Samovolný restart PC-Moc prosím o pomoc

Zpráva

krtek17 · #1 Příspěvek od **krtek17** » 04 pro 2015 20:55

Ahoj,
prosím dokáže mi někdo poradit ? asi 2 dny zpátky mi počítač začal dělat neplechu. Restartoval se mi z ničeho nic, najel na tu úvodní obrazovku(nevím jak se tomu říká)a nereagoval na žádný podnět klávesy aby pokračoval dál v nahrávání se. Musela jsem ho natvrdo vypnout a pak naběhl jak měl, ale třeba po 3 hodinách se to opakovalo. Dnes už je to po třetí a nevím co dál. Dokážete mi prosím někdo poradit ? V počítačích se moc nevyznám, a vím že můj počítač už toho má asi i dost za sebou, ale ráda bych pokud by to šlo ho ještě zachránila. Děkuju

https://lh5.googleusercontent.com/-OKTu ... -no/12.png

https://lh4.googleusercontent.com/-buUo ... o/1212.png

https://lh5.googleusercontent.com/-UOT8 ... no/123.png

Logfile of random's system information tool 1.10 (written by random/random)
Run by Lucka at 2015-12-04 21:45:53
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 37 GB (12%) free of 305 GB
Total RAM: 1919 MB (66% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:46:51, on 4.12.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18098)
Boot mode: Normal

Running processes:
C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskhost.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Windows\system32\GWX\GWX.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Lucka\Downloads\RSIT.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Epson Software\Event Manager\EEventManager.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\trend micro\Lucka.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_66\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_66\bin\jp2ssv.dll
O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll
O4 - HKLM\..\Run: [RTHDVCPL] "C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe" -s
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [EEventManager] C:\PROGRA~1\EPSONS~1\EVENTM~1\EEventManager.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [GUDelayStartup] "C:\Program Files\Glary Utilities 5\StartupManager.exe" -delayrun
O4 - HKCU\..\Run: [EPSON SX210 Series] C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIFDE.EXE /FU "C:\Windows\TEMP\E_S668F.tmp" /EF "HKCU"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: MaintainerSvc3.93.1720192 - Unknown owner - C:\ProgramData\cab4fbb2-1ac7-44d2-9b7d-0c921d8827f4\maintainer.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe

--
End of file - 5754 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player PPAPI Notifier.job - C:\Windows\system32\Macromed\Flash\FlashUtil32_19_0_0_245_pepper.exe -check pepperplugin
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_66\bin\ssv.dll [2015-11-21 460384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-12-02 664184]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9421DD08-935F-4701-A9CA-22DF90AC4EA6}]
Easy Photo Print - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-04-02 266240]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-11-21 172640]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{9421DD08-935F-4701-A9CA-22DF90AC4EA6} - Easy Photo Print - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-04-02 266240]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2014-05-09 12021464]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-12-02 7004376]
"EEventManager"=C:\PROGRA~1\EPSONS~1\EVENTM~1\EEventManager.exe [2008-12-04 665424]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2015-11-09 596528]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"GUDelayStartup"=C:\Program Files\Glary Utilities 5\StartupManager.exe [2015-11-23 37152]
"EPSON SX210 Series"=C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIFDE.EXE [2008-11-06 199680]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.FMVC"=fmcodec.dll
"msacm.l3codecp"=l3codecp.acm
"MSVideo8"=VfWWDM32.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-12-04 21:38:43 ----D---- C:\rsit
2015-12-04 21:38:43 ----D---- C:\Program Files\trend micro
2015-12-04 20:31:29 ----D---- C:\Program Files\SpeedFan
2015-12-04 15:53:53 ----D---- C:\AdwCleaner
2015-12-03 20:27:40 ----D---- C:\Program Files\Common Files\AV
2015-12-02 08:38:39 ----A---- C:\Windows\system32\aswBoot.exe
2015-12-02 08:37:08 ----A---- C:\Windows\avastSS.scr
2015-12-01 21:52:13 ----N---- C:\bootsqm.dat
2015-11-21 19:41:34 ----D---- C:\Program Files\Common Files\Java
2015-11-12 12:02:13 ----A---- C:\Windows\system32\win32k.sys
2015-11-11 13:36:10 ----A---- C:\Windows\system32\shimeng.dll
2015-11-11 13:36:10 ----A---- C:\Windows\system32\sdbinst.exe
2015-11-11 13:36:10 ----A---- C:\Windows\system32\apphelp.dll
2015-11-11 13:36:10 ----A---- C:\Windows\system32\aelupsvc.dll
2015-11-11 13:35:50 ----A---- C:\Windows\system32\drivers\tdx.sys
2015-11-11 13:35:49 ----A---- C:\Windows\system32\drivers\afd.sys
2015-11-11 13:35:36 ----A---- C:\Windows\system32\kerberos.dll
2015-11-11 13:35:35 ----A---- C:\Windows\system32\schannel.dll
2015-11-11 13:35:35 ----A---- C:\Windows\system32\ntoskrnl.exe
2015-11-11 13:35:35 ----A---- C:\Windows\system32\ncrypt.dll
2015-11-11 13:35:34 ----A---- C:\Windows\system32\ntkrnlpa.exe
2015-11-11 13:35:34 ----A---- C:\Windows\system32\ntdll.dll
2015-11-11 13:35:34 ----A---- C:\Windows\system32\lsasrv.dll
2015-11-11 13:35:34 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2015-11-11 13:35:33 ----A---- C:\Windows\system32\wdigest.dll
2015-11-11 13:35:33 ----A---- C:\Windows\system32\TSpkg.dll
2015-11-11 13:35:33 ----A---- C:\Windows\system32\srcore.dll
2015-11-11 13:35:33 ----A---- C:\Windows\system32\smss.exe
2015-11-11 13:35:33 ----A---- C:\Windows\system32\rstrui.exe
2015-11-11 13:35:33 ----A---- C:\Windows\system32\rpcrt4.dll
2015-11-11 13:35:33 ----A---- C:\Windows\system32\msv1_0.dll
2015-11-11 13:35:33 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2015-11-11 13:35:32 ----A---- C:\Windows\system32\sspisrv.dll
2015-11-11 13:35:32 ----A---- C:\Windows\system32\sspicli.dll
2015-11-11 13:35:32 ----A---- C:\Windows\system32\srclient.dll
2015-11-11 13:35:32 ----A---- C:\Windows\system32\secur32.dll
2015-11-11 13:35:32 ----A---- C:\Windows\system32\lsass.exe
2015-11-11 13:35:32 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2015-11-11 13:35:32 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2015-11-11 13:35:32 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2015-11-11 13:35:32 ----A---- C:\Windows\system32\csrsrv.dll
2015-11-11 13:35:32 ----A---- C:\Windows\system32\cryptbase.dll
2015-11-11 13:35:32 ----A---- C:\Windows\system32\credssp.dll
2015-11-11 13:35:32 ----A---- C:\Windows\system32\auditpol.exe
2015-11-11 13:35:32 ----A---- C:\Windows\system32\apisetschema.dll
2015-11-11 13:35:31 ----A---- C:\Windows\system32\msobjs.dll
2015-11-11 13:35:31 ----A---- C:\Windows\system32\msaudite.dll
2015-11-11 13:35:31 ----A---- C:\Windows\system32\adtschema.dll
2015-11-11 13:35:22 ----A---- C:\Windows\system32\drivers\ndis.sys
2015-11-11 13:35:18 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-11-11 13:35:18 ----A---- C:\Windows\system32\ieetwproxystub.dll
2015-11-11 13:35:18 ----A---- C:\Windows\system32\ieetwcollector.exe
2015-11-11 13:35:17 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2015-11-11 13:35:17 ----A---- C:\Windows\system32\iernonce.dll
2015-11-11 13:35:17 ----A---- C:\Windows\system32\ie4uinit.exe
2015-11-11 13:35:16 ----A---- C:\Windows\system32\urlmon.dll
2015-11-11 13:35:16 ----A---- C:\Windows\system32\occache.dll
2015-11-11 13:35:16 ----A---- C:\Windows\system32\iedkcs32.dll
2015-11-11 13:35:15 ----A---- C:\Windows\system32\vbscript.dll
2015-11-11 13:35:15 ----A---- C:\Windows\system32\msfeeds.dll
2015-11-11 13:35:15 ----A---- C:\Windows\system32\jsproxy.dll
2015-11-11 13:35:15 ----A---- C:\Windows\system32\jscript9diag.dll
2015-11-11 13:35:15 ----A---- C:\Windows\system32\ieUnatt.exe
2015-11-11 13:35:15 ----A---- C:\Windows\system32\ieapfltr.dll
2015-11-11 13:35:15 ----A---- C:\Windows\system32\dxtmsft.dll
2015-11-11 13:35:12 ----A---- C:\Windows\system32\webcheck.dll
2015-11-11 13:35:11 ----A---- C:\Windows\system32\msrating.dll
2015-11-11 13:35:11 ----A---- C:\Windows\system32\iesetup.dll
2015-11-11 13:35:10 ----A---- C:\Windows\system32\jscript.dll
2015-11-11 13:35:10 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2015-11-11 13:35:09 ----A---- C:\Windows\system32\wininet.dll
2015-11-11 13:35:07 ----A---- C:\Windows\system32\dxtrans.dll
2015-11-11 13:35:06 ----A---- C:\Windows\system32\ieui.dll
2015-11-11 13:35:05 ----A---- C:\Windows\system32\ieframe.dll
2015-11-11 13:35:03 ----A---- C:\Windows\system32\mshtmled.dll
2015-11-11 13:35:01 ----A---- C:\Windows\system32\mshtmlmedia.dll
2015-11-11 13:35:01 ----A---- C:\Windows\system32\MshtmlDac.dll
2015-11-11 13:34:59 ----A---- C:\Windows\system32\jscript9.dll
2015-11-11 13:34:58 ----A---- C:\Windows\system32\mshtml.dll
2015-11-11 13:34:56 ----A---- C:\Windows\system32\iertutil.dll
2015-11-11 13:34:02 ----A---- C:\Windows\system32\drivers\cng.sys
2015-11-11 13:34:01 ----A---- C:\Windows\system32\bcryptprimitives.dll
2015-11-11 13:33:51 ----A---- C:\Windows\system32\InkEd.dll
2015-11-11 13:33:50 ----A---- C:\Windows\system32\jnwmon.dll
2015-11-11 13:33:47 ----A---- C:\Windows\system32\wuwebv.dll
2015-11-11 13:33:47 ----A---- C:\Windows\system32\wups2.dll
2015-11-11 13:33:47 ----A---- C:\Windows\system32\wups.dll
2015-11-11 13:33:47 ----A---- C:\Windows\system32\wudriver.dll
2015-11-11 13:33:47 ----A---- C:\Windows\system32\wucltux.dll
2015-11-11 13:33:47 ----A---- C:\Windows\system32\wuaueng.dll
2015-11-11 13:33:47 ----A---- C:\Windows\system32\wuauclt.exe
2015-11-11 13:33:47 ----A---- C:\Windows\system32\wuapp.exe
2015-11-11 13:33:47 ----A---- C:\Windows\system32\wuapi.dll
2015-11-11 13:33:47 ----A---- C:\Windows\system32\wu.upgrade.ps.dll
2015-11-11 13:33:47 ----A---- C:\Windows\system32\WinSetupUI.dll
2015-11-08 16:26:53 ----D---- C:\Program Files\Adobe

======List of files/folders modified in the last 1 month======

2015-12-04 21:46:19 ----D---- C:\Windows\Prefetch
2015-12-04 21:38:48 ----D---- C:\Windows\Temp
2015-12-04 21:38:43 ----RD---- C:\Program Files
2015-12-04 21:03:56 ----D---- C:\Windows\Panther
2015-12-04 20:57:07 ----HD---- C:\$WINDOWS.~BT
2015-12-04 20:31:27 ----D---- C:\Windows\System32
2015-12-04 20:04:37 ----D---- C:\Program Files\Glary Utilities 5
2015-12-04 19:41:22 ----D---- C:\Windows\system32\config
2015-12-04 16:18:36 ----SHD---- C:\System Volume Information
2015-12-04 16:00:00 ----D---- C:\Windows
2015-12-04 15:50:18 ----D---- C:\Users\Lucka\AppData\Roaming\Adobe
2015-12-04 15:47:32 ----SD---- C:\Users\Lucka\AppData\Roaming\Microsoft
2015-12-04 15:24:46 ----D---- C:\Windows\system32\drivers
2015-12-04 15:15:16 ----D---- C:\Windows\inf
2015-12-04 15:15:16 ----A---- C:\Windows\system32\PerfStringBackup.INI
2015-12-04 15:11:36 ----SD---- C:\ProgramData\Microsoft
2015-12-03 20:57:34 ----D---- C:\Users\Lucka\AppData\Roaming\uTorrent
2015-12-03 20:27:42 ----D---- C:\Windows\system32\Tasks
2015-12-03 20:27:40 ----D---- C:\Program Files\Common Files
2015-12-02 21:59:02 ----D---- C:\Windows\Tasks
2015-12-02 08:30:13 ----D---- C:\Program Files\WinRAR
2015-12-02 08:29:24 ----SHD---- C:\Windows\Installer
2015-12-01 21:46:58 ----D---- C:\Users\Lucka\AppData\Roaming\Epson
2015-12-01 21:46:08 ----D---- C:\Program Files\Google
2015-11-21 20:44:43 ----D---- C:\ProgramData\Oracle
2015-11-21 19:42:08 ----D---- C:\Program Files\Java
2015-11-21 19:39:37 ----A---- C:\Windows\system32\WindowsAccessBridge.dll
2015-11-19 10:09:57 ----D---- C:\Program Files\Opera
2015-11-14 22:20:06 ----D---- C:\Windows\rescache
2015-11-14 16:27:04 ----D---- C:\Windows\debug
2015-11-12 15:19:51 ----D---- C:\Windows\winsxs
2015-11-11 14:58:23 ----D---- C:\Windows\Microsoft.NET
2015-11-11 14:56:54 ----RSD---- C:\Windows\assembly
2015-11-11 14:46:18 ----D---- C:\Windows\AppPatch
2015-11-11 14:46:16 ----D---- C:\Windows\system32\cs-CZ
2015-11-11 14:46:15 ----D---- C:\Windows\system32\migration
2015-11-11 14:46:14 ----D---- C:\Windows\system32\en-US
2015-11-11 14:46:13 ----D---- C:\Program Files\Internet Explorer
2015-11-11 14:46:10 ----D---- C:\Program Files\Windows Journal
2015-11-11 14:07:47 ----D---- C:\Windows\system32\MRT
2015-11-11 13:57:43 ----A---- C:\Windows\system32\MRT.exe
2015-11-11 13:57:14 ----D---- C:\ProgramData\Microsoft Help
2015-11-11 13:33:06 ----D---- C:\Windows\system32\catroot2
2015-11-10 20:22:25 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2015-11-08 16:26:53 ----D---- C:\Program Files\Common Files\Adobe
2015-11-08 16:26:37 ----D---- C:\ProgramData\Adobe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-12-02 49776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-12-02 209432]
R0 giveio;giveio; C:\Windows\system32\giveio.sys [1996-04-03 5248]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 speedfan;speedfan; C:\Windows\system32\speedfan.sys [2012-12-29 24184]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 {d0e4096d-22f7-4d51-86f7-85e4dcb81f43}Gw;{d0e4096d-22f7-4d51-86f7-85e4dcb81f43}Gw; C:\Windows\system32\drivers\{d0e4096d-22f7-4d51-86f7-85e4dcb81f43}Gw.sys [2014-10-26 43200]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [2015-12-02 81728]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-12-02 794952]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-12-02 435464]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 GUBootStartup;GUBootStartup; \??\C:\Windows\System32\drivers\GUBootStartup.sys [2015-12-02 17472]
R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-12-02 24016]
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-12-02 81168]
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys [2015-12-02 117200]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2014-05-14 3086040]
R3 RTL8023xp;Realtek 10/100 NIC Family NDIS x86 Driver; C:\Windows\system32\DRIVERS\Rtnicxp.sys [2009-07-13 43008]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-07-13 4194816]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 cmshusbser;Mobile Connector USB Device for Legacy Serial Communication IN ANDROID DEVICE; C:\Windows\system32\DRIVERS\cmshusbser.sys [2011-11-30 111104]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 14848]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 49152]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 36352]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-10-28 82128]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-12-02 174416]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 MaintainerSvc3.93.1720192;MaintainerSvc3.93.1720192; C:\ProgramData\cab4fbb2-1ac7-44d2-9b7d-0c921d8827f4\maintainer.exe [2015-10-22 128240]
S2 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-10 269000]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-11 103608]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2015-10-30 102912]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2014-04-11 45744]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-11 139944]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-11 139944]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-11 139944]

-----------------EOF-----------------

#2 Příspěvek od **Rudy** » 04 pro 2015 21:40

Zdravím!
Teploty jsou v pořádku a logy z CrystalDiskInfo ukazují, že disk c:\ je v pořádku (předpokládám, že je to systémový) a disk e:\ a f:\ mají přemapované sektory. To je sice chyba, ale zatím nijak fatální. Jde o datová úložiště a to nemá se systémem celkem nic společného. Podíváme se, co v systému běží. Dejte log FRST: http://forum.viry.cz/viewtopic.php?f=24&t=132509 .

krtek17 · #3 Příspěvek od **krtek17** » 04 pro 2015 21:53

Přidávám log.

Additional scan result of Farbar Recovery Scan Tool (x86) Version:01-12-2015
Ran by Lucka (2015-12-04 21:51:53)
Running from C:\Users\Lucka\Downloads
Microsoft Windows 7 Ultimate Service Pack 1 (X86) (2014-10-26 14:47:49)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-3413948337-2124065394-1896894750-500 - Administrator - Disabled)
Guest (S-1-5-21-3413948337-2124065394-1896894750-501 - Limited - Disabled)
Lucka (S-1-5-21-3413948337-2124065394-1896894750-1000 - Administrator - Enabled) => C:\Users\Lucka
Pavel (S-1-5-21-3413948337-2124065394-1896894750-1001 - Limited - Enabled) => C:\Users\Pavel

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

ABBYY FineReader 6.0 Sprint (HKLM\...\{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}) (Version: 6.00.1395.4512 - ABBYY Software House)
Adobe Acrobat Reader DC - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 15.009.20079 - Adobe Systems Incorporated)
Adobe Flash Player 19 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 19.0.0.245 - Adobe Systems Incorporated)
Adobe Flash Player 19 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 19.0.0.245 - Adobe Systems Incorporated)
Adobe Flash Player 19 PPAPI (HKLM\...\Adobe Flash Player PPAPI) (Version: 19.0.0.245 - Adobe Systems Incorporated)
Android Handset USB Driver 1.0 (HKLM\...\USB Driver_is1) (Version: - )
aTube Catcher (HKLM\...\aTube Catcher) (Version: 3.8.5187 - DsNET Corp)
aTube Catcher verze 3.8 (HKLM\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
Avast Free Antivirus (HKLM\...\Avast) (Version: 11.1.2241 - AVAST Software)
BS.Player FREE (HKLM\...\BSPlayerf) (Version: 2.69.1079 - AB Team, d.o.o.)
CrystalDiskInfo 6.5.2 (HKLM\...\CrystalDiskInfo_is1) (Version: 6.5.2 - Crystal Dew World)
Epson Easy Photo Print 2 (HKLM\...\{87C2248A-C7DD-49ED-9BCD-B312A9D0819E}) (Version: 2.1.0.0 - SEIKO EPSON CORPORATION)
Epson Event Manager (HKLM\...\{48F22622-1CC2-4A83-9C1E-644DD96F832D}) (Version: 2.20.00 - SEIKO EPSON Corporation)
EPSON Scan (HKLM\...\EPSON Scanner) (Version: - )
Epson Stylus SX210_SX410_TX210_TX410 Manual (HKLM\...\Epson Stylus SX210_SX410_TX210_TX410 User’s Guide) (Version: - )
EPSON SX210 Series Printer Uninstall (HKLM\...\EPSON SX210 Series) (Version: - SEIKO EPSON Corporation)
Glary Utilities 5.39 (HKLM\...\Glary Utilities 5) (Version: 5.39.0.59 - Glarysoft Ltd)
GOM Player (HKLM\...\GOM Player) (Version: 2.2.72.5234 - Gretech Corporation)
Google Chrome (HKLM\...\Google Chrome) (Version: 47.0.2526.73 - Google Inc.)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.29.1 - Google Inc.) Hidden
Java 8 Update 66 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218066F0}) (Version: 8.0.660.18 - Oracle Corporation)
Microsoft .NET Framework 4.5.2 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office 2010 pro studenty a domácnosti (HKLM\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.50903 - Microsoft Corporation)
MySQL Connector Net 6.9.4 (HKLM\...\{7FE04B43-4187-46F5-A9DE-9ECB5177B8C1}) (Version: 6.9.4 - Oracle)
Opera Stable 33.0.1990.115 (HKLM\...\Opera 33.0.1990.115) (Version: 33.0.1990.115 - Opera Software)
paint.net (HKLM\...\{19BD2C33-16A8-4ED1-B9EA-D9E35B21EC41}) (Version: 4.0.5 - dotPDN LLC)
Pinnacle Studio 16 - Install Manager (HKLM\...\{F1886CD7-9F73-417A-92E9-7E0AB0F0E099}) (Version: 16.0.75 - Avid Technology, Inc.)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7246 - Realtek Semiconductor Corp.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Skype™ 7.10 (HKLM\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.10.101 - Skype Technologies S.A.)
SpeedFan (remove only) (HKLM\...\SpeedFan) (Version: - )
The Battle for Middle-earth (tm) II (HKLM\...\{2A9F95AB-65A3-432c-8631-B8BC5BF7477A}) (Version: - )
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
WinRAR 5.30 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.30.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== Restore Points =========================

01-12-2015 16:17:07 Windows Update
04-12-2015 16:18:13 Windows Update

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:04 - 2009-06-10 22:39 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {08D98CF2-A94C-4288-B4F0-F005E995F06E} - System32\Tasks\GlaryInitialize 5 => C:\Program Files\Glary Utilities 5\Initialize.exe [2015-11-23] (Glarysoft Ltd)
Task: {12A586E3-0B17-4010-8043-752564B84622} - System32\Tasks\Opera scheduled Autoupdate 1414777334 => C:\Users\Pavel\AppData\Local\Programs\Opera\launcher.exe [2015-11-16] (Opera Software)
Task: {17745F2B-09C2-4C9C-A17E-F0B2931FF927} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\system32\Macromed\Flash\FlashUtil32_19_0_0_245_pepper.exe [2015-11-10] (Adobe Systems Incorporated)
Task: {3ABFA842-0277-466F-A64E-1A264CA4012E} - System32\Tasks\GU5SkipUAC => C:\Program Files\Glary Utilities 5\Integrator.exe [2015-11-23] (Glarysoft Ltd)
Task: {912CB779-0848-4B11-B38F-0925D7E0FDE3} - System32\Tasks\Opera scheduled Autoupdate 1414962787 => C:\Program Files\Opera\launcher.exe [2015-11-16] (Opera Software)
Task: {9FFDBB53-8384-4B0F-93FA-CDCF9E2E458B} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-12-02] (AVAST Software)
Task: {BB6E63D2-FA6F-4709-846D-BD0D83197671} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {CFD0109A-8459-43A0-B5AD-6F292B451E8D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-10] (Adobe Systems Incorporated)
Task: {D8E88E41-4E4F-456C-8114-F6B6D004BD33} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2015-12-03] (AVAST Software)
Task: {EC28A8F0-EDF3-4573-A446-E44AD230EA37} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {F112DED3-4E8E-46EA-BBC4-F9AFB9B4A840} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\system32\Macromed\Flash\FlashUtil32_19_0_0_245_pepper.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2015-12-02 08:37 - 2015-12-02 08:37 - 00103888 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-12-02 08:36 - 2015-12-02 08:36 - 00125512 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-12-04 19:57 - 2015-12-04 19:57 - 02802176 _____ () C:\Program Files\AVAST Software\Avast\defs\15120403\algo.dll
2015-12-02 08:37 - 2015-12-02 08:37 - 00466448 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2014-10-27 23:07 - 2015-10-22 08:18 - 00128240 _____ () C:\ProgramData\cab4fbb2-1ac7-44d2-9b7d-0c921d8827f4\maintainer.exe
2015-12-02 08:37 - 2015-12-02 08:38 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-12-08 19:10 - 2008-12-03 14:05 - 00135168 ____N () C:\Program Files\Epson Software\Event Manager\Assistants\Scan Assistant\ScanEngine.dll
2014-12-08 19:10 - 2008-11-26 10:56 - 00057344 ____N () C:\Program Files\Epson Software\Event Manager\Assistants\Scan Assistant\Satwain.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3413948337-2124065394-1896894750-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Lucka\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{EDF32229-A636-48F3-9BD6-755FDF8AC55B}C:\users\lucka\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\lucka\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{586D0D88-AC42-4C9F-9781-59C7FBDE5DDC}C:\users\lucka\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\lucka\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{3EA9E4A3-BE8B-4F48-AA51-AFA90D3E6CDE}] => (Allow) C:\Users\Lucka\AppData\Local\TNT2\2.0.0.1868\TNT2User.exe
FirewallRules: [{A19AB55E-F3B0-4881-B873-98E67CD98020}] => (Allow) C:\Users\Lucka\AppData\Roaming\uTorrent\utorrent.exe
FirewallRules: [{1419759E-382E-4BE3-8595-C7E4C24DF5D6}] => (Allow) C:\Users\Lucka\AppData\Roaming\uTorrent\utorrent.exe
FirewallRules: [{5E5E994B-EC1C-4C73-B753-8FC21C7A3039}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [TCP Query User{00D24C69-68E3-4875-A29D-7889A709993E}C:\program files\Epson Software\Event Manager\eeventmanager.exe] => (Allow) C:\program files\Epson Software\Event Manager\eeventmanager.exe
FirewallRules: [UDP Query User{07EF5B49-4B5C-468D-B3C5-887BA8F550DB}C:\program files\Epson Software\Event Manager\eeventmanager.exe] => (Allow) C:\program files\Epson Software\Event Manager\eeventmanager.exe
FirewallRules: [{C8490886-419F-4759-B202-9D85485FCD89}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{C85745C4-832B-46A4-BDAA-ED429A977193}] => (Allow) C:\Program Files\Electronic Arts\The Battle for Middle-earth (tm) II\game.dat
FirewallRules: [{8BF1FD68-C330-45DB-A500-3BE576C84A22}] => (Allow) C:\Program Files\Electronic Arts\The Battle for Middle-earth (tm) II\game.dat
FirewallRules: [{9315B08B-7672-4EBD-93FF-D0FB12E59ECF}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============

Name: Teredo Tunneling Pseudo-Interface
Description: Adaptér tunelového režimu Microsoft Teredo
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

==================== Event log errors: =========================

Application errors:
==================
Error: (12/04/2015 08:18:23 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program WINWORD.EXE verze 14.0.7162.5000 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 1120

Čas spuštění: 01d12ec8688efb89

Čas ukončení: 16

Cesta k aplikaci: C:\Program Files\Microsoft Office\Office14\WINWORD.EXE

ID hlášení: bc36bb6d-9abb-11e5-86e0-001a92beb304

Error: (12/04/2015 07:59:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: GWXUX.exe, verze: 6.3.9600.18064, časové razítko: 0x56042785
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x00048c00
ID chybujícího procesu: 0xdf0
Čas spuštění chybující aplikace: 0xGWXUX.exe0
Cesta k chybující aplikaci: GWXUX.exe1
Cesta k chybujícímu modulu: GWXUX.exe2
ID zprávy: GWXUX.exe3

Error: (11/27/2015 04:28:57 PM) (Source: MsiInstaller) (EventID: 1024) (User: Lucka-PC)
Description: Aktualizaci {AC76BA86-7AD7-0000-2550-AC0F094E6F00} produktu Adobe Acrobat Reader DC - Czech nebylo možné nainstalovat. Kód chyby: 1625. Instalační služba systému Windows může vytvořit soubor protokolu s informacemi, které usnadní řešení potíží při instalaci softwaru. Další informace naleznete na webu na adrese http://go.microsoft.com/fwlink/?LinkId=23127

Error: (11/26/2015 06:58:08 AM) (Source: ESENT) (EventID: 439) (User: )
Description: Windows (3580) Windows: Pro soubor C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS.chk nelze zapsat stínové záhlaví. Chyba -1032

Error: (11/26/2015 06:58:08 AM) (Source: ESENT) (EventID: 490) (User: )
Description: Windows (3580) Windows: Pokus o otevření souboru C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS.chk pro čtení nebo zápis se nezdařil. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru se nezdaří a dojde k chybě -1032 (0xfffffbf8).

Error: (11/25/2015 00:35:30 PM) (Source: Windows Search Service) (EventID: 1006) (User: )
Description: Službě Windows Search se nepodařilo vytvořit nový vyhledávací index. Došlo k vnitřní chybě <4, 0x8004117f, Nepodařilo se přidat projekt: C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects>.

Error: (11/25/2015 00:35:30 PM) (Source: Windows Search Service) (EventID: 9000) (User: )
Description: Služba Windows Search neotevřela úložiště vlastností databázového stroje Jet.

Podrobnosti:
0x%08x (0x8004117f - Server indexu obsahu neaktualizoval nebo nenačetl informace kvůli chybě databáze. Zastavte a restartujte vyhledávací službu. Pokud potíže potrvají, vymažte index obsahu a proveďte znovu jeho procházení. V některých případech bude pravděpodobně nutné odstranit a znovu vytvořit index obsahu. (HRESULT : 0x8004117f))

Error: (11/25/2015 00:35:30 PM) (Source: ESENT) (EventID: 485) (User: )
Description: Windows (3944) Windows: Pokus o odstranění složky C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS.chk se nezdařil. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace odstranění složky se nezdaří a dojde k chybě -1032 (0xfffffbf8).

Error: (11/25/2015 00:35:20 PM) (Source: ESENT) (EventID: 490) (User: )
Description: Windows (3944) Windows: Pokus o otevření souboru C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS.chk pro čtení nebo zápis se nezdařil. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru se nezdaří a dojde k chybě -1032 (0xfffffbf8).

Error: (11/25/2015 00:33:52 PM) (Source: Windows Search Service) (EventID: 7042) (User: )
Description: Služba Windows Search byla zastavena, protože došlo k problému s indexovacím modulem The catalog is corrupt.

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)

System errors:
=============
Error: (12/04/2015 09:44:05 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (21:42:08, ‎4.‎12.‎2015) bylo neočekávané.

Error: (12/04/2015 09:24:16 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (21:22:03, ‎4.‎12.‎2015) bylo neočekávané.

Error: (12/04/2015 07:53:10 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (19:50:16, ‎4.‎12.‎2015) bylo neočekávané.

Error: (12/04/2015 07:24:01 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (19:22:36, ‎4.‎12.‎2015) bylo neočekávané.

Error: (12/04/2015 06:07:43 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (18:05:47, ‎4.‎12.‎2015) bylo neočekávané.

Error: (12/04/2015 02:46:32 PM) (Source: Service Control Manager) (EventID: 7023) (User: )
Description: Služba Server byla ukončena s následující chybou:
%%13

Error: (12/04/2015 02:45:59 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (14:43:49, ‎4.‎12.‎2015) bylo neočekávané.

Error: (12/04/2015 06:23:37 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}

Error: (12/03/2015 10:46:19 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (22:43:14, ‎3.‎12.‎2015) bylo neočekávané.

Error: (12/02/2015 11:15:17 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5}

==================== Memory info ===========================

Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 3800+
Percentage of memory in use: 51%
Total physical RAM: 1918.55 MB
Available physical RAM: 928.51 MB
Total Virtual: 3837.11 MB
Available Virtual: 2757.72 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:297.99 GB) (Free:36.5 GB) NTFS
Drive d: (LOTRBFME2) (CDROM) (Total:5.54 GB) (Free:0 GB) UDF
Drive e: (ACER) (Fixed) (Total:71.95 GB) (Free:18.87 GB) NTFS
Drive f: (DATA) (Fixed) (Total:71.68 GB) (Free:71.31 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 153.4 GB) (Disk ID: 1356BEED)
Partition 1: (Not Active) - (Size=9.8 GB) - (Type=27)
Partition 2: (Active) - (Size=71.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=71.7 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: F66BE426)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=298 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

#4 Příspěvek od **Rudy** » 04 pro 2015 22:22

Teď spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

krtek17 · #5 Příspěvek od **krtek17** » 05 pro 2015 11:23

Vkládám log z AdwCleaneru.

# AdwCleaner v5.023 - Logfile created 05/12/2015 at 11:19:15
# Updated 30/11/2015 by Xplode
# Database : 2015-12-03.1 [Server]
# Operating system : Windows 7 Ultimate Service Pack 1 (x86)
# Username : Lucka - LUCKA-PC
# Running from : C:\Users\Lucka\Desktop\adwcleaner_5.023.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****

[-] Service Deleted : MaintainerSvc3.93.1720192

***** [ Folders ] *****

[-] Folder Deleted : C:\ProgramData\cab4fbb2-1ac7-44d2-9b7d-0c921d8827f4

***** [ Files ] *****

[-] File Deleted : C:\Users\Lucka\AppData\Local\Google\Chrome\User Data\Default\local storage\hxxps_www.superfish.com_0.localstorage-journal
[-] File Deleted : C:\Users\Lucka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_hdapp1008-a.akamaihd.net_0.localstorage
[-] File Deleted : C:\Users\Lucka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_hdapp1008-a.akamaihd.net_0.localstorage-journal
[-] File Deleted : C:\Users\Lucka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_www.superfish.com_0.localstorage
[-] File Deleted : C:\Users\Lucka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_wlogin.icq.com_0.localstorage
[-] File Deleted : C:\Users\Lucka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_wlogin.icq.com_0.localstorage-journal
[-] File Deleted : C:\Users\Lucka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.icq.com_0.localstorage
[-] File Deleted : C:\Users\Lucka\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.icq.com_0.localstorage-journal
[-] File Deleted : C:\Windows\system32\drivers\{d0e4096d-22f7-4d51-86f7-85e4dcb81f43}Gw.sys

***** [ DLLs ] *****

***** [ Shortcuts ] *****

***** [ Scheduled tasks ] *****

***** [ Registry ] *****

[-] Key Deleted : HKLM\System\CurrentControlSet\Services\Eventlog\Application\Update allgenius
[-] Key Deleted : HKLM\System\CurrentControlSet\Services\Eventlog\Application\Util allgenius
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{0FEB2313-F89B-4AC6-8153-84025604A06A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0FEB2313-F89B-4AC6-8153-84025604A06A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{02F878DF-E2BE-4B85-8CB4-A0D2D4E2ED7F}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2AF343DD-3102-4F9D-AC95-DCA4C95382C7}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3137BC14-D8D7-4B67-8FFA-2E0B2E9D541B}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4CA2AC92-971B-47B1-ACB6-357B552155AC}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{52C5395B-1FCD-47FA-A834-FD830701C2D5}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5D3DCC39-9233-4330-94E9-DA92BE49CA1A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{615FACDF-DADB-440D-AC91-8AAB0AE9E3AD}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{762D463B-C45A-456D-A80D-8689C297C91E}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{7A6BE473-7960-44D0-BD54-D23DA76353DF}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{803F550E-BAAE-42BB-8917-64BA0006AB17}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8D5BC51D-C9D3-43B9-B728-B30677B7C7E8}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{991C9D8D-A789-4DB9-BDFC-5F33398B04BF}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A5ACC874-D943-483F-A2D1-14598D51F872}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B0474212-0D9D-4361-90B3-B89D1A44275D}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{BFDE183A-C6FE-41D2-80F9-586C29210AC2}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DD260902-9420-4055-A956-9152EB4F3E6A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EB1F9F3C-5526-4DAE-BD4B-3EAA7715DA9F}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F1912128-469A-4138-AA26-9699C15BB13E}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F68DC16C-9C2B-455B-8853-7E4D34BAA3F4}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FBA8498F-B3A0-4942-A2BF-E0CB7BC7E000}
[-] Key Deleted : HKU\.DEFAULT\Software\AskPartnerNetwork
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{19A243A1-5964-4252-BE73-D7875382804D}

***** [ Web browsers ] *****

[-] [C:\Users\Lucka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : aaaaaiabcopkplhgaedhbloeejhhankf
[-] [C:\Users\Pavel\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : aaaaaiabcopkplhgaedhbloeejhhankf

*************************

:: "Tracing" keys removed
:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C3].txt - [4610 bytes] ##########

#6 Příspěvek od **Rudy** » 05 pro 2015 11:36

Dejte nový log FRST.

krtek17 · #7 Příspěvek od **krtek17** » 05 pro 2015 12:19

Additional scan result of Farbar Recovery Scan Tool (x86) Version:05-12-2015
Ran by Lucka (2015-12-05 12:18:06)
Running from C:\Users\Lucka\Downloads
Microsoft Windows 7 Ultimate Service Pack 1 (X86) (2014-10-26 14:47:49)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-3413948337-2124065394-1896894750-500 - Administrator - Disabled)
Guest (S-1-5-21-3413948337-2124065394-1896894750-501 - Limited - Disabled)
Lucka (S-1-5-21-3413948337-2124065394-1896894750-1000 - Administrator - Enabled) => C:\Users\Lucka
Pavel (S-1-5-21-3413948337-2124065394-1896894750-1001 - Limited - Enabled) => C:\Users\Pavel

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

ABBYY FineReader 6.0 Sprint (HKLM\...\{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}) (Version: 6.00.1395.4512 - ABBYY Software House)
Adobe Acrobat Reader DC - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 15.009.20079 - Adobe Systems Incorporated)
Adobe Flash Player 19 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 19.0.0.245 - Adobe Systems Incorporated)
Adobe Flash Player 19 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 19.0.0.245 - Adobe Systems Incorporated)
Adobe Flash Player 19 PPAPI (HKLM\...\Adobe Flash Player PPAPI) (Version: 19.0.0.245 - Adobe Systems Incorporated)
Android Handset USB Driver 1.0 (HKLM\...\USB Driver_is1) (Version: - )
aTube Catcher (HKLM\...\aTube Catcher) (Version: 3.8.5187 - DsNET Corp)
aTube Catcher verze 3.8 (HKLM\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
Avast Free Antivirus (HKLM\...\Avast) (Version: 11.1.2241 - AVAST Software)
BS.Player FREE (HKLM\...\BSPlayerf) (Version: 2.69.1079 - AB Team, d.o.o.)
CrystalDiskInfo 6.5.2 (HKLM\...\CrystalDiskInfo_is1) (Version: 6.5.2 - Crystal Dew World)
Epson Easy Photo Print 2 (HKLM\...\{87C2248A-C7DD-49ED-9BCD-B312A9D0819E}) (Version: 2.1.0.0 - SEIKO EPSON CORPORATION)
Epson Event Manager (HKLM\...\{48F22622-1CC2-4A83-9C1E-644DD96F832D}) (Version: 2.20.00 - SEIKO EPSON Corporation)
EPSON Scan (HKLM\...\EPSON Scanner) (Version: - )
Epson Stylus SX210_SX410_TX210_TX410 Manual (HKLM\...\Epson Stylus SX210_SX410_TX210_TX410 User’s Guide) (Version: - )
EPSON SX210 Series Printer Uninstall (HKLM\...\EPSON SX210 Series) (Version: - SEIKO EPSON Corporation)
Glary Utilities 5.39 (HKLM\...\Glary Utilities 5) (Version: 5.39.0.59 - Glarysoft Ltd)
GOM Player (HKLM\...\GOM Player) (Version: 2.2.72.5234 - Gretech Corporation)
Google Chrome (HKLM\...\Google Chrome) (Version: 47.0.2526.73 - Google Inc.)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.29.1 - Google Inc.) Hidden
Java 8 Update 66 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218066F0}) (Version: 8.0.660.18 - Oracle Corporation)
Microsoft .NET Framework 4.5.2 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office 2010 pro studenty a domácnosti (HKLM\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.50903 - Microsoft Corporation)
MySQL Connector Net 6.9.4 (HKLM\...\{7FE04B43-4187-46F5-A9DE-9ECB5177B8C1}) (Version: 6.9.4 - Oracle)
Opera Stable 33.0.1990.115 (HKLM\...\Opera 33.0.1990.115) (Version: 33.0.1990.115 - Opera Software)
paint.net (HKLM\...\{19BD2C33-16A8-4ED1-B9EA-D9E35B21EC41}) (Version: 4.0.5 - dotPDN LLC)
Pinnacle Studio 16 - Install Manager (HKLM\...\{F1886CD7-9F73-417A-92E9-7E0AB0F0E099}) (Version: 16.0.75 - Avid Technology, Inc.)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7246 - Realtek Semiconductor Corp.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Skype™ 7.10 (HKLM\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.10.101 - Skype Technologies S.A.)
SpeedFan (remove only) (HKLM\...\SpeedFan) (Version: - )
The Battle for Middle-earth (tm) II (HKLM\...\{2A9F95AB-65A3-432c-8631-B8BC5BF7477A}) (Version: - )
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
WinRAR 5.30 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.30.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== Restore Points =========================

01-12-2015 16:17:07 Windows Update
04-12-2015 16:18:13 Windows Update

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:04 - 2009-06-10 22:39 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {08D98CF2-A94C-4288-B4F0-F005E995F06E} - System32\Tasks\GlaryInitialize 5 => C:\Program Files\Glary Utilities 5\Initialize.exe [2015-11-23] (Glarysoft Ltd)
Task: {12A586E3-0B17-4010-8043-752564B84622} - System32\Tasks\Opera scheduled Autoupdate 1414777334 => C:\Users\Pavel\AppData\Local\Programs\Opera\launcher.exe [2015-11-16] (Opera Software)
Task: {17745F2B-09C2-4C9C-A17E-F0B2931FF927} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\system32\Macromed\Flash\FlashUtil32_19_0_0_245_pepper.exe [2015-11-10] (Adobe Systems Incorporated)
Task: {3ABFA842-0277-466F-A64E-1A264CA4012E} - System32\Tasks\GU5SkipUAC => C:\Program Files\Glary Utilities 5\Integrator.exe [2015-11-23] (Glarysoft Ltd)
Task: {912CB779-0848-4B11-B38F-0925D7E0FDE3} - System32\Tasks\Opera scheduled Autoupdate 1414962787 => C:\Program Files\Opera\launcher.exe [2015-11-16] (Opera Software)
Task: {9FFDBB53-8384-4B0F-93FA-CDCF9E2E458B} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-12-02] (AVAST Software)
Task: {BB6E63D2-FA6F-4709-846D-BD0D83197671} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {CFD0109A-8459-43A0-B5AD-6F292B451E8D} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-11-10] (Adobe Systems Incorporated)
Task: {D8E88E41-4E4F-456C-8114-F6B6D004BD33} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2015-12-03] (AVAST Software)
Task: {EC28A8F0-EDF3-4573-A446-E44AD230EA37} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {F112DED3-4E8E-46EA-BBC4-F9AFB9B4A840} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job => C:\Windows\system32\Macromed\Flash\FlashUtil32_19_0_0_245_pepper.exe
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2015-12-02 08:37 - 2015-12-02 08:37 - 00103888 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-12-02 08:36 - 2015-12-02 08:36 - 00125512 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-12-04 19:57 - 2015-12-04 19:57 - 02802176 _____ () C:\Program Files\AVAST Software\Avast\defs\15120403\algo.dll
2015-12-02 08:37 - 2015-12-02 08:37 - 00466448 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2015-12-02 08:37 - 2015-12-02 08:38 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-12-08 19:10 - 2008-12-03 14:05 - 00135168 ____N () C:\Program Files\Epson Software\Event Manager\Assistants\Scan Assistant\ScanEngine.dll
2014-12-08 19:10 - 2008-11-26 10:56 - 00057344 ____N () C:\Program Files\Epson Software\Event Manager\Assistants\Scan Assistant\Satwain.dll
2014-10-26 17:13 - 2014-02-10 12:44 - 04592128 _____ () C:\Users\Lucka\AppData\Local\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libglesv2.dll
2014-10-26 17:13 - 2014-02-10 12:44 - 00112128 _____ () C:\Users\Lucka\AppData\Local\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libegl.dll
2015-12-05 11:42 - 2015-12-05 11:42 - 00158720 _____ () C:\Users\Lucka\AppData\Local\Temp\sfareca00001.dll
2015-12-04 20:32 - 2015-12-05 11:42 - 00192512 _____ () C:\Users\Lucka\AppData\Local\Temp\sfamcc00001.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3413948337-2124065394-1896894750-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Lucka\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [TCP Query User{EDF32229-A636-48F3-9BD6-755FDF8AC55B}C:\users\lucka\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\lucka\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{586D0D88-AC42-4C9F-9781-59C7FBDE5DDC}C:\users\lucka\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\lucka\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [{3EA9E4A3-BE8B-4F48-AA51-AFA90D3E6CDE}] => (Allow) C:\Users\Lucka\AppData\Local\TNT2\2.0.0.1868\TNT2User.exe
FirewallRules: [{A19AB55E-F3B0-4881-B873-98E67CD98020}] => (Allow) C:\Users\Lucka\AppData\Roaming\uTorrent\utorrent.exe
FirewallRules: [{1419759E-382E-4BE3-8595-C7E4C24DF5D6}] => (Allow) C:\Users\Lucka\AppData\Roaming\uTorrent\utorrent.exe
FirewallRules: [{5E5E994B-EC1C-4C73-B753-8FC21C7A3039}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [TCP Query User{00D24C69-68E3-4875-A29D-7889A709993E}C:\program files\Epson Software\Event Manager\eeventmanager.exe] => (Allow) C:\program files\Epson Software\Event Manager\eeventmanager.exe
FirewallRules: [UDP Query User{07EF5B49-4B5C-468D-B3C5-887BA8F550DB}C:\program files\Epson Software\Event Manager\eeventmanager.exe] => (Allow) C:\program files\Epson Software\Event Manager\eeventmanager.exe
FirewallRules: [{C8490886-419F-4759-B202-9D85485FCD89}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{C85745C4-832B-46A4-BDAA-ED429A977193}] => (Allow) C:\Program Files\Electronic Arts\The Battle for Middle-earth (tm) II\game.dat
FirewallRules: [{8BF1FD68-C330-45DB-A500-3BE576C84A22}] => (Allow) C:\Program Files\Electronic Arts\The Battle for Middle-earth (tm) II\game.dat
FirewallRules: [{9315B08B-7672-4EBD-93FF-D0FB12E59ECF}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============

Name: Teredo Tunneling Pseudo-Interface
Description: Adaptér tunelového režimu Microsoft Teredo
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

Name: {d0e4096d-22f7-4d51-86f7-85e4dcb81f43}Gw
Description: {d0e4096d-22f7-4d51-86f7-85e4dcb81f43}Gw
Class Guid: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Manufacturer:
Service: {d0e4096d-22f7-4d51-86f7-85e4dcb81f43}Gw
Problem: : This device is not present, is not working properly, or does not have all its drivers installed. (Code 24)
Resolution: The device is installed incorrectly. The problem could be a hardware failure, or a new driver might be needed.
Devices stay in this state if they have been prepared for removal.
After you remove the device, this error disappears.Remove the device, and this error should be resolved.

==================== Event log errors: =========================

Application errors:
==================
Error: (12/04/2015 08:18:23 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program WINWORD.EXE verze 14.0.7162.5000 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 1120

Čas spuštění: 01d12ec8688efb89

Čas ukončení: 16

Cesta k aplikaci: C:\Program Files\Microsoft Office\Office14\WINWORD.EXE

ID hlášení: bc36bb6d-9abb-11e5-86e0-001a92beb304

Error: (12/04/2015 07:59:14 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: GWXUX.exe, verze: 6.3.9600.18064, časové razítko: 0x56042785
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x00048c00
ID chybujícího procesu: 0xdf0
Čas spuštění chybující aplikace: 0xGWXUX.exe0
Cesta k chybující aplikaci: GWXUX.exe1
Cesta k chybujícímu modulu: GWXUX.exe2
ID zprávy: GWXUX.exe3

Error: (11/27/2015 04:28:57 PM) (Source: MsiInstaller) (EventID: 1024) (User: Lucka-PC)
Description: Aktualizaci {AC76BA86-7AD7-0000-2550-AC0F094E6F00} produktu Adobe Acrobat Reader DC - Czech nebylo možné nainstalovat. Kód chyby: 1625. Instalační služba systému Windows může vytvořit soubor protokolu s informacemi, které usnadní řešení potíží při instalaci softwaru. Další informace naleznete na webu na adrese http://go.microsoft.com/fwlink/?LinkId=23127

Error: (11/26/2015 06:58:08 AM) (Source: ESENT) (EventID: 439) (User: )
Description: Windows (3580) Windows: Pro soubor C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS.chk nelze zapsat stínové záhlaví. Chyba -1032

Error: (11/26/2015 06:58:08 AM) (Source: ESENT) (EventID: 490) (User: )
Description: Windows (3580) Windows: Pokus o otevření souboru C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS.chk pro čtení nebo zápis se nezdařil. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru se nezdaří a dojde k chybě -1032 (0xfffffbf8).

Error: (11/25/2015 12:35:30 PM) (Source: Windows Search Service) (EventID: 1006) (User: )
Description: Službě Windows Search se nepodařilo vytvořit nový vyhledávací index. Došlo k vnitřní chybě <4, 0x8004117f, Nepodařilo se přidat projekt: C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects>.

Error: (11/25/2015 12:35:30 PM) (Source: Windows Search Service) (EventID: 9000) (User: )
Description: Služba Windows Search neotevřela úložiště vlastností databázového stroje Jet.

Podrobnosti:
0x%08x (0x8004117f - Server indexu obsahu neaktualizoval nebo nenačetl informace kvůli chybě databáze. Zastavte a restartujte vyhledávací službu. Pokud potíže potrvají, vymažte index obsahu a proveďte znovu jeho procházení. V některých případech bude pravděpodobně nutné odstranit a znovu vytvořit index obsahu. (HRESULT : 0x8004117f))

Error: (11/25/2015 12:35:30 PM) (Source: ESENT) (EventID: 485) (User: )
Description: Windows (3944) Windows: Pokus o odstranění složky C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS.chk se nezdařil. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace odstranění složky se nezdaří a dojde k chybě -1032 (0xfffffbf8).

Error: (11/25/2015 12:35:20 PM) (Source: ESENT) (EventID: 490) (User: )
Description: Windows (3944) Windows: Pokus o otevření souboru C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS.chk pro čtení nebo zápis se nezdařil. Došlo k systémové chybě 32 (0x00000020): Proces nemá přístup k souboru, neboť jej právě využívá jiný proces. . Operace otevření souboru se nezdaří a dojde k chybě -1032 (0xfffffbf8).

Error: (11/25/2015 12:33:52 PM) (Source: Windows Search Service) (EventID: 7042) (User: )
Description: Služba Windows Search byla zastavena, protože došlo k problému s indexovacím modulem The catalog is corrupt.

Podrobnosti:
Katalog indexu obsahu je poškozený. (HRESULT : 0xc0041801) (0xc0041801)

System errors:
=============
Error: (12/05/2015 11:21:43 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo:
{d0e4096d-22f7-4d51-86f7-85e4dcb81f43}Gw

Error: (12/05/2015 11:19:44 AM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Správce služeb se pokusil o opravnou akci (Restartovat službu) po nečekaném ukončení služby Windows Search, ale tato akce selhala kvůli následující chybě:
%%1056

Error: (12/05/2015 11:19:14 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Ochrana softwaru byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 120000 milisekund: Restartovat službu.

Error: (12/05/2015 11:19:14 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Windows Media Player Network Sharing byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.

Error: (12/05/2015 11:19:14 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Search byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.

Error: (12/05/2015 11:19:14 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba MaintainerSvc3.93.1720192 byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (12/05/2015 11:19:14 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Adobe Acrobat Update Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (12/05/2015 11:19:13 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba zařazování tisku byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.

Error: (12/04/2015 10:20:03 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (22:17:51, ‎4.‎12.‎2015) bylo neočekávané.

Error: (12/04/2015 10:09:59 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (22:07:59, ‎4.‎12.‎2015) bylo neočekávané.

==================== Memory info ===========================

Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 3800+
Percentage of memory in use: 55%
Total physical RAM: 1918.55 MB
Available physical RAM: 852 MB
Total Virtual: 3837.11 MB
Available Virtual: 2458.98 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:297.99 GB) (Free:34.42 GB) NTFS
Drive d: (LOTRBFME2) (CDROM) (Total:5.54 GB) (Free:0 GB) UDF
Drive e: (ACER) (Fixed) (Total:71.95 GB) (Free:18.87 GB) NTFS
Drive f: (DATA) (Fixed) (Total:71.68 GB) (Free:71.31 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 153.4 GB) (Disk ID: 1356BEED)
Partition 1: (Not Active) - (Size=9.8 GB) - (Type=27)
Partition 2: (Active) - (Size=71.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=71.7 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: F66BE426)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=298 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

#8 Příspěvek od **Rudy** » 05 pro 2015 12:32

Ještě bych prosil log z FRST. Toto je pouze Additional. Log FRST vypadá nějak takto: http://forum.viry.cz/viewtopic.php?f=13 ... 2#p1426676 .

krtek17 · #9 Příspěvek od **krtek17** » 05 pro 2015 14:05

Je to ono ?

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:05-12-2015
Ran by Lucka (administrator) on LUCKA-PC (05-12-2015 14:01:20)
Running from C:\Users\Lucka\Downloads
Loaded Profiles: Lucka (Available Profiles: Lucka & Pavel)
Platform: Microsoft Windows 7 Ultimate Service Pack 1 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(SEIKO EPSON CORPORATION) C:\Program Files\Epson Software\Event Manager\EEventManager.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [12021464 2014-05-09] (Realtek Semiconductor)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7004376 2015-12-02] (AVAST Software)
HKLM\...\Run: [EEventManager] => C:\Program Files\Epson Software\Event Manager\EEventManager.exe [665424 2008-12-04] (SEIKO EPSON CORPORATION)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [596528 2015-11-09] (Oracle Corporation)
HKU\S-1-5-21-3413948337-2124065394-1896894750-1000\...\Run: [GUDelayStartup] => C:\Program Files\Glary Utilities 5\StartupManager.exe [37152 2015-11-23] (Glarysoft Ltd)
HKU\S-1-5-21-3413948337-2124065394-1896894750-1000\...\Run: [EPSON SX210 Series] => C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIFDE.EXE [199680 2008-11-06] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-3413948337-2124065394-1896894750-1000\...\MountPoints2: {97dd485c-7a4f-11e4-85c1-001a92beb304} - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL E:\Common_Handset_USB_Driver.exe
HKU\S-1-5-21-3413948337-2124065394-1896894750-1000\...\MountPoints2: {9dd6ad66-5d1d-11e4-beaf-806e6f6e6963} - D:\Autorun.exe
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [280576 2014-10-26] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2015-12-02] (AVAST Software)
BootExecute: autocheck autochk *

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{A064E5B4-ABD2-488D-8388-64C4BEC3A69B}: [DhcpNameServer] 10.0.0.138

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-3413948337-2124065394-1896894750-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
HKU\S-1-5-21-3413948337-2124065394-1896894750-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/?pc=AV01
HKU\S-1-5-21-3413948337-2124065394-1896894750-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxp://www.msn.com/?pc=AV01
SearchScopes: HKLM -> DefaultScope value is missing
SearchScopes: HKLM -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKU\S-1-5-21-3413948337-2124065394-1896894750-1000 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKU\S-1-5-21-3413948337-2124065394-1896894750-1000 -> {D9FB0D47-0975-43E2-8536-7A5ECC8F9D2C} URL = hxxp://search.yahoo.com/search?p={searchTerms}&fr=tightropetb&type=11147
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_66\bin\ssv.dll [2015-11-21] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-12-02] (AVAST Software)
BHO: Easy Photo Print -> {9421DD08-935F-4701-A9CA-22DF90AC4EA6} -> C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-04-02] (SEIKO EPSON CORPORATION / CyCom Technology Corp.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-11-21] (Oracle Corporation)
Toolbar: HKLM - Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll [2008-04-02] (SEIKO EPSON CORPORATION / CyCom Technology Corp.)

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_19_0_0_245.dll [2015-11-10] ()
FF Plugin: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-11-21] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-11-21] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-02] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-12-02]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2015-12-02]

Chrome:
=======
CHR StartupUrls: Default -> "hxxps://www.seznam.cz/?clid=22668"
CHR Profile: C:\Users\Lucka\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\Lucka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-05]
CHR Extension: (Dokumenty Google) - C:\Users\Lucka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-05]
CHR Extension: (Disk Google) - C:\Users\Lucka\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (YouTube) - C:\Users\Lucka\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Vyhledávání Google) - C:\Users\Lucka\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Tabulky Google) - C:\Users\Lucka\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-05]
CHR Extension: (Dokumenty Google offline) - C:\Users\Lucka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-19]
CHR Extension: (AdBlock) - C:\Users\Lucka\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2015-12-04]
CHR Extension: (VratnePenize.cz) - C:\Users\Lucka\AppData\Local\Google\Chrome\User Data\Default\Extensions\iiekfaemafmplemocgimeccahephhdgf [2015-09-10]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Lucka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-24]
CHR Extension: (Gmail) - C:\Users\Lucka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-28]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2015-12-02]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-12-02]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [174416 2015-12-02] (AVAST Software)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [24016 2015-12-02] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [81168 2015-12-02] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [81728 2015-12-02] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\Drivers\aswRvrt.sys [49776 2015-12-02] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [794952 2015-12-02] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [435464 2015-12-02] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [117200 2015-12-02] (AVAST Software)
R0 aswVmm; C:\Windows\system32\Drivers\aswVmm.sys [209432 2015-12-02] (AVAST Software)
S3 cmshusbser; C:\Windows\System32\DRIVERS\cmshusbser.sys [111104 2011-11-30] (QUALCOMM Incorporated)
R0 giveio; C:\Windows\System32\giveio.sys [5248 1996-04-03] () [File not signed]
R1 GUBootStartup; C:\Windows\System32\drivers\GUBootStartup.sys [17472 2015-12-02] (Glarysoft Ltd)
R0 speedfan; C:\Windows\System32\speedfan.sys [24184 2012-12-29] (Almico Software)
S3 Synth3dVsc; System32\drivers\synth3dvsc.sys [X]
S3 tsusbhub; system32\drivers\tsusbhub.sys [X]
S3 VGPU; System32\drivers\rdvgkmd.sys [X]
S1 {d0e4096d-22f7-4d51-86f7-85e4dcb81f43}Gw; system32\drivers\{d0e4096d-22f7-4d51-86f7-85e4dcb81f43}Gw.sys [X]

========================== Drivers MD5 =======================

C:\Windows\system32\drivers\1394ohci.sys ==> MD5 is legit
C:\Windows\System32\drivers\ACPI.sys ==> MD5 is legit
C:\Windows\system32\drivers\acpipmi.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\adp94xx.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\adpahci.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\adpu320.sys ==> MD5 is legit
C:\Windows\system32\drivers\afd.sys 93B49FA857F7036A4EFF32371F6E7391
C:\Windows\system32\drivers\agp440.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\djsvs.sys ==> MD5 is legit
C:\Windows\system32\drivers\aliide.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdagp.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdide.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\amdk8.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\amdppm.sys ==> MD5 is legit
C:\Windows\system32\drivers\amdsata.sys D320BF87125326F996D4904FE24300FC
C:\Windows\system32\DRIVERS\amdsbs.sys ==> MD5 is legit
C:\Windows\System32\drivers\amdxata.sys 46387FB17B086D16DEA267D5BE23A2F2
C:\Windows\system32\drivers\appid.sys FE4F2ADE5DBB3B888E9EB0A1FBA1F152
C:\Windows\system32\DRIVERS\arc.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\arcsas.sys ==> MD5 is legit
C:\Windows\system32\drivers\aswHwid.sys 0ADE64EDF43FF90925668C0F46707AF4
C:\Windows\system32\drivers\aswMonFlt.sys 2E4613ABDFAC02310E81FF7CC43DC98F
C:\Windows\system32\drivers\aswRdr2.sys 2F4E2BB595534EDF3577FFBBDC345A9B
C:\Windows\system32\Drivers\aswRvrt.sys 3B7B2B5A8460A56843B570A4627CAE1D
C:\Windows\system32\drivers\aswSnx.sys 824C79CEB9E07D09038F1CA23D192E24
C:\Windows\system32\drivers\aswSP.sys 0751A25CB431D4916594FC494B961EAD
C:\Windows\system32\drivers\aswStm.sys A3A34642B0C91373012D3559BCB8F3BD
C:\Windows\system32\Drivers\aswVmm.sys 43430E3A5E8247D6358B193E0B194754
C:\Windows\System32\DRIVERS\asyncmac.sys ==> MD5 is legit
C:\Windows\System32\drivers\atapi.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\atikmdag.sys 712D8A95E45B070114C5309ADA7358FF
C:\Windows\system32\DRIVERS\bxvbdx.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\b57nd60x.sys ==> MD5 is legit
C:\Windows\system32\Drivers\Beep.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\blbdrive.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\bowser.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\BrFiltLo.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\BrFiltUp.sys ==> MD5 is legit
C:\Windows\System32\Drivers\Brserid.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrSerWdm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrUsbMdm.sys ==> MD5 is legit
C:\Windows\System32\Drivers\BrUsbSer.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\bthmodem.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\cdfs.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\cdrom.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\circlass.sys ==> MD5 is legit
C:\Windows\System32\CLFS.sys 33A60554882FDF59CDA3E1806370BBA1
C:\Windows\system32\DRIVERS\CmBatt.sys ==> MD5 is legit
C:\Windows\system32\drivers\cmdide.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\cmshusbser.sys E35E8DF772C8007EE6F1EA26E6E6B29E
C:\Windows\System32\Drivers\cng.sys 780FFC005741C9316576086155E55F56
C:\Windows\system32\DRIVERS\compbatt.sys ==> MD5 is legit
C:\Windows\system32\drivers\CompositeBus.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\crcdisk.sys ==> MD5 is legit
C:\Windows\System32\drivers\csc.sys ==> MD5 is legit
C:\Windows\System32\Drivers\dfsc.sys ==> MD5 is legit
C:\Windows\System32\drivers\discache.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\disk.sys ==> MD5 is legit
C:\Windows\system32\drivers\drmkaud.sys ==> MD5 is legit
C:\Windows\System32\drivers\dxgkrnl.sys 3583A5A8CC2E682BFFBD4630D0FEC08B
C:\Windows\system32\DRIVERS\evbdx.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\elxstor.sys ==> MD5 is legit
C:\Windows\system32\drivers\errdev.sys ==> MD5 is legit
C:\Windows\system32\Drivers\exfat.sys ==> MD5 is legit
C:\Windows\system32\Drivers\fastfat.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\fdc.sys ==> MD5 is legit
C:\Windows\System32\drivers\fileinfo.sys ==> MD5 is legit
C:\Windows\System32\drivers\filetrace.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\flpydisk.sys ==> MD5 is legitB
C:\Windows\System32\drivers\fltmgr.sys ==> MD5 is legit
C:\Windows\System32\drivers\FsDepends.sys ==> MD5 is legit
C:\Windows\system32\Drivers\Fs_Rec.sys 7DAE5EBCC80E45D3253F4923DC424D05
C:\Windows\System32\DRIVERS\fvevol.sys E306A24D9694C724FA2491278BF50FDB
C:\Windows\system32\DRIVERS\gagp30kx.sys ==> MD5 is legit
C:\Windows\System32\giveio.sys 77EBF3E9386DAA51551AF429052D88D0
C:\Windows\System32\drivers\GUBootStartup.sys 05C11D2DA6B396F6AD8C590D32CF81D7
C:\Windows\system32\drivers\hcw85cir.sys ==> MD5 is legit
C:\Windows\system32\drivers\HdAudio.sys A5EF29D5315111C80A5C1ABAD14C8972
C:\Windows\system32\drivers\HDAudBus.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\HidBatt.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\hidbth.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\hidir.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\hidusb.sys ==> MD5 is legit
C:\Windows\system32\drivers\HpSAMD.sys ==> MD5 is legit
C:\Windows\System32\drivers\HTTP.sys 487569E5DA56A5A432FF8AF6D3599CF9
C:\Windows\System32\drivers\hwpolicy.sys ==> MD5 is legit
C:\Windows\system32\drivers\i8042prt.sys ==> MD5 is legit
C:\Windows\system32\drivers\iaStorV.sys 5CD5F9A5444E6CDCB0AC89BD62D8B76E
C:\Windows\system32\DRIVERS\iirsp.sys ==> MD5 is legit
C:\Windows\System32\drivers\RTKVHDA.sys 19B572DD46F038509846589DCB702B19
C:\Windows\system32\drivers\intelide.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\intelppm.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ipfltdrv.sys ==> MD5 is legit
C:\Windows\system32\drivers\IPMIDrv.sys ==> MD5 is legit
C:\Windows\System32\drivers\ipnat.sys ==> MD5 is legit
C:\Windows\System32\drivers\irenum.sys ==> MD5 is legit
C:\Windows\system32\drivers\isapnp.sys ==> MD5 is legit
C:\Windows\system32\drivers\msiscsi.sys EB34CE31FABD4DC4343FD2AD16D2CAF9
C:\Windows\System32\DRIVERS\kbdclass.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\kbdhid.sys ==> MD5 is legit
C:\Windows\System32\Drivers\ksecdd.sys A061E519ACDE34843DFA3F1C7358DAA2
C:\Windows\System32\Drivers\ksecpkg.sys 523091605C05F5DE880426A2FBA0F87C
C:\Windows\System32\DRIVERS\lltdio.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\lsi_fc.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\lsi_sas.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\lsi_sas2.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\lsi_scsi.sys ==> MD5 is legit
C:\Windows\system32\drivers\luafv.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\megasas.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\MegaSR.sys ==> MD5 is legit
C:\Windows\System32\drivers\modem.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\monitor.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\mouclass.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\mouhid.sys ==> MD5 is legit
C:\Windows\System32\drivers\mountmgr.sys BAD9C0366134BA181514E9263C8CE606
C:\Windows\system32\drivers\mpio.sys ==> MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys ==> MD5 is legit
C:\Windows\system32\drivers\mrxdav.sys 03F899F521D2AAED1C55008F734DF252
C:\Windows\System32\DRIVERS\mrxsmb.sys C7492026F6691A92C4508DDDB041CE4E
C:\Windows\System32\DRIVERS\mrxsmb10.sys 34779EBCFEAB87A236B33C365A637144
C:\Windows\System32\DRIVERS\mrxsmb20.sys C34DE43FDAD9C32383BB4A5EE60126D4
C:\Windows\system32\drivers\msahci.sys ==> MD5 is legit
C:\Windows\system32\drivers\msdsm.sys ==> MD5 is legit
C:\Windows\system32\Drivers\Msfs.sys ==> MD5 is legit
C:\Windows\System32\drivers\mshidkmdf.sys ==> MD5 is legit
C:\Windows\System32\drivers\msisadrv.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSKSSRV.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSPCLOCK.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSPQM.sys ==> MD5 is legit
C:\Windows\system32\Drivers\MsRPC.sys ==> MD5 is legit
C:\Windows\system32\drivers\mssmbios.sys ==> MD5 is legit
C:\Windows\System32\drivers\MSTEE.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\MTConfig.sys ==> MD5 is legit
C:\Windows\System32\Drivers\mup.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\nwifi.sys ==> MD5 is legit
C:\Windows\System32\drivers\ndis.sys 9804FB2E46077F2977552347DFCA7E05
C:\Windows\System32\DRIVERS\ndiscap.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndistapi.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndisuio.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\ndiswan.sys ==> MD5 is legit
C:\Windows\system32\Drivers\NDProxy.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\netbios.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\netbt.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\nfrd960.sys ==> MD5 is legit
C:\Windows\system32\Drivers\Npfs.sys ==> MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys ==> MD5 is legit
C:\Windows\system32\Drivers\Ntfs.sys C8DFF8D07755A66C7A4A738930F0FEAC
C:\Windows\system32\Drivers\Null.sys ==> MD5 is legit
C:\Windows\system32\drivers\nvraid.sys B3E25EE28883877076E0E1FF877D02E0
C:\Windows\system32\drivers\nvstor.sys 4380E59A170D88C4F1022EFF6719A8A4
C:\Windows\system32\drivers\nv_agp.sys ==> MD5 is legit
C:\Windows\system32\drivers\ohci1394.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\parport.sys ==> MD5 is legit
C:\Windows\System32\drivers\partmgr.sys 3F34A1B4C5F6475F320C275E63AFCE9B
C:\Windows\system32\DRIVERS\parvdm.sys ==> MD5 is legit
C:\Windows\System32\drivers\pci.sys ==> MD5 is legit
C:\Windows\System32\drivers\pciide.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\pcmcia.sys ==> MD5 is legit
C:\Windows\System32\drivers\pcw.sys ==> MD5 is legit
C:\Windows\System32\drivers\peauth.sys AEBC369F7DC72AB3F5B9BDF34FA0D43F
C:\Windows\System32\DRIVERS\raspptp.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\processr.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\pacer.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\ql2300.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\ql40xx.sys ==> MD5 is legit
C:\Windows\system32\drivers\qwavedrv.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rasacd.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\AgileVpn.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rasl2tp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\raspppoe.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rassstp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rdbss.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rdpbus.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\RDPCDD.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdpdr.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdpencdd.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdprefmp.sys ==> MD5 is legit
C:\Windows\System32\drivers\rdpvideominiport.sys 65375DF758CA1872AB7EBBBA457FD5E6
C:\Windows\system32\Drivers\RDPWD.sys CD9214A6AE17D188D17C3CF8CB9CC693
C:\Windows\System32\drivers\rdyboost.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\rspndr.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\Rtnicxp.sys 4E20765744BFBC16F6D6E5BD5598786B
C:\Windows\system32\drivers\vms3cap.sys ==> MD5 is legit
C:\Windows\system32\drivers\sbp2port.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\scfilter.sys ==> MD5 is legit
C:\Windows\system32\Drivers\secdrv.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\serenum.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\serial.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\sermouse.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffdisk.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffp_mmc.sys ==> MD5 is legit
C:\Windows\system32\drivers\sffp_sd.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\sfloppy.sys ==> MD5 is legit
C:\Windows\system32\drivers\sisagp.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\SiSRaid2.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\sisraid4.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\smb.sys ==> MD5 is legit
C:\Windows\System32\speedfan.sys DC8D2952FB6FFBAEC67BD1B93A34DF11
C:\Windows\system32\Drivers\spldr.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\srv.sys E4C2764065D66EA1D2D3EBC28FE99C46
C:\Windows\System32\DRIVERS\srv2.sys 03F0545BD8D4C77FA0AE1CEEDFCC71AB
C:\Windows\System32\DRIVERS\srvnet.sys BE6BD660CAA6F291AE06A718A4FA8ABC
C:\Windows\system32\DRIVERS\stexstor.sys ==> MD5 is legit
C:\Windows\System32\drivers\vmstorfl.sys ==> MD5 is legit
C:\Windows\system32\drivers\storvsc.sys ==> MD5 is legit
C:\Windows\system32\drivers\swenum.sys ==> MD5 is legit
C:\Windows\System32\drivers\tcpip.sys 5579DD18546999F5D0EC39D018726C6B
C:\Windows\System32\DRIVERS\tcpip.sys 5579DD18546999F5D0EC39D018726C6B
C:\Windows\System32\drivers\tcpipreg.sys 3EEBD3BD93DA46A26E89893C7AB2FF3B
C:\Windows\System32\drivers\tdpipe.sys ==> MD5 is legit
C:\Windows\System32\drivers\tdtcp.sys 2C2C5AFE7EE4F620D69C23C0617651A8
C:\Windows\System32\DRIVERS\tdx.sys BB8817D0508DD5EA69C770C8DEF5AB67
C:\Windows\system32\drivers\termdd.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\tssecsrv.sys 6C5139E4283249518F7743D7043775B3
C:\Windows\System32\drivers\tsusbflt.sys C6A5FBD4977305E1FA23E02C042DB463
C:\Windows\System32\DRIVERS\tunnel.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\uagp35.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\udfs.sys ==> MD5 is legit
C:\Windows\system32\drivers\uliagpkx.sys ==> MD5 is legit
C:\Windows\system32\drivers\umbus.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\umpass.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\usbccgp.sys 0803FBA9FE829D61AE26EC0BCC910C46
C:\Windows\system32\drivers\usbcir.sys 2352AB5F9F8F097BF9D41D5A4718A041
C:\Windows\System32\DRIVERS\usbehci.sys D40855F89B69305140BBD7E9A3BA2DA6
C:\Windows\System32\DRIVERS\usbhub.sys EDF2DF71C4F1E13A6AC75F5224DE655A
C:\Windows\System32\DRIVERS\usbohci.sys 9828C8D14CC2676421778F0DE638CF97
C:\Windows\System32\DRIVERS\usbprint.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\usbscan.sys FC6B21DB4B5B398AB93DBE59CBF11036
C:\Windows\System32\DRIVERS\USBSTOR.SYS F991AB9CC6B908DB552166768176896A
C:\Windows\system32\drivers\usbuhci.sys 800AABFD625EEFF899F7E5496BDE37AB
C:\Windows\System32\Drivers\usbvideo.sys DE014425522610BEDCA3821BB8C0F1D5
C:\Windows\System32\drivers\vdrvroot.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\vgapnp.sys ==> MD5 is legit
C:\Windows\System32\drivers\vga.sys ==> MD5 is legit
C:\Windows\system32\drivers\vhdmp.sys ==> MD5 is legit
C:\Windows\system32\drivers\viaagp.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\viac7.sys ==> MD5 is legit
C:\Windows\system32\drivers\viaide.sys ==> MD5 is legit
C:\Windows\System32\drivers\vmbus.sys ==> MD5 is legit
C:\Windows\system32\drivers\VMBusHID.sys ==> MD5 is legit
C:\Windows\System32\drivers\volmgr.sys ==> MD5 is legit
C:\Windows\System32\drivers\volmgrx.sys ==> MD5 is legit
C:\Windows\System32\drivers\volsnap.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\vsmraid.sys ==> MD5 is legit
C:\Windows\System32\drivers\vwifibus.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\wacompen.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\wanarp.sys ==> MD5 is legit
C:\Windows\system32\DRIVERS\wd.sys ==> MD5 is legit
C:\Windows\System32\drivers\Wdf01000.sys 25944D2CC49E0A6C581D02A74B7D6645
C:\Windows\System32\DRIVERS\wfplwf.sys ==> MD5 is legit
C:\Windows\System32\drivers\wimmount.sys ==> MD5 is legit
C:\Windows\System32\DRIVERS\WinUsb.sys A67E5F9A400F3BD1BE3D80613B45F708
C:\Windows\system32\drivers\wmiacpi.sys ==> MD5 is legit
C:\Windows\system32\drivers\ws2ifsl.sys ==> MD5 is legit
C:\Windows\System32\drivers\WudfPf.sys 06E6F32C8D0A3F66D956F57B43A2E070
C:\Windows\System32\DRIVERS\WUDFRd.sys 867C301E8B790040AE9CF6486E8041DF

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== Three Months Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-12-05 12:24 - 2015-12-05 12:24 - 144178956 _____ C:\Users\Lucka\Downloads\London-Spy-S01E02---CZ-titulky.avi.crdownload
2015-12-05 12:16 - 2015-12-05 12:16 - 00000000 ____D C:\Users\Lucka\Downloads\FRST-OlderVersion
2015-12-05 11:38 - 2015-12-05 11:26 - 00041476 _____ C:\Users\Lucka\Desktop\Supernatural S11E08.srt
2015-12-05 11:28 - 2015-12-05 12:21 - 808275584 _____ C:\Users\Lucka\Desktop\London-Spy-S01E01-(720p)-CZ-titulky.avi
2015-12-05 11:27 - 2015-12-05 11:37 - 276842613 _____ C:\Users\Lucka\Desktop\The.Knick.S02E08.INTERNAL.HDTV.x264-KILLERS[ettv].mp4
2015-12-05 11:27 - 2015-12-05 11:35 - 210752634 _____ C:\Users\Lucka\Desktop\the.vampire.diaries.708.hdtv-lol[ettv].mp4
2015-12-05 11:26 - 2015-12-05 11:26 - 00039334 _____ C:\Users\Lucka\Desktop\tvd-7x08-lol.srt
2015-12-05 11:15 - 2015-12-05 11:16 - 01736704 _____ C:\Users\Lucka\Desktop\adwcleaner_5.023.exe
2015-12-04 21:51 - 2015-12-05 12:19 - 00023192 _____ C:\Users\Lucka\Downloads\Addition.txt
2015-12-04 21:50 - 2015-12-05 14:01 - 00027443 _____ C:\Users\Lucka\Downloads\FRST.txt
2015-12-04 21:50 - 2015-12-05 14:01 - 00000000 ____D C:\FRST
2015-12-04 21:50 - 2015-12-05 12:16 - 01719808 _____ (Farbar) C:\Users\Lucka\Downloads\FRST.exe
2015-12-04 21:38 - 2015-12-04 21:46 - 00000000 ____D C:\Program Files\trend micro
2015-12-04 21:38 - 2015-12-04 21:39 - 00000000 ____D C:\rsit
2015-12-04 21:38 - 2015-12-04 21:38 - 01107968 _____ C:\Users\Lucka\Downloads\RSIT.exe
2015-12-04 20:32 - 2015-12-04 20:32 - 00000969 _____ C:\Users\Pavel\Desktop\SpeedFan.lnk
2015-12-04 20:32 - 2015-12-04 20:32 - 00000969 _____ C:\Users\Lucka\Desktop\SpeedFan.lnk
2015-12-04 20:32 - 2015-12-04 20:32 - 00000000 ____D C:\Users\Lucka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpeedFan
2015-12-04 20:32 - 2015-12-04 20:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SpeedFan
2015-12-04 20:31 - 2015-12-05 11:42 - 00000000 ____D C:\Program Files\SpeedFan
2015-12-04 20:30 - 2015-12-04 20:32 - 00000045 _____ C:\Windows\system32\initdebug.nfo
2015-12-04 20:28 - 2015-12-04 20:29 - 02174848 _____ C:\Users\Lucka\Downloads\instsf450.exe
2015-12-04 20:16 - 2015-12-04 20:16 - 00000000 ____D C:\Users\Lucka\AppData\Local\Adobe
2015-12-04 15:53 - 2015-12-05 11:19 - 00000000 ____D C:\AdwCleaner
2015-12-04 05:53 - 2015-12-04 05:53 - 00000000 ____D C:\Users\Lucka\aTubeCatcher
2015-12-03 20:53 - 2015-12-03 20:57 - 221631746 _____ C:\Users\Lucka\Desktop\Superstore.S01E01.HDTV.x264-KILLERS[ettv].mp4
2015-12-03 20:27 - 2015-12-03 20:27 - 00000000 ____D C:\Program Files\Common Files\AV
2015-12-03 20:26 - 2015-12-03 20:30 - 223602973 _____ C:\Users\Lucka\Desktop\supernatural.1108.hdtv-lol[ettv].mp4
2015-12-02 08:38 - 2015-12-02 08:37 - 00322760 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2015-12-02 08:37 - 2015-12-02 08:37 - 00043112 _____ (AVAST Software) C:\Windows\avastSS.scr
2015-12-01 21:52 - 2015-12-01 21:52 - 00009904 ____N C:\bootsqm.dat
2015-12-01 21:46 - 2015-12-01 21:46 - 00000000 ____D C:\Users\Lucka\AppData\Local\VirtualStore
2015-11-30 21:39 - 2015-11-30 21:39 - 00530556 _____ C:\Users\Lucka\Downloads\Protokoly.pdf
2015-11-22 01:02 - 2015-11-22 01:02 - 00040129 _____ C:\Users\Lucka\Desktop\Xavier Dolan – Wikipedie.html
2015-11-21 22:15 - 2015-11-21 22:15 - 00008528 _____ C:\Users\Lucka\Desktop\Ústav pro českou literaturu AV ČR, v. v. i. _ Digitalizovaný archiv časopisů.html
2015-11-21 19:41 - 2015-11-21 19:41 - 00000000 ____D C:\Program Files\Common Files\Java
2015-11-17 16:13 - 2015-11-17 16:14 - 00100961 _____ C:\Users\Lucka\Desktop\Download quantico Torrents - Kickass Torrents.html
2015-11-17 12:03 - 2015-11-17 12:03 - 00397297 _____ C:\Users\Pavel\Downloads\ergonimie.odt
2015-11-12 12:02 - 2015-11-03 18:46 - 02386944 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2015-11-11 13:36 - 2015-10-29 18:50 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\shimeng.dll
2015-11-11 13:36 - 2015-10-29 18:49 - 00295936 _____ (Microsoft Corporation) C:\Windows\system32\apphelp.dll
2015-11-11 13:36 - 2015-10-29 18:49 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\aelupsvc.dll
2015-11-11 13:36 - 2015-10-29 18:49 - 00020992 _____ (Microsoft Corporation) C:\Windows\system32\sdbinst.exe
2015-11-11 13:35 - 2015-11-03 22:51 - 00342728 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2015-11-11 13:35 - 2015-10-30 23:58 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2015-11-11 13:35 - 2015-10-30 23:58 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2015-11-11 13:35 - 2015-10-30 23:47 - 00504832 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2015-11-11 13:35 - 2015-10-30 23:46 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2015-11-11 13:35 - 2015-10-30 23:45 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2015-11-11 13:35 - 2015-10-30 23:45 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2015-11-11 13:35 - 2015-10-30 23:44 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2015-11-11 13:35 - 2015-10-30 23:39 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2015-11-11 13:35 - 2015-10-30 23:39 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2015-11-11 13:35 - 2015-10-30 23:37 - 00480256 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2015-11-11 13:35 - 2015-10-30 23:36 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2015-11-11 13:35 - 2015-10-30 23:36 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2015-11-11 13:35 - 2015-10-30 23:36 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2015-11-11 13:35 - 2015-10-30 23:36 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2015-11-11 13:35 - 2015-10-30 23:31 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2015-11-11 13:35 - 2015-10-30 23:28 - 00416256 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2015-11-11 13:35 - 2015-10-30 23:23 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2015-11-11 13:35 - 2015-10-30 23:21 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2015-11-11 13:35 - 2015-10-30 23:19 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2015-11-11 13:35 - 2015-10-30 23:18 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2015-11-11 13:35 - 2015-10-30 23:17 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2015-11-11 13:35 - 2015-10-30 23:11 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2015-11-11 13:35 - 2015-10-30 23:10 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2015-11-11 13:35 - 2015-10-30 23:09 - 12854272 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2015-11-11 13:35 - 2015-10-30 23:09 - 02052608 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2015-11-11 13:35 - 2015-10-30 23:09 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2015-11-11 13:35 - 2015-10-30 23:09 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2015-11-11 13:35 - 2015-10-30 22:51 - 02011136 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2015-11-11 13:35 - 2015-10-30 22:48 - 01311744 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2015-11-11 13:35 - 2015-10-30 22:46 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2015-11-11 13:35 - 2015-10-20 01:52 - 03991488 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2015-11-11 13:35 - 2015-10-20 01:52 - 03935680 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2015-11-11 13:35 - 2015-10-20 01:52 - 00138176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2015-11-11 13:35 - 2015-10-20 01:52 - 00067520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2015-11-11 13:35 - 2015-10-20 01:48 - 01308160 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2015-11-11 13:35 - 2015-10-20 01:45 - 01061376 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2015-11-11 13:35 - 2015-10-20 01:45 - 00655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2015-11-11 13:35 - 2015-10-20 01:45 - 00552960 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2015-11-11 13:35 - 2015-10-20 01:45 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2015-11-11 13:35 - 2015-10-20 01:45 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2015-11-11 13:35 - 2015-10-20 01:45 - 00259584 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2015-11-11 13:35 - 2015-10-20 01:45 - 00251392 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2015-11-11 13:35 - 2015-10-20 01:45 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2015-11-11 13:35 - 2015-10-20 01:45 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2015-11-11 13:35 - 2015-10-20 01:45 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2015-11-11 13:35 - 2015-10-20 01:45 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2015-11-11 13:35 - 2015-10-20 01:45 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2015-11-11 13:35 - 2015-10-20 01:45 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2015-11-11 13:35 - 2015-10-20 01:45 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2015-11-11 13:35 - 2015-10-20 01:45 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2015-11-11 13:35 - 2015-10-20 01:45 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2015-11-11 13:35 - 2015-10-20 01:45 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2015-11-11 13:35 - 2015-10-20 01:45 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2015-11-11 13:35 - 2015-10-20 01:44 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2015-11-11 13:35 - 2015-10-20 01:44 - 00022528 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2015-11-11 13:35 - 2015-10-20 01:39 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2015-11-11 13:35 - 2015-10-20 01:39 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2015-11-11 13:35 - 2015-10-20 01:35 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2015-11-11 13:35 - 2015-10-20 01:35 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2015-11-11 13:35 - 2015-10-20 00:29 - 00225792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2015-11-11 13:35 - 2015-10-20 00:28 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2015-11-11 13:35 - 2015-10-20 00:28 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2015-11-11 13:35 - 2015-10-13 17:31 - 00338944 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\afd.sys
2015-11-11 13:35 - 2015-10-13 17:31 - 00074752 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tdx.sys
2015-11-11 13:35 - 2015-10-13 05:50 - 00712640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2015-11-11 13:34 - 2015-10-30 23:52 - 20331520 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2015-11-11 13:34 - 2015-10-30 23:42 - 02279936 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2015-11-11 13:34 - 2015-10-30 23:16 - 04527616 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2015-11-11 13:34 - 2015-09-23 14:09 - 00371920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2015-11-11 13:34 - 2015-09-23 14:09 - 00251000 _____ (Microsoft Corporation) C:\Windows\system32\bcryptprimitives.dll
2015-11-11 13:33 - 2015-10-20 18:46 - 02955776 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2015-11-11 13:33 - 2015-10-20 18:46 - 02061824 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2015-11-11 13:33 - 2015-10-20 18:46 - 00566784 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2015-11-11 13:33 - 2015-10-20 18:46 - 00174080 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2015-11-11 13:33 - 2015-10-20 18:46 - 00093696 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2015-11-11 13:33 - 2015-10-20 18:46 - 00035840 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2015-11-11 13:33 - 2015-10-20 18:46 - 00030208 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2015-11-11 13:33 - 2015-10-20 18:45 - 00136192 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2015-11-11 13:33 - 2015-10-20 18:45 - 00073728 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2015-11-11 13:33 - 2015-10-20 18:45 - 00035328 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2015-11-11 13:33 - 2015-10-20 18:45 - 00011776 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2015-11-11 13:33 - 2015-10-01 18:50 - 00216064 _____ (Microsoft Corporation) C:\Windows\system32\InkEd.dll
2015-11-11 13:33 - 2015-10-01 18:50 - 00019968 _____ (Microsoft Corporation) C:\Windows\system32\jnwmon.dll
2015-11-09 10:32 - 2015-11-20 16:57 - 00000000 ____D C:\Users\Lucka\Desktop\ahs
2015-11-08 16:26 - 2015-11-27 16:29 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2015-11-08 16:26 - 2015-11-08 16:26 - 00000000 ____D C:\Program Files\Adobe
2015-11-07 21:37 - 2015-11-28 12:08 - 00000000 ____D C:\Users\Pavel\AppData\Roaming\vlc
2015-10-31 10:03 - 2015-10-31 10:09 - 214076775 _____ C:\Users\Lucka\Desktop\please like me s03e03.mp4
2015-10-30 19:29 - 2015-10-30 19:29 - 00036317 _____ C:\Users\Lucka\Desktop\obrazky pitva srdce (2).srt
2015-10-30 19:28 - 2015-10-30 19:28 - 00035692 _____ C:\Users\Lucka\Desktop\Please Like Me - 03x01 - Eggplant.W4F.English.HI.C.orig.Addic7ed.com.srt
2015-10-30 19:28 - 2015-10-30 19:28 - 00033315 _____ C:\Users\Lucka\Desktop\obrazky pitva srdce (1).srt
2015-10-30 16:31 - 2015-12-04 20:57 - 00000000 ___HD C:\$WINDOWS.~BT
2015-10-25 17:26 - 2008-08-18 19:18 - 00077824 _____ (Fox Magic Software) C:\Windows\system32\fmcodec.DLL
2015-10-25 12:33 - 2015-10-25 12:36 - 215489155 _____ C:\Users\Lucka\Desktop\Please.Like.Me.S03E02.PDTV.x264-SamT.mp4
2015-10-23 13:57 - 2015-11-24 05:43 - 00000000 ____D C:\Users\Lucka\Desktop\htgawm fotky z nataceni
2015-10-22 15:51 - 2015-10-22 15:51 - 00000000 ____D C:\Users\Pavel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2015-10-19 14:54 - 2015-10-19 16:04 - 1217124276 _____ C:\Users\Pavel\Desktop\Avangers-2-Age-of-Ultron--(2015)-CZ-titulky.avi
2015-10-19 11:52 - 2015-10-19 11:52 - 00018577 _____ C:\Users\Pavel\Downloads\TWD-S06E02.rar
2015-10-18 17:01 - 2015-10-18 17:01 - 00002129 _____ C:\Users\Pavel\Desktop\Skype.lnk
2015-10-16 15:10 - 2015-10-16 15:14 - 176776784 _____ C:\Users\Lucka\Desktop\please like ne s03e02.mp4
2015-10-15 07:06 - 2015-09-18 18:47 - 00023384 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2015-10-15 07:06 - 2015-09-18 18:44 - 01120768 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2015-10-15 07:06 - 2015-09-18 18:44 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2015-10-15 07:06 - 2015-09-18 18:44 - 00587776 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2015-10-15 07:06 - 2015-09-18 18:44 - 00423936 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2015-10-15 07:06 - 2015-09-18 18:44 - 00062976 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2015-10-15 07:06 - 2015-09-18 18:35 - 00999936 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2015-10-14 11:45 - 2015-07-18 14:08 - 00901264 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2015-10-14 11:45 - 2015-07-18 14:08 - 00066400 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2015-10-14 11:45 - 2015-07-18 14:08 - 00022368 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2015-10-14 11:45 - 2015-07-18 14:08 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2015-10-14 11:45 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2015-10-14 11:45 - 2015-07-18 14:08 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2015-10-14 11:45 - 2015-07-18 14:08 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2015-10-14 11:45 - 2015-07-18 14:08 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2015-10-14 11:45 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2015-10-14 11:45 - 2015-07-18 14:08 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2015-10-14 11:45 - 2015-07-18 14:08 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2015-10-14 11:45 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2015-10-14 11:45 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2015-10-14 11:45 - 2015-07-18 14:08 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2015-10-14 11:45 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2015-10-14 11:45 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2015-10-14 11:45 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2015-10-14 11:45 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2015-10-14 11:45 - 2015-07-18 14:08 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2015-10-14 11:45 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-eventing-provider-l1-1-0.dll
2015-10-14 11:45 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2015-10-14 11:45 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2015-10-14 11:45 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2015-10-14 11:45 - 2015-07-18 14:08 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2015-10-14 11:44 - 2015-10-01 18:50 - 00096768 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2015-10-14 11:44 - 2015-10-01 18:50 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2015-10-14 11:44 - 2015-10-01 18:50 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2015-10-14 11:44 - 2015-10-01 18:50 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2015-10-14 11:44 - 2015-10-01 18:50 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2015-10-14 11:44 - 2015-10-01 17:53 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2015-10-14 11:44 - 2015-08-06 18:44 - 12875776 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2015-10-14 11:44 - 2015-08-06 18:44 - 01498624 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2015-10-13 01:29 - 2015-10-13 01:29 - 00875720 _____ (Microsoft Corporation) C:\Windows\system32\msvcr120_clr0400.dll
2015-10-07 15:28 - 2015-10-07 15:28 - 00000000 ____D C:\Users\Pavel\Tracing
2015-10-02 16:50 - 2015-10-02 16:51 - 00000000 ____D C:\Windows\system32\directx
2015-10-02 16:50 - 2015-10-02 16:50 - 00000000 ___HD C:\Windows\msdownld.tmp
2015-09-29 18:02 - 2015-09-29 18:03 - 00000000 ____D C:\Users\Lucka\AppData\Roaming\My Battle for Middle-earth(tm) II Files
2015-09-29 18:01 - 2015-09-29 18:01 - 00000000 ____D C:\Users\Lucka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2015-09-29 17:58 - 2015-09-29 17:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Electronic Arts
2015-09-29 17:49 - 2015-09-29 17:49 - 00000000 ____D C:\Program Files\Electronic Arts
2015-09-26 13:27 - 2015-12-01 21:43 - 00000000 ____D C:\Users\Lucka\AppData\Local\paint.net
2015-09-11 04:51 - 2015-09-11 04:51 - 00000000 ___RD C:\Program Files\Skype
2015-09-11 04:51 - 2015-09-11 04:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-09-11 04:51 - 2015-09-11 04:51 - 00000000 ____D C:\Program Files\Common Files\Skype
2015-09-09 13:48 - 2015-08-27 18:58 - 01391104 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2015-09-09 13:48 - 2015-08-27 18:58 - 01241088 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2015-09-09 13:48 - 2015-08-27 18:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml6r.dll
2015-09-09 13:48 - 2015-08-27 18:51 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2015-09-09 13:48 - 2015-08-05 18:41 - 00751104 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2015-09-09 13:46 - 2015-09-02 03:48 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2015-09-09 13:46 - 2015-09-02 03:48 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2015-09-09 13:46 - 2015-09-02 03:48 - 00026624 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2015-09-09 13:46 - 2015-09-02 03:48 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2015-09-09 13:46 - 2015-09-02 02:33 - 00299520 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2015-09-09 13:45 - 2015-07-22 18:53 - 00937984 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2015-09-09 13:45 - 2015-07-22 18:53 - 00641536 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2015-09-09 13:45 - 2015-07-22 18:53 - 00635392 _____ (Microsoft Corporation) C:\Windows\system32\tdh.dll
2015-09-09 13:45 - 2015-07-22 17:38 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2015-09-09 13:44 - 2015-07-09 18:42 - 01372160 _____ (Microsoft Corporation) C:\Windows\system32\dwmcore.dll
2015-09-09 13:44 - 2015-07-09 18:42 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\dwmapi.dll
2015-09-09 13:43 - 2015-06-25 10:48 - 00105408 _____ (Microsoft Corporation) C:\Windows\system32\consent.exe
2015-09-09 13:43 - 2015-06-25 10:44 - 01805824 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2015-09-09 13:43 - 2015-06-25 10:44 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\appinfo.dll
2015-09-09 13:41 - 2015-07-15 03:54 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2015-09-06 13:40 - 2010-06-02 03:55 - 00527192 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2015-09-06 13:40 - 2010-06-02 03:55 - 00239960 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2015-09-06 13:40 - 2010-06-02 03:55 - 00074072 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2015-09-06 13:40 - 2010-05-26 10:41 - 02106216 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2015-09-06 13:40 - 2010-05-26 10:41 - 01998168 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2015-09-06 13:40 - 2010-05-26 10:41 - 01868128 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2015-09-06 13:40 - 2010-05-26 10:41 - 00470880 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2015-09-06 13:40 - 2010-05-26 10:41 - 00248672 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2015-09-06 13:40 - 2010-02-04 09:01 - 00528216 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_6.dll
2015-09-06 13:40 - 2010-02-04 09:01 - 00238936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_6.dll
2015-09-06 13:40 - 2010-02-04 09:01 - 00074072 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_4.dll
2015-09-06 13:40 - 2010-02-04 09:01 - 00022360 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_7.dll
2015-09-06 13:39 - 2009-09-04 16:44 - 00515416 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_5.dll
2015-09-06 13:39 - 2009-09-04 16:44 - 00238936 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_5.dll
2015-09-06 13:39 - 2009-09-04 16:44 - 00069464 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_3.dll
2015-09-06 13:39 - 2009-09-04 16:29 - 05501792 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_42.dll
2015-09-06 13:39 - 2009-09-04 16:29 - 01974616 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_42.dll
2015-09-06 13:39 - 2009-09-04 16:29 - 01892184 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_42.dll
2015-09-06 13:39 - 2009-09-04 16:29 - 00453456 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_42.dll
2015-09-06 13:39 - 2009-09-04 16:29 - 00235344 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_42.dll
2015-09-06 13:39 - 2009-03-16 13:18 - 00517448 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_4.dll
2015-09-06 13:39 - 2009-03-16 13:18 - 00235352 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_4.dll
2015-09-06 13:39 - 2009-03-16 13:18 - 00022360 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_6.dll
2015-09-06 13:39 - 2009-03-09 14:27 - 04178264 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_41.dll
2015-09-06 13:39 - 2009-03-09 14:27 - 01846632 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_41.dll
2015-09-06 13:39 - 2009-03-09 14:27 - 00453456 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_41.dll
2015-09-06 13:39 - 2008-10-27 09:04 - 00514384 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_3.dll
2015-09-06 13:39 - 2008-10-27 09:04 - 00235856 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_3.dll
2015-09-06 13:39 - 2008-10-27 09:04 - 00070992 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_2.dll
2015-09-06 13:39 - 2008-10-27 09:04 - 00023376 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_5.dll
2015-09-06 13:39 - 2008-10-15 05:22 - 04379984 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_40.dll
2015-09-06 13:39 - 2008-10-15 05:22 - 02036576 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_40.dll
2015-09-06 13:39 - 2008-10-15 05:22 - 00452440 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_40.dll
2015-09-06 13:39 - 2008-07-31 09:41 - 00238088 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_2.dll
2015-09-06 13:39 - 2008-07-31 09:41 - 00068616 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_1.dll
2015-09-06 13:39 - 2008-07-31 09:40 - 00509448 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_2.dll
2015-09-06 13:39 - 2008-07-10 10:01 - 00467984 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_39.dll
2015-09-06 13:39 - 2008-07-10 10:00 - 03851784 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_39.dll
2015-09-06 13:39 - 2008-07-10 10:00 - 01493528 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_39.dll
2015-09-06 13:39 - 2008-05-30 13:19 - 00507400 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_1.dll
2015-09-06 13:39 - 2008-05-30 13:18 - 00238088 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_1.dll
2015-09-06 13:39 - 2008-05-30 13:17 - 00065032 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_0.dll
2015-09-06 13:39 - 2008-05-30 13:17 - 00025608 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_4.dll
2015-09-06 13:39 - 2008-05-30 13:11 - 03850760 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_38.dll
2015-09-06 13:39 - 2008-05-30 13:11 - 01491992 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_38.dll
2015-09-06 13:39 - 2008-05-30 13:11 - 00467984 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_38.dll
2015-09-06 13:39 - 2008-03-05 15:03 - 00479752 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_0.dll
2015-09-06 13:39 - 2008-03-05 15:03 - 00238088 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_0.dll
2015-09-06 13:39 - 2008-03-05 15:00 - 00025608 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_3.dll
2015-09-06 13:39 - 2008-03-05 14:56 - 03786760 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_37.dll
2015-09-06 13:39 - 2008-03-05 14:56 - 01420824 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_37.dll
2015-09-06 13:39 - 2008-02-05 22:07 - 00462864 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_37.dll
2015-09-06 13:39 - 2007-10-22 02:39 - 00267272 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_10.dll
2015-09-06 13:39 - 2007-10-22 02:37 - 00017928 _____ (Microsoft Corporation) C:\Windows\system32\X3DAudio1_2.dll
2015-09-06 13:39 - 2007-10-12 14:14 - 03734536 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_36.dll
2015-09-06 13:39 - 2007-10-12 14:14 - 01374232 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_36.dll
2015-09-06 13:39 - 2007-10-02 08:56 - 00444776 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_36.dll
2015-09-06 13:39 - 2007-07-19 23:57 - 00267112 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_9.dll
2015-09-06 13:39 - 2007-07-19 17:14 - 03727720 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_35.dll
2015-09-06 13:39 - 2007-07-19 17:14 - 01358192 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_35.dll
2015-09-06 13:39 - 2007-07-19 17:14 - 00444776 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_35.dll
2015-09-06 13:39 - 2007-06-20 19:46 - 00266088 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_8.dll
2015-09-06 13:39 - 2007-05-16 15:45 - 03497832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_34.dll
2015-09-06 13:39 - 2007-05-16 15:45 - 01124720 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_34.dll
2015-09-06 13:39 - 2007-05-16 15:45 - 00443752 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_34.dll
2015-09-06 13:39 - 2007-04-04 17:55 - 00261480 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_7.dll
2015-09-06 13:39 - 2007-04-04 17:53 - 00081768 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_3.dll
2015-09-06 13:39 - 2007-03-15 15:57 - 00443752 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_33.dll
2015-09-06 13:39 - 2007-03-12 15:42 - 03495784 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_33.dll
2015-09-06 13:39 - 2007-03-12 15:42 - 01123696 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_33.dll
2015-09-06 13:39 - 2007-03-05 11:42 - 00015128 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_1.dll
2015-09-06 13:39 - 2007-01-24 14:27 - 00255848 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_6.dll
2015-09-06 13:39 - 2006-12-08 11:02 - 00251672 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_5.dll
2015-09-06 13:39 - 2006-11-29 12:06 - 03426072 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_32.dll
2015-09-06 13:39 - 2006-11-29 12:06 - 00440080 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10.dll
2015-09-06 13:39 - 2006-09-28 15:05 - 02414360 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_31.dll
2015-09-06 13:39 - 2006-09-28 15:05 - 00237848 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_4.dll
2015-09-06 13:39 - 2006-07-28 08:30 - 00236824 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_3.dll
2015-09-06 13:39 - 2006-07-28 08:30 - 00062744 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_2.dll
2015-09-06 13:39 - 2006-05-31 06:24 - 00230168 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_2.dll
2015-09-06 13:39 - 2006-03-31 11:39 - 00229584 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2015-09-06 13:39 - 2006-03-31 11:39 - 00062672 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2015-09-06 13:38 - 2006-03-31 11:40 - 02388176 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2015-09-06 13:38 - 2006-02-03 07:43 - 02332368 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_29.dll
2015-09-06 13:38 - 2006-02-03 07:42 - 00230096 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_0.dll
2015-09-06 13:38 - 2006-02-03 07:41 - 00014032 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2015-09-06 13:38 - 2005-12-05 17:09 - 02323664 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_28.dll
2015-09-06 13:38 - 2005-07-22 18:59 - 02319568 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_27.dll
2015-09-06 13:38 - 2005-05-26 14:34 - 02297552 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_26.dll
2015-09-06 13:38 - 2005-03-18 16:19 - 02337488 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_25.dll
2015-09-06 13:38 - 2005-02-05 18:45 - 02222800 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_24.dll
2015-09-06 13:31 - 2015-09-06 13:31 - 00000349 _____ C:\Users\Public\Documents\PCLECHAL.INI
2015-09-06 13:19 - 2015-09-06 13:58 - 00000000 ____D C:\ProgramData\Pinnacle
2015-09-06 13:19 - 2015-09-06 13:19 - 00000000 ____D C:\Users\Lucka\AppData\Local\Pinnacle
2015-09-06 13:18 - 2015-09-06 13:58 - 00000000 ____D C:\Program Files\Pinnacle
2015-09-06 13:18 - 2015-09-06 13:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pinnacle Studio 16
2015-09-06 13:17 - 2015-09-06 13:17 - 00000000 ____D C:\Users\Lucka\AppData\Local\Downloaded Installations

==================== Three Months Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-12-05 13:57 - 2014-10-26 16:15 - 00000936 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-12-05 13:57 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2015-12-05 12:29 - 2014-10-26 16:15 - 00000940 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-12-05 12:06 - 2015-06-15 19:18 - 00000958 _____ C:\Windows\Tasks\Adobe Flash Player PPAPI Notifier.job
2015-12-05 11:37 - 2014-10-30 16:47 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2015-12-05 11:37 - 2014-10-26 17:08 - 00000000 ____D C:\Users\Lucka\AppData\Roaming\uTorrent
2015-12-05 11:36 - 2009-07-14 05:34 - 00020480 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-12-05 11:36 - 2009-07-14 05:34 - 00020480 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-12-04 21:50 - 2009-07-14 03:37 - 00000000 ____D C:\Windows
2015-12-04 21:03 - 2014-10-26 15:36 - 00000000 ____D C:\Windows\Panther
2015-12-04 20:04 - 2014-10-30 19:10 - 00000000 ____D C:\Program Files\Glary Utilities 5
2015-12-04 16:09 - 2014-12-09 06:25 - 00000000 ____D C:\Users\Pavel\AppData\Roaming\Epson
2015-12-04 15:50 - 2014-10-28 19:41 - 00000000 ____D C:\Users\Lucka\AppData\Roaming\Adobe
2015-12-04 15:15 - 2014-10-26 15:52 - 01584740 _____ C:\Windows\system32\PerfStringBackup.INI
2015-12-04 15:15 - 2009-07-14 09:44 - 00669004 _____ C:\Windows\system32\perfh005.dat
2015-12-04 15:15 - 2009-07-14 09:44 - 00141374 _____ C:\Windows\system32\perfc005.dat
2015-12-04 15:15 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\inf
2015-12-04 05:53 - 2014-10-26 15:49 - 00000000 ____D C:\Users\Lucka
2015-12-03 22:02 - 2014-11-24 13:41 - 00000000 ____D C:\Users\Lucka\AppData\LocalLow\Adobe
2015-12-02 21:59 - 2014-10-30 19:11 - 00001054 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5.lnk
2015-12-02 21:59 - 2014-10-30 19:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Glary Utilities 5
2015-12-02 21:58 - 2014-10-30 19:10 - 00017472 _____ (Glarysoft Ltd) C:\Windows\system32\Drivers\GUBootStartup.sys
2015-12-02 17:06 - 2014-10-27 10:51 - 00000000 ____D C:\Users\Lucka\Desktop\Vše
2015-12-02 08:38 - 2014-10-26 16:59 - 00435464 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2015-12-02 08:38 - 2014-10-26 16:59 - 00209432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2015-12-02 08:38 - 2014-10-26 16:59 - 00117200 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2015-12-02 08:38 - 2014-10-26 16:59 - 00081728 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2015-12-02 08:38 - 2014-10-26 16:59 - 00081168 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2015-12-02 08:38 - 2014-10-26 16:59 - 00049776 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2015-12-02 08:38 - 2014-10-26 16:59 - 00024016 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2015-12-02 08:35 - 2014-10-26 16:59 - 00794952 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2015-12-02 08:30 - 2014-10-27 12:14 - 00000000 ____D C:\Program Files\WinRAR
2015-12-01 21:46 - 2014-12-08 19:37 - 00000000 ____D C:\Users\Lucka\AppData\Roaming\Epson
2015-12-01 21:46 - 2014-10-26 16:15 - 00000000 ____D C:\Program Files\Google
2015-12-01 21:43 - 2015-01-04 19:06 - 00000000 ____D C:\Users\Pavel\AppData\Roaming\Skype
2015-12-01 21:02 - 2009-07-14 05:53 - 00032572 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2015-11-28 10:58 - 2014-10-26 17:46 - 00000000 ____D C:\Users\Pavel
2015-11-21 20:44 - 2014-10-26 18:42 - 00000000 ____D C:\ProgramData\Oracle
2015-11-21 19:42 - 2014-10-26 18:41 - 00000000 ____D C:\Program Files\Java
2015-11-21 19:41 - 2015-07-18 11:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-11-21 19:40 - 2015-09-03 14:49 - 00000000 ____D C:\Users\Lucka\.oracle_jre_usage
2015-11-21 19:39 - 2015-07-18 11:29 - 00095840 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2015-11-20 14:32 - 2015-09-03 15:40 - 00000000 ____D C:\Users\Pavel\.oracle_jre_usage
2015-11-19 10:09 - 2014-11-02 22:13 - 00000000 ____D C:\Program Files\Opera
2015-11-16 18:10 - 2014-10-26 18:40 - 00000000 ____D C:\Users\Pavel\Desktop\Všechno
2015-11-14 22:20 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\rescache
2015-11-14 15:41 - 2015-09-03 19:33 - 00000000 ____D C:\Users\Lucka\Desktop\shameless
2015-11-12 15:19 - 2009-07-14 05:33 - 00408248 _____ C:\Windows\system32\FNTCACHE.DAT
2015-11-11 20:56 - 2014-10-26 17:47 - 00000000 ____D C:\Users\Pavel\AppData\Local\Google
2015-11-11 14:46 - 2009-07-14 10:21 - 00000000 ____D C:\Program Files\Windows Journal
2015-11-11 14:07 - 2014-10-26 21:01 - 00000000 ____D C:\Windows\system32\MRT
2015-11-11 13:57 - 2014-10-26 21:00 - 143250520 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2015-11-11 13:57 - 2014-10-26 20:20 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-11-10 20:22 - 2014-10-30 16:47 - 00780488 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2015-11-10 20:22 - 2014-10-30 16:47 - 00142536 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2015-11-08 16:26 - 2014-11-24 13:36 - 00000000 ____D C:\Program Files\Common Files\Adobe
2015-11-08 16:26 - 2014-11-24 13:33 - 00000000 ____D C:\ProgramData\Adobe
2015-11-06 14:21 - 2015-04-18 12:30 - 00000000 ____D C:\Users\Lucka\Desktop\vytisknout

==================== Files in the root of some directories =======

2014-10-26 16:39 - 2014-10-26 16:39 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some files in TEMP:
====================
C:\Users\Lucka\AppData\Local\Temp\sfamcc00001.dll
C:\Users\Lucka\AppData\Local\Temp\sfamcc00002.dll
C:\Users\Lucka\AppData\Local\Temp\sfareca00001.dll
C:\Users\Lucka\AppData\Local\Temp\sfareca00002.dll
C:\Users\Lucka\AppData\Local\Temp\sfextra.dll
C:\Users\Pavel\AppData\Local\Temp\i4jdel0.exe
C:\Users\Pavel\AppData\Local\Temp\SkypeSetup.exe
C:\Users\Pavel\AppData\Local\Temp\{3DDA2A29-E60A-4387-85BC-CB6C783A875D}-46.0.2490.86_46.0.2490.80_chrome_updater.exe

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

==================== BCD ================================

Spr vce spouçtŘnˇ syst‚mu Windows
--------------------
identifik tor {bootmgr}
device partition=\Device\HarddiskVolume1
description Windows Boot Manager
locale cs-CZ
inherit {globalsettings}
default {current}
resumeobject {71e77d0e-5d1d-11e4-94e5-d8d724fa0249}
displayorder {current}
toolsdisplayorder {memdiag}
timeout 30

Zav dŘcˇ program pro spouçtŘnˇ syst‚mu Windows
-------------------
identifik tor {current}
device partition=C:
path \Windows\system32\winload.exe
description Windows 7
locale cs-CZ
inherit {bootloadersettings}
osdevice partition=C:
systemroot \Windows
resumeobject {71e77d0e-5d1d-11e4-94e5-d8d724fa0249}
nx OptIn

Obnovenˇ z hibernace
---------------------
identifik tor {71e77d0e-5d1d-11e4-94e5-d8d724fa0249}
device partition=C:
path \Windows\system32\winresume.exe
description Windows Resume Application
locale cs-CZ
inherit {resumeloadersettings}
filedevice partition=C:
filepath \hiberfil.sys
pae Yes
debugoptionenabled No

Testov nˇ pamŘti syst‚mu Windows
---------------------
identifik tor {memdiag}
device partition=\Device\HarddiskVolume1
path \boot\memtest.exe
description Diagnostika pamŘti syst‚mu Windows
locale cs-CZ
inherit {globalsettings}
badmemoryaccess Yes

Nastavenˇ slu§by EMS
------------
identifik tor {emssettings}
bootems Yes

Nastavenˇ ladicˇho programu
-----------------
identifik tor {dbgsettings}
debugtype Serial
debugport 1
baudrate 115200

Chyby pamŘti RAM
-----------
identifik tor {badmemory}

Glob lnˇ nastavenˇ
---------------
identifik tor {globalsettings}
inherit {dbgsettings}
{emssettings}
{badmemory}

Nastavenˇ spouçtŘcˇho zavadŘźe
--------------------
identifik tor {bootloadersettings}
inherit {globalsettings}
{hypervisorsettings}

Nastavenˇ hypervisoru
-------------------
identifik tor {hypervisorsettings}
hypervisordebugtype Serial
hypervisordebugport 1
hypervisorbaudrate 115200

Nastavenˇ zavadŘźe obnovenˇ
----------------------
identifik tor {resumeloadersettings}
inherit {globalsettings}

LastRegBack: 2015-11-30 20:09

==================== End of FRST.txt ============================

krtek17 · #10 Příspěvek od **krtek17** » 05 pro 2015 16:19

Teď jsem PC vysála, jestli to náhodou není prachem a tak, ..

#11 Příspěvek od **Rudy** » 05 pro 2015 17:07

krtek17 píše:Teď jsem PC vysála, jestli to náhodou není prachem a tak, ..

Tohle příště nedělejte, hlavně ne vysavačem. Můžete statikou zničit nějaký polovodič na zákl. desce.

Ano, je to ono. Otevřte poznámkový blok a zkopírujte do něj:

Start
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [596528 2015-11-09] (Oracle Corporation)
HKU\S-1-5-21-3413948337-2124065394-1896894750-1000\...\MountPoints2: {97dd485c-7a4f-11e4-85c1-001a92beb304} - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL E:\Common_Handset_USB_Driver.exe
HKU\S-1-5-21-3413948337-2124065394-1896894750-1000\...\MountPoints2: {9dd6ad66-5d1d-11e4-beaf-806e6f6e6963} - D:\Autorun.exe
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-3413948337-2124065394-1896894750-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKLM -> DefaultScope value is missing
SearchScopes: HKLM -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKU\S-1-5-21-3413948337-2124065394-1896894750-1000 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
S1 {d0e4096d-22f7-4d51-86f7-85e4dcb81f43}Gw; system32\drivers\{d0e4096d-22f7-4d51-86f7-85e4dcb81f43}Gw.sys [X]
C:\Windows\msdownld.tmp
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
C:\ProgramData\DP45977C.lfl
C:\Users\Lucka\AppData\Local\Temp
End

Uložte do C:\Users\Lucka\Downloads jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

krtek17 · #12 Příspěvek od **krtek17** » 05 pro 2015 20:55

Aha, omlouvám se, to jsem nevěděla že to můžu ještě zhoršit

Fix result of Farbar Recovery Scan Tool (x86) Version:05-12-2015
Ran by Lucka (2015-12-05 20:51:10) Run:1
Running from C:\Users\Lucka\Downloads
Loaded Profiles: Lucka (Available Profiles: Lucka & Pavel)
Boot Mode: Normal

==============================================

fixlist content:
*****************
Start
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [596528 2015-11-09] (Oracle Corporation)
HKU\S-1-5-21-3413948337-2124065394-1896894750-1000\...\MountPoints2: {97dd485c-7a4f-11e4-85c1-001a92beb304} - C:\Windows\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL E:\Common_Handset_USB_Driver.exe
HKU\S-1-5-21-3413948337-2124065394-1896894750-1000\...\MountPoints2: {9dd6ad66-5d1d-11e4-beaf-806e6f6e6963} - D:\Autorun.exe
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-3413948337-2124065394-1896894750-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKLM -> DefaultScope value is missing
SearchScopes: HKLM -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
SearchScopes: HKU\S-1-5-21-3413948337-2124065394-1896894750-1000 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=AVASDF&PC=AV01
S1 {d0e4096d-22f7-4d51-86f7-85e4dcb81f43}Gw; system32\drivers\{d0e4096d-22f7-4d51-86f7-85e4dcb81f43}Gw.sys [X]
C:\Windows\msdownld.tmp
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
C:\ProgramData\DP45977C.lfl
C:\Users\Lucka\AppData\Local\Temp
End
*****************

HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value removed successfully.
"HKU\S-1-5-21-3413948337-2124065394-1896894750-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{97dd485c-7a4f-11e4-85c1-001a92beb304}" => key removed successfully.
HKCR\CLSID\{97dd485c-7a4f-11e4-85c1-001a92beb304} => key not found.
"HKU\S-1-5-21-3413948337-2124065394-1896894750-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{9dd6ad66-5d1d-11e4-beaf-806e6f6e6963}" => key removed successfully.
HKCR\CLSID\{9dd6ad66-5d1d-11e4-beaf-806e6f6e6963} => key not found.
HKLM\Software\\Microsoft\Internet Explorer\Main\\Search Page => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Search_URL => value restored successfully
HKU\S-1-5-21-3413948337-2124065394-1896894750-1000\Software\Microsoft\Internet Explorer\Main\\Search Page => value restored successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{632F07F3-19A1-4d16-A23F-E6CE9486BAB5}" => key removed successfully.
HKCR\CLSID\{632F07F3-19A1-4d16-A23F-E6CE9486BAB5} => key not found.
"HKU\S-1-5-21-3413948337-2124065394-1896894750-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{632F07F3-19A1-4d16-A23F-E6CE9486BAB5}" => key removed successfully.
HKCR\CLSID\{632F07F3-19A1-4d16-A23F-E6CE9486BAB5} => key not found.
{d0e4096d-22f7-4d51-86f7-85e4dcb81f43}Gw => service removed successfully.
C:\Windows\msdownld.tmp => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 => moved successfully
C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 => moved successfully
C:\ProgramData\DP45977C.lfl => moved successfully

"C:\Users\Lucka\AppData\Local\Temp" folder move:

Could not move "C:\Users\Lucka\AppData\Local\Temp" => Scheduled to move on reboot.

Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 2015-12-05 20:53:12)

C:\Users\Lucka\AppData\Local\Temp => moved successfully

==== End of Fixlog 20:53:13 ====

krtek17 · #13 Příspěvek od **krtek17** » 05 pro 2015 21:15

Tak teď nevím co se stalo, ale když se mi Pc opět restartoval naběhlo tam toto.

#14 Příspěvek od **Rudy** » 05 pro 2015 21:56

Máte oper. systém legální?

krtek17 · #15 Příspěvek od **krtek17** » 05 pro 2015 21:57

jo, originál koupený, ale po tomto posledním restartu se mi ukazuje toto.

Achjo, co se to děje ?

VIRY.CZ

Samovolný restart PC-Moc prosím o pomoc

Samovolný restart PC-Moc prosím o pomoc

Re: Samovolný restart-Moc prosím o pomoc

Re: Samovolný restart PC-Moc prosím o pomoc

Re: Samovolný restart PC-Moc prosím o pomoc

Re: Samovolný restart PC-Moc prosím o pomoc

Re: Samovolný restart PC-Moc prosím o pomoc

Re: Samovolný restart PC-Moc prosím o pomoc

Re: Samovolný restart PC-Moc prosím o pomoc

Re: Samovolný restart PC-Moc prosím o pomoc

Re: Samovolný restart PC-Moc prosím o pomoc

Re: Samovolný restart PC-Moc prosím o pomoc

Re: Samovolný restart PC-Moc prosím o pomoc

Re: Samovolný restart PC-Moc prosím o pomoc

Re: Samovolný restart PC-Moc prosím o pomoc

Re: Samovolný restart PC-Moc prosím o pomoc