Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Zamrzá počítač

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
altrok
Moderátor
Moderátor
Příspěvky: 7322
Registrován: 15 lis 2012 22:26
Bydliště: Znojmo

Re: Zamrzá počítač

#16 Příspěvek od altrok »

:arrow: Disk neni v nejlepsi kondici... i to muze mit vliv...



:arrow: Ulozte na plochu rkill.exe, ukoncete vsechny aplikace a spustte - kdyby ho havet blokovala, pouzijte alternativni odkaz POZOR - TATO UTILITA MA VELKOU SCHOPNOST MAZAT - NESPOUSTEJTE JI BEZ DOPORUCENI RADCE
:arrow: Ulozte na plochu ComboFix.exe - http://download.bleepingcomputer.com/sUBs/ComboFix.exe
  • Vypnete antiviry a vsechny real-time ochrany
  • spustte ComboFix jako spravce (lepe pod uctem s administratorskym opravnenim)
  • s licencnimi podminkami souhlaste - Ano
  • pokud je nabidnuta instalace konzoly pro zotaveni, souhlaste
  • v prubehu skenovani nechte PC v klidu - nic nespoustejte a do okna ComboFixu neklikejte
  • vysledek skenu naleznete v C:\ComboFix.txt, jehoz obsah mi zkopirujte do pristi odpovedi.
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Nahoru
DanielAntos
Návštěvník
Návštěvník
Příspěvky: 39
Registrován: 11 bře 2016 23:00

Re: Zamrzá počítač

#17 Příspěvek od DanielAntos »

Je Rkill proveden správně?

Rkill 2.8.3 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2016 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 03/13/2016 05:38:12 PM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* No malware processes found to kill.

Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:
Nahoru
altrok
Moderátor
Moderátor
Příspěvky: 7322
Registrován: 15 lis 2012 22:26
Bydliště: Znojmo

Re: Zamrzá počítač

#18 Příspěvek od altrok »

Je-li log zkopirovan cely, tak neni - log musi koncit radkem o uspesnem ukonceni s informaci o delce trvani

Kód: Vybrat vše

Execution time: 0 hours(s), 1 minute(s), and 32 seconds(s)
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Nahoru
DanielAntos
Návštěvník
Návštěvník
Příspěvky: 39
Registrován: 11 bře 2016 23:00

Re: Zamrzá počítač

#19 Příspěvek od DanielAntos »

Dobře takže Rkill:

Rkill 2.8.3 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2016 BleepingComputer.com
More Information about Rkill can be found at this link:
http://www.bleepingcomputer.com/forums/topic308364.html

Program started at: 03/13/2016 06:06:41 PM in x64 mode.
Windows Version: Windows 7 Home Premium Service Pack 1

Checking for Windows services to stop:

* No malware services found to stop.

Checking for processes to terminate:

* No malware processes found to kill.

Checking Registry for malware related settings:

* No issues found in the Registry.

Resetting .EXE, .COM, & .BAT associations in the Windows Registry.

Performing miscellaneous checks:

* No issues found.

Checking Windows Service Integrity:

* No issues found.

Searching for Missing Digital Signatures:

* No issues found.

Checking HOSTS File:

* HOSTS file entries found:

127.0.0.1 localhost

Program finished at: 03/13/2016 06:07:04 PM
Execution time: 0 hours(s), 0 minute(s), and 23 seconds(s)


ComboFix:


ComboFix 16-03-07.01 - Dominik 13.03.2016 17:45:24.3.2 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.4061.2241 [GMT 1:00]
Spuštěný z: c:\users\Dominik\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
FW: avast! Antivirus *Disabled* {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\data
c:\programdata\7c54210602607b0157096ecc03c13b98_c
c:\programdata\ntuser.pol
c:\users\Dominik\AppData\Local\MSGBOX.EXE
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2016-02-13 do 2016-03-13 )))))))))))))))))))))))))))))))
.
.
2016-03-13 17:01 . 2016-03-13 17:01 -------- d-----w- c:\users\Public\AppData\Local\temp
2016-03-13 17:01 . 2016-03-13 17:01 -------- d-----w- c:\users\Guest\AppData\Local\temp
2016-03-13 17:01 . 2016-03-13 17:01 -------- d-----w- c:\users\Default\AppData\Local\temp
2016-03-13 13:16 . 2016-03-13 13:16 75888 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{BEE9C6C1-EBC0-400C-8DA7-C8B9AD977138}\offreg.1212.dll
2016-03-12 13:17 . 2016-03-13 13:20 192216 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2016-03-12 13:16 . 2016-03-12 13:16 -------- d-----w- c:\program files (x86)\Malwarebytes Anti-Malware
2016-03-12 13:16 . 2016-03-12 13:16 -------- d-----w- c:\programdata\Malwarebytes
2016-03-12 13:16 . 2015-10-05 08:50 63704 ----a-w- c:\windows\system32\drivers\mwac.sys
2016-03-12 13:16 . 2015-10-05 08:50 109272 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2016-03-12 13:16 . 2015-10-05 08:50 25816 ----a-w- c:\windows\system32\drivers\mbam.sys
2016-03-11 22:00 . 2016-03-11 22:00 75888 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{BEE9C6C1-EBC0-400C-8DA7-C8B9AD977138}\offreg.2344.dll
2016-03-11 21:58 . 2016-03-13 12:22 -------- d-----w- C:\FRST
2016-03-11 15:07 . 2016-02-19 01:53 11249080 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{BEE9C6C1-EBC0-400C-8DA7-C8B9AD977138}\mpengine.dll
2016-03-09 21:18 . 2016-02-05 01:19 381440 ----a-w- c:\windows\system32\mfds.dll
2016-03-09 21:17 . 2016-02-09 09:56 5120 ----a-w- c:\windows\system32\msdxm.ocx
2016-03-04 18:47 . 2016-03-04 18:47 -------- d-----w- c:\users\Dominik\AppData\Local\Fighters
2016-03-04 18:46 . 2016-03-04 18:49 -------- d-----w- c:\programdata\BSD
2016-03-04 18:40 . 2016-03-04 18:45 -------- d-----w- c:\users\Dominik\AppData\Roaming\Fighters
2016-03-04 18:40 . 2016-03-04 18:44 -------- d-----w- c:\program files (x86)\Fighters
2016-03-04 18:40 . 2016-03-04 18:44 -------- d-----w- c:\programdata\Fighters
2016-02-20 17:16 . 2016-03-13 15:19 -------- d-----w- C:\Counter-Strike 1.6
2016-02-20 11:17 . 2016-02-21 09:53 -------- d-----w- c:\users\Dominik\Counter-Strike 1.6
2016-02-12 19:39 . 2016-02-13 11:16 -------- d-----w- C:\WarThunder
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2016-03-09 22:18 . 2012-07-19 16:35 143659408 ----a-w- c:\windows\system32\MRT.exe
2016-03-09 17:02 . 2012-11-09 08:52 1070904 ----a-w- c:\windows\system32\drivers\aswsnx.sys
2016-03-09 17:02 . 2012-11-09 08:52 107792 ----a-w- c:\windows\system32\drivers\aswmonflt.sys
2016-02-23 14:36 . 2012-11-09 08:52 463744 ----a-w- c:\windows\system32\drivers\aswsp.sys
2016-02-11 18:48 . 2016-03-09 21:19 344064 ----a-w- c:\windows\system32\schannel.dll
2016-02-11 18:37 . 2016-03-09 21:19 251392 ----a-w- c:\windows\SysWow64\schannel.dll
2016-02-11 18:30 . 2016-03-09 21:19 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2016-02-11 14:07 . 2013-04-11 18:53 287016 ----a-w- c:\windows\system32\drivers\aswvmm.sys
2016-02-11 14:06 . 2016-02-11 14:06 398152 ----a-w- c:\windows\system32\aswBoot.exe
2016-02-11 14:06 . 2014-05-08 17:21 37656 ----a-w- c:\windows\system32\drivers\aswHwid.sys
2016-02-11 14:06 . 2014-03-20 20:59 165344 ----a-w- c:\windows\system32\drivers\aswStm.sys
2016-02-11 14:06 . 2013-04-11 18:53 74544 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2016-02-11 14:06 . 2012-11-09 08:52 103064 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2016-02-11 14:06 . 2016-02-11 14:06 52184 ----a-w- c:\windows\avastSS.scr
2016-02-11 14:05 . 2016-01-22 13:24 37144 ----a-w- c:\windows\system32\drivers\aswKbd.sys
2016-02-04 22:13 . 2016-02-04 22:13 875720 ----a-w- c:\windows\SysWow64\msvcr120_clr0400.dll
2016-02-04 22:13 . 2016-02-04 22:13 536776 ----a-w- c:\windows\SysWow64\msvcp120_clr0400.dll
2016-02-04 22:03 . 2016-02-04 22:03 869568 ----a-w- c:\windows\system32\msvcr120_clr0400.dll
2016-02-04 22:03 . 2016-02-04 22:03 678600 ----a-w- c:\windows\system32\msvcp120_clr0400.dll
2016-01-22 13:23 . 2016-01-22 13:23 466400 ----a-w- c:\windows\system32\drivers\aswNdisFlt.sys
2016-01-22 06:19 . 2016-02-10 16:14 14179840 ----a-w- c:\windows\system32\shell32.dll
2016-01-22 06:18 . 2016-02-10 16:15 961024 ----a-w- c:\windows\system32\CPFilters.dll
2016-01-22 06:18 . 2016-02-10 16:15 723968 ----a-w- c:\windows\system32\EncDec.dll
2016-01-22 06:17 . 2016-02-10 16:15 159744 ----a-w- c:\windows\system32\mtxoci.dll
2016-01-22 06:15 . 2016-02-10 16:13 1866752 ----a-w- c:\windows\system32\ExplorerFrame.dll
2016-01-22 06:12 . 2016-02-10 16:13 1940992 ----a-w- c:\windows\system32\authui.dll
2016-01-22 06:04 . 2016-02-10 16:15 642048 ----a-w- c:\windows\SysWow64\CPFilters.dll
2016-01-22 06:04 . 2016-02-10 16:15 535040 ----a-w- c:\windows\SysWow64\EncDec.dll
2016-01-22 06:02 . 2016-02-10 16:15 114176 ----a-w- c:\windows\SysWow64\mtxoci.dll
2016-01-22 06:02 . 2016-02-10 16:15 176128 ----a-w- c:\windows\SysWow64\msorcl32.dll
2016-01-22 06:00 . 2016-02-10 16:13 1498624 ----a-w- c:\windows\SysWow64\ExplorerFrame.dll
2016-01-22 05:59 . 2016-02-10 16:13 1805824 ----a-w- c:\windows\SysWow64\authui.dll
2016-01-22 05:19 . 2016-02-10 16:14 3231232 ----a-w- c:\windows\explorer.exe
2016-01-22 05:12 . 2016-02-10 16:13 2973184 ----a-w- c:\windows\SysWow64\explorer.exe
2016-01-16 19:01 . 2016-02-10 16:16 2085888 ----a-w- c:\windows\system32\ole32.dll
2016-01-16 18:36 . 2016-02-10 16:16 1413632 ----a-w- c:\windows\SysWow64\ole32.dll
2016-01-07 17:42 . 2016-02-10 16:16 141312 ----a-w- c:\windows\system32\drivers\mrxdav.sys
2016-01-06 19:02 . 2016-02-10 16:16 24576 ----a-w- c:\windows\system32\jnwmon.dll
2016-01-06 19:02 . 2016-02-10 16:16 275456 ----a-w- c:\windows\system32\InkEd.dll
2016-01-06 18:41 . 2016-02-10 16:16 216064 ----a-w- c:\windows\SysWow64\InkEd.dll
2015-12-16 21:52 . 2016-01-13 10:03 1763328 ----a-w- c:\windows\SysWow64\wininet.dll
2015-12-16 21:52 . 2016-01-13 10:03 513536 ----a-w- c:\windows\SysWow64\vbscript.dll
2015-12-16 21:51 . 2016-01-13 10:03 2793984 ----a-w- c:\windows\SysWow64\jscript9.dll
2015-12-16 21:51 . 2016-01-13 10:03 109056 ----a-w- c:\windows\SysWow64\iesysprep.dll
2015-12-16 21:51 . 2016-01-13 10:03 61440 ----a-w- c:\windows\SysWow64\iesetup.dll
2015-12-16 21:50 . 2016-01-13 10:03 1441280 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2015-12-16 20:14 . 2016-01-13 10:03 2706432 ----a-w- c:\windows\SysWow64\mshtml.tlb
2015-12-16 19:43 . 2016-01-13 10:03 361984 ----a-w- c:\windows\SysWow64\html.iec
2015-12-16 18:08 . 2016-01-13 10:03 719360 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll
2015-12-16 14:36 . 2016-01-13 10:03 51712 ----a-w- c:\windows\system32\ie4uinit.exe
2015-12-16 14:36 . 2016-01-13 10:03 2238976 ----a-w- c:\windows\system32\wininet.dll
2015-12-16 14:36 . 2016-01-13 10:03 592896 ----a-w- c:\windows\system32\vbscript.dll
2015-12-16 14:36 . 2016-01-13 10:03 1409536 ----a-w- c:\windows\system32\urlmon.dll
2015-12-16 14:36 . 2016-01-13 10:03 197120 ----a-w- c:\windows\system32\msrating.dll
2015-12-16 14:36 . 2016-01-13 10:03 19349504 ----a-w- c:\windows\system32\mshtml.dll
2015-12-16 14:36 . 2016-01-13 10:03 97280 ----a-w- c:\windows\system32\mshtmled.dll
2015-12-16 14:36 . 2016-01-13 10:03 603136 ----a-w- c:\windows\system32\msfeeds.dll
2015-12-16 14:35 . 2016-01-13 10:03 3805696 ----a-w- c:\windows\system32\jscript9.dll
2015-12-16 14:35 . 2016-01-13 10:03 857600 ----a-w- c:\windows\system32\jscript.dll
2015-12-16 14:35 . 2016-01-13 10:03 53248 ----a-w- c:\windows\system32\jsproxy.dll
2015-12-16 14:35 . 2016-01-13 10:03 15422976 ----a-w- c:\windows\system32\ieframe.dll
2015-12-16 14:35 . 2016-01-13 10:03 2658304 ----a-w- c:\windows\system32\iertutil.dll
2015-12-16 14:35 . 2016-01-13 10:03 526336 ----a-w- c:\windows\system32\ieui.dll
2015-12-16 14:35 . 2016-01-13 10:03 136704 ----a-w- c:\windows\system32\iesysprep.dll
2015-12-16 14:35 . 2016-01-13 10:03 39936 ----a-w- c:\windows\system32\iernonce.dll
2015-12-16 14:35 . 2016-01-13 10:03 67072 ----a-w- c:\windows\system32\iesetup.dll
2015-12-16 14:35 . 2016-01-13 10:03 255488 ----a-w- c:\windows\system32\iedkcs32.dll
2015-12-16 14:35 . 2016-01-13 10:03 281600 ----a-w- c:\windows\system32\dxtrans.dll
2015-12-16 14:35 . 2016-01-13 10:03 451584 ----a-w- c:\windows\system32\dxtmsft.dll
2015-12-16 14:35 . 2016-01-13 10:03 1509376 ----a-w- c:\windows\system32\inetcpl.cpl
2003-04-30 14:17 . 2012-06-07 19:28 212992 ----a-r- c:\program files (x86)\setup.bin
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\1AMPCBOK]
@="{04cd1f3e-81d5-4904-a3ab-e0f99a7d769d}"
[HKEY_CLASSES_ROOT\CLSID\{04cd1f3e-81d5-4904-a3ab-e0f99a7d769d}]
2010-11-04 15:58 297808 ----a-w- c:\windows\System32\mscoree.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-11 02:09 131248 ----a-w- c:\users\Dominik\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-11 02:09 131248 ----a-w- c:\users\Dominik\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-11 02:09 131248 ----a-w- c:\users\Dominik\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-11 02:09 131248 ----a-w- c:\users\Dominik\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"HDAudDeck"="c:\program files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" [2009-07-13 2244096]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2016-03-09 7137664]
"BlueStacks Agent"="c:\program files (x86)\BlueStacks\HD-Agent.exe" [2014-07-22 835288]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"SoftwareSASGeneration"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\persistentroutes]
"62.75.206.182,255.255.255.255,10.0.0.3,1"=""
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer1"=wdmaud.drv
.
R2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys;c:\windows\SYSNATIVE\drivers\aswStm.sys [x]
R2 BstHdAndroidSvc;BlueStacks Android Service;c:\program files (x86)\BlueStacks\HD-Service.exe BstHdAndroidSvc Android;c:\program files (x86)\BlueStacks\HD-Service.exe BstHdAndroidSvc Android [x]
R2 BstHdLogRotatorSvc;BlueStacks Log Rotator Service;c:\program files (x86)\BlueStacks\HD-LogRotatorService.exe;c:\program files (x86)\BlueStacks\HD-LogRotatorService.exe [x]
R2 BstHdUpdaterSvc;BlueStacks Updater Service;c:\program files (x86)\BlueStacks\HD-UpdaterService.exe;c:\program files (x86)\BlueStacks\HD-UpdaterService.exe [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 IMPI Updater;IMPI Updater;c:\program files\IMPI\ExtensionUpdaterService.exe;c:\program files\IMPI\ExtensionUpdaterService.exe [x]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\DRIVERS\htcnprot.sys;c:\windows\SYSNATIVE\DRIVERS\htcnprot.sys [x]
R3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys;c:\windows\SYSNATIVE\drivers\mwac.sys [x]
R3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des;c:\windows\SYSNATIVE\GameMon.des [x]
R3 Origin Client Service;Origin Client Service;c:\program files (x86)\Origin\OriginClientService.exe;c:\program files (x86)\Origin\OriginClientService.exe [x]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]
R3 s1039bus;Sony Ericsson Device 1039 driver (WDM);c:\windows\system32\DRIVERS\s1039bus.sys;c:\windows\SYSNATIVE\DRIVERS\s1039bus.sys [x]
R3 s1039mdfl;Sony Ericsson Device 1039 USB WMC Modem Filter;c:\windows\system32\DRIVERS\s1039mdfl.sys;c:\windows\SYSNATIVE\DRIVERS\s1039mdfl.sys [x]
R3 s1039mdm;Sony Ericsson Device 1039 USB WMC Modem Driver;c:\windows\system32\DRIVERS\s1039mdm.sys;c:\windows\SYSNATIVE\DRIVERS\s1039mdm.sys [x]
R3 s1039mgmt;Sony Ericsson Device 1039 USB WMC Device Management Drivers (WDM);c:\windows\system32\DRIVERS\s1039mgmt.sys;c:\windows\SYSNATIVE\DRIVERS\s1039mgmt.sys [x]
R3 s1039nd5;Sony Ericsson Device 1039 USB Ethernet Emulation (NDIS);c:\windows\system32\DRIVERS\s1039nd5.sys;c:\windows\SYSNATIVE\DRIVERS\s1039nd5.sys [x]
R3 s1039obex;Sony Ericsson Device 1039 USB WMC OBEX Interface;c:\windows\system32\DRIVERS\s1039obex.sys;c:\windows\SYSNATIVE\DRIVERS\s1039obex.sys [x]
R3 s1039unic;Sony Ericsson Device 1039 USB Ethernet Emulation (WDM);c:\windows\system32\DRIVERS\s1039unic.sys;c:\windows\SYSNATIVE\DRIVERS\s1039unic.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 WinRing0_1_2_0;WinRing0_1_2_0;c:\program files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys;c:\program files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys [x]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S0 FSProFilter;FSPro File Filter;c:\windows\System32\Drivers\FSPFltd.sys;c:\windows\SYSNATIVE\Drivers\FSPFltd.sys [x]
S1 aswKbd;aswKbd;c:\windows\system32\drivers\aswKbd.sys;c:\windows\SYSNATIVE\drivers\aswKbd.sys [x]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys;c:\windows\SYSNATIVE\drivers\aswSnx.sys [x]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys;c:\windows\SYSNATIVE\drivers\aswSP.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys;c:\windows\SYSNATIVE\drivers\aswHwid.sys [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 PassThru Service;Internet Pass-Through Service;c:\program files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe;c:\program files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [x]
S2 TeamViewer6;TeamViewer 6;c:\program files (x86)\TeamViewer\Version6\TeamViewer_Service.exe;c:\program files (x86)\TeamViewer\Version6\TeamViewer_Service.exe [x]
S2 TeamViewer7;TeamViewer 7;c:\program files (x86)\TeamViewer\Version7\TeamViewer_Service.exe;c:\program files (x86)\TeamViewer\Version7\TeamViewer_Service.exe [x]
S2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [x]
S2 WCMVCAM;WebcamMax, WDM Video Capture;c:\windows\system32\DRIVERS\wcmvcam64.sys;c:\windows\SYSNATIVE\DRIVERS\wcmvcam64.sys [x]
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys;c:\windows\SYSNATIVE\DRIVERS\ETD.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 VCSVADHWSer;Avnex Virtual Audio Device (WDM);c:\windows\system32\DRIVERS\vcsvad.sys;c:\windows\SYSNATIVE\DRIVERS\vcsvad.sys [x]
S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys;c:\windows\SYSNATIVE\drivers\viahduaa.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2016-02-19 20:37 1088664 ----a-w- c:\program files (x86)\Google\Chrome\Application\48.0.2564.116\Installer\chrmstp.exe
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco1]
@="{AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47}"
[HKEY_CLASSES_ROOT\CLSID\{AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47}]
2013-08-30 08:01 3358064 ----a-w- c:\program files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_v_1_1_0_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco2]
@="{853B7E05-C47D-4985-909A-D0DC5C6D7303}"
[HKEY_CLASSES_ROOT\CLSID\{853B7E05-C47D-4985-909A-D0DC5C6D7303}]
2013-08-30 08:01 3358064 ----a-w- c:\program files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_v_1_1_0_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco3]
@="{42D38F2E-98E9-4382-B546-E24E4D6D04BB}"
[HKEY_CLASSES_ROOT\CLSID\{42D38F2E-98E9-4382-B546-E24E4D6D04BB}]
2013-08-30 08:01 3358064 ----a-w- c:\program files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_v_1_1_0_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2016-02-11 14:06 905248 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\1AMPCBOK]
@="{04cd1f3e-81d5-4904-a3ab-e0f99a7d769d}"
[HKEY_CLASSES_ROOT\CLSID\{04cd1f3e-81d5-4904-a3ab-e0f99a7d769d}]
2010-11-04 15:57 444752 ----a-w- c:\windows\System32\mscoree.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-02-11 162328]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-02-11 386584]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-02-11 417304]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2013-06-13 472984]
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\persistentroutes]
"62.75.206.182,255.255.255.255,10.0.0.3,1"=""
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = https://www.seznam.cz/?clid=22668
mStart Page = https://www.seznam.cz/?clid=22668
mSearch Page = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
mSearch Bar = https://www.seznam.cz/?clid=22668
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~3\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~3\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 10.0.0.138
FF - ProfilePath - c:\users\Dominik\AppData\Roaming\Mozilla\Firefox\Profiles\loc3dukj.default\
FF - prefs.js: browser.search.defaulturl - hxxps://www.google.com/search
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - www.google.com
FF - prefs.js: keyword.URL - hxxps://www.google.com/search
FF - ExtSQL: 2016-01-22 14:24; sp@avast.com; c:\program files\AVAST Software\Avast\SafePrice\FF
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-10 - (no file)
AddRemove-GotClip - c:\program files (x86)\GotClip\uninstall.exe
AddRemove-PunkBusterSvc - c:\windows\system32\pbsvc.exe
AddRemove-Rich Media Player - c:\users\Dominik\AppData\Local\Rich Media Player\uninstall.exe
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\npggsvc]
"ImagePath"="c:\windows\system32\GameMon.des -service"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\software\BlueStacks]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*1*]
@="?????????????????? v1"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*1*\CLSID]
@="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*2*]
@="?????????????????? v2"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*2*\CLSID]
@="{9BE31822-FDAD-461B-AD51-BE1D1C159921}"
.
Celkový čas: 2016-03-13 18:05:49
ComboFix-quarantined-files.txt 2016-03-13 17:05
.
Před spuštěním: Volných bajtů: 91 449 831 424
Po spuštění: Volných bajtů: 90 650 963 968
.
- - End Of File - - 56ABA687CB699604A12AF6899C4736F7
A36C5E4F47E84449FF07ED3517B43A31
Nahoru
altrok
Moderátor
Moderátor
Příspěvky: 7322
Registrován: 15 lis 2012 22:26
Bydliště: Znojmo

Re: Zamrzá počítač

#20 Příspěvek od altrok »

:arrow: Pokud jeste nemate, presunte ComboFix na plochu.
  • Otevrete Poznamkovy blok (Start -> Spustit -> notepad)
  • zkopirujte do nej skript nize a ulozte na plochu jako CFScript (Typ souboru: Textovy dokument)

    Kód: Vybrat vše

    KillAll::

RegLock::
[HKEY_LOCAL_MACHINE\software\BlueStacks]

RegNull::
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*1*]
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*2*]

ClearJavaCache::

Reboot::
  • Tento CFScript.txt chytte, doslova pretahnete nad ikonu ComboFixu a pustte.
    Obrázek
  • Po restartu na Vas vyskoci log, jehoz obsah mi vlozte do dalsi odpovedi.
:arrow: Pokud vyskoci hlaska "Pokus pouzit neplatnou operaci na klic registru, ktery je oznacen pro odstraneni", tak jen restartujte PC - registr se da do kupy - jedna se o vnitrni chybu, kterou zpusobuje CF a autor ji zatim neumi bohuzel opravit

:arrow: Muze se stat, ze po aplikaci skriptu nenabehnou Windows. V tomto pripade restartuje PC a mackejte F8 a zvolte Posledni znamou konfiguraci
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Nahoru
DanielAntos
Návštěvník
Návštěvník
Příspěvky: 39
Registrován: 11 bře 2016 23:00

Re: Zamrzá počítač

#21 Příspěvek od DanielAntos »

Zde je Log

ComboFix 16-03-07.01 - Dominik 13.03.2016 22:56:28.4.2 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.4061.2324 [GMT 1:00]
Spuštěný z: c:\users\Dominik\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Dominik\Desktop\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
FW: avast! Antivirus *Disabled* {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2016-02-13 do 2016-03-13 )))))))))))))))))))))))))))))))
.
.
2016-03-13 22:10 . 2016-03-13 22:10 -------- d-----w- c:\users\Public\AppData\Local\temp
2016-03-13 22:10 . 2016-03-13 22:10 -------- d-----w- c:\users\HomeGroupUser$\AppData\Local\temp
2016-03-13 22:10 . 2016-03-13 22:10 -------- d-----w- c:\users\Guest\AppData\Local\temp
2016-03-13 22:10 . 2016-03-13 22:10 -------- d-----w- c:\users\Default\AppData\Local\temp
2016-03-13 22:10 . 2016-03-13 22:10 -------- d-----w- c:\users\Administrator\AppData\Local\temp
2016-03-13 13:16 . 2016-03-13 13:16 75888 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{BEE9C6C1-EBC0-400C-8DA7-C8B9AD977138}\offreg.1212.dll
2016-03-12 13:17 . 2016-03-13 13:20 192216 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2016-03-12 13:16 . 2016-03-12 13:16 -------- d-----w- c:\program files (x86)\Malwarebytes Anti-Malware
2016-03-12 13:16 . 2016-03-12 13:16 -------- d-----w- c:\programdata\Malwarebytes
2016-03-12 13:16 . 2015-10-05 08:50 63704 ----a-w- c:\windows\system32\drivers\mwac.sys
2016-03-12 13:16 . 2015-10-05 08:50 109272 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2016-03-12 13:16 . 2015-10-05 08:50 25816 ----a-w- c:\windows\system32\drivers\mbam.sys
2016-03-11 22:00 . 2016-03-11 22:00 75888 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{BEE9C6C1-EBC0-400C-8DA7-C8B9AD977138}\offreg.2344.dll
2016-03-11 21:58 . 2016-03-13 12:22 -------- d-----w- C:\FRST
2016-03-11 15:07 . 2016-02-19 01:53 11249080 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{BEE9C6C1-EBC0-400C-8DA7-C8B9AD977138}\mpengine.dll
2016-03-09 21:18 . 2016-02-05 01:19 381440 ----a-w- c:\windows\system32\mfds.dll
2016-03-09 21:17 . 2016-02-09 09:56 5120 ----a-w- c:\windows\system32\msdxm.ocx
2016-03-04 18:47 . 2016-03-04 18:47 -------- d-----w- c:\users\Dominik\AppData\Local\Fighters
2016-03-04 18:46 . 2016-03-04 18:49 -------- d-----w- c:\programdata\BSD
2016-03-04 18:40 . 2016-03-04 18:45 -------- d-----w- c:\users\Dominik\AppData\Roaming\Fighters
2016-03-04 18:40 . 2016-03-04 18:44 -------- d-----w- c:\program files (x86)\Fighters
2016-03-04 18:40 . 2016-03-04 18:44 -------- d-----w- c:\programdata\Fighters
2016-02-20 17:16 . 2016-03-13 15:19 -------- d-----w- C:\Counter-Strike 1.6
2016-02-20 11:17 . 2016-02-21 09:53 -------- d-----w- c:\users\Dominik\Counter-Strike 1.6
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2016-03-09 22:18 . 2012-07-19 16:35 143659408 ----a-w- c:\windows\system32\MRT.exe
2016-03-09 17:02 . 2012-11-09 08:52 1070904 ----a-w- c:\windows\system32\drivers\aswsnx.sys
2016-03-09 17:02 . 2012-11-09 08:52 107792 ----a-w- c:\windows\system32\drivers\aswmonflt.sys
2016-02-23 14:36 . 2012-11-09 08:52 463744 ----a-w- c:\windows\system32\drivers\aswsp.sys
2016-02-11 18:48 . 2016-03-09 21:19 344064 ----a-w- c:\windows\system32\schannel.dll
2016-02-11 18:37 . 2016-03-09 21:19 251392 ----a-w- c:\windows\SysWow64\schannel.dll
2016-02-11 18:30 . 2016-03-09 21:19 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2016-02-11 14:07 . 2013-04-11 18:53 287016 ----a-w- c:\windows\system32\drivers\aswvmm.sys
2016-02-11 14:06 . 2016-02-11 14:06 398152 ----a-w- c:\windows\system32\aswBoot.exe
2016-02-11 14:06 . 2014-05-08 17:21 37656 ----a-w- c:\windows\system32\drivers\aswHwid.sys
2016-02-11 14:06 . 2014-03-20 20:59 165344 ----a-w- c:\windows\system32\drivers\aswStm.sys
2016-02-11 14:06 . 2013-04-11 18:53 74544 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2016-02-11 14:06 . 2012-11-09 08:52 103064 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2016-02-11 14:06 . 2016-02-11 14:06 52184 ----a-w- c:\windows\avastSS.scr
2016-02-11 14:05 . 2016-01-22 13:24 37144 ----a-w- c:\windows\system32\drivers\aswKbd.sys
2016-02-04 22:13 . 2016-02-04 22:13 875720 ----a-w- c:\windows\SysWow64\msvcr120_clr0400.dll
2016-02-04 22:13 . 2016-02-04 22:13 536776 ----a-w- c:\windows\SysWow64\msvcp120_clr0400.dll
2016-02-04 22:03 . 2016-02-04 22:03 869568 ----a-w- c:\windows\system32\msvcr120_clr0400.dll
2016-02-04 22:03 . 2016-02-04 22:03 678600 ----a-w- c:\windows\system32\msvcp120_clr0400.dll
2016-01-22 13:23 . 2016-01-22 13:23 466400 ----a-w- c:\windows\system32\drivers\aswNdisFlt.sys
2016-01-22 06:19 . 2016-02-10 16:14 14179840 ----a-w- c:\windows\system32\shell32.dll
2016-01-22 06:18 . 2016-02-10 16:15 961024 ----a-w- c:\windows\system32\CPFilters.dll
2016-01-22 06:18 . 2016-02-10 16:15 723968 ----a-w- c:\windows\system32\EncDec.dll
2016-01-22 06:17 . 2016-02-10 16:15 159744 ----a-w- c:\windows\system32\mtxoci.dll
2016-01-22 06:15 . 2016-02-10 16:13 1866752 ----a-w- c:\windows\system32\ExplorerFrame.dll
2016-01-22 06:12 . 2016-02-10 16:13 1940992 ----a-w- c:\windows\system32\authui.dll
2016-01-22 06:04 . 2016-02-10 16:15 642048 ----a-w- c:\windows\SysWow64\CPFilters.dll
2016-01-22 06:04 . 2016-02-10 16:15 535040 ----a-w- c:\windows\SysWow64\EncDec.dll
2016-01-22 06:02 . 2016-02-10 16:15 114176 ----a-w- c:\windows\SysWow64\mtxoci.dll
2016-01-22 06:02 . 2016-02-10 16:15 176128 ----a-w- c:\windows\SysWow64\msorcl32.dll
2016-01-22 06:00 . 2016-02-10 16:13 1498624 ----a-w- c:\windows\SysWow64\ExplorerFrame.dll
2016-01-22 05:59 . 2016-02-10 16:13 1805824 ----a-w- c:\windows\SysWow64\authui.dll
2016-01-22 05:19 . 2016-02-10 16:14 3231232 ----a-w- c:\windows\explorer.exe
2016-01-22 05:12 . 2016-02-10 16:13 2973184 ----a-w- c:\windows\SysWow64\explorer.exe
2016-01-16 19:01 . 2016-02-10 16:16 2085888 ----a-w- c:\windows\system32\ole32.dll
2016-01-16 18:36 . 2016-02-10 16:16 1413632 ----a-w- c:\windows\SysWow64\ole32.dll
2016-01-07 17:42 . 2016-02-10 16:16 141312 ----a-w- c:\windows\system32\drivers\mrxdav.sys
2016-01-06 19:02 . 2016-02-10 16:16 24576 ----a-w- c:\windows\system32\jnwmon.dll
2016-01-06 19:02 . 2016-02-10 16:16 275456 ----a-w- c:\windows\system32\InkEd.dll
2016-01-06 18:41 . 2016-02-10 16:16 216064 ----a-w- c:\windows\SysWow64\InkEd.dll
2015-12-16 21:52 . 2016-01-13 10:03 1763328 ----a-w- c:\windows\SysWow64\wininet.dll
2015-12-16 21:52 . 2016-01-13 10:03 513536 ----a-w- c:\windows\SysWow64\vbscript.dll
2015-12-16 21:51 . 2016-01-13 10:03 2793984 ----a-w- c:\windows\SysWow64\jscript9.dll
2015-12-16 21:51 . 2016-01-13 10:03 109056 ----a-w- c:\windows\SysWow64\iesysprep.dll
2015-12-16 21:51 . 2016-01-13 10:03 61440 ----a-w- c:\windows\SysWow64\iesetup.dll
2015-12-16 21:50 . 2016-01-13 10:03 1441280 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2015-12-16 20:14 . 2016-01-13 10:03 2706432 ----a-w- c:\windows\SysWow64\mshtml.tlb
2015-12-16 19:43 . 2016-01-13 10:03 361984 ----a-w- c:\windows\SysWow64\html.iec
2015-12-16 18:08 . 2016-01-13 10:03 719360 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll
2015-12-16 14:36 . 2016-01-13 10:03 51712 ----a-w- c:\windows\system32\ie4uinit.exe
2015-12-16 14:36 . 2016-01-13 10:03 2238976 ----a-w- c:\windows\system32\wininet.dll
2015-12-16 14:36 . 2016-01-13 10:03 592896 ----a-w- c:\windows\system32\vbscript.dll
2015-12-16 14:36 . 2016-01-13 10:03 1409536 ----a-w- c:\windows\system32\urlmon.dll
2015-12-16 14:36 . 2016-01-13 10:03 197120 ----a-w- c:\windows\system32\msrating.dll
2015-12-16 14:36 . 2016-01-13 10:03 19349504 ----a-w- c:\windows\system32\mshtml.dll
2015-12-16 14:36 . 2016-01-13 10:03 97280 ----a-w- c:\windows\system32\mshtmled.dll
2015-12-16 14:36 . 2016-01-13 10:03 603136 ----a-w- c:\windows\system32\msfeeds.dll
2015-12-16 14:35 . 2016-01-13 10:03 3805696 ----a-w- c:\windows\system32\jscript9.dll
2015-12-16 14:35 . 2016-01-13 10:03 857600 ----a-w- c:\windows\system32\jscript.dll
2015-12-16 14:35 . 2016-01-13 10:03 53248 ----a-w- c:\windows\system32\jsproxy.dll
2015-12-16 14:35 . 2016-01-13 10:03 15422976 ----a-w- c:\windows\system32\ieframe.dll
2015-12-16 14:35 . 2016-01-13 10:03 2658304 ----a-w- c:\windows\system32\iertutil.dll
2015-12-16 14:35 . 2016-01-13 10:03 526336 ----a-w- c:\windows\system32\ieui.dll
2015-12-16 14:35 . 2016-01-13 10:03 136704 ----a-w- c:\windows\system32\iesysprep.dll
2015-12-16 14:35 . 2016-01-13 10:03 39936 ----a-w- c:\windows\system32\iernonce.dll
2015-12-16 14:35 . 2016-01-13 10:03 67072 ----a-w- c:\windows\system32\iesetup.dll
2015-12-16 14:35 . 2016-01-13 10:03 255488 ----a-w- c:\windows\system32\iedkcs32.dll
2015-12-16 14:35 . 2016-01-13 10:03 281600 ----a-w- c:\windows\system32\dxtrans.dll
2015-12-16 14:35 . 2016-01-13 10:03 451584 ----a-w- c:\windows\system32\dxtmsft.dll
2015-12-16 14:35 . 2016-01-13 10:03 1509376 ----a-w- c:\windows\system32\inetcpl.cpl
2003-04-30 14:17 . 2012-06-07 19:28 212992 ----a-r- c:\program files (x86)\setup.bin
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\1AMPCBOK]
@="{04cd1f3e-81d5-4904-a3ab-e0f99a7d769d}"
[HKEY_CLASSES_ROOT\CLSID\{04cd1f3e-81d5-4904-a3ab-e0f99a7d769d}]
2010-11-04 15:58 297808 ----a-w- c:\windows\System32\mscoree.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-11 02:09 131248 ----a-w- c:\users\Dominik\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-11 02:09 131248 ----a-w- c:\users\Dominik\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-11 02:09 131248 ----a-w- c:\users\Dominik\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-11 02:09 131248 ----a-w- c:\users\Dominik\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"HDAudDeck"="c:\program files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" [2009-07-13 2244096]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2016-03-09 7137664]
"BlueStacks Agent"="c:\program files (x86)\BlueStacks\HD-Agent.exe" [2014-07-22 835288]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"SoftwareSASGeneration"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\persistentroutes]
"62.75.206.182,255.255.255.255,10.0.0.3,1"=""
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer1"=wdmaud.drv
.
R2 BstHdAndroidSvc;BlueStacks Android Service;c:\program files (x86)\BlueStacks\HD-Service.exe BstHdAndroidSvc Android;c:\program files (x86)\BlueStacks\HD-Service.exe BstHdAndroidSvc Android [x]
R2 BstHdLogRotatorSvc;BlueStacks Log Rotator Service;c:\program files (x86)\BlueStacks\HD-LogRotatorService.exe;c:\program files (x86)\BlueStacks\HD-LogRotatorService.exe [x]
R2 BstHdUpdaterSvc;BlueStacks Updater Service;c:\program files (x86)\BlueStacks\HD-UpdaterService.exe;c:\program files (x86)\BlueStacks\HD-UpdaterService.exe [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 IMPI Updater;IMPI Updater;c:\program files\IMPI\ExtensionUpdaterService.exe;c:\program files\IMPI\ExtensionUpdaterService.exe [x]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\DRIVERS\htcnprot.sys;c:\windows\SYSNATIVE\DRIVERS\htcnprot.sys [x]
R3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys;c:\windows\SYSNATIVE\drivers\mwac.sys [x]
R3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des;c:\windows\SYSNATIVE\GameMon.des [x]
R3 Origin Client Service;Origin Client Service;c:\program files (x86)\Origin\OriginClientService.exe;c:\program files (x86)\Origin\OriginClientService.exe [x]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]
R3 s1039bus;Sony Ericsson Device 1039 driver (WDM);c:\windows\system32\DRIVERS\s1039bus.sys;c:\windows\SYSNATIVE\DRIVERS\s1039bus.sys [x]
R3 s1039mdfl;Sony Ericsson Device 1039 USB WMC Modem Filter;c:\windows\system32\DRIVERS\s1039mdfl.sys;c:\windows\SYSNATIVE\DRIVERS\s1039mdfl.sys [x]
R3 s1039mdm;Sony Ericsson Device 1039 USB WMC Modem Driver;c:\windows\system32\DRIVERS\s1039mdm.sys;c:\windows\SYSNATIVE\DRIVERS\s1039mdm.sys [x]
R3 s1039mgmt;Sony Ericsson Device 1039 USB WMC Device Management Drivers (WDM);c:\windows\system32\DRIVERS\s1039mgmt.sys;c:\windows\SYSNATIVE\DRIVERS\s1039mgmt.sys [x]
R3 s1039nd5;Sony Ericsson Device 1039 USB Ethernet Emulation (NDIS);c:\windows\system32\DRIVERS\s1039nd5.sys;c:\windows\SYSNATIVE\DRIVERS\s1039nd5.sys [x]
R3 s1039obex;Sony Ericsson Device 1039 USB WMC OBEX Interface;c:\windows\system32\DRIVERS\s1039obex.sys;c:\windows\SYSNATIVE\DRIVERS\s1039obex.sys [x]
R3 s1039unic;Sony Ericsson Device 1039 USB Ethernet Emulation (WDM);c:\windows\system32\DRIVERS\s1039unic.sys;c:\windows\SYSNATIVE\DRIVERS\s1039unic.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 WinRing0_1_2_0;WinRing0_1_2_0;c:\program files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys;c:\program files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys [x]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S0 FSProFilter;FSPro File Filter;c:\windows\System32\Drivers\FSPFltd.sys;c:\windows\SYSNATIVE\Drivers\FSPFltd.sys [x]
S1 aswKbd;aswKbd;c:\windows\system32\drivers\aswKbd.sys;c:\windows\SYSNATIVE\drivers\aswKbd.sys [x]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys;c:\windows\SYSNATIVE\drivers\aswSnx.sys [x]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys;c:\windows\SYSNATIVE\drivers\aswSP.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys;c:\windows\SYSNATIVE\drivers\aswHwid.sys [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys;c:\windows\SYSNATIVE\drivers\aswStm.sys [x]
S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 PassThru Service;Internet Pass-Through Service;c:\program files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe;c:\program files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [x]
S2 TeamViewer6;TeamViewer 6;c:\program files (x86)\TeamViewer\Version6\TeamViewer_Service.exe;c:\program files (x86)\TeamViewer\Version6\TeamViewer_Service.exe [x]
S2 TeamViewer7;TeamViewer 7;c:\program files (x86)\TeamViewer\Version7\TeamViewer_Service.exe;c:\program files (x86)\TeamViewer\Version7\TeamViewer_Service.exe [x]
S2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe;c:\program files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [x]
S2 WCMVCAM;WebcamMax, WDM Video Capture;c:\windows\system32\DRIVERS\wcmvcam64.sys;c:\windows\SYSNATIVE\DRIVERS\wcmvcam64.sys [x]
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys;c:\windows\SYSNATIVE\DRIVERS\ETD.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 VCSVADHWSer;Avnex Virtual Audio Device (WDM);c:\windows\system32\DRIVERS\vcsvad.sys;c:\windows\SYSNATIVE\DRIVERS\vcsvad.sys [x]
S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys;c:\windows\SYSNATIVE\drivers\viahduaa.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2016-02-19 20:37 1088664 ----a-w- c:\program files (x86)\Google\Chrome\Application\48.0.2564.116\Installer\chrmstp.exe
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco1]
@="{AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47}"
[HKEY_CLASSES_ROOT\CLSID\{AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47}]
2013-08-30 08:01 3358064 ----a-w- c:\program files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_v_1_1_0_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco2]
@="{853B7E05-C47D-4985-909A-D0DC5C6D7303}"
[HKEY_CLASSES_ROOT\CLSID\{853B7E05-C47D-4985-909A-D0DC5C6D7303}]
2013-08-30 08:01 3358064 ----a-w- c:\program files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_v_1_1_0_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco3]
@="{42D38F2E-98E9-4382-B546-E24E4D6D04BB}"
[HKEY_CLASSES_ROOT\CLSID\{42D38F2E-98E9-4382-B546-E24E4D6D04BB}]
2013-08-30 08:01 3358064 ----a-w- c:\program files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_v_1_1_0_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2016-02-11 14:06 905248 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\1AMPCBOK]
@="{04cd1f3e-81d5-4904-a3ab-e0f99a7d769d}"
[HKEY_CLASSES_ROOT\CLSID\{04cd1f3e-81d5-4904-a3ab-e0f99a7d769d}]
2010-11-04 15:57 444752 ----a-w- c:\windows\System32\mscoree.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-02-11 162328]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-02-11 386584]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-02-11 417304]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2013-06-13 472984]
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\persistentroutes]
"62.75.206.182,255.255.255.255,10.0.0.3,1"=""
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = https://www.seznam.cz/?clid=22668
mStart Page = https://www.seznam.cz/?clid=22668
mSearch Page = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
mSearch Bar = https://www.seznam.cz/?clid=22668
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~3\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~3\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 10.0.0.138
FF - ProfilePath - c:\users\Dominik\AppData\Roaming\Mozilla\Firefox\Profiles\loc3dukj.default\
FF - prefs.js: browser.search.defaulturl - hxxps://www.google.com/search
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - www.google.com
FF - prefs.js: keyword.URL - hxxps://www.google.com/search
FF - ExtSQL: 2016-01-22 14:24; sp@avast.com; c:\program files\AVAST Software\Avast\SafePrice\FF
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-10 - (no file)
AddRemove-GotClip - c:\program files (x86)\GotClip\uninstall.exe
AddRemove-PunkBusterSvc - c:\windows\system32\pbsvc.exe
AddRemove-Rich Media Player - c:\users\Dominik\AppData\Local\Rich Media Player\uninstall.exe
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\npggsvc]
"ImagePath"="c:\windows\system32\GameMon.des -service"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\software\BlueStacks]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*1*]
@="?????????????????? v1"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*1*\CLSID]
@="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*2*]
@="?????????????????? v2"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*2*\CLSID]
@="{9BE31822-FDAD-461B-AD51-BE1D1C159921}"
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files (x86)\Bonjour\mDNSResponder.exe
c:\windows\SysWOW64\PnkBstrA.exe
c:\program files (x86)\Google\Update\GoogleUpdate.exe
.
**************************************************************************
.
Celkový čas: 2016-03-13 23:21:38 - počítač byl restartován
ComboFix-quarantined-files.txt 2016-03-13 22:21
.
Před spuštěním: Volných bajtů: 89 667 145 728
Po spuštění: Volných bajtů: 89 703 989 248
.
- - End Of File - - 5F60A93CFC7B779719A35129A4B27A3C
A36C5E4F47E84449FF07ED3517B43A31
Nahoru
altrok
Moderátor
Moderátor
Příspěvky: 7322
Registrován: 15 lis 2012 22:26
Bydliště: Znojmo

Re: Zamrzá počítač

#22 Příspěvek od altrok »

:arrow: Dejte logy FRST.txt a Addition.txt - http://forum.viry.cz/viewtopic.php?f=30&t=133101
Pozn. pri druhem a dalsim spusteni FRST je pro vytvoreni logu Addition.txt nutne tuto volbu explicitne zatrhnout pred zacatkem skenu.
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Nahoru
DanielAntos
Návštěvník
Návštěvník
Příspěvky: 39
Registrován: 11 bře 2016 23:00

Re: Zamrzá počítač

#23 Příspěvek od DanielAntos »

Promiňte, dříve to nešlo, měl jsem povinnosti ve škole :)

FRST:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:05-03-2016 01
Ran by Dominik (administrator) on DOMINIK-PC (14-03-2016 13:48:34)
Running from C:\Users\Dominik\Desktop
Loaded Profiles: Dominik (Available Profiles: Dominik & Guest)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 10 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Apple Computer, Inc.) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
() C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
(AVG) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation) C:\Windows\System32\alg.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDECK.EXE
(AVG) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(BlueStack Systems, Inc.) C:\Program Files (x86)\BlueStacks\HD-Agent.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
(forum.viry.cz) C:\Users\Dominik\Desktop\FRSTLauncher.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [472984 2013-06-13] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2244096 2009-07-13] (VIA)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7137664 2016-03-09] (AVAST Software)
HKLM-x32\...\Run: [BlueStacks Agent] => C:\Program Files (x86)\BlueStacks\HD-Agent.exe [835288 2014-07-22] (BlueStack Systems, Inc.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-2071916412-1336065733-774511312-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\Bubbles.scr [899584 2010-11-20] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_v_1_1_0_x64.dll [2013-08-30] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_v_1_1_0_x64.dll [2013-08-30] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_v_1_1_0_x64.dll [2013-08-30] ()
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-02-11] (AVAST Software)
ShellIconOverlayIdentifiers: [1AMPCBOK] -> {04cd1f3e-81d5-4904-a3ab-e0f99a7d769d} => C:\Windows\system32\mscoree.dll [2010-11-04] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [1AMPCBOK] -> {04cd1f3e-81d5-4904-a3ab-e0f99a7d769d} => C:\Windows\SysWOW64\mscoree.dll [2010-11-04] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dominik\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll [2013-09-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dominik\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll [2013-09-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dominik\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll [2013-09-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Dominik\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll [2013-09-11] (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{3D2CABB7-47D3-4DEF-BEAA-AF7B70BF7171}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{E1F67B74-8A63-450C-B403-FDCCC82A1F2F}: [DhcpNameServer] 10.0.0.138

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-2071916412-1336065733-774511312-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/?clid=22668
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-2071916412-1336065733-774511312-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-2071916412-1336065733-774511312-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/?clid=22668
SearchScopes: HKLM-x32 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2071916412-1336065733-774511312-1000 -> {08B59813-C99C-4C4C-B091-7335D1DDA217} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-2071916412-1336065733-774511312-1000 -> {0C11CAC9-A586-470C-AF72-D4FE82E3E1CD} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_13415
SearchScopes: HKU\S-1-5-21-2071916412-1336065733-774511312-1000 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2071916412-1336065733-774511312-1000 -> {4AF6B2F1-4090-4A9B-A303-ECB6E93A6F8A} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-2071916412-1336065733-774511312-1000 -> {7BE86DF6-B514-4421-9F24-FF39874D37F8} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_13415
SearchScopes: HKU\S-1-5-21-2071916412-1336065733-774511312-1000 -> {80E8FE2C-B09D-440C-B6F5-47456B3721E5} URL = hxxp://www.firmy.cz/phr/{searchTerms}?sourceid ... arch_13415
SearchScopes: HKU\S-1-5-21-2071916412-1336065733-774511312-1000 -> {EABE85B9-E332-42F2-893D-6900DEDDEA62} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_13415
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-02-11] (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-02-11] (AVAST Software)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)

FireFox:
========
FF ProfilePath: C:\Users\Dominik\AppData\Roaming\Mozilla\Firefox\Profiles\loc3dukj.default
FF NewTab: about:newtab
FF DefaultSearchEngine: Google
FF DefaultSearchUrl: hxxps://www.google.com/search
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: Google
FF Homepage: www.google.com
FF Keyword.URL: hxxps://www.google.com/search
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1222172.dll [2015-11-19] (Adobe Systems, Inc.)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~2\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @richmediaplayer.com/nppluginrichmediaplayer -> C:\Program Files (x86)\Mozilla Firefox\plugins\nppluginrichmediaplayer.dll [2013-03-12] ()
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2014-02-05] (VideoLAN)
FF Plugin HKU\S-1-5-21-2071916412-1336065733-774511312-1000: @talk.google.com/GoogleTalkPlugin -> C:\Users\Dominik\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2014-06-06] (Google)
FF Plugin HKU\S-1-5-21-2071916412-1336065733-774511312-1000: @talk.google.com/O1DPlugin -> C:\Users\Dominik\AppData\Roaming\Mozilla\plugins\npo1d.dll [2014-06-06] (Google)
FF Plugin HKU\S-1-5-21-2071916412-1336065733-774511312-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Dominik\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2016-02-02] (Unity Technologies ApS)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\nppluginrichmediaplayer.dll [2013-03-12] ()
FF Plugin ProgramFiles/Appdata: C:\Users\Dominik\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2014-06-06] (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Dominik\AppData\Roaming\mozilla\plugins\npo1d.dll [2014-06-06] (Google)
FF SearchPlugin: C:\Users\Dominik\AppData\Roaming\Mozilla\Firefox\Profiles\loc3dukj.default\searchplugins\improvedsearch.xml [2014-01-06]
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\searchplugins\jyxo-cz.xml [2011-09-03]
FF Extension: Battlefield Heroes Updater - C:\Users\Dominik\AppData\Roaming\Mozilla\Firefox\Profiles\loc3dukj.default\extensions\battlefieldheroespatcher@ea.com [2012-05-25] [not signed]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [not found]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-02-11]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-02-11]
FF ExtraCheck: C:\Program Files (x86)\mozilla firefox\firefox.cfg [2013-04-08] <==== ATTENTION

Chrome:
=======
CHR HomePage: Default -> hxxps://www.seznam.cz/?clid=22668
CHR StartupUrls: Default -> "hxxps://www.seznam.cz/?clid=22668"
CHR DefaultSearchURL: Default -> hxxp://search.seznam.cz/?q={searchTerms}
CHR DefaultSearchKeyword: Default -> seznam.cz
CHR DefaultSuggestURL: Default -> hxxp://suggest.fulltext.seznam.cz/fulltext_ff?phrase={searchTerms}
CHR Profile: C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (YouTube) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-22]
CHR Extension: (Battlefield Heroes) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\cehdakiococlfmjcbebbkjkfjhbieknh [2013-12-05]
CHR Extension: (Vyhledávání Google) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Dominik\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-10-22]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-02-11]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [237096 2016-02-11] (AVAST Software)
R2 Bonjour Service; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [229376 2006-02-28] (Apple Computer, Inc.) [File not signed]
S2 BstHdAndroidSvc; C:\Program Files (x86)\BlueStacks\HD-Service.exe [409304 2014-07-22] (BlueStack Systems, Inc.)
S2 BstHdLogRotatorSvc; C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe [384728 2014-07-22] (BlueStack Systems, Inc.)
S2 BstHdUpdaterSvc; C:\Program Files (x86)\BlueStacks\HD-UpdaterService.exe [777944 2014-07-22] (BlueStack Systems, Inc.)
S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2015-12-06] (Macrovision Europe Ltd.) [File not signed]
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [File not signed]
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1135416 2015-10-05] (Malwarebytes)
S3 npggsvc; C:\Windows\SysWOW64\GameMon.des [3611808 2015-07-22] (INCA Internet Co., Ltd.)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2099208 2015-10-23] (Electronic Arts)
R2 PassThru Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] () [File not signed]
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [75064 2015-11-07] ()
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2183992 2014-03-22] (AVG)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
S2 IMPI Updater; C:\Program Files\IMPI\ExtensionUpdaterService.exe [X]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-02-11] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-02-11] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [107792 2016-03-09] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-02-11] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-02-11] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1070904 2016-03-09] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [463744 2016-02-23] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [165344 2016-02-11] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [287016 2016-02-11] (AVAST Software)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-01-21] (Disc Soft Ltd)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R0 FSProFilter; C:\Windows\System32\Drivers\FSPFltd.sys [54848 2010-07-22] (FSPro Labs)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25816 2015-10-05] (Malwarebytes)
S3 MBAMWebAccessControl; C:\Windows\system32\drivers\mwac.sys [63704 2015-10-05] (Malwarebytes Corporation)
R3 MTsensor; C:\Windows\System32\DRIVERS\ATK64AMD.sys [13680 2007-08-09] ()
S3 s1039bus; C:\Windows\System32\DRIVERS\s1039bus.sys [127600 2010-03-01] (MCCI Corporation)
S3 s1039mdfl; C:\Windows\System32\DRIVERS\s1039mdfl.sys [19568 2010-03-01] (MCCI Corporation)
S3 s1039mdm; C:\Windows\System32\DRIVERS\s1039mdm.sys [161904 2010-03-01] (MCCI Corporation)
S3 s1039mgmt; C:\Windows\System32\DRIVERS\s1039mgmt.sys [141424 2010-03-01] (MCCI Corporation)
S3 s1039nd5; C:\Windows\System32\DRIVERS\s1039nd5.sys [34416 2010-03-01] (MCCI Corporation)
S3 s1039obex; C:\Windows\System32\DRIVERS\s1039obex.sys [137328 2010-03-01] (MCCI Corporation)
S3 s1039unic; C:\Windows\System32\DRIVERS\s1039unic.sys [158320 2010-03-01] (MCCI Corporation)
S4 sfdrv01; C:\Windows\System32\drivers\sfdrv01.sys [68608 2005-08-10] (Protection Technology) [File not signed]
S4 sfhlp02; C:\Windows\System32\drivers\sfhlp02.sys [7168 2005-05-16] (Protection Technology) [File not signed]
S4 sfvfs02; C:\Windows\System32\drivers\sfvfs02.sys [89600 2005-11-03] (Protection Technology) [File not signed]
R3 VCSVADHWSer; C:\Windows\System32\DRIVERS\vcsvad.sys [21504 2008-12-26] (Avnex)
R2 WCMVCAM; C:\Windows\System32\DRIVERS\wcmvcam64.sys [1071032 2011-06-23] (Windows (R) Win 7 DDK provider)
S3 WinRing0_1_2_0; C:\Program Files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys [14544 2012-11-13] (OpenLibSys.org)
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-03-14 13:48 - 2016-03-14 13:49 - 00020235 _____ C:\Users\Dominik\Desktop\FRST.txt
2016-03-13 23:21 - 2016-03-13 23:21 - 00023390 _____ C:\ComboFix.txt
2016-03-13 18:05 - 2016-03-13 18:05 - 00023072 _____ C:\Users\Dominik\Desktop\ComboFix.txt
2016-03-13 17:42 - 2016-03-13 23:21 - 00000000 ____D C:\Qoobox
2016-03-13 17:42 - 2011-06-26 07:45 - 00256000 _____ C:\Windows\PEV.exe
2016-03-13 17:42 - 2010-11-07 18:20 - 00208896 _____ C:\Windows\MBR.exe
2016-03-13 17:42 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2016-03-13 17:42 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2016-03-13 17:42 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2016-03-13 17:42 - 2000-08-31 01:00 - 00098816 _____ C:\Windows\sed.exe
2016-03-13 17:42 - 2000-08-31 01:00 - 00080412 _____ C:\Windows\grep.exe
2016-03-13 17:42 - 2000-08-31 01:00 - 00068096 _____ C:\Windows\zip.exe
2016-03-13 17:35 - 2016-03-13 17:35 - 01107912 _____ (Bleeping Computer, LLC) C:\Users\Dominik\Desktop\rkill64.exe
2016-03-13 17:31 - 2016-03-13 18:07 - 00002122 _____ C:\Users\Dominik\Desktop\Rkill.txt
2016-03-13 17:31 - 2016-03-13 17:31 - 05658088 ____R (Swearware) C:\Users\Dominik\Desktop\ComboFix.exe
2016-03-13 17:31 - 2016-03-13 17:31 - 05658088 _____ (Swearware) C:\Users\Dominik\Downloads\ComboFix.exe
2016-03-13 17:30 - 2016-03-13 17:29 - 02032072 _____ (Bleeping Computer, LLC) C:\Users\Dominik\Desktop\rkill.exe
2016-03-13 17:29 - 2016-03-13 17:29 - 02032072 _____ (Bleeping Computer, LLC) C:\Users\Dominik\Downloads\rkill.exe
2016-03-13 17:19 - 2016-03-13 17:21 - 00000274 _____ C:\Users\Dominik\Desktop\DiskInfo.ini
2016-03-13 17:19 - 2016-03-13 17:19 - 00000000 ____D C:\Users\Dominik\Desktop\Smart
2016-03-13 17:19 - 2016-02-10 22:04 - 00000000 ____D C:\Users\Dominik\Desktop\CdiResource
2016-03-13 17:19 - 2016-02-10 22:00 - 03712720 _____ (Crystal Dew World) C:\Users\Dominik\Desktop\DiskInfoX64.exe
2016-03-13 17:19 - 2016-02-10 22:00 - 02752720 _____ (Crystal Dew World) C:\Users\Dominik\Desktop\DiskInfo.exe
2016-03-13 17:19 - 2016-01-17 20:13 - 00000000 ____D C:\Users\Dominik\Desktop\License
2016-03-13 17:17 - 2016-03-13 17:17 - 04669119 _____ C:\Users\Dominik\Downloads\CrystalDiskInfo6_7_5.zip
2016-03-13 17:17 - 2016-03-13 17:17 - 04669119 _____ C:\Users\Dominik\Desktop\CrystalDiskInfo6_7_5.zip
2016-03-13 13:17 - 2016-03-13 13:17 - 00112640 _____ (forum.viry.cz) C:\Users\Dominik\Desktop\FRSTLauncher.exe
2016-03-13 11:54 - 2016-03-11 22:57 - 00112640 ____N (forum.viry.cz) C:\Users\Dominik\Desktop\trz76D.tmp
2016-03-13 10:01 - 2016-03-13 11:58 - 00001564 _____ C:\Users\Dominik\Desktop\Counter-Strike 1.6.lnk
2016-03-12 14:17 - 2016-03-13 14:20 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-03-12 14:16 - 2016-03-13 12:00 - 00001096 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-03-12 14:16 - 2016-03-12 14:16 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-03-12 14:16 - 2016-03-12 14:16 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-03-12 14:16 - 2015-10-05 09:50 - 00109272 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2016-03-12 14:16 - 2015-10-05 09:50 - 00063704 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2016-03-12 14:16 - 2015-10-05 09:50 - 00025816 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2016-03-12 14:15 - 2016-03-12 14:15 - 22908888 _____ (Malwarebytes ) C:\Users\Dominik\Downloads\mbam-setup-2.2.0.1024.exe
2016-03-12 14:15 - 2016-03-12 14:15 - 22908888 _____ (Malwarebytes ) C:\Users\Dominik\Desktop\mbam-setup-2.2.0.1024.exe
2016-03-12 11:11 - 2016-03-12 11:11 - 00000067 _____ C:\Users\Dominik\Desktop\More.url
2016-03-11 22:58 - 2016-03-14 13:48 - 00000000 ____D C:\FRST
2016-03-11 22:49 - 2016-03-11 22:49 - 02374144 _____ (Farbar) C:\Users\Dominik\Downloads\FRST64.exe
2016-03-11 22:49 - 2016-03-11 22:49 - 02374144 _____ (Farbar) C:\Users\Dominik\Desktop\FRST64.exe
2016-03-11 15:43 - 2016-03-11 15:43 - 00022480 _____ C:\Users\Dominik\Downloads\[kat.cr]vikings.s04e04.hdtv.x264.killers.rartv.torrent
2016-03-11 15:42 - 2016-03-11 16:41 - 00000000 ____D C:\Users\Dominik\Downloads\Vikings.S04E04.720p.HDTV.x264-KILLERS[ettv]
2016-03-11 15:40 - 2016-03-11 15:40 - 00009355 _____ C:\Users\Dominik\Downloads\[kat.cr]vikings.s04e04.720p.hdtv.x264.killers.ettv.torrent
2016-03-10 20:47 - 2016-03-10 20:47 - 00060515 _____ C:\Users\Dominik\Downloads\práce-a-energie-B.pdf
2016-03-10 20:47 - 2016-03-10 20:47 - 00060315 _____ C:\Users\Dominik\Downloads\práce-a-energie-A.pdf
2016-03-09 22:19 - 2016-02-12 19:52 - 03169792 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2016-03-09 22:19 - 2016-02-12 19:52 - 00192512 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2016-03-09 22:19 - 2016-02-12 19:52 - 00098816 _____ (Microsoft Corporation) C:\Windows\system32\wudriver.dll
2016-03-09 22:19 - 2016-02-12 19:44 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\WinSetupUI.dll
2016-03-09 22:19 - 2016-02-12 19:39 - 00174080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2016-03-09 22:19 - 2016-02-12 19:22 - 02610688 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-03-09 22:19 - 2016-02-12 19:19 - 00709120 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-03-09 22:19 - 2016-02-12 19:18 - 00140288 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-03-09 22:19 - 2016-02-12 19:18 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-03-09 22:19 - 2016-02-12 19:18 - 00037888 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2016-03-09 22:19 - 2016-02-12 19:18 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wups.dll
2016-03-09 22:19 - 2016-02-12 19:18 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wu.upgrade.ps.dll
2016-03-09 22:19 - 2016-02-12 19:06 - 00573440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2016-03-09 22:19 - 2016-02-12 19:05 - 00093696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wudriver.dll
2016-03-09 22:19 - 2016-02-12 19:05 - 00035328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2016-03-09 22:19 - 2016-02-12 19:05 - 00030208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wups.dll
2016-03-09 22:19 - 2016-02-11 19:56 - 05572032 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-03-09 22:19 - 2016-02-11 19:56 - 00154560 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-03-09 22:19 - 2016-02-11 19:56 - 00095680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-03-09 22:19 - 2016-02-11 19:52 - 01733592 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-03-09 22:19 - 2016-02-11 19:49 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2016-03-09 22:19 - 2016-02-11 19:49 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2016-03-09 22:19 - 2016-02-11 19:49 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-03-09 22:19 - 2016-02-11 19:49 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-03-09 22:19 - 2016-02-11 19:49 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-03-09 22:19 - 2016-02-11 19:49 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-03-09 22:19 - 2016-02-11 19:49 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-03-09 22:19 - 2016-02-11 19:49 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2016-03-09 22:19 - 2016-02-11 19:48 - 01214464 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-03-09 22:19 - 2016-02-11 19:48 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-03-09 22:19 - 2016-02-11 19:48 - 00344064 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-03-09 22:19 - 2016-02-11 19:48 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-03-09 22:19 - 2016-02-11 19:48 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-03-09 22:19 - 2016-02-11 19:47 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2016-03-09 22:19 - 2016-02-11 19:45 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-03-09 22:19 - 2016-02-11 19:45 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-03-09 22:19 - 2016-02-11 19:45 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-03-09 22:19 - 2016-02-11 19:45 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-03-09 22:19 - 2016-02-11 19:44 - 03994560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2016-03-09 22:19 - 2016-02-11 19:44 - 03938240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2016-03-09 22:19 - 2016-02-11 19:44 - 01461248 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-03-09 22:19 - 2016-02-11 19:44 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-03-09 22:19 - 2016-02-11 19:44 - 00730112 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-03-09 22:19 - 2016-02-11 19:44 - 00422400 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-03-09 22:19 - 2016-02-11 19:42 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-03-09 22:19 - 2016-02-11 19:42 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-03-09 22:19 - 2016-02-11 19:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-03-09 22:19 - 2016-02-11 19:41 - 01314328 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-03-09 22:19 - 2016-02-11 19:41 - 00880128 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-03-09 22:19 - 2016-02-11 19:41 - 00686080 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-03-09 22:19 - 2016-02-11 19:41 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-03-09 22:19 - 2016-02-11 19:41 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:41 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:41 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:41 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:41 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:41 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:41 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:38 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2016-03-09 22:19 - 2016-02-11 19:38 - 00665088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-03-09 22:19 - 2016-02-11 19:38 - 00275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-03-09 22:19 - 2016-02-11 19:38 - 00171520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2016-03-09 22:19 - 2016-02-11 19:38 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2016-03-09 22:19 - 2016-02-11 19:38 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2016-03-09 22:19 - 2016-02-11 19:38 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2016-03-09 22:19 - 2016-02-11 19:37 - 00251392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-03-09 22:19 - 2016-02-11 19:37 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2016-03-09 22:19 - 2016-02-11 19:37 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2016-03-09 22:19 - 2016-02-11 19:35 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-03-09 22:19 - 2016-02-11 19:35 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-03-09 22:19 - 2016-02-11 19:35 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2016-03-09 22:19 - 2016-02-11 19:34 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2016-03-09 22:19 - 2016-02-11 19:33 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-03-09 22:19 - 2016-02-11 19:31 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2016-03-09 22:19 - 2016-02-11 19:30 - 00686080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-03-09 22:19 - 2016-02-11 19:30 - 00642560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-03-09 22:19 - 2016-02-11 19:30 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2016-03-09 22:19 - 2016-02-11 19:30 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:30 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:30 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 19:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 18:48 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-03-09 22:19 - 2016-02-11 18:43 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2016-03-09 22:19 - 2016-02-11 18:41 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2016-03-09 22:19 - 2016-02-11 18:40 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-03-09 22:19 - 2016-02-11 18:34 - 00290816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-03-09 22:19 - 2016-02-11 18:34 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-03-09 22:19 - 2016-02-11 18:33 - 00129024 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-03-09 22:19 - 2016-02-11 18:32 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-03-09 22:19 - 2016-02-11 18:32 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-03-09 22:19 - 2016-02-11 18:32 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2016-03-09 22:19 - 2016-02-11 18:32 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2016-03-09 22:19 - 2016-02-11 18:32 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2016-03-09 22:19 - 2016-02-11 18:32 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2016-03-09 22:19 - 2016-02-11 18:31 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2016-03-09 22:19 - 2016-02-11 18:30 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 18:30 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 18:30 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-03-09 22:19 - 2016-02-11 18:30 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2016-03-09 22:19 - 2016-02-04 18:52 - 03211264 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-03-09 22:19 - 2016-02-03 19:58 - 00862208 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2016-03-09 22:19 - 2016-02-03 19:52 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2016-03-09 22:19 - 2016-02-03 19:49 - 00572416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2016-03-09 22:19 - 2016-02-03 19:43 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll
2016-03-09 22:19 - 2016-02-03 19:07 - 00091648 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\USBSTOR.SYS
2016-03-09 22:19 - 2016-01-11 20:11 - 01684416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2016-03-09 22:19 - 2015-11-19 15:07 - 00994760 _____ (Microsoft Corporation) C:\Windows\system32\ucrtbase.dll
2016-03-09 22:19 - 2015-11-19 15:07 - 00063840 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-private-l1-1-0.dll
2016-03-09 22:19 - 2015-11-19 15:07 - 00020832 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-math-l1-1-0.dll
2016-03-09 22:19 - 2015-11-19 15:07 - 00019808 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-03-09 22:19 - 2015-11-19 15:07 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-string-l1-1-0.dll
2016-03-09 22:19 - 2015-11-19 15:07 - 00017760 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-03-09 22:19 - 2015-11-19 15:07 - 00016224 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-03-09 22:19 - 2015-11-19 15:07 - 00015712 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-03-09 22:19 - 2015-11-19 15:07 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-time-l1-1-0.dll
2016-03-09 22:19 - 2015-11-19 15:07 - 00014176 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-2-0.dll
2016-03-09 22:19 - 2015-11-19 15:07 - 00013664 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-03-09 22:19 - 2015-11-19 15:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-process-l1-1-0.dll
2016-03-09 22:19 - 2015-11-19 15:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-03-09 22:19 - 2015-11-19 15:07 - 00012640 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-03-09 22:19 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-03-09 22:19 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-03-09 22:19 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-03-09 22:19 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-2-0.dll
2016-03-09 22:19 - 2015-11-19 15:07 - 00012128 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2016-03-09 22:19 - 2015-11-19 15:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2016-03-09 22:19 - 2015-11-19 15:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2016-03-09 22:19 - 2015-11-19 15:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l2-1-0.dll
2016-03-09 22:19 - 2015-11-19 15:07 - 00011616 _____ (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-2-0.dll
2016-03-09 22:19 - 2015-11-19 15:06 - 00922432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ucrtbase.dll
2016-03-09 22:19 - 2015-11-19 15:06 - 00066400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-private-l1-1-0.dll
2016-03-09 22:19 - 2015-11-19 15:06 - 00022368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-math-l1-1-0.dll
2016-03-09 22:19 - 2015-11-19 15:06 - 00019808 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-multibyte-l1-1-0.dll
2016-03-09 22:19 - 2015-11-19 15:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-string-l1-1-0.dll
2016-03-09 22:19 - 2015-11-19 15:06 - 00017760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-stdio-l1-1-0.dll
2016-03-09 22:19 - 2015-11-19 15:06 - 00016224 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-runtime-l1-1-0.dll
2016-03-09 22:19 - 2015-11-19 15:06 - 00015712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-convert-l1-1-0.dll
2016-03-09 22:19 - 2015-11-19 15:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-time-l1-1-0.dll
2016-03-09 22:19 - 2015-11-19 15:06 - 00014176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-2-0.dll
2016-03-09 22:19 - 2015-11-19 15:06 - 00013664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-filesystem-l1-1-0.dll
2016-03-09 22:19 - 2015-11-19 15:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-process-l1-1-0.dll
2016-03-09 22:19 - 2015-11-19 15:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-heap-l1-1-0.dll
2016-03-09 22:19 - 2015-11-19 15:06 - 00012640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-conio-l1-1-0.dll
2016-03-09 22:19 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-utility-l1-1-0.dll
2016-03-09 22:19 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-locale-l1-1-0.dll
2016-03-09 22:19 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-crt-environment-l1-1-0.dll
2016-03-09 22:19 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-2-0.dll
2016-03-09 22:19 - 2015-11-19 15:06 - 00012128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-1.dll
2016-03-09 22:19 - 2015-11-19 15:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l2-1-0.dll
2016-03-09 22:19 - 2015-11-19 15:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-timezone-l1-1-0.dll
2016-03-09 22:19 - 2015-11-19 15:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l2-1-0.dll
2016-03-09 22:19 - 2015-11-19 15:06 - 00011616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-2-0.dll
2016-03-09 22:18 - 2016-02-09 10:57 - 14634496 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-03-09 22:18 - 2016-02-09 10:55 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\seclogon.dll
2016-03-09 22:18 - 2016-02-09 10:51 - 11411456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2016-03-09 22:18 - 2016-02-05 19:54 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2016-03-09 22:18 - 2016-02-05 19:54 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2016-03-09 22:18 - 2016-02-05 19:53 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2016-03-09 22:18 - 2016-02-05 19:53 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2016-03-09 22:18 - 2016-02-05 19:50 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2016-03-09 22:18 - 2016-02-05 19:44 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2016-03-09 22:18 - 2016-02-05 19:42 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2016-03-09 22:18 - 2016-02-05 18:48 - 00372736 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2016-03-09 22:18 - 2016-02-05 18:43 - 00299520 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2016-03-09 22:18 - 2016-02-05 18:43 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2016-03-09 22:18 - 2016-02-05 02:19 - 00381440 _____ (Microsoft Corporation) C:\Windows\system32\mfds.dll
2016-03-09 22:18 - 2016-02-04 19:41 - 00296448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfds.dll
2016-03-09 22:17 - 2016-02-19 20:02 - 00038336 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-03-09 22:17 - 2016-02-19 19:54 - 01168896 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-03-09 22:17 - 2016-02-19 15:07 - 01373184 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-03-09 22:17 - 2016-02-11 15:07 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-03-09 22:17 - 2016-02-09 10:57 - 12625920 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2016-03-09 22:17 - 2016-02-09 10:56 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2016-03-09 22:17 - 2016-02-09 10:56 - 00005120 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2016-03-09 22:17 - 2016-02-09 10:54 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2016-03-09 22:17 - 2016-02-09 10:51 - 12625408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmploc.DLL
2016-03-09 22:17 - 2016-02-09 10:13 - 00008192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\spwmp.dll
2016-03-09 22:17 - 2016-02-09 10:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msdxm.ocx
2016-03-09 22:17 - 2016-02-09 10:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxmasf.dll
2016-03-09 22:17 - 2016-02-05 15:07 - 00696832 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-03-09 22:17 - 2016-02-05 15:07 - 00499200 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-03-09 22:17 - 2016-02-05 15:07 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-03-06 11:55 - 2016-03-06 12:51 - 959610630 _____ C:\Users\Dominik\Downloads\Stážista-2015-cz.avi
2016-03-05 19:32 - 2016-03-05 20:16 - 784887808 _____ C:\Users\Dominik\Downloads\Bratri-z-donuceni.avi
2016-03-05 18:10 - 2016-03-05 18:57 - 766691328 _____ C:\Users\Dominik\Downloads\Survivor-S32E02-(CZ-tit.-v-obraze).avi
2016-03-05 17:12 - 2016-03-05 18:02 - 792059904 _____ C:\Users\Dominik\Downloads\Survivor.S32E01.HDTV.cz-titl.avi
2016-03-05 12:58 - 2016-03-05 13:44 - 826454016 _____ C:\Users\Dominik\Downloads\Co-jsme-komu-udělali-2014-Cz-dab..avi
2016-03-05 11:31 - 2016-03-05 11:31 - 01344661 _____ C:\Users\Dominik\Downloads\OptiFine_1.8.8_HD_U_H2.jar
2016-03-04 21:33 - 2016-03-04 21:54 - 00000000 ____D C:\Users\Dominik\Downloads\Narcos.S01E05.WEBRip.x264-TASTETV[rarbg]
2016-03-04 21:31 - 2016-03-04 21:31 - 00033454 _____ C:\Users\Dominik\Downloads\[kat.cr]narcos.s01e05.webrip.x264.tastetv.rartv.torrent
2016-03-04 19:47 - 2016-03-04 19:47 - 00000000 ____D C:\Users\Dominik\AppData\Local\Fighters
2016-03-04 19:46 - 2016-03-04 19:49 - 00000000 ____D C:\ProgramData\BSD
2016-03-04 19:41 - 2016-03-13 12:00 - 00002154 _____ C:\Users\Public\Desktop\OUTDATEfighter.lnk
2016-03-04 19:41 - 2016-03-04 19:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fighters
2016-03-04 19:40 - 2016-03-04 19:45 - 00000000 ____D C:\Users\Dominik\AppData\Roaming\Fighters
2016-03-04 19:40 - 2016-03-04 19:44 - 00000000 ____D C:\ProgramData\Fighters
2016-03-04 19:40 - 2016-03-04 19:44 - 00000000 ____D C:\Program Files (x86)\Fighters
2016-03-04 19:40 - 2016-03-04 19:40 - 04501432 _____ (SPAMfighter ApS.) C:\Users\Dominik\Downloads\slow-pcfighter_Web.exe
2016-03-04 19:39 - 2016-03-04 19:40 - 03233096 _____ (SPAMfighter ApS) C:\Users\Dominik\Downloads\DRIVERfighter_Web.exe
2016-03-04 19:38 - 2016-03-04 19:38 - 02150224 _____ (SPAMfighter ApS) C:\Users\Dominik\Downloads\OUTDATEfighter_Web.exe
2016-03-04 16:52 - 2016-03-04 10:49 - 664593688 _____ C:\Users\Dominik\Desktop\skryta-vada-drama-krimi-mysteriozni-romanticky-usa-2014-cz-avi.bin
2016-03-04 14:39 - 2016-03-04 14:56 - 298370345 _____ C:\Users\Dominik\Downloads\Vikings.S04E03.PROPER.HDTV.x264-KILLERS.mp4
2016-03-04 14:38 - 2016-03-04 14:38 - 00016587 _____ C:\Users\Dominik\Downloads\Vikings-4x03.zip
2016-02-28 15:43 - 2016-02-28 16:17 - 528117760 _____ C:\Users\Dominik\Downloads\survivor.s31e02.hdtv.cz-titl..avi
2016-02-27 22:54 - 2016-02-27 23:27 - 547496647 _____ C:\Users\Dominik\Downloads\Survivor.S31E01.HDTV.x264-UAV.mp4
2016-02-27 22:53 - 2016-02-27 22:53 - 00073748 _____ C:\Users\Dominik\Downloads\Survivor-S31E01(0000259903).srt
2016-02-27 09:34 - 2016-02-27 10:30 - 945157330 _____ C:\Users\Dominik\Downloads\survivor.s28e13.hdtv.bajskorv.reality-show.eu.mp4
2016-02-27 09:33 - 2016-02-27 09:33 - 00095211 _____ C:\Users\Dominik\Downloads\s28e13.rar
2016-02-26 23:38 - 2016-02-27 00:12 - 564966622 _____ C:\Users\Dominik\Downloads\survivor.s28e12.hdtv.w4f.reality-show.eu.mp4
2016-02-26 23:37 - 2016-02-26 23:37 - 00042915 _____ C:\Users\Dominik\Downloads\s28e12.rar
2016-02-26 21:59 - 2016-02-26 22:25 - 466347913 _____ C:\Users\Dominik\Downloads\survivor.s28e11.hdtv.w4f.reality-show.eu.mp4
2016-02-26 21:56 - 2016-02-26 21:56 - 00044601 _____ C:\Users\Dominik\Downloads\s28e11.rar
2016-02-26 20:59 - 2016-02-26 21:31 - 567604886 _____ C:\Users\Dominik\Downloads\survivor.s28e10.hdtv.bajskorv.reality-show.eu.mp4
2016-02-26 20:57 - 2016-02-26 20:57 - 00043835 _____ C:\Users\Dominik\Downloads\s28e10.rar
2016-02-26 20:05 - 2016-02-26 20:05 - 00000000 _____ C:\AILog.txt
2016-02-26 19:14 - 2016-02-26 19:04 - 391672401 _____ C:\Users\Dominik\Desktop\Vikings.S04E02.HDTV.x264-KILLERS.mp4
2016-02-26 18:41 - 2016-02-26 19:04 - 391672401 _____ C:\Users\Dominik\Downloads\Vikings.S04E02.HDTV.x264-KILLERS.mp4
2016-02-26 18:38 - 2016-02-26 18:38 - 00588977 _____ C:\Users\Dominik\Downloads\Vikings S04E02 HDTV x264 KILLERS[ettv]__18766_il1963945.zip
2016-02-26 18:37 - 2016-02-26 18:37 - 00030691 _____ C:\Users\Dominik\Downloads\Vikings-4x02.zip
2016-02-26 15:25 - 2016-02-26 15:57 - 562336465 _____ C:\Users\Dominik\Downloads\survivor.s28e09.hdtv.bajskorv.reality-show.eu.mp4
2016-02-26 15:24 - 2016-02-26 15:24 - 00042407 _____ C:\Users\Dominik\Downloads\s28e09.rar
2016-02-26 14:34 - 2016-02-26 14:33 - 516876889 _____ C:\Users\Dominik\Desktop\survivor.s28e08.hdtv.bajskorv.reality-show.eu.mp4
2016-02-26 14:34 - 2016-02-26 14:02 - 00043819 _____ C:\Users\Dominik\Desktop\s28e08.rar
2016-02-26 14:05 - 2016-02-26 14:33 - 516876889 _____ C:\Users\Dominik\Downloads\survivor.s28e08.hdtv.bajskorv.reality-show.eu.mp4
2016-02-26 14:02 - 2016-02-26 14:02 - 00043819 _____ C:\Users\Dominik\Downloads\s28e08.rar
2016-02-25 19:40 - 2016-02-25 20:11 - 541009040 _____ C:\Users\Dominik\Downloads\survivor.s28e07.hdtv.w4f.reality-show.eu.mp4
2016-02-25 19:37 - 2016-02-25 19:37 - 00041394 _____ C:\Users\Dominik\Downloads\s28e07.rar
2016-02-24 19:02 - 2016-02-24 19:32 - 531854615 _____ C:\Users\Dominik\Downloads\survivor.s28e06.hdtv.w4f.reality-show.eu.mp4
2016-02-24 18:37 - 2016-02-24 18:37 - 00045412 _____ C:\Users\Dominik\Downloads\s28e06.rar
2016-02-20 22:16 - 2016-02-20 22:16 - 00021647 _____ C:\Users\Dominik\Downloads\Narcos-S01E04(0000259712).zip
2016-02-20 22:10 - 2016-02-20 22:36 - 00000000 ____D C:\Users\Dominik\Downloads\Narcos.S01E04.WEBRip.x264-TASTETV[rarbg]
2016-02-20 22:09 - 2016-02-20 22:09 - 00028612 _____ C:\Users\Dominik\Downloads\[kat.cr]narcos.s01e04.webrip.x264.tastetv.rartv.torrent
2016-02-20 20:35 - 2016-03-13 22:05 - 00008192 ____H C:\Users\Dominik\Desktop\photothumb.db
2016-02-20 18:18 - 2016-03-13 11:58 - 00001566 _____ C:\Users\Dominik\Desktop\Half-Life.lnk
2016-02-20 18:16 - 2016-03-13 16:19 - 00000000 ____D C:\Counter-Strike 1.6
2016-02-20 18:12 - 2016-02-20 18:15 - 216257094 _____ (Valve ) C:\Users\Dominik\Downloads\cs16full_v43g_cskocz.exe
2016-02-20 14:08 - 2016-02-20 14:15 - 00000000 ____D C:\Users\Dominik\Downloads\Narcos.S01E03.WEBRip.x264-TASTETV[rarbg]
2016-02-20 14:07 - 2016-02-20 14:07 - 00030737 _____ C:\Users\Dominik\Downloads\[kat.cr]narcos.s01e03.webrip.x264.tastetv.rartv.torrent
2016-02-20 12:58 - 2016-02-20 13:09 - 00000000 ____D C:\Users\Dominik\Downloads\Narcos.S01E02.WEBRip.x264-TASTETV[rarbg]
2016-02-20 12:56 - 2016-02-20 12:56 - 00031391 _____ C:\Users\Dominik\Downloads\[kat.cr]narcos.s01e02.webrip.x264.tastetv.rartv.torrent
2016-02-20 12:20 - 2016-03-13 11:59 - 00001856 _____ C:\Users\Dominik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Counter-Strike.lnk
2016-02-20 12:20 - 2016-03-13 11:58 - 00001826 _____ C:\Users\Dominik\Desktop\Counter-Strike.lnk
2016-02-20 12:20 - 2016-03-13 11:58 - 00001818 _____ C:\Users\Dominik\Desktop\CS Servery.lnk
2016-02-20 12:17 - 2016-02-21 10:53 - 00000000 ____D C:\Users\Dominik\Counter-Strike 1.6
2016-02-20 12:14 - 2016-02-20 12:17 - 372405719 _____ () C:\Users\Dominik\Downloads\CS16_install.exe
2016-02-19 21:40 - 2016-02-19 23:46 - 00000000 ____D C:\Users\Dominik\Downloads\Narcos.S01E01.REPACK.WEBRip.x264-TASTETV[rarbg]
2016-02-19 21:39 - 2016-02-19 21:39 - 00042913 _____ C:\Users\Dominik\Downloads\[kat.cr]narcos.s01e01.repack.webrip.x264.tastetv.rartv.torrent
2016-02-19 19:24 - 2016-02-24 20:43 - 00000000 ____D C:\Users\Dominik\Downloads\Vikings.S04E01.HDTV.x264-KILLERS[ettv]
2016-02-19 19:24 - 2016-02-19 19:29 - 390786877 ____R C:\Users\Dominik\Desktop\Vikings.S04E01.HDTV.x264-KILLERS[ettv].mp4
2016-02-19 15:56 - 2016-02-19 16:26 - 506849583 _____ C:\Users\Dominik\Downloads\survivor.s28e05.hdtv.w4f.reality-show.eu.mp4
2016-02-19 15:56 - 2016-02-19 15:56 - 00067812 _____ C:\Users\Dominik\Downloads\s28e05.rar
2016-02-19 15:17 - 2016-02-19 15:17 - 00002934 _____ C:\Windows\System32\Tasks\{186CBA70-A112-486C-B2F7-7DCDB25779E7}
2016-02-19 15:00 - 2016-02-19 15:00 - 00002934 _____ C:\Windows\System32\Tasks\{5275EE69-0D8C-4BAA-B50B-2FC40C8B6EC7}
2016-02-19 11:33 - 2016-02-19 11:33 - 00000000 ____D C:\Users\Dominik\Desktop\nesmyslné soubory
2016-02-18 15:50 - 2016-02-18 15:50 - 00856122 _____ C:\Users\Dominik\Downloads\OptiFine_1.7.2_HD_D4.jar
2016-02-16 16:12 - 2016-02-16 16:41 - 513282532 _____ C:\Users\Dominik\Downloads\survivor.s28e04.hdtv.w4f.reality-show.eu.mp4
2016-02-16 16:11 - 2016-02-16 16:11 - 00043158 _____ C:\Users\Dominik\Downloads\s28e04.rar
2016-02-16 15:36 - 2016-02-16 16:12 - 641564615 _____ C:\Users\Dominik\Downloads\survivor.s28e03.hdtv.2hd.reality-show.eu.mp4
2016-02-16 15:35 - 2016-02-16 15:35 - 00043527 _____ C:\Users\Dominik\Downloads\s28e03.rar
2016-02-13 15:39 - 2016-02-13 16:07 - 492062144 _____ C:\Users\Dominik\Downloads\survivor.s28e02.hdtv.w4f.reality-show.eu.mp4
2016-02-13 15:38 - 2016-02-13 15:38 - 00039259 _____ C:\Users\Dominik\Downloads\s28e02.rar
2016-02-13 14:26 - 2016-02-13 15:33 - 1135747136 _____ C:\Users\Dominik\Downloads\survivor.s28e01.2hd.reality-show.eu.mp4
2016-02-13 14:23 - 2016-02-13 14:23 - 00120517 _____ C:\Users\Dominik\Downloads\s28e01.rar

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-03-14 13:45 - 2014-06-01 06:26 - 00000000 ____D C:\Users\Dominik\Desktop\fotky, videa a obrázky
2016-03-14 13:45 - 2013-10-19 14:30 - 00000000 ____D C:\Users\Dominik\AppData\Local\Adobe
2016-03-14 13:44 - 2014-06-01 06:27 - 00000000 ___RD C:\Users\Dominik\Desktop\poznámkové bloky
2016-03-14 13:44 - 2009-07-14 05:45 - 00024048 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-03-14 13:44 - 2009-07-14 05:45 - 00024048 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-03-14 13:36 - 2014-05-31 13:39 - 00000374 _____ C:\Windows\system32\Drivers\etc\hosts.ics
2016-03-14 13:35 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-03-13 23:14 - 2009-07-14 03:34 - 00000215 _____ C:\Windows\system.ini
2016-03-13 22:19 - 2014-09-25 18:57 - 00001662 _____ C:\Users\Dominik\Downloads\Recuva.lnk
2016-03-13 22:05 - 2014-09-17 18:55 - 00000000 ____D C:\Users\Dominik\Desktop\Originals
2016-03-13 18:06 - 2009-07-14 06:09 - 00000000 ____D C:\Windows\System32\Tasks\WPD
2016-03-13 15:20 - 2012-12-06 17:26 - 00000000 ____D C:\Program Files (x86)\Steam
2016-03-13 14:20 - 2013-01-11 16:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
2016-03-13 13:25 - 2016-01-26 21:43 - 00000000 ____D C:\Users\Dominik\Desktop\Mc
2016-03-13 13:19 - 2012-04-13 18:18 - 00000000 ____D C:\Users\Dominik\AppData\LocalLow\Temp
2016-03-13 13:19 - 2011-12-28 00:42 - 00000000 ____D C:\Windows\System32\Tasks\Games
2016-03-13 12:00 - 2016-02-11 15:08 - 00001920 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2016-03-13 12:00 - 2016-01-23 10:15 - 00001137 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2016-03-13 12:00 - 2016-01-23 10:15 - 00001119 _____ C:\Users\Public\Desktop\Avast SafeZone Browser.lnk
2016-03-13 12:00 - 2015-12-08 21:13 - 00001175 _____ C:\Users\Public\Desktop\Hearthstone.lnk
2016-03-13 12:00 - 2015-12-08 20:51 - 00001138 _____ C:\Users\Public\Desktop\Battle.net.lnk
2016-03-13 12:00 - 2015-12-07 20:27 - 00001019 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2016-03-13 12:00 - 2015-12-06 16:24 - 00001137 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CS3.lnk
2016-03-13 12:00 - 2015-12-06 16:21 - 00001223 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Stock Photos CS3.lnk
2016-03-13 12:00 - 2015-12-06 16:19 - 00001403 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe ExtendScript Toolkit 2.lnk
2016-03-13 12:00 - 2015-12-06 16:19 - 00001192 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Device Central CS3.lnk
2016-03-13 12:00 - 2015-12-06 16:16 - 00001099 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Bridge CS3.lnk
2016-03-13 12:00 - 2014-08-28 19:20 - 00001076 _____ C:\Users\Public\Desktop\Kingo Android ROOT.lnk
2016-03-13 12:00 - 2014-08-05 16:07 - 00002040 _____ C:\Users\Public\Desktop\Metin2.lnk
2016-03-13 12:00 - 2014-08-05 15:41 - 00001151 _____ C:\Users\Public\Desktop\Gameforge Live.lnk
2016-03-13 12:00 - 2014-07-01 10:16 - 00002244 _____ C:\Users\Public\Desktop\The Battle for Middle-earth (tm).lnk
2016-03-13 12:00 - 2014-06-07 13:00 - 00001179 _____ C:\Users\Public\Desktop\EA Sports FIFA World.lnk
2016-03-13 12:00 - 2014-06-07 12:30 - 00000973 _____ C:\Users\Public\Desktop\Origin.lnk
2016-03-13 12:00 - 2014-06-01 16:14 - 00002138 _____ C:\Users\Public\Desktop\Razer Game Booster.lnk
2016-03-13 12:00 - 2013-10-21 04:55 - 00002212 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-03-13 12:00 - 2013-10-21 04:55 - 00002177 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-03-13 12:00 - 2013-09-04 16:53 - 00001174 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 6.lnk
2016-03-13 12:00 - 2012-12-06 17:26 - 00000911 _____ C:\Users\Public\Desktop\Steam.lnk
2016-03-13 12:00 - 2012-06-07 19:06 - 00002671 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Word Viewer 2003.lnk
2016-03-13 12:00 - 2012-03-04 12:49 - 00001102 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 7.lnk
2016-03-13 12:00 - 2011-10-16 12:39 - 00001841 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2016-03-13 12:00 - 2011-09-16 17:07 - 00001150 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-03-13 12:00 - 2011-09-06 18:47 - 00001345 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2016-03-13 12:00 - 2011-09-06 18:47 - 00001326 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2016-03-13 12:00 - 2009-07-14 05:57 - 00001547 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-03-13 12:00 - 2009-07-14 05:57 - 00001352 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Anytime Upgrade.lnk
2016-03-13 12:00 - 2009-07-14 05:57 - 00001330 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sidebar.lnk
2016-03-13 12:00 - 2009-07-14 05:54 - 00001210 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Fax and Scan.lnk
2016-03-13 11:59 - 2013-09-15 18:40 - 00000949 _____ C:\ProgramData\Microsoft\Windows\Start Menu\µTorrent.lnk
2016-03-13 11:59 - 2009-07-14 06:01 - 00001282 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Default Programs.lnk
2016-03-13 11:59 - 2009-07-14 05:57 - 00001246 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XPS Viewer.lnk
2016-03-13 11:59 - 2009-07-14 05:49 - 00001266 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Windows Update.lnk
2016-03-13 11:58 - 2014-04-26 08:37 - 00001236 _____ C:\Users\Dominik\Desktop\Auslogics Registry Cleaner.lnk
2016-03-13 11:58 - 2013-05-01 08:06 - 00002133 _____ C:\Users\Dominik\AppData\Roaming\Microsoft\Windows\Start Menu\Counter-Strike 1.6 Non-Steam.lnk
2016-03-13 11:58 - 2013-05-01 08:06 - 00002129 _____ C:\Users\Dominik\AppData\Roaming\Microsoft\Windows\Start Menu\CS 1.6 Servery.lnk
2016-03-13 11:52 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\Resources
2016-03-12 22:45 - 2012-02-25 11:14 - 00000000 ____D C:\Users\Dominik\AppData\Roaming\vlc
2016-03-12 15:41 - 2009-07-14 16:18 - 00669116 _____ C:\Windows\system32\perfh005.dat
2016-03-12 15:41 - 2009-07-14 16:18 - 00141744 _____ C:\Windows\system32\perfc005.dat
2016-03-12 15:41 - 2009-07-14 06:13 - 01584554 _____ C:\Windows\system32\PerfStringBackup.INI
2016-03-12 15:41 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2016-03-12 13:21 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2016-03-12 11:08 - 2009-07-14 03:34 - 00000568 _____ C:\Windows\win.ini
2016-03-11 16:08 - 2012-10-21 12:55 - 00000000 ____D C:\Users\Dominik\AppData\Roaming\uTorrent
2016-03-11 14:06 - 2009-07-14 06:08 - 00032594 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2016-03-10 16:19 - 2009-07-14 05:45 - 05226936 _____ C:\Windows\system32\FNTCACHE.DAT
2016-03-09 23:28 - 2013-07-19 00:31 - 00000000 ____D C:\Windows\system32\MRT
2016-03-09 23:18 - 2015-10-24 07:27 - 00000000 ____D C:\Windows\system32\appraiser
2016-03-09 23:18 - 2012-07-19 17:35 - 143659408 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-03-09 18:02 - 2012-11-09 09:52 - 01070904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2016-03-09 18:02 - 2012-11-09 09:52 - 00107792 _____ (AVAST Software) C:\Windows\system32\Drivers\aswmonflt.sys
2016-03-06 18:49 - 2013-12-23 17:02 - 00000000 ____D C:\Users\Dominik\AppData\Roaming\.minecraft
2016-03-06 10:00 - 2012-11-09 09:52 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2016-03-04 19:26 - 2013-06-09 10:31 - 00000000 ____D C:\Users\Dominik\AppData\Local\CrashDumps
2016-02-27 01:17 - 2015-10-23 14:19 - 00000000 ___SD C:\Windows\SysWOW64\GWX
2016-02-27 01:17 - 2015-10-23 14:19 - 00000000 ___SD C:\Windows\system32\GWX
2016-02-24 10:04 - 2014-06-01 06:26 - 00000000 ____D C:\Users\Dominik\Desktop\prezentace a referáty
2016-02-23 18:13 - 2011-09-16 16:54 - 00000000 ____D C:\Users\Dominik\AppData\Roaming\Skype
2016-02-23 15:36 - 2012-11-09 09:52 - 00463744 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2016-02-20 18:18 - 2012-03-22 17:15 - 00000000 ____D C:\Users\Dominik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Counter-Strike 1.6
2016-02-20 12:17 - 2011-09-06 18:54 - 00000000 ____D C:\Users\Dominik
2016-02-19 14:48 - 2013-10-03 18:45 - 00000000 ____D C:\Users\Dominik\Downloads\hrajcs
2016-02-19 11:32 - 2014-06-01 06:43 - 00000000 ____D C:\Users\Dominik\Desktop\Hry a aplikace
2016-02-18 08:47 - 2016-01-10 18:03 - 00000000 ____D C:\Users\Dominik\Desktop\Psychologie
2016-02-17 12:52 - 2012-11-24 10:46 - 00000000 ___RD C:\Users\Dominik\Desktop\Danda
2016-02-16 18:08 - 2015-12-08 20:50 - 00000000 ____D C:\Program Files (x86)\Battle.net
2016-02-16 18:07 - 2015-12-08 20:51 - 00000000 ____D C:\Users\Dominik\AppData\Local\Battle.net
2016-02-13 12:16 - 2016-02-12 20:39 - 00000000 ____D C:\WarThunder

==================== Files in the root of some directories =======

2012-06-07 20:28 - 2003-05-02 15:10 - 118012231 _____ () C:\Program Files (x86)\disk01.cbf
2012-06-07 20:28 - 2003-04-30 15:17 - 0212992 ____R () C:\Program Files (x86)\setup.bin
2012-06-07 20:28 - 2003-04-30 15:17 - 0348263 _____ () C:\Program Files (x86)\setup.cbf
2013-10-30 18:36 - 2013-10-31 06:59 - 0000132 _____ () C:\Users\Dominik\AppData\Roaming\Adobe BMP Format CS5 Prefs
2011-12-29 22:25 - 2012-02-02 16:34 - 0000115 _____ () C:\Users\Dominik\AppData\Roaming\default.pls
2012-02-26 00:26 - 2014-04-03 17:27 - 0008192 _____ () C:\Users\Dominik\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-04-11 16:01 - 2013-04-11 16:01 - 0000017 _____ () C:\Users\Dominik\AppData\Local\resmon.resmoncfg
2013-02-06 14:52 - 2013-02-06 14:52 - 1145382 ____N () C:\Users\Dominik\AppData\Local\Tempmusic.ogg

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================



==================== MBR and Partition Table ==================


==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Disabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Dominik\Desktop" je 8733 MB.


***** Startup Programs *****

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ETDWare
C:\Program Files\Elantech\ETDCtrl.exe


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x1
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x1
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000


==================== End Of Log ==============================
Nahoru
DanielAntos
Návštěvník
Návštěvník
Příspěvky: 39
Registrován: 11 bře 2016 23:00

Re: Zamrzá počítač

#24 Příspěvek od DanielAntos »

Addition:

Additional scan result of Farbar Recovery Scan Tool (x64) Version:05-03-2016 01
Ran by Dominik (2016-03-14 13:49:57)
Running from C:\Users\Dominik\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2011-09-06 17:53:56)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-2071916412-1336065733-774511312-500 - Administrator - Disabled)
Dominik (S-1-5-21-2071916412-1336065733-774511312-1000 - Administrator - Enabled) => C:\Users\Dominik
Guest (S-1-5-21-2071916412-1336065733-774511312-501 - Administrator - Disabled) => C:\Users\Guest
HomeGroupUser$ (S-1-5-21-2071916412-1336065733-774511312-1002 - Limited - Enabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Disabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKLM-x32\...\uTorrent) (Version: 3.3.0.29111 - BitTorrent Inc.)
µTorrent (HKU\S-1-5-21-2071916412-1336065733-774511312-1000\...\uTorrent) (Version: 3.3.2.30488 - BitTorrent Inc.)
Adobe Photoshop CS3 (HKLM-x32\...\Adobe_2ac78060bc5856b0c1cf873bb919b58) (Version: 10.0 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.2.172 - Adobe Systems, Inc.)
Age of Chivalry (HKLM-x32\...\Steam App 17510) (Version: - Team Chivalry)
America's Army 3 (HKLM-x32\...\Steam App 13140) (Version: - U.S. Army)
Angry Birds Star Wars (HKLM-x32\...\{9013721D-0440-4CCF-81FC-D60DC138D412}) (Version: 1.1.0 - Rovio)
Audacity 2.1.0 (HKLM-x32\...\Audacity_is1) (Version: 2.1.0 - Audacity Team)
Auslogics Registry Cleaner (HKLM-x32\...\{8D8024F1-2945-49A5-9B78-5AB7B11D7942}_is1) (Version: 3.5.3.0 - Auslogics Labs Pty Ltd)
Avast Free Antivirus (HKLM-x32\...\avast) (Version: 11.1.2253 - AVAST Software)
AVG PC TuneUp 2014 (cs-CZ) (x32 Version: 14.0.1001.380 - AVG) Hidden
AVG PC TuneUp 2014 (HKLM-x32\...\AVG PC TuneUp) (Version: 14.0.1001.380 - AVG)
AVG PC TuneUp 2014 (x32 Version: 14.0.1001.380 - AVG) Hidden
AVI ReComp 1.5.5 (HKLM-x32\...\AVI ReComp) (Version: 1.5.5 - Mateusz Gola (aka Prozac))
AviSynth 2.5 (HKLM-x32\...\AviSynth) (Version: - )
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Battlefield 2: Deluxe Edition (HKLM-x32\...\{04858915-9F49-4B2A-AED4-DC49A7DE6A7B}) (Version: - )
Battlefield Heroes (HKLM-x32\...\{8DC910CD-8EE3-4ffc-A4EB-9B02701059C4}) (Version: - EA Digital illusions)
Battlefield Play4Free (HKLM-x32\...\{87686C21-8A15-4b4d-A3F1-11141D9BE094}) (Version: - EA Digital illusions)
Battlelog.co Launcher version 1.5 (HKLM-x32\...\{995DB38C-4E46-4407-B636-2986F2DE9A36}_is1) (Version: 1.5 - Blue Entertainment)
BLOCKADE 3D (HKLM-x32\...\Steam App 302830) (Version: - Shumkov Dmitriy)
BlueStacks Notification Center (HKLM-x32\...\{50DA15C1-0161-40EE-A325-0BE5BA03C026}) (Version: 0.9.0.4049 - BlueStack Systems, Inc.)
Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch (x32 Version: - ) Hidden
Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch (x32 Version: 1.6 - Activision) Hidden
Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch (x32 Version: - ) Hidden
Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch (x32 Version: 1.7 - Activision) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 3.24 - Piriform)
Counter Strike 1.6 Server Creator v2.4 2.4 (HKLM-x32\...\Counter Strike 1.6 Server Creator v2.4 2.4) (Version: - )
Counter-Strike (HKLM-x32\...\Steam App 10) (Version: - Valve)
Counter-Strike 1.6 (HKLM-x32\...\{13B792AA-C078-43A4-8A3A-8B12D629940D}) (Version: 1.00.0000 - )
Counter-Strike 1.6 (HKLM-x32\...\{9ABFB92D-93DA-49EE-8ABF-F8195DE45CA9}) (Version: 1.6 - )
Counter-Strike 1.6 (HKU\S-1-5-21-2071916412-1336065733-774511312-1000\...\Counter-Strike 1.6) (Version: - )
Counter-Strike 1.6 Non-Steam 1.0 (HKLM-x32\...\Counter-Strike 1.6 Non-Steam 1.0) (Version: - )
Counter-Strike 1.6 v43g (HKU\S-1-5-21-2071916412-1336065733-774511312-1000\...\Counter-Strike 1.6_is1) (Version: - Valve)
Counter-Strike: Source (HKLM-x32\...\Steam App 240) (Version: - Valve)
CPUID CPU-Z 1.66.1 (HKLM\...\CPUID CPU-Z_is1) (Version: - )
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.48.1.0347 - Disc Soft Ltd)
DRIVERfighter (x32 Version: 1.1.170 - SPAMfighter ApS) Hidden
Dropbox (HKU\S-1-5-21-2071916412-1336065733-774511312-1000\...\Dropbox) (Version: 2.6.24 - Dropbox, Inc.)
EA SPORTS online 2005 (HKLM-x32\...\82A44D22-9452-49FB-00FB-CEC7DCAF7E23) (Version: - )
EA Sports™ FIFA World (HKLM-x32\...\{8F9AC744-EEF6-43DB-A4B6-FA1A18F1C640}) (Version: 7.1.0.50515 - Electronic Arts, Inc.)
Easy Video to iPod/MP4/PSP/3GP Converter 1.3.0 (HKLM-x32\...\Easy Video to iPod/MP4/PSP/3GP Converter_is1) (Version: - Ether Software)
ETDWare PS/2-x64 7.0.5.7_WHQL (HKLM\...\Elantech) (Version: - )
Euro Truck Simulator 2 (HKLM-x32\...\{1B705E8F-9893-4486-B5D7-4F7FEB9C871E}_is1) (Version: 1.1.1 - SCS Software)
F1 2013 (HKLM-x32\...\Steam App 223670) (Version: - Codemasters Birmingham)
FIFA 10 (HKLM-x32\...\{11202615-E557-4ECF-9B86-F59C81E52909}) (Version: 1.0.0.0 - Electronic Arts)
Football Manager 2012 (HKLM-x32\...\Football Manager 2012_is1) (Version: - )
Fraps (remove only) (HKLM-x32\...\Fraps) (Version: - )
Free AVI to MP4 Converter 1.0 (HKLM-x32\...\{756DF96D-E40E-4B52-A53D-036E3D6AAB44}_is1) (Version: - PolySoft Solutions)
Gameforge Live 2.0.8 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.8 - Gameforge)
Ghost Recon Online (HKU\S-1-5-21-2071916412-1336065733-774511312-1000\...\d8be6c3f847d7d92) (Version: 1.30.8665.2 - Ubisoft)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 48.0.2564.116 - Google Inc.)
Google Talk Plugin (HKLM-x32\...\{C1E3DFE7-4EAD-3E9E-A826-E06055BA5921}) (Version: 5.4.2.18903 - Google)
Google Update Helper (x32 Version: 1.3.24.15 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden
GotClip Downloader (HKLM-x32\...\GotClip) (Version: - )
Hama 4in1 Racing Wheel (HKLM-x32\...\{AF66AE87-4302-4B30-A47E-9E2D634DD1E6}) (Version: 2004.11.18 - )
Hearthstone (HKLM-x32\...\Hearthstone) (Version: - Blizzard Entertainment)
HTC Driver Installer (HKLM-x32\...\{4CEEE5D0-F905-4688-B9F9-ECC710507796}) (Version: 4.1.0.001 - HTC Corporation)
ICQ7.6 (HKLM-x32\...\{7644E42D-B096-457F-8B5B-901238FC81AE}) (Version: 7.6 - ICQ)
IMPI 2.0.0.429 (HKLM\...\{17E113E6-CD0E-4045-B154-65F0E57959EF}_is1) (Version: - Bitcocktail)
Intel(R) Graphics Media Accelerator Driver (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2021 - Intel Corporation)
IPTInstaller (HKLM-x32\...\{08208143-777D-4A06-BB54-71BF0AD1BB70}) (Version: 4.0.8 - HTC)
Kingo Android ROOT version 1.1.8.1835 (HKLM-x32\...\{AE7675D6-0B31-494F-ABFA-822E1A0FDF17}_is1) (Version: 1.1.8.1835 - Kingosoft Technology Ltd.)
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - )
LEGO Star Wars (x32 Version: 1.00.0000 - Giant) Hidden
Loadout (HKLM-x32\...\Steam App 208090) (Version: - Edge of Reality)
Malwarebytes Anti-Malware verze 2.2.0.1024 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Metin2 (HKLM-x32\...\Metin2_is1) (Version: - Gameforge 4D GmbH)
Microsoft .NET Framework 4.5.2 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM\...\Office14.PROPLUS) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Word Viewer 2003 (HKLM-x32\...\{90850405-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft WSE 3.0 Runtime (HKLM-x32\...\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}) (Version: 3.0.5305.0 - Microsoft Corp.)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Minecraft (HKLM-x32\...\{34D9106C-A947-47ED-B4AB-764736350769}) (Version: 1.6.1 - MINECRAFTinstall.net)
Mozilla Firefox 7.0.1 (x86 cs) (HKLM-x32\...\Mozilla Firefox 7.0.1 (x86 cs)) (Version: 7.0.1 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Mumble(PR edition) and Murmur(PR edition) (HKLM-x32\...\Mumble(PR Edition)) (Version: 1.1.8 - Mumble(PR Edition))
MV2Player (remove only) (HKLM-x32\...\MV2Player) (Version: - )
My Lockbox 2.4 (HKLM\...\My Lockbox_is1) (Version: 2.4 - )
Na`Vi Counter Strike 1.6 1.00 (HKLM-x32\...\Na`Vi Counter Strike 1.6 1.00) (Version: 1.00 - Company)
No More Room in Hell (HKLM-x32\...\Steam App 224260) (Version: - No More Room in Hell Team)
OJOsoft Total Video Converter (HKLM-x32\...\OJOsoft Total Video Converter_is1) (Version: 2.7.6.0419 - OJOsoft)
Opera 12.16 (HKLM-x32\...\Opera 12.16.1860) (Version: 12.16.1860 - Opera Software ASA)
Origin (HKLM-x32\...\Origin) (Version: 9.4.7.2799 - Electronic Arts, Inc.)
OUTDATEfighter (HKLM-x32\...\OUTDATEfighter) (Version: 1.1.93 - SPAMfighter ApS)
OUTDATEfighter (x32 Version: 1.1.93 - SPAMfighter ApS) Hidden
PDF Settings (x32 Version: 1.0 - Adobe Systems Incorporated) Hidden
PhotoScape (HKLM-x32\...\PhotoScape) (Version: - )
Platform (x32 Version: 1.34 - VIA Technologies, Inc.) Hidden
Project Reality: BF2 (HKLM\...\Project Reality: BF2 (pr)_is1) (Version: v1.2 - Project Reality)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.989 - Even Balance, Inc.)
QuadcoreM2 (HKLM-x32\...\QuadcoreM2 1.12.2012) (Version: 1.12.2012 - Quadcore Games)
QuadcoreM2 (x32 Version: 1.12.2012 - Quadcore Games) Hidden
Razer Game Booster (HKLM-x32\...\{88F0F4FF-B514-4E32-9C17-CAF96D60EAFC}) (Version: 3.5.6.0 - Razer USA Ltd.)
Recuva (HKLM\...\Recuva) (Version: 1.51 - Piriform)
Rich Media Player (HKLM-x32\...\Rich Media Player) (Version: 1.0.0.872 - Radiocom) <==== ATTENTION
SafeZone Stable 1.48.2066.44 (x32 Version: 1.48.2066.44 - Avast Software) Hidden
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (HKLM\...\{90140000-0011-0000-1000-0000000FF1CE}_Office14.PROPLUS_{A3364707-2F53-4C83-8F68-C9877A9080C7}) (Version: - Microsoft)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 64-Bit Edition (Version: - Microsoft) Hidden
Seznam Software (HKU\S-1-5-21-2071916412-1336065733-774511312-1000\...\SeznamInstall) (Version: - Seznam.cz)
SK Gaming CS 1.6 - by Veki 1.00 (HKLM-x32\...\SK Gaming CS 1.6 - by Veki 1.00) (Version: 1.00 - Veki Tutorijali)
Skype Click to Call (HKLM-x32\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 6.11.13348 - Skype Technologies S.A.)
Skype™ 7.0 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.0.102 - Skype Technologies S.A.)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 6 (HKLM-x32\...\TeamViewer 6) (Version: 6.0.10418 - TeamViewer GmbH)
TeamViewer 7 (HKLM-x32\...\TeamViewer 7) (Version: 7.0.12799 - TeamViewer)
TEW2005 (HKLM-x32\...\TEW2005) (Version: - )
The Battle for Middle-earth (tm) (HKLM-x32\...\{962E05CF-3394-496D-0091-850CF1762F6B}) (Version: - )
Total Video Converter 3.71 100812 (HKLM-x32\...\Total Video Converter 3.71_is1) (Version: - EffectMatrix Inc.)
TrackMania Nations Forever (HKLM-x32\...\Steam App 11020) (Version: - Nadeo)
Transformice (HKLM-x32\...\Steam App 335240) (Version: - Atelier 801)
Trove (HKLM-x32\...\Steam App 304050) (Version: - Trion Worlds)
TuneUp Utilities Language Pack (cs-CZ) (x32 Version: 13.0.2020.131 - TuneUp Software) Hidden
Unity Web Player (HKU\S-1-5-21-2071916412-1336065733-774511312-1000\...\UnityWebPlayer) (Version: - Unity Technologies ApS)
Vegas Pro 12.0 (64-bit) (HKLM\...\{BD422D00-5232-11E3-A6F3-F04DA23A5C58}) (Version: 12.0.770 - Sony)
VLC media player 2.1.3 (HKLM-x32\...\VLC media player) (Version: 2.1.3 - VideoLAN)
VobSub 2.23 (HKLM-x32\...\VobSub) (Version: 2.23 - Gabest)
WebcamMax (HKLM-x32\...\WebcamMax) (Version: 7.6.2.2.MultiLanguage - )
Windows Driver Package - Broadcom Bluetooth (06/15/2009 6.2.0.9000) (HKLM\...\6B8550A319DDC8B17F35F4A89988705E4592349B) (Version: 06/15/2009 6.2.0.9000 - Broadcom)
Windows Driver Package - Broadcom Bluetooth (07/30/2009 6.2.0.9405) (HKLM\...\6B6B5E96843E55CF5CF8C7E45FB457F1FE642FF1) (Version: 07/30/2009 6.2.0.9405 - Broadcom)
Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) (HKLM\...\3BA80AB4C7E9F8497C115C844953A3D4BEB84D21) (Version: 07/28/2009 6.2.0.9800 - Broadcom)
Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation)
WinRAR (HKLM\...\WinRAR archiver) (Version: - )
Xvid Video Codec (HKLM-x32\...\Xvid Video Codec 1.3.2) (Version: 1.3.2 - Xvid Team)
YouTube Downloader App 3.00 (HKLM-x32\...\YouTube Downloader App) (Version: 3.00 - Regensoft)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2071916412-1336065733-774511312-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Dominik\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2071916412-1336065733-774511312-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Dominik\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2071916412-1336065733-774511312-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Dominik\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2071916412-1336065733-774511312-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Dominik\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0CA5DF63-A39E-44ED-8B46-84CCC1946ED2} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2071916412-1336065733-774511312-1000UA => C:\Users\Dominik\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {107F82AC-ADC7-4225-8148-E72044DFC212} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-10-22] (Google Inc.)
Task: {143F1467-DEA7-4F49-95DD-2DDDF3BD857A} - System32\Tasks\AdobeAAMUpdater-1.0-Dominik-PC-Dominik => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2013-06-13] (Adobe Systems Incorporated)
Task: {45B49F9D-0C58-48DD-827D-120B760080F0} - System32\Tasks\{76AAC10B-61B5-4ADF-BF27-6AFFE77C839D} => C:\Program Files (x86)\EA Games\Battlefield 2\mods\pr\pr.exe
Task: {59A610BB-62CD-4397-BD34-B0EFC052EC86} - System32\Tasks\{C78FD882-4EA3-4A7D-A68B-34EFCDCDF6F3} => pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{7644E42D-B096-457F-8B5B-901238FC81AE}\ICQ7.exe" -c -runfromtemp -l0x0009 -removeonly
Task: {5A7B4306-4BA0-430D-AB89-90F4D72371AF} - System32\Tasks\{5275EE69-0D8C-4BAA-B50B-2FC40C8B6EC7} => C:\Counter-Strike 1.6\csko.exe
Task: {5BC3C5DF-D1E9-4A7F-BE9A-95F4EB5BFB87} - System32\Tasks\Game_Booster_AutoUpdate => C:\Program Files (x86)\IObit\Game Booster 3\AutoUpdate.exe
Task: {5EDED44F-C9E5-4A97-BE4B-AA3EE5D8AB60} - System32\Tasks\CCleanerSkipUAC => C:\PROGRAM FILES\CCLEANER\CCLEANER.EXE [2012-10-24] (Piriform Ltd)
Task: {6B2E31B6-2CF2-4278-9244-F8B54962293A} - System32\Tasks\Razer_Game_Booster_AutoUpdate => C:\Program Files (x86)\Razer\Razer Game Booster\AutoUpdate.exe [2012-11-13] ()
Task: {7950F7A6-920C-4DD9-BB97-043EB63CB8A3} - System32\Tasks\{31DC9FBC-1045-4A0B-9546-B6D9AF15F110} => pcalua.exe -a "C:\Program Files (x86)\InstallShield Installation Information\{4E074808-1B86-4230-A9EB-0904942EC4AE}\setup.exe" -c -runfromtemp -l0x0409
Task: {85C8EDCD-1B05-4C8C-A254-11C57DBE83D8} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-02-11] (AVAST Software)
Task: {8B4D61E8-4796-435B-AA9B-95F735490731} - System32\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-2071916412-1336065733-774511312-1000UA => C:\Users\Dominik\AppData\Local\CatalinaGroup\Update\CatalinaUpdate.exe
Task: {90D5BE30-2948-42BC-A80D-D03777ACB557} - System32\Tasks\{A5846E5A-22F3-484E-8A9C-B4F839E6C87C} => C:\Users\Dominik\Desktop\warcraft2\WAR2.EXE
Task: {91399361-B7E9-42B3-A7B2-994F862B9D3D} - System32\Tasks\SafeZone scheduled Autoupdate 1453540555 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-02-01] (Avast Software)
Task: {9AA9FFEE-9E85-4E0E-A750-323FF1C43EE1} - System32\Tasks\{30E8C41B-A75F-46A1-9CAB-20038A5D132A} => pcalua.exe -a "C:\Program Files\FlatOut2\unins000.exe"
Task: {9DD7DD0C-1761-448C-9566-FBB8A2D4D7CF} - System32\Tasks\{A4EBC051-8DA6-4180-93A6-76826D9CE143} => pcalua.exe -a C:\Users\Dominik\Desktop\sony-vegas_8.0Pro.exe -d C:\Users\Dominik\Desktop
Task: {A6A2E9BD-75A6-42F9-A8EF-692C36FEFEC6} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-03-06] (AVAST Software)
Task: {BA5D2FDF-9E9F-4965-9FCB-53D131103F85} - System32\Tasks\{186CBA70-A112-486C-B2F7-7DCDB25779E7} => C:\Counter-Strike 1.6\csko.exe
Task: {BC875805-A549-432B-ACAB-D8FED491F7A2} - System32\Tasks\{3C0F1F54-0842-454B-B2BA-E94E0BD506C7} => C:\Users\Dominik\Desktop\warcraft2\WAR2.EXE
Task: {C3C88A3C-A5AE-4B38-A63C-C5C8CE2A4C62} - System32\Tasks\{9AFFF9D0-34FC-47D0-A2CC-10EF507ECEC7} => pcalua.exe -a "C:\Users\Dominik\Desktop\TeamSpeak 3\CZ.exe" -d "C:\Users\Dominik\Desktop\TeamSpeak 3"
Task: {DF33F451-6097-45FA-ABF7-C78814016BF5} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2071916412-1336065733-774511312-1000Core => C:\Users\Dominik\AppData\Local\Google\Update\GoogleUpdate.exe
Task: {F68A187B-FED4-4944-BD1F-F8FEE41D91B3} - System32\Tasks\{08F8DFBA-41F7-447E-8C4F-44C487C64687} => C:\Users\Dominik\Desktop\warcraft2\WAR2.EXE
Task: {FAC6104C-4E7B-4EDD-91A7-99EA1B5AA6B5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-10-22] (Google Inc.)
Task: {FF7124CF-D450-4E5D-A5D3-CE3C9913BB2F} - System32\Tasks\CatalinaGroupUpdateTaskUserS-1-5-21-2071916412-1336065733-774511312-1000Core => C:\Users\Dominik\AppData\Local\CatalinaGroup\Update\CatalinaUpdate.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)
Nahoru
altrok
Moderátor
Moderátor
Příspěvky: 7322
Registrován: 15 lis 2012 22:26
Bydliště: Znojmo

Re: Zamrzá počítač

#25 Příspěvek od altrok »

  • Prejmenujte ComboFix na Uninstall a spustte jako spravce
  • ComboFix se odinstaluje.


:arrow: Velikost plochy by nemela presahovat 200 MB. Zpomaluje se pak start i samotny chod celeho PC. Doporucuji hlavne velke soubory a slozky premistit napr. do Dokumentu a na plochu umistit pouze zastupce.



:arrow: Nic se nedeje - vsichni mame povinnosti :)



  • Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
  • ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
  • znovu spustte FRST a kliknete na Fix
  • po restartu bude na plose ulozen fixlog, jehoz obsah vlozte do pristi odpovedi

    Kód: Vybrat vše

    Start
CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-2071916412-1336065733-774511312-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [not found]
S2 IMPI Updater; C:\Program Files\IMPI\ExtensionUpdaterService.exe [X]
C:\Program Files\IMPI
S3 TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [X]
End
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Nahoru
DanielAntos
Návštěvník
Návštěvník
Příspěvky: 39
Registrován: 11 bře 2016 23:00

Re: Zamrzá počítač

#26 Příspěvek od DanielAntos »

ComboFix jsem odinstaloval. Plochu jsem poupravil a nyní má kolem 20MB. Fix jsem udělal a s FixLogem se mi vytvořil i LM, má to něco společného s tím? :)

FixLog:

Fix result of Farbar Recovery Scan Tool (x64) Version:05-03-2016 01
Ran by Dominik (2016-03-15 14:47:07) Run:2
Running from C:\Users\Dominik\Desktop
Loaded Profiles: Dominik (Available Profiles: Dominik & Guest)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-2071916412-1336065733-774511312-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [not found]
S2 IMPI Updater; C:\Program Files\IMPI\ExtensionUpdaterService.exe [X]
C:\Program Files\IMPI
S3 TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [X]
End
*****************

Processes closed successfully.
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully
"HKU\S-1-5-21-2071916412-1336065733-774511312-1000\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully
C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} => path removed successfully
IMPI Updater => service removed successfully
"C:\Program Files\IMPI" => not found.
TuneUpUtilitiesDrv => service removed successfully


The system needed a reboot.

==== End of Fixlog 14:47:07 ====
Nahoru
altrok
Moderátor
Moderátor
Příspěvky: 7322
Registrován: 15 lis 2012 22:26
Bydliště: Znojmo

Re: Zamrzá počítač

#27 Příspěvek od altrok »

:arrow: Ano, LM.bat ma spojitost s nasim FRSTLauncherem. Muzete jej rucne smazat.



:arrow: Doporucuji zvysenou opatrnost pri pouzivani AVG PC TuneUp 2014. Doinstalujte Internet Explorer 11.



:arrow: Dalsi malware v PC nevidim - jake problemy na PC pozorujete nyni?
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Nahoru
DanielAntos
Návštěvník
Návštěvník
Příspěvky: 39
Registrován: 11 bře 2016 23:00

Re: Zamrzá počítač

#28 Příspěvek od DanielAntos »

AVG mohu klidně vymazat pokud není k ničemu potřeba, jinak explorer doinstaluji.
Dneska PC nezamrzl ani jednou. A celkově je to lepší.
Nahoru
altrok
Moderátor
Moderátor
Příspěvky: 7322
Registrován: 15 lis 2012 22:26
Bydliště: Znojmo

Re: Zamrzá počítač

#29 Příspěvek od altrok »

DanielAntos píše:AVG mohu klidně vymazat pokud není k ničemu potřeba
Nezbytne nutny pro chod PC tento produkt opravdu neni.


Par dni sledujte chovani PC a ozvete se. Pripadne uz jen uklidime pouzivane utility.
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Nahoru
DanielAntos
Návštěvník
Návštěvník
Příspěvky: 39
Registrován: 11 bře 2016 23:00

Re: Zamrzá počítač

#30 Příspěvek od DanielAntos »

Dobře, budu informovat. Ještě bych se chtěl zeptat jak nejlépe udržet PC v tomto stavu, to znamená bez Malwarů a čistý :) popřípadě nějaké programy k tomu. A co je vlastně ten úklid Utilit? Jinak děkuji moc za spolupráci. můžu napsat někam chválu na vás?
Nahoru
Odpovědět

Zpět na „Řešení problémů, logy“