Logfile of random's system information tool 1.10 (written by random/random)
Run by Michal at 2015-11-16 15:28:47
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 184 MB (0%) free of 50 GB
Total RAM: 3980 MB (40% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:29:12, on 16.11.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18098)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x86\QuickGesture.exe
C:\Program Files (x86)\ASUS\FaceLogon\sensorsrv.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Windows\AsScrPro.exe
C:\Windows\SysWOW64\ACEngSvr.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Programy\Samsung Kies\Kies\KiesTrayAgent.exe
C:\Programy\Adobe Acrobat 9.0 Professional\Acrobat\acrotray.exe
E:\Avast\avastui.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Opera\33.0.1990.58\opera.exe
C:\Program Files (x86)\Opera\33.0.1990.58\opera_crashreporter.exe
C:\Program Files (x86)\Opera\33.0.1990.58\opera.exe
C:\Program Files (x86)\Opera\33.0.1990.58\opera.exe
C:\Program Files (x86)\Opera\33.0.1990.58\opera.exe
C:\Program Files (x86)\Opera\33.0.1990.58\opera.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Programy\Winamp\winamp.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_19_0_0_245.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_19_0_0_245.exe
C:\Program Files (x86)\Opera\33.0.1990.58\opera.exe
C:\Program Files (x86)\Opera\33.0.1990.58\opera.exe
C:\Program Files (x86)\Opera\33.0.1990.58\opera.exe
C:\Program Files (x86)\Opera\33.0.1990.58\opera.exe
C:\Program Files\trend micro\Michal.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.search.ask.com/?tpid=ORJ-SPE ... psv=&pt=tb
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = :0
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Programy\Microsoft Office 7 Enterprise\Office12\GrooveShellExtensions.dll (file missing)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_65\bin\ssv.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - E:\Avast\aswWebRepIE.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_65\bin\jp2ssv.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [USB3MON] "C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
O4 - HKLM\..\Run: [ACMON] C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
O4 - HKLM\..\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
O4 - HKLM\..\Run: [ASUS Screen Saver Protector] C:\Windows\AsScrPro.exe
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Programy\Microsoft Office 7 Enterprise\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Programy\Samsung Kies\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Programy\Adobe Acrobat 9.0 Professional\Acrobat\Acrobat_sl.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Programy\Adobe Acrobat 9.0 Professional\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [Kerio VPN Client] "E:\PHM Plus - používat DropBox\VPN - Kerio\VPN Client\kvpnclient.exe" /tryauto
O4 - HKLM\..\Run: [AvastUI.exe] "E:\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [KiesPreload] C:\Programy\Samsung Kies\Kies\Kies.exe /preload
O4 - HKCU\..\Run: [KiesAirMessage] C:\Programy\Samsung Kies\Kies\KiesAirMessage.exe -startup
O4 - HKCU\..\Run: [] C:\Programy\Samsung Kies\Kies\External\FirmwareUpdate\KiesPDLR.exe
O4 - HKCU\..\Run: [Dropbox Update] "C:\Users\Michal\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: WFTPairing.lnk = C:\Program Files (x86)\Canon\EOS Utility\WFTPairing\WFTPairing.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Programy\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Prevést cíl vazby do Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Prevést cíl vazby do existujícího PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Prevést do Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Pridat do stávajícího PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programy\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Programy\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Programy\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O17 - HKLM\System\CCS\Services\Tcpip\..\{F3B36E7F-1973-496E-AE98-EAFCF51BEC73}: NameServer = 93.153.117.1 93.153.117.33
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Programy\Microsoft Office 7 Enterprise\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: ArcSoft Exchange Service (ADExchange) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ASUS InstantOn Service (ASUS InstantOn) - ASUS - C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - E:\Avast\AvastSvc.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service - Unknown owner - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: Služba Windows Media Player Network Sharing (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ZAtheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
--
End of file - 15152 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\WLANExt.exe 22558096
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe"
\??\C:\Windows\system32\conhost.exe "-15233899829809478141961138859-17393875081952302146-243910133-15999922931696603915
"C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe"
"E:\Avast\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
"C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe"
"C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe"
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe"
C:\Windows\SysWOW64\svchost.exe -k MbnExt
C:\Windows\system32\svchost.exe -k bthsvcs
/QuitInfo:00000000000003EC;00000000000006E8; /AddRef;
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe"
"C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnWMI.exe"
taskeng.exe {60C8D14D-ADA0-4AF0-B03C-4A7D18C3EFD0}
/QuitInfo:0000000000000718;000000000000071C; /AddRef;
/QuitInfo:00000000000006E0;0000000000000724;
"taskhost.exe"
/loadhooks /Parent:0000000000000C90
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
ATKOSD.exe
"C:\Program Files\ASUS\P4G\BatteryLife.exe"
"C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe"
KBFiltr.exe
"C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x64\QuickGesture64.exe"
"C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x86\QuickGesture.exe"
"C:\Program Files (x86)\ASUS\FaceLogon\sensorsrv.exe"
taskeng.exe {9579924B-0DCF-4BB3-BAFA-B56E3EFE2EE1}
WDC.exe
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
"C:\Windows\WindowsMobile\wmdc.exe"
C:\Windows\system32\svchost.exe -k WindowsMobile
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Program Files\Elantech\ETDGesture.exe"
C:\Windows\system32\sppsvc.exe
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe"
"C:\Windows\AsScrPro.exe"
C:\Windows\SysWOW64\ACEngSvr.exe -Embedding
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe"
"C:\Programy\Samsung Kies\Kies\KiesTrayAgent.exe"
"C:\Programy\Adobe Acrobat 9.0 Professional\Acrobat\acrotray.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"E:\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\system32\svchost.exe -k SDRSVC
"C:\Program Files (x86)\Opera\33.0.1990.58\opera.exe" --ran-launcher
"C:\Program Files (x86)\Opera\33.0.1990.58\opera_crashreporter.exe" --ran-launcher --crash-reporter-parent-id=5308
"C:\Program Files (x86)\Opera\33.0.1990.58\opera.exe" --type=gpu-process --channel="5308.0.169095802\693091226" --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=on --with-feature:installer-hide-from-program-and-features=off --crash-reporter-pid=5124 --enable-proprietary-codecs-support-for-web-audio-api --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,9,26,51 --disable-accelerated-video-decode --gpu-vendor-id=0x8086 --gpu-device-id=0x0106 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=8.15.10.2653 --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=on --with-feature:installer-hide-from-program-and-features=off --crash-reporter-pid=5124 --enable-proprietary-codecs-support-for-web-audio-api --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Opera\33.0.1990.58\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=on --with-feature:installer-hide-from-program-and-features=off --crash-reporter-pid=5124 --enable-proprietary-codecs-support-for-web-audio-api --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --channel="5308.2.672423901\660374223" /prefetch:673131151
"C:\Program Files (x86)\Opera\33.0.1990.58\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --lang=cs --extension-process --enable-webrtc-hw-h264-encoding --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=on --with-feature:installer-hide-from-program-and-features=off --crash-reporter-pid=5124 --enable-proprietary-codecs-support-for-web-audio-api --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --channel="5308.3.1849701122\1753030966" /prefetch:673131151
"C:\Program Files (x86)\Opera\33.0.1990.58\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=on --with-feature:installer-hide-from-program-and-features=off --crash-reporter-pid=5124 --enable-proprietary-codecs-support-for-web-audio-api --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --channel="5308.4.1398776584\469924337" /prefetch:673131151
"C:\Programy\Total Commander 8.51\TOTALCMD64.EXE"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
C:\Windows\system32\AUDIODG.EXE 0x8d8
"C:\Programy\Winamp\winamp.exe"
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel="5668.7.840794137\1075365868" "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" E7CF176E110C211B 5668 "\\.\pipe\gecko-crash-server-pipe.5668" plugin
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_19_0_0_245.exe" --proxy-stub-channel=Flash2248.604FA108.30518 --host-broker-channel=Flash2248.604FA108.7839 --host-pid=2248 --host-npapi-version=28 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll"
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_19_0_0_245.exe" --channel=6920.0039F318.2109428937 --proxy-stub-channel=Flash2248.604FA108.30518 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll" --host-npapi-version=28 --type=renderer
"C:\Program Files (x86)\Opera\33.0.1990.58\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=on --with-feature:installer-hide-from-program-and-features=off --crash-reporter-pid=5124 --enable-proprietary-codecs-support-for-web-audio-api --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --channel="5308.28.451143029\1535519367" /prefetch:673131151
"C:\Program Files (x86)\Opera\33.0.1990.58\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=on --with-feature:installer-hide-from-program-and-features=off --crash-reporter-pid=5124 --enable-proprietary-codecs-support-for-web-audio-api --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --channel="5308.33.14227169\546425678" /prefetch:673131151
"C:\Program Files (x86)\Opera\33.0.1990.58\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=on --with-feature:installer-hide-from-program-and-features=off --crash-reporter-pid=5124 --enable-proprietary-codecs-support-for-web-audio-api --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --channel="5308.37.893895854\1723499043" /prefetch:673131151
"C:\Program Files (x86)\Opera\33.0.1990.58\opera.exe" --type=renderer --alt-high-dpi-setting=96 --system-dpi-setting=96 --disable-direct-npapi-requests --disable-win32k-renderer-lockdown --lang=cs --disable-client-side-phishing-detection --with-feature:installer-experiment-test=off --with-feature:installer-ui-stats=on --with-feature:installer-hide-from-program-and-features=off --crash-reporter-pid=5124 --enable-proprietary-codecs-support-for-web-audio-api --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --channel="5308.38.165939816\1872319423" /prefetch:673131151
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe6_ Global\UsGthrCtrlFltPipeMssGthrPipe6 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
"C:\Programy\RSITx64 - hijackthis.exe"
C:\Windows\System32\svchost.exe -k WerSvcGroup
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\DropboxUpdateTaskUserS-1-5-21-2225000157-3097903131-2559664316-1000Core.job - C:\Users\Michal\AppData\Local\Dropbox\Update\DropboxUpdate.exe /c
C:\Windows\tasks\DropboxUpdateTaskUserS-1-5-21-2225000157-3097903131-2559664316-1000UA.job - C:\Users\Michal\AppData\Local\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\ou5wqrjl.default-1444072094105
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 19.0.0.245 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Programy\Picasa 3.9\npPicasa3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.52]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.65.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.65.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_65\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Acrobat]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Programy\Adobe Acrobat 9.0 Professional\Acrobat\Air\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 19.0.0.245 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - E:\Avast\aswWebRepIE64.dll [2015-07-29 655480]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2013-05-08 77424]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Programy\Microsoft Office 7 Enterprise\Office12\GrooveShellExtensions.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_65\bin\ssv.dll [2015-11-05 460384]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-12-29 51872]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - E:\Avast\aswWebRepIE.dll [2015-07-29 559624]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-05-08 351864]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-11-05 172640]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
SmartSelect Class - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-05-08 351864]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} -
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-05-08 351864]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2012-02-22 170264]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2012-02-22 398616]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2012-02-19 2661672]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2012-02-14 12448872]
"AtherosBtStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-12-29 1014432]
"AthBtTray"=C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-12-29 800416]
"Windows Mobile Device Center"=C:\Windows\WindowsMobile\wmdc.exe [2007-05-31 660360]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2012-04-04 446392]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"KiesPreload"=C:\Programy\Samsung Kies\Kies\Kies.exe [2014-07-25 1562264]
"KiesAirMessage"=C:\Programy\Samsung Kies\Kies\KiesAirMessage.exe -startup []
""=C:\Programy\Samsung Kies\Kies\External\FirmwareUpdate\KiesPDLR.exe []
"AdobeBridge"= []
"Dropbox Update"=C:\Users\Michal\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-18 134512]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2012-02-07 291608]
"ACMON"=C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2012-02-21 102568]
"Wireless Console 3"=C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2012-02-02 2321072]
"ASUS Screen Saver Protector"=C:\Windows\AsScrPro.exe [2012-09-22 3058304]
"ATKOSD2"=C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2012-06-25 322208]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [2012-06-19 174752]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"GrooveMonitor"=C:\Programy\Microsoft Office 7 Enterprise\Office12\GrooveMonitor.exe [2009-02-26 30040]
"KiesTrayAgent"=C:\Programy\Samsung Kies\Kies\KiesTrayAgent.exe [2014-07-25 311616]
"Adobe Acrobat Speed Launcher"=C:\Programy\Adobe Acrobat 9.0 Professional\Acrobat\Acrobat_sl.exe [2013-05-08 44128]
""= []
"Acrobat Assistant 8.0"=C:\Programy\Adobe Acrobat 9.0 Professional\Acrobat\Acrotray.exe [2013-05-08 642664]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
"SwitchBoard"=C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]
"Kerio VPN Client"=E:\PHM Plus - používat DropBox\VPN - Kerio\VPN Client\kvpnclient.exe [2008-01-16 2646016]
"AvastUI.exe"=E:\Avast\AvastUI.exe [2015-11-06 6133520]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-10-06 597040]
C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
WFTPairing.lnk - C:\Program Files (x86)\Canon\EOS Utility\WFTPairing\WFTPairing.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2012-02-22 430080]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Programy\Microsoft Office 7 Enterprise\Office12\GrooveShellExtensions.dll []
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2015-11-16 15:28:50 ----D---- C:\Program Files\trend micro
2015-11-16 15:28:47 ----D---- C:\rsit
2015-11-14 09:47:42 ----A---- C:\Windows\system32\win32k.sys
2015-11-10 21:08:23 ----A---- C:\Windows\system32\wuaueng.dll
2015-11-10 21:08:22 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2015-11-10 21:08:22 ----A---- C:\Windows\SYSWOW64\wups.dll
2015-11-10 21:08:22 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2015-11-10 21:08:22 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2015-11-10 21:08:22 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2015-11-10 21:08:22 ----A---- C:\Windows\system32\wuwebv.dll
2015-11-10 21:08:22 ----A---- C:\Windows\system32\wups2.dll
2015-11-10 21:08:22 ----A---- C:\Windows\system32\wups.dll
2015-11-10 21:08:22 ----A---- C:\Windows\system32\wudriver.dll
2015-11-10 21:08:22 ----A---- C:\Windows\system32\wucltux.dll
2015-11-10 21:08:22 ----A---- C:\Windows\system32\wuauclt.exe
2015-11-10 21:08:22 ----A---- C:\Windows\system32\wuapp.exe
2015-11-10 21:08:22 ----A---- C:\Windows\system32\wuapi.dll
2015-11-10 21:08:22 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-11-10 21:08:22 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-11-10 21:02:25 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2015-11-10 21:02:24 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-11-10 21:02:23 ----A---- C:\Windows\SYSWOW64\occache.dll
2015-11-10 21:02:23 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2015-11-10 21:02:23 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2015-11-10 21:02:23 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2015-11-10 21:02:23 ----A---- C:\Windows\system32\iernonce.dll
2015-11-10 21:02:23 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-11-10 21:02:23 ----A---- C:\Windows\system32\ie4uinit.exe
2015-11-10 21:02:22 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2015-11-10 21:02:22 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2015-11-10 21:02:22 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2015-11-10 21:02:22 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-11-10 21:02:22 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2015-11-10 21:02:22 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-11-10 21:02:19 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2015-11-10 21:02:18 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2015-11-10 21:02:18 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2015-11-10 21:02:17 ----A---- C:\Windows\system32\occache.dll
2015-11-10 21:02:17 ----A---- C:\Windows\system32\iedkcs32.dll
2015-11-10 21:02:16 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2015-11-10 21:02:16 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2015-11-10 21:02:16 ----A---- C:\Windows\SYSWOW64\jscript.dll
2015-11-10 21:02:16 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2015-11-10 21:02:16 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2015-11-10 21:02:16 ----A---- C:\Windows\system32\urlmon.dll
2015-11-10 21:02:16 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-11-10 21:02:16 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-11-10 21:02:15 ----A---- C:\Windows\SYSWOW64\ieui.dll
2015-11-10 21:02:15 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2015-11-10 21:02:15 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2015-11-10 21:02:15 ----A---- C:\Windows\system32\msfeeds.dll
2015-11-10 21:02:15 ----A---- C:\Windows\system32\dxtrans.dll
2015-11-10 21:02:14 ----A---- C:\Windows\system32\iesetup.dll
2015-11-10 21:02:14 ----A---- C:\Windows\system32\ieapfltr.dll
2015-11-10 21:02:13 ----A---- C:\Windows\system32\iertutil.dll
2015-11-10 21:02:12 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2015-11-10 21:02:12 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2015-11-10 21:02:12 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2015-11-10 21:02:12 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2015-11-10 21:02:12 ----A---- C:\Windows\system32\vbscript.dll
2015-11-10 21:02:11 ----A---- C:\Windows\SYSWOW64\wininet.dll
2015-11-10 21:02:11 ----A---- C:\Windows\system32\jsproxy.dll
2015-11-10 21:02:10 ----A---- C:\Windows\SYSWOW64\msrating.dll
2015-11-10 21:02:10 ----A---- C:\Windows\system32\ieui.dll
2015-11-10 21:02:10 ----A---- C:\Windows\system32\ieframe.dll
2015-11-10 21:02:10 ----A---- C:\Windows\system32\dxtmsft.dll
2015-11-10 21:02:09 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-11-10 21:02:09 ----A---- C:\Windows\system32\mshtmled.dll
2015-11-10 21:02:09 ----A---- C:\Windows\system32\ieUnatt.exe
2015-11-10 21:02:08 ----A---- C:\Windows\system32\webcheck.dll
2015-11-10 21:02:08 ----A---- C:\Windows\system32\jscript9diag.dll
2015-11-10 21:02:08 ----A---- C:\Windows\system32\jscript9.dll
2015-11-10 21:02:08 ----A---- C:\Windows\system32\jscript.dll
2015-11-10 21:02:07 ----A---- C:\Windows\system32\wininet.dll
2015-11-10 21:02:07 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-11-10 21:02:06 ----A---- C:\Windows\system32\msrating.dll
2015-11-10 21:02:06 ----A---- C:\Windows\system32\mshtml.dll
2015-11-10 21:00:38 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-11-10 21:00:37 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2015-11-10 21:00:37 ----A---- C:\Windows\system32\schannel.dll
2015-11-10 21:00:37 ----A---- C:\Windows\system32\kerberos.dll
2015-11-10 21:00:36 ----A---- C:\Windows\SYSWOW64\schannel.dll
2015-11-10 21:00:36 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe
2015-11-10 21:00:36 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2015-11-10 21:00:36 ----A---- C:\Windows\system32\ncrypt.dll
2015-11-10 21:00:36 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-11-10 21:00:36 ----A---- C:\Windows\system32\drivers\cng.sys
2015-11-10 21:00:35 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe
2015-11-10 21:00:34 ----A---- C:\Windows\SYSWOW64\bcryptprimitives.dll
2015-11-10 21:00:32 ----A---- C:\Windows\system32\bcryptprimitives.dll
2015-11-10 21:00:29 ----A---- C:\Windows\system32\kernel32.dll
2015-11-10 21:00:28 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2015-11-10 21:00:28 ----A---- C:\Windows\system32\ntdll.dll
2015-11-10 21:00:28 ----A---- C:\Windows\system32\lsasrv.dll
2015-11-10 21:00:28 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-11-10 21:00:27 ----A---- C:\Windows\system32\wow64.dll
2015-11-10 21:00:27 ----A---- C:\Windows\system32\KernelBase.dll
2015-11-10 21:00:26 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2015-11-10 21:00:26 ----A---- C:\Windows\system32\winsrv.dll
2015-11-10 21:00:26 ----A---- C:\Windows\system32\srcore.dll
2015-11-10 21:00:26 ----A---- C:\Windows\system32\rstrui.exe
2015-11-10 21:00:26 ----A---- C:\Windows\system32\rpcrt4.dll
2015-11-10 21:00:26 ----A---- C:\Windows\system32\msv1_0.dll
2015-11-10 21:00:26 ----A---- C:\Windows\system32\conhost.exe
2015-11-10 21:00:25 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2015-11-10 21:00:25 ----A---- C:\Windows\system32\wdigest.dll
2015-11-10 21:00:25 ----A---- C:\Windows\system32\TSpkg.dll
2015-11-10 21:00:25 ----A---- C:\Windows\system32\sspicli.dll
2015-11-10 21:00:22 ----A---- C:\Windows\system32\smss.exe
2015-11-10 21:00:21 ----A---- C:\Windows\SYSWOW64\setup16.exe
2015-11-10 21:00:20 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2015-11-10 21:00:20 ----A---- C:\Windows\SYSWOW64\srclient.dll
2015-11-10 21:00:20 ----A---- C:\Windows\SYSWOW64\auditpol.exe
2015-11-10 21:00:20 ----A---- C:\Windows\system32\srclient.dll
2015-11-10 21:00:20 ----A---- C:\Windows\system32\lsass.exe
2015-11-10 21:00:20 ----A---- C:\Windows\system32\auditpol.exe
2015-11-10 21:00:19 ----A---- C:\Windows\system32\ntvdm64.dll
2015-11-10 21:00:19 ----A---- C:\Windows\system32\csrsrv.dll
2015-11-10 21:00:19 ----A---- C:\Windows\system32\cryptbase.dll
2015-11-10 21:00:18 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2015-11-10 21:00:18 ----A---- C:\Windows\SYSWOW64\secur32.dll
2015-11-10 21:00:18 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll
2015-11-10 21:00:18 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2015-11-10 21:00:18 ----A---- C:\Windows\SYSWOW64\cryptbase.dll
2015-11-10 21:00:18 ----A---- C:\Windows\SYSWOW64\credssp.dll
2015-11-10 21:00:18 ----A---- C:\Windows\system32\wow64win.dll
2015-11-10 21:00:18 ----A---- C:\Windows\system32\wow64cpu.dll
2015-11-10 21:00:18 ----A---- C:\Windows\system32\sspisrv.dll
2015-11-10 21:00:18 ----A---- C:\Windows\system32\secur32.dll
2015-11-10 21:00:18 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2015-11-10 21:00:18 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-11-10 21:00:18 ----A---- C:\Windows\system32\credssp.dll
2015-11-10 21:00:17 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2015-11-10 21:00:17 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-11-10 21:00:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-11-10 21:00:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-11-10 21:00:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2015-11-10 21:00:16 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2015-11-10 21:00:16 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-11-10 21:00:16 ----A---- C:\Windows\SYSWOW64\wow32.dll
2015-11-10 21:00:16 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2015-11-10 21:00:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-11-10 21:00:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-11-10 21:00:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-11-10 21:00:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-11-10 21:00:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-11-10 21:00:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-11-10 21:00:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-11-10 21:00:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-11-10 21:00:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-11-10 21:00:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2015-11-10 21:00:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-11-10 21:00:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-11-10 21:00:15 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-11-10 21:00:15 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-11-10 21:00:15 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-11-10 21:00:14 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-11-10 21:00:14 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2015-11-10 21:00:14 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-11-10 21:00:14 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-11-10 21:00:14 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-11-10 21:00:14 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-11-10 21:00:14 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-11-10 21:00:14 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-11-10 21:00:14 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-11-10 21:00:14 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-11-10 21:00:14 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-11-10 21:00:14 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-11-10 21:00:14 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-11-10 21:00:14 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-11-10 21:00:14 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-11-10 21:00:14 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-11-10 21:00:14 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-11-10 21:00:14 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-11-10 21:00:14 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-11-10 21:00:14 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-11-10 21:00:13 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-11-10 21:00:13 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-11-10 21:00:13 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-11-10 21:00:13 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-11-10 21:00:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2015-11-10 21:00:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-11-10 21:00:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-11-10 21:00:12 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2015-11-10 21:00:12 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-11-10 21:00:12 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-11-10 21:00:12 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-11-10 21:00:12 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-11-10 21:00:12 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-11-10 21:00:12 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-11-10 21:00:12 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-11-10 21:00:12 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-11-10 21:00:12 ----A---- C:\Windows\SYSWOW64\instnm.exe
2015-11-10 21:00:12 ----A---- C:\Windows\SYSWOW64\apisetschema.dll
2015-11-10 21:00:12 ----A---- C:\Windows\system32\apisetschema.dll
2015-11-10 21:00:10 ----A---- C:\Windows\SYSWOW64\user.exe
2015-11-10 21:00:08 ----A---- C:\Windows\SYSWOW64\adtschema.dll
2015-11-10 21:00:08 ----A---- C:\Windows\system32\adtschema.dll
2015-11-10 21:00:06 ----A---- C:\Windows\SYSWOW64\msaudite.dll
2015-11-10 21:00:06 ----A---- C:\Windows\system32\msaudite.dll
2015-11-10 21:00:04 ----A---- C:\Windows\system32\msobjs.dll
2015-11-10 21:00:03 ----A---- C:\Windows\SYSWOW64\msobjs.dll
2015-11-10 20:58:10 ----A---- C:\Windows\system32\drivers\tdx.sys
2015-11-10 20:58:08 ----A---- C:\Windows\system32\drivers\afd.sys
2015-11-10 20:57:56 ----A---- C:\Windows\SYSWOW64\apphelp.dll
2015-11-10 20:57:56 ----A---- C:\Windows\system32\apphelp.dll
2015-11-10 20:57:55 ----A---- C:\Windows\SYSWOW64\sdbinst.exe
2015-11-10 20:57:55 ----A---- C:\Windows\system32\shimeng.dll
2015-11-10 20:57:55 ----A---- C:\Windows\system32\sdbinst.exe
2015-11-10 20:57:55 ----A---- C:\Windows\system32\aelupsvc.dll
2015-11-10 20:57:54 ----A---- C:\Windows\SYSWOW64\shimeng.dll
2015-11-10 20:57:23 ----A---- C:\Windows\SYSWOW64\InkEd.dll
2015-11-10 20:57:23 ----A---- C:\Windows\system32\jnwmon.dll
2015-11-10 20:57:23 ----A---- C:\Windows\system32\InkEd.dll
2015-11-10 20:57:19 ----A---- C:\Windows\system32\drivers\ndis.sys
2015-11-10 20:44:20 ----A---- C:\Windows\SYSWOW64\FlashPlayerInstaller.exe
2015-11-09 19:57:12 ----D---- C:\Program Files (x86)\Mozilla Firefox
======List of files/folders modified in the last 1 month======
2015-11-16 15:29:05 ----D---- C:\Windows\Prefetch
2015-11-16 15:28:50 ----RD---- C:\Program Files
2015-11-16 15:28:30 ----D---- C:\Programy
2015-11-16 08:34:54 ----D---- C:\Windows\Temp
2015-11-16 08:33:29 ----SHD---- C:\Windows\Installer
2015-11-16 08:33:28 ----SHD---- C:\Config.Msi
2015-11-16 08:32:02 ----D---- C:\Windows\inf
2015-11-16 08:24:46 ----D---- C:\Windows\System32
2015-11-16 08:24:46 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-11-16 08:24:24 ----SHD---- C:\System Volume Information
2015-11-15 10:08:23 ----D---- C:\Windows
2015-11-15 09:36:50 ----D---- C:\Windows\Microsoft.NET
2015-11-15 09:36:45 ----RSD---- C:\Windows\assembly
2015-11-15 09:34:41 ----A---- C:\Windows\SYSWOW64\log.txt
2015-11-15 09:32:17 ----D---- C:\Windows\winsxs
2015-11-15 09:31:41 ----D---- C:\Windows\system32\config
2015-11-15 09:26:49 ----D---- C:\Users\Michal\AppData\Roaming\Winamp
2015-11-15 08:55:14 ----D---- C:\Users\Michal\AppData\Roaming\uTorrent
2015-11-14 15:29:56 ----D---- C:\Users\Michal\AppData\Roaming\vlc
2015-11-14 14:19:31 ----D---- C:\Windows\debug
2015-11-14 09:26:18 ----D---- C:\Users\Michal\AppData\Roaming\Dropbox
2015-11-11 21:22:38 ----D---- C:\Windows\SYSWOW64\cs-CZ
2015-11-11 21:22:37 ----D---- C:\Windows\SYSWOW64\en-US
2015-11-11 21:22:37 ----D---- C:\Windows\SysWOW64
2015-11-11 21:22:37 ----D---- C:\Windows\system32\cs-CZ
2015-11-11 21:22:37 ----D---- C:\Program Files\Internet Explorer
2015-11-11 21:22:35 ----D---- C:\Windows\system32\en-US
2015-11-11 21:22:31 ----D---- C:\Program Files (x86)\Internet Explorer
2015-11-11 21:22:16 ----D---- C:\Windows\system32\drivers
2015-11-11 21:22:16 ----D---- C:\Windows\AppPatch
2015-11-11 21:22:12 ----D---- C:\Windows\system32\migration
2015-11-11 21:22:11 ----D---- C:\Program Files\Windows Journal
2015-11-11 20:54:17 ----D---- C:\Windows\system32\MRT
2015-11-11 20:48:02 ----D---- C:\Windows\system32\Tasks
2015-11-11 20:48:02 ----D---- C:\Program Files (x86)\ASUS
2015-11-11 20:36:48 ----A---- C:\Windows\system32\MRT.exe
2015-11-11 20:33:55 ----D---- C:\ProgramData\Microsoft Help
2015-11-10 21:44:22 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2015-11-10 20:56:43 ----D---- C:\Windows\system32\catroot2
2015-11-10 20:23:54 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-11-10 20:23:44 ----D---- C:\Program Files (x86)
2015-11-05 22:49:34 ----D---- C:\ProgramData\Oracle
2015-11-05 22:46:28 ----D---- C:\Program Files (x86)\Common Files
2015-11-05 22:43:30 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2015-11-05 22:42:55 ----D---- C:\Program Files (x86)\Java
2015-11-05 22:38:38 ----D---- C:\Program Files (x86)\Opera
2015-10-23 16:08:00 ----D---- C:\Program Files (x86)\Google
2015-10-23 16:07:18 ----D---- C:\Windows\Tasks
2015-10-21 19:50:55 ----SD---- C:\Windows\system32\CompatTel
2015-10-21 19:50:52 ----D---- C:\Windows\system32\appraiser
2015-10-21 19:50:43 ----D---- C:\Windows\system32\CodeIntegrity
2015-10-21 19:50:43 ----D---- C:\Windows\system32\Boot
2015-10-18 19:13:20 ----D---- C:\Program Files (x86)\Canon
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-09-29 65224]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-09-29 274808]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-12-23 568600]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2012-02-07 16152]
R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2013-03-14 55280]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-09-29 93528]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-11-06 1059656]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-11-06 449992]
R1 ATKWMIACPIIO;ATKWMIACPI Driver; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-09-07 17536]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2012-12-09 126944]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-02 15416]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-09-29 28656]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-09-29 90968]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-09-29 153744]
R3 AiCharger;ASUS Charger Driver; C:\Windows\system32\DRIVERS\AiCharger.sys [2012-02-29 17152]
R3 AsusVBus;AsusVBus; C:\Windows\system32\DRIVERS\AsusVBus.sys [2012-04-11 35968]
R3 AsusVTouch;AsusVTouch; C:\Windows\system32\DRIVERS\AsusVTouch.sys [2012-04-11 16512]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2011-10-03 2770944]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2011-12-29 30368]
R3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2012-02-19 200488]
R3 huawei_enumerator;huawei_enumerator; C:\Windows\system32\DRIVERS\ew_jubusenum.sys [2013-03-04 91648]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-02-22 14692224]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2012-02-14 4744808]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2012-02-20 331264]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3hub.sys [2012-02-07 356120]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2012-02-07 787736]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 kvpndev;Kerio VPN adapter; C:\Windows\system32\DRIVERS\kvpndrv.sys [2008-01-16 73216]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2011-11-10 60184]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RSBASTOR;Realtek PCIE CardReader Driver - BA; C:\Windows\system32\DRIVERS\RtsBaStor.sys [2012-02-01 292968]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-08-23 565352]
S3 androidusb;SAMSUNG Android Composite ADB Interface Driver; C:\Windows\System32\Drivers\ssadadb.sys [2013-05-02 38080]
S3 ASUSProcObsrv;ASUS Process Creation/Termination Observer; \??\D:\I386\AsPrOb64.sys []
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2011-12-29 36000]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2011-12-29 338592]
S3 btath_avdt;Atheros Bluetooth AVDT Service; C:\Windows\system32\drivers\btath_avdt.sys [2011-12-29 110752]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2011-12-29 167584]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2011-12-29 68256]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2011-12-29 280992]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2011-12-29 548000]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\Windows\system32\DRIVERS\ew_hwusbdev.sys [2013-01-25 109568]
S3 ew_usbenumfilter;huawei_CompositeFilter; C:\Windows\system32\DRIVERS\ew_usbenumfilter.sys [2012-12-22 14976]
S3 FsUsbExDisk;FsUsbExDisk; \??\C:\Windows\SysWOW64\FsUsbExDisk.SYS [2013-05-22 37344]
S3 huawei_cdcacm;huawei_cdcacm; C:\Windows\system32\DRIVERS\ew_jucdcacm.sys [2013-03-04 110592]
S3 huawei_ext_ctrl;huawei_ext_ctrl; C:\Windows\system32\DRIVERS\ew_juextctrl.sys [2013-03-04 30720]
S3 huawei_wwanecm;huawei_wwanecm; C:\Windows\system32\DRIVERS\ew_juwwanecm.sys [2013-06-29 246272]
S3 massfilter;Mass Storage Filter Driver; C:\Windows\system32\drivers\massfilter.sys [2011-04-13 11776]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 pwdrvio;pwdrvio; \??\C:\Windows\syswow64\pwdrvio.sys []
S3 pwdspio;pwdspio; \??\C:\Windows\syswow64\pwdspio.sys []
S3 RimUsb;zařízení BlackBerry Smartphone; C:\Windows\System32\Drivers\RimUsb_AMD64.sys []
S3 RimVSerPort;RIM Virtual Serial Port v2; C:\Windows\system32\DRIVERS\RimSerial_AMD64.sys [2012-12-10 44544]
S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\Windows\System32\Drivers\RootMdm.sys [2009-07-14 11264]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\ssadbus.sys [2013-05-02 169288]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter); C:\Windows\system32\DRIVERS\ssadmdfl.sys [2013-05-02 21320]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers; C:\Windows\system32\DRIVERS\ssadmdm.sys [2013-05-02 188232]
S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM); C:\Windows\system32\DRIVERS\ssadserd.sys [2013-05-02 158024]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2008-05-23 154168]
S3 WinUsb;Ovladač WinUsb; C:\Windows\system32\drivers\WinUsb.sys [2010-11-21 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ADExchange;ArcSoft Exchange Service; C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe [2012-02-16 43112]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2011-11-21 80512]
R2 ASUS InstantOn;ASUS InstantOn Service; C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe [2012-04-13 277120]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2011-12-29 106144]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2011-11-21 96896]
R2 avast! Antivirus;Avast Antivirus; E:\Avast\AvastSvc.exe [2015-09-29 146600]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2011-12-08 607456]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2011-12-16 128280]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2011-12-16 161560]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2011-12-16 277784]
R2 MbnExt;Mobile Broadband Extension Service; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 MDM;Machine Debug Manager; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-12-16 363800]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2014-12-11 315496]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-10 269000]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2012-02-22 276248]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2012-10-06 651720]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-09-23 194032]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-10-31 114688]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Programy\Microsoft Office 7 Enterprise\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-11-09 147624]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-05-06 1255736]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím vás o kontrolu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Prosím vás o kontrolu
Krasny den Vam preju 
Pozorujete na PC nejake konkretni problemy, ci jde pouze o preventivku? Jedna se o pracovni PC?
Na systemovem disku ( C:\ ) mate jen 184 MB volneho mista a system se tim padem velice jednoduse receno dusi. Uvolnete alespon nekolik GB.
V ramci cisteni Vam budou vyprazdneny docasne adresare (vcetne Kose).
Ulozte na plochu AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/ (nebo http://www.bleepingcomputer.com/download/adwcleaner/ )
Pozorujete na PC nejake konkretni problemy, ci jde pouze o preventivku? Jedna se o pracovni PC? Na systemovem disku ( C:\ ) mate jen 184 MB volneho mista a system se tim padem velice jednoduse receno dusi. Uvolnete alespon nekolik GB. V ramci cisteni Vam budou vyprazdneny docasne adresare (vcetne Kose). Ulozte na plochu AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/ (nebo http://www.bleepingcomputer.com/download/adwcleaner/ )
- ukoncete vsechny programy
- kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
- kliknete na Scan, pote na Cleaning
- po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\AdwCleaner[Cx].txt), jehoz obsah mi zkopirujte do pristi odpovedi
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Re: Prosím vás o kontrolu
Dobrý den,
děkuji vám za rady. Jedná se o soukromý PC. Jediným problémem je pomalost PC, ale tu si vysvětluji nedostatkem prostoru na disku C, pro který jsem při prvotním rozdělení disku stanovil jen 52 GB. Ze začátku to stačilo, ale postupně se aktualizací Windows či i dalších programů zahltil. Měl byste nějakou radu na tento problém? Na disku C mám uložené všechny programy, a tak se obávám, zda budou fungovat v pořádku po jejich přesunu na disk E. Šlo by disk C zvětšit na úkor disku E, nebo už to není možné?
AdwCleaner mi žádné nebezpečné soubory neobjevil - viz log:
# AdwCleaner v5.021 - Logfile created 17/11/2015 at 08:52:10
# Updated 14/11/2015 by Xplode
# Database : 2015-11-13.3 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : Michal - MICHAL-PC
# Running from : E:\Programy\adwcleaner_5.021.exe
# Option : Scan
# Support : http://toolslib.net/forum
***** [ Services ] *****
***** [ Folders ] *****
Folder Found : C:\ProgramData\apn
Folder Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\myfree codec
***** [ Files ] *****
***** [ DLL ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
***** [ Registry ] *****
Key Found : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Key Found : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Found : HKCU\Software\Myfree Codec
Key Found : HKLM\SOFTWARE\Myfree Codec
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec
Key Found : HKU\.DEFAULT\Software\AskPartnerNetwork
Data Found : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxp://www.search.ask.com/?tpid=ORJ-SPE&o=APN1 ... psv=&pt=tb
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33270DCF-7DF7-40A1-B440-4C181332E0EF}
***** [ Web browsers ] *****
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1748 bytes] ##########
děkuji vám za rady. Jedná se o soukromý PC. Jediným problémem je pomalost PC, ale tu si vysvětluji nedostatkem prostoru na disku C, pro který jsem při prvotním rozdělení disku stanovil jen 52 GB. Ze začátku to stačilo, ale postupně se aktualizací Windows či i dalších programů zahltil. Měl byste nějakou radu na tento problém? Na disku C mám uložené všechny programy, a tak se obávám, zda budou fungovat v pořádku po jejich přesunu na disk E. Šlo by disk C zvětšit na úkor disku E, nebo už to není možné?
AdwCleaner mi žádné nebezpečné soubory neobjevil - viz log:
# AdwCleaner v5.021 - Logfile created 17/11/2015 at 08:52:10
# Updated 14/11/2015 by Xplode
# Database : 2015-11-13.3 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : Michal - MICHAL-PC
# Running from : E:\Programy\adwcleaner_5.021.exe
# Option : Scan
# Support : http://toolslib.net/forum
***** [ Services ] *****
***** [ Folders ] *****
Folder Found : C:\ProgramData\apn
Folder Found : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\myfree codec
***** [ Files ] *****
***** [ DLL ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
***** [ Registry ] *****
Key Found : HKLM\SOFTWARE\Classes\AppID\{4D076AB4-7562-427A-B5D2-BD96E19DEE56}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556}
Key Found : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8FFE}
Key Found : HKCU\Software\Myfree Codec
Key Found : HKLM\SOFTWARE\Myfree Codec
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec
Key Found : HKU\.DEFAULT\Software\AskPartnerNetwork
Data Found : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page] - hxxp://www.search.ask.com/?tpid=ORJ-SPE&o=APN1 ... psv=&pt=tb
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33270DCF-7DF7-40A1-B440-4C181332E0EF}
***** [ Web browsers ] *****
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1748 bytes] ##########
Re: Prosím vás o kontrolu
Prvne pocitaci odlehcime a az po vycisteni budeme resit upravu oddilu. Popiste prosim, co se pod kterou jednotkou skryva (napr.: V PC mam dva hard disky. Prvni hard disk mam rozdeleny na dva oddily, kterymi jsou systemovy C:\ a druhy E:\. Druhy disk je oznacen jako D:\ a pod jednotkou F:\ se skryva DVD mechanika). Znovu spustte AdwCleaner, kliknete na Scan a po cca minute na Cleaning, aby doslo k vymazani nalezu. Pote vlozte logy FRST.txt a Addition.txt - navod je zde http://forum.viry.cz/viewtopic.php?f=30&t=133101Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Re: Prosím vás o kontrolu
Pročistil jsem si systémový disk C, a to konkrétně výmazem Windows updatů. Na disku mám tak volných 8 GB z celkových 52 GB. Chod PC se znatelně zlepšil.
Provedl jsem ještě jednou AdwCleaning podle Tvých pokynů.
Když jsem si ale chtěl stáhnout ten FRSTLauncher z adresy http://vyosek.ic.cz/pro_usery/FRSTLauncher.exe, vyskočilo na mě výrazné varování mého antiviru. Tak nevím, zda mám obsahu důvěřovat...
Provedl jsem ještě jednou AdwCleaning podle Tvých pokynů.
Když jsem si ale chtěl stáhnout ten FRSTLauncher z adresy http://vyosek.ic.cz/pro_usery/FRSTLauncher.exe, vyskočilo na mě výrazné varování mého antiviru. Tak nevím, zda mám obsahu důvěřovat...
Re: Prosím vás o kontrolu
FRSTLauncher - jedna se o rozsireni pro FRST.exe/FRST64.exe napsane byvalymi cleny tohoto fora, takze je cisty - doplnuje nekolik informaci do logu, ale nejsou to nezbytne nutne informace. Bohate bude stacit, kdyz spustis samotny FRST.exe/FRST64.exe a vlozis logy FRST.txt a Addition.txt.
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Re: Prosím vás o kontrolu
Zdravím,
vkládám požadované logy po provedené analýze FRST.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:25-11-2015 02
Ran by Michal (administrator) on MICHAL-PC (25-11-2015 21:33:38)
Running from C:\Users\Michal\Desktop
Loaded Profiles: Michal (Available Profiles: Michal)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser not detected!)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(AVAST Software) E:\Avast\AvastSvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe
(ASUS) C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(ASUS) C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnWMI.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\mdm.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x86\QuickGesture.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x64\QuickGesture64.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\FaceLogon\sensorsrv.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdc.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDGesture.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
(ASUS) C:\Windows\AsScrPro.exe
(ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
(Samsung Electronics Co., Ltd.) C:\Programy\Samsung Kies\Kies\KiesTrayAgent.exe
(Adobe Systems Inc.) C:\Programy\Adobe Acrobat 9.0 Professional\Acrobat\acrotray.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe
(AVAST Software) E:\Avast\avastui.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Ghisler Software GmbH) C:\Programy\Total Commander 8.51\TOTALCMD64.EXE
(Nullsoft, Inc.) C:\Programy\Winamp\winamp.exe
(Opera Software) C:\Program Files (x86)\Opera\33.0.1990.115\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\33.0.1990.115\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\33.0.1990.115\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\33.0.1990.115\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\33.0.1990.115\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\33.0.1990.115\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\33.0.1990.115\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\33.0.1990.115\opera.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Opera Software) C:\Program Files (x86)\Opera\33.0.1990.115\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\33.0.1990.115\opera.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2661672 2012-02-19] (ELAN Microelectronics Corp.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12448872 2012-02-14] (Realtek Semiconductor)
HKLM\...\Run: [AtherosBtStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [1014432 2011-12-29] (Atheros Communications)
HKLM\...\Run: [AthBtTray] => C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [800416 2011-12-29] (Atheros Commnucations)
HKLM\...\Run: [Windows Mobile Device Center] => C:\Windows\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-02-07] (Intel Corporation)
HKLM-x32\...\Run: [ACMON] => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [102568 2012-02-21] (ASUS)
HKLM-x32\...\Run: [Wireless Console 3] => C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2321072 2012-02-02] (ASUSTeK Computer Inc.)
HKLM-x32\...\Run: [ASUS Screen Saver Protector] => C:\Windows\AsScrPro.exe
HKLM-x32\...\Run: [ATKOSD2] => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [322208 2012-06-25] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [174752 2012-06-19] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Programy\Microsoft Office 7 Enterprise\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [KiesTrayAgent] => C:\Programy\Samsung Kies\Kies\KiesTrayAgent.exe [311616 2014-07-25] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Programy\Adobe Acrobat 9.0 Professional\Acrobat\Acrobat_sl.exe [44128 2013-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Programy\Adobe Acrobat 9.0 Professional\Acrobat\Acrotray.exe [642664 2013-05-08] (Adobe Systems Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Kerio VPN Client] => E:\PHM Plus - používat DropBox\VPN - Kerio\VPN Client\kvpnclient.exe [2646016 2008-01-16] (Kerio Technologies)
HKLM-x32\...\Run: [AvastUI.exe] => E:\Avast\AvastUI.exe [6133520 2015-11-06] (AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597040 2015-10-06] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\Run: [KiesPreload] => C:\Programy\Samsung Kies\Kies\Kies.exe [1562264 2014-07-25] (Samsung)
HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\Run: [KiesAirMessage] => C:\Programy\Samsung Kies\Kies\KiesAirMessage.exe -startup
HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\Run: [] => C:\Programy\Samsung Kies\Kies\External\FirmwareUpdate\KiesPDLR.exe
HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\Run: [Dropbox Update] => C:\Users\Michal\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-18] (Dropbox, Inc.)
HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\MountPoints2: {40ac95c8-e459-11e4-be4c-446d574f4188} - F:\Autorun.exe
HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\MountPoints2: {51ef1b13-04e3-11e2-8630-806e6f6e6963} - D:\InstAll.exe
HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\MountPoints2: {932a8b58-bd85-11e4-bb76-446d574f4188} - F:\Autorun.exe
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Programy\Microsoft Office 7 Enterprise\Office12\GrooveShellExtensions.dll No File [ ]
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => E:\Avast\ashShA64.dll [2015-09-29] (AVAST Software)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Michal\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-11-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Michal\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-11-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Michal\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-11-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Michal\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-11-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Michal\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-11-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Michal\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-11-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Michal\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-11-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} => C:\Programy\Microsoft Office 7 Enterprise\Office12\GrooveShellExtensions.dll No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 2 (GFS Stub)] -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => C:\Programy\Microsoft Office 7 Enterprise\Office12\GrooveShellExtensions.dll No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} => C:\Programy\Microsoft Office 7 Enterprise\Office12\GrooveShellExtensions.dll No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 3 (GFS Folder)] -> {16F3DD56-1AF5-4347-846D-7C10C4192619} => C:\Programy\Microsoft Office 7 Enterprise\Office12\GrooveShellExtensions.dll No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => C:\Programy\Microsoft Office 7 Enterprise\Office12\GrooveShellExtensions.dll No File
Startup: C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\WFTPairing.lnk [2014-07-19]
ShortcutTarget: WFTPairing.lnk -> C:\Program Files (x86)\Canon\EOS Utility\WFTPairing\WFTPairing.exe (No File)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
ProxyServer: [S-1-5-21-2225000157-3097903131-2559664316-1000] => :0
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\..\Interfaces\{A357ABEE-2029-4238-BD3D-244D51F2EF33}: [DhcpNameServer] 213.46.172.36 213.46.172.37
Tcpip\..\Interfaces\{BBB498ED-1C7D-43AB-8FD3-68E234B4F4FA}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{F3B36E7F-1973-496E-AE98-EAFCF51BEC73}: [NameServer] 93.153.117.1 93.153.117.33
Tcpip\..\Interfaces\{F3B36E7F-1973-496E-AE98-EAFCF51BEC73}: [DhcpNameServer] 93.153.117.1 93.153.117.33
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> E:\Avast\aswWebRepIE64.dll [2015-07-29] (AVAST Software)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2013-05-08] (Adobe Systems Incorporated)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Programy\Microsoft Office 7 Enterprise\Office12\GrooveShellExtensions.dll => No File
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\ssv.dll [2015-11-05] (Oracle Corporation)
BHO-x32: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-12-29] (Atheros Commnucations)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> E:\Avast\aswWebRepIE.dll [2015-07-29] (AVAST Software)
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-05-08] (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-11-05] (Oracle Corporation)
BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-05-08] (Adobe Systems Incorporated)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-05-08] (Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Handler-x32: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Programy\Microsoft Office 7 Enterprise\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
FireFox:
========
FF ProfilePath: C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\ou5wqrjl.default-1444072094105
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll [2015-11-10] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll [2015-11-10] ()
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Programy\Picasa 3.9\npPicasa3.dll [2014-01-06] (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.52 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2011-12-01] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2011-12-01] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.65.2 -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll [2015-11-05] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.65.2 -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\plugin2\npjp2.dll [2015-11-05] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: Adobe Acrobat -> C:\Programy\Adobe Acrobat 9.0 Professional\Acrobat\Air\nppdf32.dll [2013-05-08] (Adobe Systems Inc.)
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - E:\Avast\WebRep\FF
FF Extension: Avast Online Security - E:\Avast\WebRep\FF [2015-09-29] [not signed]
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - E:\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-03-21]
Opera:
=======
OPR Extension: (PDF Viewer) - C:\Users\Michal\AppData\Roaming\Opera Software\Opera Stable\Extensions\encfpfilknmenlmjemepncnlbbjlabkc [2015-08-06]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 ADExchange; C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe [43112 2012-02-16] (ArcSoft Inc.)
R2 ASUS InstantOn; C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe [277120 2012-04-13] (ASUS)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [106144 2011-12-29] (Atheros Commnucations) [File not signed]
R2 avast! Antivirus; E:\Avast\AvastSvc.exe [146600 2015-09-29] (AVAST Software)
S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [651720 2012-10-06] (Macrovision Europe Ltd.) [File not signed]
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128280 2011-12-16] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2011-12-16] (Intel Corporation)
R2 MbnExt; C:\Program Files (x86)\T-Mobile\T-Mobile Internet Manager\MbnExt.dll [419096 2015-08-25] (Gemfor s.r.o.)
R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [File not signed]
S3 Microsoft Office Groove Audit Service; C:\Programy\Microsoft Office 7 Enterprise\Office12\GrooveAuditService.exe [64856 2009-02-26] (Microsoft Corporation)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S4 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 ZAtheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [158880 2011-12-29] (Atheros) [File not signed]
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 AiCharger; C:\Windows\SysWOW64\DRIVERS\AiCharger.sys [17152 2012-02-29] (ASUSTek Computer Inc.)
R3 AsusVBus; C:\Windows\System32\DRIVERS\AsusVBus.sys [35968 2012-04-11] (Windows (R) Win 7 DDK provider)
R3 AsusVTouch; C:\Windows\System32\DRIVERS\AsusVTouch.sys [16512 2012-04-11] (Windows (R) Win 7 DDK provider)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-09-29] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [90968 2015-09-29] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-09-29] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-09-29] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1059656 2015-11-06] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [449992 2015-11-06] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [153744 2015-09-29] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [274808 2015-09-29] (AVAST Software)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S3 FsUsbExDisk; C:\Windows\SysWOW64\FsUsbExDisk.SYS [37344 2013-05-22] () [File not signed]
S3 huawei_wwanecm; C:\Windows\System32\DRIVERS\ew_juwwanecm.sys [246272 2013-06-29] (Huawei Technologies Co., Ltd.)
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( )
R3 kvpndev; C:\Windows\System32\DRIVERS\kvpndrv.sys [73216 2008-01-16] (Kerio Technologies Inc.)
S3 pwdrvio; C:\Windows\system32\pwdrvio.sys [19032 2012-06-18] ()
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12384 2012-06-18] ()
S3 RimVSerPort; C:\Windows\System32\DRIVERS\RimSerial_AMD64.sys [44544 2012-12-10] (Research in Motion Ltd)
S3 ASUSProcObsrv; \??\D:\I386\AsPrOb64.sys [X]
S3 RimUsb; System32\Drivers\RimUsb_AMD64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-11-25 21:33 - 2015-11-25 21:34 - 00022637 _____ C:\Users\Michal\Desktop\FRST.txt
2015-11-25 21:33 - 2015-11-25 21:33 - 00000000 ____D C:\Users\Michal\Desktop\FRST-OlderVersion
2015-11-25 21:33 - 2015-11-25 21:33 - 00000000 ____D C:\FRST
2015-11-22 21:52 - 2015-11-25 21:33 - 02348544 _____ (Farbar) C:\Users\Michal\Desktop\FRST64.exe
2015-11-22 21:29 - 2015-11-22 21:29 - 00000000 ___RD C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2015-11-22 21:23 - 2015-11-22 21:23 - 01733632 _____ C:\Users\Michal\Desktop\adwcleaner_5.022.exe
2015-11-18 21:26 - 2015-11-18 21:26 - 00003832 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1392837543
2015-11-17 08:52 - 2015-11-22 21:25 - 00000000 ____D C:\AdwCleaner
2015-11-16 15:28 - 2015-11-16 15:29 - 00000000 ____D C:\rsit
2015-11-16 15:28 - 2015-11-16 15:29 - 00000000 ____D C:\Program Files\trend micro
2015-11-14 14:21 - 2015-11-14 14:21 - 00024576 _____ () C:\Users\Michal\AppData\Local\uninst.tmp
2015-11-14 09:47 - 2015-11-03 18:55 - 03211264 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-11-14 09:25 - 2015-11-14 09:25 - 00000000 ____D C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-11-10 21:08 - 2015-10-20 19:42 - 03168768 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-11-10 21:08 - 2015-10-20 19:42 - 02608128 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-11-10 21:08 - 2015-10-20 19:42 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-11-10 21:08 - 2015-10-20 19:42 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-11-10 21:08 - 2015-10-20 19:42 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-11-10 21:08 - 2015-10-20 19:42 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-11-10 21:08 - 2015-10-20 19:42 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-11-10 21:08 - 2015-10-20 19:41 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-11-10 21:08 - 2015-10-20 19:41 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-11-10 21:08 - 2015-10-20 19:41 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-11-10 21:08 - 2015-10-20 19:41 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-11-10 21:08 - 2015-10-20 18:46 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-11-10 21:08 - 2015-10-20 18:46 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-11-10 21:08 - 2015-10-20 18:46 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-11-10 21:08 - 2015-10-20 18:46 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-11-10 21:08 - 2015-10-20 18:45 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-11-10 21:02 - 2015-11-03 23:10 - 00390344 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-11-10 21:02 - 2015-11-03 22:51 - 00342728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-11-10 21:02 - 2015-10-31 00:46 - 25818624 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-11-10 21:02 - 2015-10-31 00:40 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-11-10 21:02 - 2015-10-31 00:40 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-11-10 21:02 - 2015-10-31 00:25 - 02886656 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-11-10 21:02 - 2015-10-31 00:25 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-11-10 21:02 - 2015-10-31 00:25 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-11-10 21:02 - 2015-10-31 00:25 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-11-10 21:02 - 2015-10-31 00:24 - 00585728 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-11-10 21:02 - 2015-10-31 00:24 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-11-10 21:02 - 2015-10-31 00:17 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-11-10 21:02 - 2015-10-31 00:16 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-11-10 21:02 - 2015-10-31 00:13 - 00616960 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-11-10 21:02 - 2015-10-31 00:12 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-11-10 21:02 - 2015-10-31 00:12 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-11-10 21:02 - 2015-10-31 00:11 - 05990912 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-11-10 21:02 - 2015-10-31 00:11 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-11-10 21:02 - 2015-10-31 00:11 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-11-10 21:02 - 2015-10-31 00:04 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-11-10 21:02 - 2015-10-31 00:01 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-11-10 21:02 - 2015-10-30 23:58 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-11-10 21:02 - 2015-10-30 23:53 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-11-10 21:02 - 2015-10-30 23:52 - 20331520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-11-10 21:02 - 2015-10-30 23:49 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-11-10 21:02 - 2015-10-30 23:49 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-11-10 21:02 - 2015-10-30 23:47 - 00504832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-11-10 21:02 - 2015-10-30 23:46 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-11-10 21:02 - 2015-10-30 23:46 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-11-10 21:02 - 2015-10-30 23:45 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-11-10 21:02 - 2015-10-30 23:45 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-11-10 21:02 - 2015-10-30 23:44 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2015-11-10 21:02 - 2015-10-30 23:44 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-11-10 21:02 - 2015-10-30 23:42 - 02279936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-11-10 21:02 - 2015-10-30 23:39 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-11-10 21:02 - 2015-10-30 23:39 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-11-10 21:02 - 2015-10-30 23:37 - 00480256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-11-10 21:02 - 2015-10-30 23:36 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-11-10 21:02 - 2015-10-30 23:36 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-11-10 21:02 - 2015-10-30 23:36 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-11-10 21:02 - 2015-10-30 23:34 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-11-10 21:02 - 2015-10-30 23:32 - 00720896 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-11-10 21:02 - 2015-10-30 23:31 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-11-10 21:02 - 2015-10-30 23:29 - 02126336 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-11-10 21:02 - 2015-10-30 23:29 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-11-10 21:02 - 2015-10-30 23:28 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-11-10 21:02 - 2015-10-30 23:23 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-11-10 21:02 - 2015-10-30 23:22 - 14457856 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-11-10 21:02 - 2015-10-30 23:21 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-11-10 21:02 - 2015-10-30 23:19 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-11-10 21:02 - 2015-10-30 23:18 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-11-10 21:02 - 2015-10-30 23:17 - 02487808 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-11-10 21:02 - 2015-10-30 23:17 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2015-11-10 21:02 - 2015-10-30 23:16 - 04527616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-11-10 21:02 - 2015-10-30 23:11 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2015-11-10 21:02 - 2015-10-30 23:10 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-11-10 21:02 - 2015-10-30 23:09 - 12854272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-11-10 21:02 - 2015-10-30 23:09 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-11-10 21:02 - 2015-10-30 23:09 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-11-10 21:02 - 2015-10-30 23:04 - 01547264 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-11-10 21:02 - 2015-10-30 22:53 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-11-10 21:02 - 2015-10-30 22:51 - 02011136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-11-10 21:02 - 2015-10-30 22:48 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-11-10 21:02 - 2015-10-30 22:46 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-11-10 21:00 - 2015-10-20 02:12 - 05570496 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-11-10 21:00 - 2015-10-20 02:12 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-11-10 21:00 - 2015-10-20 02:12 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-11-10 21:00 - 2015-10-20 02:09 - 01730496 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-11-10 21:00 - 2015-10-20 02:06 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2015-11-10 21:00 - 2015-10-20 02:06 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-11-10 21:00 - 2015-10-20 02:06 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-11-10 21:00 - 2015-10-20 02:06 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-11-10 21:00 - 2015-10-20 02:05 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-11-10 21:00 - 2015-10-20 02:05 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-11-10 21:00 - 2015-10-20 02:05 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-11-10 21:00 - 2015-10-20 02:05 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-11-10 21:00 - 2015-10-20 02:05 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-11-10 21:00 - 2015-10-20 02:05 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-11-10 21:00 - 2015-10-20 02:05 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-11-10 21:00 - 2015-10-20 02:05 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-11-10 21:00 - 2015-10-20 02:05 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-11-10 21:00 - 2015-10-20 02:05 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-11-10 21:00 - 2015-10-20 02:05 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-11-10 21:00 - 2015-10-20 02:05 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-11-10 21:00 - 2015-10-20 02:05 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-11-10 21:00 - 2015-10-20 02:05 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-11-10 21:00 - 2015-10-20 02:05 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-11-10 21:00 - 2015-10-20 02:05 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2015-11-10 21:00 - 2015-10-20 02:05 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-11-10 21:00 - 2015-10-20 02:05 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-11-10 21:00 - 2015-10-20 02:05 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-11-10 21:00 - 2015-10-20 02:05 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-11-10 21:00 - 2015-10-20 02:05 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-11-10 21:00 - 2015-10-20 02:04 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-11-10 21:00 - 2015-10-20 02:04 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-11-10 21:00 - 2015-10-20 02:04 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-11-10 21:00 - 2015-10-20 02:00 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-11-10 21:00 - 2015-10-20 01:59 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:52 - 03991488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-11-10 21:00 - 2015-10-20 01:52 - 03935680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-11-10 21:00 - 2015-10-20 01:48 - 01311768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-11-10 21:00 - 2015-10-20 01:45 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-11-10 21:00 - 2015-10-20 01:45 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-11-10 21:00 - 2015-10-20 01:45 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-11-10 21:00 - 2015-10-20 01:45 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-11-10 21:00 - 2015-10-20 01:45 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-11-10 21:00 - 2015-10-20 01:45 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-11-10 21:00 - 2015-10-20 01:45 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-11-10 21:00 - 2015-10-20 01:45 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2015-11-10 21:00 - 2015-10-20 01:45 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-11-10 21:00 - 2015-10-20 01:45 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-11-10 21:00 - 2015-10-20 01:45 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-11-10 21:00 - 2015-10-20 01:45 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-11-10 21:00 - 2015-10-20 01:44 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-11-10 21:00 - 2015-10-20 01:44 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2015-11-10 21:00 - 2015-10-20 01:44 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-11-10 21:00 - 2015-10-20 01:44 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-11-10 21:00 - 2015-10-20 01:44 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-11-10 21:00 - 2015-10-20 01:44 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-11-10 21:00 - 2015-10-20 01:39 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-11-10 21:00 - 2015-10-20 01:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 00:41 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-11-10 21:00 - 2015-10-20 00:40 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-11-10 21:00 - 2015-10-20 00:40 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-11-10 21:00 - 2015-10-20 00:29 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-11-10 21:00 - 2015-10-20 00:29 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-11-10 21:00 - 2015-10-20 00:27 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 00:27 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 00:27 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 00:27 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2015-11-10 21:00 - 2015-09-23 14:15 - 00460776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-11-10 21:00 - 2015-09-23 14:15 - 00299632 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2015-11-10 21:00 - 2015-09-23 14:09 - 00251000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2015-11-10 20:58 - 2015-10-13 17:41 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2015-11-10 20:58 - 2015-10-13 17:40 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2015-11-10 20:57 - 2015-10-29 18:50 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2015-11-10 20:57 - 2015-10-29 18:50 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll
2015-11-10 20:57 - 2015-10-29 18:50 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2015-11-10 20:57 - 2015-10-29 18:50 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll
2015-11-10 20:57 - 2015-10-29 18:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shimeng.dll
2015-11-10 20:57 - 2015-10-29 18:49 - 00295936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll
2015-11-10 20:57 - 2015-10-29 18:49 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe
2015-11-10 20:57 - 2015-10-13 05:57 - 00950720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2015-11-10 20:57 - 2015-10-01 19:00 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2015-11-10 20:57 - 2015-10-01 19:00 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
2015-11-10 20:57 - 2015-10-01 18:50 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
2015-11-10 20:44 - 2015-11-10 21:44 - 19387592 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2015-11-09 19:57 - 2015-11-10 20:23 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-11-25 21:33 - 2009-07-14 04:20 - 00000000 ____D C:\Windows
2015-11-25 21:17 - 2015-06-18 17:12 - 00000922 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2225000157-3097903131-2559664316-1000UA.job
2015-11-25 20:44 - 2012-10-06 17:53 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-11-25 20:41 - 2015-06-18 17:12 - 00000870 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2225000157-3097903131-2559664316-1000Core.job
2015-11-25 20:36 - 2015-03-21 21:46 - 00004124 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2015-11-25 20:36 - 2012-09-22 21:14 - 00000486 _____ C:\Users\Michal\AppData\Roaming\sp_data.sys
2015-11-25 20:36 - 2010-11-21 10:27 - 00631292 _____ C:\Windows\system32\perfh005.dat
2015-11-25 20:36 - 2010-11-21 10:27 - 00121914 _____ C:\Windows\system32\perfc005.dat
2015-11-25 20:36 - 2009-07-14 06:13 - 01470062 _____ C:\Windows\system32\PerfStringBackup.INI
2015-11-25 20:36 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2015-11-25 20:34 - 2009-07-14 05:45 - 00027696 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-11-25 20:34 - 2009-07-14 05:45 - 00027696 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-11-24 21:43 - 2012-10-06 12:30 - 00003978 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{438A4F23-67AE-4D24-A8A4-91B581BF0EEC}
2015-11-22 21:29 - 2012-09-22 20:48 - 00000000 ____D C:\Users\Michal\Documents\Bluetooth Folder
2015-11-22 21:27 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-11-21 16:01 - 2013-06-05 20:44 - 00000000 ____D C:\Program Files (x86)\Opera
2015-11-19 23:11 - 2014-02-20 14:12 - 00000000 ____D C:\Users\Michal\AppData\Roaming\vlc
2015-11-19 23:05 - 2014-02-20 14:11 - 00000000 ____D C:\Program Files (x86)\VLC Player
2015-11-17 21:57 - 2012-10-13 11:27 - 00000000 ____D C:\Users\Michal\AppData\Roaming\uTorrent
2015-11-17 20:26 - 2012-09-23 09:17 - 00000000 ____D C:\Programy
2015-11-17 08:40 - 2012-09-23 11:07 - 00000000 ____D C:\Users\Michal\AppData\Roaming\Winamp
2015-11-15 09:31 - 2009-07-14 05:45 - 05030208 _____ C:\Windows\system32\FNTCACHE.DAT
2015-11-14 17:54 - 2013-04-14 17:02 - 00001363 _____ C:\Users\Michal\Desktop\Photoshop – zástupce.lnk
2015-11-14 09:26 - 2013-05-08 12:31 - 00000000 ____D C:\Users\Michal\AppData\Roaming\Dropbox
2015-11-11 21:22 - 2010-11-21 10:38 - 00000000 ____D C:\Program Files\Windows Journal
2015-11-11 21:13 - 2012-09-23 09:05 - 00000000 ____D C:\Users\Michal\AppData\Local\CrashDumps
2015-11-11 20:54 - 2013-08-04 06:24 - 00000000 ____D C:\Windows\system32\MRT
2015-11-11 20:48 - 2012-09-22 20:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2015-11-11 20:48 - 2012-09-22 20:17 - 00000000 ____D C:\Program Files (x86)\ASUS
2015-11-11 20:36 - 2012-09-23 12:40 - 145617392 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-11-11 20:33 - 2012-09-23 11:53 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-11-10 21:44 - 2012-10-06 17:53 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-11-10 21:44 - 2012-10-06 17:53 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-11-10 21:44 - 2012-10-06 17:53 - 00003852 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-11-10 20:23 - 2013-06-07 21:20 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-11-06 16:44 - 2015-03-21 21:44 - 01059656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2015-11-06 16:44 - 2015-03-21 21:44 - 00449992 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2015-11-05 22:49 - 2015-02-22 08:16 - 00000000 ____D C:\ProgramData\Oracle
2015-11-05 22:47 - 2015-02-22 08:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-11-05 22:45 - 2015-09-25 19:27 - 00000000 ____D C:\Users\Michal\.oracle_jre_usage
2015-11-05 22:43 - 2015-02-22 08:19 - 00097888 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-11-05 22:42 - 2015-02-22 08:16 - 00000000 ____D C:\Program Files (x86)\Java
==================== Files in the root of some directories =======
2014-10-17 09:14 - 2014-10-17 10:49 - 0000132 _____ () C:\Users\Michal\AppData\Roaming\Adobe Formát PNG CS6 – předvolby
2015-03-08 21:18 - 2015-03-08 21:55 - 0004341 _____ () C:\Users\Michal\AppData\Roaming\Rim.Desktop.Exception.log
2015-03-08 21:15 - 2015-06-16 17:41 - 0001943 _____ () C:\Users\Michal\AppData\Roaming\Rim.Desktop.HttpServerSetup.log
2015-03-08 21:18 - 2015-03-08 21:55 - 0000077 _____ () C:\Users\Michal\AppData\Roaming\Rim.DesktopHelper.Exception.log
2012-09-22 21:14 - 2015-11-25 20:36 - 0000486 _____ () C:\Users\Michal\AppData\Roaming\sp_data.sys
2014-10-17 10:05 - 2014-10-25 12:27 - 0001480 _____ () C:\Users\Michal\AppData\Local\Adobe Uložit pro web 13.0 Prefs
2014-01-30 13:59 - 2014-01-30 13:59 - 0000017 _____ () C:\Users\Michal\AppData\Local\resmon.resmoncfg
2015-11-14 14:21 - 2015-11-14 14:21 - 0024576 _____ () C:\Users\Michal\AppData\Local\uninst.tmp
2014-02-20 15:56 - 2014-02-20 15:56 - 1883792 _____ (Irfan Skiljan) C:\ProgramData\irwan view 437_setup2.exe
Files to move or delete:
====================
C:\ProgramData\irwan view 437_setup2.exe
Some files in TEMP:
====================
C:\Users\Michal\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-11-21 17:10
==================== End of FRST.txt ============================
vkládám požadované logy po provedené analýze FRST.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:25-11-2015 02
Ran by Michal (administrator) on MICHAL-PC (25-11-2015 21:33:38)
Running from C:\Users\Michal\Desktop
Loaded Profiles: Michal (Available Profiles: Michal)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser not detected!)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Microsoft Corporation) C:\Windows\System32\wisptis.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(AVAST Software) E:\Avast\AvastSvc.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
(ArcSoft Inc.) C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe
(ASUS) C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(ASUS) C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnWMI.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\mdm.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x86\QuickGesture.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x64\QuickGesture64.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\FaceLogon\sensorsrv.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
(Microsoft Corporation) C:\Windows\WindowsMobile\wmdc.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDGesture.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
(ASUS) C:\Windows\AsScrPro.exe
(ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
(Samsung Electronics Co., Ltd.) C:\Programy\Samsung Kies\Kies\KiesTrayAgent.exe
(Adobe Systems Inc.) C:\Programy\Adobe Acrobat 9.0 Professional\Acrobat\acrotray.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe
(AVAST Software) E:\Avast\avastui.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Ghisler Software GmbH) C:\Programy\Total Commander 8.51\TOTALCMD64.EXE
(Nullsoft, Inc.) C:\Programy\Winamp\winamp.exe
(Opera Software) C:\Program Files (x86)\Opera\33.0.1990.115\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\33.0.1990.115\opera_crashreporter.exe
(Opera Software) C:\Program Files (x86)\Opera\33.0.1990.115\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\33.0.1990.115\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\33.0.1990.115\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\33.0.1990.115\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\33.0.1990.115\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\33.0.1990.115\opera.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Opera Software) C:\Program Files (x86)\Opera\33.0.1990.115\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\33.0.1990.115\opera.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2661672 2012-02-19] (ELAN Microelectronics Corp.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12448872 2012-02-14] (Realtek Semiconductor)
HKLM\...\Run: [AtherosBtStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [1014432 2011-12-29] (Atheros Communications)
HKLM\...\Run: [AthBtTray] => C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [800416 2011-12-29] (Atheros Commnucations)
HKLM\...\Run: [Windows Mobile Device Center] => C:\Windows\WindowsMobile\wmdc.exe [660360 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [291608 2012-02-07] (Intel Corporation)
HKLM-x32\...\Run: [ACMON] => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [102568 2012-02-21] (ASUS)
HKLM-x32\...\Run: [Wireless Console 3] => C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2321072 2012-02-02] (ASUSTeK Computer Inc.)
HKLM-x32\...\Run: [ASUS Screen Saver Protector] => C:\Windows\AsScrPro.exe
HKLM-x32\...\Run: [ATKOSD2] => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [322208 2012-06-25] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [174752 2012-06-19] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Programy\Microsoft Office 7 Enterprise\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [KiesTrayAgent] => C:\Programy\Samsung Kies\Kies\KiesTrayAgent.exe [311616 2014-07-25] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Programy\Adobe Acrobat 9.0 Professional\Acrobat\Acrobat_sl.exe [44128 2013-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Programy\Adobe Acrobat 9.0 Professional\Acrobat\Acrotray.exe [642664 2013-05-08] (Adobe Systems Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Kerio VPN Client] => E:\PHM Plus - používat DropBox\VPN - Kerio\VPN Client\kvpnclient.exe [2646016 2008-01-16] (Kerio Technologies)
HKLM-x32\...\Run: [AvastUI.exe] => E:\Avast\AvastUI.exe [6133520 2015-11-06] (AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597040 2015-10-06] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\Run: [KiesPreload] => C:\Programy\Samsung Kies\Kies\Kies.exe [1562264 2014-07-25] (Samsung)
HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\Run: [KiesAirMessage] => C:\Programy\Samsung Kies\Kies\KiesAirMessage.exe -startup
HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\Run: [] => C:\Programy\Samsung Kies\Kies\External\FirmwareUpdate\KiesPDLR.exe
HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\Run: [Dropbox Update] => C:\Users\Michal\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-18] (Dropbox, Inc.)
HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\MountPoints2: {40ac95c8-e459-11e4-be4c-446d574f4188} - F:\Autorun.exe
HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\MountPoints2: {51ef1b13-04e3-11e2-8630-806e6f6e6963} - D:\InstAll.exe
HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\MountPoints2: {932a8b58-bd85-11e4-bb76-446d574f4188} - F:\Autorun.exe
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Programy\Microsoft Office 7 Enterprise\Office12\GrooveShellExtensions.dll No File [ ]
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => E:\Avast\ashShA64.dll [2015-09-29] (AVAST Software)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Michal\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-11-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Michal\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-11-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Michal\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-11-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Michal\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll [2015-11-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Michal\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-11-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Michal\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-11-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Michal\AppData\Roaming\Dropbox\bin\DropboxExt.28.dll [2015-11-05] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} => C:\Programy\Microsoft Office 7 Enterprise\Office12\GrooveShellExtensions.dll No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 2 (GFS Stub)] -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => C:\Programy\Microsoft Office 7 Enterprise\Office12\GrooveShellExtensions.dll No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} => C:\Programy\Microsoft Office 7 Enterprise\Office12\GrooveShellExtensions.dll No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 3 (GFS Folder)] -> {16F3DD56-1AF5-4347-846D-7C10C4192619} => C:\Programy\Microsoft Office 7 Enterprise\Office12\GrooveShellExtensions.dll No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => C:\Programy\Microsoft Office 7 Enterprise\Office12\GrooveShellExtensions.dll No File
Startup: C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\WFTPairing.lnk [2014-07-19]
ShortcutTarget: WFTPairing.lnk -> C:\Program Files (x86)\Canon\EOS Utility\WFTPairing\WFTPairing.exe (No File)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
ProxyServer: [S-1-5-21-2225000157-3097903131-2559664316-1000] => :0
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\..\Interfaces\{A357ABEE-2029-4238-BD3D-244D51F2EF33}: [DhcpNameServer] 213.46.172.36 213.46.172.37
Tcpip\..\Interfaces\{BBB498ED-1C7D-43AB-8FD3-68E234B4F4FA}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{F3B36E7F-1973-496E-AE98-EAFCF51BEC73}: [NameServer] 93.153.117.1 93.153.117.33
Tcpip\..\Interfaces\{F3B36E7F-1973-496E-AE98-EAFCF51BEC73}: [DhcpNameServer] 93.153.117.1 93.153.117.33
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> E:\Avast\aswWebRepIE64.dll [2015-07-29] (AVAST Software)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2013-05-08] (Adobe Systems Incorporated)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Programy\Microsoft Office 7 Enterprise\Office12\GrooveShellExtensions.dll => No File
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\ssv.dll [2015-11-05] (Oracle Corporation)
BHO-x32: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-12-29] (Atheros Commnucations)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> E:\Avast\aswWebRepIE.dll [2015-07-29] (AVAST Software)
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-05-08] (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-11-05] (Oracle Corporation)
BHO-x32: SmartSelect Class -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-05-08] (Adobe Systems Incorporated)
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2013-05-08] (Adobe Systems Incorporated)
Toolbar: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
Handler-x32: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Programy\Microsoft Office 7 Enterprise\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)
FireFox:
========
FF ProfilePath: C:\Users\Michal\AppData\Roaming\Mozilla\Firefox\Profiles\ou5wqrjl.default-1444072094105
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_19_0_0_245.dll [2015-11-10] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_19_0_0_245.dll [2015-11-10] ()
FF Plugin-x32: @google.com/npPicasa3,version=3.0.0 -> C:\Programy\Picasa 3.9\npPicasa3.dll [2014-01-06] (Google, Inc.)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.52 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2011-12-01] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2011-12-01] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.65.2 -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll [2015-11-05] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.65.2 -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\plugin2\npjp2.dll [2015-11-05] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: Adobe Acrobat -> C:\Programy\Adobe Acrobat 9.0 Professional\Acrobat\Air\nppdf32.dll [2013-05-08] (Adobe Systems Inc.)
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - E:\Avast\WebRep\FF
FF Extension: Avast Online Security - E:\Avast\WebRep\FF [2015-09-29] [not signed]
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - E:\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-03-21]
Opera:
=======
OPR Extension: (PDF Viewer) - C:\Users\Michal\AppData\Roaming\Opera Software\Opera Stable\Extensions\encfpfilknmenlmjemepncnlbbjlabkc [2015-08-06]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 ADExchange; C:\Program Files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe [43112 2012-02-16] (ArcSoft Inc.)
R2 ASUS InstantOn; C:\Program Files (x86)\ASUS\InstantOn for NB\InsOnSrv.exe [277120 2012-04-13] (ASUS)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [106144 2011-12-29] (Atheros Commnucations) [File not signed]
R2 avast! Antivirus; E:\Avast\AvastSvc.exe [146600 2015-09-29] (AVAST Software)
S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [651720 2012-10-06] (Macrovision Europe Ltd.) [File not signed]
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128280 2011-12-16] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2011-12-16] (Intel Corporation)
R2 MbnExt; C:\Program Files (x86)\T-Mobile\T-Mobile Internet Manager\MbnExt.dll [419096 2015-08-25] (Gemfor s.r.o.)
R2 MDM; C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [335872 2006-10-26] (Microsoft Corporation) [File not signed]
S3 Microsoft Office Groove Audit Service; C:\Programy\Microsoft Office 7 Enterprise\Office12\GrooveAuditService.exe [64856 2009-02-26] (Microsoft Corporation)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S4 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 ZAtheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [158880 2011-12-29] (Atheros) [File not signed]
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 AiCharger; C:\Windows\SysWOW64\DRIVERS\AiCharger.sys [17152 2012-02-29] (ASUSTek Computer Inc.)
R3 AsusVBus; C:\Windows\System32\DRIVERS\AsusVBus.sys [35968 2012-04-11] (Windows (R) Win 7 DDK provider)
R3 AsusVTouch; C:\Windows\System32\DRIVERS\AsusVTouch.sys [16512 2012-04-11] (Windows (R) Win 7 DDK provider)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-09-29] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [90968 2015-09-29] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-09-29] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-09-29] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1059656 2015-11-06] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [449992 2015-11-06] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [153744 2015-09-29] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [274808 2015-09-29] (AVAST Software)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
S3 FsUsbExDisk; C:\Windows\SysWOW64\FsUsbExDisk.SYS [37344 2013-05-22] () [File not signed]
S3 huawei_wwanecm; C:\Windows\System32\DRIVERS\ew_juwwanecm.sys [246272 2013-06-29] (Huawei Technologies Co., Ltd.)
R3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [15416 2009-07-20] ( )
R3 kvpndev; C:\Windows\System32\DRIVERS\kvpndrv.sys [73216 2008-01-16] (Kerio Technologies Inc.)
S3 pwdrvio; C:\Windows\system32\pwdrvio.sys [19032 2012-06-18] ()
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12384 2012-06-18] ()
S3 RimVSerPort; C:\Windows\System32\DRIVERS\RimSerial_AMD64.sys [44544 2012-12-10] (Research in Motion Ltd)
S3 ASUSProcObsrv; \??\D:\I386\AsPrOb64.sys [X]
S3 RimUsb; System32\Drivers\RimUsb_AMD64.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-11-25 21:33 - 2015-11-25 21:34 - 00022637 _____ C:\Users\Michal\Desktop\FRST.txt
2015-11-25 21:33 - 2015-11-25 21:33 - 00000000 ____D C:\Users\Michal\Desktop\FRST-OlderVersion
2015-11-25 21:33 - 2015-11-25 21:33 - 00000000 ____D C:\FRST
2015-11-22 21:52 - 2015-11-25 21:33 - 02348544 _____ (Farbar) C:\Users\Michal\Desktop\FRST64.exe
2015-11-22 21:29 - 2015-11-22 21:29 - 00000000 ___RD C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2015-11-22 21:23 - 2015-11-22 21:23 - 01733632 _____ C:\Users\Michal\Desktop\adwcleaner_5.022.exe
2015-11-18 21:26 - 2015-11-18 21:26 - 00003832 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1392837543
2015-11-17 08:52 - 2015-11-22 21:25 - 00000000 ____D C:\AdwCleaner
2015-11-16 15:28 - 2015-11-16 15:29 - 00000000 ____D C:\rsit
2015-11-16 15:28 - 2015-11-16 15:29 - 00000000 ____D C:\Program Files\trend micro
2015-11-14 14:21 - 2015-11-14 14:21 - 00024576 _____ () C:\Users\Michal\AppData\Local\uninst.tmp
2015-11-14 09:47 - 2015-11-03 18:55 - 03211264 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-11-14 09:25 - 2015-11-14 09:25 - 00000000 ____D C:\Users\Michal\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-11-10 21:08 - 2015-10-20 19:42 - 03168768 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-11-10 21:08 - 2015-10-20 19:42 - 02608128 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-11-10 21:08 - 2015-10-20 19:42 - 00696320 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-11-10 21:08 - 2015-10-20 19:42 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-11-10 21:08 - 2015-10-20 19:42 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-11-10 21:08 - 2015-10-20 19:42 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-11-10 21:08 - 2015-10-20 19:42 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-11-10 21:08 - 2015-10-20 19:41 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-11-10 21:08 - 2015-10-20 19:41 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-11-10 21:08 - 2015-10-20 19:41 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-11-10 21:08 - 2015-10-20 19:41 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-11-10 21:08 - 2015-10-20 18:46 - 00566784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2015-11-10 21:08 - 2015-10-20 18:46 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2015-11-10 21:08 - 2015-10-20 18:46 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2015-11-10 21:08 - 2015-10-20 18:46 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2015-11-10 21:08 - 2015-10-20 18:45 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2015-11-10 21:02 - 2015-11-03 23:10 - 00390344 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-11-10 21:02 - 2015-11-03 22:51 - 00342728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2015-11-10 21:02 - 2015-10-31 00:46 - 25818624 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-11-10 21:02 - 2015-10-31 00:40 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-11-10 21:02 - 2015-10-31 00:40 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-11-10 21:02 - 2015-10-31 00:25 - 02886656 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-11-10 21:02 - 2015-10-31 00:25 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-11-10 21:02 - 2015-10-31 00:25 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-11-10 21:02 - 2015-10-31 00:25 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-11-10 21:02 - 2015-10-31 00:24 - 00585728 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-11-10 21:02 - 2015-10-31 00:24 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-11-10 21:02 - 2015-10-31 00:17 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-11-10 21:02 - 2015-10-31 00:16 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-11-10 21:02 - 2015-10-31 00:13 - 00616960 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-11-10 21:02 - 2015-10-31 00:12 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-11-10 21:02 - 2015-10-31 00:12 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-11-10 21:02 - 2015-10-31 00:11 - 05990912 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-11-10 21:02 - 2015-10-31 00:11 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-11-10 21:02 - 2015-10-31 00:11 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-11-10 21:02 - 2015-10-31 00:04 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-11-10 21:02 - 2015-10-31 00:01 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-11-10 21:02 - 2015-10-30 23:58 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2015-11-10 21:02 - 2015-10-30 23:53 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-11-10 21:02 - 2015-10-30 23:52 - 20331520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2015-11-10 21:02 - 2015-10-30 23:49 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-11-10 21:02 - 2015-10-30 23:49 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-11-10 21:02 - 2015-10-30 23:47 - 00504832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2015-11-10 21:02 - 2015-10-30 23:46 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-11-10 21:02 - 2015-10-30 23:46 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2015-11-10 21:02 - 2015-10-30 23:45 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2015-11-10 21:02 - 2015-10-30 23:45 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2015-11-10 21:02 - 2015-10-30 23:44 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2015-11-10 21:02 - 2015-10-30 23:44 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2015-11-10 21:02 - 2015-10-30 23:42 - 02279936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2015-11-10 21:02 - 2015-10-30 23:39 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2015-11-10 21:02 - 2015-10-30 23:39 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2015-11-10 21:02 - 2015-10-30 23:37 - 00480256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2015-11-10 21:02 - 2015-10-30 23:36 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2015-11-10 21:02 - 2015-10-30 23:36 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2015-11-10 21:02 - 2015-10-30 23:36 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2015-11-10 21:02 - 2015-10-30 23:34 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-11-10 21:02 - 2015-10-30 23:32 - 00720896 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-11-10 21:02 - 2015-10-30 23:31 - 00801280 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-11-10 21:02 - 2015-10-30 23:29 - 02126336 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-11-10 21:02 - 2015-10-30 23:29 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-11-10 21:02 - 2015-10-30 23:28 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2015-11-10 21:02 - 2015-10-30 23:23 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-11-10 21:02 - 2015-10-30 23:22 - 14457856 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-11-10 21:02 - 2015-10-30 23:21 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2015-11-10 21:02 - 2015-10-30 23:19 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2015-11-10 21:02 - 2015-10-30 23:18 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2015-11-10 21:02 - 2015-10-30 23:17 - 02487808 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-11-10 21:02 - 2015-10-30 23:17 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2015-11-10 21:02 - 2015-10-30 23:16 - 04527616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2015-11-10 21:02 - 2015-10-30 23:11 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2015-11-10 21:02 - 2015-10-30 23:10 - 00689152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2015-11-10 21:02 - 2015-10-30 23:09 - 12854272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2015-11-10 21:02 - 2015-10-30 23:09 - 02052608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2015-11-10 21:02 - 2015-10-30 23:09 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2015-11-10 21:02 - 2015-10-30 23:04 - 01547264 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-11-10 21:02 - 2015-10-30 22:53 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-11-10 21:02 - 2015-10-30 22:51 - 02011136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2015-11-10 21:02 - 2015-10-30 22:48 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2015-11-10 21:02 - 2015-10-30 22:46 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2015-11-10 21:00 - 2015-10-20 02:12 - 05570496 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-11-10 21:00 - 2015-10-20 02:12 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-11-10 21:00 - 2015-10-20 02:12 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-11-10 21:00 - 2015-10-20 02:09 - 01730496 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-11-10 21:00 - 2015-10-20 02:06 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2015-11-10 21:00 - 2015-10-20 02:06 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2015-11-10 21:00 - 2015-10-20 02:06 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2015-11-10 21:00 - 2015-10-20 02:06 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2015-11-10 21:00 - 2015-10-20 02:05 - 01461760 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-11-10 21:00 - 2015-10-20 02:05 - 01216512 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-11-10 21:00 - 2015-10-20 02:05 - 01164800 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2015-11-10 21:00 - 2015-10-20 02:05 - 00729600 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-11-10 21:00 - 2015-10-20 02:05 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-11-10 21:00 - 2015-10-20 02:05 - 00424960 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2015-11-10 21:00 - 2015-10-20 02:05 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-11-10 21:00 - 2015-10-20 02:05 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-11-10 21:00 - 2015-10-20 02:05 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-11-10 21:00 - 2015-10-20 02:05 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-11-10 21:00 - 2015-10-20 02:05 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-11-10 21:00 - 2015-10-20 02:05 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-11-10 21:00 - 2015-10-20 02:05 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-11-10 21:00 - 2015-10-20 02:05 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-11-10 21:00 - 2015-10-20 02:05 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-11-10 21:00 - 2015-10-20 02:05 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2015-11-10 21:00 - 2015-10-20 02:05 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-11-10 21:00 - 2015-10-20 02:05 - 00029184 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-11-10 21:00 - 2015-10-20 02:05 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-11-10 21:00 - 2015-10-20 02:05 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-11-10 21:00 - 2015-10-20 02:05 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2015-11-10 21:00 - 2015-10-20 02:04 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2015-11-10 21:00 - 2015-10-20 02:04 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-11-10 21:00 - 2015-10-20 02:04 - 00031232 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-11-10 21:00 - 2015-10-20 02:00 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-11-10 21:00 - 2015-10-20 01:59 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:53 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:52 - 03991488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2015-11-10 21:00 - 2015-10-20 01:52 - 03935680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2015-11-10 21:00 - 2015-10-20 01:48 - 01311768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2015-11-10 21:00 - 2015-10-20 01:45 - 00552960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2015-11-10 21:00 - 2015-10-20 01:45 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2015-11-10 21:00 - 2015-10-20 01:45 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2015-11-10 21:00 - 2015-10-20 01:45 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2015-11-10 21:00 - 2015-10-20 01:45 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2015-11-10 21:00 - 2015-10-20 01:45 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2015-11-10 21:00 - 2015-10-20 01:45 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2015-11-10 21:00 - 2015-10-20 01:45 - 00036864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2015-11-10 21:00 - 2015-10-20 01:45 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2015-11-10 21:00 - 2015-10-20 01:45 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2015-11-10 21:00 - 2015-10-20 01:45 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2015-11-10 21:00 - 2015-10-20 01:45 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2015-11-10 21:00 - 2015-10-20 01:44 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2015-11-10 21:00 - 2015-10-20 01:44 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2015-11-10 21:00 - 2015-10-20 01:44 - 00274944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2015-11-10 21:00 - 2015-10-20 01:44 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2015-11-10 21:00 - 2015-10-20 01:44 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2015-11-10 21:00 - 2015-10-20 01:44 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2015-11-10 21:00 - 2015-10-20 01:39 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2015-11-10 21:00 - 2015-10-20 01:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 01:35 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 00:41 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-11-10 21:00 - 2015-10-20 00:40 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-11-10 21:00 - 2015-10-20 00:40 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-11-10 21:00 - 2015-10-20 00:29 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2015-11-10 21:00 - 2015-10-20 00:29 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2015-11-10 21:00 - 2015-10-20 00:27 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 00:27 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 00:27 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-11-10 21:00 - 2015-10-20 00:27 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2015-11-10 21:00 - 2015-09-23 14:15 - 00460776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-11-10 21:00 - 2015-09-23 14:15 - 00299632 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2015-11-10 21:00 - 2015-09-23 14:09 - 00251000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\bcryptprimitives.dll
2015-11-10 20:58 - 2015-10-13 17:41 - 00497664 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2015-11-10 20:58 - 2015-10-13 17:40 - 00118272 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2015-11-10 20:57 - 2015-10-29 18:50 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2015-11-10 20:57 - 2015-10-29 18:50 - 00072192 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll
2015-11-10 20:57 - 2015-10-29 18:50 - 00023552 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2015-11-10 20:57 - 2015-10-29 18:50 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll
2015-11-10 20:57 - 2015-10-29 18:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shimeng.dll
2015-11-10 20:57 - 2015-10-29 18:49 - 00295936 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apphelp.dll
2015-11-10 20:57 - 2015-10-29 18:49 - 00020992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sdbinst.exe
2015-11-10 20:57 - 2015-10-13 05:57 - 00950720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2015-11-10 20:57 - 2015-10-01 19:00 - 00275456 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2015-11-10 20:57 - 2015-10-01 19:00 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
2015-11-10 20:57 - 2015-10-01 18:50 - 00216064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\InkEd.dll
2015-11-10 20:44 - 2015-11-10 21:44 - 19387592 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerInstaller.exe
2015-11-09 19:57 - 2015-11-10 20:23 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2015-11-25 21:33 - 2009-07-14 04:20 - 00000000 ____D C:\Windows
2015-11-25 21:17 - 2015-06-18 17:12 - 00000922 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2225000157-3097903131-2559664316-1000UA.job
2015-11-25 20:44 - 2012-10-06 17:53 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-11-25 20:41 - 2015-06-18 17:12 - 00000870 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2225000157-3097903131-2559664316-1000Core.job
2015-11-25 20:36 - 2015-03-21 21:46 - 00004124 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2015-11-25 20:36 - 2012-09-22 21:14 - 00000486 _____ C:\Users\Michal\AppData\Roaming\sp_data.sys
2015-11-25 20:36 - 2010-11-21 10:27 - 00631292 _____ C:\Windows\system32\perfh005.dat
2015-11-25 20:36 - 2010-11-21 10:27 - 00121914 _____ C:\Windows\system32\perfc005.dat
2015-11-25 20:36 - 2009-07-14 06:13 - 01470062 _____ C:\Windows\system32\PerfStringBackup.INI
2015-11-25 20:36 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2015-11-25 20:34 - 2009-07-14 05:45 - 00027696 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-11-25 20:34 - 2009-07-14 05:45 - 00027696 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-11-24 21:43 - 2012-10-06 12:30 - 00003978 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{438A4F23-67AE-4D24-A8A4-91B581BF0EEC}
2015-11-22 21:29 - 2012-09-22 20:48 - 00000000 ____D C:\Users\Michal\Documents\Bluetooth Folder
2015-11-22 21:27 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-11-21 16:01 - 2013-06-05 20:44 - 00000000 ____D C:\Program Files (x86)\Opera
2015-11-19 23:11 - 2014-02-20 14:12 - 00000000 ____D C:\Users\Michal\AppData\Roaming\vlc
2015-11-19 23:05 - 2014-02-20 14:11 - 00000000 ____D C:\Program Files (x86)\VLC Player
2015-11-17 21:57 - 2012-10-13 11:27 - 00000000 ____D C:\Users\Michal\AppData\Roaming\uTorrent
2015-11-17 20:26 - 2012-09-23 09:17 - 00000000 ____D C:\Programy
2015-11-17 08:40 - 2012-09-23 11:07 - 00000000 ____D C:\Users\Michal\AppData\Roaming\Winamp
2015-11-15 09:31 - 2009-07-14 05:45 - 05030208 _____ C:\Windows\system32\FNTCACHE.DAT
2015-11-14 17:54 - 2013-04-14 17:02 - 00001363 _____ C:\Users\Michal\Desktop\Photoshop – zástupce.lnk
2015-11-14 09:26 - 2013-05-08 12:31 - 00000000 ____D C:\Users\Michal\AppData\Roaming\Dropbox
2015-11-11 21:22 - 2010-11-21 10:38 - 00000000 ____D C:\Program Files\Windows Journal
2015-11-11 21:13 - 2012-09-23 09:05 - 00000000 ____D C:\Users\Michal\AppData\Local\CrashDumps
2015-11-11 20:54 - 2013-08-04 06:24 - 00000000 ____D C:\Windows\system32\MRT
2015-11-11 20:48 - 2012-09-22 20:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2015-11-11 20:48 - 2012-09-22 20:17 - 00000000 ____D C:\Program Files (x86)\ASUS
2015-11-11 20:36 - 2012-09-23 12:40 - 145617392 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-11-11 20:33 - 2012-09-23 11:53 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-11-10 21:44 - 2012-10-06 17:53 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2015-11-10 21:44 - 2012-10-06 17:53 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-11-10 21:44 - 2012-10-06 17:53 - 00003852 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2015-11-10 20:23 - 2013-06-07 21:20 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-11-06 16:44 - 2015-03-21 21:44 - 01059656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2015-11-06 16:44 - 2015-03-21 21:44 - 00449992 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2015-11-05 22:49 - 2015-02-22 08:16 - 00000000 ____D C:\ProgramData\Oracle
2015-11-05 22:47 - 2015-02-22 08:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-11-05 22:45 - 2015-09-25 19:27 - 00000000 ____D C:\Users\Michal\.oracle_jre_usage
2015-11-05 22:43 - 2015-02-22 08:19 - 00097888 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2015-11-05 22:42 - 2015-02-22 08:16 - 00000000 ____D C:\Program Files (x86)\Java
==================== Files in the root of some directories =======
2014-10-17 09:14 - 2014-10-17 10:49 - 0000132 _____ () C:\Users\Michal\AppData\Roaming\Adobe Formát PNG CS6 – předvolby
2015-03-08 21:18 - 2015-03-08 21:55 - 0004341 _____ () C:\Users\Michal\AppData\Roaming\Rim.Desktop.Exception.log
2015-03-08 21:15 - 2015-06-16 17:41 - 0001943 _____ () C:\Users\Michal\AppData\Roaming\Rim.Desktop.HttpServerSetup.log
2015-03-08 21:18 - 2015-03-08 21:55 - 0000077 _____ () C:\Users\Michal\AppData\Roaming\Rim.DesktopHelper.Exception.log
2012-09-22 21:14 - 2015-11-25 20:36 - 0000486 _____ () C:\Users\Michal\AppData\Roaming\sp_data.sys
2014-10-17 10:05 - 2014-10-25 12:27 - 0001480 _____ () C:\Users\Michal\AppData\Local\Adobe Uložit pro web 13.0 Prefs
2014-01-30 13:59 - 2014-01-30 13:59 - 0000017 _____ () C:\Users\Michal\AppData\Local\resmon.resmoncfg
2015-11-14 14:21 - 2015-11-14 14:21 - 0024576 _____ () C:\Users\Michal\AppData\Local\uninst.tmp
2014-02-20 15:56 - 2014-02-20 15:56 - 1883792 _____ (Irfan Skiljan) C:\ProgramData\irwan view 437_setup2.exe
Files to move or delete:
====================
C:\ProgramData\irwan view 437_setup2.exe
Some files in TEMP:
====================
C:\Users\Michal\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-11-21 17:10
==================== End of FRST.txt ============================
Re: Prosím vás o kontrolu
... a teď Addition.txt:
Additional scan result of Farbar Recovery Scan Tool (x64) Version:25-11-2015 02
Ran by Michal (2015-11-25 21:35:08)
Running from C:\Users\Michal\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2012-09-22 18:47:30)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2225000157-3097903131-2559664316-500 - Administrator - Disabled)
Guest (S-1-5-21-2225000157-3097903131-2559664316-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2225000157-3097903131-2559664316-1057 - Limited - Enabled)
Michal (S-1-5-21-2225000157-3097903131-2559664316-1000 - Administrator - Enabled) => C:\Users\Michal
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\uTorrent) (Version: 3.4.5.41202 - BitTorrent Inc.)
Adobe Acrobat 9 Pro - Czech, Hungarian, Polish, Slovak (HKLM-x32\...\{AC76BA86-1029-4770-7760-000000000004}{AC76BA86-1029-4770-7760-000000000004}) (Version: 9.5.5 - Adobe Systems)
Adobe Acrobat 9.5.5 - CPSID_83708 (HKLM-x32\...\{AC76BA86-1029-4770-7760-000000000004}_955) (Version: - Adobe Systems Incorporated)
Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.245 - Adobe Systems Incorporated)
Adobe Flash Player 19 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 19.0.0.245 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
ArcSoft Panorama Maker 6 (HKLM-x32\...\{8A7D0970-C0A4-4B56-94D4-E3A175AB45BB}) (Version: 6.0.0.94 - ArcSoft)
Ashampoo Burning Studio 6 FREE v.6.81 (HKLM-x32\...\Ashampoo Burning Studio 6 FREE_is1) (Version: 6.8.1 - Ashampoo GmbH & Co. KG)
ASUS AI Recovery (HKLM-x32\...\{D39F0676-163E-4595-A917-E28F99BBD4D2}) (Version: 1.0.24 - ASUS)
ASUS FaceLogon (HKLM-x32\...\{64452561-169F-4A36-A2FF-B5E118EC65F5}) (Version: 1.0.0014 - ASUS)
ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.1.1 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 1.2.0 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.02.0041 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 2.0.9 - ASUS)
ASUS Virtual Touch (HKLM-x32\...\{938CFBD4-0652-49E5-BB8B-153948865941}) (Version: 1.0.11 - ASUS)
Atheros Bluetooth Suite (64) (HKLM\...\{230D1595-57DA-4933-8C4E-375797EBB7E1}) (Version: 7.4.0.115 - Atheros)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0020 - ASUS)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.4.2233 - AVAST Software)
Canon Utilities PhotoStitch (HKLM-x32\...\PhotoStitch) (Version: 3.1.23.47 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 4.02 - Piriform)
Centrum zařízení Windows Mobile (HKLM\...\{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}) (Version: 6.1.6965.0 - Microsoft Corporation)
Dropbox (HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\Dropbox) (Version: 3.10.11 - Dropbox, Inc.)
ETDWare PS/2-X64 10.5.9.0 (HKLM\...\Elantech) (Version: 10.5.9.0 - ELAN Microelectronic Corp.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Huawei Drivers (HKLM-x32\...\{C82D8932-EB28-4da6-9582-33D515D46F04}) (Version: 5.01.03.00 - )
InstantOn for NB (HKLM-x32\...\{749F674B-2674-47E8-879C-5626A06B2A91}) (Version: 2.3.3 - ASUS)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.0.1351 - Intel Corporation)
Intel(R) OpenCL CPU Runtime (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2653 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.3.214 - Intel Corporation)
Intel® Trusted Connect Service Client (HKLM\...\{6199B534-A1B6-46ED-873B-97B0ECF8F81E}) (Version: 1.23.216.0 - Intel Corporation)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.38 - Irfan Skiljan)
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
Java 8 Update 65 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218065F0}) (Version: 8.0.650.17 - Oracle Corporation)
Kerio VPN Client (HKLM\...\{756AFA87-1E06-4A15-A619-0C6A97731C42}) (Version: 6.4.3672 - Kerio Technologies)
MediaCoder 0.8.18 (HKLM-x32\...\MediaCoder) (Version: 0.8.18 - Broad Intelligence)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30320 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile CSY Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile CSY Language Pack) (Version: 4.0.30320 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
MiniTool Partition Wizard Home Edition 7.5 (HKLM-x32\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version: - MiniTool Solution Ltd.)
Mozilla Firefox 42.0 (x86 cs) (HKLM-x32\...\Mozilla Firefox 42.0 (x86 cs)) (Version: 42.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 42.0.0.5780 - Mozilla)
Opera Stable 33.0.1990.115 (HKLM-x32\...\Opera 33.0.1990.115) (Version: 33.0.1990.115 - Opera Software)
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
PowerISO (HKLM-x32\...\PowerISO) (Version: 5.5 - Power Software Ltd)
Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{7D916FA5-DAE9-4A25-B089-655C70EAF607}) (Version: 9.2 - Qualcomm Atheros)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.48.823.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6570 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.1.7601.27015 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.45 - Piriform)
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.5.0.12094_27 - Samsung Electronics Co., Ltd.)
Samsung Kies (x32 Version: 2.5.0.12094_27 - Samsung Electronics Co., Ltd.) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.45.0 - SAMSUNG Electronics Co., Ltd.)
SceneSwitch (HKLM-x32\...\{5172E572-C175-4F80-A6D5-5CB45826AD61}) (Version: 1.0.11 - ASUS)
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
Slovník Verdict Free (HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\Verdict Free) (Version: - )
T-Mobile Internet Manager (HKLM-x32\...\T-Mobile Communication Centre) (Version: 2015-08-06@2015-08-25 - Gemfor s.r.o.)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.51a - Ghisler Software GmbH)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Winamp (HKLM-x32\...\Winamp) (Version: 5.63 - Nullsoft, Inc)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.41.0 - ASUS)
Wireless Console 3 (HKLM-x32\...\{19EA33FB-B34E-40EA-8B8A-61743AEB795A}) (Version: 3.0.27 - ASUS)
ZTE Drivers (HKLM-x32\...\{ACC9984D-E78B-4fcd-BE44-4E3F186DDA33}) (Version: 1.2088.0.7 - )
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Michal\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\Michal\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\Michal\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\Michal\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Michal\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Michal\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\Michal\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Michal\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Michal\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Michal\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Michal\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Michal\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Michal\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Michal\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Michal\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Michal\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Michal\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\Michal\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll => No File
==================== Restore Points =========================
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-05-05 11:19 - 2013-05-30 20:31 - 00000921 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 genuine.microsoft.com
127.0.0.1 mpa.one.microsoft.com
127.0.0.1 sls.microsoft.com
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {08397969-74F2-42DE-8164-E80EF8ACBD41} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2012-02-29] (ASUSTek Computer Inc.)
Task: {09167974-C125-400D-B9A6-BFED1A9711BD} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2225000157-3097903131-2559664316-1000UA => C:\Users\Michal\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {0E98EB78-B4FD-4B41-BA33-86FBF55728B4} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2225000157-3097903131-2559664316-1000Core => C:\Users\Michal\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-18] (Dropbox, Inc.)
Task: {2384C243-A704-47C2-9CE0-BD24C92C9AC6} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-10] (Adobe Systems Incorporated)
Task: {3B35B673-2180-412A-BFE6-B5E6C51F41E2} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2225000157-3097903131-2559664316-1000UA => C:\Users\Michal\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-18] (Dropbox, Inc.)
Task: {4ADED6DD-B258-495E-B702-D6EC5688EAB0} - System32\Tasks\AIRecoveryRemind => C:\Program Files (x86)\ASUS\AI Recovery\AIRecoveryRemind.exe [2012-03-09] (ASUSTek Computer Inc.)
Task: {55521A5D-BBE2-4027-928B-8A252DC53CE3} - System32\Tasks\ASUS Quick Gesture => C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x86\QuickGesture.exe [2012-04-11] (ASUSTeK Computer Inc.)
Task: {5C8EB297-9A78-43C9-B5C5-2D1F76690D96} - System32\Tasks\ASUS Quick Gesture (x64) => C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x64\QuickGesture64.exe [2012-04-11] (ASUSTeK Computer Inc.)
Task: {5D27524E-2B20-4B1B-AC0A-408F9C7DAF7A} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files (x86)\ASUS\FaceLogon\sensorsrv.exe [2012-02-16] (ASUSTek Computer Inc.)
Task: {65C4196B-EFD0-4B09-9471-40A8330CC4AD} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2225000157-3097903131-2559664316-1000Core => C:\Users\Michal\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {72DF7EA1-D00D-4685-BE34-C2B8B2634E50} - System32\Tasks\{7D220043-0D20-4C01-B873-7804A5FC3D41} => Chrome.exe hxxp://ui.skype.com/ui/0/6.0.0.126/cs/go/help.faq.installer?LastError=1603
Task: {8B3BCBA1-8619-47E8-AC4E-213CE749158C} - System32\Tasks\Opera scheduled Autoupdate 1392837543 => C:\Program Files (x86)\Opera\launcher.exe [2015-11-16] (Opera Software)
Task: {CAD4E9E4-6B8A-44F9-8E45-BDB81E4230AA} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-05-24] (Piriform Ltd)
Task: {CE01FE0A-B9EA-409A-AEED-6C70A6B293A4} - System32\Tasks\{38C3A244-8415-4302-BB02-5A5946D61DF0} => pcalua.exe -a "D:\Install Lightroom 5.exe" -d D:\
Task: {E1CDA7F0-8508-44BB-9254-B4BADE02CCF6} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2012-06-25] (ASUSTek Computer Inc.)
Task: {EA32B2F8-A7AF-4C7B-8397-C4640673A999} - System32\Tasks\avast! Emergency Update => E:\Avast\AvastEmUpdate.exe [2015-09-29] (AVAST Software)
Task: {F96BCE02-903F-4C9A-8C58-A9E56A64DDB1} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe [2012-01-04] (ASUS)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2225000157-3097903131-2559664316-1000Core.job => C:\Users\Michal\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2225000157-3097903131-2559664316-1000UA.job => C:\Users\Michal\AppData\Local\Dropbox\Update\DropboxUpdate.exe
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2012-09-22 20:10 - 2011-12-16 10:02 - 00128280 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
2010-07-14 15:11 - 2010-07-14 15:11 - 00031360 _____ () C:\Program Files\ASUS\P4G\DevMng.dll
2015-09-29 19:22 - 2015-09-29 19:22 - 00103376 _____ () E:\Avast\log.dll
2015-09-29 19:22 - 2015-09-29 19:22 - 00123976 _____ () E:\Avast\JsonRpcServer.dll
2015-11-22 20:19 - 2015-11-22 20:19 - 02994176 _____ () E:\Avast\defs\15112201\algo.dll
2015-11-23 20:50 - 2015-11-23 20:50 - 02994688 _____ () E:\Avast\defs\15112301\algo.dll
2015-11-25 20:35 - 2015-11-25 20:35 - 02995712 _____ () E:\Avast\defs\15112501\algo.dll
2012-02-21 13:49 - 2012-02-21 13:49 - 00009216 _____ () C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll
2012-01-31 08:25 - 2012-01-31 08:25 - 01163264 _____ () C:\Program Files (x86)\ASUS\Wireless Console 3\acAuth.dll
2015-10-22 21:44 - 2009-02-27 17:51 - 00019968 _____ () C:\Programy\Adobe Acrobat 9.0 Professional\Acrobat\acrotray.cze
2015-09-29 19:22 - 2015-09-29 19:22 - 40539648 _____ () E:\Avast\libcef.dll
2012-09-22 20:09 - 2011-12-16 09:39 - 01198872 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00417280 _____ () C:\Programy\Winamp\nsutil.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00078848 _____ () C:\Programy\Winamp\nde.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00023552 _____ () C:\Programy\Winamp\System\albumart.w5s
2012-06-28 16:42 - 2012-09-23 11:09 - 00174080 _____ () C:\Programy\Winamp\System\auth.w5s
2012-06-28 16:42 - 2012-09-23 11:09 - 00019456 _____ () C:\Programy\Winamp\System\bmp.w5s
2012-06-28 16:42 - 2012-09-23 11:09 - 00064512 _____ () C:\Programy\Winamp\zlib.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00044544 _____ () C:\Programy\Winamp\System\devices.w5s
2012-06-28 16:42 - 2012-09-23 11:09 - 00016896 _____ () C:\Programy\Winamp\System\dlmgr.w5s
2012-06-28 16:42 - 2012-09-23 11:09 - 00014336 _____ () C:\Programy\Winamp\System\filereader.w5s
2012-06-28 16:42 - 2012-09-23 11:09 - 00019456 _____ () C:\Programy\Winamp\System\gif.w5s
2012-06-28 16:42 - 2012-09-23 11:09 - 00016384 _____ () C:\Programy\Winamp\System\gracenote.w5s
2012-06-28 16:42 - 2012-09-23 11:09 - 00623616 _____ () C:\Programy\Winamp\System\jnetlib.w5s
2012-06-28 16:42 - 2012-09-23 11:09 - 00154624 _____ () C:\Programy\Winamp\System\jpeg.w5s
2012-06-28 16:42 - 2012-09-23 11:09 - 00084480 _____ () C:\Programy\Winamp\System\playlist.w5s
2012-06-28 16:42 - 2012-09-23 11:09 - 00087552 _____ () C:\Programy\Winamp\System\png.w5s
2012-06-28 16:42 - 2012-09-23 11:09 - 00013824 _____ () C:\Programy\Winamp\System\primo.w5s
2012-06-28 16:42 - 2012-09-23 11:09 - 00021504 _____ () C:\Programy\Winamp\System\tagz.w5s
2012-06-28 16:42 - 2012-09-23 11:09 - 00035328 _____ () C:\Programy\Winamp\System\timer.w5s
2012-06-28 16:42 - 2012-09-23 11:09 - 00091136 _____ () C:\Programy\Winamp\System\xml.w5s
2012-06-28 16:42 - 2012-09-23 11:09 - 00068608 _____ () C:\Programy\Winamp\Plugins\in_avi.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00102400 _____ () C:\Programy\Winamp\Plugins\in_cdda.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00072192 _____ () C:\Programy\Winamp\Plugins\in_dshow.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00061440 _____ () C:\Programy\Winamp\Plugins\in_flac.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00043008 _____ () C:\Programy\Winamp\Plugins\in_flv.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00007168 _____ () C:\Programy\Winamp\Plugins\in_linein.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00109568 _____ () C:\Programy\Winamp\Plugins\in_midi.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00049152 _____ () C:\Programy\Winamp\Plugins\in_mkv.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00164864 _____ () C:\Programy\Winamp\Plugins\in_mod.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00290816 _____ () C:\Programy\Winamp\Plugins\in_mp3.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00052736 _____ () C:\Programy\Winamp\Plugins\in_mp4.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00075264 _____ () C:\Programy\Winamp\Plugins\in_nsv.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00023552 _____ () C:\Programy\Winamp\Plugins\in_swf.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00253440 _____ () C:\Programy\Winamp\Plugins\in_vorbis.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00016896 _____ () C:\Programy\Winamp\Plugins\in_wave.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00253440 _____ () C:\Programy\Winamp\libsndfile.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00313344 _____ () C:\Programy\Winamp\Plugins\in_wm.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00022528 _____ () C:\Programy\Winamp\Plugins\out_disk.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00052224 _____ () C:\Programy\Winamp\Plugins\out_ds.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00018432 _____ () C:\Programy\Winamp\Plugins\out_wave.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 01737728 _____ () C:\Programy\Winamp\Plugins\gen_ff.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00083968 _____ () C:\Programy\Winamp\tataki.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00340992 _____ () C:\Programy\Winamp\Plugins\freeform\wacs\freetype\freetype.wac
2012-06-28 16:42 - 2012-09-23 11:09 - 00028160 _____ () C:\Programy\Winamp\Plugins\gen_hotkeys.dll
2011-11-10 23:10 - 2012-09-23 11:09 - 00185344 _____ () C:\Programy\Winamp\Plugins\gen_jumpex.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00318976 _____ () C:\Programy\Winamp\Plugins\gen_ml.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00294912 _____ () C:\Programy\Winamp\Plugins\ml_local.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00084480 _____ () C:\Programy\Winamp\Plugins\ml_playlists.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00124928 _____ () C:\Programy\Winamp\Plugins\ml_online.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00249856 _____ () C:\Programy\Winamp\Plugins\ml_devices.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00201728 _____ () C:\Programy\Winamp\Plugins\ml_disc.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00240640 _____ () C:\Programy\Winamp\Plugins\ml_pmp.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00029184 _____ () C:\Programy\Winamp\Plugins\pmp_activesync.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00060928 _____ () C:\Programy\Winamp\Plugins\pmp_android.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00170496 _____ () C:\Programy\Winamp\Plugins\pmp_ipod.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00020480 _____ () C:\Programy\Winamp\Plugins\pmp_njb.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00118272 _____ () C:\Programy\Winamp\Plugins\pmp_p4s.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00053760 _____ () C:\Programy\Winamp\Plugins\pmp_usb.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00113664 _____ () C:\Programy\Winamp\Plugins\pmp_wifi.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00028672 _____ () C:\Programy\Winamp\Plugins\ml_bookmarks.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00052224 _____ () C:\Programy\Winamp\Plugins\ml_history.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00028672 _____ () C:\Programy\Winamp\Plugins\ml_autotag.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00057344 _____ () C:\Programy\Winamp\Plugins\ml_impex.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00083456 _____ () C:\Programy\Winamp\Plugins\ml_plg.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00033792 _____ () C:\Programy\Winamp\Plugins\ml_rg.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00032256 _____ () C:\Programy\Winamp\Plugins\ml_transcode.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00057344 _____ () C:\Programy\Winamp\Plugins\gen_orgler.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00025600 _____ () C:\Programy\Winamp\Plugins\gen_tray.dll
2015-11-18 21:24 - 2015-11-18 21:24 - 60736120 _____ () C:\Program Files (x86)\Opera\33.0.1990.115\opera.dll
2015-11-18 21:24 - 2015-11-18 21:24 - 01919608 _____ () C:\Program Files (x86)\Opera\33.0.1990.115\libglesv2.dll
2015-11-18 21:24 - 2015-11-18 21:24 - 00081528 _____ () C:\Program Files (x86)\Opera\33.0.1990.115\libegl.dll
2015-11-10 21:44 - 2015-11-10 21:44 - 16496328 _____ () C:\Windows\SysWOW64\Macromed\Flash\pepflashplayer32_19_0_0_245.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
IE restricted site: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\123simsen.com -> www.123simsen.com
There are 7866 more sites.
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 213.46.172.36 - 213.46.172.37
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [TCP Query User{974CADCF-975F-4647-BDE3-0E112F829082}C:\programy\winamp\winamp.exe] => (Block) C:\programy\winamp\winamp.exe
FirewallRules: [UDP Query User{69A9BC6F-58C8-4D8A-9B59-89C903A3319D}C:\programy\winamp\winamp.exe] => (Block) C:\programy\winamp\winamp.exe
FirewallRules: [{46907412-61CC-4086-A01C-784A244FA2D9}] => (Allow) C:\Programy\Microsoft Office 7 Enterprise\Office12\outlook.exe
FirewallRules: [{7F6DD0D0-0220-4302-8895-1DE3A9B48A1F}] => (Allow) C:\Programy\Microsoft Office 7 Enterprise\Office12\GROOVE.EXE
FirewallRules: [{DB0A18FF-C0CD-4F1A-A42F-4A455EB9A31A}] => (Allow) C:\Programy\Microsoft Office 7 Enterprise\Office12\GROOVE.EXE
FirewallRules: [{948485E9-C70A-4771-984D-DD9EB1685CBB}] => (Allow) C:\Programy\Microsoft Office 7 Enterprise\Office12\ONENOTE.EXE
FirewallRules: [{F37F9450-542B-4022-9CA2-AAFF57A0CDBD}] => (Allow) C:\Programy\Microsoft Office 7 Enterprise\Office12\ONENOTE.EXE
FirewallRules: [TCP Query User{A021E6F5-1D11-4C6F-9096-2E5242F9934F}C:\programy\winamp\winamp.exe] => (Allow) C:\programy\winamp\winamp.exe
FirewallRules: [UDP Query User{AFC120DE-1F32-48F0-B76A-77BED9D5EAFD}C:\programy\winamp\winamp.exe] => (Allow) C:\programy\winamp\winamp.exe
FirewallRules: [{FA3A212C-1142-4820-95D1-D144B6B7443E}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{99E44A1E-F4FF-4FB8-BCF5-0D52A028D092}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{9C902119-E096-4995-9C1C-582EFB6781D5}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{9ACC37BA-0729-4BB7-BD18-53FE6A904CCC}] => (Allow) C:\Users\Michal\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{90AD2DED-02F9-4EA5-84AB-F7A85750995A}] => (Allow) C:\Users\Michal\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [TCP Query User{133EF36B-5FCA-4081-B3CC-241D3CB157B5}C:\users\michal\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\michal\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{E5790DAC-CABE-4EEA-9C20-F6D73BF6FC7B}C:\users\michal\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\michal\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [{51D1AB57-F6BC-4C8B-8889-B057CA3E3F4B}] => (Allow) C:\Program Files (x86)\Opera\opera.exe
FirewallRules: [{57654B6E-9D74-403D-A39E-4E8B3290FEB3}] => (Allow) C:\Program Files (x86)\Opera\opera.exe
FirewallRules: [{C313F4AE-2DFF-46B3-AA97-92BC6425CC48}] => (Allow) C:\Users\Michal\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{E74F1A80-6C2C-4C6A-AEDB-5D19BA8426DF}] => (Allow) C:\Users\Michal\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{520F3231-0D08-4ACF-AFD2-ED745BA87FCE}C:\programy\total commander 8.01\totalcmd64.exe] => (Allow) C:\programy\total commander 8.01\totalcmd64.exe
FirewallRules: [UDP Query User{D534B20B-EF8C-44D7-B5A9-471E3DF6AA30}C:\programy\total commander 8.01\totalcmd64.exe] => (Allow) C:\programy\total commander 8.01\totalcmd64.exe
FirewallRules: [TCP Query User{EB756507-D8BF-4CC6-BE1B-2D9D12CCD519}C:\program files (x86)\spybot - search & destroy 2\sdupdate.exe] => (Allow) C:\program files (x86)\spybot - search & destroy 2\sdupdate.exe
FirewallRules: [UDP Query User{93A0345E-8039-43F6-B875-1A5EA0B4A33D}C:\program files (x86)\spybot - search & destroy 2\sdupdate.exe] => (Allow) C:\program files (x86)\spybot - search & destroy 2\sdupdate.exe
FirewallRules: [{AB12DA0F-F0AF-4717-BD79-5389B1D1E0FE}] => (Allow) C:\Users\Michal\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{0E040538-12C6-479C-AAEA-CB3E92508E04}] => (Allow) C:\Users\Michal\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{F4611126-DE02-4D3D-859C-24DBB49A71CB}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{11A4ABE5-956E-4BBB-9A01-D0A7CECEDC03}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{17E1D8A6-4889-4BDB-B3C8-F1A8DD4AAD0D}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{2D9D2604-E393-4FC6-9DA0-BDE6E7FA757F}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{7AD58C3B-99D7-4185-B2AA-9918201A19FF}] => (Allow) C:\Program Files (x86)\Canon\EOS Utility\WFTPairing\EOSUPNPSV.exe
FirewallRules: [{AAC8F219-5080-48BF-9A33-C329A48257AD}] => (Allow) C:\Program Files (x86)\Canon\EOS Utility\WFTPairing\EOSUPNPSV.exe
FirewallRules: [{827AF0CC-499C-4A17-8186-1DB3B7EB4AB4}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{F2068A39-7AEC-4998-A953-DC9EBB6CEDD7}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (11/25/2015 08:52:34 PM) (Source: Software Protection Platform Service) (EventID: 8193) (User: )
Description: Plánovač aktivace licence (sppuinotify.dll) byl ukončen s následujícím kódem chyby:
0x80070005
Error: (11/24/2015 09:14:11 PM) (Source: Software Protection Platform Service) (EventID: 8193) (User: )
Description: Plánovač aktivace licence (sppuinotify.dll) byl ukončen s následujícím kódem chyby:
0x80070005
Error: (11/24/2015 08:14:11 PM) (Source: Software Protection Platform Service) (EventID: 8193) (User: )
Description: Plánovač aktivace licence (sppuinotify.dll) byl ukončen s následujícím kódem chyby:
0x80070005
Error: (11/23/2015 09:56:54 PM) (Source: Software Protection Platform Service) (EventID: 8193) (User: )
Description: Plánovač aktivace licence (sppuinotify.dll) byl ukončen s následujícím kódem chyby:
0x80070005
Error: (11/22/2015 10:06:33 PM) (Source: Software Protection Platform Service) (EventID: 8193) (User: )
Description: Plánovač aktivace licence (sppuinotify.dll) byl ukončen s následujícím kódem chyby:
0x80070005
Error: (11/22/2015 09:27:42 PM) (Source: Winlogon) (EventID: 4103) (User: )
Description: Aktivace licence systému Windows se nezdařila. Chyba 0x80070005.
Error: (11/22/2015 09:02:02 PM) (Source: Software Protection Platform Service) (EventID: 8193) (User: )
Description: Plánovač aktivace licence (sppuinotify.dll) byl ukončen s následujícím kódem chyby:
0x80070005
Error: (11/22/2015 08:15:35 PM) (Source: Winlogon) (EventID: 4103) (User: )
Description: Aktivace licence systému Windows se nezdařila. Chyba 0x80070005.
Error: (11/22/2015 01:42:38 PM) (Source: Software Protection Platform Service) (EventID: 8193) (User: )
Description: Plánovač aktivace licence (sppuinotify.dll) byl ukončen s následujícím kódem chyby:
0x80070005
Error: (11/22/2015 00:42:39 PM) (Source: Software Protection Platform Service) (EventID: 8193) (User: )
Description: Plánovač aktivace licence (sppuinotify.dll) byl ukončen s následujícím kódem chyby:
0x80070005
System errors:
=============
Error: (11/25/2015 08:52:34 PM) (Source: DCOM) (EventID: 10001) (User: )
Description: C:\Windows\System32\slui.exe -Embedding5{F87B28F1-DA9A-4F35-8EC0-800EFCF26B83}
Error: (11/25/2015 08:34:54 PM) (Source: BTHUSB) (EventID: 17) (User: )
Description: Místní adaptér Bluetooth selhal. Důvod selhaní nebylo možno určit a adaptér nebude používán. Ovladač vysílače byl vyjmut z paměti.
Error: (11/24/2015 08:14:11 PM) (Source: DCOM) (EventID: 10001) (User: )
Description: C:\Windows\System32\slui.exe -Embedding5{F87B28F1-DA9A-4F35-8EC0-800EFCF26B83}
Error: (11/24/2015 07:56:30 PM) (Source: BTHUSB) (EventID: 17) (User: )
Description: Místní adaptér Bluetooth selhal. Důvod selhaní nebylo možno určit a adaptér nebude používán. Ovladač vysílače byl vyjmut z paměti.
Error: (11/23/2015 08:49:32 PM) (Source: BTHUSB) (EventID: 17) (User: )
Description: Místní adaptér Bluetooth selhal. Důvod selhaní nebylo možno určit a adaptér nebude používán. Ovladač vysílače byl vyjmut z paměti.
Error: (11/22/2015 10:06:33 PM) (Source: DCOM) (EventID: 10001) (User: )
Description: C:\Windows\System32\slui.exe -Embedding5{F87B28F1-DA9A-4F35-8EC0-800EFCF26B83}
Error: (11/22/2015 09:31:27 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {B77C4C36-0154-4C52-AB49-FAA03837E47F}
Error: (11/22/2015 09:26:48 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.
Cesta k modulu: C:\Program Files (x86)\Qualcomm Atheros WiFi Driver Installation\AthIhvWlanExt.dll
Error: (11/22/2015 09:26:48 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.
Cesta k modulu: C:\Program Files (x86)\Qualcomm Atheros WiFi Driver Installation\AthIhvWlanExt.dll
Error: (11/22/2015 09:26:44 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.
Cesta k modulu: C:\Program Files (x86)\Qualcomm Atheros WiFi Driver Installation\AthIhvWlanExt.dll
CodeIntegrity:
===================================
Date: 2014-05-06 17:55:48.265
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-05-06 16:01:51.473
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-05-06 13:00:13.312
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-05-06 11:11:10.999
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-05-06 10:30:21.744
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-05-06 08:37:00.960
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-05-05 20:44:36.814
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-05-04 18:33:01.908
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-05-04 18:29:36.408
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-05-03 21:29:44.208
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system.
==================== Memory info ===========================
Processor: Intel(R) Pentium(R) CPU B970 @ 2.30GHz
Percentage of memory in use: 59%
Total physical RAM: 3979.82 MB
Available physical RAM: 1630.35 MB
Total Virtual: 4728.02 MB
Available Virtual: 1688.33 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:48.83 GB) (Free:7.9 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive e: (Michal) (Fixed) (Total:416.93 GB) (Free:18.4 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 7C12E647)
Partition 1: (Active) - (Size=48.8 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=416.9 GB) - (Type=07 NTFS)
==================== End of Addition.txt ============================
Additional scan result of Farbar Recovery Scan Tool (x64) Version:25-11-2015 02
Ran by Michal (2015-11-25 21:35:08)
Running from C:\Users\Michal\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2012-09-22 18:47:30)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2225000157-3097903131-2559664316-500 - Administrator - Disabled)
Guest (S-1-5-21-2225000157-3097903131-2559664316-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2225000157-3097903131-2559664316-1057 - Limited - Enabled)
Michal (S-1-5-21-2225000157-3097903131-2559664316-1000 - Administrator - Enabled) => C:\Users\Michal
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\uTorrent) (Version: 3.4.5.41202 - BitTorrent Inc.)
Adobe Acrobat 9 Pro - Czech, Hungarian, Polish, Slovak (HKLM-x32\...\{AC76BA86-1029-4770-7760-000000000004}{AC76BA86-1029-4770-7760-000000000004}) (Version: 9.5.5 - Adobe Systems)
Adobe Acrobat 9.5.5 - CPSID_83708 (HKLM-x32\...\{AC76BA86-1029-4770-7760-000000000004}_955) (Version: - Adobe Systems Incorporated)
Adobe Flash Player 19 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 19.0.0.245 - Adobe Systems Incorporated)
Adobe Flash Player 19 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 19.0.0.245 - Adobe Systems Incorporated)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
ArcSoft Panorama Maker 6 (HKLM-x32\...\{8A7D0970-C0A4-4B56-94D4-E3A175AB45BB}) (Version: 6.0.0.94 - ArcSoft)
Ashampoo Burning Studio 6 FREE v.6.81 (HKLM-x32\...\Ashampoo Burning Studio 6 FREE_is1) (Version: 6.8.1 - Ashampoo GmbH & Co. KG)
ASUS AI Recovery (HKLM-x32\...\{D39F0676-163E-4595-A917-E28F99BBD4D2}) (Version: 1.0.24 - ASUS)
ASUS FaceLogon (HKLM-x32\...\{64452561-169F-4A36-A2FF-B5E118EC65F5}) (Version: 1.0.0014 - ASUS)
ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.1.1 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 1.2.0 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.02.0041 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 2.0.9 - ASUS)
ASUS Virtual Touch (HKLM-x32\...\{938CFBD4-0652-49E5-BB8B-153948865941}) (Version: 1.0.11 - ASUS)
Atheros Bluetooth Suite (64) (HKLM\...\{230D1595-57DA-4933-8C4E-375797EBB7E1}) (Version: 7.4.0.115 - Atheros)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0020 - ASUS)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.4.2233 - AVAST Software)
Canon Utilities PhotoStitch (HKLM-x32\...\PhotoStitch) (Version: 3.1.23.47 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 4.02 - Piriform)
Centrum zařízení Windows Mobile (HKLM\...\{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}) (Version: 6.1.6965.0 - Microsoft Corporation)
Dropbox (HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\Dropbox) (Version: 3.10.11 - Dropbox, Inc.)
ETDWare PS/2-X64 10.5.9.0 (HKLM\...\Elantech) (Version: 10.5.9.0 - ELAN Microelectronic Corp.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Huawei Drivers (HKLM-x32\...\{C82D8932-EB28-4da6-9582-33D515D46F04}) (Version: 5.01.03.00 - )
InstantOn for NB (HKLM-x32\...\{749F674B-2674-47E8-879C-5626A06B2A91}) (Version: 2.3.3 - ASUS)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.0.1351 - Intel Corporation)
Intel(R) OpenCL CPU Runtime (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2653 - Intel Corporation)
Intel(R) USB 3.0 eXtensible Host Controller Driver (HKLM-x32\...\{240C3DDD-C5E9-4029-9DF7-95650D040CF2}) (Version: 1.0.3.214 - Intel Corporation)
Intel® Trusted Connect Service Client (HKLM\...\{6199B534-A1B6-46ED-873B-97B0ECF8F81E}) (Version: 1.23.216.0 - Intel Corporation)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.38 - Irfan Skiljan)
Java 8 Update 45 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218045F0}) (Version: 8.0.450 - Oracle Corporation)
Java 8 Update 65 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218065F0}) (Version: 8.0.650.17 - Oracle Corporation)
Kerio VPN Client (HKLM\...\{756AFA87-1E06-4A15-A619-0C6A97731C42}) (Version: 6.4.3672 - Kerio Technologies)
MediaCoder 0.8.18 (HKLM-x32\...\MediaCoder) (Version: 0.8.18 - Broad Intelligence)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30320 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile CSY Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile CSY Language Pack) (Version: 4.0.30320 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
MiniTool Partition Wizard Home Edition 7.5 (HKLM-x32\...\{05D996FA-ADCB-4D23-BA3C-A7C184A8FAC6}_is1) (Version: - MiniTool Solution Ltd.)
Mozilla Firefox 42.0 (x86 cs) (HKLM-x32\...\Mozilla Firefox 42.0 (x86 cs)) (Version: 42.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 42.0.0.5780 - Mozilla)
Opera Stable 33.0.1990.115 (HKLM-x32\...\Opera 33.0.1990.115) (Version: 33.0.1990.115 - Opera Software)
PDF Settings CS6 (x32 Version: 11.0 - Adobe Systems Incorporated) Hidden
Picasa 3 (HKLM-x32\...\Picasa 3) (Version: 3.9 - Google, Inc.)
PowerISO (HKLM-x32\...\PowerISO) (Version: 5.5 - Power Software Ltd)
Qualcomm Atheros WiFi Driver Installation (HKLM-x32\...\{7D916FA5-DAE9-4A25-B089-655C70EAF607}) (Version: 9.2 - Qualcomm Atheros)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.48.823.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6570 - Realtek Semiconductor Corp.)
Realtek PCIE Card Reader (HKLM-x32\...\{C1594429-8296-4652-BF54-9DBE4932A44C}) (Version: 6.1.7601.27015 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.45 - Piriform)
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.5.0.12094_27 - Samsung Electronics Co., Ltd.)
Samsung Kies (x32 Version: 2.5.0.12094_27 - Samsung Electronics Co., Ltd.) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.45.0 - SAMSUNG Electronics Co., Ltd.)
SceneSwitch (HKLM-x32\...\{5172E572-C175-4F80-A6D5-5CB45826AD61}) (Version: 1.0.11 - ASUS)
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
Slovník Verdict Free (HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\Verdict Free) (Version: - )
T-Mobile Internet Manager (HKLM-x32\...\T-Mobile Communication Centre) (Version: 2015-08-06@2015-08-25 - Gemfor s.r.o.)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.51a - Ghisler Software GmbH)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Winamp (HKLM-x32\...\Winamp) (Version: 5.63 - Nullsoft, Inc)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.41.0 - ASUS)
Wireless Console 3 (HKLM-x32\...\{19EA33FB-B34E-40EA-8B8A-61743AEB795A}) (Version: 3.0.27 - ASUS)
ZTE Drivers (HKLM-x32\...\{ACC9984D-E78B-4fcd-BE44-4E3F186DDA33}) (Version: 1.2088.0.7 - )
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Michal\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\Michal\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\Michal\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\Michal\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Michal\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Michal\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\Michal\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Michal\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Michal\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Michal\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Michal\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Michal\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Michal\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Michal\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Michal\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Michal\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Michal\AppData\Roaming\Dropbox\bin\DropboxExt64.28.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\Michal\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll => No File
==================== Restore Points =========================
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-05-05 11:19 - 2013-05-30 20:31 - 00000921 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 genuine.microsoft.com
127.0.0.1 mpa.one.microsoft.com
127.0.0.1 sls.microsoft.com
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {08397969-74F2-42DE-8164-E80EF8ACBD41} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2012-02-29] (ASUSTek Computer Inc.)
Task: {09167974-C125-400D-B9A6-BFED1A9711BD} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2225000157-3097903131-2559664316-1000UA => C:\Users\Michal\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {0E98EB78-B4FD-4B41-BA33-86FBF55728B4} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2225000157-3097903131-2559664316-1000Core => C:\Users\Michal\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-18] (Dropbox, Inc.)
Task: {2384C243-A704-47C2-9CE0-BD24C92C9AC6} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-10] (Adobe Systems Incorporated)
Task: {3B35B673-2180-412A-BFE6-B5E6C51F41E2} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2225000157-3097903131-2559664316-1000UA => C:\Users\Michal\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-18] (Dropbox, Inc.)
Task: {4ADED6DD-B258-495E-B702-D6EC5688EAB0} - System32\Tasks\AIRecoveryRemind => C:\Program Files (x86)\ASUS\AI Recovery\AIRecoveryRemind.exe [2012-03-09] (ASUSTek Computer Inc.)
Task: {55521A5D-BBE2-4027-928B-8A252DC53CE3} - System32\Tasks\ASUS Quick Gesture => C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x86\QuickGesture.exe [2012-04-11] (ASUSTeK Computer Inc.)
Task: {5C8EB297-9A78-43C9-B5C5-2D1F76690D96} - System32\Tasks\ASUS Quick Gesture (x64) => C:\Program Files (x86)\ASUS\ASUS Virtual Touch\QuickGesture\x64\QuickGesture64.exe [2012-04-11] (ASUSTeK Computer Inc.)
Task: {5D27524E-2B20-4B1B-AC0A-408F9C7DAF7A} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files (x86)\ASUS\FaceLogon\sensorsrv.exe [2012-02-16] (ASUSTek Computer Inc.)
Task: {65C4196B-EFD0-4B09-9471-40A8330CC4AD} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2225000157-3097903131-2559664316-1000Core => C:\Users\Michal\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {72DF7EA1-D00D-4685-BE34-C2B8B2634E50} - System32\Tasks\{7D220043-0D20-4C01-B873-7804A5FC3D41} => Chrome.exe hxxp://ui.skype.com/ui/0/6.0.0.126/cs/go/help.faq.installer?LastError=1603
Task: {8B3BCBA1-8619-47E8-AC4E-213CE749158C} - System32\Tasks\Opera scheduled Autoupdate 1392837543 => C:\Program Files (x86)\Opera\launcher.exe [2015-11-16] (Opera Software)
Task: {CAD4E9E4-6B8A-44F9-8E45-BDB81E4230AA} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2013-05-24] (Piriform Ltd)
Task: {CE01FE0A-B9EA-409A-AEED-6C70A6B293A4} - System32\Tasks\{38C3A244-8415-4302-BB02-5A5946D61DF0} => pcalua.exe -a "D:\Install Lightroom 5.exe" -d D:\
Task: {E1CDA7F0-8508-44BB-9254-B4BADE02CCF6} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2012-06-25] (ASUSTek Computer Inc.)
Task: {EA32B2F8-A7AF-4C7B-8397-C4640673A999} - System32\Tasks\avast! Emergency Update => E:\Avast\AvastEmUpdate.exe [2015-09-29] (AVAST Software)
Task: {F96BCE02-903F-4C9A-8C58-A9E56A64DDB1} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe [2012-01-04] (ASUS)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2225000157-3097903131-2559664316-1000Core.job => C:\Users\Michal\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-2225000157-3097903131-2559664316-1000UA.job => C:\Users\Michal\AppData\Local\Dropbox\Update\DropboxUpdate.exe
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2012-09-22 20:10 - 2011-12-16 10:02 - 00128280 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
2010-07-14 15:11 - 2010-07-14 15:11 - 00031360 _____ () C:\Program Files\ASUS\P4G\DevMng.dll
2015-09-29 19:22 - 2015-09-29 19:22 - 00103376 _____ () E:\Avast\log.dll
2015-09-29 19:22 - 2015-09-29 19:22 - 00123976 _____ () E:\Avast\JsonRpcServer.dll
2015-11-22 20:19 - 2015-11-22 20:19 - 02994176 _____ () E:\Avast\defs\15112201\algo.dll
2015-11-23 20:50 - 2015-11-23 20:50 - 02994688 _____ () E:\Avast\defs\15112301\algo.dll
2015-11-25 20:35 - 2015-11-25 20:35 - 02995712 _____ () E:\Avast\defs\15112501\algo.dll
2012-02-21 13:49 - 2012-02-21 13:49 - 00009216 _____ () C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll
2012-01-31 08:25 - 2012-01-31 08:25 - 01163264 _____ () C:\Program Files (x86)\ASUS\Wireless Console 3\acAuth.dll
2015-10-22 21:44 - 2009-02-27 17:51 - 00019968 _____ () C:\Programy\Adobe Acrobat 9.0 Professional\Acrobat\acrotray.cze
2015-09-29 19:22 - 2015-09-29 19:22 - 40539648 _____ () E:\Avast\libcef.dll
2012-09-22 20:09 - 2011-12-16 09:39 - 01198872 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00417280 _____ () C:\Programy\Winamp\nsutil.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00078848 _____ () C:\Programy\Winamp\nde.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00023552 _____ () C:\Programy\Winamp\System\albumart.w5s
2012-06-28 16:42 - 2012-09-23 11:09 - 00174080 _____ () C:\Programy\Winamp\System\auth.w5s
2012-06-28 16:42 - 2012-09-23 11:09 - 00019456 _____ () C:\Programy\Winamp\System\bmp.w5s
2012-06-28 16:42 - 2012-09-23 11:09 - 00064512 _____ () C:\Programy\Winamp\zlib.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00044544 _____ () C:\Programy\Winamp\System\devices.w5s
2012-06-28 16:42 - 2012-09-23 11:09 - 00016896 _____ () C:\Programy\Winamp\System\dlmgr.w5s
2012-06-28 16:42 - 2012-09-23 11:09 - 00014336 _____ () C:\Programy\Winamp\System\filereader.w5s
2012-06-28 16:42 - 2012-09-23 11:09 - 00019456 _____ () C:\Programy\Winamp\System\gif.w5s
2012-06-28 16:42 - 2012-09-23 11:09 - 00016384 _____ () C:\Programy\Winamp\System\gracenote.w5s
2012-06-28 16:42 - 2012-09-23 11:09 - 00623616 _____ () C:\Programy\Winamp\System\jnetlib.w5s
2012-06-28 16:42 - 2012-09-23 11:09 - 00154624 _____ () C:\Programy\Winamp\System\jpeg.w5s
2012-06-28 16:42 - 2012-09-23 11:09 - 00084480 _____ () C:\Programy\Winamp\System\playlist.w5s
2012-06-28 16:42 - 2012-09-23 11:09 - 00087552 _____ () C:\Programy\Winamp\System\png.w5s
2012-06-28 16:42 - 2012-09-23 11:09 - 00013824 _____ () C:\Programy\Winamp\System\primo.w5s
2012-06-28 16:42 - 2012-09-23 11:09 - 00021504 _____ () C:\Programy\Winamp\System\tagz.w5s
2012-06-28 16:42 - 2012-09-23 11:09 - 00035328 _____ () C:\Programy\Winamp\System\timer.w5s
2012-06-28 16:42 - 2012-09-23 11:09 - 00091136 _____ () C:\Programy\Winamp\System\xml.w5s
2012-06-28 16:42 - 2012-09-23 11:09 - 00068608 _____ () C:\Programy\Winamp\Plugins\in_avi.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00102400 _____ () C:\Programy\Winamp\Plugins\in_cdda.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00072192 _____ () C:\Programy\Winamp\Plugins\in_dshow.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00061440 _____ () C:\Programy\Winamp\Plugins\in_flac.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00043008 _____ () C:\Programy\Winamp\Plugins\in_flv.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00007168 _____ () C:\Programy\Winamp\Plugins\in_linein.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00109568 _____ () C:\Programy\Winamp\Plugins\in_midi.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00049152 _____ () C:\Programy\Winamp\Plugins\in_mkv.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00164864 _____ () C:\Programy\Winamp\Plugins\in_mod.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00290816 _____ () C:\Programy\Winamp\Plugins\in_mp3.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00052736 _____ () C:\Programy\Winamp\Plugins\in_mp4.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00075264 _____ () C:\Programy\Winamp\Plugins\in_nsv.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00023552 _____ () C:\Programy\Winamp\Plugins\in_swf.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00253440 _____ () C:\Programy\Winamp\Plugins\in_vorbis.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00016896 _____ () C:\Programy\Winamp\Plugins\in_wave.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00253440 _____ () C:\Programy\Winamp\libsndfile.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00313344 _____ () C:\Programy\Winamp\Plugins\in_wm.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00022528 _____ () C:\Programy\Winamp\Plugins\out_disk.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00052224 _____ () C:\Programy\Winamp\Plugins\out_ds.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00018432 _____ () C:\Programy\Winamp\Plugins\out_wave.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 01737728 _____ () C:\Programy\Winamp\Plugins\gen_ff.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00083968 _____ () C:\Programy\Winamp\tataki.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00340992 _____ () C:\Programy\Winamp\Plugins\freeform\wacs\freetype\freetype.wac
2012-06-28 16:42 - 2012-09-23 11:09 - 00028160 _____ () C:\Programy\Winamp\Plugins\gen_hotkeys.dll
2011-11-10 23:10 - 2012-09-23 11:09 - 00185344 _____ () C:\Programy\Winamp\Plugins\gen_jumpex.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00318976 _____ () C:\Programy\Winamp\Plugins\gen_ml.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00294912 _____ () C:\Programy\Winamp\Plugins\ml_local.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00084480 _____ () C:\Programy\Winamp\Plugins\ml_playlists.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00124928 _____ () C:\Programy\Winamp\Plugins\ml_online.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00249856 _____ () C:\Programy\Winamp\Plugins\ml_devices.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00201728 _____ () C:\Programy\Winamp\Plugins\ml_disc.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00240640 _____ () C:\Programy\Winamp\Plugins\ml_pmp.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00029184 _____ () C:\Programy\Winamp\Plugins\pmp_activesync.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00060928 _____ () C:\Programy\Winamp\Plugins\pmp_android.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00170496 _____ () C:\Programy\Winamp\Plugins\pmp_ipod.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00020480 _____ () C:\Programy\Winamp\Plugins\pmp_njb.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00118272 _____ () C:\Programy\Winamp\Plugins\pmp_p4s.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00053760 _____ () C:\Programy\Winamp\Plugins\pmp_usb.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00113664 _____ () C:\Programy\Winamp\Plugins\pmp_wifi.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00028672 _____ () C:\Programy\Winamp\Plugins\ml_bookmarks.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00052224 _____ () C:\Programy\Winamp\Plugins\ml_history.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00028672 _____ () C:\Programy\Winamp\Plugins\ml_autotag.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00057344 _____ () C:\Programy\Winamp\Plugins\ml_impex.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00083456 _____ () C:\Programy\Winamp\Plugins\ml_plg.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00033792 _____ () C:\Programy\Winamp\Plugins\ml_rg.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00032256 _____ () C:\Programy\Winamp\Plugins\ml_transcode.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00057344 _____ () C:\Programy\Winamp\Plugins\gen_orgler.dll
2012-06-28 16:42 - 2012-09-23 11:09 - 00025600 _____ () C:\Programy\Winamp\Plugins\gen_tray.dll
2015-11-18 21:24 - 2015-11-18 21:24 - 60736120 _____ () C:\Program Files (x86)\Opera\33.0.1990.115\opera.dll
2015-11-18 21:24 - 2015-11-18 21:24 - 01919608 _____ () C:\Program Files (x86)\Opera\33.0.1990.115\libglesv2.dll
2015-11-18 21:24 - 2015-11-18 21:24 - 00081528 _____ () C:\Program Files (x86)\Opera\33.0.1990.115\libegl.dll
2015-11-10 21:44 - 2015-11-10 21:44 - 16496328 _____ () C:\Windows\SysWOW64\Macromed\Flash\pepflashplayer32_19_0_0_245.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== EXE Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
IE restricted site: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\007guard.com -> install.007guard.com
IE restricted site: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\008k.com -> www.008k.com
IE restricted site: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\00hq.com -> www.00hq.com
IE restricted site: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\010402.com -> 010402.com
IE restricted site: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\0scan.com -> www.0scan.com
IE restricted site: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\10sek.com -> www.10sek.com
IE restricted site: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\12-26.net -> user1.12-26.net
IE restricted site: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\12-27.net -> user1.12-27.net
IE restricted site: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\123fporn.info -> www.123fporn.info
IE restricted site: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\123haustiereundmehr.com -> www.123haustiereundmehr.com
IE restricted site: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\123moviedownload.com -> www.123moviedownload.com
IE restricted site: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\123simsen.com -> www.123simsen.com
There are 7866 more sites.
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 213.46.172.36 - 213.46.172.37
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(Currently there is no automatic fix for this section.)
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [TCP Query User{974CADCF-975F-4647-BDE3-0E112F829082}C:\programy\winamp\winamp.exe] => (Block) C:\programy\winamp\winamp.exe
FirewallRules: [UDP Query User{69A9BC6F-58C8-4D8A-9B59-89C903A3319D}C:\programy\winamp\winamp.exe] => (Block) C:\programy\winamp\winamp.exe
FirewallRules: [{46907412-61CC-4086-A01C-784A244FA2D9}] => (Allow) C:\Programy\Microsoft Office 7 Enterprise\Office12\outlook.exe
FirewallRules: [{7F6DD0D0-0220-4302-8895-1DE3A9B48A1F}] => (Allow) C:\Programy\Microsoft Office 7 Enterprise\Office12\GROOVE.EXE
FirewallRules: [{DB0A18FF-C0CD-4F1A-A42F-4A455EB9A31A}] => (Allow) C:\Programy\Microsoft Office 7 Enterprise\Office12\GROOVE.EXE
FirewallRules: [{948485E9-C70A-4771-984D-DD9EB1685CBB}] => (Allow) C:\Programy\Microsoft Office 7 Enterprise\Office12\ONENOTE.EXE
FirewallRules: [{F37F9450-542B-4022-9CA2-AAFF57A0CDBD}] => (Allow) C:\Programy\Microsoft Office 7 Enterprise\Office12\ONENOTE.EXE
FirewallRules: [TCP Query User{A021E6F5-1D11-4C6F-9096-2E5242F9934F}C:\programy\winamp\winamp.exe] => (Allow) C:\programy\winamp\winamp.exe
FirewallRules: [UDP Query User{AFC120DE-1F32-48F0-B76A-77BED9D5EAFD}C:\programy\winamp\winamp.exe] => (Allow) C:\programy\winamp\winamp.exe
FirewallRules: [{FA3A212C-1142-4820-95D1-D144B6B7443E}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{99E44A1E-F4FF-4FB8-BCF5-0D52A028D092}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{9C902119-E096-4995-9C1C-582EFB6781D5}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{9ACC37BA-0729-4BB7-BD18-53FE6A904CCC}] => (Allow) C:\Users\Michal\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{90AD2DED-02F9-4EA5-84AB-F7A85750995A}] => (Allow) C:\Users\Michal\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [TCP Query User{133EF36B-5FCA-4081-B3CC-241D3CB157B5}C:\users\michal\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\michal\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [UDP Query User{E5790DAC-CABE-4EEA-9C20-F6D73BF6FC7B}C:\users\michal\appdata\roaming\dropbox\bin\dropbox.exe] => (Block) C:\users\michal\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [{51D1AB57-F6BC-4C8B-8889-B057CA3E3F4B}] => (Allow) C:\Program Files (x86)\Opera\opera.exe
FirewallRules: [{57654B6E-9D74-403D-A39E-4E8B3290FEB3}] => (Allow) C:\Program Files (x86)\Opera\opera.exe
FirewallRules: [{C313F4AE-2DFF-46B3-AA97-92BC6425CC48}] => (Allow) C:\Users\Michal\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{E74F1A80-6C2C-4C6A-AEDB-5D19BA8426DF}] => (Allow) C:\Users\Michal\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{520F3231-0D08-4ACF-AFD2-ED745BA87FCE}C:\programy\total commander 8.01\totalcmd64.exe] => (Allow) C:\programy\total commander 8.01\totalcmd64.exe
FirewallRules: [UDP Query User{D534B20B-EF8C-44D7-B5A9-471E3DF6AA30}C:\programy\total commander 8.01\totalcmd64.exe] => (Allow) C:\programy\total commander 8.01\totalcmd64.exe
FirewallRules: [TCP Query User{EB756507-D8BF-4CC6-BE1B-2D9D12CCD519}C:\program files (x86)\spybot - search & destroy 2\sdupdate.exe] => (Allow) C:\program files (x86)\spybot - search & destroy 2\sdupdate.exe
FirewallRules: [UDP Query User{93A0345E-8039-43F6-B875-1A5EA0B4A33D}C:\program files (x86)\spybot - search & destroy 2\sdupdate.exe] => (Allow) C:\program files (x86)\spybot - search & destroy 2\sdupdate.exe
FirewallRules: [{AB12DA0F-F0AF-4717-BD79-5389B1D1E0FE}] => (Allow) C:\Users\Michal\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{0E040538-12C6-479C-AAEA-CB3E92508E04}] => (Allow) C:\Users\Michal\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{F4611126-DE02-4D3D-859C-24DBB49A71CB}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{11A4ABE5-956E-4BBB-9A01-D0A7CECEDC03}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{17E1D8A6-4889-4BDB-B3C8-F1A8DD4AAD0D}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{2D9D2604-E393-4FC6-9DA0-BDE6E7FA757F}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{7AD58C3B-99D7-4185-B2AA-9918201A19FF}] => (Allow) C:\Program Files (x86)\Canon\EOS Utility\WFTPairing\EOSUPNPSV.exe
FirewallRules: [{AAC8F219-5080-48BF-9A33-C329A48257AD}] => (Allow) C:\Program Files (x86)\Canon\EOS Utility\WFTPairing\EOSUPNPSV.exe
FirewallRules: [{827AF0CC-499C-4A17-8186-1DB3B7EB4AB4}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{F2068A39-7AEC-4998-A953-DC9EBB6CEDD7}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (11/25/2015 08:52:34 PM) (Source: Software Protection Platform Service) (EventID: 8193) (User: )
Description: Plánovač aktivace licence (sppuinotify.dll) byl ukončen s následujícím kódem chyby:
0x80070005
Error: (11/24/2015 09:14:11 PM) (Source: Software Protection Platform Service) (EventID: 8193) (User: )
Description: Plánovač aktivace licence (sppuinotify.dll) byl ukončen s následujícím kódem chyby:
0x80070005
Error: (11/24/2015 08:14:11 PM) (Source: Software Protection Platform Service) (EventID: 8193) (User: )
Description: Plánovač aktivace licence (sppuinotify.dll) byl ukončen s následujícím kódem chyby:
0x80070005
Error: (11/23/2015 09:56:54 PM) (Source: Software Protection Platform Service) (EventID: 8193) (User: )
Description: Plánovač aktivace licence (sppuinotify.dll) byl ukončen s následujícím kódem chyby:
0x80070005
Error: (11/22/2015 10:06:33 PM) (Source: Software Protection Platform Service) (EventID: 8193) (User: )
Description: Plánovač aktivace licence (sppuinotify.dll) byl ukončen s následujícím kódem chyby:
0x80070005
Error: (11/22/2015 09:27:42 PM) (Source: Winlogon) (EventID: 4103) (User: )
Description: Aktivace licence systému Windows se nezdařila. Chyba 0x80070005.
Error: (11/22/2015 09:02:02 PM) (Source: Software Protection Platform Service) (EventID: 8193) (User: )
Description: Plánovač aktivace licence (sppuinotify.dll) byl ukončen s následujícím kódem chyby:
0x80070005
Error: (11/22/2015 08:15:35 PM) (Source: Winlogon) (EventID: 4103) (User: )
Description: Aktivace licence systému Windows se nezdařila. Chyba 0x80070005.
Error: (11/22/2015 01:42:38 PM) (Source: Software Protection Platform Service) (EventID: 8193) (User: )
Description: Plánovač aktivace licence (sppuinotify.dll) byl ukončen s následujícím kódem chyby:
0x80070005
Error: (11/22/2015 00:42:39 PM) (Source: Software Protection Platform Service) (EventID: 8193) (User: )
Description: Plánovač aktivace licence (sppuinotify.dll) byl ukončen s následujícím kódem chyby:
0x80070005
System errors:
=============
Error: (11/25/2015 08:52:34 PM) (Source: DCOM) (EventID: 10001) (User: )
Description: C:\Windows\System32\slui.exe -Embedding5{F87B28F1-DA9A-4F35-8EC0-800EFCF26B83}
Error: (11/25/2015 08:34:54 PM) (Source: BTHUSB) (EventID: 17) (User: )
Description: Místní adaptér Bluetooth selhal. Důvod selhaní nebylo možno určit a adaptér nebude používán. Ovladač vysílače byl vyjmut z paměti.
Error: (11/24/2015 08:14:11 PM) (Source: DCOM) (EventID: 10001) (User: )
Description: C:\Windows\System32\slui.exe -Embedding5{F87B28F1-DA9A-4F35-8EC0-800EFCF26B83}
Error: (11/24/2015 07:56:30 PM) (Source: BTHUSB) (EventID: 17) (User: )
Description: Místní adaptér Bluetooth selhal. Důvod selhaní nebylo možno určit a adaptér nebude používán. Ovladač vysílače byl vyjmut z paměti.
Error: (11/23/2015 08:49:32 PM) (Source: BTHUSB) (EventID: 17) (User: )
Description: Místní adaptér Bluetooth selhal. Důvod selhaní nebylo možno určit a adaptér nebude používán. Ovladač vysílače byl vyjmut z paměti.
Error: (11/22/2015 10:06:33 PM) (Source: DCOM) (EventID: 10001) (User: )
Description: C:\Windows\System32\slui.exe -Embedding5{F87B28F1-DA9A-4F35-8EC0-800EFCF26B83}
Error: (11/22/2015 09:31:27 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {B77C4C36-0154-4C52-AB49-FAA03837E47F}
Error: (11/22/2015 09:26:48 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.
Cesta k modulu: C:\Program Files (x86)\Qualcomm Atheros WiFi Driver Installation\AthIhvWlanExt.dll
Error: (11/22/2015 09:26:48 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.
Cesta k modulu: C:\Program Files (x86)\Qualcomm Atheros WiFi Driver Installation\AthIhvWlanExt.dll
Error: (11/22/2015 09:26:44 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.
Cesta k modulu: C:\Program Files (x86)\Qualcomm Atheros WiFi Driver Installation\AthIhvWlanExt.dll
CodeIntegrity:
===================================
Date: 2014-05-06 17:55:48.265
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-05-06 16:01:51.473
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-05-06 13:00:13.312
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-05-06 11:11:10.999
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-05-06 10:30:21.744
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-05-06 08:37:00.960
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-05-05 20:44:36.814
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-05-04 18:33:01.908
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-05-04 18:29:36.408
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system.
Date: 2014-05-03 21:29:44.208
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume1\Windows\System32\user32.dll because the set of per-page image hashes could not be found on the system.
==================== Memory info ===========================
Processor: Intel(R) Pentium(R) CPU B970 @ 2.30GHz
Percentage of memory in use: 59%
Total physical RAM: 3979.82 MB
Available physical RAM: 1630.35 MB
Total Virtual: 4728.02 MB
Available Virtual: 1688.33 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:48.83 GB) (Free:7.9 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive e: (Michal) (Fixed) (Total:416.93 GB) (Free:18.4 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 7C12E647)
Partition 1: (Active) - (Size=48.8 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=416.9 GB) - (Type=07 NTFS)
==================== End of Addition.txt ============================
Re: Prosím vás o kontrolu
Je Vas operacni system legalni?
- Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
- ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
- znovu spustte FRST a kliknete na Fix
- po restartu bude na plose ulozen fixlog, jehoz obsah vlozte do pristi odpovedi
Kód: Vybrat vše
Start CreateRestorePoint: CloseProcesses: File: C:\Programy\Microsoft Office 7 Enterprise\Office12\GrooveShellExtensions.dll HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated) HKLM-x32\...\Run: [GrooveMonitor] => C:\Programy\Microsoft Office 7 Enterprise\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation) HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Programy\Adobe Acrobat 9.0 Professional\Acrobat\Acrobat_sl.exe [44128 2013-05-08] (Adobe Systems Incorporated) HKLM-x32\...\Run: [] => [X] HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Programy\Adobe Acrobat 9.0 Professional\Acrobat\Acrotray.exe [642664 2013-05-08] (Adobe Systems Inc.) HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated) HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597040 2015-10-06] (Oracle Corporation) HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\Run: [AdobeBridge] => [X] HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\MountPoints2: {40ac95c8-e459-11e4-be4c-446d574f4188} - F:\Autorun.exe HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\MountPoints2: {51ef1b13-04e3-11e2-8630-806e6f6e6963} - D:\InstAll.exe HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\MountPoints2: {932a8b58-bd85-11e4-bb76-446d574f4188} - F:\Autorun.exe ProxyServer: [S-1-5-21-2225000157-3097903131-2559664316-1000] => :0 HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Programy\Microsoft Office 7 Enterprise\Office12\GrooveShellExtensions.dll => No File Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File Toolbar: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File FF Plugin: @microsoft.com/GENUINE -> disabled [No File] FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File] S3 ASUSProcObsrv; \??\D:\I386\AsPrOb64.sys [X] S3 RimUsb; System32\Drivers\RimUsb_AMD64.sys [X] 2015-11-25 21:33 - 2015-11-25 21:34 - 00022637 _____ C:\Users\Michal\Desktop\FRST.txt 2015-11-22 21:23 - 2015-11-22 21:23 - 01733632 _____ C:\Users\Michal\Desktop\adwcleaner_5.022.exe 2015-11-17 08:52 - 2015-11-22 21:25 - 00000000 ____D C:\AdwCleaner 2015-11-16 15:28 - 2015-11-16 15:29 - 00000000 ____D C:\rsit 2015-11-16 15:28 - 2015-11-16 15:29 - 00000000 ____D C:\Program Files\trend micro 2015-11-14 14:21 - 2015-11-14 14:21 - 00024576 _____ () C:\Users\Michal\AppData\Local\uninst.tmp CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\Michal\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll => No File CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\Michal\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll => No File CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\Michal\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll => No File CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Michal\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll => No File CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Michal\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll => No File CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\Michal\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll => No File CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\Michal\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll => No File Task: {CE01FE0A-B9EA-409A-AEED-6C70A6B293A4} - System32\Tasks\{38C3A244-8415-4302-BB02-5A5946D61DF0} => pcalua.exe -a "D:\Install Lightroom 5.exe" -d D:\ Hosts: EmptyTemp: End
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Re: Prosím vás o kontrolu
Zdravím,
vkládám výsledek Fixlogu:
Fix result of Farbar Recovery Scan Tool (x64) Version:29-11-2015
Ran by Michal (2015-11-29 20:48:11) Run:1
Running from C:\Users\Michal\Desktop
Loaded Profiles: Michal (Available Profiles: Michal)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CreateRestorePoint:
CloseProcesses:
File: C:\Programy\Microsoft Office 7 Enterprise\Office12\GrooveShellExtensions.dll
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Programy\Microsoft Office 7 Enterprise\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Programy\Adobe Acrobat 9.0 Professional\Acrobat\Acrobat_sl.exe [44128 2013-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Programy\Adobe Acrobat 9.0 Professional\Acrobat\Acrotray.exe [642664 2013-05-08] (Adobe Systems Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597040 2015-10-06] (Oracle Corporation)
HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\MountPoints2: {40ac95c8-e459-11e4-be4c-446d574f4188} - F:\Autorun.exe
HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\MountPoints2: {51ef1b13-04e3-11e2-8630-806e6f6e6963} - D:\InstAll.exe
HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\MountPoints2: {932a8b58-bd85-11e4-bb76-446d574f4188} - F:\Autorun.exe
ProxyServer: [S-1-5-21-2225000157-3097903131-2559664316-1000] => :0
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Programy\Microsoft Office 7 Enterprise\Office12\GrooveShellExtensions.dll => No File
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
Toolbar: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
S3 ASUSProcObsrv; \??\D:\I386\AsPrOb64.sys [X]
S3 RimUsb; System32\Drivers\RimUsb_AMD64.sys [X]
2015-11-25 21:33 - 2015-11-25 21:34 - 00022637 _____ C:\Users\Michal\Desktop\FRST.txt
2015-11-22 21:23 - 2015-11-22 21:23 - 01733632 _____ C:\Users\Michal\Desktop\adwcleaner_5.022.exe
2015-11-17 08:52 - 2015-11-22 21:25 - 00000000 ____D C:\AdwCleaner
2015-11-16 15:28 - 2015-11-16 15:29 - 00000000 ____D C:\rsit
2015-11-16 15:28 - 2015-11-16 15:29 - 00000000 ____D C:\Program Files\trend micro
2015-11-14 14:21 - 2015-11-14 14:21 - 00024576 _____ () C:\Users\Michal\AppData\Local\uninst.tmp
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\Michal\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\Michal\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\Michal\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Michal\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Michal\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\Michal\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\Michal\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll => No File
Task: {CE01FE0A-B9EA-409A-AEED-6C70A6B293A4} - System32\Tasks\{38C3A244-8415-4302-BB02-5A5946D61DF0} => pcalua.exe -a "D:\Install Lightroom 5.exe" -d D:\
Hosts:
EmptyTemp:
End
*****************
Restore point was successfully created.
Processes closed successfully.
========================= File: C:\Programy\Microsoft Office 7 Enterprise\Office12\GrooveShellExtensions.dll ========================
"C:\Programy\Microsoft Office 7 Enterprise\Office12\GrooveShellExtensions.dll" => not found.
====== End of File: ======
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeAAMUpdater-1.0 => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\GrooveMonitor => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe Acrobat Speed Launcher => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Acrobat Assistant 8.0 => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SwitchBoard => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\AdobeCS6ServiceManager => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value removed successfully
HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeBridge => value removed successfully
"HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{40ac95c8-e459-11e4-be4c-446d574f4188}" => key removed successfully
HKCR\CLSID\{40ac95c8-e459-11e4-be4c-446d574f4188} => key not found.
"HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{51ef1b13-04e3-11e2-8630-806e6f6e6963}" => key removed successfully
HKCR\CLSID\{51ef1b13-04e3-11e2-8630-806e6f6e6963} => key not found.
"HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{932a8b58-bd85-11e4-bb76-446d574f4188}" => key removed successfully
HKCR\CLSID\{932a8b58-bd85-11e4-bb76-446d574f4188} => key not found.
HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer => value removed successfully
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}" => key removed successfully
"HKCR\Wow6432Node\CLSID\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}" => key removed successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} => value removed successfully
"HKCR\CLSID\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}" => key removed successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} => value removed successfully
HKCR\CLSID\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} => key not found.
HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => value removed successfully
HKCR\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => key not found.
"HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => key removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE" => key removed successfully
ASUSProcObsrv => service removed successfully
RimUsb => service removed successfully
C:\Users\Michal\Desktop\FRST.txt => moved successfully
C:\Users\Michal\Desktop\adwcleaner_5.022.exe => moved successfully
C:\AdwCleaner => moved successfully
C:\rsit => moved successfully
C:\Program Files\trend micro => moved successfully
C:\Users\Michal\AppData\Local\uninst.tmp => moved successfully
"HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}" => key removed successfully
"HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}" => key removed successfully
"HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}" => key removed successfully
"HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}" => key removed successfully
"HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}" => key removed successfully
"HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}" => key removed successfully
"HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CE01FE0A-B9EA-409A-AEED-6C70A6B293A4}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CE01FE0A-B9EA-409A-AEED-6C70A6B293A4}" => key removed successfully
C:\Windows\System32\Tasks\{38C3A244-8415-4302-BB02-5A5946D61DF0} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{38C3A244-8415-4302-BB02-5A5946D61DF0}" => key removed successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
EmptyTemp: => 879.8 MB temporary data Removed.
The system needed a reboot.
==== End of Fixlog 20:54:20 ====
Co se týče softwaru, tak mi základní programy a operační systém instaloval známý, ajťák. Nevšiml jsem si problému, takže nedokážu odpovědět na vaši otázku.
vkládám výsledek Fixlogu:
Fix result of Farbar Recovery Scan Tool (x64) Version:29-11-2015
Ran by Michal (2015-11-29 20:48:11) Run:1
Running from C:\Users\Michal\Desktop
Loaded Profiles: Michal (Available Profiles: Michal)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CreateRestorePoint:
CloseProcesses:
File: C:\Programy\Microsoft Office 7 Enterprise\Office12\GrooveShellExtensions.dll
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Programy\Microsoft Office 7 Enterprise\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [Adobe Acrobat Speed Launcher] => C:\Programy\Adobe Acrobat 9.0 Professional\Acrobat\Acrobat_sl.exe [44128 2013-05-08] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Programy\Adobe Acrobat 9.0 Professional\Acrobat\Acrotray.exe [642664 2013-05-08] (Adobe Systems Inc.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597040 2015-10-06] (Oracle Corporation)
HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\MountPoints2: {40ac95c8-e459-11e4-be4c-446d574f4188} - F:\Autorun.exe
HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\MountPoints2: {51ef1b13-04e3-11e2-8630-806e6f6e6963} - D:\InstAll.exe
HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\...\MountPoints2: {932a8b58-bd85-11e4-bb76-446d574f4188} - F:\Autorun.exe
ProxyServer: [S-1-5-21-2225000157-3097903131-2559664316-1000] => :0
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Programy\Microsoft Office 7 Enterprise\Office12\GrooveShellExtensions.dll => No File
Toolbar: HKLM - avast! Online Security - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM - No Name - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - No File
Toolbar: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
S3 ASUSProcObsrv; \??\D:\I386\AsPrOb64.sys [X]
S3 RimUsb; System32\Drivers\RimUsb_AMD64.sys [X]
2015-11-25 21:33 - 2015-11-25 21:34 - 00022637 _____ C:\Users\Michal\Desktop\FRST.txt
2015-11-22 21:23 - 2015-11-22 21:23 - 01733632 _____ C:\Users\Michal\Desktop\adwcleaner_5.022.exe
2015-11-17 08:52 - 2015-11-22 21:25 - 00000000 ____D C:\AdwCleaner
2015-11-16 15:28 - 2015-11-16 15:29 - 00000000 ____D C:\rsit
2015-11-16 15:28 - 2015-11-16 15:29 - 00000000 ____D C:\Program Files\trend micro
2015-11-14 14:21 - 2015-11-14 14:21 - 00024576 _____ () C:\Users\Michal\AppData\Local\uninst.tmp
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}\InprocServer32 -> C:\Users\Michal\AppData\Local\Google\Update\1.3.25.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}\InprocServer32 -> C:\Users\Michal\AppData\Local\Google\Update\1.3.27.5\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}\InprocServer32 -> C:\Users\Michal\AppData\Local\Google\Update\1.3.23.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}\InprocServer32 -> C:\Users\Michal\AppData\Local\Google\Update\1.3.24.15\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}\InprocServer32 -> C:\Users\Michal\AppData\Local\Google\Update\1.3.26.9\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}\InprocServer32 -> C:\Users\Michal\AppData\Local\Google\Update\1.3.25.11\psuser_64.dll => No File
CustomCLSID: HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}\InprocServer32 -> C:\Users\Michal\AppData\Local\Google\Update\1.3.24.7\psuser_64.dll => No File
Task: {CE01FE0A-B9EA-409A-AEED-6C70A6B293A4} - System32\Tasks\{38C3A244-8415-4302-BB02-5A5946D61DF0} => pcalua.exe -a "D:\Install Lightroom 5.exe" -d D:\
Hosts:
EmptyTemp:
End
*****************
Restore point was successfully created.
Processes closed successfully.
========================= File: C:\Programy\Microsoft Office 7 Enterprise\Office12\GrooveShellExtensions.dll ========================
"C:\Programy\Microsoft Office 7 Enterprise\Office12\GrooveShellExtensions.dll" => not found.
====== End of File: ======
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeAAMUpdater-1.0 => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\GrooveMonitor => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe Acrobat Speed Launcher => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Acrobat Assistant 8.0 => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SwitchBoard => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\AdobeCS6ServiceManager => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value removed successfully
HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeBridge => value removed successfully
"HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{40ac95c8-e459-11e4-be4c-446d574f4188}" => key removed successfully
HKCR\CLSID\{40ac95c8-e459-11e4-be4c-446d574f4188} => key not found.
"HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{51ef1b13-04e3-11e2-8630-806e6f6e6963}" => key removed successfully
HKCR\CLSID\{51ef1b13-04e3-11e2-8630-806e6f6e6963} => key not found.
"HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{932a8b58-bd85-11e4-bb76-446d574f4188}" => key removed successfully
HKCR\CLSID\{932a8b58-bd85-11e4-bb76-446d574f4188} => key not found.
HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer => value removed successfully
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}" => key removed successfully
"HKCR\Wow6432Node\CLSID\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}" => key removed successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} => value removed successfully
"HKCR\CLSID\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}" => key removed successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} => value removed successfully
HKCR\CLSID\{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} => key not found.
HKU\S-1-5-21-2225000157-3097903131-2559664316-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => value removed successfully
HKCR\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => key not found.
"HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => key removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE" => key removed successfully
ASUSProcObsrv => service removed successfully
RimUsb => service removed successfully
C:\Users\Michal\Desktop\FRST.txt => moved successfully
C:\Users\Michal\Desktop\adwcleaner_5.022.exe => moved successfully
C:\AdwCleaner => moved successfully
C:\rsit => moved successfully
C:\Program Files\trend micro => moved successfully
C:\Users\Michal\AppData\Local\uninst.tmp => moved successfully
"HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{0F22A205-CFB0-4679-8499-A6F44A80A208}" => key removed successfully
"HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{1423F872-3F7F-4E57-B621-8B1A9D49B448}" => key removed successfully
"HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{355EC88A-02E2-4547-9DEE-F87426484BD1}" => key removed successfully
"HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{90B3DFBF-AF6A-4EA0-8899-F332194690F8}" => key removed successfully
"HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{C3BC25C0-FCD3-4F01-AFDD-41373F017C9A}" => key removed successfully
"HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{D0336C0B-7919-4C04-8CCE-2EBAE2ECE8C9}" => key removed successfully
"HKU\S-1-5-21-2225000157-3097903131-2559664316-1000_Classes\CLSID\{FE498BAB-CB4C-4F88-AC3F-3641AAAF5E9E}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CE01FE0A-B9EA-409A-AEED-6C70A6B293A4}" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CE01FE0A-B9EA-409A-AEED-6C70A6B293A4}" => key removed successfully
C:\Windows\System32\Tasks\{38C3A244-8415-4302-BB02-5A5946D61DF0} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{38C3A244-8415-4302-BB02-5A5946D61DF0}" => key removed successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
EmptyTemp: => 879.8 MB temporary data Removed.
The system needed a reboot.
==== End of Fixlog 20:54:20 ====
Co se týče softwaru, tak mi základní programy a operační systém instaloval známý, ajťák. Nevšiml jsem si problému, takže nedokážu odpovědět na vaši otázku.
Re: Prosím vás o kontrolu
Oddily C: a E: defragmentujte a nasledne pouzijte http://www.partition-tool.com/landing/home-download.htm
Jedna se o nastroj pro upravu velikosti oddilu.
Jedna se o nastroj pro upravu velikosti oddilu.
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Přispějete na provoz fóra?