Počítač je za pár minut po startu hodně pomalý a rychle a hlasitě se začne točit větrák, i když se na něm nic nedělá. Prosím o pomoc.
Logfile of random's system information tool 1.16 (written by random/random)
Run by Zubní ordinace at 2017-04-20 21:05:16
Microsoft Windows 10 Pro
System drive C: has 16 GB (10%) free of 152 GB
Total RAM: 3071 MB (53% free)
X86
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:06:44, on 20.4.2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.15063.0000)
Boot mode: Normal
Running processes:
C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\sihost.exe
C:\WINDOWS\system32\taskhostw.exe
C:\WINDOWS\Explorer.EXE
C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\Windows Defender\MSASCuiL.exe
C:\WINDOWS\system32\SettingSyncHost.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\DosPrint\DOSPRINT.EXE
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\NVIDIA Corporation\NvNode\nvnodejslauncher.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
C:\WINDOWS\system32\conhost.exe
C:\Program Files\Adobe\Acrobat Reader DC\Reader\Reader_sl.exe
C:\Program Files\Common Files\Java\Java Update\jucheck.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Windows\System32\smartscreen.exe
C:\Users\Zubní ordinace\Downloads\RSIT.exe
C:\WINDOWS\system32\backgroundTaskHost.exe
C:\Program Files\trend micro\Zubní ordinace_RSIT.exe
C:\WINDOWS\system32\SearchFilterHost.exe
C:\Totalcmd\TOTALCMD.EXE
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_121\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_121\bin\jp2ssv.dll
O4 - HKLM\..\Run: [SecurityHealth] %ProgramFiles%\Windows Defender\MSASCuiL.exe
O4 - HKLM\..\Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe" -s
O4 - HKLM\..\Run: [Logitech Download Assistant] C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
O4 - HKLM\..\Run: [DOSPRINT] C:\DosPrint\DOSPRINT.EXE
O4 - HKLM\..\Run: [ShadowPlay] "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap.dll,ShadowPlayOnSystemStart
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\System32\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O16 - DPF: {D8950D0E-FCE7-4AE4-9370-7E4CFBC04362} - https://eportal.cssz.cz/fas/page/active ... bff_cs.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\System32\tbauth.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: NVIDIA LocalSystem Container (NvContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA NetworkService Container (NvContainerNetworkService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
O23 - Service: NVIDIA Display Container LS (NVDisplay.ContainerLocalSystem) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
O23 - Service: NVIDIA Telemetry Container (NvTelemetryContainer) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
O23 - Service: ProtexisLicensing - Unknown owner - C:\Windows\system32\PSIService.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: TeamViewer 12 (TeamViewer) - TeamViewer GmbH - C:\Program Files\TeamViewer\TeamViewer_Service.exe
--
End of file - 5624 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Norton Security Scan for Zubní ordinace.job - C:\PROGRA~1\NORTON~2\Engine\401~1.16\Nss.exe /scan-quick /scheduled
C:\WINDOWS\system32\tasks\Adobe Acrobat Update Task - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\WINDOWS\system32\tasks\CreateChoiceProcessTask - C:\Windows\System32\browserchoice.exe /launch
C:\WINDOWS\system32\tasks\Norton Security Scan for Zubní ordinace - C:\PROGRA~1\NORTON~2\Engine\401~1.16\Nss.exe /scan-quick /scheduled
C:\WINDOWS\system32\tasks\NvDriverUpdateCheckDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe -d "C:\Program Files\NVIDIA Corporation\NvDriverUpdateCheck" -l 3 -f C:\ProgramData\NVIDIA\NvContainerDriverUpdateCheck.log
C:\WINDOWS\system32\tasks\NvNodeLauncher_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\NvNode\nvnodejslauncher.exe --launcher=TaskScheduler
C:\WINDOWS\system32\tasks\NvProfileUpdaterDaily_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater32.exe
C:\WINDOWS\system32\tasks\NvProfileUpdaterOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvProfileUpdater32.exe
C:\WINDOWS\system32\tasks\NvTmMon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvTmMon.exe
C:\WINDOWS\system32\tasks\NvTmRepOnLogon_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvTmRep.exe --logon
C:\WINDOWS\system32\tasks\NvTmRep_{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8} - C:\Program Files\NVIDIA Corporation\Update Core\NvTmRep.exe
C:\WINDOWS\system32\tasks\OneDrive Standalone Update Task v2 - %localappdata%\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
C:\WINDOWS\system32\tasks\User_Feed_Synchronization-{E2319C5C-FBD8-4C25-864C-A33FB21CC09D} - C:\WINDOWS\system32\msfeedssync.exe sync
C:\WINDOWS\system32\tasks\{1B5DC5CB-97C8-4FA0-B49A-3AA33C209BE7} - C:\WINDOWS\system32\pcalua.exe -a D:\AUTORUN.EXE -d D:\
C:\WINDOWS\system32\tasks\{5A7E073D-9FFC-429D-A96B-15B3EDF80EDC} - "C:\Program Files\Internet Explorer\iexplore.exe" http://ui.skype.com/ui/0/6.3.0.105/cs/g ... Error=1618
C:\WINDOWS\system32\tasks\{7DF56961-D8F0-4461-AB5A-A56D29522563} - C:\Windows\system32\pcalua.exe -a C:\Windows\Samsung\SCX-4100\SETUP.EXE
C:\WINDOWS\system32\tasks\{B10E317F-FFF9-43DF-ABA8-02C16CE2053F} - "c:\program files\internet explorer\iexplore.exe" http://ui.skype.com/ui/0/6.20.0.104/cs/ ... Error=1618
C:\WINDOWS\system32\tasks\{BB64B72D-2475-4640-9763-958508D68FBC} - C:\Windows\system32\pcalua.exe -a C:\UIU\CXT1035\HXFSETUP.EXE -c -U -IVEN_14F1&DEV_1085&SUBSYS_108514F1
C:\WINDOWS\system32\tasks\{E0B89555-FE08-4ADA-8B62-943A15A1203F} - C:\Windows\system32\pcalua.exe -a D:\Samorost2.exe -d D:\
C:\WINDOWS\system32\tasks\WPD\SqmUpload_S-1-5-21-643618162-1430922922-3350028935-1001 - %windir%\system32\rundll32.exe portabledeviceapi.dll,#1
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTask - %windir%\System32\XblGameSaveTask.exe standby
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTaskLogon - %windir%\System32\XblGameSaveTask.exe logon
C:\WINDOWS\system32\tasks\Microsoft\Windows\WwanSvc\NotificationTask - %SystemRoot%\System32\WiFiTask.exe wwan
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join - %SystemRoot%\System32\dsregcmd.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start - C:\WINDOWS\system32\sc.exe start wuauserv
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sih - %systemroot%\System32\sihclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sihboot - %systemroot%\System32\sihclient.exe /boot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -upload
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance - C:\Program Files\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdCacheMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup - C:\Program Files\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdCleanup
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan - C:\Program Files\Windows Defender\MpCmdRun.exe Scan -ScheduleJob -ScanTrigger 55
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification - C:\Program Files\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdVerification
C:\WINDOWS\system32\tasks\Microsoft\Windows\WCM\WiFiTask - %SystemRoot%\System32\WiFiTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Combined Scan Download Install - %systemroot%\system32\usoclient.exe ScanInstallWait
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Policy Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Reboot - %systemroot%\system32\MusNotification.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Refresh Settings - %systemroot%\system32\usoclient.exe RefreshSettings
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Resume On Boot - %systemroot%\system32\usoclient.exe ResumeUpdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan - %systemroot%\system32\usoclient.exe StartScan
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display - C:\windows\system32\MusNotification.exe Display
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot - C:\windows\system32\MusNotification.exe ReadyToReboot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone - %windir%\system32\tzsync.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\WINDOWS\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict1 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPOffendingSystem
C:\WINDOWS\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict2 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPDefendingSystem
C:\WINDOWS\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\srtasks.exe ExecuteScheduledSPPCreation
C:\WINDOWS\system32\tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask - %windir%\system32\rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Subscription\EnableLicenseAcquisition - %SystemRoot%\system32\ClipRenew.exe -e
C:\WINDOWS\system32\tasks\Microsoft\Windows\Subscription\LicenseAcquisition - %SystemRoot%\system32\ClipRenew.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization - %windir%\system32\defrag.exe -c -h -g -# -m 8 -i 13500
C:\WINDOWS\system32\tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask - %windir%\system32\speech_onecore\common\SpeechModelDownload.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceAgentTask - %windir%\system32\SpaceAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceManagerTask - %windir%\system32\spaceman.exe /Work
C:\WINDOWS\system32\tasks\Microsoft\Windows\Shell\FamilySafetyMonitor - %windir%\System32\wpcmon.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SharedPC\Account Cleanup - %windir%\System32\rundll32.exe %windir%\System32\Windows.SharedPC.AccountManager.dll,StartMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers - %SystemRoot%\System32\drvinst.exe 6
C:\WINDOWS\system32\tasks\Microsoft\Windows\NlaSvc\WiFiTask - %SystemRoot%\System32\WiFiTask.exe nla
C:\WINDOWS\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser - %SystemRoot%\System32\MbaeParserTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoActivateWindowsSearch
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService - %SystemRoot%\ehome\ehPrivJob.exe /DoConfigureInternetTimeService
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks - %SystemRoot%\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\ehDRMInit - %SystemRoot%\ehome\ehPrivJob.exe /DRMInit
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\InstallPlayReady - %SystemRoot%\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\mcupdate - %SystemRoot%\ehome\mcupdate $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\mcupdate_scheduled - %SystemRoot%\ehome\mcupdate -crl -hms -pscn 15
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -MediaCenterRecoveryTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -ObjectStoreRecoveryTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\OCURActivate - %SystemRoot%\ehome\ehPrivJob.exe /OCURActivate
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\OCURDiscovery - %SystemRoot%\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\PBDADiscovery - %SystemRoot%\ehome\ehPrivJob.exe /PBDADiscovery
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 - %SystemRoot%\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 - %SystemRoot%\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\PeriodicScanRetry - %windir%\ehome\MCUpdate.exe -pscn 0
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\PvrRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -PvrRecoveryTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\PvrScheduleTask - %SystemRoot%\ehome\mcupdate.exe -PvrSchedule
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\RecordingRestart - %SystemRoot%\ehome\ehrec /RestartRecording
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\RegisterSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\ReindexSearchRoot - %SystemRoot%\ehome\ehPrivJob.exe /DoReindexSearchRoot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -SqlLiteRecoveryTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Media Center\UpdateRecordPath - %SystemRoot%\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Management\Provisioning\Cellular - %windir%\system32\ProvTool.exe /turn 7 /source CellStateChangeTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Management\Provisioning\Logon - %windir%\system32\ProvTool.exe /turn 5 /source LogonIdleTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotificationWindows.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\WindowsActionDialog - %windir%\System32\WindowsActionDialog.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClient - %windir%\system32\dmclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload - %windir%\system32\dmclient.exe utcwnf
C:\WINDOWS\system32\tasks\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask - %windir%\system32\MDMAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DUSM\dusmtask - %SystemRoot%\System32\dusmtask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskFootprint\Diagnostics - %windir%\system32\disksnapshot.exe -z
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskCleanup\SilentCleanup - %windir%\system32\cleanmgr.exe /autoclean /d %systemdrive%
C:\WINDOWS\system32\tasks\Microsoft\Windows\Device Information\Device - %windir%\system32\devicecensus.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c -h -o -$
C:\WINDOWS\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Clip\License Validation - %SystemRoot%\system32\ClipUp.exe -p -s -o
C:\WINDOWS\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup - %windir%\system32\rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierdaily - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierinstall - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState - %windir%\system32\rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup - %windir%\system32\dstokenclean.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\compattelrunner.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\compattelrunner.exe -maintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\StartupAppTask - %windir%\system32\rundll32.exe Startupscan.dll,SusRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
C:\WINDOWS\system32\tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan - c:\Program Files\Microsoft Security Client\MpCmdRun.exe Scan -ScheduleJob -RestrictPrivileges
C:\WINDOWS\system32\tasks\Microsoft\Microsoft Antimalware\MpIdleTask - c:\Program Files\Microsoft Security Client\MpCmdRun.exe -IdleTask -TaskName MpIdleTask
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}]
"URL"=http://www.google.com/search?q={searchT ... urceid=ie7
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{80c554b9-c7f8-4a21-9471-06d606da78a2}]
"URL"=http://www.bing.com/search?q={searchTer ... DF&pc=MSSE
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_121\bin\ssv.dll [2017-01-19 473152]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-19 186944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SecurityHealth"=C:\Program Files\Windows Defender\MSASCuiL.exe [2017-03-18 485280]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2015-06-24 12214528]
"Logitech Download Assistant"=C:\Windows\System32\LogiLDA.dll [2012-09-20 3164472]
"DOSPRINT"=C:\DosPrint\DOSPRINT.EXE [2005-10-03 1059328]
"ShadowPlay"=C:\WINDOWS\system32\nvspcap.dll [2017-04-01 1470520]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2016-12-12 587288]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2017-03-14 27545048]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2017-02-02 1160408]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iaioi2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\NetSetupSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorUser"=3
"DSCAutomationHostEnabled"=2
"EnableCursorSuppression"=1
"EnableUIADesktopToggle"=0
"undockwithoutlogon"=1
"ConsentPromptBehaviorAdmin"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"PromptOnSecureDesktop"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
"StubPath"=%SystemRoot%\inf\unregmp2.exe /ShowWMP
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.cvid"=iccvid.dll
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"vidc.ptev"=PteVideo.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2017-04-20 21:05:17 ----D---- C:\Program Files\trend micro
2017-04-20 21:05:16 ----D---- C:\rsit
2017-04-20 14:59:56 ----D---- C:\Users\Zubní ordinace\AppData\Roaming\sp6_log
2017-04-19 20:39:46 ----D---- C:\ProgramData\Microsoft OneDrive
2017-04-19 20:14:15 ----SHD---- C:\Recovery
2017-04-19 20:05:25 ----D---- C:\Windows.old
2017-04-19 20:04:29 ----A---- C:\WINDOWS\system32\mfmjpegdec.dll
2017-04-19 20:04:29 ----A---- C:\WINDOWS\system32\ieproxy.dll
2017-04-19 20:04:29 ----A---- C:\WINDOWS\system32\Chakra.dll
2017-04-19 20:04:28 ----A---- C:\WINDOWS\system32\XpsPrint.dll
2017-04-19 20:04:28 ----A---- C:\WINDOWS\system32\XpsDocumentTargetPrint.dll
2017-04-19 20:04:28 ----A---- C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-04-19 20:04:28 ----A---- C:\WINDOWS\system32\quartz.dll
2017-04-19 20:04:28 ----A---- C:\WINDOWS\system32\ole32.dll
2017-04-19 20:04:28 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2017-04-19 20:04:28 ----A---- C:\WINDOWS\system32\msIso.dll
2017-04-19 20:04:28 ----A---- C:\WINDOWS\system32\mshtml.dll
2017-04-19 20:04:28 ----A---- C:\WINDOWS\system32\ieframe.dll
2017-04-19 20:04:28 ----A---- C:\WINDOWS\system32\gdi32full.dll
2017-04-19 20:04:28 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2017-04-19 20:04:28 ----A---- C:\WINDOWS\system32\edgehtml.dll
2017-04-19 20:04:28 ----A---- C:\WINDOWS\system32\atmlib.dll
2017-04-19 20:04:28 ----A---- C:\WINDOWS\system32\atmfd.dll
2017-04-19 20:04:28 ----A---- C:\WINDOWS\system32\asycfilt.dll
2017-04-19 20:04:27 ----A---- C:\WINDOWS\system32\WindowsCodecs.dll
2017-04-19 20:04:27 ----A---- C:\WINDOWS\system32\win32kfull.sys
2017-04-19 20:04:27 ----A---- C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-04-19 20:04:27 ----A---- C:\WINDOWS\system32\UpdateAgent.dll
2017-04-19 20:04:27 ----A---- C:\WINDOWS\system32\drivers\dxgmms1.sys
2017-04-19 20:04:27 ----A---- C:\WINDOWS\system32\drivers\dxgkrnl.sys
2017-04-19 20:04:27 ----A---- C:\WINDOWS\system32\drivers\BasicRender.sys
2017-04-19 20:04:27 ----A---- C:\WINDOWS\system32\browserbroker.dll
2017-04-19 20:04:27 ----A---- C:\WINDOWS\system32\audiosrv.dll
2017-04-19 20:04:27 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-04-19 20:01:56 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2017-04-19 19:58:59 ----D---- C:\WINDOWS\system32\Microsoft
2017-04-19 19:58:59 ----D---- C:\WINDOWS\ServiceProfiles
2017-04-19 19:52:30 ----ASH---- C:\hiberfil.sys
2017-04-19 19:52:11 ----D---- C:\WINDOWS\system32\XPSViewer
2017-04-19 19:52:11 ----D---- C:\WINDOWS\system32\msmq
2017-04-19 19:52:10 ----D---- C:\WINDOWS\system32\BestPractices
2017-04-19 19:52:06 ----D---- C:\Program Files\Reference Assemblies
2017-04-19 19:52:06 ----D---- C:\Program Files\MSBuild
2017-04-19 19:52:06 ----D---- C:\inetpub
2017-04-19 19:50:44 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2017-04-19 19:50:44 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2017-04-19 19:50:43 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2017-04-19 19:35:42 ----D---- C:\Program Files\Common Files\SpeechEngines
2017-04-19 19:28:57 ----D---- C:\ProgramData\USOShared
2017-04-19 19:28:18 ----SD---- C:\Users\Zubní ordinace\AppData\Roaming\Microsoft
2017-04-19 19:25:02 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2017-04-19 19:23:52 ----A---- C:\WINDOWS\system32\drivers\LNonPnP.sys
2017-04-19 19:23:36 ----A---- C:\WINDOWS\system32\nvsvcr.dll
2017-04-19 19:23:36 ----A---- C:\WINDOWS\system32\nvsvc.dll
2017-04-19 19:23:36 ----A---- C:\WINDOWS\system32\nvshext.dll
2017-04-19 19:23:36 ----A---- C:\WINDOWS\system32\nvmctray.dll
2017-04-19 19:23:36 ----A---- C:\WINDOWS\system32\nvcpl.dll
2017-04-19 19:23:36 ----A---- C:\WINDOWS\system32\nv3dappshextr.dll
2017-04-19 19:23:36 ----A---- C:\WINDOWS\system32\nv3dappshext.dll
2017-04-19 19:23:16 ----D---- C:\ProgramData\NVIDIA
2017-04-19 19:23:16 ----A---- C:\WINDOWS\NvContainerRecovery.bat
2017-04-19 19:23:13 ----HD---- C:\Program Files\Uninstall Information
2017-04-19 19:22:55 ----D---- C:\ProgramData\NVIDIA Corporation
2017-04-19 19:22:34 ----D---- C:\Program Files\NVIDIA Corporation
2017-04-19 19:21:17 ----D---- C:\WINDOWS\system32\DAX2
2017-04-19 19:20:35 ----D---- C:\Program Files\Realtek
2017-04-19 19:20:34 ----D---- C:\WINDOWS\system32\RTCOM
2017-04-19 19:19:38 ----AS---- C:\WINDOWS\bootstat.dat
2017-04-19 19:18:55 ----D---- C:\WINDOWS\Prefetch
2017-04-19 19:15:45 ----D---- C:\WINDOWS\system32\SleepStudy
2017-04-19 19:15:36 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
2017-04-19 17:48:55 ----DC---- C:\WINDOWS\Panther
2017-04-19 17:48:50 ----HD---- C:\$WINDOWS.~BT
2017-04-11 16:14:58 ----ASH---- C:\swapfile.sys
2017-04-11 16:14:58 ----ASH---- C:\pagefile.sys
2017-04-11 15:55:26 ----HD---- C:\$SysReset
2017-04-07 18:10:50 ----A---- C:\WINDOWS\progress.ini
2017-04-07 16:04:40 ----D---- C:\Windows10Upgrade
2017-04-06 20:06:21 ----A---- C:\WINDOWS\NvTelemetryContainerRecovery.bat
2017-04-06 19:55:02 ----A---- C:\WINDOWS\system32\nvStreaming.exe
2017-04-06 19:42:40 ----A---- C:\WINDOWS\system32\drivers\nvvhci.sys
2017-04-06 19:42:02 ----A---- C:\WINDOWS\system32\nvaudcap32v.dll
2017-04-06 19:42:02 ----A---- C:\WINDOWS\system32\drivers\nvvad32v.sys
2017-04-06 19:41:59 ----A---- C:\WINDOWS\system32\nvhdap32.dll
2017-04-06 19:41:59 ----A---- C:\WINDOWS\system32\nvhdagenco3220103.dll
2017-04-06 19:41:58 ----A---- C:\WINDOWS\system32\drivers\nvhda32v.sys
2017-04-06 19:41:51 ----A---- C:\WINDOWS\system32\nvptxJitCompiler.dll
2017-04-06 19:41:51 ----A---- C:\WINDOWS\system32\nvopencl.dll
2017-04-06 19:41:51 ----A---- C:\WINDOWS\system32\nvoglv32.dll
2017-04-06 19:41:50 ----A---- C:\WINDOWS\system32\NvIFROpenGL.dll
2017-04-06 19:41:50 ----A---- C:\WINDOWS\system32\NvIFR.dll
2017-04-06 19:41:49 ----A---- C:\WINDOWS\system32\NvFBC.dll
2017-04-06 19:41:49 ----A---- C:\WINDOWS\system32\nvfatbinaryLoader.dll
2017-04-06 19:41:49 ----A---- C:\WINDOWS\system32\nvEncodeAPI.dll
2017-04-06 19:41:49 ----A---- C:\WINDOWS\system32\nvEncMFTH264.dll
2017-04-06 19:41:49 ----A---- C:\WINDOWS\system32\nvdispgenco3238165.dll
2017-04-06 19:41:48 ----A---- C:\WINDOWS\system32\nvdispco3238165.dll
2017-04-06 19:41:48 ----A---- C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2017-04-06 19:41:48 ----A---- C:\WINDOWS\system32\nvcuvid.dll
2017-04-06 19:41:48 ----A---- C:\WINDOWS\system32\nvcuda.dll
2017-04-06 19:41:43 ----A---- C:\WINDOWS\system32\nvcompiler.dll
2017-04-06 19:41:43 ----A---- C:\WINDOWS\system32\nvapi.dll
2017-03-30 16:21:29 ----AD---- C:\Program Files\Common Files\Skype
======List of files/folders modified in the last 1 month======
2017-04-20 21:06:52 ----D---- C:\WINDOWS\Temp
2017-04-20 21:06:48 ----D---- C:\WINDOWS\System32
2017-04-20 21:06:45 ----D---- C:\WINDOWS\WinSxS
2017-04-20 21:06:35 ----D---- C:\WINDOWS\system32\catroot2
2017-04-20 21:06:20 ----D---- C:\WINDOWS\CbsTemp
2017-04-20 21:05:57 ----D---- C:\WINDOWS\INF
2017-04-20 21:05:53 ----SHD---- C:\System Volume Information
2017-04-20 21:05:17 ----RD---- C:\Program Files
2017-04-20 21:04:45 ----D---- C:\WINDOWS\system32\restore
2017-04-20 20:57:45 ----D---- C:\Users\Zubní ordinace\AppData\Roaming\Skype
2017-04-20 20:53:56 ----D---- C:\WINDOWS\system32\sru
2017-04-20 15:33:40 ----D---- C:\WINDOWS\system32\NDF
2017-04-20 15:24:45 ----SHD---- C:\WINDOWS\Installer
2017-04-20 15:16:17 ----D---- C:\WINDOWS\system32\Tasks
2017-04-20 15:10:50 ----D---- C:\WINDOWS\AppReadiness
2017-04-20 15:10:49 ----HD---- C:\Program Files\WindowsApps
2017-04-20 15:07:33 ----D---- C:\WINDOWS\Logs
2017-04-20 15:02:25 ----D---- C:\Program Files\Common Files\LogiShrd
2017-04-20 15:01:52 ----D---- C:\ProgramData\Logishrd
2017-04-20 15:00:58 ----D---- C:\WINDOWS\system32\DriverStore
2017-04-20 14:56:33 ----D---- C:\WINDOWS\system32\WDI
2017-04-20 14:55:46 ----D---- C:\WINDOWS\appcompat
2017-04-19 21:14:42 ----D---- C:\WINDOWS\Registration
2017-04-19 21:13:07 ----RD---- C:\WINDOWS\assembly
2017-04-19 21:08:10 ----RD---- C:\WINDOWS\Microsoft.NET
2017-04-19 20:39:46 ----HD---- C:\ProgramData
2017-04-19 20:33:52 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2017-04-19 20:29:08 ----HD---- C:\$GetCurrent
2017-04-19 20:22:21 ----D---- C:\WINDOWS\rescache
2017-04-19 20:20:27 ----D---- C:\Program Files\Windows NT
2017-04-19 20:19:24 ----D---- C:\WINDOWS\system32\WinBioDatabase
2017-04-19 20:19:08 ----D---- C:\WINDOWS\debug
2017-04-19 20:19:03 ----D---- C:\WINDOWS\SoftwareDistribution
2017-04-19 20:15:56 ----D---- C:\Windows
2017-04-19 20:14:42 ----RSD---- C:\WINDOWS\Fonts
2017-04-19 20:14:42 ----D---- C:\WINDOWS\system32\Tasks_Migrated
2017-04-19 20:08:53 ----D---- C:\WINDOWS\system32\LogFiles
2017-04-19 20:08:13 ----D---- C:\WINDOWS\Tasks
2017-04-19 20:06:39 ----SD---- C:\ProgramData\Microsoft
2017-04-19 20:06:05 ----D---- C:\WINDOWS\Media
2017-04-19 20:05:44 ----D---- C:\WINDOWS\system32\drivers\etc
2017-04-19 20:05:42 ----D---- C:\WINDOWS\system32\wbem
2017-04-19 20:00:21 ----D---- C:\WINDOWS\system32\config
2017-04-19 19:52:11 ----D---- C:\WINDOWS\system32\MUI
2017-04-19 19:52:11 ----D---- C:\WINDOWS\system32\inetsrv
2017-04-19 19:52:10 ----D---- C:\WINDOWS\System
2017-04-19 19:51:55 ----A---- C:\WINDOWS\system32\mqsnap.dll
2017-04-19 19:51:55 ----A---- C:\WINDOWS\system32\mqcertui.dll
2017-04-19 19:51:51 ----A---- C:\WINDOWS\system32\mqqm.dll
2017-04-19 19:51:51 ----A---- C:\WINDOWS\system32\mqoa.dll
2017-04-19 19:51:45 ----A---- C:\WINDOWS\system32\mqsvc.exe
2017-04-19 19:51:45 ----A---- C:\WINDOWS\system32\mqbkup.exe
2017-04-19 19:51:41 ----A---- C:\WINDOWS\system32\wamregps.dll
2017-04-19 19:51:41 ----A---- C:\WINDOWS\system32\iisRtl.dll
2017-04-19 19:51:41 ----A---- C:\WINDOWS\system32\iisrstap.dll
2017-04-19 19:51:41 ----A---- C:\WINDOWS\system32\iisreset.exe
2017-04-19 19:51:41 ----A---- C:\WINDOWS\system32\cngkeyhelper.dll
2017-04-19 19:51:41 ----A---- C:\WINDOWS\system32\ahadmin.dll
2017-04-19 19:51:41 ----A---- C:\WINDOWS\system32\admwprox.dll
2017-04-19 19:51:40 ----A---- C:\WINDOWS\system32\mqrt.dll
2017-04-19 19:51:38 ----A---- C:\WINDOWS\system32\typelib.dll
2017-04-19 19:51:38 ----A---- C:\WINDOWS\system32\storage.dll
2017-04-19 19:51:38 ----A---- C:\WINDOWS\system32\ole2nls.dll
2017-04-19 19:51:38 ----A---- C:\WINDOWS\system32\ole2disp.dll
2017-04-19 19:51:38 ----A---- C:\WINDOWS\system32\ole2.dll
2017-04-19 19:51:38 ----A---- C:\WINDOWS\system32\compobj.dll
2017-04-19 19:51:36 ----A---- C:\WINDOWS\system32\win.com
2017-04-19 19:51:36 ----A---- C:\WINDOWS\system32\ver.dll
2017-04-19 19:51:36 ----A---- C:\WINDOWS\system32\USER.EXE
2017-04-19 19:51:36 ----A---- C:\WINDOWS\system32\TOOLHELP.DLL
2017-04-19 19:51:36 ----A---- C:\WINDOWS\system32\pmspl.dll
2017-04-19 19:51:36 ----A---- C:\WINDOWS\system32\OLESVR.DLL
2017-04-19 19:51:36 ----A---- C:\WINDOWS\system32\ntvdmd.dll
2017-04-19 19:51:36 ----A---- C:\WINDOWS\system32\ntvdm.exe
2017-04-19 19:51:36 ----A---- C:\WINDOWS\system32\mem.exe
2017-04-19 19:51:36 ----A---- C:\WINDOWS\system32\lzexpand.dll
2017-04-19 19:51:36 ----A---- C:\WINDOWS\system32\KB16.COM
2017-04-19 19:51:36 ----A---- C:\WINDOWS\system32\GRAPHICS.COM
2017-04-19 19:51:36 ----A---- C:\WINDOWS\system32\GDI.EXE
2017-04-19 19:51:36 ----A---- C:\WINDOWS\system32\edit.com
2017-04-19 19:51:36 ----A---- C:\WINDOWS\system32\debug.exe
2017-04-19 19:51:36 ----A---- C:\WINDOWS\system32\DDEML.DLL
2017-04-19 19:51:35 ----A---- C:\WINDOWS\winhelp.exe
2017-04-19 19:51:35 ----A---- C:\WINDOWS\system32\WINNLS.DLL
2017-04-19 19:51:35 ----A---- C:\WINDOWS\system32\win87em.dll
2017-04-19 19:51:35 ----A---- C:\WINDOWS\system32\WIFEMAN.DLL
2017-04-19 19:51:35 ----A---- C:\WINDOWS\system32\vdmredir.dll
2017-04-19 19:51:35 ----A---- C:\WINDOWS\system32\sysedit.exe
2017-04-19 19:51:35 ----A---- C:\WINDOWS\system32\SHELL.DLL
2017-04-19 19:51:35 ----A---- C:\WINDOWS\system32\setver.exe
2017-04-19 19:51:35 ----A---- C:\WINDOWS\system32\olecli.dll
2017-04-19 19:51:35 ----A---- C:\WINDOWS\system32\nlsfunc.exe
2017-04-19 19:51:35 ----A---- C:\WINDOWS\system32\netapi.dll
2017-04-19 19:51:35 ----A---- C:\WINDOWS\system32\mqlogmgr.dll
2017-04-19 19:51:35 ----A---- C:\WINDOWS\system32\MMSYSTEM.DLL
2017-04-19 19:51:35 ----A---- C:\WINDOWS\system32\krnl386.exe
2017-04-19 19:51:35 ----A---- C:\WINDOWS\system32\graftabl.com
2017-04-19 19:51:35 ----A---- C:\WINDOWS\system32\exe2bin.exe
2017-04-19 19:51:35 ----A---- C:\WINDOWS\system32\edlin.exe
2017-04-19 19:51:35 ----A---- C:\WINDOWS\system32\DRWATSON.EXE
2017-04-19 19:51:35 ----A---- C:\WINDOWS\system32\dosx.exe
2017-04-19 19:51:35 ----A---- C:\WINDOWS\system32\ctl3dv2.dll
2017-04-19 19:51:35 ----A---- C:\WINDOWS\system32\COMMDLG.DLL
2017-04-19 19:51:35 ----A---- C:\WINDOWS\system32\COMMAND.COM
2017-04-19 19:51:35 ----A---- C:\WINDOWS\system32\append.exe
2017-04-19 19:51:33 ----A---- C:\WINDOWS\system32\mqutil.dll
2017-04-19 19:51:18 ----D---- C:\WINDOWS\system32\drivers
2017-04-19 19:51:13 ----D---- C:\WINDOWS\ModemLogs
2017-04-19 19:51:13 ----D---- C:\WINDOWS\LiveKernelReports
2017-04-19 19:51:09 ----SD---- C:\WINDOWS\Downloaded Program Files
2017-04-19 19:39:47 ----D---- C:\WINDOWS\twain_32
2017-04-19 19:39:47 ----D---- C:\WINDOWS\system32\zh-HK
2017-04-19 19:39:41 ----D---- C:\WINDOWS\system32\SPReview
2017-04-19 19:39:39 ----D---- C:\WINDOWS\system32\spool
2017-04-19 19:39:27 ----D---- C:\WINDOWS\system32\migration
2017-04-19 19:39:26 ----D---- C:\WINDOWS\system32\IME
2017-04-19 19:39:25 ----D---- C:\WINDOWS\system32\EventProviders
2017-04-19 19:39:21 ----D---- C:\WINDOWS\system32\en-US
2017-04-19 19:39:20 ----D---- C:\WINDOWS\system32\drivers\cs-CZ
2017-04-19 19:39:14 ----D---- C:\WINDOWS\system32\cs-CZ
2017-04-19 19:38:39 ----D---- C:\WINDOWS\system32\appmgmt
2017-04-19 19:38:22 ----D---- C:\WINDOWS\schemas
2017-04-19 19:38:20 ----D---- C:\WINDOWS\Resources
2017-04-19 19:38:18 ----D---- C:\WINDOWS\PolicyDefinitions
2017-04-19 19:38:15 ----D---- C:\WINDOWS\OCR
2017-04-19 19:36:29 ----D---- C:\WINDOWS\Help
2017-04-19 19:36:29 ----D---- C:\WINDOWS\ehome
2017-04-19 19:36:27 ----RD---- C:\Users
2017-04-19 19:36:00 ----SHD---- C:\Program Files\Windows Sidebar
2017-04-19 19:35:59 ----D---- C:\Program Files\Windows Mail
2017-04-19 19:35:44 ----D---- C:\Program Files\Microsoft Games
2017-04-19 19:35:42 ----D---- C:\Program Files\Common Files
2017-04-19 19:35:41 ----D---- C:\Program Files\Common Files\microsoft shared
2017-04-19 19:34:49 ----HD---- C:\WINDOWS\system32\GroupPolicy
2017-04-19 19:34:13 ----D---- C:\WINDOWS\system32\Recovery
2017-04-19 19:29:00 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2017-04-19 19:28:58 ----D---- C:\ProgramData\USOPrivate
2017-04-19 19:26:06 ----D---- C:\WINDOWS\system32\CodeIntegrity
2017-04-19 19:24:10 ----D---- C:\WINDOWS\system32\Sysprep
2017-04-19 19:23:18 ----D---- C:\Temp
2017-04-19 18:24:45 ----RASH---- C:\BOOTSECT.BAK
2017-04-19 18:24:37 ----SHD---- C:\Boot
2017-04-11 21:23:54 ----AD---- C:\Program Files\Microsoft Silverlight
2017-04-11 21:21:31 ----D---- C:\WINDOWS\system32\sr-Latn-CS
2017-04-11 19:49:21 ----D---- C:\WINDOWS\system32\MRT
2017-04-11 19:43:55 ----AC---- C:\WINDOWS\system32\MRT.exe
2017-04-11 17:25:28 ----D---- C:\Jucmila
2017-04-08 15:45:35 ----A---- C:\WINDOWS\system32\MpSigStub.exe
2017-04-06 19:53:55 ----D---- C:\Program Files\VulkanRT
2017-04-03 18:56:16 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2017-04-01 05:19:27 ----A---- C:\WINDOWS\system32\nvspcap.dll
2017-04-01 05:19:27 ----A---- C:\WINDOWS\system32\nvspbridge.dll
2017-04-01 05:19:27 ----A---- C:\WINDOWS\system32\NvRtmpStreamer32.dll
2017-03-30 17:11:35 ----AD---- C:\Program Files\TeamViewer
2017-03-30 16:21:46 ----D---- C:\ProgramData\Skype
2017-03-30 16:21:32 ----RD---- C:\Program Files\Skype
2017-03-30 16:20:10 ----D---- C:\ProgramData\Package Cache
File C:\WINDOWS\system32\winlogon.exe is digitally signed
File C:\WINDOWS\system32\wininit.exe is digitally signed
File C:\WINDOWS\explorer.exe is digitally signed
File C:\WINDOWS\system32\svchost.exe is digitally signed
File C:\WINDOWS\system32\services.exe is digitally signed
File C:\WINDOWS\system32\User32.dll is digitally signed
File C:\WINDOWS\system32\userinit.exe is digitally signed
File C:\WINDOWS\system32\rpcss.dll is digitally signed
File C:\WINDOWS\system32\Drivers\volsnap.sys is digitally signed
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-101; C:\WINDOWS\system32\drivers\iorate.sys [2017-03-18 41880]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2017-03-18 11776]
R2 DgiVecp;Team MFP Comm Driver; C:\WINDOWS\System32\Drivers\DgiVecp.sys [2004-08-11 41984]
R2 Parvdm;Parvdm; C:\WINDOWS\System32\drivers\parvdm.sys [2017-03-18 9216]
R2 SSPORT;SSPORT; \??\C:\Windows\system32\Drivers\SSPORT.sys [2009-03-02 5120]
R3 MQAC;@mqutil.dll,-6101; C:\WINDOWS\system32\drivers\mqac.sys [2017-04-19 127488]
R3 MTsensor;@oem18.inf,%ASACPI.DisplayName%;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 netr28u;@netr28u.inf,%Generic.Service.DispName%;RT2870 USB Extensible Wireless LAN Card Driver; C:\WINDOWS\System32\drivers\netr28u.sys [2017-03-18 1824256]
R3 NVHDA;@oem31.inf,%NVHDA.SvcDesc%;Service for NVIDIA High Definition Audio Driver; C:\WINDOWS\system32\drivers\nvhda32v.sys [2017-04-02 184880]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_x86_61e5fa7907ff8ca4\nvlddmkm.sys [2017-04-03 12823096]
R3 nvvad_WaveExtensible;@oem36.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad32v.sys [2017-04-01 60976]
R3 nvvhci;@oem20.inf,%ServiceDesc%;NVVHCI Enumerator Service; C:\WINDOWS\System32\drivers\nvvhci.sys [2017-04-01 69160]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2017-03-18 56736]
S2 CldFlt;Windows Cloud Files Filter Driver; C:\WINDOWS\system32\drivers\cldflt.sys [2017-03-18 9728]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2017-03-18 13312]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2017-03-18 13312]
S3 AppvStrm;@%systemroot%\system32\drivers\AppvStrm.sys,-101; C:\WINDOWS\system32\drivers\AppvStrm.sys [2017-03-19 93088]
S3 AppvVemgr;@%systemroot%\system32\drivers\AppvVemgr.sys,-101; C:\WINDOWS\system32\drivers\AppvVemgr.sys [2017-03-19 118168]
S3 AppvVfs;@%systemroot%\system32\drivers\AppvVfs.sys,-101; C:\WINDOWS\system32\drivers\AppvVfs.sys [2017-03-19 109472]
S3 CAD;@ChargeArbitration.inf,%CAD_DevDesc%;Charge Arbitration Driver; C:\WINDOWS\System32\drivers\CAD.sys [2017-03-18 45472]
S3 GPIO;@iaiogpio.inf,%GPIO.SVCDESC%;Intel SoC GPIO Controller Driver; C:\WINDOWS\System32\drivers\iaiogpio.sys [2017-03-18 22016]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2017-03-18 25600]
S3 iaioi2c;@iaioi2c.inf,%Driver_Service.Desc%;Intel(R) Atom(TM) Processor I2C Controller Service; C:\WINDOWS\System32\drivers\iaioi2c.sys [2017-03-18 61936]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2017-03-18 29184]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2017-03-18 92672]
S3 LEqdUsb;@oem6.inf,%FltDisplayName%;Logitech SetPoint Unifying KMDF USB Filter; C:\WINDOWS\System32\Drivers\LEqdUsb.Sys [2015-06-18 52368]
S3 LHidEqd;@oem8.inf,%FltDisplayName%;Logitech SetPoint Unifying KMDF HID Filter; C:\WINDOWS\System32\Drivers\LHidEqd.Sys [2015-06-18 20240]
S3 LHidFilt;@oem5.inf,%LHidFilt.SvcDesc%;Logitech SetPoint KMDF HID Filter Driver; C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys [2015-06-18 53904]
S3 LMouFilt;@oem5.inf,%LMouFilt.SvcDesc%;Logitech SetPoint KMDF Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys [2015-06-18 47632]
S3 LUsbFilt;Logitech SetPoint KMDF USB Filter; C:\WINDOWS\System32\Drivers\LUsbFilt.Sys [2015-06-18 38416]
S3 mausbhost;@mausbhost.inf,%MAUSBHost.ServiceName%;MA-USB Host Controller Driver; C:\WINDOWS\System32\drivers\mausbhost.sys [2017-03-18 331680]
S3 mausbip;@mausbhost.inf,%MAUSBIP.ServiceName%;MA-USB IP Filter Driver; C:\WINDOWS\System32\drivers\mausbip.sys [2017-03-18 38816]
S3 MsSecFlt;@%SystemRoot%\System32\Drivers\mssecflt.sys,-1001; C:\WINDOWS\system32\drivers\mssecflt.sys [2017-03-19 200608]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2017-03-18 83456]
S3 netvsc;netvsc; C:\WINDOWS\System32\drivers\netvsc.sys [2017-03-18 90624]
S3 NvStreamKms;NVIDIA KMS; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2017-04-01 27704]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\WINDOWS\system32\drivers\tsusbhub.sys [2017-03-19 89600]
S3 UcmTcpciCx0101;UCM-TCPCI KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmTcpciCx.sys [2017-03-18 121856]
S4 UevAgentDriver;@%systemroot%\system32\drivers\UevAgentDriver.sys,-101; C:\WINDOWS\system32\drivers\UevAgentDriver.sys [2017-03-19 35232]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; %windir%\system32\svchost.exe -k apphost;"ServiceDll"=%windir%\system32\inetsrv\apphostsvc.dll
R2 DusmSvc;@%SystemRoot%\System32\dusmsvc.dll,-1; %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll"=%SystemRoot%\System32\dusmsvc.dll
R2 MSMQ;@mqutil.dll,-6102; C:\WINDOWS\system32\mqsvc.exe [2017-04-19 24576]
R2 NvContainerLocalSystem;NVIDIA LocalSystem Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-04-01 427064]
R2 NVDisplay.ContainerLocalSystem;NVIDIA Display Container LS; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [2017-04-01 425408]
R2 NvTelemetryContainer;NVIDIA Telemetry Container; C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [2017-04-01 427064]
R2 OneSyncSvc_73a09a;Hostitel synchronizace_73a09a; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
R2 ProtexisLicensing;ProtexisLicensing; C:\Windows\system32\PSIService.exe [2007-06-05 177704]
R2 SecurityHealthService;@%systemroot%\system32\SecurityHealthAgent.dll,-1002; C:\WINDOWS\system32\SecurityHealthService.exe [2017-03-18 259352]
R2 TeamViewer;TeamViewer 12; C:\Program Files\TeamViewer\TeamViewer_Service.exe [2017-03-17 10883824]
R3 PimIndexMaintenanceSvc_73a09a;Data kontaktů_73a09a; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
R3 TimeBrokerSvc;@%windir%\system32\TimeBrokerServer.dll,-1001; %SystemRoot%\system32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll"=%SystemRoot%\System32\TimeBrokerServer.dll
R3 TokenBroker;@%systemroot%\system32\tokenbroker.dll,-100; %SystemRoot%\system32\svchost.exe -k netsvcs;"ServiceDll"=%SystemRoot%\System32\TokenBroker.dll
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; %SystemRoot%\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=%SystemRoot%\System32\CDPUserSvc.dll
S2 CDPUserSvc_73a09a;Uživatelská služba platformy připojených zařízení_73a09a; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
S2 NetMsmqActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8195; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2017-03-18 136360]
S2 NetPipeActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8197; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2017-03-18 136360]
S2 NetTcpActivator;@%systemroot%\Microsoft.NET\Framework\v4.0.30319\ServiceModelInstallRC.dll,-8199; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2017-03-18 136360]
S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe -k HPZ12;"ServiceDll"=C:\Windows\system32\HPZipm12.dll
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2017-02-27 317400]
S3 aspnet_state;@%SystemRoot%\Microsoft.NET\Framework\v4.0.30319\aspnet_rc.dll,-1; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2017-03-18 47288]
S3 DevicesFlowUserSvc;@%SystemRoot%\system32\DevicesFlowBroker.dll,-103; %SystemRoot%\system32\svchost.exe -k DevicesFlow;"ServiceDll"=%SystemRoot%\System32\DevicesFlowBroker.dll
S3 DevicesFlowUserSvc_73a09a;Tok zařízení_73a09a; C:\WINDOWS\system32\svchost.exe -k DevicesFlow;"ServiceDll"=
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2017-02-10 43696]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; %SystemRoot%\System32\svchost.exe -k Camera;"ServiceDll"=%SystemRoot%\system32\FrameServer.dll
S3 IpxlatCfgSvc;@%Systemroot%\system32\ipxlatcfg.dll,-500; %SystemRoot%\System32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll"=%SystemRoot%\System32\IpxlatCfg.dll
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll"=%SystemRoot%\System32\irmon.dll
S3 MessagingService_73a09a;Služba zasílání zpráv_73a09a; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
S3 NaturalAuthentication;@%systemroot%\system32\NaturalAuth.dll,-100; %SystemRoot%\system32\svchost.exe -k netsvcs;"ServiceDll"=%SystemRoot%\System32\NaturalAuth.dll
S3 NvContainerNetworkService;NVIDIA NetworkService Container; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [2017-04-01 427064]
S3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll"=%SystemRoot%\System32\RMapi.dll
S3 SEMgrSvc;@%SystemRoot%\System32\SEMgrSvc.dll,-1001; %SystemRoot%\system32\svchost.exe -k LocalService;"ServiceDll"=%SystemRoot%\system32\SEMgrSvc.dll
S3 Sense;@%ProgramFiles%\Windows Defender Advanced Threat Protection\MsSense.exe,-1001; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2017-03-19 2545848]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2013-04-18 737616]
S3 spectrum;@%systemroot%\system32\spectrum.exe,-101; C:\WINDOWS\system32\spectrum.exe [2017-03-18 607744]
S4 AppVClient;@%systemroot%\system32\AppVClient.exe,-102; C:\WINDOWS\system32\AppVClient.exe [2017-03-19 649632]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; %SystemRoot%\System32\svchost.exe -k netsvcs;"ServiceDll"=%systemroot%\system32\Windows.SharedPC.AccountManager.dll
S4 UevAgentService;@%systemroot%\system32\AgentService.exe,-102; C:\WINDOWS\system32\AgentService.exe [2017-03-19 841728]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Velice zpomalený počítač
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Velice zpomalený počítač
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Velice zpomalený počítač
# AdwCleaner v6.045 - Log vytvořen 21/04/2017 v 15:21:22
# Aktualizováno dne 28/03/2017 z Malwarebytes
# Databáze : 2017-04-21.1 [Server]
# Operační systém : Windows 10 Pro (X86)
# Uživatelské jméno : Zubní ordinace - NEUŽIL
# Spuštěno z : C:\Users\Zubní ordinace\Desktop\adwcleaner_6.045.exe
# Mod: Čištění
# Podpora : https://www.malwarebytes.com/support
***** [ Služby ] *****
***** [ Složky ] *****
***** [ Soubory ] *****
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Zástupci ] *****
***** [ Naplánované úlohy ] *****
***** [ Registry ] *****
[#] Klíč smazán po restartu: HKLM\SOFTWARE\Classes\SelectionLinksv4.SelectionLinksBHO
[#] Klíč smazán po restartu: HKLM\SOFTWARE\Classes\SelectionLinksv4.SelectionLinksBHO.1
[-] Klíč smazán: HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-643618162-1430922922-3350028935-1001\Software\ShopperPro3
[#] Klíč smazán po restartu: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\knihovnice.cz
[#] Klíč smazán po restartu: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\levneucebnice.cz
[#] Klíč smazán po restartu: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\slunecnice.cz
[#] Klíč smazán po restartu: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.knihovnice.cz
[#] Klíč smazán po restartu: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.slunecnice.cz
[-] Klíč smazán: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\foxi69.tlscdn.com
[-] Klíč smazán: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\slunecnice.cz
[-] Klíč smazán: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\tlscdn.com
[-] Klíč smazán: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.slunecnice.cz
***** [ Prohlížeče ] *****
*************************
:: "Tracing" klíče smazány
:: Winsock nastavení vyčištěno
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [2069 Bajty] - [21/04/2017 15:21:22]
C:\AdwCleaner\AdwCleaner[S0].txt - [2452 Bajty] - [21/04/2017 15:20:24]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [2215 Bajty] ##########
# Aktualizováno dne 28/03/2017 z Malwarebytes
# Databáze : 2017-04-21.1 [Server]
# Operační systém : Windows 10 Pro (X86)
# Uživatelské jméno : Zubní ordinace - NEUŽIL
# Spuštěno z : C:\Users\Zubní ordinace\Desktop\adwcleaner_6.045.exe
# Mod: Čištění
# Podpora : https://www.malwarebytes.com/support
***** [ Služby ] *****
***** [ Složky ] *****
***** [ Soubory ] *****
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Zástupci ] *****
***** [ Naplánované úlohy ] *****
***** [ Registry ] *****
[#] Klíč smazán po restartu: HKLM\SOFTWARE\Classes\SelectionLinksv4.SelectionLinksBHO
[#] Klíč smazán po restartu: HKLM\SOFTWARE\Classes\SelectionLinksv4.SelectionLinksBHO.1
[-] Klíč smazán: HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-643618162-1430922922-3350028935-1001\Software\ShopperPro3
[#] Klíč smazán po restartu: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\knihovnice.cz
[#] Klíč smazán po restartu: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\levneucebnice.cz
[#] Klíč smazán po restartu: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\slunecnice.cz
[#] Klíč smazán po restartu: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.knihovnice.cz
[#] Klíč smazán po restartu: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.slunecnice.cz
[-] Klíč smazán: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\foxi69.tlscdn.com
[-] Klíč smazán: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\slunecnice.cz
[-] Klíč smazán: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\tlscdn.com
[-] Klíč smazán: HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.slunecnice.cz
***** [ Prohlížeče ] *****
*************************
:: "Tracing" klíče smazány
:: Winsock nastavení vyčištěno
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [2069 Bajty] - [21/04/2017 15:21:22]
C:\AdwCleaner\AdwCleaner[S0].txt - [2452 Bajty] - [21/04/2017 15:20:24]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [2215 Bajty] ##########
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Velice zpomalený počítač
Teď dejte log FRST: http://forum.viry.cz/viewtopic.php?f=13&t=133100 .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Velice zpomalený počítač
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 20-04-2017
Ran by Zubnà ordinace (administrator) on NEUŽIL (21-04-2017 18:04:34)
Running from C:\Users\ZubnĂ ordinace\Desktop
Loaded Profiles: ZubnĂ ordinace (Available Profiles: ZubnĂ ordinace)
Platform: Microsoft Windows 10 Pro Version 1703 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
() C:\Windows\System32\PSIService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation) C:\Windows\System32\SecurityHealthService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Daniel Redlich Software) C:\DosPrint\DOSPRINT.EXE
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Node.js) C:\Program Files\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Skype Technologies) C:\Program Files\Skype\Browser\SkypeBrowserHost.exe
(Skype Technologies) C:\Program Files\Skype\Browser\SkypeBrowserHost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\Windows Live\Mail\wlmail.exe
(Microsoft Corporation) C:\Program Files\Windows Live\Contacts\wlcomm.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11701.1001.99.0_x86__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Windows\System32\cleanmgr.exe
(Microsoft Corporation) C:\Users\ZubnĂ ordinace\AppData\Local\Temp\BCE1266F-287B-4C9E-9802-F86C3AAF5B93\DismHost.exe
(Microsoft Corporation) C:\Windows\WinSxS\x86_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.15063.0_none_be549efe47bbc296\TiWorker.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(forum.viry.cz) C:\Users\ZubnĂ ordinace\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [485280 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [12214528 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [DOSPRINT] => C:\DosPrint\DOSPRINT.EXE [1059328 2005-10-03] (Daniel Redlich Software)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation)
HKU\S-1-5-21-643618162-1430922922-3350028935-1001\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [27545048 2017-03-14] (Skype Technologies S.A.)
HKU\S-1-5-21-643618162-1430922922-3350028935-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\ZubnĂ ordinace\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_2\FileSyncShell.dll [2017-04-20] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\ZubnĂ ordinace\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_2\FileSyncShell.dll [2017-04-20] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\ZubnĂ ordinace\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_2\FileSyncShell.dll [2017-04-20] (Microsoft Corporation)
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
CHR HKU\S-1-5-21-643618162-1430922922-3350028935-1001\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{4de809f9-fe8b-4e6e-ade1-6df00bbff52b}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{a9b87af4-b5c7-42c1-bd3c-83e0ee408983}: [DhcpNameServer] 10.0.0.138
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-643618162-1430922922-3350028935-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/
SearchScopes: HKLM -> {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-643618162-1430922922-3350028935-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKU\S-1-5-21-643618162-1430922922-3350028935-1001 -> {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_131\bin\ssv.dll [2017-04-21] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-04-21] (Oracle Corporation)
Toolbar: HKU\S-1-5-21-643618162-1430922922-3350028935-1001 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} hxxp://download.eset.com/special/eos/OnlineScanner.cab
DPF: {D8950D0E-FCE7-4AE4-9370-7E4CFBC04362} hxxps://eportal.cssz.cz/fas/page/activexcab/webff_cs.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2017-01-01] (Skype Technologies)
Edge:
======
Edge HomeButtonPage: HKU\S-1-5-21-643618162-1430922922-3350028935-1001 -> hxxp://www.seznam.cz/
Edge Extension: (Adblock Plus) -> 10_EyeoGmbHAdblockPlus_d55gg7py3s0m0 => C:\Program Files\WindowsApps\EyeoGmbH.AdblockPlus_0.9.9.0_neutral__d55gg7py3s0m0 [2016-10-28]
FireFox:
========
FF HKLM\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt => not found
FF Plugin: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-04-21] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-04-21] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50906.0\npctrl.dll [2017-03-09] ( Microsoft Corporation)
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-04-01] (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-04-01] (NVIDIA Corporation)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-05] (Adobe Systems Inc.)
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 DevicesFlowUserSvc; C:\WINDOWS\System32\DevicesFlowBroker.dll [517120 2017-03-18] (Microsoft Corporation)
S3 DevicesFlowUserSvc_3cec3; C:\WINDOWS\system32\svchost.exe [40904 2017-03-18] (Microsoft Corporation)
R2 DusmSvc; C:\WINDOWS\System32\dusmsvc.dll [212480 2017-03-18] (Microsoft Corporation)
S3 IpxlatCfgSvc; C:\WINDOWS\System32\IpxlatCfg.dll [52224 2017-03-18] (Microsoft Corporation)
S3 NaturalAuthentication; C:\WINDOWS\System32\NaturalAuth.dll [247296 2017-03-18] (Microsoft Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [427064 2017-04-01] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [427064 2017-04-01] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [425408 2017-04-01] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [427064 2017-04-01] (NVIDIA Corporation)
R2 ProtexisLicensing; C:\Windows\system32\PSIService.exe [177704 2007-06-05] ()
R2 SecurityHealthService; C:\WINDOWS\system32\SecurityHealthService.exe [259352 2017-03-18] (Microsoft Corporation)
S3 SEMgrSvc; C:\WINDOWS\system32\SEMgrSvc.dll [966144 2017-03-18] (Microsoft Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2545848 2017-03-19] (Microsoft Corporation)
S3 spectrum; C:\WINDOWS\system32\spectrum.exe [607744 2017-03-18] (Microsoft Corporation)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [10883824 2017-03-17] (TeamViewer GmbH)
R3 TokenBroker; C:\WINDOWS\System32\TokenBroker.dll [799232 2017-03-18] (Microsoft Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [265352 2017-03-18] (Microsoft Corporation)
S3 WFDSConMgrSvc; C:\WINDOWS\System32\wfdsconmgrsvc.dll [388608 2017-03-18] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [82488 2017-03-18] (Microsoft Corporation)
S3 wlpasvc; C:\WINDOWS\System32\lpasvc.dll [842752 2017-03-18] (Microsoft Corporation)
S3 xbgm; C:\WINDOWS\System32\xbgmsvc.dll [224248 2017-03-18] (Microsoft Corporation)
S3 XboxGipSvc; C:\WINDOWS\System32\XboxGipSvc.dll [15360 2017-03-18] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 athur; C:\WINDOWS\System32\drivers\athur.sys [1500160 2010-01-05] (Atheros Communications, Inc.)
S3 CAD; C:\WINDOWS\System32\drivers\CAD.sys [45472 2017-03-18] (Microsoft Corporation)
S2 CldFlt; C:\WINDOWS\System32\drivers\cldflt.sys [9728 2017-03-18] (Microsoft Corporation)
R2 DgiVecp; C:\WINDOWS\System32\Drivers\DgiVecp.sys [41984 2004-08-11] (Samsung Electronics Co., Ltd.) [File not signed]
S3 LEqdUsb; C:\WINDOWS\System32\Drivers\LEqdUsb.Sys [52368 2015-06-18] (Logitech, Inc.)
S3 LHidEqd; C:\WINDOWS\System32\Drivers\LHidEqd.Sys [20240 2015-06-18] (Logitech, Inc.)
S3 LUsbFilt; C:\WINDOWS\System32\Drivers\LUsbFilt.Sys [38416 2015-06-18] (Logitech, Inc.)
S3 mausbhost; C:\WINDOWS\System32\drivers\mausbhost.sys [331680 2017-03-18] (Microsoft Corporation)
S3 mausbip; C:\WINDOWS\System32\drivers\mausbip.sys [38816 2017-03-18] (Microsoft Corporation)
R3 MTsensor; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [5810 2004-08-13] ()
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [83456 2017-03-18] (Microsoft Corporation)
R3 netr28u; C:\WINDOWS\System32\drivers\netr28u.sys [1824256 2017-03-18] (MediaTek Inc.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_x86_61e5fa7907ff8ca4\nvlddmkm.sys [12823096 2017-04-03] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27704 2017-04-01] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad32v.sys [60976 2017-04-01] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [69160 2017-04-01] (NVIDIA Corporation)
R2 SSPORT; C:\Windows\system32\Drivers\SSPORT.sys [5120 2009-03-02] (Samsung Electronics) [File not signed]
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [37464 2017-03-18] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [243104 2017-03-18] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [96672 2017-03-18] (Microsoft Corporation)
S3 WinNat; C:\WINDOWS\System32\drivers\winnat.sys [174080 2017-03-18] (Microsoft Corporation)
R3 yukonw8; C:\WINDOWS\System32\drivers\yk63x86.sys [242688 2017-03-18] (Marvell)
U3 idsvc; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
NETSVC: XboxGipSvc -> C:\Windows\System32\XboxGipSvc.dll (Microsoft Corporation)
NETSVC: NaturalAuthentication -> C:\Windows\System32\NaturalAuth.dll (Microsoft Corporation)
NETSVC: TokenBroker -> C:\Windows\System32\TokenBroker.dll (Microsoft Corporation)
NETSVC: xbgm -> C:\Windows\System32\xbgmsvc.dll (Microsoft Corporation)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-04-21 18:04 - 2017-04-21 18:04 - 00014106 _____ C:\Users\ZubnĂ ordinace\Desktop\FRST.txt
2017-04-21 18:03 - 2017-04-21 18:04 - 00000000 ____D C:\FRST
2017-04-21 16:42 - 2017-04-21 16:42 - 01766912 _____ (Farbar) C:\Users\ZubnĂ ordinace\Desktop\FRST.exe
2017-04-21 16:41 - 2017-04-21 16:41 - 00112640 _____ (forum.viry.cz) C:\Users\ZubnĂ ordinace\Desktop\FRSTLauncher.exe
2017-04-21 15:36 - 2017-04-21 15:36 - 00000000 ____D C:\Program Files\Common Files\Java
2017-04-21 15:33 - 2017-04-21 15:33 - 00002297 _____ C:\Users\ZubnĂ ordinace\Desktop\AdwCleaner[C0].txt
2017-04-21 15:14 - 2017-04-21 15:21 - 00000000 ____D C:\AdwCleaner
2017-04-21 15:12 - 2017-04-21 15:13 - 04089296 _____ C:\Users\ZubnĂ ordinace\Desktop\adwcleaner_6.045.exe
2017-04-20 21:20 - 2017-04-20 21:21 - 00000000 ___HD C:\$WINDOWS.~BT
2017-04-20 21:05 - 2017-04-20 21:07 - 00000000 ____D C:\rsit
2017-04-20 21:05 - 2017-04-20 21:06 - 00000000 ____D C:\Program Files\trend micro
2017-04-20 14:59 - 2017-04-20 14:59 - 00000000 ____D C:\Users\ZubnĂ ordinace\AppData\Roaming\sp6_log
2017-04-19 20:39 - 2017-04-19 20:39 - 00000000 ____D C:\Users\ZubnĂ ordinace\AppData\Local\DBG
2017-04-19 20:39 - 2017-04-19 20:39 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2017-04-19 20:31 - 2017-04-20 20:54 - 00000270 __RSH C:\Users\ZubnĂ ordinace\ntuser.pol
2017-04-19 20:31 - 2017-04-19 20:31 - 00000020 ___SH C:\Users\ZubnĂ ordinace\ntuser.ini
2017-04-19 20:31 - 2017-04-19 20:31 - 00000000 ____D C:\Users\ZubnĂ ordinace\AppData\Local\ConnectedDevicesPlatform
2017-04-19 20:15 - 2017-04-20 21:21 - 00001908 _____ C:\WINDOWS\diagwrn.xml
2017-04-19 20:15 - 2017-04-20 21:21 - 00001908 _____ C:\WINDOWS\diagerr.xml
2017-04-19 20:08 - 2017-04-21 15:23 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-04-19 20:05 - 2017-04-19 20:05 - 00000000 ____D C:\Windows.old
2017-04-19 20:04 - 2017-04-19 20:04 - 20505600 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-04-19 20:04 - 2017-04-19 20:04 - 19334144 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-04-19 20:04 - 2017-04-19 20:04 - 11869696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-04-19 20:04 - 2017-04-19 20:04 - 06756920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-04-19 20:04 - 2017-04-19 20:04 - 06296064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-04-19 20:04 - 2017-04-19 20:04 - 05862296 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-04-19 20:04 - 2017-04-19 20:04 - 02957824 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-04-19 20:04 - 2017-04-19 20:04 - 02023320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-04-19 20:04 - 2017-04-19 20:04 - 01520032 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2017-04-19 20:04 - 2017-04-19 20:04 - 01518088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2017-04-19 20:04 - 2017-04-19 20:04 - 01506816 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2017-04-19 20:04 - 2017-04-19 20:04 - 01432296 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2017-04-19 20:04 - 2017-04-19 20:04 - 01127936 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-04-19 20:04 - 2017-04-19 20:04 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2017-04-19 20:04 - 2017-04-19 20:04 - 00986592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2017-04-19 20:04 - 2017-04-19 20:04 - 00626520 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2017-04-19 20:04 - 2017-04-19 20:04 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-04-19 20:04 - 2017-04-19 20:04 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2017-04-19 20:04 - 2017-04-19 20:04 - 00364032 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2017-04-19 20:04 - 2017-04-19 20:04 - 00357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-04-19 20:04 - 2017-04-19 20:04 - 00341920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2017-04-19 20:04 - 2017-04-19 20:04 - 00311192 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2017-04-19 20:04 - 2017-04-19 20:04 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsDocumentTargetPrint.dll
2017-04-19 20:04 - 2017-04-19 20:04 - 00169376 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-04-19 20:04 - 2017-04-19 20:04 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-04-19 20:04 - 2017-04-19 20:04 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmjpegdec.dll
2017-04-19 20:04 - 2017-04-19 20:04 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2017-04-19 20:04 - 2017-04-19 20:04 - 00038912 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2017-04-19 20:04 - 2017-04-19 20:04 - 00032004 _____ C:\WINDOWS\system32\edgehtmlpluginpolicy.bin
2017-04-19 20:04 - 2017-04-19 20:04 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2017-04-19 20:01 - 2017-04-19 20:01 - 00286624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2017-04-19 19:58 - 2017-04-19 19:58 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2017-04-19 19:58 - 2017-04-19 19:15 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2017-04-19 19:52 - 2017-04-19 19:52 - 00000000 ____D C:\WINDOWS\system32\XPSViewer
2017-04-19 19:52 - 2017-04-19 19:52 - 00000000 ____D C:\WINDOWS\system32\msmq
2017-04-19 19:52 - 2017-04-19 19:52 - 00000000 ____D C:\WINDOWS\system32\BestPractices
2017-04-19 19:52 - 2017-04-19 19:52 - 00000000 ____D C:\Program Files\Reference Assemblies
2017-04-19 19:52 - 2017-04-19 19:52 - 00000000 ____D C:\Program Files\MSBuild
2017-04-19 19:52 - 2017-04-19 19:52 - 00000000 ____D C:\inetpub
2017-04-19 19:50 - 2017-02-10 12:21 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2017-04-19 19:50 - 2017-02-10 12:21 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2017-04-19 19:50 - 2017-02-10 12:21 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2017-04-19 19:48 - 2017-04-19 19:48 - 00001487 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2017-04-19 19:35 - 2017-04-19 19:35 - 00000000 ____D C:\Program Files\Common Files\SpeechEngines
2017-04-19 19:34 - 2017-04-19 19:34 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2017-04-19 19:28 - 2017-04-20 20:54 - 00000000 ____D C:\Users\ZubnĂ ordinace
2017-04-19 19:28 - 2017-04-19 19:28 - 00000000 _SHDL C:\Users\ZubnĂ ordinace\Ĺ ablony
2017-04-19 19:28 - 2017-04-19 19:28 - 00000000 _SHDL C:\Users\ZubnĂ ordinace\Soubory cookie
2017-04-19 19:28 - 2017-04-19 19:28 - 00000000 _SHDL C:\Users\ZubnĂ ordinace\PoslednĂ
2017-04-19 19:28 - 2017-04-19 19:28 - 00000000 _SHDL C:\Users\Zubnà ordinace\Okolnà tiskárny
2017-04-19 19:28 - 2017-04-19 19:28 - 00000000 _SHDL C:\Users\ZubnĂ ordinace\OkolnĂ sĂĹĄ
2017-04-19 19:28 - 2017-04-19 19:28 - 00000000 _SHDL C:\Users\ZubnĂ ordinace\NabĂdka Start
2017-04-19 19:28 - 2017-04-19 19:28 - 00000000 _SHDL C:\Users\ZubnĂ ordinace\Dokumenty
2017-04-19 19:28 - 2017-04-19 19:28 - 00000000 _SHDL C:\Users\Zubnà ordinace\Documents\Obrázky
2017-04-19 19:28 - 2017-04-19 19:28 - 00000000 _SHDL C:\Users\ZubnĂ ordinace\Documents\Hudba
2017-04-19 19:28 - 2017-04-19 19:28 - 00000000 _SHDL C:\Users\ZubnĂ ordinace\Documents\Filmy
2017-04-19 19:28 - 2017-04-19 19:28 - 00000000 _SHDL C:\Users\ZubnĂ ordinace\Data aplikacĂ
2017-04-19 19:28 - 2017-04-19 19:28 - 00000000 _SHDL C:\Users\ZubnĂ ordinace\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2017-04-19 19:28 - 2017-04-19 19:28 - 00000000 _SHDL C:\Users\ZubnĂ ordinace\AppData\Local\Data aplikacĂ
2017-04-19 19:28 - 2017-04-19 19:28 - 00000000 ____D C:\ProgramData\USOShared
2017-04-19 19:25 - 2017-04-21 15:34 - 02065782 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-04-19 19:23 - 2017-04-21 15:50 - 00000000 ____D C:\ProgramData\NVIDIA
2017-04-19 19:23 - 2017-04-19 19:24 - 00016400 _____ (Logitech, Inc.) C:\WINDOWS\system32\Drivers\LNonPnP.sys
2017-04-19 19:23 - 2017-04-01 04:09 - 00001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2017-04-19 19:23 - 2017-04-01 03:48 - 07851747 _____ C:\WINDOWS\system32\nvcoproc.bin
2017-04-19 19:23 - 2017-04-01 03:48 - 04004288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2017-04-19 19:23 - 2017-04-01 03:48 - 02103864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc.dll
2017-04-19 19:23 - 2017-04-01 03:48 - 01764408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2017-04-19 19:23 - 2017-04-01 03:48 - 00463928 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2017-04-19 19:23 - 2017-04-01 03:48 - 00381888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2017-04-19 19:23 - 2017-04-01 03:48 - 00081856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2017-04-19 19:23 - 2017-04-01 03:48 - 00070200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2017-04-19 19:22 - 2017-04-19 19:36 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-04-19 19:22 - 2017-04-19 19:35 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-04-19 19:21 - 2017-04-19 19:21 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2017-04-19 19:21 - 2017-04-19 19:21 - 00000000 ____D C:\WINDOWS\system32\DAX2
2017-04-19 19:20 - 2017-04-19 19:20 - 00000000 ____D C:\WINDOWS\system32\RTCOM
2017-04-19 19:20 - 2017-04-19 19:20 - 00000000 ____D C:\Program Files\Realtek
2017-04-19 19:15 - 2017-04-21 16:32 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-04-19 19:15 - 2017-04-20 14:52 - 00330480 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-04-19 17:48 - 2017-04-20 21:21 - 00000000 ___DC C:\WINDOWS\Panther
2017-04-11 15:55 - 2017-04-11 15:55 - 00000000 ___HD C:\$SysReset
2017-04-07 18:10 - 2017-04-19 17:47 - 00000036 _____ C:\WINDOWS\progress.ini
2017-04-07 16:04 - 2017-04-19 20:31 - 00000000 ____D C:\Windows10Upgrade
2017-04-07 16:04 - 2017-04-19 17:16 - 00000731 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PomocnĂk pĹ™i upgradu na Windows 10.lnk
2017-04-06 20:06 - 2017-04-01 05:19 - 00001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat
2017-04-06 19:55 - 2017-04-01 03:36 - 00136248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvStreaming.exe
2017-04-06 19:42 - 2017-04-01 02:41 - 00146480 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap32v.dll
2017-04-06 19:42 - 2017-04-01 02:41 - 00069160 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2017-04-06 19:42 - 2017-04-01 02:41 - 00060976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad32v.sys
2017-04-06 19:41 - 2017-04-02 18:12 - 00940592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco3220103.dll
2017-04-06 19:41 - 2017-04-02 18:12 - 00184880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda32v.sys
2017-04-06 19:41 - 2017-04-02 18:12 - 00044592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap32.dll
2017-04-06 19:41 - 2017-04-01 05:19 - 35280320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2017-04-06 19:41 - 2017-04-01 05:19 - 28592184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv32.dll
2017-04-06 19:41 - 2017-04-01 05:19 - 09316648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2017-04-06 19:41 - 2017-04-01 05:19 - 09014792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2017-04-06 19:41 - 2017-04-01 05:19 - 08876272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2017-04-06 19:41 - 2017-04-01 05:19 - 03602112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi.dll
2017-04-06 19:41 - 2017-04-01 05:19 - 03246016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2017-04-06 19:41 - 2017-04-01 05:19 - 01097272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco3238165.dll
2017-04-06 19:41 - 2017-04-01 05:19 - 00995920 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2017-04-06 19:41 - 2017-04-01 05:19 - 00990144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC.dll
2017-04-06 19:41 - 2017-04-01 05:19 - 00929728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco3238165.dll
2017-04-06 19:41 - 2017-04-01 05:19 - 00911296 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR.dll
2017-04-06 19:41 - 2017-04-01 05:19 - 00652856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2017-04-06 19:41 - 2017-04-01 05:19 - 00612088 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI.dll
2017-04-06 19:41 - 2017-04-01 05:19 - 00577544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2017-04-06 19:41 - 2017-04-01 05:19 - 00499136 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2017-04-06 19:41 - 2017-04-01 05:19 - 00038285 _____ C:\WINDOWS\system32\nvinfo.pb
2017-04-06 19:41 - 2017-04-01 05:19 - 00000669 _____ C:\WINDOWS\system32\nv-vk32.json
2017-03-30 16:21 - 2017-04-19 19:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2017-03-30 16:21 - 2017-03-30 16:21 - 00000000 ____D C:\Program Files\Common Files\Skype
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-04-21 18:11 - 2013-04-16 05:55 - 00000000 ____D C:\Users\ZubnĂ ordinace\AppData\Roaming\Skype
2017-04-21 17:11 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-04-21 16:07 - 2017-03-18 20:21 - 00000000 ____D C:\WINDOWS\INF
2017-04-21 15:56 - 2017-03-18 20:23 - 00000000 ___HD C:\Program Files\WindowsApps
2017-04-21 15:53 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-04-21 15:37 - 2014-10-15 07:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-04-21 15:37 - 2014-10-15 07:46 - 00000000 ____D C:\Program Files\Java
2017-04-21 15:37 - 2013-10-31 12:42 - 00000000 ____D C:\ProgramData\Oracle
2017-04-21 15:35 - 2017-03-19 10:56 - 00862778 _____ C:\WINDOWS\system32\perfh005.dat
2017-04-21 15:35 - 2017-03-19 10:56 - 00195094 _____ C:\WINDOWS\system32\perfc005.dat
2017-04-21 15:35 - 2015-01-22 10:47 - 00095808 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2017-04-21 15:22 - 2017-03-18 08:02 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2017-04-20 21:06 - 2017-03-18 20:14 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-04-20 15:33 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\system32\NDF
2017-04-20 15:16 - 2015-07-30 07:51 - 00002450 _____ C:\Users\ZubnĂ ordinace\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-04-20 15:16 - 2015-04-23 07:22 - 00000000 ___RD C:\Users\ZubnĂ ordinace\OneDrive
2017-04-20 15:02 - 2016-06-27 15:55 - 00000000 ____D C:\Program Files\Common Files\LogiShrd
2017-04-20 15:01 - 2016-06-27 15:57 - 00000000 ____D C:\ProgramData\Logishrd
2017-04-20 14:55 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\appcompat
2017-04-19 21:14 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\Registration
2017-04-19 21:03 - 2015-07-29 14:34 - 00000000 ____D C:\Users\ZubnĂ ordinace\AppData\Local\Packages
2017-04-19 21:02 - 2015-07-29 16:15 - 00000000 ____D C:\Users\ZubnĂ ordinace\AppData\Local\PackageStaging
2017-04-19 20:42 - 2016-02-04 18:54 - 00000643 _____ C:\Users\ZubnĂ ordinace\Desktop\DosPrint.lnk
2017-04-19 20:33 - 2017-03-18 20:23 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-04-19 20:32 - 2015-07-29 14:34 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-04-19 20:29 - 2016-08-06 14:16 - 00000000 ___HD C:\$GetCurrent
2017-04-19 20:22 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\rescache
2017-04-19 20:20 - 2017-03-18 20:23 - 00000000 ____D C:\Program Files\Windows NT
2017-04-19 20:19 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2017-04-19 20:19 - 2017-03-18 08:02 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2017-04-19 20:14 - 2017-03-18 20:23 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2017-04-19 20:14 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2017-04-19 20:08 - 2015-07-29 14:24 - 00021592 _____ C:\WINDOWS\system32\emptyregdb.dat
2017-04-19 20:06 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\Media
2017-04-19 20:05 - 2017-03-18 20:25 - 00000000 ____D C:\WINDOWS\Setup
2017-04-19 20:04 - 2017-03-18 20:23 - 00000000 __RHD C:\Users\Public\Libraries
2017-04-19 19:52 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\system32\MUI
2017-04-19 19:52 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2017-04-19 19:52 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\System
2017-04-19 19:51 - 2017-03-18 20:23 - 00000000 ___SD C:\WINDOWS\Downloaded Program Files
2017-04-19 19:51 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\ModemLogs
2017-04-19 19:51 - 2017-03-18 20:19 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2017-04-19 19:51 - 2017-03-18 20:19 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2017-04-19 19:51 - 2017-03-18 20:19 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2017-04-19 19:51 - 2017-03-18 20:19 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2017-04-19 19:51 - 2017-03-18 20:19 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2017-04-19 19:51 - 2017-03-18 20:19 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\cngkeyhelper.dll
2017-04-19 19:51 - 2017-03-18 20:19 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00973312 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00611840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntvdm.exe
2017-04-19 19:51 - 2017-03-18 20:18 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00256192 _____ (Microsoft Corporation) C:\WINDOWS\winhelp.exe
2017-04-19 19:51 - 2017-03-18 20:18 - 00221600 _____ (Microsoft Corporation) C:\WINDOWS\system32\lanman.drv
2017-04-19 19:51 - 2017-03-18 20:18 - 00177856 _____ (Microsoft Corporation) C:\WINDOWS\system32\typelib.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00169520 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole2disp.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00153008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole2nls.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2017-04-19 19:51 - 2017-03-18 20:18 - 00127213 _____ C:\WINDOWS\system32\ega.cpi
2017-04-19 19:51 - 2017-03-18 20:18 - 00108464 _____ (Microsoft Corporation) C:\WINDOWS\system32\netapi.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2017-04-19 19:51 - 2017-03-18 20:18 - 00092320 _____ (Microsoft Corporation) C:\WINDOWS\system32\krnl386.exe
2017-04-19 19:51 - 2017-03-18 20:18 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2017-04-19 19:51 - 2017-03-18 20:18 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\olecli.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system\olecli.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00069886 _____ C:\WINDOWS\system32\edit.com
2017-04-19 19:51 - 2017-03-18 20:18 - 00068992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMSYSTEM.DLL
2017-04-19 19:51 - 2017-03-18 20:18 - 00068992 _____ (Microsoft Corporation) C:\WINDOWS\system\MMSYSTEM.DLL
2017-04-19 19:51 - 2017-03-18 20:18 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\graftabl.com
2017-04-19 19:51 - 2017-03-18 20:18 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2017-04-19 19:51 - 2017-03-18 20:18 - 00053600 _____ C:\WINDOWS\system32\dosx.exe
2017-04-19 19:51 - 2017-03-18 20:18 - 00050648 _____ C:\WINDOWS\system32\COMMAND.COM
2017-04-19 19:51 - 2017-03-18 20:18 - 00047840 _____ (Microsoft Corporation) C:\WINDOWS\system32\USER.EXE
2017-04-19 19:51 - 2017-03-18 20:18 - 00046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\pmspl.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe
2017-04-19 19:51 - 2017-03-18 20:18 - 00042809 _____ C:\WINDOWS\system32\KEY01.SYS
2017-04-19 19:51 - 2017-03-18 20:18 - 00042592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole2.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00042537 _____ C:\WINDOWS\system32\KEYBOARD.SYS
2017-04-19 19:51 - 2017-03-18 20:18 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\DDEML.DLL
2017-04-19 19:51 - 2017-03-18 20:18 - 00039274 _____ C:\WINDOWS\system32\mem.exe
2017-04-19 19:51 - 2017-03-18 20:18 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2017-04-19 19:51 - 2017-03-18 20:18 - 00035776 _____ C:\WINDOWS\system32\NTIO411.SYS
2017-04-19 19:51 - 2017-03-18 20:18 - 00035552 _____ C:\WINDOWS\system32\NTIO412.SYS
2017-04-19 19:51 - 2017-03-18 20:18 - 00034688 _____ C:\WINDOWS\system32\NTIO804.SYS
2017-04-19 19:51 - 2017-03-18 20:18 - 00034688 _____ C:\WINDOWS\system32\NTIO404.SYS
2017-04-19 19:51 - 2017-03-18 20:18 - 00033968 _____ C:\WINDOWS\system32\NTIO.SYS
2017-04-19 19:51 - 2017-03-18 20:18 - 00032816 _____ (Microsoft Corporation) C:\WINDOWS\system32\COMMDLG.DLL
2017-04-19 19:51 - 2017-03-18 20:18 - 00032816 _____ (Microsoft Corporation) C:\WINDOWS\system\COMMDLG.DLL
2017-04-19 19:51 - 2017-03-18 20:18 - 00029370 _____ C:\WINDOWS\system32\NTDOS411.SYS
2017-04-19 19:51 - 2017-03-18 20:18 - 00029274 _____ C:\WINDOWS\system32\NTDOS412.SYS
2017-04-19 19:51 - 2017-03-18 20:18 - 00029146 _____ C:\WINDOWS\system32\NTDOS804.SYS
2017-04-19 19:51 - 2017-03-18 20:18 - 00029146 _____ C:\WINDOWS\system32\NTDOS404.SYS
2017-04-19 19:51 - 2017-03-18 20:18 - 00028420 _____ C:\WINDOWS\system32\bios1.rom
2017-04-19 19:51 - 2017-03-18 20:18 - 00028112 _____ (Microsoft Corporation) C:\WINDOWS\system32\DRWATSON.EXE
2017-04-19 19:51 - 2017-03-18 20:18 - 00027866 _____ C:\WINDOWS\system32\NTDOS.SYS
2017-04-19 19:51 - 2017-03-18 20:18 - 00027792 _____ (Microsoft Corporation) C:\WINDOWS\system32\compobj.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00027200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ctl3dv2.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00027097 _____ C:\WINDOWS\system32\country.sys
2017-04-19 19:51 - 2017-03-18 20:18 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
2017-04-19 19:51 - 2017-03-18 20:18 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\GDI.EXE
2017-04-19 19:51 - 2017-03-18 20:18 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\OLESVR.DLL
2017-04-19 19:51 - 2017-03-18 20:18 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system\OLESVR.DLL
2017-04-19 19:51 - 2017-03-18 20:18 - 00021232 _____ C:\WINDOWS\system32\graphics.pro
2017-04-19 19:51 - 2017-03-18 20:18 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdmredir.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00020634 _____ C:\WINDOWS\system32\debug.exe
2017-04-19 19:51 - 2017-03-18 20:18 - 00019694 _____ C:\WINDOWS\system32\GRAPHICS.COM
2017-04-19 19:51 - 2017-03-18 20:18 - 00018896 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysedit.exe
2017-04-19 19:51 - 2017-03-18 20:18 - 00018832 _____ C:\WINDOWS\system32\v7vga.rom
2017-04-19 19:51 - 2017-03-18 20:18 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntvdmd.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00014710 _____ C:\WINDOWS\system32\KB16.COM
2017-04-19 19:51 - 2017-03-18 20:18 - 00013888 _____ (Microsoft Corporation) C:\WINDOWS\system32\TOOLHELP.DLL
2017-04-19 19:51 - 2017-03-18 20:18 - 00013312 _____ C:\WINDOWS\system32\win87em.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00012704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WFWNET.DRV
2017-04-19 19:51 - 2017-03-18 20:18 - 00012704 _____ (Microsoft Corporation) C:\WINDOWS\system\WFWNET.DRV
2017-04-19 19:51 - 2017-03-18 20:18 - 00012642 _____ C:\WINDOWS\system32\edlin.exe
2017-04-19 19:51 - 2017-03-18 20:18 - 00012498 _____ C:\WINDOWS\system32\append.exe
2017-04-19 19:51 - 2017-03-18 20:18 - 00011753 _____ C:\WINDOWS\system32\setver.exe
2017-04-19 19:51 - 2017-03-18 20:18 - 00010790 _____ C:\WINDOWS\system32\EDIT.HLP
2017-04-19 19:51 - 2017-03-18 20:18 - 00010544 _____ (Microsoft Corporation) C:\WINDOWS\system32\COMM.drv
2017-04-19 19:51 - 2017-03-18 20:18 - 00009936 _____ (Microsoft Corporation) C:\WINDOWS\system32\lzexpand.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00009936 _____ (Microsoft Corporation) C:\WINDOWS\system\lzexpand.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WIFEMAN.DLL
2017-04-19 19:51 - 2017-03-18 20:18 - 00009096 _____ C:\WINDOWS\system32\msmqtrc.mof
2017-04-19 19:51 - 2017-03-18 20:18 - 00009029 _____ C:\WINDOWS\system32\ANSI.SYS
2017-04-19 19:51 - 2017-03-18 20:18 - 00009008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ver.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00009008 _____ (Microsoft Corporation) C:\WINDOWS\system\ver.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00008424 _____ C:\WINDOWS\system32\exe2bin.exe
2017-04-19 19:51 - 2017-03-18 20:18 - 00008191 _____ C:\WINDOWS\system32\bios4.rom
2017-04-19 19:51 - 2017-03-18 20:18 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\win.com
2017-04-19 19:51 - 2017-03-18 20:18 - 00007052 _____ C:\WINDOWS\system32\nlsfunc.exe
2017-04-19 19:51 - 2017-03-18 20:18 - 00005532 _____ (Microsoft Corporation) C:\WINDOWS\system\stdole.tlb
2017-04-19 19:51 - 2017-03-18 20:18 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\system32\WINNLS.DLL
2017-04-19 19:51 - 2017-03-18 20:18 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHELL.DLL
2017-04-19 19:51 - 2017-03-18 20:18 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\system\SHELL.DLL
2017-04-19 19:51 - 2017-03-18 20:18 - 00004768 _____ C:\WINDOWS\system32\HIMEM.SYS
2017-04-19 19:51 - 2017-03-18 20:18 - 00004208 _____ (Microsoft Corporation) C:\WINDOWS\system32\storage.dll
2017-04-19 19:51 - 2016-11-24 18:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-04-19 19:51 - 2016-11-24 16:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2017-04-19 19:51 - 2016-07-09 19:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 5.1
2017-04-19 19:51 - 2016-02-04 18:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DosPrint
2017-04-19 19:51 - 2013-07-11 07:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2017-04-19 19:51 - 2013-04-16 13:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Odysseus
2017-04-19 19:51 - 2013-04-16 13:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Corel Paint Shop Pro Photo X2
2017-04-19 19:51 - 2013-04-16 11:50 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Text
2017-04-19 19:51 - 2013-04-16 10:35 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Printers
2017-04-19 19:51 - 2013-04-15 12:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung SCX-4100 Series
2017-04-19 19:39 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\system32\spool
2017-04-19 19:39 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\system32\IME
2017-04-19 19:39 - 2013-04-16 07:08 - 00000000 ____D C:\WINDOWS\system32\SPReview
2017-04-19 19:39 - 2013-04-16 07:06 - 00000000 ____D C:\WINDOWS\system32\EventProviders
2017-04-19 19:38 - 2017-03-19 10:57 - 00000000 ____D C:\WINDOWS\OCR
2017-04-19 19:38 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\schemas
2017-04-19 19:38 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\Resources
2017-04-19 19:38 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2017-04-19 19:38 - 2013-04-17 07:14 - 00000000 ____D C:\WINDOWS\system32\appmgmt
2017-04-19 19:36 - 2017-03-18 20:23 - 00000000 __SHD C:\Program Files\Windows Sidebar
2017-04-19 19:36 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\Help
2017-04-19 19:36 - 2016-03-12 21:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vulkan 1.0.3.0
2017-04-19 19:36 - 2015-01-12 15:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
2017-04-19 19:36 - 2013-04-17 07:54 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hudba
2017-04-19 19:35 - 2017-03-18 20:23 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2017-04-19 19:35 - 2013-04-17 16:38 - 00000000 ____D C:\Program Files\Microsoft Games
2017-04-19 19:34 - 2009-07-14 04:37 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2017-04-19 19:29 - 2017-03-18 20:23 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-04-19 19:28 - 2017-03-18 20:23 - 00000000 ____D C:\ProgramData\USOPrivate
2017-04-19 19:24 - 2017-03-18 08:02 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2017-04-19 19:23 - 2014-06-11 12:43 - 00000000 ____D C:\Temp
2017-04-19 18:24 - 2013-04-15 07:22 - 00008192 __RSH C:\BOOTSECT.BAK
2017-04-19 17:08 - 2016-01-08 21:44 - 00000000 ____D C:\Users\ZubnĂ ordinace\AppData\Local\CrashDumps
2017-04-18 15:17 - 2013-12-16 10:01 - 00000000 ____D C:\Users\ZubnĂ ordinace\AppData\Local\ElevatedDiagnostics
2017-04-11 21:23 - 2013-04-15 13:36 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2017-04-11 19:49 - 2013-08-19 07:49 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-04-11 19:43 - 2013-04-15 10:03 - 145733648 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-04-11 17:25 - 2016-01-31 15:01 - 00000000 ____D C:\Jucmila
2017-04-11 17:03 - 2015-07-29 14:33 - 00000000 ____D C:\Users\ZubnĂ ordinace\AppData\Local\TileDataLayer
2017-04-11 16:44 - 2015-06-26 11:39 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-04-08 15:45 - 2013-04-15 08:13 - 00430248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2017-04-06 20:11 - 2017-03-20 19:59 - 00001443 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2017-04-06 19:53 - 2016-03-12 21:42 - 00000000 ____D C:\Program Files\VulkanRT
2017-04-03 18:56 - 2017-03-18 20:25 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2017-04-03 18:56 - 2017-03-18 20:25 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2017-04-01 05:19 - 2016-11-24 18:07 - 01470520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap.dll
2017-04-01 05:19 - 2016-11-24 18:07 - 01318968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge.dll
2017-04-01 05:19 - 2016-11-24 18:07 - 00101944 _____ C:\WINDOWS\system32\NvRtmpStreamer32.dll
2017-03-30 17:11 - 2017-03-08 19:06 - 00000998 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 12.lnk
2017-03-30 17:11 - 2013-04-15 13:44 - 00000000 ____D C:\Program Files\TeamViewer
2017-03-30 16:21 - 2013-04-16 05:55 - 00000000 ___RD C:\Program Files\Skype
2017-03-30 16:21 - 2013-04-15 13:56 - 00000000 ____D C:\ProgramData\Skype
2017-03-30 16:20 - 2016-01-08 19:07 - 00000000 ____D C:\ProgramData\Package Cache
==================== Files in the root of some directories =======
2013-05-14 11:06 - 2013-05-14 11:06 - 0022513 _____ () C:\Users\ZubnĂ ordinace\AppData\Roaming\UserTile.png
2014-07-09 16:25 - 2014-07-09 16:25 - 0007649 _____ () C:\Users\ZubnĂ ordinace\AppData\Local\Resmon.ResmonCfg
2017-04-19 19:21 - 2017-04-19 19:21 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2016-12-27 14:22 - 2017-01-10 17:13 - 0004942 _____ () C:\ProgramData\NvTelemetryContainer.log
2016-12-27 14:22 - 2017-01-10 16:43 - 0003735 _____ () C:\ProgramData\NvTelemetryContainer.log_backup1
Some files in TEMP:
====================
2017-04-21 15:32 - 2017-04-21 15:33 - 0739904 _____ (Oracle Corporation) C:\Users\ZubnĂ ordinace\AppData\Local\Temp\jre-8u131-windows-au.exe
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Norton Security Scan for ZubnĂ ordinace.job => C:\PROGRA~1\NORTON~2\Engine\401~1.16\Nss.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Zubnˇ ordinace\Desktop" je 5 MB.
***** Startup Programs *****
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM
"C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
==================== End Of Log ==============================
Ran by Zubnà ordinace (administrator) on NEUŽIL (21-04-2017 18:04:34)
Running from C:\Users\ZubnĂ ordinace\Desktop
Loaded Profiles: ZubnĂ ordinace (Available Profiles: ZubnĂ ordinace)
Platform: Microsoft Windows 10 Pro Version 1703 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
() C:\Windows\System32\PSIService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(Microsoft Corporation) C:\Windows\System32\SecurityHealthService.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Daniel Redlich Software) C:\DosPrint\DOSPRINT.EXE
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Node.js) C:\Program Files\NVIDIA Corporation\NvNode\NVIDIA Web Helper.exe
(Skype Technologies) C:\Program Files\Skype\Browser\SkypeBrowserHost.exe
(Skype Technologies) C:\Program Files\Skype\Browser\SkypeBrowserHost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\Windows Live\Mail\wlmail.exe
(Microsoft Corporation) C:\Program Files\Windows Live\Contacts\wlcomm.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsStore_11701.1001.99.0_x86__8wekyb3d8bbwe\WinStore.App.exe
(Microsoft Corporation) C:\Windows\System32\cleanmgr.exe
(Microsoft Corporation) C:\Users\ZubnĂ ordinace\AppData\Local\Temp\BCE1266F-287B-4C9E-9802-F86C3AAF5B93\DismHost.exe
(Microsoft Corporation) C:\Windows\WinSxS\x86_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.15063.0_none_be549efe47bbc296\TiWorker.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(forum.viry.cz) C:\Users\ZubnĂ ordinace\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SecurityHealth] => C:\Program Files\Windows Defender\MSASCuiL.exe [485280 2017-03-18] (Microsoft Corporation)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [12214528 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [DOSPRINT] => C:\DosPrint\DOSPRINT.EXE [1059328 2005-10-03] (Daniel Redlich Software)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [587288 2017-03-15] (Oracle Corporation)
HKU\S-1-5-21-643618162-1430922922-3350028935-1001\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [27545048 2017-03-14] (Skype Technologies S.A.)
HKU\S-1-5-21-643618162-1430922922-3350028935-1001\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\ZubnĂ ordinace\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_2\FileSyncShell.dll [2017-04-20] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\ZubnĂ ordinace\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_2\FileSyncShell.dll [2017-04-20] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\ZubnĂ ordinace\AppData\Local\Microsoft\OneDrive\17.3.6816.0313_2\FileSyncShell.dll [2017-04-20] (Microsoft Corporation)
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
CHR HKU\S-1-5-21-643618162-1430922922-3350028935-1001\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{4de809f9-fe8b-4e6e-ade1-6df00bbff52b}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{a9b87af4-b5c7-42c1-bd3c-83e0ee408983}: [DhcpNameServer] 10.0.0.138
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-643618162-1430922922-3350028935-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/
SearchScopes: HKLM -> {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-643618162-1430922922-3350028935-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKU\S-1-5-21-643618162-1430922922-3350028935-1001 -> {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_131\bin\ssv.dll [2017-04-21] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_131\bin\jp2ssv.dll [2017-04-21] (Oracle Corporation)
Toolbar: HKU\S-1-5-21-643618162-1430922922-3350028935-1001 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} hxxp://download.eset.com/special/eos/OnlineScanner.cab
DPF: {D8950D0E-FCE7-4AE4-9370-7E4CFBC04362} hxxps://eportal.cssz.cz/fas/page/activexcab/webff_cs.cab
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2017-01-01] (Skype Technologies)
Edge:
======
Edge HomeButtonPage: HKU\S-1-5-21-643618162-1430922922-3350028935-1001 -> hxxp://www.seznam.cz/
Edge Extension: (Adblock Plus) -> 10_EyeoGmbHAdblockPlus_d55gg7py3s0m0 => C:\Program Files\WindowsApps\EyeoGmbH.AdblockPlus_0.9.9.0_neutral__d55gg7py3s0m0 [2016-10-28]
FireFox:
========
FF HKLM\...\Firefox\Extensions: [{F003DA68-8256-4b37-A6C4-350FA04494DF}] - C:\Program Files\Logitech\SetPointP\LogiSmoothFirefoxExt => not found
FF Plugin: @java.com/DTPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\dtplugin\npDeployJava1.dll [2017-04-21] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.131.2 -> C:\Program Files\Java\jre1.8.0_131\bin\plugin2\npjp2.dll [2017-04-21] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50906.0\npctrl.dll [2017-03-09] ( Microsoft Corporation)
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2017-04-01] (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2017-04-01] (NVIDIA Corporation)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-05] (Adobe Systems Inc.)
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 DevicesFlowUserSvc; C:\WINDOWS\System32\DevicesFlowBroker.dll [517120 2017-03-18] (Microsoft Corporation)
S3 DevicesFlowUserSvc_3cec3; C:\WINDOWS\system32\svchost.exe [40904 2017-03-18] (Microsoft Corporation)
R2 DusmSvc; C:\WINDOWS\System32\dusmsvc.dll [212480 2017-03-18] (Microsoft Corporation)
S3 IpxlatCfgSvc; C:\WINDOWS\System32\IpxlatCfg.dll [52224 2017-03-18] (Microsoft Corporation)
S3 NaturalAuthentication; C:\WINDOWS\System32\NaturalAuth.dll [247296 2017-03-18] (Microsoft Corporation)
R2 NvContainerLocalSystem; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [427064 2017-04-01] (NVIDIA Corporation)
S3 NvContainerNetworkService; C:\Program Files\NVIDIA Corporation\NvContainer\nvcontainer.exe [427064 2017-04-01] (NVIDIA Corporation)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [425408 2017-04-01] (NVIDIA Corporation)
R2 NvTelemetryContainer; C:\Program Files\NVIDIA Corporation\NvTelemetry\NvTelemetryContainer.exe [427064 2017-04-01] (NVIDIA Corporation)
R2 ProtexisLicensing; C:\Windows\system32\PSIService.exe [177704 2007-06-05] ()
R2 SecurityHealthService; C:\WINDOWS\system32\SecurityHealthService.exe [259352 2017-03-18] (Microsoft Corporation)
S3 SEMgrSvc; C:\WINDOWS\system32\SEMgrSvc.dll [966144 2017-03-18] (Microsoft Corporation)
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2545848 2017-03-19] (Microsoft Corporation)
S3 spectrum; C:\WINDOWS\system32\spectrum.exe [607744 2017-03-18] (Microsoft Corporation)
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [10883824 2017-03-17] (TeamViewer GmbH)
R3 TokenBroker; C:\WINDOWS\System32\TokenBroker.dll [799232 2017-03-18] (Microsoft Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [265352 2017-03-18] (Microsoft Corporation)
S3 WFDSConMgrSvc; C:\WINDOWS\System32\wfdsconmgrsvc.dll [388608 2017-03-18] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [82488 2017-03-18] (Microsoft Corporation)
S3 wlpasvc; C:\WINDOWS\System32\lpasvc.dll [842752 2017-03-18] (Microsoft Corporation)
S3 xbgm; C:\WINDOWS\System32\xbgmsvc.dll [224248 2017-03-18] (Microsoft Corporation)
S3 XboxGipSvc; C:\WINDOWS\System32\XboxGipSvc.dll [15360 2017-03-18] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 athur; C:\WINDOWS\System32\drivers\athur.sys [1500160 2010-01-05] (Atheros Communications, Inc.)
S3 CAD; C:\WINDOWS\System32\drivers\CAD.sys [45472 2017-03-18] (Microsoft Corporation)
S2 CldFlt; C:\WINDOWS\System32\drivers\cldflt.sys [9728 2017-03-18] (Microsoft Corporation)
R2 DgiVecp; C:\WINDOWS\System32\Drivers\DgiVecp.sys [41984 2004-08-11] (Samsung Electronics Co., Ltd.) [File not signed]
S3 LEqdUsb; C:\WINDOWS\System32\Drivers\LEqdUsb.Sys [52368 2015-06-18] (Logitech, Inc.)
S3 LHidEqd; C:\WINDOWS\System32\Drivers\LHidEqd.Sys [20240 2015-06-18] (Logitech, Inc.)
S3 LUsbFilt; C:\WINDOWS\System32\Drivers\LUsbFilt.Sys [38416 2015-06-18] (Logitech, Inc.)
S3 mausbhost; C:\WINDOWS\System32\drivers\mausbhost.sys [331680 2017-03-18] (Microsoft Corporation)
S3 mausbip; C:\WINDOWS\System32\drivers\mausbip.sys [38816 2017-03-18] (Microsoft Corporation)
R3 MTsensor; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [5810 2004-08-13] ()
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [83456 2017-03-18] (Microsoft Corporation)
R3 netr28u; C:\WINDOWS\System32\drivers\netr28u.sys [1824256 2017-03-18] (MediaTek Inc.)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispi.inf_x86_61e5fa7907ff8ca4\nvlddmkm.sys [12823096 2017-04-03] (NVIDIA Corporation)
S3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [27704 2017-04-01] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad32v.sys [60976 2017-04-01] (NVIDIA Corporation)
R3 nvvhci; C:\WINDOWS\System32\drivers\nvvhci.sys [69160 2017-04-01] (NVIDIA Corporation)
R2 SSPORT; C:\Windows\system32\Drivers\SSPORT.sys [5120 2009-03-02] (Samsung Electronics) [File not signed]
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [37464 2017-03-18] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [243104 2017-03-18] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [96672 2017-03-18] (Microsoft Corporation)
S3 WinNat; C:\WINDOWS\System32\drivers\winnat.sys [174080 2017-03-18] (Microsoft Corporation)
R3 yukonw8; C:\WINDOWS\System32\drivers\yk63x86.sys [242688 2017-03-18] (Marvell)
U3 idsvc; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
NETSVC: XboxGipSvc -> C:\Windows\System32\XboxGipSvc.dll (Microsoft Corporation)
NETSVC: NaturalAuthentication -> C:\Windows\System32\NaturalAuth.dll (Microsoft Corporation)
NETSVC: TokenBroker -> C:\Windows\System32\TokenBroker.dll (Microsoft Corporation)
NETSVC: xbgm -> C:\Windows\System32\xbgmsvc.dll (Microsoft Corporation)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-04-21 18:04 - 2017-04-21 18:04 - 00014106 _____ C:\Users\ZubnĂ ordinace\Desktop\FRST.txt
2017-04-21 18:03 - 2017-04-21 18:04 - 00000000 ____D C:\FRST
2017-04-21 16:42 - 2017-04-21 16:42 - 01766912 _____ (Farbar) C:\Users\ZubnĂ ordinace\Desktop\FRST.exe
2017-04-21 16:41 - 2017-04-21 16:41 - 00112640 _____ (forum.viry.cz) C:\Users\ZubnĂ ordinace\Desktop\FRSTLauncher.exe
2017-04-21 15:36 - 2017-04-21 15:36 - 00000000 ____D C:\Program Files\Common Files\Java
2017-04-21 15:33 - 2017-04-21 15:33 - 00002297 _____ C:\Users\ZubnĂ ordinace\Desktop\AdwCleaner[C0].txt
2017-04-21 15:14 - 2017-04-21 15:21 - 00000000 ____D C:\AdwCleaner
2017-04-21 15:12 - 2017-04-21 15:13 - 04089296 _____ C:\Users\ZubnĂ ordinace\Desktop\adwcleaner_6.045.exe
2017-04-20 21:20 - 2017-04-20 21:21 - 00000000 ___HD C:\$WINDOWS.~BT
2017-04-20 21:05 - 2017-04-20 21:07 - 00000000 ____D C:\rsit
2017-04-20 21:05 - 2017-04-20 21:06 - 00000000 ____D C:\Program Files\trend micro
2017-04-20 14:59 - 2017-04-20 14:59 - 00000000 ____D C:\Users\ZubnĂ ordinace\AppData\Roaming\sp6_log
2017-04-19 20:39 - 2017-04-19 20:39 - 00000000 ____D C:\Users\ZubnĂ ordinace\AppData\Local\DBG
2017-04-19 20:39 - 2017-04-19 20:39 - 00000000 ____D C:\ProgramData\Microsoft OneDrive
2017-04-19 20:31 - 2017-04-20 20:54 - 00000270 __RSH C:\Users\ZubnĂ ordinace\ntuser.pol
2017-04-19 20:31 - 2017-04-19 20:31 - 00000020 ___SH C:\Users\ZubnĂ ordinace\ntuser.ini
2017-04-19 20:31 - 2017-04-19 20:31 - 00000000 ____D C:\Users\ZubnĂ ordinace\AppData\Local\ConnectedDevicesPlatform
2017-04-19 20:15 - 2017-04-20 21:21 - 00001908 _____ C:\WINDOWS\diagwrn.xml
2017-04-19 20:15 - 2017-04-20 21:21 - 00001908 _____ C:\WINDOWS\diagerr.xml
2017-04-19 20:08 - 2017-04-21 15:23 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-04-19 20:05 - 2017-04-19 20:05 - 00000000 ____D C:\Windows.old
2017-04-19 20:04 - 2017-04-19 20:04 - 20505600 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2017-04-19 20:04 - 2017-04-19 20:04 - 19334144 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2017-04-19 20:04 - 2017-04-19 20:04 - 11869696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2017-04-19 20:04 - 2017-04-19 20:04 - 06756920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2017-04-19 20:04 - 2017-04-19 20:04 - 06296064 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2017-04-19 20:04 - 2017-04-19 20:04 - 05862296 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2017-04-19 20:04 - 2017-04-19 20:04 - 02957824 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2017-04-19 20:04 - 2017-04-19 20:04 - 02023320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2017-04-19 20:04 - 2017-04-19 20:04 - 01520032 _____ (Microsoft Corporation) C:\WINDOWS\system32\UpdateAgent.dll
2017-04-19 20:04 - 2017-04-19 20:04 - 01518088 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2017-04-19 20:04 - 2017-04-19 20:04 - 01506816 _____ (Microsoft Corporation) C:\WINDOWS\system32\quartz.dll
2017-04-19 20:04 - 2017-04-19 20:04 - 01432296 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2017-04-19 20:04 - 2017-04-19 20:04 - 01127936 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2017-04-19 20:04 - 2017-04-19 20:04 - 01060352 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsPrint.dll
2017-04-19 20:04 - 2017-04-19 20:04 - 00986592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2017-04-19 20:04 - 2017-04-19 20:04 - 00626520 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2017-04-19 20:04 - 2017-04-19 20:04 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioEndpointBuilder.dll
2017-04-19 20:04 - 2017-04-19 20:04 - 00429568 _____ (Microsoft Corporation) C:\WINDOWS\system32\winspool.drv
2017-04-19 20:04 - 2017-04-19 20:04 - 00364032 _____ (Microsoft Corporation) C:\WINDOWS\system32\msIso.dll
2017-04-19 20:04 - 2017-04-19 20:04 - 00357888 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2017-04-19 20:04 - 2017-04-19 20:04 - 00341920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2017-04-19 20:04 - 2017-04-19 20:04 - 00311192 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2017-04-19 20:04 - 2017-04-19 20:04 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\XpsDocumentTargetPrint.dll
2017-04-19 20:04 - 2017-04-19 20:04 - 00169376 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2017-04-19 20:04 - 2017-04-19 20:04 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataTimeUtil.dll
2017-04-19 20:04 - 2017-04-19 20:04 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmjpegdec.dll
2017-04-19 20:04 - 2017-04-19 20:04 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2017-04-19 20:04 - 2017-04-19 20:04 - 00038912 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2017-04-19 20:04 - 2017-04-19 20:04 - 00032004 _____ C:\WINDOWS\system32\edgehtmlpluginpolicy.bin
2017-04-19 20:04 - 2017-04-19 20:04 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\BasicRender.sys
2017-04-19 20:01 - 2017-04-19 20:01 - 00286624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2017-04-19 19:58 - 2017-04-19 19:58 - 00008192 _____ C:\WINDOWS\system32\config\userdiff
2017-04-19 19:58 - 2017-04-19 19:15 - 00000000 ____D C:\WINDOWS\ServiceProfiles
2017-04-19 19:52 - 2017-04-19 19:52 - 00000000 ____D C:\WINDOWS\system32\XPSViewer
2017-04-19 19:52 - 2017-04-19 19:52 - 00000000 ____D C:\WINDOWS\system32\msmq
2017-04-19 19:52 - 2017-04-19 19:52 - 00000000 ____D C:\WINDOWS\system32\BestPractices
2017-04-19 19:52 - 2017-04-19 19:52 - 00000000 ____D C:\Program Files\Reference Assemblies
2017-04-19 19:52 - 2017-04-19 19:52 - 00000000 ____D C:\Program Files\MSBuild
2017-04-19 19:52 - 2017-04-19 19:52 - 00000000 ____D C:\inetpub
2017-04-19 19:50 - 2017-02-10 12:21 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2017-04-19 19:50 - 2017-02-10 12:21 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2017-04-19 19:50 - 2017-02-10 12:21 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2017-04-19 19:48 - 2017-04-19 19:48 - 00001487 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2017-04-19 19:35 - 2017-04-19 19:35 - 00000000 ____D C:\Program Files\Common Files\SpeechEngines
2017-04-19 19:34 - 2017-04-19 19:34 - 00000000 ____D C:\WINDOWS\system32\config\bbimigrate
2017-04-19 19:28 - 2017-04-20 20:54 - 00000000 ____D C:\Users\ZubnĂ ordinace
2017-04-19 19:28 - 2017-04-19 19:28 - 00000000 _SHDL C:\Users\ZubnĂ ordinace\Ĺ ablony
2017-04-19 19:28 - 2017-04-19 19:28 - 00000000 _SHDL C:\Users\ZubnĂ ordinace\Soubory cookie
2017-04-19 19:28 - 2017-04-19 19:28 - 00000000 _SHDL C:\Users\ZubnĂ ordinace\PoslednĂ
2017-04-19 19:28 - 2017-04-19 19:28 - 00000000 _SHDL C:\Users\Zubnà ordinace\Okolnà tiskárny
2017-04-19 19:28 - 2017-04-19 19:28 - 00000000 _SHDL C:\Users\ZubnĂ ordinace\OkolnĂ sĂĹĄ
2017-04-19 19:28 - 2017-04-19 19:28 - 00000000 _SHDL C:\Users\ZubnĂ ordinace\NabĂdka Start
2017-04-19 19:28 - 2017-04-19 19:28 - 00000000 _SHDL C:\Users\ZubnĂ ordinace\Dokumenty
2017-04-19 19:28 - 2017-04-19 19:28 - 00000000 _SHDL C:\Users\Zubnà ordinace\Documents\Obrázky
2017-04-19 19:28 - 2017-04-19 19:28 - 00000000 _SHDL C:\Users\ZubnĂ ordinace\Documents\Hudba
2017-04-19 19:28 - 2017-04-19 19:28 - 00000000 _SHDL C:\Users\ZubnĂ ordinace\Documents\Filmy
2017-04-19 19:28 - 2017-04-19 19:28 - 00000000 _SHDL C:\Users\ZubnĂ ordinace\Data aplikacĂ
2017-04-19 19:28 - 2017-04-19 19:28 - 00000000 _SHDL C:\Users\ZubnĂ ordinace\AppData\Roaming\Microsoft\Windows\Start Menu\Programy
2017-04-19 19:28 - 2017-04-19 19:28 - 00000000 _SHDL C:\Users\ZubnĂ ordinace\AppData\Local\Data aplikacĂ
2017-04-19 19:28 - 2017-04-19 19:28 - 00000000 ____D C:\ProgramData\USOShared
2017-04-19 19:25 - 2017-04-21 15:34 - 02065782 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-04-19 19:23 - 2017-04-21 15:50 - 00000000 ____D C:\ProgramData\NVIDIA
2017-04-19 19:23 - 2017-04-19 19:24 - 00016400 _____ (Logitech, Inc.) C:\WINDOWS\system32\Drivers\LNonPnP.sys
2017-04-19 19:23 - 2017-04-01 04:09 - 00001951 _____ C:\WINDOWS\NvContainerRecovery.bat
2017-04-19 19:23 - 2017-04-01 03:48 - 07851747 _____ C:\WINDOWS\system32\nvcoproc.bin
2017-04-19 19:23 - 2017-04-01 03:48 - 04004288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2017-04-19 19:23 - 2017-04-01 03:48 - 02103864 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc.dll
2017-04-19 19:23 - 2017-04-01 03:48 - 01764408 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2017-04-19 19:23 - 2017-04-01 03:48 - 00463928 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2017-04-19 19:23 - 2017-04-01 03:48 - 00381888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2017-04-19 19:23 - 2017-04-01 03:48 - 00081856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2017-04-19 19:23 - 2017-04-01 03:48 - 00070200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2017-04-19 19:22 - 2017-04-19 19:36 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2017-04-19 19:22 - 2017-04-19 19:35 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2017-04-19 19:21 - 2017-04-19 19:21 - 00000000 ____H C:\ProgramData\DP45977C.lfl
2017-04-19 19:21 - 2017-04-19 19:21 - 00000000 ____D C:\WINDOWS\system32\DAX2
2017-04-19 19:20 - 2017-04-19 19:20 - 00000000 ____D C:\WINDOWS\system32\RTCOM
2017-04-19 19:20 - 2017-04-19 19:20 - 00000000 ____D C:\Program Files\Realtek
2017-04-19 19:15 - 2017-04-21 16:32 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-04-19 19:15 - 2017-04-20 14:52 - 00330480 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-04-19 17:48 - 2017-04-20 21:21 - 00000000 ___DC C:\WINDOWS\Panther
2017-04-11 15:55 - 2017-04-11 15:55 - 00000000 ___HD C:\$SysReset
2017-04-07 18:10 - 2017-04-19 17:47 - 00000036 _____ C:\WINDOWS\progress.ini
2017-04-07 16:04 - 2017-04-19 20:31 - 00000000 ____D C:\Windows10Upgrade
2017-04-07 16:04 - 2017-04-19 17:16 - 00000731 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PomocnĂk pĹ™i upgradu na Windows 10.lnk
2017-04-06 20:06 - 2017-04-01 05:19 - 00001951 _____ C:\WINDOWS\NvTelemetryContainerRecovery.bat
2017-04-06 19:55 - 2017-04-01 03:36 - 00136248 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvStreaming.exe
2017-04-06 19:42 - 2017-04-01 02:41 - 00146480 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap32v.dll
2017-04-06 19:42 - 2017-04-01 02:41 - 00069160 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvhci.sys
2017-04-06 19:42 - 2017-04-01 02:41 - 00060976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad32v.sys
2017-04-06 19:41 - 2017-04-02 18:12 - 00940592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco3220103.dll
2017-04-06 19:41 - 2017-04-02 18:12 - 00184880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda32v.sys
2017-04-06 19:41 - 2017-04-02 18:12 - 00044592 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap32.dll
2017-04-06 19:41 - 2017-04-01 05:19 - 35280320 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2017-04-06 19:41 - 2017-04-01 05:19 - 28592184 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv32.dll
2017-04-06 19:41 - 2017-04-01 05:19 - 09316648 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2017-04-06 19:41 - 2017-04-01 05:19 - 09014792 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvptxJitCompiler.dll
2017-04-06 19:41 - 2017-04-01 05:19 - 08876272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2017-04-06 19:41 - 2017-04-01 05:19 - 03602112 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi.dll
2017-04-06 19:41 - 2017-04-01 05:19 - 03246016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2017-04-06 19:41 - 2017-04-01 05:19 - 01097272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco3238165.dll
2017-04-06 19:41 - 2017-04-01 05:19 - 00995920 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2017-04-06 19:41 - 2017-04-01 05:19 - 00990144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC.dll
2017-04-06 19:41 - 2017-04-01 05:19 - 00929728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco3238165.dll
2017-04-06 19:41 - 2017-04-01 05:19 - 00911296 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR.dll
2017-04-06 19:41 - 2017-04-01 05:19 - 00652856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvDecMFTMjpeg.dll
2017-04-06 19:41 - 2017-04-01 05:19 - 00612088 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI.dll
2017-04-06 19:41 - 2017-04-01 05:19 - 00577544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvfatbinaryLoader.dll
2017-04-06 19:41 - 2017-04-01 05:19 - 00499136 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2017-04-06 19:41 - 2017-04-01 05:19 - 00038285 _____ C:\WINDOWS\system32\nvinfo.pb
2017-04-06 19:41 - 2017-04-01 05:19 - 00000669 _____ C:\WINDOWS\system32\nv-vk32.json
2017-03-30 16:21 - 2017-04-19 19:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2017-03-30 16:21 - 2017-03-30 16:21 - 00000000 ____D C:\Program Files\Common Files\Skype
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-04-21 18:11 - 2013-04-16 05:55 - 00000000 ____D C:\Users\ZubnĂ ordinace\AppData\Roaming\Skype
2017-04-21 17:11 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-04-21 16:07 - 2017-03-18 20:21 - 00000000 ____D C:\WINDOWS\INF
2017-04-21 15:56 - 2017-03-18 20:23 - 00000000 ___HD C:\Program Files\WindowsApps
2017-04-21 15:53 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-04-21 15:37 - 2014-10-15 07:46 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-04-21 15:37 - 2014-10-15 07:46 - 00000000 ____D C:\Program Files\Java
2017-04-21 15:37 - 2013-10-31 12:42 - 00000000 ____D C:\ProgramData\Oracle
2017-04-21 15:35 - 2017-03-19 10:56 - 00862778 _____ C:\WINDOWS\system32\perfh005.dat
2017-04-21 15:35 - 2017-03-19 10:56 - 00195094 _____ C:\WINDOWS\system32\perfc005.dat
2017-04-21 15:35 - 2015-01-22 10:47 - 00095808 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2017-04-21 15:22 - 2017-03-18 08:02 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2017-04-20 21:06 - 2017-03-18 20:14 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-04-20 15:33 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\system32\NDF
2017-04-20 15:16 - 2015-07-30 07:51 - 00002450 _____ C:\Users\ZubnĂ ordinace\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-04-20 15:16 - 2015-04-23 07:22 - 00000000 ___RD C:\Users\ZubnĂ ordinace\OneDrive
2017-04-20 15:02 - 2016-06-27 15:55 - 00000000 ____D C:\Program Files\Common Files\LogiShrd
2017-04-20 15:01 - 2016-06-27 15:57 - 00000000 ____D C:\ProgramData\Logishrd
2017-04-20 14:55 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\appcompat
2017-04-19 21:14 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\Registration
2017-04-19 21:03 - 2015-07-29 14:34 - 00000000 ____D C:\Users\ZubnĂ ordinace\AppData\Local\Packages
2017-04-19 21:02 - 2015-07-29 16:15 - 00000000 ____D C:\Users\ZubnĂ ordinace\AppData\Local\PackageStaging
2017-04-19 20:42 - 2016-02-04 18:54 - 00000643 _____ C:\Users\ZubnĂ ordinace\Desktop\DosPrint.lnk
2017-04-19 20:33 - 2017-03-18 20:23 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2017-04-19 20:32 - 2015-07-29 14:34 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-04-19 20:29 - 2016-08-06 14:16 - 00000000 ___HD C:\$GetCurrent
2017-04-19 20:22 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\rescache
2017-04-19 20:20 - 2017-03-18 20:23 - 00000000 ____D C:\Program Files\Windows NT
2017-04-19 20:19 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\system32\WinBioDatabase
2017-04-19 20:19 - 2017-03-18 08:02 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2017-04-19 20:14 - 2017-03-18 20:23 - 00028672 _____ C:\WINDOWS\system32\config\BCD-Template
2017-04-19 20:14 - 2016-07-16 10:29 - 00000000 ____D C:\WINDOWS\system32\Tasks_Migrated
2017-04-19 20:08 - 2015-07-29 14:24 - 00021592 _____ C:\WINDOWS\system32\emptyregdb.dat
2017-04-19 20:06 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\Media
2017-04-19 20:05 - 2017-03-18 20:25 - 00000000 ____D C:\WINDOWS\Setup
2017-04-19 20:04 - 2017-03-18 20:23 - 00000000 __RHD C:\Users\Public\Libraries
2017-04-19 19:52 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\system32\MUI
2017-04-19 19:52 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\system32\inetsrv
2017-04-19 19:52 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\System
2017-04-19 19:51 - 2017-03-18 20:23 - 00000000 ___SD C:\WINDOWS\Downloaded Program Files
2017-04-19 19:51 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\ModemLogs
2017-04-19 19:51 - 2017-03-18 20:19 - 00172544 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisRtl.dll
2017-04-19 19:51 - 2017-03-18 20:19 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\admwprox.dll
2017-04-19 19:51 - 2017-03-18 20:19 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ahadmin.dll
2017-04-19 19:51 - 2017-03-18 20:19 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisreset.exe
2017-04-19 19:51 - 2017-03-18 20:19 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\wamregps.dll
2017-04-19 19:51 - 2017-03-18 20:19 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\cngkeyhelper.dll
2017-04-19 19:51 - 2017-03-18 20:19 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\iisrstap.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00973312 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqqm.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00611840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsnap.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00562176 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqutil.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00523776 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntvdm.exe
2017-04-19 19:51 - 2017-03-18 20:18 - 00261120 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00256192 _____ (Microsoft Corporation) C:\WINDOWS\winhelp.exe
2017-04-19 19:51 - 2017-03-18 20:18 - 00221600 _____ (Microsoft Corporation) C:\WINDOWS\system32\lanman.drv
2017-04-19 19:51 - 2017-03-18 20:18 - 00177856 _____ (Microsoft Corporation) C:\WINDOWS\system32\typelib.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00169520 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole2disp.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00156160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqrt.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00153008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole2nls.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00127488 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mqac.sys
2017-04-19 19:51 - 2017-03-18 20:18 - 00127213 _____ C:\WINDOWS\system32\ega.cpi
2017-04-19 19:51 - 2017-03-18 20:18 - 00108464 _____ (Microsoft Corporation) C:\WINDOWS\system32\netapi.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqlogmgr.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00096256 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa.tlb
2017-04-19 19:51 - 2017-03-18 20:18 - 00092320 _____ (Microsoft Corporation) C:\WINDOWS\system32\krnl386.exe
2017-04-19 19:51 - 2017-03-18 20:18 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa30.tlb
2017-04-19 19:51 - 2017-03-18 20:18 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\olecli.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system\olecli.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00069886 _____ C:\WINDOWS\system32\edit.com
2017-04-19 19:51 - 2017-03-18 20:18 - 00068992 _____ (Microsoft Corporation) C:\WINDOWS\system32\MMSYSTEM.DLL
2017-04-19 19:51 - 2017-03-18 20:18 - 00068992 _____ (Microsoft Corporation) C:\WINDOWS\system\MMSYSTEM.DLL
2017-04-19 19:51 - 2017-03-18 20:18 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\graftabl.com
2017-04-19 19:51 - 2017-03-18 20:18 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa20.tlb
2017-04-19 19:51 - 2017-03-18 20:18 - 00053600 _____ C:\WINDOWS\system32\dosx.exe
2017-04-19 19:51 - 2017-03-18 20:18 - 00050648 _____ C:\WINDOWS\system32\COMMAND.COM
2017-04-19 19:51 - 2017-03-18 20:18 - 00047840 _____ (Microsoft Corporation) C:\WINDOWS\system32\USER.EXE
2017-04-19 19:51 - 2017-03-18 20:18 - 00046592 _____ (Microsoft Corporation) C:\WINDOWS\system32\pmspl.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqbkup.exe
2017-04-19 19:51 - 2017-03-18 20:18 - 00042809 _____ C:\WINDOWS\system32\KEY01.SYS
2017-04-19 19:51 - 2017-03-18 20:18 - 00042592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole2.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00042537 _____ C:\WINDOWS\system32\KEYBOARD.SYS
2017-04-19 19:51 - 2017-03-18 20:18 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\DDEML.DLL
2017-04-19 19:51 - 2017-03-18 20:18 - 00039274 _____ C:\WINDOWS\system32\mem.exe
2017-04-19 19:51 - 2017-03-18 20:18 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqoa10.tlb
2017-04-19 19:51 - 2017-03-18 20:18 - 00035776 _____ C:\WINDOWS\system32\NTIO411.SYS
2017-04-19 19:51 - 2017-03-18 20:18 - 00035552 _____ C:\WINDOWS\system32\NTIO412.SYS
2017-04-19 19:51 - 2017-03-18 20:18 - 00034688 _____ C:\WINDOWS\system32\NTIO804.SYS
2017-04-19 19:51 - 2017-03-18 20:18 - 00034688 _____ C:\WINDOWS\system32\NTIO404.SYS
2017-04-19 19:51 - 2017-03-18 20:18 - 00033968 _____ C:\WINDOWS\system32\NTIO.SYS
2017-04-19 19:51 - 2017-03-18 20:18 - 00032816 _____ (Microsoft Corporation) C:\WINDOWS\system32\COMMDLG.DLL
2017-04-19 19:51 - 2017-03-18 20:18 - 00032816 _____ (Microsoft Corporation) C:\WINDOWS\system\COMMDLG.DLL
2017-04-19 19:51 - 2017-03-18 20:18 - 00029370 _____ C:\WINDOWS\system32\NTDOS411.SYS
2017-04-19 19:51 - 2017-03-18 20:18 - 00029274 _____ C:\WINDOWS\system32\NTDOS412.SYS
2017-04-19 19:51 - 2017-03-18 20:18 - 00029146 _____ C:\WINDOWS\system32\NTDOS804.SYS
2017-04-19 19:51 - 2017-03-18 20:18 - 00029146 _____ C:\WINDOWS\system32\NTDOS404.SYS
2017-04-19 19:51 - 2017-03-18 20:18 - 00028420 _____ C:\WINDOWS\system32\bios1.rom
2017-04-19 19:51 - 2017-03-18 20:18 - 00028112 _____ (Microsoft Corporation) C:\WINDOWS\system32\DRWATSON.EXE
2017-04-19 19:51 - 2017-03-18 20:18 - 00027866 _____ C:\WINDOWS\system32\NTDOS.SYS
2017-04-19 19:51 - 2017-03-18 20:18 - 00027792 _____ (Microsoft Corporation) C:\WINDOWS\system32\compobj.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00027200 _____ (Microsoft Corporation) C:\WINDOWS\system32\ctl3dv2.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00027097 _____ C:\WINDOWS\system32\country.sys
2017-04-19 19:51 - 2017-03-18 20:18 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqsvc.exe
2017-04-19 19:51 - 2017-03-18 20:18 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\GDI.EXE
2017-04-19 19:51 - 2017-03-18 20:18 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system32\OLESVR.DLL
2017-04-19 19:51 - 2017-03-18 20:18 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system\OLESVR.DLL
2017-04-19 19:51 - 2017-03-18 20:18 - 00021232 _____ C:\WINDOWS\system32\graphics.pro
2017-04-19 19:51 - 2017-03-18 20:18 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\vdmredir.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00020634 _____ C:\WINDOWS\system32\debug.exe
2017-04-19 19:51 - 2017-03-18 20:18 - 00019694 _____ C:\WINDOWS\system32\GRAPHICS.COM
2017-04-19 19:51 - 2017-03-18 20:18 - 00018896 _____ (Microsoft Corporation) C:\WINDOWS\system32\sysedit.exe
2017-04-19 19:51 - 2017-03-18 20:18 - 00018832 _____ C:\WINDOWS\system32\v7vga.rom
2017-04-19 19:51 - 2017-03-18 20:18 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntvdmd.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\mqcertui.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00014710 _____ C:\WINDOWS\system32\KB16.COM
2017-04-19 19:51 - 2017-03-18 20:18 - 00013888 _____ (Microsoft Corporation) C:\WINDOWS\system32\TOOLHELP.DLL
2017-04-19 19:51 - 2017-03-18 20:18 - 00013312 _____ C:\WINDOWS\system32\win87em.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00012704 _____ (Microsoft Corporation) C:\WINDOWS\system32\WFWNET.DRV
2017-04-19 19:51 - 2017-03-18 20:18 - 00012704 _____ (Microsoft Corporation) C:\WINDOWS\system\WFWNET.DRV
2017-04-19 19:51 - 2017-03-18 20:18 - 00012642 _____ C:\WINDOWS\system32\edlin.exe
2017-04-19 19:51 - 2017-03-18 20:18 - 00012498 _____ C:\WINDOWS\system32\append.exe
2017-04-19 19:51 - 2017-03-18 20:18 - 00011753 _____ C:\WINDOWS\system32\setver.exe
2017-04-19 19:51 - 2017-03-18 20:18 - 00010790 _____ C:\WINDOWS\system32\EDIT.HLP
2017-04-19 19:51 - 2017-03-18 20:18 - 00010544 _____ (Microsoft Corporation) C:\WINDOWS\system32\COMM.drv
2017-04-19 19:51 - 2017-03-18 20:18 - 00009936 _____ (Microsoft Corporation) C:\WINDOWS\system32\lzexpand.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00009936 _____ (Microsoft Corporation) C:\WINDOWS\system\lzexpand.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\WIFEMAN.DLL
2017-04-19 19:51 - 2017-03-18 20:18 - 00009096 _____ C:\WINDOWS\system32\msmqtrc.mof
2017-04-19 19:51 - 2017-03-18 20:18 - 00009029 _____ C:\WINDOWS\system32\ANSI.SYS
2017-04-19 19:51 - 2017-03-18 20:18 - 00009008 _____ (Microsoft Corporation) C:\WINDOWS\system32\ver.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00009008 _____ (Microsoft Corporation) C:\WINDOWS\system\ver.dll
2017-04-19 19:51 - 2017-03-18 20:18 - 00008424 _____ C:\WINDOWS\system32\exe2bin.exe
2017-04-19 19:51 - 2017-03-18 20:18 - 00008191 _____ C:\WINDOWS\system32\bios4.rom
2017-04-19 19:51 - 2017-03-18 20:18 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\win.com
2017-04-19 19:51 - 2017-03-18 20:18 - 00007052 _____ C:\WINDOWS\system32\nlsfunc.exe
2017-04-19 19:51 - 2017-03-18 20:18 - 00005532 _____ (Microsoft Corporation) C:\WINDOWS\system\stdole.tlb
2017-04-19 19:51 - 2017-03-18 20:18 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\system32\WINNLS.DLL
2017-04-19 19:51 - 2017-03-18 20:18 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\system32\SHELL.DLL
2017-04-19 19:51 - 2017-03-18 20:18 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\system\SHELL.DLL
2017-04-19 19:51 - 2017-03-18 20:18 - 00004768 _____ C:\WINDOWS\system32\HIMEM.SYS
2017-04-19 19:51 - 2017-03-18 20:18 - 00004208 _____ (Microsoft Corporation) C:\WINDOWS\system32\storage.dll
2017-04-19 19:51 - 2016-11-24 18:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2017-04-19 19:51 - 2016-11-24 16:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2017-04-19 19:51 - 2016-07-09 19:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 5.1
2017-04-19 19:51 - 2016-02-04 18:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DosPrint
2017-04-19 19:51 - 2013-07-11 07:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2017-04-19 19:51 - 2013-04-16 13:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Odysseus
2017-04-19 19:51 - 2013-04-16 13:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Corel Paint Shop Pro Photo X2
2017-04-19 19:51 - 2013-04-16 11:50 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Text
2017-04-19 19:51 - 2013-04-16 10:35 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung Printers
2017-04-19 19:51 - 2013-04-15 12:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Samsung SCX-4100 Series
2017-04-19 19:39 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\system32\spool
2017-04-19 19:39 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\system32\IME
2017-04-19 19:39 - 2013-04-16 07:08 - 00000000 ____D C:\WINDOWS\system32\SPReview
2017-04-19 19:39 - 2013-04-16 07:06 - 00000000 ____D C:\WINDOWS\system32\EventProviders
2017-04-19 19:38 - 2017-03-19 10:57 - 00000000 ____D C:\WINDOWS\OCR
2017-04-19 19:38 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\schemas
2017-04-19 19:38 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\Resources
2017-04-19 19:38 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2017-04-19 19:38 - 2013-04-17 07:14 - 00000000 ____D C:\WINDOWS\system32\appmgmt
2017-04-19 19:36 - 2017-03-18 20:23 - 00000000 __SHD C:\Program Files\Windows Sidebar
2017-04-19 19:36 - 2017-03-18 20:23 - 00000000 ____D C:\WINDOWS\Help
2017-04-19 19:36 - 2016-03-12 21:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Vulkan 1.0.3.0
2017-04-19 19:36 - 2015-01-12 15:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Ashampoo
2017-04-19 19:36 - 2013-04-17 07:54 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hudba
2017-04-19 19:35 - 2017-03-18 20:23 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2017-04-19 19:35 - 2013-04-17 16:38 - 00000000 ____D C:\Program Files\Microsoft Games
2017-04-19 19:34 - 2009-07-14 04:37 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2017-04-19 19:29 - 2017-03-18 20:23 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-04-19 19:28 - 2017-03-18 20:23 - 00000000 ____D C:\ProgramData\USOPrivate
2017-04-19 19:24 - 2017-03-18 08:02 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2017-04-19 19:23 - 2014-06-11 12:43 - 00000000 ____D C:\Temp
2017-04-19 18:24 - 2013-04-15 07:22 - 00008192 __RSH C:\BOOTSECT.BAK
2017-04-19 17:08 - 2016-01-08 21:44 - 00000000 ____D C:\Users\ZubnĂ ordinace\AppData\Local\CrashDumps
2017-04-18 15:17 - 2013-12-16 10:01 - 00000000 ____D C:\Users\ZubnĂ ordinace\AppData\Local\ElevatedDiagnostics
2017-04-11 21:23 - 2013-04-15 13:36 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2017-04-11 19:49 - 2013-08-19 07:49 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-04-11 19:43 - 2013-04-15 10:03 - 145733648 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-04-11 17:25 - 2016-01-31 15:01 - 00000000 ____D C:\Jucmila
2017-04-11 17:03 - 2015-07-29 14:33 - 00000000 ____D C:\Users\ZubnĂ ordinace\AppData\Local\TileDataLayer
2017-04-11 16:44 - 2015-06-26 11:39 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-04-08 15:45 - 2013-04-15 08:13 - 00430248 _____ (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2017-04-06 20:11 - 2017-03-20 19:59 - 00001443 _____ C:\Users\Public\Desktop\GeForce Experience.lnk
2017-04-06 19:53 - 2016-03-12 21:42 - 00000000 ____D C:\Program Files\VulkanRT
2017-04-03 18:56 - 2017-03-18 20:25 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2017-04-03 18:56 - 2017-03-18 20:25 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2017-04-01 05:19 - 2016-11-24 18:07 - 01470520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap.dll
2017-04-01 05:19 - 2016-11-24 18:07 - 01318968 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge.dll
2017-04-01 05:19 - 2016-11-24 18:07 - 00101944 _____ C:\WINDOWS\system32\NvRtmpStreamer32.dll
2017-03-30 17:11 - 2017-03-08 19:06 - 00000998 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 12.lnk
2017-03-30 17:11 - 2013-04-15 13:44 - 00000000 ____D C:\Program Files\TeamViewer
2017-03-30 16:21 - 2013-04-16 05:55 - 00000000 ___RD C:\Program Files\Skype
2017-03-30 16:21 - 2013-04-15 13:56 - 00000000 ____D C:\ProgramData\Skype
2017-03-30 16:20 - 2016-01-08 19:07 - 00000000 ____D C:\ProgramData\Package Cache
==================== Files in the root of some directories =======
2013-05-14 11:06 - 2013-05-14 11:06 - 0022513 _____ () C:\Users\ZubnĂ ordinace\AppData\Roaming\UserTile.png
2014-07-09 16:25 - 2014-07-09 16:25 - 0007649 _____ () C:\Users\ZubnĂ ordinace\AppData\Local\Resmon.ResmonCfg
2017-04-19 19:21 - 2017-04-19 19:21 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2016-12-27 14:22 - 2017-01-10 17:13 - 0004942 _____ () C:\ProgramData\NvTelemetryContainer.log
2016-12-27 14:22 - 2017-01-10 16:43 - 0003735 _____ () C:\ProgramData\NvTelemetryContainer.log_backup1
Some files in TEMP:
====================
2017-04-21 15:32 - 2017-04-21 15:33 - 0739904 _____ (Oracle Corporation) C:\Users\ZubnĂ ordinace\AppData\Local\Temp\jre-8u131-windows-au.exe
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Norton Security Scan for ZubnĂ ordinace.job => C:\PROGRA~1\NORTON~2\Engine\401~1.16\Nss.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Zubnˇ ordinace\Desktop" je 5 MB.
***** Startup Programs *****
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM
"C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
==================== End Of Log ==============================
- Přílohy
-
- Addition.rar
- (5.14 KiB) Staženo 62 x
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Velice zpomalený počítač
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
CHR HKU\S-1-5-21-643618162-1430922922-3350028935-1001\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
SearchScopes: HKLM -> {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-643618162-1430922922-3350028935-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKU\S-1-5-21-643618162-1430922922-3350028935-1001 -> {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE
Toolbar: HKU\S-1-5-21-643618162-1430922922-3350028935-1001 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
U3 idsvc; no ImagePath
C:\ProgramData\DP45977C.lfl
Task: {1CCC1C06-3957-4315-80C4-D0AFF16BD865} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {35BB0561-06A3-4B75-A4E0-F12A95AB69C1} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {438F1C8E-C93C-468A-9D9C-414724F9D7E7} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {649BD137-E71C-405B-BE41-EAEDF2033B4E} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {6D27825B-1B05-4D4E-A97D-F3D33A6CA9C8} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
Task: {7F9C41F3-37BD-4C41-A074-00E875D4AE2D} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {84C0E02A-E73D-4CEA-8FC4-3CE449BE1BF4} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {88D62F2F-392C-4F82-905D-43AA0F2E7D07} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {8A84BFC4-5ECE-4016-8FDB-67860B49D8EC} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {B25D7B15-2251-4C5F-B349-841BFCFBB0B5} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {B4ED538F-3E42-460B-A842-6E8A5BFA21AE} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {D9EDD717-E4F2-41B5-94F7-D6BCF3FB9878} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {DB6D5FBD-5B79-4E8D-97E9-EE13DE172F6C} - System32\Tasks\{1B5DC5CB-97C8-4FA0-B49A-3AA33C209BE7} => pcalua.exe -a D:\AUTORUN.EXE -d D:\
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Velice zpomalený počítač
Fix result of Farbar Recovery Scan Tool (x86) Version: 20-04-2017
Ran by Zubní ordinace (21-04-2017 19:43:27) Run:1
Running from C:\Users\Zubní ordinace\Desktop
Loaded Profiles: Zubní ordinace (Available Profiles: Zubní ordinace)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
CHR HKU\S-1-5-21-643618162-1430922922-3350028935-1001\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
SearchScopes: HKLM -> {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-643618162-1430922922-3350028935-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKU\S-1-5-21-643618162-1430922922-3350028935-1001 -> {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE
Toolbar: HKU\S-1-5-21-643618162-1430922922-3350028935-1001 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
U3 idsvc; no ImagePath
C:\ProgramData\DP45977C.lfl
Task: {1CCC1C06-3957-4315-80C4-D0AFF16BD865} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {35BB0561-06A3-4B75-A4E0-F12A95AB69C1} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {438F1C8E-C93C-468A-9D9C-414724F9D7E7} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {649BD137-E71C-405B-BE41-EAEDF2033B4E} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {6D27825B-1B05-4D4E-A97D-F3D33A6CA9C8} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
Task: {7F9C41F3-37BD-4C41-A074-00E875D4AE2D} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {84C0E02A-E73D-4CEA-8FC4-3CE449BE1BF4} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {88D62F2F-392C-4F82-905D-43AA0F2E7D07} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {8A84BFC4-5ECE-4016-8FDB-67860B49D8EC} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {B25D7B15-2251-4C5F-B349-841BFCFBB0B5} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {B4ED538F-3E42-460B-A842-6E8A5BFA21AE} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {D9EDD717-E4F2-41B5-94F7-D6BCF3FB9878} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {DB6D5FBD-5B79-4E8D-97E9-EE13DE172F6C} - System32\Tasks\{1B5DC5CB-97C8-4FA0-B49A-3AA33C209BE7} => pcalua.exe -a D:\AUTORUN.EXE -d D:\
EmptyTemp:
End
*****************
HKLM\SOFTWARE\Policies\Google => key removed successfully.
HKU\S-1-5-21-643618162-1430922922-3350028935-1001\SOFTWARE\Policies\Google => key removed successfully.
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer => key removed successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{80c554b9-c7f8-4a21-9471-06d606da78a2} => key removed successfully.
HKCR\CLSID\{80c554b9-c7f8-4a21-9471-06d606da78a2} => key not found.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
HKU\S-1-5-21-643618162-1430922922-3350028935-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} => key removed successfully.
HKCR\CLSID\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} => key not found.
HKU\S-1-5-21-643618162-1430922922-3350028935-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{80c554b9-c7f8-4a21-9471-06d606da78a2} => key removed successfully.
HKCR\CLSID\{80c554b9-c7f8-4a21-9471-06d606da78a2} => key not found.
HKU\S-1-5-21-643618162-1430922922-3350028935-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => value removed successfully.
HKCR\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => key not found.
HKLM\System\CurrentControlSet\Services\idsvc => key removed successfully.
idsvc => service removed successfully.
C:\ProgramData\DP45977C.lfl => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1CCC1C06-3957-4315-80C4-D0AFF16BD865} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1CCC1C06-3957-4315-80C4-D0AFF16BD865} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{35BB0561-06A3-4B75-A4E0-F12A95AB69C1} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{35BB0561-06A3-4B75-A4E0-F12A95AB69C1} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{438F1C8E-C93C-468A-9D9C-414724F9D7E7} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{438F1C8E-C93C-468A-9D9C-414724F9D7E7} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{649BD137-E71C-405B-BE41-EAEDF2033B4E} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{649BD137-E71C-405B-BE41-EAEDF2033B4E} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6D27825B-1B05-4D4E-A97D-F3D33A6CA9C8} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6D27825B-1B05-4D4E-A97D-F3D33A6CA9C8} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OfficeSoftwareProtectionPlatform\SvcRestartTask => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7F9C41F3-37BD-4C41-A074-00E875D4AE2D} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7F9C41F3-37BD-4C41-A074-00E875D4AE2D} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{84C0E02A-E73D-4CEA-8FC4-3CE449BE1BF4} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{84C0E02A-E73D-4CEA-8FC4-3CE449BE1BF4} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{88D62F2F-392C-4F82-905D-43AA0F2E7D07} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{88D62F2F-392C-4F82-905D-43AA0F2E7D07} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{8A84BFC4-5ECE-4016-8FDB-67860B49D8EC} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8A84BFC4-5ECE-4016-8FDB-67860B49D8EC} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B25D7B15-2251-4C5F-B349-841BFCFBB0B5} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B25D7B15-2251-4C5F-B349-841BFCFBB0B5} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{B4ED538F-3E42-460B-A842-6E8A5BFA21AE} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B4ED538F-3E42-460B-A842-6E8A5BFA21AE} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D9EDD717-E4F2-41B5-94F7-D6BCF3FB9878} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D9EDD717-E4F2-41B5-94F7-D6BCF3FB9878} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DB6D5FBD-5B79-4E8D-97E9-EE13DE172F6C} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DB6D5FBD-5B79-4E8D-97E9-EE13DE172F6C} => key removed successfully.
C:\Windows\System32\Tasks\{1B5DC5CB-97C8-4FA0-B49A-3AA33C209BE7} => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{1B5DC5CB-97C8-4FA0-B49A-3AA33C209BE7} => key removed successfully.
=========== EmptyTemp: ==========
BITS transfer queue => 6053888 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 16220116 B
Java, Flash, Steam htmlcache => 10616 B
Windows/system/drivers => 1114619 B
Edge => 562441 B
Chrome => 0 B
Firefox => 0 B
Opera => 35022267 B
Temp, IE cache, history, cookies, recent:
Default => 6144 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
LocalService => 0 B
NetworkService => 171420478 B
Zubní ordinace => 44947301 B
RecycleBin => 0 B
EmptyTemp: => 262.6 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 19:44:47 ====
Ran by Zubní ordinace (21-04-2017 19:43:27) Run:1
Running from C:\Users\Zubní ordinace\Desktop
Loaded Profiles: Zubní ordinace (Available Profiles: Zubní ordinace)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
CHR HKU\S-1-5-21-643618162-1430922922-3350028935-1001\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
SearchScopes: HKLM -> {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-643618162-1430922922-3350028935-1001 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL =
SearchScopes: HKU\S-1-5-21-643618162-1430922922-3350028935-1001 -> {80c554b9-c7f8-4a21-9471-06d606da78a2} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE
Toolbar: HKU\S-1-5-21-643618162-1430922922-3350028935-1001 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
U3 idsvc; no ImagePath
C:\ProgramData\DP45977C.lfl
Task: {1CCC1C06-3957-4315-80C4-D0AFF16BD865} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {35BB0561-06A3-4B75-A4E0-F12A95AB69C1} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {438F1C8E-C93C-468A-9D9C-414724F9D7E7} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {649BD137-E71C-405B-BE41-EAEDF2033B4E} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {6D27825B-1B05-4D4E-A97D-F3D33A6CA9C8} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
Task: {7F9C41F3-37BD-4C41-A074-00E875D4AE2D} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {84C0E02A-E73D-4CEA-8FC4-3CE449BE1BF4} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {88D62F2F-392C-4F82-905D-43AA0F2E7D07} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {8A84BFC4-5ECE-4016-8FDB-67860B49D8EC} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {B25D7B15-2251-4C5F-B349-841BFCFBB0B5} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {B4ED538F-3E42-460B-A842-6E8A5BFA21AE} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {D9EDD717-E4F2-41B5-94F7-D6BCF3FB9878} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {DB6D5FBD-5B79-4E8D-97E9-EE13DE172F6C} - System32\Tasks\{1B5DC5CB-97C8-4FA0-B49A-3AA33C209BE7} => pcalua.exe -a D:\AUTORUN.EXE -d D:\
EmptyTemp:
End
*****************
HKLM\SOFTWARE\Policies\Google => key removed successfully.
HKU\S-1-5-21-643618162-1430922922-3350028935-1001\SOFTWARE\Policies\Google => key removed successfully.
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer => key removed successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{80c554b9-c7f8-4a21-9471-06d606da78a2} => key removed successfully.
HKCR\CLSID\{80c554b9-c7f8-4a21-9471-06d606da78a2} => key not found.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
HKU\S-1-5-21-643618162-1430922922-3350028935-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} => key removed successfully.
HKCR\CLSID\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} => key not found.
HKU\S-1-5-21-643618162-1430922922-3350028935-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{80c554b9-c7f8-4a21-9471-06d606da78a2} => key removed successfully.
HKCR\CLSID\{80c554b9-c7f8-4a21-9471-06d606da78a2} => key not found.
HKU\S-1-5-21-643618162-1430922922-3350028935-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => value removed successfully.
HKCR\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => key not found.
HKLM\System\CurrentControlSet\Services\idsvc => key removed successfully.
idsvc => service removed successfully.
C:\ProgramData\DP45977C.lfl => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1CCC1C06-3957-4315-80C4-D0AFF16BD865} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1CCC1C06-3957-4315-80C4-D0AFF16BD865} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{35BB0561-06A3-4B75-A4E0-F12A95AB69C1} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{35BB0561-06A3-4B75-A4E0-F12A95AB69C1} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{438F1C8E-C93C-468A-9D9C-414724F9D7E7} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{438F1C8E-C93C-468A-9D9C-414724F9D7E7} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{649BD137-E71C-405B-BE41-EAEDF2033B4E} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{649BD137-E71C-405B-BE41-EAEDF2033B4E} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6D27825B-1B05-4D4E-A97D-F3D33A6CA9C8} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6D27825B-1B05-4D4E-A97D-F3D33A6CA9C8} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OfficeSoftwareProtectionPlatform\SvcRestartTask => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7F9C41F3-37BD-4C41-A074-00E875D4AE2D} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7F9C41F3-37BD-4C41-A074-00E875D4AE2D} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{84C0E02A-E73D-4CEA-8FC4-3CE449BE1BF4} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{84C0E02A-E73D-4CEA-8FC4-3CE449BE1BF4} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{88D62F2F-392C-4F82-905D-43AA0F2E7D07} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{88D62F2F-392C-4F82-905D-43AA0F2E7D07} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{8A84BFC4-5ECE-4016-8FDB-67860B49D8EC} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8A84BFC4-5ECE-4016-8FDB-67860B49D8EC} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B25D7B15-2251-4C5F-B349-841BFCFBB0B5} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B25D7B15-2251-4C5F-B349-841BFCFBB0B5} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{B4ED538F-3E42-460B-A842-6E8A5BFA21AE} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B4ED538F-3E42-460B-A842-6E8A5BFA21AE} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D9EDD717-E4F2-41B5-94F7-D6BCF3FB9878} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D9EDD717-E4F2-41B5-94F7-D6BCF3FB9878} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DB6D5FBD-5B79-4E8D-97E9-EE13DE172F6C} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DB6D5FBD-5B79-4E8D-97E9-EE13DE172F6C} => key removed successfully.
C:\Windows\System32\Tasks\{1B5DC5CB-97C8-4FA0-B49A-3AA33C209BE7} => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{1B5DC5CB-97C8-4FA0-B49A-3AA33C209BE7} => key removed successfully.
=========== EmptyTemp: ==========
BITS transfer queue => 6053888 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 16220116 B
Java, Flash, Steam htmlcache => 10616 B
Windows/system/drivers => 1114619 B
Edge => 562441 B
Chrome => 0 B
Firefox => 0 B
Opera => 35022267 B
Temp, IE cache, history, cookies, recent:
Default => 6144 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
LocalService => 0 B
NetworkService => 171420478 B
Zubní ordinace => 44947301 B
RecycleBin => 0 B
EmptyTemp: => 262.6 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 19:44:47 ====
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Velice zpomalený počítač
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Velice zpomalený počítač
Bohužel ne. Zatížení procesoru 99-100 %. Dělá to Windows modules installer worker. Tiworker.exe se stále spouští i když ho zkouším vypnout.
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Velice zpomalený počítač
Zkuste spustit přes příkazový řádek příkazem services.msc správu sůužeb, najděte tam modules installer worker a vypněte ho. Mělo by to pomoci. Pokud by systém někdy v budoucnu vyhodil chybu, že nemůže něco nainstalovat, službu stejným způsobem zapněte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Velice zpomalený počítač
To pomohlo, ale jen na chvilku a velké procento teď ukazuje ještě
host process for setting synchronisation
Mám ještě něco vypnout?
Předem moc děkuji za rady!
host process for setting synchronisation
Mám ještě něco vypnout?
Předem moc děkuji za rady!
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Velice zpomalený počítač
Zkuste použít tento návod: https://translate.google.cz/translate?h ... rev=search .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Velice zpomalený počítač
Zkusím večer, teď musím odjet. Vypadá to ale nadějně. Opravdu se mi ta služba stále zapíná, i když ji vypnu.
Re: Velice zpomalený počítač
Hm, asi z toho nic nebude. na to, že ten program potřebuji jednou a jistotu vyřešení nemám, je pro mě bohužel příliš drahý. Škoda.
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Velice zpomalený počítač
Zkuste tedy kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?