09 146888]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-11-05 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2015-11-05 51376]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]

-----------------EOF-----------------
Nahoru
sabatp
Návštěvník
Návštěvník
Příspěvky: 11
Registrován: 20 kvě 2016 09:35

Re: Okno se stane neaktivní

#8 Příspěvek od sabatp »

Ještě log z OTM:
Opravdu díky za pomoc.

All processes killed
========== FILES ==========
C:\Program Files (x86)\Skype\Toolbars\PNRSvc folder moved successfully.
C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64 folder moved successfully.
C:\Program Files (x86)\Skype\Toolbars\Internet Explorer folder moved successfully.
C:\Program Files (x86)\Skype\Toolbars\FirefoxAddOn folder moved successfully.
C:\Program Files (x86)\Skype\Toolbars\AutoUpdate folder moved successfully.
C:\Program Files (x86)\Skype\Toolbars folder moved successfully.
========== REGISTRY ==========
Registry value HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched deleted successfully.
========== SERVICES/DRIVERS ==========
Service Bonjour Service stopped successfully!
Service Bonjour Service deleted successfully!
Service c2cautoupdatesvc stopped successfully!
Service c2cautoupdatesvc deleted successfully!
Service c2cpnrsvc stopped successfully!
Service c2cpnrsvc deleted successfully!
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Luda
->Temp folder emptied: 48109115 bytes
->Temporary Internet Files folder emptied: 169429631 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 371695287 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 1584 bytes

User: Public

User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 247424169 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 128 bytes
RecycleBin emptied: 1213090917 bytes

Total Files Cleaned = 1 955,00 mb


[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: Luda
->Flash cache emptied: 0 bytes

User: Public

User: UpdatusUser

Total Flash Files Cleaned = 0,00 mb


OTM by OldTimer - Version 3.1.21.0 log created on 05212016_201759

Files moved on Reboot...
C:\Users\Luda\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
C:\Users\Luda\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat moved successfully.
File move failed. C:\Windows\temp\_avast_\AvastLock.txt scheduled to be moved on reboot.
File move failed. C:\Windows\temp\SafeZone Installer\safezone_installer_20160516174500.log scheduled to be moved on reboot.
File move failed. C:\Windows\temp\SafeZone Installer\safezone_installer_20160516174518.log scheduled to be moved on reboot.
File move failed. C:\Windows\SysWow64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\counters.dat scheduled to be moved on reboot.

Registry entries deleted on Reboot...
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118243
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Okno se stane neaktivní

#9 Příspěvek od Rudy »

Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
sabatp
Návštěvník
Návštěvník
Příspěvky: 11
Registrován: 20 kvě 2016 09:35

Re: Okno se stane neaktivní

#10 Příspěvek od sabatp »

Bohužel ne :(
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118243
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Okno se stane neaktivní

#11 Příspěvek od Rudy »

OK. Udělejte kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte. Musím konstatovat, že tento problém mohou způsobovat i zcela regulérní procesy.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
sabatp
Návštěvník
Návštěvník
Příspěvky: 11
Registrován: 20 kvě 2016 09:35

Re: Okno se stane neaktivní

#12 Příspěvek od sabatp »

Udělal jsem kompletní test, našel 17 problému, když dám uložit výsledky tak tam je všude 0, do přílohy vkládám screen.... :

Malwarebytes Anti-Malware
http://www.malwarebytes.org
Datum skenování: 22.5.2016
Čas skenování: 4:27
Protokol: mbam.txt
Správce: Ano

Verze: 0.0.0.0000
Databáze malwaru: v2016.05.22.01
Databáze rootkitů: v2016.05.20.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto

OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: Luda

Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 333839
Uplynulý čas: 10 min, 36 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 0
(Nenalezeny žádné škodlivé položky)

Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)

Data registru: 0
(Nenalezeny žádné škodlivé položky)

Složky: 0
(Nenalezeny žádné škodlivé položky)

Soubory: 0
(Nenalezeny žádné škodlivé položky)

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)


(end)
Přílohy
Screen výsledků mbam.
Screen výsledků mbam.
obr.png (212.75 KiB) Zobrazeno 2114 x
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118243
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Okno se stane neaktivní

#13 Příspěvek od Rudy »

PUP znamená Potentialy unwanted program: https://translate.google.cz/translate?h ... rev=search , což nemusí být vždy problém. Zkuste tyto skeny:

1. Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu

Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
Do okna vlozte skript nize




autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin;





Nasledne kliknete na Run Script
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem.

a

2. Junkware removal tool: http://thisisudax.org/downloads/JRT.exe
•Ulozte nejlepe na plochu
•Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
•Probehne vytvoreni zalohy a nasledne prohledavani
•Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
sabatp
Návštěvník
Návštěvník
Příspěvky: 11
Registrován: 20 kvě 2016 09:35

Re: Okno se stane neaktivní

#14 Příspěvek od sabatp »

Log z zoek:


Zoek.exe v5.0.0.1 Updated 31-December-2015
Tool run by Luda on ne 22.05.2016 at 10:22:52,26.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Luda\Desktop\VIR\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

22.5.2016 10:24:31 Zoek.exe System Restore Point Created Successfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handled within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Empty Folders Check ======================

C:\Program Files\McAfee deleted successfully
C:\PROGRA~3\KASTNER software deleted successfully
C:\Users\Luda\AppData\Roaming\Kastner software deleted successfully
C:\Users\Luda\AppData\Local\EmieBrowserModeList deleted successfully
C:\Users\Luda\AppData\Local\EmieSiteList deleted successfully
C:\Users\Luda\AppData\Local\EmieUserList deleted successfully
C:\Users\Luda\AppData\Local\Skype deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== FireFox Fix ======================

Deleted from C:\Users\Luda\AppData\Roaming\Mozilla\Firefox\Profiles\75162r8s.default\prefs.js:
user_pref("browser.startup.homepage", "https://www.seznam.cz/");

Added to C:\Users\Luda\AppData\Roaming\Mozilla\Firefox\Profiles\75162r8s.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

Deleted from C:\Users\Luda\AppData\Roaming\Thunderbird\Profiles\bdarzmdd.default\prefs.js:

Added to C:\Users\Luda\AppData\Roaming\Thunderbird\Profiles\bdarzmdd.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Deleting Files \ Folders ======================

C:\Windows\sysWoW64\config\systemprofile\AppData\LocalLow\AVG Web TuneUp deleted
C:\Windows\SysNative\config\systemprofile\Searches deleted
C:\Users\Luda\AppData\Roaming\Mozilla\Firefox\Profiles\75162r8s.default\jetpack deleted

==== Orphaned Tasks deleted from Registry ======================

avast Emergency Update deleted

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\Luda\AppData\Roaming\Mozilla\Firefox\Profiles\75162r8s.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

ProfilePath: C:\Users\Luda\AppData\Roaming\Thunderbird\Profiles\bdarzmdd.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"sp@avast.com"="C:\Program Files\AVAST Software\Avast\SafePrice\FF" [16.05.2016 17:41]
[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]
"sp@avast.com"="C:\Program Files\AVAST Software\Avast\SafePrice\FF" [16.05.2016 17:41]
[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]
"gemgecko@gemius.com"="C:\Program Files\NetSoftware\gemgecko_ext" [20.04.2016 19:17]

==== Firefox Extensions ======================

ProfilePath: C:\Users\Luda\AppData\Roaming\Thunderbird\Profiles\bdarzmdd.default
- esk slovnk pro kontrolu pravopisu - %ProfilePath%\extensions\cs@dictionaries.addons.mozilla.org
- Lightning - %ProfilePath%\extensions\{e2fda1a4-762b-4020-b5ad-a41df1933103}

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Skype - %AppDir%\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}.xpi
- Undetermined - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi

==== Firefox Plugins ======================

Profilepath: C:\Users\Luda\AppData\Roaming\Mozilla\Firefox\Profiles\75162r8s.default
258693279212838A6A879A69A17BE215 - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll - Shockwave Flash


==== Chromium Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
gomekmidlodglbbmalcneegieacbdmki - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx[16.05.2016 17:41]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
kegdldmohomdaelnepdpbkdhfemobdgl - No path found[]

Comodo Drag&Drop Service - Luda\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\aneodkojaglhnkkdbbdnmmmgimlcaogo
Comodo Web Inspector - Luda\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\bdngekjahnmlkinegnhdmmbcfnmbclnn
Comodo Media Downloader - Luda\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\dihmnpngfonlhjmgkflpnibiaaliendo
Avast Online Security - Luda\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki
Netpanel study - Luda\AppData\Local\Google\Chrome\User Data\Default\Extensions\kegdldmohomdaelnepdpbkdhfemobdgl

==== Chromium Fix ======================

C:\Users\Luda\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_adserver.adtech.de_0.localstorage deleted successfully
C:\Users\Luda\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_adserver.adtech.de_0.localstorage-journal deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://www.google.com"

==== All HKLM and HKCU SearchScopes ======================

HKLM\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKLM\Wow6432Node\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKLM\Wow6432Node\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
HKCU\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
HKCU\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66} - http://www.google.com/search?q={searchTerms}
HKCU\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} - http://www.bing.com/search?q={searchTer ... ORM=IESR02
HKCU\SearchScopes\{17153C1F-61C6-4E39-A563-10D67CF120DD} - http://tv.seznam.cz/hledej?w={searchTer ... arch_12902
HKCU\SearchScopes\{60FE3877-1898-4120-AA1E-1FDA4BA323C7} - http://www.zbozi.cz/?q={searchTerms}&r= ... arch_12902
HKCU\SearchScopes\{80A869B4-01CF-4AFD-9334-C81FC4B1F4B2} - http://www.firmy.cz/?q={searchTerms}&so ... arch_12902
HKCU\SearchScopes\{90429639-8AF0-4B2B-9A07-61ABAB2E73BE} - http://www.novinky.cz/hledej?w={searchT ... arch_12902
HKCU\SearchScopes\{9ACE68AF-0B7F-4456-A853-257425C6D1B8} - http://slovnik.seznam.cz/?q={searchTerm ... arch_12902
HKCU\SearchScopes\{AD82F6D7-8C38-4902-89F3-D0371FA282AF} - http://encyklopedie.seznam.cz/search?q= ... arch_12902
HKCU\SearchScopes\{C9DF9E05-8962-457C-9FAB-F03A30FA77B2} - http://www.mapy.cz/?query={searchTerms} ... arch_12902
HKCU\SearchScopes\{FEAD266F-C062-4794-96E6-045BFD2CC638} - http://slovnik.seznam.cz/?q={searchTerm ... arch_12902

==== Reset Google Chrome ======================

C:\Users\Luda\AppData\Local\Comodo\Dragon\User Data\Default\Preferences was reset successfully
C:\Users\Luda\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Luda\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\Luda\AppData\Local\Comodo\Dragon\User Data\Default\Web Data was reset successfully
C:\Users\Luda\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\Luda\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Luda\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

C:\Users\Luda\AppData\Local\Mozilla\Firefox\Profiles\75162r8s.default\cache2 emptied successfully

==== Empty Chrome Cache ======================

C:\Users\Luda\AppData\Local\Comodo\Dragon\User Data\Default\Cache emptied successfully
C:\Users\Luda\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=5 folders=5 4679 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Luda\AppData\Local\Temp will be emptied at reboot
C:\Users\UpdatusUser\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Luda\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on ne 22.05.2016 at 16:51:38,76 ======================
Nahoru
sabatp
Návštěvník
Návštěvník
Příspěvky: 11
Registrován: 20 kvě 2016 09:35

Re: Okno se stane neaktivní

#15 Příspěvek od sabatp »

Log z JRT:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.6 (04.25.2016)
Operating System: Windows 7 Home Premium x64
Ran by Luda (Administrator) on ne 22.05.2016 at 16:34:27,18
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 8

Successfully deleted: C:\Users\Luda\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0DLCVHRW (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Luda\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QFXOMNI0 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Luda\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RBHHNAYF (Temporary Internet Files Folder)
Successfully deleted: C:\Users\Luda\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VMG55RY2 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0DLCVHRW (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\QFXOMNI0 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\RBHHNAYF (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VMG55RY2 (Temporary Internet Files Folder)



Registry: 1

Successfully deleted: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{8DF47F6A-C530-4BF3-8E6B-6A3A22770525} (Registry Key)




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on ne 22.05.2016 at 16:41:29,82
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Nahoru
Odpovědět

Zpět na „Řešení problémů, logy“