Prosím o kontolu - problém s Windows Update

[altrok]

V pocitaci malware je/byl, ktery odstranujeme. Domnivam se ale, ze tento malware na Windows aktualizace nema vliv. Poradne procistime pocitac a pak vas pravdepodobne odkazu na technickou podporu Microsoftu.


Start -> vepiste cmd

• na vysledek vyhledavani kliknete pravym a zvolte Spustit jako spravce
• do spusteneho okna vepiste: sfc /scannow
• a odentrujte
• po jeho skonceni jeste do otevreneho prikazoveho radku vepiste (pripadne text zkopirujte do schranky pomoci Ctrl+C a vlozte pres pravy klik a vlozit)
• findstr /c:"[SR]" %windir%\logs\cbs\cbs.log >> "%userprofile%\desktop\sfcdetails.txt"
• a odentrujte
• obsah logu sfcdetails.txt umisteneho na plose zkopirujte do pristi odpovedi

[tacvud]

2016-05-19 12:13:56, Info CSI 0000000a [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:13:56, Info CSI 0000000b [SR] Beginning Verify and Repair transaction
2016-05-19 12:13:59, Info CSI 00000070 [SR] Verify complete
2016-05-19 12:13:59, Info CSI 00000071 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:13:59, Info CSI 00000072 [SR] Beginning Verify and Repair transaction
2016-05-19 12:14:02, Info CSI 000000d7 [SR] Verify complete
2016-05-19 12:14:02, Info CSI 000000d8 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:14:02, Info CSI 000000d9 [SR] Beginning Verify and Repair transaction
2016-05-19 12:14:04, Info CSI 0000013e [SR] Verify complete
2016-05-19 12:14:04, Info CSI 0000013f [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:14:04, Info CSI 00000140 [SR] Beginning Verify and Repair transaction
2016-05-19 12:14:07, Info CSI 000001a5 [SR] Verify complete
2016-05-19 12:14:07, Info CSI 000001a6 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:14:07, Info CSI 000001a7 [SR] Beginning Verify and Repair transaction
2016-05-19 12:14:09, Info CSI 0000020c [SR] Verify complete
2016-05-19 12:14:09, Info CSI 0000020d [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:14:09, Info CSI 0000020e [SR] Beginning Verify and Repair transaction
2016-05-19 12:14:12, Info CSI 00000273 [SR] Verify complete
2016-05-19 12:14:12, Info CSI 00000274 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:14:12, Info CSI 00000275 [SR] Beginning Verify and Repair transaction
2016-05-19 12:14:14, Info CSI 000002da [SR] Verify complete
2016-05-19 12:14:14, Info CSI 000002db [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:14:14, Info CSI 000002dc [SR] Beginning Verify and Repair transaction
2016-05-19 12:14:17, Info CSI 00000341 [SR] Verify complete
2016-05-19 12:14:17, Info CSI 00000342 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:14:17, Info CSI 00000343 [SR] Beginning Verify and Repair transaction
2016-05-19 12:14:19, Info CSI 000003a8 [SR] Verify complete
2016-05-19 12:14:19, Info CSI 000003a9 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:14:19, Info CSI 000003aa [SR] Beginning Verify and Repair transaction
2016-05-19 12:14:22, Info CSI 00000411 [SR] Verify complete
2016-05-19 12:14:23, Info CSI 00000412 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:14:23, Info CSI 00000413 [SR] Beginning Verify and Repair transaction
2016-05-19 12:14:26, Info CSI 00000478 [SR] Verify complete
2016-05-19 12:14:26, Info CSI 00000479 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:14:26, Info CSI 0000047a [SR] Beginning Verify and Repair transaction
2016-05-19 12:14:29, Info CSI 000004df [SR] Verify complete
2016-05-19 12:14:29, Info CSI 000004e0 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:14:29, Info CSI 000004e1 [SR] Beginning Verify and Repair transaction
2016-05-19 12:14:31, Info CSI 00000546 [SR] Verify complete
2016-05-19 12:14:31, Info CSI 00000547 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:14:31, Info CSI 00000548 [SR] Beginning Verify and Repair transaction
2016-05-19 12:14:33, Info CSI 000005ad [SR] Verify complete
2016-05-19 12:14:33, Info CSI 000005ae [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:14:33, Info CSI 000005af [SR] Beginning Verify and Repair transaction
2016-05-19 12:14:35, Info CSI 00000614 [SR] Verify complete
2016-05-19 12:14:35, Info CSI 00000615 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:14:35, Info CSI 00000616 [SR] Beginning Verify and Repair transaction
2016-05-19 12:14:39, Info CSI 0000067b [SR] Verify complete
2016-05-19 12:14:39, Info CSI 0000067c [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:14:39, Info CSI 0000067d [SR] Beginning Verify and Repair transaction
2016-05-19 12:14:43, Info CSI 000006e2 [SR] Verify complete
2016-05-19 12:14:43, Info CSI 000006e3 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:14:43, Info CSI 000006e4 [SR] Beginning Verify and Repair transaction
2016-05-19 12:14:46, Info CSI 00000749 [SR] Verify complete
2016-05-19 12:14:46, Info CSI 0000074a [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:14:46, Info CSI 0000074b [SR] Beginning Verify and Repair transaction
2016-05-19 12:14:49, Info CSI 000007b0 [SR] Verify complete
2016-05-19 12:14:49, Info CSI 000007b1 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:14:49, Info CSI 000007b2 [SR] Beginning Verify and Repair transaction
2016-05-19 12:14:52, Info CSI 00000817 [SR] Verify complete
2016-05-19 12:14:52, Info CSI 00000818 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:14:52, Info CSI 00000819 [SR] Beginning Verify and Repair transaction
2016-05-19 12:14:55, Info CSI 0000087e [SR] Verify complete
2016-05-19 12:14:55, Info CSI 0000087f [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:14:55, Info CSI 00000880 [SR] Beginning Verify and Repair transaction
2016-05-19 12:14:57, Info CSI 000008e5 [SR] Verify complete
2016-05-19 12:14:58, Info CSI 000008e6 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:14:58, Info CSI 000008e7 [SR] Beginning Verify and Repair transaction
2016-05-19 12:15:00, Info CSI 0000094c [SR] Verify complete
2016-05-19 12:15:00, Info CSI 0000094d [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:15:00, Info CSI 0000094e [SR] Beginning Verify and Repair transaction
2016-05-19 12:15:02, Info CSI 000009b3 [SR] Verify complete
2016-05-19 12:15:02, Info CSI 000009b4 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:15:02, Info CSI 000009b5 [SR] Beginning Verify and Repair transaction
2016-05-19 12:15:05, Info CSI 00000a20 [SR] Verify complete
2016-05-19 12:15:06, Info CSI 00000a21 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:15:06, Info CSI 00000a22 [SR] Beginning Verify and Repair transaction
2016-05-19 12:15:07, Info CSI 00000a87 [SR] Verify complete
2016-05-19 12:15:07, Info CSI 00000a88 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:15:07, Info CSI 00000a89 [SR] Beginning Verify and Repair transaction
2016-05-19 12:15:09, Info CSI 00000aee [SR] Verify complete
2016-05-19 12:15:09, Info CSI 00000aef [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:15:09, Info CSI 00000af0 [SR] Beginning Verify and Repair transaction
2016-05-19 12:15:10, Info CSI 00000b5c [SR] Verify complete
2016-05-19 12:15:11, Info CSI 00000b5d [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:15:11, Info CSI 00000b5e [SR] Beginning Verify and Repair transaction
2016-05-19 12:15:13, Info CSI 00000bc4 [SR] Verify complete
2016-05-19 12:15:13, Info CSI 00000bc5 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:15:13, Info CSI 00000bc6 [SR] Beginning Verify and Repair transaction
2016-05-19 12:15:14, Info CSI 00000bf5 [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:11]"usermgr.dll" from store
2016-05-19 12:15:15, Info CSI 00000bfb [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:14]"usermgrcli.dll" from store
2016-05-19 12:15:15, Info CSI 00000c31 [SR] Verify complete
2016-05-19 12:15:16, Info CSI 00000c32 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:15:16, Info CSI 00000c33 [SR] Beginning Verify and Repair transaction
2016-05-19 12:15:22, Info CSI 00000cb2 [SR] Verify complete
2016-05-19 12:15:22, Info CSI 00000cb3 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:15:22, Info CSI 00000cb4 [SR] Beginning Verify and Repair transaction
2016-05-19 12:15:27, Info CSI 00000cfb [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:12]"advapi32.dll" from store
2016-05-19 12:15:29, Info CSI 00000d26 [SR] Verify complete
2016-05-19 12:15:29, Info CSI 00000d27 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:15:29, Info CSI 00000d28 [SR] Beginning Verify and Repair transaction
2016-05-19 12:15:34, Info CSI 00000d91 [SR] Verify complete
2016-05-19 12:15:34, Info CSI 00000d92 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:15:34, Info CSI 00000d93 [SR] Beginning Verify and Repair transaction
2016-05-19 12:15:38, Info CSI 00000e04 [SR] Verify complete
2016-05-19 12:15:38, Info CSI 00000e05 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:15:38, Info CSI 00000e06 [SR] Beginning Verify and Repair transaction
2016-05-19 12:15:45, Info CSI 00000e6d [SR] Verify complete
2016-05-19 12:15:45, Info CSI 00000e6e [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:15:45, Info CSI 00000e6f [SR] Beginning Verify and Repair transaction
2016-05-19 12:15:51, Info CSI 00000ed4 [SR] Verify complete
2016-05-19 12:15:51, Info CSI 00000ed5 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:15:51, Info CSI 00000ed6 [SR] Beginning Verify and Repair transaction
2016-05-19 12:15:55, Info CSI 00000f3b [SR] Verify complete
2016-05-19 12:15:55, Info CSI 00000f3c [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:15:55, Info CSI 00000f3d [SR] Beginning Verify and Repair transaction
2016-05-19 12:16:02, Info CSI 00000fa5 [SR] Verify complete
2016-05-19 12:16:02, Info CSI 00000fa6 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:16:02, Info CSI 00000fa7 [SR] Beginning Verify and Repair transaction
2016-05-19 12:16:12, Info CSI 00001010 [SR] Verify complete
2016-05-19 12:16:12, Info CSI 00001011 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:16:12, Info CSI 00001012 [SR] Beginning Verify and Repair transaction
2016-05-19 12:16:19, Info CSI 000010a6 [SR] Verify complete
2016-05-19 12:16:19, Info CSI 000010a7 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:16:19, Info CSI 000010a8 [SR] Beginning Verify and Repair transaction
2016-05-19 12:16:26, Info CSI 00001141 [SR] Verify complete
2016-05-19 12:16:27, Info CSI 00001142 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:16:27, Info CSI 00001143 [SR] Beginning Verify and Repair transaction
2016-05-19 12:16:31, Info CSI 000011c1 [SR] Verify complete
2016-05-19 12:16:31, Info CSI 000011c2 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:16:31, Info CSI 000011c3 [SR] Beginning Verify and Repair transaction
2016-05-19 12:16:38, Info CSI 00001233 [SR] Verify complete
2016-05-19 12:16:38, Info CSI 00001234 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:16:38, Info CSI 00001235 [SR] Beginning Verify and Repair transaction
2016-05-19 12:16:43, Info CSI 000012a8 [SR] Verify complete
2016-05-19 12:16:43, Info CSI 000012a9 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:16:43, Info CSI 000012aa [SR] Beginning Verify and Repair transaction
2016-05-19 12:16:48, Info CSI 0000132a [SR] Verify complete
2016-05-19 12:16:48, Info CSI 0000132b [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:16:48, Info CSI 0000132c [SR] Beginning Verify and Repair transaction
2016-05-19 12:16:53, Info CSI 00001397 [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:8]"d2d1.dll" from store
2016-05-19 12:16:53, Info CSI 00001399 [SR] Verify complete
2016-05-19 12:16:53, Info CSI 0000139a [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:16:53, Info CSI 0000139b [SR] Beginning Verify and Repair transaction
2016-05-19 12:16:58, Info CSI 00001407 [SR] Verify complete
2016-05-19 12:16:58, Info CSI 00001408 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:16:58, Info CSI 00001409 [SR] Beginning Verify and Repair transaction
2016-05-19 12:17:03, Info CSI 00001471 [SR] Verify complete
2016-05-19 12:17:04, Info CSI 00001472 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:17:04, Info CSI 00001473 [SR] Beginning Verify and Repair transaction
2016-05-19 12:17:09, Info CSI 000014e2 [SR] Verify complete
2016-05-19 12:17:09, Info CSI 000014e3 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:17:09, Info CSI 000014e4 [SR] Beginning Verify and Repair transaction
2016-05-19 12:17:15, Info CSI 00001573 [SR] Verify complete
2016-05-19 12:17:16, Info CSI 00001574 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:17:16, Info CSI 00001575 [SR] Beginning Verify and Repair transaction
2016-05-19 12:17:22, Info CSI 000015f9 [SR] Verify complete
2016-05-19 12:17:23, Info CSI 000015fa [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:17:23, Info CSI 000015fb [SR] Beginning Verify and Repair transaction
2016-05-19 12:17:33, Info CSI 000016a0 [SR] Verify complete
2016-05-19 12:17:33, Info CSI 000016a1 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:17:33, Info CSI 000016a2 [SR] Beginning Verify and Repair transaction
2016-05-19 12:17:39, Info CSI 000016dd [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:9]"gdi32.dll" from store
2016-05-19 12:17:40, Info CSI 00001716 [SR] Verify complete
2016-05-19 12:17:40, Info CSI 00001717 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:17:40, Info CSI 00001718 [SR] Beginning Verify and Repair transaction
2016-05-19 12:17:44, Info CSI 00001785 [SR] Verify complete
2016-05-19 12:17:44, Info CSI 00001786 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:17:44, Info CSI 00001787 [SR] Beginning Verify and Repair transaction
2016-05-19 12:17:51, Info CSI 00001804 [SR] Verify complete
2016-05-19 12:17:51, Info CSI 00001805 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:17:51, Info CSI 00001806 [SR] Beginning Verify and Repair transaction
2016-05-19 12:17:55, Info CSI 00001873 [SR] Verify complete
2016-05-19 12:17:55, Info CSI 00001874 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:17:55, Info CSI 00001875 [SR] Beginning Verify and Repair transaction
2016-05-19 12:17:58, Info CSI 000018da [SR] Verify complete
2016-05-19 12:17:58, Info CSI 000018db [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:17:58, Info CSI 000018dc [SR] Beginning Verify and Repair transaction
2016-05-19 12:18:03, Info CSI 0000194e [SR] Verify complete
2016-05-19 12:18:04, Info CSI 0000194f [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:18:04, Info CSI 00001950 [SR] Beginning Verify and Repair transaction
2016-05-19 12:18:06, Info CSI 000019b5 [SR] Verify complete
2016-05-19 12:18:06, Info CSI 000019b6 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:18:06, Info CSI 000019b7 [SR] Beginning Verify and Repair transaction
2016-05-19 12:18:12, Info CSI 00001a28 [SR] Verify complete
2016-05-19 12:18:13, Info CSI 00001a29 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:18:13, Info CSI 00001a2a [SR] Beginning Verify and Repair transaction
2016-05-19 12:18:19, Info CSI 00001a9b [SR] Verify complete
2016-05-19 12:18:19, Info CSI 00001a9c [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:18:19, Info CSI 00001a9d [SR] Beginning Verify and Repair transaction
2016-05-19 12:18:25, Info CSI 00001b15 [SR] Verify complete
2016-05-19 12:18:25, Info CSI 00001b16 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:18:25, Info CSI 00001b17 [SR] Beginning Verify and Repair transaction
2016-05-19 12:18:29, Info CSI 00001b82 [SR] Verify complete
2016-05-19 12:18:29, Info CSI 00001b83 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:18:29, Info CSI 00001b84 [SR] Beginning Verify and Repair transaction
2016-05-19 12:18:36, Info CSI 00001c09 [SR] Verify complete
2016-05-19 12:18:36, Info CSI 00001c0a [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:18:36, Info CSI 00001c0b [SR] Beginning Verify and Repair transaction
2016-05-19 12:18:44, Info CSI 00001c81 [SR] Verify complete
2016-05-19 12:18:44, Info CSI 00001c82 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:18:44, Info CSI 00001c83 [SR] Beginning Verify and Repair transaction
2016-05-19 12:18:51, Info CSI 00001cf3 [SR] Verify complete
2016-05-19 12:18:51, Info CSI 00001cf4 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:18:51, Info CSI 00001cf5 [SR] Beginning Verify and Repair transaction
2016-05-19 12:18:57, Info CSI 00001d65 [SR] Verify complete
2016-05-19 12:18:58, Info CSI 00001d66 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:18:58, Info CSI 00001d67 [SR] Beginning Verify and Repair transaction
2016-05-19 12:19:11, Info CSI 00001df4 [SR] Verify complete
2016-05-19 12:19:11, Info CSI 00001df5 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:19:11, Info CSI 00001df6 [SR] Beginning Verify and Repair transaction
2016-05-19 12:19:16, Info CSI 00001e67 [SR] Verify complete
2016-05-19 12:19:17, Info CSI 00001e68 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:19:17, Info CSI 00001e69 [SR] Beginning Verify and Repair transaction
2016-05-19 12:19:21, Info CSI 00001ec7 [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:10]"msxml6.dll" from store
2016-05-19 12:19:22, Info CSI 00001edd [SR] Verify complete
2016-05-19 12:19:22, Info CSI 00001ede [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:19:22, Info CSI 00001edf [SR] Beginning Verify and Repair transaction
2016-05-19 12:19:25, Info CSI 00001f47 [SR] Verify complete
2016-05-19 12:19:25, Info CSI 00001f48 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:19:25, Info CSI 00001f49 [SR] Beginning Verify and Repair transaction
2016-05-19 12:19:32, Info CSI 00001fee [SR] Verify complete
2016-05-19 12:19:32, Info CSI 00001fef [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:19:32, Info CSI 00001ff0 [SR] Beginning Verify and Repair transaction
2016-05-19 12:19:37, Info CSI 0000205c [SR] Verify complete
2016-05-19 12:19:37, Info CSI 0000205d [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:19:37, Info CSI 0000205e [SR] Beginning Verify and Repair transaction
2016-05-19 12:19:43, Info CSI 000020cc [SR] Verify complete
2016-05-19 12:19:43, Info CSI 000020cd [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:19:43, Info CSI 000020ce [SR] Beginning Verify and Repair transaction
2016-05-19 12:19:47, Info CSI 0000213f [SR] Verify complete
2016-05-19 12:19:48, Info CSI 00002140 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:19:48, Info CSI 00002141 [SR] Beginning Verify and Repair transaction
2016-05-19 12:19:52, Info CSI 000021b9 [SR] Verify complete
2016-05-19 12:19:52, Info CSI 000021ba [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:19:52, Info CSI 000021bb [SR] Beginning Verify and Repair transaction
2016-05-19 12:19:59, Info CSI 0000223b [SR] Verify complete
2016-05-19 12:19:59, Info CSI 0000223c [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:19:59, Info CSI 0000223d [SR] Beginning Verify and Repair transaction
2016-05-19 12:20:03, Info CSI 00002258 [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:19]"ProximityCommon.dll" from store
2016-05-19 12:20:05, Info CSI 000022c0 [SR] Verify complete
2016-05-19 12:20:05, Info CSI 000022c1 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:20:05, Info CSI 000022c2 [SR] Beginning Verify and Repair transaction
2016-05-19 12:20:09, Info CSI 000022d4 [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:12]"rasadhlp.dll" from store
2016-05-19 12:20:09, Info CSI 000022f2 [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:12]"rasapi32.dll" from store
2016-05-19 12:20:11, Info CSI 00002336 [SR] Verify complete
2016-05-19 12:20:11, Info CSI 00002337 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:20:11, Info CSI 00002338 [SR] Beginning Verify and Repair transaction
2016-05-19 12:20:16, Info CSI 000023a1 [SR] Verify complete
2016-05-19 12:20:16, Info CSI 000023a2 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:20:16, Info CSI 000023a3 [SR] Beginning Verify and Repair transaction
2016-05-19 12:20:19, Info CSI 000023e3 [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:12]"services.exe" from store
2016-05-19 12:20:20, Info CSI 0000240d [SR] Verify complete
2016-05-19 12:20:20, Info CSI 0000240e [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:20:20, Info CSI 0000240f [SR] Beginning Verify and Repair transaction
2016-05-19 12:20:25, Info CSI 00002485 [SR] Verify complete
2016-05-19 12:20:25, Info CSI 00002486 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:20:25, Info CSI 00002487 [SR] Beginning Verify and Repair transaction
2016-05-19 12:20:29, Info CSI 000024ee [SR] Verify complete
2016-05-19 12:20:29, Info CSI 000024ef [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:20:29, Info CSI 000024f0 [SR] Beginning Verify and Repair transaction
2016-05-19 12:20:32, Info CSI 00002559 [SR] Verify complete
2016-05-19 12:20:32, Info CSI 0000255a [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:20:32, Info CSI 0000255b [SR] Beginning Verify and Repair transaction
2016-05-19 12:20:43, Info CSI 000025d7 [SR] Verify complete
2016-05-19 12:20:44, Info CSI 000025d8 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:20:44, Info CSI 000025d9 [SR] Beginning Verify and Repair transaction
2016-05-19 12:20:49, Info CSI 00002648 [SR] Verify complete
2016-05-19 12:20:49, Info CSI 00002649 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:20:49, Info CSI 0000264a [SR] Beginning Verify and Repair transaction
2016-05-19 12:20:55, Info CSI 0000268f [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:12]"schannel.dll" from store
2016-05-19 12:20:56, Info CSI 000026bb [SR] Verify complete
2016-05-19 12:20:56, Info CSI 000026bc [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:20:56, Info CSI 000026bd [SR] Beginning Verify and Repair transaction
2016-05-19 12:21:05, Info CSI 00002760 [SR] Verify complete
2016-05-19 12:21:05, Info CSI 00002761 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:21:05, Info CSI 00002762 [SR] Beginning Verify and Repair transaction
2016-05-19 12:21:11, Info CSI 000027c4 [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:13]"sscoreext.dll" from store
2016-05-19 12:21:11, Info CSI 000027d9 [SR] Verify complete
2016-05-19 12:21:11, Info CSI 000027da [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:21:11, Info CSI 000027db [SR] Beginning Verify and Repair transaction
2016-05-19 12:21:15, Info CSI 00002808 [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:10]"srcore.dll" from store
2016-05-19 12:21:16, Info CSI 00002845 [SR] Verify complete
2016-05-19 12:21:16, Info CSI 00002846 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:21:16, Info CSI 00002847 [SR] Beginning Verify and Repair transaction
2016-05-19 12:21:20, Info CSI 0000286b [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:9]"msctf.dll" from store
2016-05-19 12:21:22, Info CSI 000028bd [SR] Verify complete
2016-05-19 12:21:22, Info CSI 000028be [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:21:22, Info CSI 000028bf [SR] Beginning Verify and Repair transaction
2016-05-19 12:21:28, Info CSI 00002927 [SR] Verify complete
2016-05-19 12:21:28, Info CSI 00002928 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:21:28, Info CSI 00002929 [SR] Beginning Verify and Repair transaction
2016-05-19 12:21:34, Info CSI 00002997 [SR] Verify complete
2016-05-19 12:21:34, Info CSI 00002998 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:21:34, Info CSI 00002999 [SR] Beginning Verify and Repair transaction
2016-05-19 12:21:39, Info CSI 00002a00 [SR] Verify complete
2016-05-19 12:21:39, Info CSI 00002a01 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:21:39, Info CSI 00002a02 [SR] Beginning Verify and Repair transaction
2016-05-19 12:21:45, Info CSI 00002a75 [SR] Verify complete
2016-05-19 12:21:46, Info CSI 00002a76 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:21:46, Info CSI 00002a77 [SR] Beginning Verify and Repair transaction
2016-05-19 12:21:51, Info CSI 00002aea [SR] Verify complete
2016-05-19 12:21:51, Info CSI 00002aeb [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:21:51, Info CSI 00002aec [SR] Beginning Verify and Repair transaction
2016-05-19 12:21:56, Info CSI 00002b5d [SR] Verify complete
2016-05-19 12:21:56, Info CSI 00002b5e [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:21:56, Info CSI 00002b5f [SR] Beginning Verify and Repair transaction
2016-05-19 12:22:00, Info CSI 00002bce [SR] Verify complete
2016-05-19 12:22:00, Info CSI 00002bcf [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:22:00, Info CSI 00002bd0 [SR] Beginning Verify and Repair transaction
2016-05-19 12:22:05, Info CSI 00002c4d [SR] Verify complete
2016-05-19 12:22:05, Info CSI 00002c4e [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:22:05, Info CSI 00002c4f [SR] Beginning Verify and Repair transaction
2016-05-19 12:22:10, Info CSI 00002cb5 [SR] Verify complete
2016-05-19 12:22:10, Info CSI 00002cb6 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:22:10, Info CSI 00002cb7 [SR] Beginning Verify and Repair transaction
2016-05-19 12:22:14, Info CSI 00002cbf [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:12]"winlogon.exe" from store
2016-05-19 12:22:16, Info CSI 00002d20 [SR] Verify complete
2016-05-19 12:22:16, Info CSI 00002d21 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:22:16, Info CSI 00002d22 [SR] Beginning Verify and Repair transaction
2016-05-19 12:22:22, Info CSI 00002d8e [SR] Verify complete
2016-05-19 12:22:22, Info CSI 00002d8f [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:22:22, Info CSI 00002d90 [SR] Beginning Verify and Repair transaction
2016-05-19 12:22:33, Info CSI 00002e4a [SR] Verify complete
2016-05-19 12:22:34, Info CSI 00002e4b [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:22:34, Info CSI 00002e4c [SR] Beginning Verify and Repair transaction
2016-05-19 12:22:41, Info CSI 00002ee8 [SR] Verify complete
2016-05-19 12:22:41, Info CSI 00002ee9 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:22:41, Info CSI 00002eea [SR] Beginning Verify and Repair transaction
2016-05-19 12:22:46, Info CSI 00002f0f [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:11]"winhttp.dll" from store
2016-05-19 12:22:48, Info CSI 00002f6a [SR] Verify complete
2016-05-19 12:22:48, Info CSI 00002f6b [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:22:48, Info CSI 00002f6c [SR] Beginning Verify and Repair transaction
2016-05-19 12:22:51, Info CSI 00002fd1 [SR] Verify complete
2016-05-19 12:22:51, Info CSI 00002fd2 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:22:51, Info CSI 00002fd3 [SR] Beginning Verify and Repair transaction
2016-05-19 12:22:56, Info CSI 00003038 [SR] Verify complete
2016-05-19 12:22:56, Info CSI 00003039 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:22:56, Info CSI 0000303a [SR] Beginning Verify and Repair transaction
2016-05-19 12:23:01, Info CSI 000030a0 [SR] Verify complete
2016-05-19 12:23:01, Info CSI 000030a1 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:23:01, Info CSI 000030a2 [SR] Beginning Verify and Repair transaction
2016-05-19 12:23:06, Info CSI 00003107 [SR] Verify complete
2016-05-19 12:23:07, Info CSI 00003108 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:23:07, Info CSI 00003109 [SR] Beginning Verify and Repair transaction
2016-05-19 12:23:13, Info CSI 0000316e [SR] Verify complete
2016-05-19 12:23:13, Info CSI 0000316f [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:23:13, Info CSI 00003170 [SR] Beginning Verify and Repair transaction
2016-05-19 12:23:16, Info CSI 000031d5 [SR] Verify complete
2016-05-19 12:23:16, Info CSI 000031d6 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:23:16, Info CSI 000031d7 [SR] Beginning Verify and Repair transaction
2016-05-19 12:23:20, Info CSI 0000323d [SR] Verify complete
2016-05-19 12:23:20, Info CSI 0000323e [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:23:20, Info CSI 0000323f [SR] Beginning Verify and Repair transaction
2016-05-19 12:23:24, Info CSI 000032a4 [SR] Verify complete
2016-05-19 12:23:24, Info CSI 000032a5 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:23:24, Info CSI 000032a6 [SR] Beginning Verify and Repair transaction
2016-05-19 12:23:27, Info CSI 0000330b [SR] Verify complete
2016-05-19 12:23:27, Info CSI 0000330c [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:23:27, Info CSI 0000330d [SR] Beginning Verify and Repair transaction
2016-05-19 12:23:33, Info CSI 00003373 [SR] Verify complete
2016-05-19 12:23:33, Info CSI 00003374 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:23:33, Info CSI 00003375 [SR] Beginning Verify and Repair transaction
2016-05-19 12:23:38, Info CSI 00003405 [SR] Verify complete
2016-05-19 12:23:38, Info CSI 00003406 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:23:38, Info CSI 00003407 [SR] Beginning Verify and Repair transaction
2016-05-19 12:23:42, Info CSI 0000346d [SR] Verify complete
2016-05-19 12:23:42, Info CSI 0000346e [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:23:42, Info CSI 0000346f [SR] Beginning Verify and Repair transaction
2016-05-19 12:23:48, Info CSI 000034d8 [SR] Verify complete
2016-05-19 12:23:48, Info CSI 000034d9 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:23:48, Info CSI 000034da [SR] Beginning Verify and Repair transaction
2016-05-19 12:24:02, Info CSI 0000353f [SR] Verify complete
2016-05-19 12:24:02, Info CSI 00003540 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:24:02, Info CSI 00003541 [SR] Beginning Verify and Repair transaction
2016-05-19 12:24:08, Info CSI 000035a6 [SR] Verify complete
2016-05-19 12:24:08, Info CSI 000035a7 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:24:08, Info CSI 000035a8 [SR] Beginning Verify and Repair transaction
2016-05-19 12:24:13, Info CSI 0000360f [SR] Verify complete
2016-05-19 12:24:13, Info CSI 00003610 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:24:13, Info CSI 00003611 [SR] Beginning Verify and Repair transaction
2016-05-19 12:24:16, Info CSI 00003676 [SR] Verify complete
2016-05-19 12:24:17, Info CSI 00003677 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:24:17, Info CSI 00003678 [SR] Beginning Verify and Repair transaction
2016-05-19 12:24:27, Info CSI 000036df [SR] Verify complete
2016-05-19 12:24:27, Info CSI 000036e0 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:24:27, Info CSI 000036e1 [SR] Beginning Verify and Repair transaction
2016-05-19 12:24:33, Info CSI 0000374e [SR] Verify complete
2016-05-19 12:24:34, Info CSI 0000374f [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:24:34, Info CSI 00003750 [SR] Beginning Verify and Repair transaction
2016-05-19 12:24:41, Info CSI 000037c0 [SR] Verify complete
2016-05-19 12:24:41, Info CSI 000037c1 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:24:41, Info CSI 000037c2 [SR] Beginning Verify and Repair transaction
2016-05-19 12:24:46, Info CSI 00003827 [SR] Verify complete
2016-05-19 12:24:46, Info CSI 00003828 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:24:46, Info CSI 00003829 [SR] Beginning Verify and Repair transaction
2016-05-19 12:24:52, Info CSI 0000389b [SR] Verify complete
2016-05-19 12:24:52, Info CSI 0000389c [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:24:52, Info CSI 0000389d [SR] Beginning Verify and Repair transaction
2016-05-19 12:24:57, Info CSI 00003908 [SR] Verify complete
2016-05-19 12:24:57, Info CSI 00003909 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:24:57, Info CSI 0000390a [SR] Beginning Verify and Repair transaction
2016-05-19 12:25:03, Info CSI 0000396f [SR] Verify complete
2016-05-19 12:25:03, Info CSI 00003970 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:25:03, Info CSI 00003971 [SR] Beginning Verify and Repair transaction
2016-05-19 12:25:09, Info CSI 000039d6 [SR] Verify complete
2016-05-19 12:25:09, Info CSI 000039d7 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:25:09, Info CSI 000039d8 [SR] Beginning Verify and Repair transaction
2016-05-19 12:25:14, Info CSI 00003a3d [SR] Verify complete
2016-05-19 12:25:14, Info CSI 00003a3e [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:25:14, Info CSI 00003a3f [SR] Beginning Verify and Repair transaction
2016-05-19 12:25:19, Info CSI 00003aa4 [SR] Verify complete
2016-05-19 12:25:20, Info CSI 00003aa5 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:25:20, Info CSI 00003aa6 [SR] Beginning Verify and Repair transaction
2016-05-19 12:25:26, Info CSI 00003b1a [SR] Verify complete
2016-05-19 12:25:27, Info CSI 00003b1b [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:25:27, Info CSI 00003b1c [SR] Beginning Verify and Repair transaction
2016-05-19 12:25:32, Info CSI 00003b8a [SR] Verify complete
2016-05-19 12:25:32, Info CSI 00003b8b [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:25:32, Info CSI 00003b8c [SR] Beginning Verify and Repair transaction
2016-05-19 12:25:39, Info CSI 00003c01 [SR] Verify complete
2016-05-19 12:25:39, Info CSI 00003c02 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:25:39, Info CSI 00003c03 [SR] Beginning Verify and Repair transaction
2016-05-19 12:25:45, Info CSI 00003c7a [SR] Verify complete
2016-05-19 12:25:46, Info CSI 00003c7b [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:25:46, Info CSI 00003c7c [SR] Beginning Verify and Repair transaction
2016-05-19 12:25:53, Info CSI 00003cf5 [SR] Verify complete
2016-05-19 12:25:53, Info CSI 00003cf6 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:25:53, Info CSI 00003cf7 [SR] Beginning Verify and Repair transaction
2016-05-19 12:25:57, Info CSI 00003d20 [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\SysWOW64"\[l:9]"gdi32.dll" from store
2016-05-19 12:26:00, Info CSI 00003d6e [SR] Verify complete
2016-05-19 12:26:00, Info CSI 00003d6f [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:26:00, Info CSI 00003d70 [SR] Beginning Verify and Repair transaction
2016-05-19 12:26:05, Info CSI 00003dd6 [SR] Verify complete
2016-05-19 12:26:05, Info CSI 00003dd7 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:26:05, Info CSI 00003dd8 [SR] Beginning Verify and Repair transaction
2016-05-19 12:26:09, Info CSI 00003e3d [SR] Verify complete
2016-05-19 12:26:09, Info CSI 00003e3e [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:26:09, Info CSI 00003e3f [SR] Beginning Verify and Repair transaction
2016-05-19 12:26:13, Info CSI 00003eaa [SR] Verify complete
2016-05-19 12:26:13, Info CSI 00003eab [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:26:13, Info CSI 00003eac [SR] Beginning Verify and Repair transaction
2016-05-19 12:26:21, Info CSI 00003f2a [SR] Verify complete
2016-05-19 12:26:21, Info CSI 00003f2b [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:26:21, Info CSI 00003f2c [SR] Beginning Verify and Repair transaction
2016-05-19 12:26:30, Info CSI 00003fb1 [SR] Verify complete
2016-05-19 12:26:30, Info CSI 00003fb2 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:26:30, Info CSI 00003fb3 [SR] Beginning Verify and Repair transaction
2016-05-19 12:26:40, Info CSI 00004040 [SR] Verify complete
2016-05-19 12:26:40, Info CSI 00004041 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:26:40, Info CSI 00004042 [SR] Beginning Verify and Repair transaction
2016-05-19 12:26:48, Info CSI 000040c3 [SR] Verify complete
2016-05-19 12:26:48, Info CSI 000040c4 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:26:48, Info CSI 000040c5 [SR] Beginning Verify and Repair transaction
2016-05-19 12:26:55, Info CSI 0000413e [SR] Verify complete
2016-05-19 12:26:55, Info CSI 0000413f [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:26:55, Info CSI 00004140 [SR] Beginning Verify and Repair transaction
2016-05-19 12:27:02, Info CSI 000041b5 [SR] Verify complete
2016-05-19 12:27:02, Info CSI 000041b6 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:27:02, Info CSI 000041b7 [SR] Beginning Verify and Repair transaction
2016-05-19 12:27:09, Info CSI 00004227 [SR] Verify complete
2016-05-19 12:27:09, Info CSI 00004228 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:27:09, Info CSI 00004229 [SR] Beginning Verify and Repair transaction
2016-05-19 12:27:17, Info CSI 000042a3 [SR] Verify complete
2016-05-19 12:27:17, Info CSI 000042a4 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:27:17, Info CSI 000042a5 [SR] Beginning Verify and Repair transaction
2016-05-19 12:27:25, Info CSI 0000431d [SR] Verify complete
2016-05-19 12:27:25, Info CSI 0000431e [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:27:25, Info CSI 0000431f [SR] Beginning Verify and Repair transaction
2016-05-19 12:27:32, Info CSI 0000439f [SR] Verify complete
2016-05-19 12:27:32, Info CSI 000043a0 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:27:32, Info CSI 000043a1 [SR] Beginning Verify and Repair transaction
2016-05-19 12:27:39, Info CSI 00004408 [SR] Verify complete
2016-05-19 12:27:40, Info CSI 00004409 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:27:40, Info CSI 0000440a [SR] Beginning Verify and Repair transaction
2016-05-19 12:27:54, Info CSI 0000454c [SR] Verify complete
2016-05-19 12:27:54, Info CSI 0000454d [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:27:54, Info CSI 0000454e [SR] Beginning Verify and Repair transaction
2016-05-19 12:28:01, Info CSI 000045b5 [SR] Verify complete
2016-05-19 12:28:01, Info CSI 000045b6 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:28:01, Info CSI 000045b7 [SR] Beginning Verify and Repair transaction
2016-05-19 12:28:07, Info CSI 00004617 [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\SysWOW64"\[l:12]"advapi32.dll" from store
2016-05-19 12:28:07, Info CSI 00004620 [SR] Verify complete
2016-05-19 12:28:07, Info CSI 00004621 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:28:07, Info CSI 00004622 [SR] Beginning Verify and Repair transaction
2016-05-19 12:28:13, Info CSI 00004689 [SR] Verify complete
2016-05-19 12:28:13, Info CSI 0000468a [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:28:13, Info CSI 0000468b [SR] Beginning Verify and Repair transaction
2016-05-19 12:28:20, Info CSI 0000470b [SR] Verify complete
2016-05-19 12:28:20, Info CSI 0000470c [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:28:20, Info CSI 0000470d [SR] Beginning Verify and Repair transaction
2016-05-19 12:28:27, Info CSI 00004799 [SR] Verify complete
2016-05-19 12:28:27, Info CSI 0000479a [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:28:27, Info CSI 0000479b [SR] Beginning Verify and Repair transaction
2016-05-19 12:28:34, Info CSI 00004806 [SR] Verify complete
2016-05-19 12:28:34, Info CSI 00004807 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:28:34, Info CSI 00004808 [SR] Beginning Verify and Repair transaction
2016-05-19 12:28:40, Info CSI 00004870 [SR] Verify complete
2016-05-19 12:28:40, Info CSI 00004871 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:28:40, Info CSI 00004872 [SR] Beginning Verify and Repair transaction
2016-05-19 12:28:46, Info CSI 000048e5 [SR] Verify complete
2016-05-19 12:28:46, Info CSI 000048e6 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:28:46, Info CSI 000048e7 [SR] Beginning Verify and Repair transaction
2016-05-19 12:28:54, Info CSI 0000497b [SR] Verify complete
2016-05-19 12:28:54, Info CSI 0000497c [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:28:54, Info CSI 0000497d [SR] Beginning Verify and Repair transaction
2016-05-19 12:29:01, Info CSI 000049f9 [SR] Verify complete
2016-05-19 12:29:01, Info CSI 000049fa [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:29:01, Info CSI 000049fb [SR] Beginning Verify and Repair transaction
2016-05-19 12:29:06, Info CSI 00004a64 [SR] Verify complete
2016-05-19 12:29:06, Info CSI 00004a65 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:29:06, Info CSI 00004a66 [SR] Beginning Verify and Repair transaction
2016-05-19 12:29:14, Info CSI 00004ad7 [SR] Verify complete
2016-05-19 12:29:14, Info CSI 00004ad8 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:29:14, Info CSI 00004ad9 [SR] Beginning Verify and Repair transaction
2016-05-19 12:29:19, Info CSI 00004b41 [SR] Verify complete
2016-05-19 12:29:19, Info CSI 00004b42 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:29:19, Info CSI 00004b43 [SR] Beginning Verify and Repair transaction
2016-05-19 12:29:26, Info CSI 00004bac [SR] Verify complete
2016-05-19 12:29:26, Info CSI 00004bad [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:29:26, Info CSI 00004bae [SR] Beginning Verify and Repair transaction
2016-05-19 12:29:33, Info CSI 00004c1c [SR] Verify complete
2016-05-19 12:29:33, Info CSI 00004c1d [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:29:33, Info CSI 00004c1e [SR] Beginning Verify and Repair transaction
2016-05-19 12:29:41, Info CSI 00004cb6 [SR] Verify complete
2016-05-19 12:29:41, Info CSI 00004cb7 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:29:41, Info CSI 00004cb8 [SR] Beginning Verify and Repair transaction
2016-05-19 12:29:46, Info CSI 00004d23 [SR] Verify complete
2016-05-19 12:29:46, Info CSI 00004d24 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:29:46, Info CSI 00004d25 [SR] Beginning Verify and Repair transaction
2016-05-19 12:29:51, Info CSI 00004d8d [SR] Verify complete
2016-05-19 12:29:51, Info CSI 00004d8e [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:29:51, Info CSI 00004d8f [SR] Beginning Verify and Repair transaction
2016-05-19 12:29:57, Info CSI 00004df7 [SR] Verify complete
2016-05-19 12:29:57, Info CSI 00004df8 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:29:57, Info CSI 00004df9 [SR] Beginning Verify and Repair transaction
2016-05-19 12:30:04, Info CSI 00004e62 [SR] Verify complete
2016-05-19 12:30:04, Info CSI 00004e63 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:30:04, Info CSI 00004e64 [SR] Beginning Verify and Repair transaction
2016-05-19 12:30:09, Info CSI 00004e9c [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\SysWOW64"\[l:9]"msctf.dll" from store
2016-05-19 12:30:10, Info CSI 00004ed1 [SR] Verify complete
2016-05-19 12:30:10, Info CSI 00004ed2 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:30:10, Info CSI 00004ed3 [SR] Beginning Verify and Repair transaction
2016-05-19 12:30:15, Info CSI 00004f39 [SR] Verify complete
2016-05-19 12:30:16, Info CSI 00004f3a [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:30:16, Info CSI 00004f3b [SR] Beginning Verify and Repair transaction
2016-05-19 12:30:21, Info CSI 00004fa2 [SR] Verify complete
2016-05-19 12:30:21, Info CSI 00004fa3 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:30:21, Info CSI 00004fa4 [SR] Beginning Verify and Repair transaction
2016-05-19 12:30:26, Info CSI 0000500d [SR] Verify complete
2016-05-19 12:30:26, Info CSI 0000500e [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:30:26, Info CSI 0000500f [SR] Beginning Verify and Repair transaction
2016-05-19 12:30:34, Info CSI 00005085 [SR] Verify complete
2016-05-19 12:30:34, Info CSI 00005086 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:30:34, Info CSI 00005087 [SR] Beginning Verify and Repair transaction
2016-05-19 12:30:41, Info CSI 000050ee [SR] Verify complete
2016-05-19 12:30:41, Info CSI 000050ef [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:30:41, Info CSI 000050f0 [SR] Beginning Verify and Repair transaction
2016-05-19 12:30:48, Info CSI 00005156 [SR] Verify complete
2016-05-19 12:30:48, Info CSI 00005157 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:30:48, Info CSI 00005158 [SR] Beginning Verify and Repair transaction
2016-05-19 12:30:54, Info CSI 000051bd [SR] Verify complete
2016-05-19 12:30:54, Info CSI 000051be [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:30:54, Info CSI 000051bf [SR] Beginning Verify and Repair transaction
2016-05-19 12:31:01, Info CSI 00005224 [SR] Verify complete
2016-05-19 12:31:02, Info CSI 00005225 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:31:02, Info CSI 00005226 [SR] Beginning Verify and Repair transaction
2016-05-19 12:31:06, Info CSI 0000528c [SR] Verify complete
2016-05-19 12:31:06, Info CSI 0000528d [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:31:06, Info CSI 0000528e [SR] Beginning Verify and Repair transaction
2016-05-19 12:31:12, Info CSI 000052f3 [SR] Verify complete
2016-05-19 12:31:13, Info CSI 000052f4 [SR] Verifying 100 (0x0000000000000064) components
2016-05-19 12:31:13, Info CSI 000052f5 [SR] Beginning Verify and Repair transaction
2016-05-19 12:31:19, Info CSI 0000535a [SR] Verify complete
2016-05-19 12:31:19, Info CSI 0000535b [SR] Verifying 2 components
2016-05-19 12:31:19, Info CSI 0000535c [SR] Beginning Verify and Repair transaction
2016-05-19 12:31:19, Info CSI 0000535f [SR] Verify complete
2016-05-19 12:31:19, Info CSI 00005360 [SR] Repairing 19 (0x0000000000000013) components
2016-05-19 12:31:19, Info CSI 00005361 [SR] Beginning Verify and Repair transaction
2016-05-19 12:31:19, Info CSI 00005363 [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:12]"services.exe" from store
2016-05-19 12:31:19, Info CSI 00005369 [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:10]"msxml6.dll" from store
2016-05-19 12:31:19, Info CSI 0000536c [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\SysWOW64"\[l:12]"advapi32.dll" from store
2016-05-19 12:31:19, Info CSI 0000536f [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:14]"usermgrcli.dll" from store
2016-05-19 12:31:20, Info CSI 00005372 [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:12]"advapi32.dll" from store
2016-05-19 12:31:20, Info CSI 00005375 [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:8]"d2d1.dll" from store
2016-05-19 12:31:20, Info CSI 00005378 [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:12]"rasadhlp.dll" from store
2016-05-19 12:31:20, Info CSI 0000537d [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:9]"gdi32.dll" from store
2016-05-19 12:31:20, Info CSI 00005380 [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:10]"srcore.dll" from store
2016-05-19 12:31:20, Info CSI 00005383 [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:11]"usermgr.dll" from store
2016-05-19 12:31:20, Info CSI 00005386 [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:12]"winlogon.exe" from store
2016-05-19 12:31:20, Info CSI 00005389 [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\SysWOW64"\[l:9]"gdi32.dll" from store
2016-05-19 12:31:21, Info CSI 0000538c [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:12]"rasapi32.dll" from store
2016-05-19 12:31:21, Info CSI 00005392 [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:13]"sscoreext.dll" from store
2016-05-19 12:31:21, Info CSI 00005395 [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\SysWOW64"\[l:9]"msctf.dll" from store
2016-05-19 12:31:21, Info CSI 00005398 [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:19]"ProximityCommon.dll" from store
2016-05-19 12:31:21, Info CSI 0000539b [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:12]"schannel.dll" from store
2016-05-19 12:31:21, Info CSI 0000539e [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:9]"msctf.dll" from store
2016-05-19 12:31:21, Info CSI 000053a1 [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:11]"winhttp.dll" from store
2016-05-19 12:31:21, Info CSI 000053a3 [SR] Repair complete
2016-05-19 12:31:21, Info CSI 000053a4 [SR] Committing transaction
2016-05-19 12:31:21, Info CSI 000053a5 [SR] Cannot commit interactively, there are boot critical components being repaired
2016-05-19 12:31:21, Info CSI 000053a6 [SR] Repairing 19 (0x0000000000000013) components
2016-05-19 12:31:21, Info CSI 000053a7 [SR] Beginning Verify and Repair transaction
2016-05-19 12:31:21, Info CSI 000053a9 [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:12]"services.exe" from store
2016-05-19 12:31:22, Info CSI 000053ad [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:10]"msxml6.dll" from store
2016-05-19 12:31:22, Info CSI 000053b0 [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\SysWOW64"\[l:12]"advapi32.dll" from store
2016-05-19 12:31:22, Info CSI 000053b5 [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:14]"usermgrcli.dll" from store
2016-05-19 12:31:22, Info CSI 000053b8 [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:12]"advapi32.dll" from store
2016-05-19 12:31:22, Info CSI 000053bb [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:8]"d2d1.dll" from store
2016-05-19 12:31:22, Info CSI 000053be [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:12]"rasadhlp.dll" from store
2016-05-19 12:31:22, Info CSI 000053c1 [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:9]"gdi32.dll" from store
2016-05-19 12:31:22, Info CSI 000053c4 [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:10]"srcore.dll" from store
2016-05-19 12:31:22, Info CSI 000053c7 [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:11]"usermgr.dll" from store
2016-05-19 12:31:23, Info CSI 000053ca [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:12]"winlogon.exe" from store
2016-05-19 12:31:23, Info CSI 000053cd [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\SysWOW64"\[l:9]"gdi32.dll" from store
2016-05-19 12:31:23, Info CSI 000053d0 [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:12]"rasapi32.dll" from store
2016-05-19 12:31:23, Info CSI 000053d6 [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:13]"sscoreext.dll" from store
2016-05-19 12:31:23, Info CSI 000053d9 [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\SysWOW64"\[l:9]"msctf.dll" from store
2016-05-19 12:31:23, Info CSI 000053dc [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:19]"ProximityCommon.dll" from store
2016-05-19 12:31:23, Info CSI 000053df [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:12]"schannel.dll" from store
2016-05-19 12:31:23, Info CSI 000053e2 [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:9]"msctf.dll" from store
2016-05-19 12:31:23, Info CSI 000053e5 [SR] Repairing corrupted file [l:23 ml:24]"\??\C:\WINDOWS\System32"\[l:11]"winhttp.dll" from store
2016-05-19 12:31:23, Info CSI 000053e7 [SR] Repair complete

[altrok]

Dejte logy FRST.txt a Addition.txt - http://forum.viry.cz/viewtopic.php?f=30&t=133101
Pozn. pri druhem a dalsim spusteni FRST je pro vytvoreni logu Addition.txt nutne tuto volbu explicitne zatrhnout pred zacatkem skenu.

[tacvud]

Additional scan result of Farbar Recovery Scan Tool (x64) Version:16-05-2016
Ran by Dana (2016-05-19 16:46:53)
Running from C:\Users\Dana\Desktop
Windows 10 Home Version 1511 (X64) (2015-12-19 16:45:49)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1563608661-2103815483-2595864723-500 - Administrator - Disabled)
Dana (S-1-5-21-1563608661-2103815483-2595864723-1001 - Administrator - Enabled) => C:\Users\Dana
DefaultAccount (S-1-5-21-1563608661-2103815483-2595864723-503 - Limited - Disabled)
Guest (S-1-5-21-1563608661-2103815483-2595864723-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1563608661-2103815483-2595864723-1003 - Limited - Enabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.242 - Adobe Systems Incorporated)
Aktualizace NVIDIA 2.11.2.55 (Version: 2.11.2.55 - NVIDIA Corporation) Hidden
Aplikace Intel® PROSet/Wireless (HKLM-x32\...\{105fa5c4-72e1-41f2-a82c-884d8aa4b381}) (Version: 16.6.0 - Intel Corporation)
Ashampoo Burning Studio 6 FREE v.6.84 (HKLM-x32\...\{91B33C97-3ED1-03EA-A67B-244AA4D7B559}_is1) (Version: 6.8.4 - Ashampoo GmbH & Co. KG)
AutoUpdate (HKLM-x32\...\{18D10072035C4515918F7E37EAFAACFC}) (Version: 1.1 - )
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 11.1.2253 - AVAST Software)
Balíček ovladače systému Windows - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0) (HKLM\...\62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F) (Version: 05/31/2012 7.1.2.0 - Nokia)
Balíček ovladače systému Windows - Sony Corporation (SFEP) HIDClass (06/18/2012 8.0.2.4) (HKLM\...\54DCDF5F20965812FBF3C1C44CE2E9E620585DE9) (Version: 06/18/2012 8.0.2.4 - Sony Corporation)
Balíček ovladače systému Windows - Sony Croporation (SOWS) HIDClass (06/11/2012 1.0.0.06110) (HKLM\...\5478D63468C46333F277779BC2B1EBAEA89C153D) (Version: 06/11/2012 1.0.0.06110 - Sony Croporation)
BatteryBar (remove only) (HKLM\...\BatteryBar) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.14 - Piriform)
Classic Shell (HKLM\...\{E289B7DD-6732-4333-A47A-75A145D23EE3}) (Version: 4.2.4 - IvoSoft)
ConvertXtoDVD 4.1.19.365 (HKLM-x32\...\{DB6AB705-C9BD-40E3-8929-2EA57F36A4FF}_is1) (Version: 4.1.19.365 - )
CryptoPlus CS v1.0e (HKLM-x32\...\CryptoPlus CS v1.0e) (Version: 2.0.7 - Monet+,a.s.)
CryptoPlus CS v1.0e x64 (HKLM\...\CryptoPlus CS v1.0e) (Version: 2.0.7 - Monet+,a.s.)
CyberLink PowerDVD 13 (HKLM-x32\...\InstallShield_{3CFDF154-7E60-4E98-A8DF-C693A4F8E6B6}) (Version: 13.0.4324.58 - CyberLink Corp.)
Diagnostika ventilátoru procesoru počítače VAIO (HKLM-x32\...\{BCE6E3D7-B565-4E1B-AC77-F780666A35FB}) (Version: 1.1.0.09200 - Sony Corporation)
DivX Codec (HKLM-x32\...\{7B63B2922B174135AFC0E1377DD81EC2}) (Version: 6.8.2 - DivX, Inc.)
Dolby Home Theater v4 (HKLM-x32\...\{B26438B4-BF51-49C3-9567-7F14A5E40CB9}) (Version: 7.2.8000.17 - Dolby Laboratories Inc)
DVD Cloner 2013 v 10.50 (HKLM-x32\...\DVD Cloner 2013 v 10.50) (Version: v 10.50 - Company)
FDUx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
FormatFactory 3.3.1.0 (HKLM-x32\...\FormatFactory) (Version: 3.3.1.0 - Format Factory)
Freemake Video Converter verze 4.1.4 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.4 - Ellora Assets Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.3.1520 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology (HKLM\...\{302600C1-6BDF-4FD1-1309-148929CC1385}) (Version: 3.1.1309.0390 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel(R) WiDi (HKLM\...\{EDBA2433-0910-4C72-8C5B-8FEDAE3EF18E}) (Version: 3.5.34.0 - Intel Corporation)
Intel(R) Wireless Display (HKLM\...\{28EF7372-9087-4AC3-9B9F-D9751FCDF830}) (Version: - )
Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.14 - Oracle Corporation)
K-Lite Mega Codec Pack 12.0.5 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 12.0.5 - KLCP)
KUx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
Malwarebytes Anti-Malware verze 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Math Problem Solver (HKU\S-1-5-21-1563608661-2103815483-2595864723-1001\...\Math Problem Solver) (Version: - ) <==== ATTENTION
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.2.173.0 - Microsoft Corporation)
Microsoft Office 2013 pro profesionály - cs-cz (HKLM\...\ProfessionalRetail - cs-cz) (Version: 15.0.4815.1002 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Mozilla Firefox 46.0.1 (x86 cs) (HKLM-x32\...\Mozilla Firefox 46.0.1 (x86 cs)) (Version: 46.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 45.1.0 - Mozilla)
Mozilla Thunderbird 45.1.0 (x86 cs) (HKLM-x32\...\Mozilla Thunderbird 45.1.0 (x86 cs)) (Version: 45.1.0 - Mozilla)
MSVC80_x64_v2 (Version: 1.0.3.0 - Nokia) Hidden
MSVC80_x86_v2 (x32 Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x64 (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (x32 Version: 1.0.1.2 - Nokia) Hidden
Nokia Connectivity Cable Driver (HKLM-x32\...\{29373274-977E-413C-A4DE-DC0F8E80C429}) (Version: 7.1.172.0 - Nokia)
Nokia Suite (HKLM-x32\...\Nokia Suite) (Version: 3.8.54.0 - Nokia)
Nokia Suite (x32 Version: 3.8.54.0 - Nokia) Hidden
NVIDIA GeForce Experience 2.11.2.55 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.2.55 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 353.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.30 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4815.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4815.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4815.1002 - Microsoft Corporation) Hidden
Ovládací panel NVIDIA 358.87 (Version: 358.87 - NVIDIA Corporation) Hidden
PC Connectivity Solution (HKLM-x32\...\{6D01D1B1-17BD-4F10-BB11-F08F0C47D42B}) (Version: 12.0.109.0 - Nokia)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.305 - Qualcomm Atheros Communications)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9600.28145 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.2.612.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7083 - Realtek Semiconductor Corp.)
Registrace uživatele zařízení Canon MG3500 series (HKLM-x32\...\Registrace uživatele zařízení Canon MG3500 series) (Version: - ‭Canon Inc.)
SafeZone Stable 1.48.2066.44 (x32 Version: 1.48.2066.44 - Avast Software) Hidden
SafeZone Stable 1.48.2066.98 (x32 Version: 1.48.2066.98 - Avast Software) Hidden
SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.11.2.66 - NVIDIA Corporation) Hidden
SSLx64 (Version: 1.0.0 - Sony Corporation ) Hidden
SSLx86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.5.0 - Synaptics Incorporated)
System Requirements Lab for Intel (HKLM-x32\...\{C7CA731B-BF9A-46D9-92CF-8A8737AE9240}) (Version: 4.5.13.0 - Husdawg, LLC)
Unknown Device Identifier 8.01 (HKLM\...\Unknown Device Identifier_is1) (Version: 8.01 - Huntersoft)
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
VAIO Control Center (HKLM-x32\...\{8E797841-A110-41FD-B17A-3ABC0641187A}) (Version: 6.1.0.10300 - Sony Corporation)
VAIO Gate (HKLM-x32\...\{14AC95A2-7675-4988-A5BD-3F5B943AED08}) (Version: 3.0.0.08140 - Sony Corporation)
VAIO Update (HKLM-x32\...\{9FF95DA2-7DA1-4228-93B7-DED7EC02B6B2}) (Version: 7.1.0.08060 - Sony Corporation)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
VCCMMX64 (Version: 1.0.0 - Sony Corporation) Hidden
VCCMMX86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VCCx64 (Version: 1.0.0 - Sony Corporation) Hidden
VCCx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VGClientX64 (Version: 1.0.0 - Sony Corporation) Hidden
VHD (x32 Version: 1.0.0 - Sony Corporation) Hidden
VPMx64 (Version: 1.0.0 - Sony Corporation ) Hidden
VU5x64 (Version: 1.0.0 - Sony Corporation ) Hidden
VU5x64 (Version: 1.1.0 - Sony Corporation ) Hidden
VU5x86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden
VU5x86 (x32 Version: 1.1.0 - Sony Corporation ) Hidden
VUx64 (Version: 1.0.0 - Sony Corporation ) Hidden
VUx86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
Zásuvný modul Diagnostika hardwaru počítače VAIO pro aplikaci VAIO Care (HKLM-x32\...\{EC153498-00E1-4C9C-89BE-81527C6750BE}) (Version: 4.7.0.11070 - Sony Corporation)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1563608661-2103815483-2595864723-1001_Classes\CLSID\{6614FE97-812C-4B8B-AD6F-83D07279BF02}\InprocServer32 -> C:\Users\Dana\AppData\Roaming\CSAS\lib\x64\PKIComponentAX.dll (Česká spořitelna, a.s.)
CustomCLSID: HKU\S-1-5-21-1563608661-2103815483-2595864723-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Dana\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1563608661-2103815483-2595864723-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-1563608661-2103815483-2595864723-1001_Classes\CLSID\{8616ED07-7CEA-47D2-912D-79BF20C02290}\InprocServer32 -> C:\Users\Dana\AppData\Roaming\CSAS\lib\x64\PKIComponentAX.dll (Česká spořitelna, a.s.)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {046B67B4-6E26-4AE0-927E-886F8C4D6E6B} - System32\Tasks\Sony Corporation\VAIO Control Center\VAIOControlCenterSystem => C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe [2012-10-31] (Sony Corporation)
Task: {07AA26E2-56C7-42CB-A79C-046DC9462DBA} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2016-02-09] (Microsoft Corporation)
Task: {0F090E23-EA47-402A-A1F2-75641BC6CCDC} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {13EC9B67-39C4-436A-AFCC-188CC8F225DD} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2013-05-13] (Microsoft)
Task: {1792BB26-F1F3-493E-B53F-B58527A9EF15} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {18A3802D-70D0-4B13-9848-31046EFCE2B3} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update Self Repair => C:\Program Files\Sony\VAIO Update\VUSR.exe [2015-07-31] (Sony Corporation)
Task: {193BC28C-CDB0-4777-894F-6271C1706CCB} - System32\Tasks\OPSN => C:\Users\Dana\AppData\Roaming\OPSN.exe <==== ATTENTION
Task: {20C088F1-BD85-4CEE-909F-8F6FAA45E019} - System32\Tasks\CPOKCZF => C:\Users\Dana\AppData\Roaming\CPOKCZF.exe <==== ATTENTION
Task: {242F04F5-FA9C-411F-AA82-3D2EFB14ACB0} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {2EFCA3A2-4A8F-4840-B5C2-D28F80F3BDBA} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {30004B08-4103-4F04-B83A-F4E724FA67D1} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-05-14] (Adobe Systems Incorporated)
Task: {34BAD189-09C3-403A-B687-0A29A9ADB76B} - \Update Service YourFileDownloader -> No File <==== ATTENTION
Task: {3726B2B0-A39E-4688-A2B8-9A2CE106AFB7} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {3DFEC627-C80B-4241-809F-E1DC1FD18130} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2013-05-13] (Microsoft Corporation)
Task: {3F523587-54EB-464F-8F87-9798A2F7FA53} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2013-05-13] (Microsoft Corporation)
Task: {44FB4E53-E8EA-49C9-87E9-DFD40AF8E735} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2015-05-27] (Synaptics Incorporated)
Task: {4BE21404-654E-4E77-BFA6-59DEC693B166} - System32\Tasks\Sony Corporation\VAIO Control Center\VAIOControlCenterUser => C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe [2012-10-31] (Sony Corporation)
Task: {516643AA-00B6-4FE4-8374-9563DC5DA25B} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\BrowserChoice\browserchoice.exe
Task: {53D9381A-6A8D-4825-93D8-0436A500CD70} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2013-05-13] (Microsoft Corporation)
Task: {5C79B472-4AE6-4FA1-9529-EACF5720BB89} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {5E56366A-0CEA-4531-9EFA-2ACBF694293C} - System32\Tasks\avast! Windows 10 Start Menu helper => c:\program files\avast software\avast\asww10mon.exe
Task: {6E163AB3-22DB-4897-8185-AC0D884F04F9} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {78BD41EF-16A9-4256-A2D0-3E5B6B431C59} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2015-08-03] (AVAST Software)
Task: {7B2C3D98-4947-41FA-B23C-24EAD4580AFF} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2013-05-13] (Microsoft Corporation)
Task: {836F9936-EAB7-4196-943C-B182FDB569B4} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2016-02-09] (Microsoft Corporation)
Task: {8F44B9F3-0928-4CAC-A80A-7DEF9F78F8D7} - System32\Tasks\{3C94A48A-27C0-4469-85A7-CE5A01FBBC1A} => pcalua.exe -a "C:\Users\Dana\AppData\Roaming\0W1L1G1Q1F2W1Bzz0D1F2W1G1I1F1T1Q1B\SlimDrivers Packages\uninstaller.exe" -c /Uninstall /NM="SlimDrivers Packages" /AN="0W1L1G1Q1F2W1Bzz0D1F2W1G1I1F1T1Q1B" /MBN="SlimDrivers Packages"
Task: {9AE9E005-C69A-4394-B59B-09204508381A} - System32\Tasks\Sony Corporation\VAIO Update\Launch Application => C:\Program Files\SONY\VAIO Update\ShellExeProxy.exe [2015-07-31] (Sony Corporation)
Task: {9C9232E6-CC85-4783-8935-67EAB8434EC0} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update => C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe [2015-08-06] (Sony Corporation)
Task: {9D9B12C3-EA90-4E6C-A9C5-100A9FA16804} - System32\Tasks\Dolby Selector => C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe
Task: {AC38D5E1-50D0-4B07-BBB8-548946B23B9F} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2016-03-22] ()
Task: {ACDEC6D7-26B7-4469-B58C-91EC1C05DA01} - System32\Tasks\Installer_cr => C:\Users\Dana\AppData\Local\Installer\Installcr_23155\ytd_sysmenu_setup.exe <==== ATTENTION
Task: {AE0723BC-623A-4881-828E-AEC5D1BA069F} - System32\Tasks\Sony Corporation\VHDInformationCheck => C:\Program Files (x86)\Sony\VAIO Recovery\plugins\InformationCheck.exe [2012-11-07] (Sony Corporation)
Task: {B34037D6-ED58-4D73-B0E1-96B9D5B52838} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {B49F5CAF-F4CD-40E8-A531-ADE1BB51C6B4} - System32\Tasks\SafeZone scheduled Autoupdate 1463243023 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-02-01] (Avast Software)
Task: {B915734F-81F5-4CC5-AB24-C8D4A992FAFC} - System32\Tasks\Sony Corporation\VAIO Gate\VAIO Gate => C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe [2012-08-14] (Sony Corporation)
Task: {BCA623A6-16C1-44A7-A845-82786E9D8470} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-01-15] (Piriform Ltd)
Task: {C0E9E32F-E827-47EF-91C1-B3E16C16FF2E} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-02-11] (AVAST Software)
Task: {CCBDDA9F-FF27-476A-BB09-80F2B5EE79B7} - System32\Tasks\Sony Corporation\VAIO Control Center\NetworkSetting\NetworkSetting Logon Start => C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient
Task: {DE741AA2-D941-4BCD-B592-E4A0FC251075} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {DEDA8A4C-19B6-40BB-BCB1-AF227EB3B203} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {E81BCAE3-C7F7-4F34-BBBC-3B407AB90B1D} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {F2CD238B-8509-46FB-BFE2-11FB8FD170E6} - System32\Tasks\{D6928247-98EE-4AA9-B9D8-7B1B6D22733F} => pcalua.exe -a "C:\Program Files (x86)\RelevantKnowledge\rlvknlg.exe" -c -bootremove -uninst:RelevantKnowledge
Task: {F6BAD9D0-F164-4831-83B0-DEDC325AFEEB} - System32\Tasks\{70D6A9CB-1B2E-47B6-A825-BF3E7E747480} => pcalua.exe -a "C:\Program Files (x86)\Canon\IJ Manual\Canon MG3500 series\uninstall.exe"
Task: {FF54D899-1589-41F9-A190-1603C0FAE234} - System32\Tasks\SafeZone scheduled Autoupdate 1455189915 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-02-01] (Avast Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\CPOKCZF.job => C:\Users\Dana\AppData\Roaming\CPOKCZF.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\OPSN.job => C:\Users\Dana\AppData\Roaming\OPSN.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2015-10-30 09:18 - 2015-10-30 09:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2015-12-19 18:13 - 2016-04-27 14:18 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-04-15 08:45 - 2016-03-29 12:20 - 02656952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2014-03-15 10:36 - 2015-10-13 05:34 - 00105640 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2016-03-11 08:49 - 2016-04-05 10:04 - 00369208 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll
2016-03-02 09:09 - 2016-04-05 10:04 - 00289848 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2016-05-03 12:04 - 2016-04-05 10:03 - 01148984 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll
2016-03-11 08:49 - 2016-04-05 10:04 - 03613240 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll
2016-04-15 08:45 - 2016-03-29 12:20 - 02656952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-04-24 08:14 - 2016-04-24 08:14 - 00959176 _____ () C:\Users\Dana\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\amd64\ClientTelemetry.dll
2016-04-19 08:26 - 2016-04-19 08:26 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2016-05-03 12:04 - 2016-04-05 10:04 - 02667576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll
2016-05-03 12:04 - 2016-04-05 10:04 - 01990200 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll
2016-05-03 12:04 - 2016-04-05 10:04 - 01842232 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll
2016-03-02 09:10 - 2016-04-05 10:04 - 00208952 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll
2016-05-03 12:04 - 2016-04-05 10:03 - 00035896 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll
2016-05-03 12:04 - 2016-04-05 10:03 - 00921656 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll
2015-12-21 10:06 - 2015-12-07 06:14 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-04-15 08:43 - 2016-04-02 05:25 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-04-15 08:44 - 2016-04-02 05:03 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-04-15 08:44 - 2016-04-02 04:58 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-04-15 08:44 - 2016-04-02 04:59 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-04-15 08:45 - 2016-04-02 05:02 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-01-15 22:44 - 2016-01-15 22:44 - 00047616 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
2016-03-30 08:09 - 2016-03-30 08:09 - 00016896 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.325.12390.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2016-03-30 08:09 - 2016-03-30 08:09 - 17535488 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.325.12390.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2016-03-04 09:05 - 2016-03-04 09:05 - 00291328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.325.12390.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll
2016-01-22 12:41 - 2016-01-22 12:41 - 03746816 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1601.49020.0_x64__8wekyb3d8bbwe\Calculator.exe
2015-12-15 10:34 - 2015-12-15 10:34 - 00258560 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1601.49020.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll
2016-02-11 13:19 - 2016-02-11 13:19 - 00113496 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2016-02-11 13:19 - 2016-02-11 13:19 - 00133768 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-05-19 08:47 - 2016-05-19 08:47 - 02909696 _____ () C:\Program Files\AVAST Software\Avast\defs\16051802\algo.dll
2016-05-15 14:45 - 2016-05-15 14:45 - 00509344 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-04-19 08:26 - 2016-04-19 08:26 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2016-04-19 08:26 - 2016-04-19 08:26 - 02941440 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\MessagingNativeCore.dll
2016-04-19 08:26 - 2016-04-19 08:26 - 00583168 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\MessagingEntityExtractionProxy.dll
2016-04-19 08:26 - 2016-04-19 08:26 - 22284800 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll
2016-04-19 08:26 - 2016-04-19 08:26 - 01300992 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\MessagingNativeBase.dll
2015-10-07 11:21 - 2016-04-05 10:11 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-04-24 08:14 - 2016-04-24 08:14 - 00679624 _____ () C:\Users\Dana\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\ClientTelemetry.dll
2016-02-11 13:19 - 2016-02-11 13:19 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-03-30 14:38 - 2014-07-24 07:54 - 00866056 _____ () C:\Program Files (x86)\CyberLink\PowerDVD13\common\UNO\UNO.dll
2015-03-30 14:37 - 2013-05-02 02:06 - 00081920 _____ () C:\Program Files (x86)\CyberLink\PowerDVD13\Common\koan\_ctypes.pyd
2015-03-30 14:37 - 2013-05-02 02:06 - 00053248 _____ () C:\Program Files (x86)\CyberLink\PowerDVD13\Common\Koan\_socket.pyd
2015-03-30 14:37 - 2013-05-02 02:06 - 00655360 _____ () C:\Program Files (x86)\CyberLink\PowerDVD13\Common\Koan\_ssl.pyd
2015-03-30 14:38 - 2014-07-24 07:54 - 00043272 _____ () C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DHProcedure\DHProcedure.dll
2014-01-24 15:45 - 2013-08-14 12:57 - 01199576 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-1563608661-2103815483-2595864723-1001\...\business24.cz -> hxxps://www.business24.cz
IE trusted site: HKU\S-1-5-21-1563608661-2103815483-2595864723-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-1563608661-2103815483-2595864723-1001\...\servis24.cz -> hxxps://www.servis24.cz
IE trusted site: HKU\S-1-5-21-1563608661-2103815483-2595864723-1001\...\webcompanion.com -> hxxp://webcompanion.com

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1563608661-2103815483-2595864723-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Dana\AppData\Roaming\Mozilla\Firefox\Pozadí plochy.bmp
DNS Servers: 213.46.172.37 - 213.46.172.36
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\Services: wuauserv => 3
HKLM\...\StartupApproved\Run32: => "ISBMgr.exe"
HKLM\...\StartupApproved\Run32: => "NtVdmSrv"
HKLM\...\StartupApproved\Run32: => "IJNetworkScannerSelectorEX"
HKLM\...\StartupApproved\Run32: => "CanonQuickMenu"
HKU\S-1-5-21-1563608661-2103815483-2595864723-1001\...\StartupApproved\StartupFolder: => "Odeslat do OneNote.lnk"
HKU\S-1-5-21-1563608661-2103815483-2595864723-1001\...\StartupApproved\Run: => "NokiaSuite.exe"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{F42D32E3-E8FF-4421-8128-A8F33BA0BC35}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{624DE60C-F639-4322-802A-7496B5DC9F86}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{7EE4B96C-8991-4A28-B885-1B8D46273B60}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{CFEC6B7B-77B7-40CB-AF18-45F2E1BC4367}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{6889B055-9F2F-4247-906A-D35FB942ED3F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{FD0FC147-A44D-4ABC-B263-0AD30FC9B792}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{6E95F350-9937-4BC6-86EF-36020B586280}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{402B059F-EE00-4709-9A50-192A702C2CD7}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{5DA062EA-74D9-43E8-AC71-18EAC26C7E79}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [TCP Query User{20D538DB-6909-421D-BC9E-0B4112456005}C:\windows\system32\ftp.exe] => (Allow) C:\windows\system32\ftp.exe
FirewallRules: [UDP Query User{844AFD33-6FB5-470F-9726-B5417FD25F12}C:\windows\system32\ftp.exe] => (Allow) C:\windows\system32\ftp.exe
FirewallRules: [{59CD9770-8E3C-42DC-BA78-BC6DC659D0F6}] => (Allow) C:\Program Files (x86)\nokia\nokia suite\nokiasuite.exe
FirewallRules: [{C2ADD8AD-E339-4AB3-AF17-3BF066656174}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
FirewallRules: [{3742F937-A7A2-4DF7-B7FF-A869FE9AC6D7}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{BF742589-DC83-41F5-A60E-E200C9938B0B}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{44A10E31-DAA5-4311-B35B-CC52982AE84F}E:\firefoxportable\app\firefox\firefox.exe] => (Allow) E:\firefoxportable\app\firefox\firefox.exe
FirewallRules: [UDP Query User{D78A5896-6D6A-47F3-BABA-C3E2210AAEE3}E:\firefoxportable\app\firefox\firefox.exe] => (Allow) E:\firefoxportable\app\firefox\firefox.exe
FirewallRules: [TCP Query User{1A9DF418-CAA0-4C92-A40E-CD83C228283F}E:\portableapps\firefoxportable\app\firefox\firefox.exe] => (Allow) E:\portableapps\firefoxportable\app\firefox\firefox.exe
FirewallRules: [UDP Query User{67D3A4B9-1884-4C3C-9CC3-A6E630ACD7DB}E:\portableapps\firefoxportable\app\firefox\firefox.exe] => (Allow) E:\portableapps\firefoxportable\app\firefox\firefox.exe
FirewallRules: [TCP Query User{0588E214-CD6E-4AAB-BD4E-F09206C030AA}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{60566F86-4329-45B7-BBD7-7E498F77BC70}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{850A9E2B-58DF-422F-8CBA-099B052056A4}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD13\Movie\PowerDVD Cinema\PowerDVDCinema13.exe
FirewallRules: [{CB0C4694-B9CF-4B3C-A9B6-BC68F0A8FE03}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD13\PowerDVD13.exe
FirewallRules: [{8142ACC9-C6D0-4EF0-A397-E3FF9FF96C26}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSServerPDVD13.exe
FirewallRules: [{D69CBF42-39A9-425D-AC32-39DB5AA35968}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD13\PowerDVD13Agent.exe
FirewallRules: [{73458224-3FE7-476B-ADB3-0B8D422AE318}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD13\PowerDVD13ML.exe
FirewallRules: [{F0200334-CE4A-4523-B6F4-1FEB6CEA1E39}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD13\Movie\PowerDVD.exe
FirewallRules: [{4D70AD76-5C28-4D48-86AA-62607DE6007E}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD13\Movie\PowerDVD Cinema\PowerDVDCinema13.exe
FirewallRules: [{A343C558-FA7B-4C29-9145-5DE7F0E1D819}] => (Allow) C:\Program Files (x86)\nokia\nokia suite\nokiasuite.exe

==================== Restore Points =========================

18-05-2016 08:00:06 Restore Point Created by FRST
19-05-2016 08:55:01 Restore Point Created by FRST

==================== Faulty Device Manager Devices =============

Name: USB-IF xHCI USB Host Controller
Description: USB-IF xHCI USB Host Controller
Class Guid: {8a2edc79-c759-46f2-88af-9d4efe3b5eee}
Manufacturer: Intel Corporation
Service: XHCIPort
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver


==================== Event log errors: =========================

Application errors:
==================
Error: (05/19/2016 11:26:00 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (1224) SRUJet: Při otevírání souboru protokolu C:\WINDOWS\system32\SRU\SRU00010.log došlo k chybě -1811 (0xfffff8ed).

Error: (05/19/2016 10:05:14 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: winlogon.exe, verze: 10.0.10586.306, časové razítko: 0x571af779
Název chybujícího modulu: ntdll.dll, verze: 10.0.10586.306, časové razítko: 0x571af2eb
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000ab7da
ID chybujícího procesu: 0x558
Čas spuštění chybující aplikace: 0xwinlogon.exe0
Cesta k chybující aplikaci: winlogon.exe1
Cesta k chybujícímu modulu: winlogon.exe2
ID zprávy: winlogon.exe3
Úplný název chybujícího balíčku: winlogon.exe4
ID aplikace související s chybujícím balíčkem: winlogon.exe5

Error: (05/19/2016 10:05:12 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: winlogon.exe, verze: 10.0.10586.306, časové razítko: 0x571af779
Název chybujícího modulu: ntdll.dll, verze: 10.0.10586.306, časové razítko: 0x571af2eb
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000ab7da
ID chybujícího procesu: 0x13a0
Čas spuštění chybující aplikace: 0xwinlogon.exe0
Cesta k chybující aplikaci: winlogon.exe1
Cesta k chybujícímu modulu: winlogon.exe2
ID zprávy: winlogon.exe3
Úplný název chybujícího balíčku: winlogon.exe4
ID aplikace související s chybujícím balíčkem: winlogon.exe5

Error: (05/19/2016 10:05:08 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: winlogon.exe, verze: 10.0.10586.306, časové razítko: 0x571af779
Název chybujícího modulu: ntdll.dll, verze: 10.0.10586.306, časové razítko: 0x571af2eb
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000ab7da
ID chybujícího procesu: 0x1130
Čas spuštění chybující aplikace: 0xwinlogon.exe0
Cesta k chybující aplikaci: winlogon.exe1
Cesta k chybujícímu modulu: winlogon.exe2
ID zprávy: winlogon.exe3
Úplný název chybujícího balíčku: winlogon.exe4
ID aplikace související s chybujícím balíčkem: winlogon.exe5

Error: (05/19/2016 10:04:34 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: winlogon.exe, verze: 10.0.10586.306, časové razítko: 0x571af779
Název chybujícího modulu: ntdll.dll, verze: 10.0.10586.306, časové razítko: 0x571af2eb
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000ab7da
ID chybujícího procesu: 0x384
Čas spuštění chybující aplikace: 0xwinlogon.exe0
Cesta k chybující aplikaci: winlogon.exe1
Cesta k chybujícímu modulu: winlogon.exe2
ID zprávy: winlogon.exe3
Úplný název chybujícího balíčku: winlogon.exe4
ID aplikace související s chybujícím balíčkem: winlogon.exe5

Error: (05/19/2016 09:53:38 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: winlogon.exe, verze: 10.0.10586.306, časové razítko: 0x571af779
Název chybujícího modulu: ntdll.dll, verze: 10.0.10586.306, časové razítko: 0x571af2eb
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000ab7da
ID chybujícího procesu: 0xde4
Čas spuštění chybující aplikace: 0xwinlogon.exe0
Cesta k chybující aplikaci: winlogon.exe1
Cesta k chybujícímu modulu: winlogon.exe2
ID zprávy: winlogon.exe3
Úplný název chybujícího balíčku: winlogon.exe4
ID aplikace související s chybujícím balíčkem: winlogon.exe5

Error: (05/19/2016 09:52:59 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: winlogon.exe, verze: 10.0.10586.306, časové razítko: 0x571af779
Název chybujícího modulu: ntdll.dll, verze: 10.0.10586.306, časové razítko: 0x571af2eb
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000ab7da
ID chybujícího procesu: 0x2e0
Čas spuštění chybující aplikace: 0xwinlogon.exe0
Cesta k chybující aplikaci: winlogon.exe1
Cesta k chybujícímu modulu: winlogon.exe2
ID zprávy: winlogon.exe3
Úplný název chybujícího balíčku: winlogon.exe4
ID aplikace související s chybujícím balíčkem: winlogon.exe5

Error: (05/19/2016 09:40:24 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_StateRepository, verze: 10.0.10586.0, časové razítko: 0x5632d7ba
Název chybujícího modulu: RPCRT4.dll, verze: 10.0.10586.0, časové razítko: 0x5632d515
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000d9ea8
ID chybujícího procesu: 0x8fc
Čas spuštění chybující aplikace: 0xsvchost.exe_StateRepository0
Cesta k chybující aplikaci: svchost.exe_StateRepository1
Cesta k chybujícímu modulu: svchost.exe_StateRepository2
ID zprávy: svchost.exe_StateRepository3
Úplný název chybujícího balíčku: svchost.exe_StateRepository4
ID aplikace související s chybujícím balíčkem: svchost.exe_StateRepository5

Error: (05/19/2016 09:33:45 AM) (Source: Perflib) (EventID: 1008) (User: )
Description: BITSC:\Windows\System32\bitsperf.dll8

Error: (05/19/2016 08:55:18 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.


System errors:
=============
Error: (05/19/2016 12:43:36 PM) (Source: DCOM) (EventID: 10010) (User: PC-DANA)
Description: {DABF28BE-F6B4-4E40-8F40-C4FB26F3116C}

Error: (05/19/2016 12:43:05 PM) (Source: DCOM) (EventID: 10010) (User: PC-DANA)
Description: {DABF28BE-F6B4-4E40-8F40-C4FB26F3116C}

Error: (05/19/2016 12:42:35 PM) (Source: DCOM) (EventID: 10010) (User: PC-DANA)
Description: {DABF28BE-F6B4-4E40-8F40-C4FB26F3116C}

Error: (05/19/2016 12:13:59 PM) (Source: DCOM) (EventID: 10010) (User: PC-DANA)
Description: {DABF28BE-F6B4-4E40-8F40-C4FB26F3116C}

Error: (05/19/2016 11:29:19 AM) (Source: DCOM) (EventID: 10016) (User: PC-DANA)
Description: výchozí pro počítačMístníAktivace{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}PC-DANADanaS-1-5-21-1563608661-2103815483-2595864723-1001LocalHost (pomocí LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742

Error: (05/19/2016 11:29:17 AM) (Source: DCOM) (EventID: 10016) (User: PC-DANA)
Description: výchozí pro počítačMístníAktivace{C2F03A33-21F5-47FA-B4BB-156362A2F239}{316CDED5-E4AE-4B15-9113-7055D84DCC97}PC-DANADanaS-1-5-21-1563608661-2103815483-2595864723-1001LocalHost (pomocí LRPC)Microsoft.Windows.Cortana_1.6.1.52_neutral_neutral_cw5n1h2txyewyS-1-15-2-1861897761-1695161497-2927542615-642690995-327840285-2659745135-2630312742

Error: (05/19/2016 11:26:36 AM) (Source: bowser) (EventID: 8003) (User: )
Description: Hlavní prohledávač přijal oznámení serveru od počítače TC7200-DMS,
který se považuje za hlavní prohledávač domény pro přenos NetBT_Tcpip_{75D28585-8DA2-449D-9034-21B3EC8132EA}.
Hlavní prohledávač bude ukončen nebo bude vyvolána volba.

Error: (05/19/2016 11:26:17 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Windows Presentation Foundation Font Cache 3.0.0.0 neuspěla při spuštění v důsledku následující chyby:
%%1053

Error: (05/19/2016 11:26:17 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby FontCache3.0.0.0 bylo dosaženo časového limitu (30000 ms).

Error: (05/19/2016 11:25:50 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba VBoxAswDrv neuspěla při spuštění v důsledku následující chyby:
%%2


CodeIntegrity:
===================================
Date: 2016-05-19 09:50:55.041
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-05-19 09:33:49.936
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-05-18 14:35:05.995
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-05-18 14:24:51.584
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-05-15 14:45:39.760
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-05-15 13:17:19.746
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-05-15 11:42:34.750
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-05-14 19:51:43.312
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-05-14 18:24:59.005
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-05-14 12:14:02.655
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i7-3632QM CPU @ 2.20GHz
Percentage of memory in use: 35%
Total physical RAM: 8071.27 MB
Available physical RAM: 5200.88 MB
Total Virtual: 9351.27 MB
Available Virtual: 6246.27 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:930.2 GB) (Free:561.66 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: E6A97F38)

Partition: GPT.

==================== End of Addition.txt ============================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:16-05-2016
Ran by Dana (administrator) on PC-DANA (19-05-2016 16:45:52)
Running from C:\Users\Dana\Desktop
Loaded Profiles: Dana (Available Profiles: Dana)
Platform: Windows 10 Home Version 1511 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSMonitorServicePDVD13.exe
(CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSServerPDVD13.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Monet+, a.s.) C:\Windows\SysWOW64\xmesrv.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD13\PowerDVD13Agent.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.325.12390.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
() C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1601.49020.0_x64__8wekyb3d8bbwe\Calculator.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1361112 2000-01-01] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1361112 2000-01-01] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-07] (Intel Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2397752 2016-04-05] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161728 2015-08-09] (IvoSoft)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3928264 2015-05-27] (Synaptics Incorporated)
HKLM-x32\...\Run: [ISBMgr.exe] => C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe [68776 2012-08-18] (Sony Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7139256 2016-05-14] (AVAST Software)
HKLM-x32\...\Run: [PowerDVD13Agent] => C:\Program Files (x86)\CyberLink\PowerDVD13\PowerDVD13Agent.exe [517144 2014-07-24] (CyberLink Corp.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596504 2016-04-01] (Oracle Corporation)
HKU\S-1-5-21-1563608661-2103815483-2595864723-1001\...\Run: [ShowBatteryBar] => C:\Program Files\BatteryBar\ShowBatteryBar.exe [89600 2014-09-19] ()
HKU\S-1-5-21-1563608661-2103815483-2595864723-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8619224 2016-01-15] (Piriform Ltd)
HKU\S-1-5-21-1563608661-2103815483-2595864723-1001\...\Run: [] => [X]
HKU\S-1-5-21-1563608661-2103815483-2595864723-1001\...\Run: [NokiaSuite.exe] => C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe [1092448 2014-11-19] (Nokia)
HKU\S-1-5-21-1563608661-2103815483-2595864723-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\scrnsave.scr [31744 2015-10-30] (Microsoft Corporation)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [175880 2016-04-27] (NVIDIA Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-02-11] (AVAST Software)
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-08-09] (IvoSoft)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-08-09] (IvoSoft)
Startup: C:\Users\Dana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Odeslat do OneNote.lnk [2014-07-31]
ShortcutTarget: Odeslat do OneNote.lnk -> C:\Program Files\Microsoft Office 15\root\office15\onenotem.exe (Microsoft Corporation)
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.36
Tcpip\..\Interfaces\{3a6d3bdb-8753-4c38-bf95-6c0b90155b7b}: [DhcpNameServer] 20.20.20.1
Tcpip\..\Interfaces\{75d28585-8da2-449d-9034-21b3ec8132ea}: [DhcpNameServer] 213.46.172.37 213.46.172.36

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKU\S-1-5-21-1563608661-2103815483-2595864723-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?q={searchTerms}
HKU\S-1-5-21-1563608661-2103815483-2595864723-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://www.google.com/?trackid=sp-006
SearchScopes: HKLM-x32 -> {EFE522B3-7ABD-49CB-A5C3-A2AFBBA83B9D} URL = hxxps://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1563608661-2103815483-2595864723-1001 -> DefaultScope {EFE522B3-7ABD-49CB-A5C3-A2AFBBA83B9D} URL = hxxps://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1563608661-2103815483-2595864723-1001 -> {672FA6CF-6B5E-4129-857B-BFD83450FB19} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-1563608661-2103815483-2595864723-1001 -> {EFE522B3-7ABD-49CB-A5C3-A2AFBBA83B9D} URL = hxxps://www.google.com/search?q={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2016-03-15] (Microsoft Corporation)
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-08-09] (IvoSoft)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-02-11] (AVAST Software)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2016-04-19] (Microsoft Corporation)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2015-08-09] (IvoSoft)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-08-09] (IvoSoft)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-04-28] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-02-11] (AVAST Software)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-04-28] (Oracle Corporation)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2015-08-09] (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-08-09] (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-08-09] (IvoSoft)
DPF: HKLM-x32 {26E1BEAF-C1A1-482B-8714-08844F1BCF7F} hxxp://88.100.181.37/webviewer.cab
DPF: HKLM-x32 {3AA1C0E3-DA98-4BB4-91AE-D3BC61178240} hxxp://88.100.181.37/GVersionMan.cab
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Dana\AppData\Roaming\Mozilla\Firefox\Profiles\79887ckr.default-1438761696420
FF SelectedSearchEngine: Yahoo®
FF Homepage: hxxps://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_21_0_0_242.dll [2016-05-14] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll [2016-05-14] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.5.29 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-08-14] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-08-14] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-04-28] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-04-28] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-01-04] (Microsoft Corporation)
FF Plugin-x32: @nokia.com/EnablerPlugin -> C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll [2014-11-19] ( )
FF Plugin HKU\S-1-5-21-1563608661-2103815483-2595864723-1001: @servis24.cz/PKIComponent -> C:\Users\Dana\AppData\Roaming\CSAS\lib\x86\npPKIComponentNPAPI.dll [2013-12-05] (Česká spořitelna, a.s.)
FF Plugin HKU\S-1-5-21-1563608661-2103815483-2595864723-1001: @servis24.cz/PKIComponent-x64 -> C:\Users\Dana\AppData\Roaming\CSAS\lib\x64\npPKIComponentNPAPI.dll [2013-12-05] (Česká spořitelna, a.s.)
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-05-18]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-05-18]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF

Chrome:
=======
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR Profile: C:\Users\Dana\AppData\Local\Google\Chrome\User Data\Default
CHR HKU\S-1-5-21-1563608661-2103815483-2595864723-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [hegneaniplmfjcmohoclabblbahcbjoe] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-05-14]
CHR HKLM-x32\...\Chrome\Extension: [hegneaniplmfjcmohoclabblbahcbjoe] - hxxp://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [237096 2016-02-11] (AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2829552 2016-03-08] (Microsoft Corporation)
R2 CyberLink PowerDVD 13 Media Server Monitor Service; C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSMonitorServicePDVD13.exe [77576 2014-07-24] (CyberLink)
R2 CyberLink PowerDVD 13 Media Server Service; C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSServerPDVD13.exe [327432 2014-07-24] (CyberLink)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1164856 2016-04-05] (NVIDIA Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-07] (Intel Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [330136 2015-10-11] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-08-14] (Intel Corporation)
R2 Intel(R) Wireless Bluetooth(R) 4.0 Radio Management; C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe [157128 2013-09-18] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-08-14] (Intel Corporation)
S3 NetworkSupport; C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe [625240 2013-09-28] (Sony Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1881144 2016-04-05] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3634232 2016-04-05] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2522680 2016-04-05] (NVIDIA Corporation)
R3 VUAgent; C:\Program Files\Sony\VAIO Update\vuagent.exe [1653272 2015-07-31] (Sony Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)
R2 xmengine service; C:\Windows\SysWOW64\xmesrv.exe [34696 2014-10-19] (Monet+, a.s.)
S3 AvastVBoxSvc; "C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe" [X]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-02-11] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-02-11] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [107792 2016-05-14] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-02-11] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-02-11] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1070904 2016-05-14] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [463744 2016-05-14] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [165344 2016-02-11] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [287016 2016-05-14] (AVAST Software)
S3 IT9135BDA; C:\Windows\System32\Drivers\IT9135BDA.sys [188280 2016-04-01] (ITE )
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99800 2013-08-14] (Intel Corporation)
R3 NETwNe64; C:\Windows\System32\drivers\NETwew01.sys [3343872 2015-10-30] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28216 2016-04-05] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [56384 2016-03-21] (NVIDIA Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [589824 2015-10-30] (Realtek )
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [42696 2015-05-27] (Synaptics Incorporated)
R3 SOWS; C:\Windows\System32\drivers\sows.sys [24280 2012-06-11] (Sony Corporation)
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
S3 XHCIPort; C:\Windows\System32\drivers\XHCIPort.sys [188384 2012-08-09] (Windows (R) Win 7 DDK provider)
R2 {09F57980-3432-4AFC-957D-27AC45FAE1F5}; C:\Program Files (x86)\CyberLink\PowerDVD13\Common\NavFilter\000.fcl [32456 2014-07-24] (CyberLink Corp.)
S2 VBoxAswDrv; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-05-19 16:45 - 2016-05-19 16:46 - 00021310 _____ C:\Users\Dana\Desktop\FRST.txt
2016-05-19 12:43 - 2016-05-19 14:06 - 1482813524 _____ C:\Users\Dana\Desktop\Sin-City_-Ženská,-pro-kterou-bych-vraždil-_-Sin-City_-A-Dame-to-Kill-For-2014,-CZ.mkv
2016-05-18 18:38 - 2016-05-18 18:40 - 00392132 _____ C:\WINDOWS\ntbtlog.txt
2016-05-18 15:54 - 2016-05-18 15:54 - 00003290 _____ C:\WINDOWS\System32\Tasks\{70D6A9CB-1B2E-47B6-A825-BF3E7E747480}
2016-05-18 15:35 - 2016-02-11 13:19 - 00398152 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2016-05-18 14:48 - 2016-05-18 16:28 - 00000000 ____D C:\WINDOWS\system32\%LOCALAPPDATA%
2016-05-18 07:57 - 2016-05-19 08:54 - 00029696 _____ C:\Users\Dana\AppData\Local\MSGBOX.EXE
2016-05-17 13:12 - 2016-05-19 16:45 - 00000000 ____D C:\FRST
2016-05-17 13:08 - 2016-05-17 13:12 - 02382336 _____ (Farbar) C:\Users\Dana\Desktop\FRST64.exe
2016-05-17 10:05 - 2016-05-17 10:06 - 03651136 _____ C:\Users\Dana\Downloads\adwcleaner_5.117.exe
2016-05-15 17:33 - 2016-05-15 17:34 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-05-15 17:33 - 2016-05-15 17:33 - 22851472 _____ (Malwarebytes ) C:\Users\Dana\Downloads\mbam-setup-2.2.1.1043.exe
2016-05-15 17:33 - 2016-05-15 17:33 - 00001175 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-05-15 17:33 - 2016-05-15 17:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-05-15 17:33 - 2016-05-15 17:33 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-05-15 17:33 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-05-15 17:33 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-05-15 17:33 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-05-14 19:13 - 2016-05-14 19:13 - 00000000 ____D C:\Users\Dana\AppData\Roaming\AVAST Software
2016-05-14 18:26 - 2016-05-14 18:26 - 34838952 _____ (Mozilla) C:\Users\Dana\Downloads\Thunderbird Setup 45.1.0.exe
2016-05-14 18:23 - 2016-05-18 15:37 - 00003162 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1463243023
2016-05-14 18:23 - 2016-05-18 15:37 - 00003040 _____ C:\WINDOWS\System32\Tasks\avast! Windows 10 Start Menu helper
2016-05-14 18:23 - 2016-05-18 15:37 - 00001082 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone 1 Browser.lnk
2016-05-06 12:01 - 2016-05-07 18:46 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-05-03 12:13 - 2016-04-28 18:19 - 00048696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvpciflt.sys
2016-05-03 12:13 - 2016-04-27 16:33 - 42921920 _____ C:\WINDOWS\system32\nvcompiler.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 37567424 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 31598136 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 25350712 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 21365048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 20906872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 20079168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 17756440 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 17369768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 17350288 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 17333344 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 14227888 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 10550736 _____ C:\WINDOWS\system32\nvptxJitCompiler.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 08659472 _____ C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 02614208 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 02258368 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 01922496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6436510.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 01573432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6436510.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 00960056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 00887744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 00786872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 00753208 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 00694208 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 00678704 _____ C:\WINDOWS\system32\nvfatbinaryLoader.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 00632152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 00571912 _____ C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 00546328 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 00448824 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 00425016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 00379480 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 00379448 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 00317472 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 00175880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 00153392 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 00151368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 00129024 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 00000139 _____ C:\WINDOWS\SysWOW64\nv-vk32.json
2016-05-03 12:13 - 2016-04-27 16:33 - 00000139 _____ C:\WINDOWS\system32\nv-vk64.json
2016-05-03 12:04 - 2016-03-21 22:01 - 00109632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2016-05-03 12:04 - 2016-03-21 22:01 - 00100416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2016-05-01 12:59 - 2016-05-01 12:59 - 00002162 _____ C:\Users\Public\Desktop\Nokia Suite.lnk
2016-05-01 12:59 - 2016-05-01 12:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nokia

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-05-19 16:44 - 2015-10-11 16:38 - 00000000 ____D C:\Users\Dana\AppData\Local\ClassicShell
2016-05-19 15:59 - 2014-01-05 16:17 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-05-19 15:08 - 2014-01-03 10:57 - 00004194 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{5C234D32-1D5E-4215-BAD2-993259A87C8A}
2016-05-19 12:42 - 2016-04-17 13:43 - 00000000 ____D C:\Users\Dana\AppData\Roaming\MPC-HC
2016-05-19 11:41 - 2015-10-30 20:35 - 00000000 ____D C:\Program Files\Windows Journal
2016-05-19 11:41 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-05-19 11:41 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-05-19 11:41 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\Provisioning
2016-05-19 11:41 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-05-19 11:41 - 2015-10-30 09:21 - 00000000 ____D C:\WINDOWS\INF
2016-05-19 11:40 - 2015-10-30 08:28 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-05-19 11:40 - 2015-08-03 15:20 - 00000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software
2016-05-19 11:40 - 2014-08-19 11:34 - 00000000 ____D C:\Program Files\trend micro
2016-05-19 11:40 - 2014-03-13 17:59 - 00000000 ____D C:\Users\Dana\AppData\Local\Cyberlink SoftDMA
2016-05-19 11:38 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-05-19 11:38 - 2014-11-24 12:38 - 00001696 _____ C:\WINDOWS\Tasks\CPOKCZF.job
2016-05-19 11:38 - 2014-11-24 12:38 - 00001346 _____ C:\WINDOWS\Tasks\OPSN.job
2016-05-19 11:34 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\registration
2016-05-19 11:28 - 2015-08-31 12:32 - 00000000 __SHD C:\Users\Dana\IntelGraphicsProfiles
2016-05-19 11:25 - 2015-12-19 18:38 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-05-19 11:25 - 2015-12-19 18:18 - 00000000 ____D C:\Users\Dana
2016-05-19 10:00 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-05-19 09:33 - 2015-10-30 09:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-05-19 08:47 - 2014-05-04 12:49 - 00004280 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2016-05-18 18:59 - 2014-01-03 10:55 - 00000000 ____D C:\Users\Dana\AppData\Local\Packages
2016-05-18 18:44 - 2015-10-30 08:28 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-05-18 18:39 - 2016-02-04 10:32 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2016-05-18 16:28 - 2014-08-19 12:47 - 00000000 ____D C:\AdwCleaner
2016-05-18 16:00 - 2014-08-08 10:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MG3500 series Manual
2016-05-18 15:57 - 2014-01-05 17:28 - 00000000 ____D C:\Users\Dana\AppData\Local\CrashDumps
2016-05-18 15:56 - 2014-03-12 19:04 - 00000000 ___RD C:\Users\Dana\Documents\návody
2016-05-18 15:55 - 2014-08-08 10:26 - 00000000 ___HD C:\ProgramData\CanonIJScan
2016-05-18 15:37 - 2016-02-11 13:20 - 00001979 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2016-05-18 15:37 - 2015-08-03 15:24 - 00001967 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2016-05-18 10:47 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-05-18 08:12 - 2014-08-08 10:25 - 00000000 ____D C:\Users\Dana\AppData\Roaming\Canon
2016-05-18 08:00 - 2014-07-31 09:15 - 00000000 ____D C:\Users\Dana\AppData\LocalLow\Temp
2016-05-18 07:40 - 2015-04-18 15:36 - 00000000 ____D C:\Users\Dana\Documents\JavaExe
2016-05-17 10:05 - 2014-01-25 14:49 - 00000000 ____D C:\Users\Dana\AppData\Roaming\Seznam.cz
2016-05-17 10:04 - 2014-01-25 14:49 - 00000000 ____D C:\Program Files (x86)\Seznam.cz
2016-05-14 19:14 - 2015-07-30 16:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2016-05-14 19:14 - 2014-05-04 12:47 - 00000000 ____D C:\Program Files\AVAST Software
2016-05-14 19:08 - 2014-01-03 13:11 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-05-14 19:00 - 2014-05-04 12:46 - 00000000 ____D C:\ProgramData\AVAST Software
2016-05-14 18:40 - 2014-01-05 17:28 - 00000000 ____D C:\Users\Dana\AppData\Local\ElevatedDiagnostics
2016-05-14 18:27 - 2014-11-10 18:30 - 00001282 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2016-05-14 18:27 - 2014-11-10 18:30 - 00001270 _____ C:\Users\Public\Desktop\Mozilla Thunderbird.lnk
2016-05-14 18:26 - 2016-04-08 17:19 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2016-05-14 18:23 - 2014-05-04 12:48 - 01070904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2016-05-14 18:23 - 2014-05-04 12:48 - 00463744 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2016-05-14 18:23 - 2014-05-04 12:48 - 00287016 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2016-05-14 18:23 - 2014-05-04 12:48 - 00107792 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2016-05-09 09:10 - 2015-10-30 20:31 - 00752310 _____ C:\WINDOWS\system32\perfh005.dat
2016-05-09 09:10 - 2015-10-30 20:31 - 00151396 _____ C:\WINDOWS\system32\perfc005.dat
2016-05-09 09:10 - 2015-08-31 12:12 - 01774890 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-05-07 18:47 - 2015-12-19 18:13 - 00000000 ____D C:\ProgramData\NVIDIA
2016-05-07 13:28 - 2016-02-11 13:25 - 00003162 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1455189915
2016-05-07 13:28 - 2016-02-11 13:25 - 00001088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2016-05-05 09:12 - 2015-10-30 09:24 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-05-05 09:11 - 2014-01-04 16:08 - 00000000 ____D C:\Program Files\Microsoft Office 15
2016-05-03 12:14 - 2015-12-19 18:12 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-05-03 03:24 - 2015-10-30 09:26 - 00829944 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-05-03 03:24 - 2015-10-30 09:26 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-04-28 18:18 - 2015-11-05 12:04 - 12631616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2016-04-28 08:09 - 2015-04-18 16:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-04-28 08:09 - 2014-08-09 12:22 - 00000000 ____D C:\Program Files (x86)\Java
2016-04-28 08:09 - 2014-07-28 19:29 - 00000000 ____D C:\ProgramData\Oracle
2016-04-28 08:08 - 2015-09-21 07:36 - 00000000 ____D C:\Users\Dana\.oracle_jre_usage
2016-04-28 08:08 - 2015-04-18 16:40 - 00097856 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2016-04-27 16:33 - 2015-11-05 12:04 - 03685280 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2016-04-27 16:33 - 2015-11-05 12:04 - 03262784 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2016-04-27 16:33 - 2015-11-05 12:04 - 00038050 _____ C:\WINDOWS\system32\nvinfo.pb
2016-04-27 14:18 - 2015-12-19 18:13 - 06369728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2016-04-27 14:18 - 2015-12-19 18:13 - 02994744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2016-04-27 14:18 - 2015-12-19 18:13 - 02563128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2016-04-27 14:18 - 2015-12-19 18:13 - 01265720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2016-04-27 14:18 - 2015-12-19 18:13 - 00530880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2016-04-27 14:18 - 2015-12-19 18:13 - 00393784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2016-04-27 14:18 - 2015-12-19 18:13 - 00081856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2016-04-27 14:18 - 2015-12-19 18:13 - 00071224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2016-04-25 07:33 - 2015-12-19 18:13 - 06381278 _____ C:\WINDOWS\system32\nvcoproc.bin
2016-04-24 08:14 - 2015-08-31 12:37 - 00002425 _____ C:\Users\Dana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-04-24 08:14 - 2015-08-31 12:37 - 00000000 ___RD C:\Users\Dana\OneDrive

==================== Files in the root of some directories =======

2014-01-09 11:40 - 2014-01-09 11:41 - 0003747 _____ () C:\Program Files (x86)\Mozilla Firefoxsafeguard-secure-search.xml
2014-09-03 23:36 - 2015-04-18 21:12 - 0000365 _____ () C:\Users\Dana\AppData\Roaming\CPOKCZF
2014-05-01 16:50 - 2014-05-01 17:44 - 0099384 _____ () C:\Users\Dana\AppData\Roaming\inst.exe
2014-09-03 23:36 - 2014-09-03 23:36 - 0002086 _____ () C:\Users\Dana\AppData\Roaming\OPSN
2014-05-01 16:50 - 2014-05-01 17:44 - 0007859 _____ () C:\Users\Dana\AppData\Roaming\pcouffin.cat
2014-05-01 16:50 - 2014-05-01 17:44 - 0001167 _____ () C:\Users\Dana\AppData\Roaming\pcouffin.inf
2014-05-01 16:50 - 2014-05-01 17:44 - 0000055 _____ () C:\Users\Dana\AppData\Roaming\pcouffin.log
2014-05-01 16:50 - 2014-05-01 17:44 - 0082816 _____ (VSO Software) C:\Users\Dana\AppData\Roaming\pcouffin.sys
2014-05-01 18:16 - 2016-03-06 13:50 - 0001057 _____ () C:\Users\Dana\AppData\Roaming\vso_ts_preview.xml
2016-05-18 07:57 - 2016-05-19 08:54 - 0029696 _____ () C:\Users\Dana\AppData\Local\MSGBOX.EXE
2014-01-03 11:12 - 2014-01-03 11:13 - 0011214 _____ () C:\Users\Dana\AppData\Local\WiDiSetupLog.20140103.101223.txt
2015-12-19 18:13 - 2015-12-19 18:13 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some files in TEMP:
====================
C:\Users\Dana\AppData\Local\Temp\Maint000.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-05-18 19:15

==================== End of FRST.txt ============================

[altrok]

V tomto kroku zakazeme aktualizace a pokusime se odstranit malware. Vypada to, ze se po kazdem restartu instaluji aktualizace, coz se nezdari a pomoci bodu obnoveni natahnete havet zpatky.

• Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
• ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
• znovu spustte FRST a kliknete na Fix
• po restartu bude na plose ulozen fixlog, jehoz obsah vlozte do pristi odpovedi

  Kód: Vybrat vše

  Start
  CloseProcesses:
  CMD: sc stop wuauserv
  CMD: sc config wuauserv start= disabled
  Folder: C:\Users\Dana\AppData\Local\Installer\Installcr_23155
  Task: {0F090E23-EA47-402A-A1F2-75641BC6CCDC} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
  Task: {1792BB26-F1F3-493E-B53F-B58527A9EF15} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
  Task: {193BC28C-CDB0-4777-894F-6271C1706CCB} - System32\Tasks\OPSN => C:\Users\Dana\AppData\Roaming\OPSN.exe <==== ATTENTION
  C:\Users\Dana\AppData\Roaming\OPSN.exe
  Task: {20C088F1-BD85-4CEE-909F-8F6FAA45E019} - System32\Tasks\CPOKCZF => C:\Users\Dana\AppData\Roaming\CPOKCZF.exe <==== ATTENTION
  C:\Users\Dana\AppData\Roaming\CPOKCZF.exe
  Task: {242F04F5-FA9C-411F-AA82-3D2EFB14ACB0} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
  Task: {2EFCA3A2-4A8F-4840-B5C2-D28F80F3BDBA} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
  Task: {34BAD189-09C3-403A-B687-0A29A9ADB76B} - \Update Service YourFileDownloader -> No File <==== ATTENTION
  Task: {3726B2B0-A39E-4688-A2B8-9A2CE106AFB7} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
  Task: {5C79B472-4AE6-4FA1-9529-EACF5720BB89} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
  Task: {6E163AB3-22DB-4897-8185-AC0D884F04F9} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
  Task: {8F44B9F3-0928-4CAC-A80A-7DEF9F78F8D7} - System32\Tasks\{3C94A48A-27C0-4469-85A7-CE5A01FBBC1A} => pcalua.exe -a "C:\Users\Dana\AppData\Roaming\0W1L1G1Q1F2W1Bzz0D1F2W1G1I1F1T1Q1B\SlimDrivers Packages\uninstaller.exe" -c /Uninstall /NM="SlimDrivers Packages" /AN="0W1L1G1Q1F2W1Bzz0D1F2W1G1I1F1T1Q1B" /MBN="SlimDrivers Packages"
  C:\Users\Dana\AppData\Roaming\0W1L1G1Q1F2W1Bzz0D1F2W1G1I1F1T1Q1B
  Task: {ACDEC6D7-26B7-4469-B58C-91EC1C05DA01} - System32\Tasks\Installer_cr => C:\Users\Dana\AppData\Local\Installer\Installcr_23155\ytd_sysmenu_setup.exe <==== ATTENTION
  Task: {B34037D6-ED58-4D73-B0E1-96B9D5B52838} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
  Task: {DE741AA2-D941-4BCD-B592-E4A0FC251075} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
  Task: {DEDA8A4C-19B6-40BB-BCB1-AF227EB3B203} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
  Task: {E81BCAE3-C7F7-4F34-BBBC-3B407AB90B1D} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
  Task: {F2CD238B-8509-46FB-BFE2-11FB8FD170E6} - System32\Tasks\{D6928247-98EE-4AA9-B9D8-7B1B6D22733F} => pcalua.exe -a "C:\Program Files (x86)\RelevantKnowledge\rlvknlg.exe" -c -bootremove -uninst:RelevantKnowledge
  C:\Program Files (x86)\RelevantKnowledge
  Task: C:\WINDOWS\Tasks\CPOKCZF.job => C:\Users\Dana\AppData\Roaming\CPOKCZF.exe <==== ATTENTION
  Task: C:\WINDOWS\Tasks\OPSN.job => C:\Users\Dana\AppData\Roaming\OPSN.exe <==== ATTENTION
  HKU\S-1-5-21-1563608661-2103815483-2595864723-1001\...\Run: [] => [X]
  CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
  HKU\S-1-5-21-1563608661-2103815483-2595864723-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://www.google.com/?trackid=sp-006
  2016-05-15 15:10 - 2014-08-19 11:34 - 00000000 ____D C:\Program Files\trend micro
  Hosts:
  CreateRestorePoint:
  EmptyTemp:
  End

[tacvud]

Fix result of Farbar Recovery Scan Tool (x64) Version:16-05-2016
Ran by Dana (2016-05-20 19:26:06) Run:3
Running from C:\Users\Dana\Desktop
Loaded Profiles: Dana (Available Profiles: Dana)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CMD: sc stop wuauserv
CMD: sc config wuauserv start= disabled
Folder: C:\Users\Dana\AppData\Local\Installer\Installcr_23155
Task: {0F090E23-EA47-402A-A1F2-75641BC6CCDC} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {1792BB26-F1F3-493E-B53F-B58527A9EF15} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {193BC28C-CDB0-4777-894F-6271C1706CCB} - System32\Tasks\OPSN => C:\Users\Dana\AppData\Roaming\OPSN.exe <==== ATTENTION
C:\Users\Dana\AppData\Roaming\OPSN.exe
Task: {20C088F1-BD85-4CEE-909F-8F6FAA45E019} - System32\Tasks\CPOKCZF => C:\Users\Dana\AppData\Roaming\CPOKCZF.exe <==== ATTENTION
C:\Users\Dana\AppData\Roaming\CPOKCZF.exe
Task: {242F04F5-FA9C-411F-AA82-3D2EFB14ACB0} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {2EFCA3A2-4A8F-4840-B5C2-D28F80F3BDBA} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {34BAD189-09C3-403A-B687-0A29A9ADB76B} - \Update Service YourFileDownloader -> No File <==== ATTENTION
Task: {3726B2B0-A39E-4688-A2B8-9A2CE106AFB7} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {5C79B472-4AE6-4FA1-9529-EACF5720BB89} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {6E163AB3-22DB-4897-8185-AC0D884F04F9} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {8F44B9F3-0928-4CAC-A80A-7DEF9F78F8D7} - System32\Tasks\{3C94A48A-27C0-4469-85A7-CE5A01FBBC1A} => pcalua.exe -a "C:\Users\Dana\AppData\Roaming\0W1L1G1Q1F2W1Bzz0D1F2W1G1I1F1T1Q1B\SlimDrivers Packages\uninstaller.exe" -c /Uninstall /NM="SlimDrivers Packages" /AN="0W1L1G1Q1F2W1Bzz0D1F2W1G1I1F1T1Q1B" /MBN="SlimDrivers Packages"
C:\Users\Dana\AppData\Roaming\0W1L1G1Q1F2W1Bzz0D1F2W1G1I1F1T1Q1B
Task: {ACDEC6D7-26B7-4469-B58C-91EC1C05DA01} - System32\Tasks\Installer_cr => C:\Users\Dana\AppData\Local\Installer\Installcr_23155\ytd_sysmenu_setup.exe <==== ATTENTION
Task: {B34037D6-ED58-4D73-B0E1-96B9D5B52838} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {DE741AA2-D941-4BCD-B592-E4A0FC251075} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {DEDA8A4C-19B6-40BB-BCB1-AF227EB3B203} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {E81BCAE3-C7F7-4F34-BBBC-3B407AB90B1D} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {F2CD238B-8509-46FB-BFE2-11FB8FD170E6} - System32\Tasks\{D6928247-98EE-4AA9-B9D8-7B1B6D22733F} => pcalua.exe -a "C:\Program Files (x86)\RelevantKnowledge\rlvknlg.exe" -c -bootremove -uninst:RelevantKnowledge
C:\Program Files (x86)\RelevantKnowledge
Task: C:\WINDOWS\Tasks\CPOKCZF.job => C:\Users\Dana\AppData\Roaming\CPOKCZF.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\OPSN.job => C:\Users\Dana\AppData\Roaming\OPSN.exe <==== ATTENTION
HKU\S-1-5-21-1563608661-2103815483-2595864723-1001\...\Run: [] => [X]
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
HKU\S-1-5-21-1563608661-2103815483-2595864723-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://www.google.com/?trackid=sp-006
2016-05-15 15:10 - 2014-08-19 11:34 - 00000000 ____D C:\Program Files\trend micro
Hosts:
CreateRestorePoint:
EmptyTemp:

[altrok]

• Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
• ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
• znovu spustte FRST a kliknete na Fix
• po restartu bude na plose ulozen fixlog, jehoz obsah vlozte do pristi odpovedi

  Kód: Vybrat vše

  Start
  CMD: sc stop wuauserv
  CMD: sc config wuauserv start= disabled
  Folder: C:\Users\Dana\AppData\Local\Installer\Installcr_23155
  Task: {0F090E23-EA47-402A-A1F2-75641BC6CCDC} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
  Task: {1792BB26-F1F3-493E-B53F-B58527A9EF15} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
  Task: {193BC28C-CDB0-4777-894F-6271C1706CCB} - System32\Tasks\OPSN => C:\Users\Dana\AppData\Roaming\OPSN.exe <==== ATTENTION
  C:\Users\Dana\AppData\Roaming\OPSN.exe
  Task: {20C088F1-BD85-4CEE-909F-8F6FAA45E019} - System32\Tasks\CPOKCZF => C:\Users\Dana\AppData\Roaming\CPOKCZF.exe <==== ATTENTION
  C:\Users\Dana\AppData\Roaming\CPOKCZF.exe
  Task: {242F04F5-FA9C-411F-AA82-3D2EFB14ACB0} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
  Task: {2EFCA3A2-4A8F-4840-B5C2-D28F80F3BDBA} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
  Task: {34BAD189-09C3-403A-B687-0A29A9ADB76B} - \Update Service YourFileDownloader -> No File <==== ATTENTION
  Task: {3726B2B0-A39E-4688-A2B8-9A2CE106AFB7} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
  Task: {5C79B472-4AE6-4FA1-9529-EACF5720BB89} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
  Task: {6E163AB3-22DB-4897-8185-AC0D884F04F9} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
  Task: {8F44B9F3-0928-4CAC-A80A-7DEF9F78F8D7} - System32\Tasks\{3C94A48A-27C0-4469-85A7-CE5A01FBBC1A} => pcalua.exe -a "C:\Users\Dana\AppData\Roaming\0W1L1G1Q1F2W1Bzz0D1F2W1G1I1F1T1Q1B\SlimDrivers Packages\uninstaller.exe" -c /Uninstall /NM="SlimDrivers Packages" /AN="0W1L1G1Q1F2W1Bzz0D1F2W1G1I1F1T1Q1B" /MBN="SlimDrivers Packages"
  C:\Users\Dana\AppData\Roaming\0W1L1G1Q1F2W1Bzz0D1F2W1G1I1F1T1Q1B
  Task: {ACDEC6D7-26B7-4469-B58C-91EC1C05DA01} - System32\Tasks\Installer_cr => C:\Users\Dana\AppData\Local\Installer\Installcr_23155\ytd_sysmenu_setup.exe <==== ATTENTION
  Task: {B34037D6-ED58-4D73-B0E1-96B9D5B52838} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
  Task: {DE741AA2-D941-4BCD-B592-E4A0FC251075} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
  Task: {DEDA8A4C-19B6-40BB-BCB1-AF227EB3B203} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
  Task: {E81BCAE3-C7F7-4F34-BBBC-3B407AB90B1D} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
  Task: {F2CD238B-8509-46FB-BFE2-11FB8FD170E6} - System32\Tasks\{D6928247-98EE-4AA9-B9D8-7B1B6D22733F} => pcalua.exe -a "C:\Program Files (x86)\RelevantKnowledge\rlvknlg.exe" -c -bootremove -uninst:RelevantKnowledge
  C:\Program Files (x86)\RelevantKnowledge
  Task: C:\WINDOWS\Tasks\CPOKCZF.job => C:\Users\Dana\AppData\Roaming\CPOKCZF.exe <==== ATTENTION
  Task: C:\WINDOWS\Tasks\OPSN.job => C:\Users\Dana\AppData\Roaming\OPSN.exe <==== ATTENTION
  HKU\S-1-5-21-1563608661-2103815483-2595864723-1001\...\Run: [] => [X]
  CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
  HKU\S-1-5-21-1563608661-2103815483-2595864723-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://www.google.com/?trackid=sp-006
  2016-05-15 15:10 - 2014-08-19 11:34 - 00000000 ____D C:\Program Files\trend micro
  Hosts:
  CreateRestorePoint:
  EmptyTemp:
  End

[tacvud]

Fix result of Farbar Recovery Scan Tool (x64) Version:22-05-2016
Ran by Dana (2016-05-22 13:27:13) Run:4
Running from C:\Users\Dana\Desktop
Loaded Profiles: Dana (Available Profiles: Dana)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CMD: sc stop wuauserv
CMD: sc config wuauserv start= disabled
Folder: C:\Users\Dana\AppData\Local\Installer\Installcr_23155
Task: {0F090E23-EA47-402A-A1F2-75641BC6CCDC} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {1792BB26-F1F3-493E-B53F-B58527A9EF15} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {193BC28C-CDB0-4777-894F-6271C1706CCB} - System32\Tasks\OPSN => C:\Users\Dana\AppData\Roaming\OPSN.exe <==== ATTENTION
C:\Users\Dana\AppData\Roaming\OPSN.exe
Task: {20C088F1-BD85-4CEE-909F-8F6FAA45E019} - System32\Tasks\CPOKCZF => C:\Users\Dana\AppData\Roaming\CPOKCZF.exe <==== ATTENTION
C:\Users\Dana\AppData\Roaming\CPOKCZF.exe
Task: {242F04F5-FA9C-411F-AA82-3D2EFB14ACB0} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {2EFCA3A2-4A8F-4840-B5C2-D28F80F3BDBA} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {34BAD189-09C3-403A-B687-0A29A9ADB76B} - \Update Service YourFileDownloader -> No File <==== ATTENTION
Task: {3726B2B0-A39E-4688-A2B8-9A2CE106AFB7} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {5C79B472-4AE6-4FA1-9529-EACF5720BB89} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {6E163AB3-22DB-4897-8185-AC0D884F04F9} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {8F44B9F3-0928-4CAC-A80A-7DEF9F78F8D7} - System32\Tasks\{3C94A48A-27C0-4469-85A7-CE5A01FBBC1A} => pcalua.exe -a "C:\Users\Dana\AppData\Roaming\0W1L1G1Q1F2W1Bzz0D1F2W1G1I1F1T1Q1B\SlimDrivers Packages\uninstaller.exe" -c /Uninstall /NM="SlimDrivers Packages" /AN="0W1L1G1Q1F2W1Bzz0D1F2W1G1I1F1T1Q1B" /MBN="SlimDrivers Packages"
C:\Users\Dana\AppData\Roaming\0W1L1G1Q1F2W1Bzz0D1F2W1G1I1F1T1Q1B
Task: {ACDEC6D7-26B7-4469-B58C-91EC1C05DA01} - System32\Tasks\Installer_cr => C:\Users\Dana\AppData\Local\Installer\Installcr_23155\ytd_sysmenu_setup.exe <==== ATTENTION
Task: {B34037D6-ED58-4D73-B0E1-96B9D5B52838} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {DE741AA2-D941-4BCD-B592-E4A0FC251075} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {DEDA8A4C-19B6-40BB-BCB1-AF227EB3B203} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {E81BCAE3-C7F7-4F34-BBBC-3B407AB90B1D} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {F2CD238B-8509-46FB-BFE2-11FB8FD170E6} - System32\Tasks\{D6928247-98EE-4AA9-B9D8-7B1B6D22733F} => pcalua.exe -a "C:\Program Files (x86)\RelevantKnowledge\rlvknlg.exe" -c -bootremove -uninst:RelevantKnowledge
C:\Program Files (x86)\RelevantKnowledge
Task: C:\WINDOWS\Tasks\CPOKCZF.job => C:\Users\Dana\AppData\Roaming\CPOKCZF.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\OPSN.job => C:\Users\Dana\AppData\Roaming\OPSN.exe <==== ATTENTION
HKU\S-1-5-21-1563608661-2103815483-2595864723-1001\...\Run: [] => [X]
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
HKU\S-1-5-21-1563608661-2103815483-2595864723-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://www.google.com/?trackid=sp-006
2016-05-15 15:10 - 2014-08-19 11:34 - 00000000 ____D C:\Program Files\trend micro
Hosts:
CreateRestorePoint:
EmptyTemp:
End

[altrok]

• Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
• ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
• znovu spustte FRST a kliknete na Fix
• na plose bude ulozen fixlog (bez restartu), jehoz obsah vlozte do pristi odpovedi

  Kód: Vybrat vše

  Start
  CMD: sc stop wuauserv
  CMD: sc config wuauserv start= disabled
  Task: C:\WINDOWS\Tasks\CPOKCZF.job => C:\Users\Dana\AppData\Roaming\CPOKCZF.exe <==== ATTENTION
  Task: C:\WINDOWS\Tasks\OPSN.job => C:\Users\Dana\AppData\Roaming\OPSN.exe <==== ATTENTION
  End

[tacvud]

Fix result of Farbar Recovery Scan Tool (x64) Version:22-05-2016
Ran by Dana (2016-05-22 14:03:51) Run:5
Running from C:\Users\Dana\Desktop
Loaded Profiles: Dana (Available Profiles: Dana)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CMD: sc stop wuauserv
CMD: sc config wuauserv start= disabled
Task: C:\WINDOWS\Tasks\CPOKCZF.job => C:\Users\Dana\AppData\Roaming\CPOKCZF.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\OPSN.job => C:\Users\Dana\AppData\Roaming\OPSN.exe <==== ATTENTION
End
*****************


========= sc stop wuauserv =========

[SC] ControlService FAILED 1062:

Slu�ba nebyla spu�t�na.


========= End of CMD: =========


========= sc config wuauserv start= disabled =========

[SC] ChangeServiceConfig SUCCESS

========= End of CMD: =========

C:\WINDOWS\Tasks\CPOKCZF.job => not found.
C:\WINDOWS\Tasks\OPSN.job => not found.

==== End of Fixlog 14:03:51 ====

[altrok]

Vyborne. Dejte prosim nove logy FRST.txt a Addition.txt.

[tacvud]

Additional scan result of Farbar Recovery Scan Tool (x64) Version:22-05-2016
Ran by Dana (2016-05-22 14:30:17)
Running from C:\Users\Dana\Desktop
Windows 10 Home Version 1511 (X64) (2015-12-19 16:45:49)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1563608661-2103815483-2595864723-500 - Administrator - Disabled)
Dana (S-1-5-21-1563608661-2103815483-2595864723-1001 - Administrator - Enabled) => C:\Users\Dana
DefaultAccount (S-1-5-21-1563608661-2103815483-2595864723-503 - Limited - Disabled)
Guest (S-1-5-21-1563608661-2103815483-2595864723-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1563608661-2103815483-2595864723-1003 - Limited - Enabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.242 - Adobe Systems Incorporated)
Aktualizace NVIDIA 2.11.2.55 (Version: 2.11.2.55 - NVIDIA Corporation) Hidden
Aplikace Intel® PROSet/Wireless (HKLM-x32\...\{105fa5c4-72e1-41f2-a82c-884d8aa4b381}) (Version: 16.6.0 - Intel Corporation)
Ashampoo Burning Studio 6 FREE v.6.84 (HKLM-x32\...\{91B33C97-3ED1-03EA-A67B-244AA4D7B559}_is1) (Version: 6.8.4 - Ashampoo GmbH & Co. KG)
AutoUpdate (HKLM-x32\...\{18D10072035C4515918F7E37EAFAACFC}) (Version: 1.1 - )
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 11.1.2253 - AVAST Software)
Balíček ovladače systému Windows - Nokia pccsmcfd LegacyDriver (05/31/2012 7.1.2.0) (HKLM\...\62BBD193ADFDBB228C7E1ADB56463F5732FF7F6F) (Version: 05/31/2012 7.1.2.0 - Nokia)
Balíček ovladače systému Windows - Sony Corporation (SFEP) HIDClass (06/18/2012 8.0.2.4) (HKLM\...\54DCDF5F20965812FBF3C1C44CE2E9E620585DE9) (Version: 06/18/2012 8.0.2.4 - Sony Corporation)
Balíček ovladače systému Windows - Sony Croporation (SOWS) HIDClass (06/11/2012 1.0.0.06110) (HKLM\...\5478D63468C46333F277779BC2B1EBAEA89C153D) (Version: 06/11/2012 1.0.0.06110 - Sony Croporation)
BatteryBar (remove only) (HKLM\...\BatteryBar) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.14 - Piriform)
Classic Shell (HKLM\...\{E289B7DD-6732-4333-A47A-75A145D23EE3}) (Version: 4.2.4 - IvoSoft)
ConvertXtoDVD 4.1.19.365 (HKLM-x32\...\{DB6AB705-C9BD-40E3-8929-2EA57F36A4FF}_is1) (Version: 4.1.19.365 - )
CryptoPlus CS v1.0e (HKLM-x32\...\CryptoPlus CS v1.0e) (Version: 2.0.7 - Monet+,a.s.)
CryptoPlus CS v1.0e x64 (HKLM\...\CryptoPlus CS v1.0e) (Version: 2.0.7 - Monet+,a.s.)
CyberLink PowerDVD 13 (HKLM-x32\...\InstallShield_{3CFDF154-7E60-4E98-A8DF-C693A4F8E6B6}) (Version: 13.0.4324.58 - CyberLink Corp.)
Diagnostika ventilátoru procesoru počítače VAIO (HKLM-x32\...\{BCE6E3D7-B565-4E1B-AC77-F780666A35FB}) (Version: 1.1.0.09200 - Sony Corporation)
DivX Codec (HKLM-x32\...\{7B63B2922B174135AFC0E1377DD81EC2}) (Version: 6.8.2 - DivX, Inc.)
Dolby Home Theater v4 (HKLM-x32\...\{B26438B4-BF51-49C3-9567-7F14A5E40CB9}) (Version: 7.2.8000.17 - Dolby Laboratories Inc)
DVD Cloner 2013 v 10.50 (HKLM-x32\...\DVD Cloner 2013 v 10.50) (Version: v 10.50 - Company)
FDUx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
FormatFactory 3.3.1.0 (HKLM-x32\...\FormatFactory) (Version: 3.3.1.0 - Format Factory)
Freemake Video Converter verze 4.1.4 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.4 - Ellora Assets Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.3.1520 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology (HKLM\...\{302600C1-6BDF-4FD1-1309-148929CC1385}) (Version: 3.1.1309.0390 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 12.8.0.1016 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel(R) WiDi (HKLM\...\{EDBA2433-0910-4C72-8C5B-8FEDAE3EF18E}) (Version: 3.5.34.0 - Intel Corporation)
Intel(R) Wireless Display (HKLM\...\{28EF7372-9087-4AC3-9B9F-D9751FCDF830}) (Version: - )
Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.14 - Oracle Corporation)
K-Lite Mega Codec Pack 12.0.5 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 12.0.5 - KLCP)
KUx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
Malwarebytes Anti-Malware verze 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Math Problem Solver (HKU\S-1-5-21-1563608661-2103815483-2595864723-1001\...\Math Problem Solver) (Version: - ) <==== ATTENTION
Microsoft Mouse and Keyboard Center (HKLM\...\Microsoft Mouse and Keyboard Center) (Version: 2.2.173.0 - Microsoft Corporation)
Microsoft Office 2013 pro profesionály - cs-cz (HKLM\...\ProfessionalRetail - cs-cz) (Version: 15.0.4815.1002 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 (HKLM-x32\...\{a1909659-0a08-4554-8af1-2175904903a1}) (Version: 11.0.60610.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Mozilla Firefox 46.0.1 (x86 cs) (HKLM-x32\...\Mozilla Firefox 46.0.1 (x86 cs)) (Version: 46.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 45.1.0 - Mozilla)
Mozilla Thunderbird 45.1.0 (x86 cs) (HKLM-x32\...\Mozilla Thunderbird 45.1.0 (x86 cs)) (Version: 45.1.0 - Mozilla)
MSVC80_x64_v2 (Version: 1.0.3.0 - Nokia) Hidden
MSVC80_x86_v2 (x32 Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x64 (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (x32 Version: 1.0.1.2 - Nokia) Hidden
Nokia Connectivity Cable Driver (HKLM-x32\...\{29373274-977E-413C-A4DE-DC0F8E80C429}) (Version: 7.1.172.0 - Nokia)
Nokia Suite (HKLM-x32\...\Nokia Suite) (Version: 3.8.54.0 - Nokia)
Nokia Suite (x32 Version: 3.8.54.0 - Nokia) Hidden
NVIDIA GeForce Experience 2.11.2.55 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.2.55 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 353.30 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 353.30 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.15.0428 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.15.0428 - NVIDIA Corporation)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4815.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4815.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4815.1002 - Microsoft Corporation) Hidden
Ovládací panel NVIDIA 358.87 (Version: 358.87 - NVIDIA Corporation) Hidden
PC Connectivity Solution (HKLM-x32\...\{6D01D1B1-17BD-4F10-BB11-F08F0C47D42B}) (Version: 12.0.109.0 - Nokia)
Qualcomm Atheros Bluetooth Suite (64) (HKLM\...\{A84A4FB1-D703-48DB-89E0-68B6499D2801}) (Version: 8.0.1.305 - Qualcomm Atheros Communications)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9600.28145 - Realtek Semiconductor Corp.)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 8.2.612.2012 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7083 - Realtek Semiconductor Corp.)
Registrace uživatele zařízení Canon MG3500 series (HKLM-x32\...\Registrace uživatele zařízení Canon MG3500 series) (Version: - ‭Canon Inc.)
SafeZone Stable 1.48.2066.44 (x32 Version: 1.48.2066.44 - Avast Software) Hidden
SafeZone Stable 1.48.2066.98 (x32 Version: 1.48.2066.98 - Avast Software) Hidden
SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.11.2.66 - NVIDIA Corporation) Hidden
SSLx64 (Version: 1.0.0 - Sony Corporation ) Hidden
SSLx86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.5.0 - Synaptics Incorporated)
System Requirements Lab for Intel (HKLM-x32\...\{C7CA731B-BF9A-46D9-92CF-8A8737AE9240}) (Version: 4.5.13.0 - Husdawg, LLC)
Unknown Device Identifier 8.01 (HKLM\...\Unknown Device Identifier_is1) (Version: 8.01 - Huntersoft)
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
VAIO Control Center (HKLM-x32\...\{8E797841-A110-41FD-B17A-3ABC0641187A}) (Version: 6.1.0.10300 - Sony Corporation)
VAIO Gate (HKLM-x32\...\{14AC95A2-7675-4988-A5BD-3F5B943AED08}) (Version: 3.0.0.08140 - Sony Corporation)
VAIO Update (HKLM-x32\...\{9FF95DA2-7DA1-4228-93B7-DED7EC02B6B2}) (Version: 7.1.0.08060 - Sony Corporation)
VC80CRTRedist - 8.0.50727.6195 (x32 Version: 1.2.0 - DivX, Inc) Hidden
VCCMMX64 (Version: 1.0.0 - Sony Corporation) Hidden
VCCMMX86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VCCx64 (Version: 1.0.0 - Sony Corporation) Hidden
VCCx86 (x32 Version: 1.0.0 - Sony Corporation) Hidden
VGClientX64 (Version: 1.0.0 - Sony Corporation) Hidden
VHD (x32 Version: 1.0.0 - Sony Corporation) Hidden
VPMx64 (Version: 1.0.0 - Sony Corporation ) Hidden
VU5x64 (Version: 1.0.0 - Sony Corporation ) Hidden
VU5x64 (Version: 1.1.0 - Sony Corporation ) Hidden
VU5x86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden
VU5x86 (x32 Version: 1.1.0 - Sony Corporation ) Hidden
VUx64 (Version: 1.0.0 - Sony Corporation ) Hidden
VUx86 (x32 Version: 1.0.0 - Sony Corporation ) Hidden
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
Zásuvný modul Diagnostika hardwaru počítače VAIO pro aplikaci VAIO Care (HKLM-x32\...\{EC153498-00E1-4C9C-89BE-81527C6750BE}) (Version: 4.7.0.11070 - Sony Corporation)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1563608661-2103815483-2595864723-1001_Classes\CLSID\{6614FE97-812C-4B8B-AD6F-83D07279BF02}\InprocServer32 -> C:\Users\Dana\AppData\Roaming\CSAS\lib\x64\PKIComponentAX.dll (Česká spořitelna, a.s.)
CustomCLSID: HKU\S-1-5-21-1563608661-2103815483-2595864723-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Dana\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1563608661-2103815483-2595864723-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-1563608661-2103815483-2595864723-1001_Classes\CLSID\{8616ED07-7CEA-47D2-912D-79BF20C02290}\InprocServer32 -> C:\Users\Dana\AppData\Roaming\CSAS\lib\x64\PKIComponentAX.dll (Česká spořitelna, a.s.)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {046B67B4-6E26-4AE0-927E-886F8C4D6E6B} - System32\Tasks\Sony Corporation\VAIO Control Center\VAIOControlCenterSystem => C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe [2012-10-31] (Sony Corporation)
Task: {07AA26E2-56C7-42CB-A79C-046DC9462DBA} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2016-02-09] (Microsoft Corporation)
Task: {13EC9B67-39C4-436A-AFCC-188CC8F225DD} - System32\Tasks\Microsoft_Hardware_Launch_mousekeyboardcenter_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\mousekeyboardcenter.exe [2013-05-13] (Microsoft)
Task: {18A3802D-70D0-4B13-9848-31046EFCE2B3} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update Self Repair => C:\Program Files\Sony\VAIO Update\VUSR.exe [2015-07-31] (Sony Corporation)
Task: {30004B08-4103-4F04-B83A-F4E724FA67D1} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-05-14] (Adobe Systems Incorporated)
Task: {3DFEC627-C80B-4241-809F-E1DC1FD18130} - System32\Tasks\Microsoft_MKC_Logon_Task_itype.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2013-05-13] (Microsoft Corporation)
Task: {3F523587-54EB-464F-8F87-9798A2F7FA53} - System32\Tasks\Microsoft_Hardware_Launch_ipoint_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2013-05-13] (Microsoft Corporation)
Task: {44FB4E53-E8EA-49C9-87E9-DFD40AF8E735} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2015-05-27] (Synaptics Incorporated)
Task: {4BE21404-654E-4E77-BFA6-59DEC693B166} - System32\Tasks\Sony Corporation\VAIO Control Center\VAIOControlCenterUser => C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe [2012-10-31] (Sony Corporation)
Task: {516643AA-00B6-4FE4-8374-9563DC5DA25B} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\BrowserChoice\browserchoice.exe
Task: {53D9381A-6A8D-4825-93D8-0436A500CD70} - System32\Tasks\Microsoft_MKC_Logon_Task_ipoint.exe => c:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe [2013-05-13] (Microsoft Corporation)
Task: {5E56366A-0CEA-4531-9EFA-2ACBF694293C} - System32\Tasks\avast! Windows 10 Start Menu helper => c:\program files\avast software\avast\asww10mon.exe
Task: {78BD41EF-16A9-4256-A2D0-3E5B6B431C59} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2015-08-03] (AVAST Software)
Task: {7B2C3D98-4947-41FA-B23C-24EAD4580AFF} - System32\Tasks\Microsoft_Hardware_Launch_itype_exe => c:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe [2013-05-13] (Microsoft Corporation)
Task: {7F3F6288-ACB1-4120-B769-1107E0587929} - System32\Tasks\Sony Corporation\VAIO Update\VAIO Update => C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe [2015-08-06] (Sony Corporation)
Task: {836F9936-EAB7-4196-943C-B182FDB569B4} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2016-02-09] (Microsoft Corporation)
Task: {9AE9E005-C69A-4394-B59B-09204508381A} - System32\Tasks\Sony Corporation\VAIO Update\Launch Application => C:\Program Files\SONY\VAIO Update\ShellExeProxy.exe [2015-07-31] (Sony Corporation)
Task: {9D9B12C3-EA90-4E6C-A9C5-100A9FA16804} - System32\Tasks\Dolby Selector => C:\Program Files (x86)\Dolby Home Theater v4\pcee4.exe
Task: {AC38D5E1-50D0-4B07-BBB8-548946B23B9F} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2016-03-22] ()
Task: {AE0723BC-623A-4881-828E-AEC5D1BA069F} - System32\Tasks\Sony Corporation\VHDInformationCheck => C:\Program Files (x86)\Sony\VAIO Recovery\plugins\InformationCheck.exe [2012-11-07] (Sony Corporation)
Task: {B49F5CAF-F4CD-40E8-A531-ADE1BB51C6B4} - System32\Tasks\SafeZone scheduled Autoupdate 1463243023 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-02-01] (Avast Software)
Task: {B915734F-81F5-4CC5-AB24-C8D4A992FAFC} - System32\Tasks\Sony Corporation\VAIO Gate\VAIO Gate => C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe [2012-08-14] (Sony Corporation)
Task: {BCA623A6-16C1-44A7-A845-82786E9D8470} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-01-15] (Piriform Ltd)
Task: {C0E9E32F-E827-47EF-91C1-B3E16C16FF2E} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-02-11] (AVAST Software)
Task: {CCBDDA9F-FF27-476A-BB09-80F2B5EE79B7} - System32\Tasks\Sony Corporation\VAIO Control Center\NetworkSetting\NetworkSetting Logon Start => C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient
Task: {F6BAD9D0-F164-4831-83B0-DEDC325AFEEB} - System32\Tasks\{70D6A9CB-1B2E-47B6-A825-BF3E7E747480} => pcalua.exe -a "C:\Program Files (x86)\Canon\IJ Manual\Canon MG3500 series\uninstall.exe"
Task: {FF54D899-1589-41F9-A190-1603C0FAE234} - System32\Tasks\SafeZone scheduled Autoupdate 1455189915 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-02-01] (Avast Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job => C:\WINDOWS\explorer.exe
Task: C:\WINDOWS\Tasks\Synaptics TouchPad Enhancements.job => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2015-10-30 09:18 - 2015-10-30 09:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2015-12-19 18:13 - 2016-04-27 14:18 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-04-15 08:45 - 2016-03-29 12:20 - 02656952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-04-15 08:45 - 2016-03-29 12:20 - 02656952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2016-05-20 19:23 - 2016-05-20 19:23 - 00959168 _____ () C:\Users\Dana\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll
2016-03-11 08:49 - 2016-04-05 10:04 - 00369208 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll
2016-03-02 09:09 - 2016-04-05 10:04 - 00289848 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2016-05-03 12:04 - 2016-04-05 10:03 - 01148984 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll
2016-03-11 08:49 - 2016-04-05 10:04 - 03613240 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll
2014-03-15 10:36 - 2015-10-13 05:34 - 00105640 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2016-05-03 12:04 - 2016-04-05 10:04 - 02667576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll
2016-05-03 12:04 - 2016-04-05 10:04 - 01990200 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll
2016-05-03 12:04 - 2016-04-05 10:04 - 01842232 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll
2016-03-02 09:10 - 2016-04-05 10:04 - 00208952 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll
2016-05-03 12:04 - 2016-04-05 10:03 - 00035896 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll
2016-05-03 12:04 - 2016-04-05 10:03 - 00921656 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll
2015-12-21 10:06 - 2015-12-07 06:14 - 00093696 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-04-15 08:43 - 2016-04-02 05:25 - 00472064 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-04-15 08:44 - 2016-04-02 05:03 - 07992832 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-04-15 08:44 - 2016-04-02 04:58 - 00591360 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-04-15 08:44 - 2016-04-02 04:59 - 02483200 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-04-15 08:45 - 2016-04-02 05:02 - 04089856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-01-15 22:44 - 2016-01-15 22:44 - 00047616 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
2016-03-30 08:09 - 2016-03-30 08:09 - 00016896 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.325.12390.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2016-03-30 08:09 - 2016-03-30 08:09 - 17535488 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.325.12390.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2016-03-04 09:05 - 2016-03-04 09:05 - 00291328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.325.12390.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll
2016-04-19 08:26 - 2016-04-19 08:26 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2016-02-11 13:19 - 2016-02-11 13:19 - 00113496 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2016-02-11 13:19 - 2016-02-11 13:19 - 00133768 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-05-22 07:29 - 2016-05-22 07:29 - 02975840 _____ () C:\Program Files\AVAST Software\Avast\defs\16052101\algo.dll
2016-05-15 14:45 - 2016-05-15 14:45 - 00509344 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-05-22 13:33 - 2016-05-22 13:33 - 02975840 _____ () C:\Program Files\AVAST Software\Avast\defs\16052200\algo.dll
2015-10-07 11:21 - 2016-04-05 10:11 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-05-20 19:23 - 2016-05-20 19:23 - 00679624 _____ () C:\Users\Dana\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\ClientTelemetry.dll
2016-02-11 13:19 - 2016-02-11 13:19 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-03-30 14:38 - 2014-07-24 07:54 - 00866056 _____ () C:\Program Files (x86)\CyberLink\PowerDVD13\common\UNO\UNO.dll
2015-03-30 14:37 - 2013-05-02 02:06 - 00081920 _____ () C:\Program Files (x86)\CyberLink\PowerDVD13\Common\koan\_ctypes.pyd
2015-03-30 14:37 - 2013-05-02 02:06 - 00053248 _____ () C:\Program Files (x86)\CyberLink\PowerDVD13\Common\Koan\_socket.pyd
2015-03-30 14:37 - 2013-05-02 02:06 - 00655360 _____ () C:\Program Files (x86)\CyberLink\PowerDVD13\Common\Koan\_ssl.pyd
2015-03-30 14:38 - 2014-07-24 07:54 - 00043272 _____ () C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DHProcedure\DHProcedure.dll
2014-01-24 15:45 - 2013-08-14 12:57 - 01199576 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll
2016-04-19 08:26 - 2016-04-19 08:26 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2016-04-19 08:26 - 2016-04-19 08:26 - 02941440 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\MessagingNativeCore.dll
2016-04-19 08:26 - 2016-04-19 08:26 - 00583168 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\MessagingEntityExtractionProxy.dll
2016-04-19 08:26 - 2016-04-19 08:26 - 01300992 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\MessagingNativeBase.dll
2016-04-19 08:26 - 2016-04-19 08:26 - 22284800 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkyWrap.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-1563608661-2103815483-2595864723-1001\...\business24.cz -> hxxps://www.business24.cz
IE trusted site: HKU\S-1-5-21-1563608661-2103815483-2595864723-1001\...\localhost -> localhost
IE trusted site: HKU\S-1-5-21-1563608661-2103815483-2595864723-1001\...\servis24.cz -> hxxps://www.servis24.cz
IE trusted site: HKU\S-1-5-21-1563608661-2103815483-2595864723-1001\...\webcompanion.com -> hxxp://webcompanion.com

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2016-05-22 13:27 - 00000027 ____A C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1563608661-2103815483-2595864723-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Dana\AppData\Roaming\Mozilla\Firefox\Pozadí plochy.bmp
DNS Servers: 213.46.172.37 - 213.46.172.36
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\Services: wuauserv => 3
HKLM\...\StartupApproved\Run32: => "ISBMgr.exe"
HKLM\...\StartupApproved\Run32: => "NtVdmSrv"
HKLM\...\StartupApproved\Run32: => "IJNetworkScannerSelectorEX"
HKLM\...\StartupApproved\Run32: => "CanonQuickMenu"
HKU\S-1-5-21-1563608661-2103815483-2595864723-1001\...\StartupApproved\StartupFolder: => "Odeslat do OneNote.lnk"
HKU\S-1-5-21-1563608661-2103815483-2595864723-1001\...\StartupApproved\Run: => "NokiaSuite.exe"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{F42D32E3-E8FF-4421-8128-A8F33BA0BC35}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{624DE60C-F639-4322-802A-7496B5DC9F86}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{7EE4B96C-8991-4A28-B885-1B8D46273B60}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{CFEC6B7B-77B7-40CB-AF18-45F2E1BC4367}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{6889B055-9F2F-4247-906A-D35FB942ED3F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{FD0FC147-A44D-4ABC-B263-0AD30FC9B792}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{6E95F350-9937-4BC6-86EF-36020B586280}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{402B059F-EE00-4709-9A50-192A702C2CD7}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{5DA062EA-74D9-43E8-AC71-18EAC26C7E79}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [TCP Query User{20D538DB-6909-421D-BC9E-0B4112456005}C:\windows\system32\ftp.exe] => (Allow) C:\windows\system32\ftp.exe
FirewallRules: [UDP Query User{844AFD33-6FB5-470F-9726-B5417FD25F12}C:\windows\system32\ftp.exe] => (Allow) C:\windows\system32\ftp.exe
FirewallRules: [{59CD9770-8E3C-42DC-BA78-BC6DC659D0F6}] => (Allow) C:\Program Files (x86)\nokia\nokia suite\nokiasuite.exe
FirewallRules: [{C2ADD8AD-E339-4AB3-AF17-3BF066656174}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
FirewallRules: [{3742F937-A7A2-4DF7-B7FF-A869FE9AC6D7}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{BF742589-DC83-41F5-A60E-E200C9938B0B}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{44A10E31-DAA5-4311-B35B-CC52982AE84F}E:\firefoxportable\app\firefox\firefox.exe] => (Allow) E:\firefoxportable\app\firefox\firefox.exe
FirewallRules: [UDP Query User{D78A5896-6D6A-47F3-BABA-C3E2210AAEE3}E:\firefoxportable\app\firefox\firefox.exe] => (Allow) E:\firefoxportable\app\firefox\firefox.exe
FirewallRules: [TCP Query User{1A9DF418-CAA0-4C92-A40E-CD83C228283F}E:\portableapps\firefoxportable\app\firefox\firefox.exe] => (Allow) E:\portableapps\firefoxportable\app\firefox\firefox.exe
FirewallRules: [UDP Query User{67D3A4B9-1884-4C3C-9CC3-A6E630ACD7DB}E:\portableapps\firefoxportable\app\firefox\firefox.exe] => (Allow) E:\portableapps\firefoxportable\app\firefox\firefox.exe
FirewallRules: [TCP Query User{0588E214-CD6E-4AAB-BD4E-F09206C030AA}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{60566F86-4329-45B7-BBD7-7E498F77BC70}C:\program files (x86)\mozilla firefox\firefox.exe] => (Allow) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{850A9E2B-58DF-422F-8CBA-099B052056A4}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD13\Movie\PowerDVD Cinema\PowerDVDCinema13.exe
FirewallRules: [{CB0C4694-B9CF-4B3C-A9B6-BC68F0A8FE03}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD13\PowerDVD13.exe
FirewallRules: [{8142ACC9-C6D0-4EF0-A397-E3FF9FF96C26}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSServerPDVD13.exe
FirewallRules: [{D69CBF42-39A9-425D-AC32-39DB5AA35968}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD13\PowerDVD13Agent.exe
FirewallRules: [{73458224-3FE7-476B-ADB3-0B8D422AE318}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD13\PowerDVD13ML.exe
FirewallRules: [{F0200334-CE4A-4523-B6F4-1FEB6CEA1E39}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD13\Movie\PowerDVD.exe
FirewallRules: [{4D70AD76-5C28-4D48-86AA-62607DE6007E}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD13\Movie\PowerDVD Cinema\PowerDVDCinema13.exe
FirewallRules: [{A343C558-FA7B-4C29-9145-5DE7F0E1D819}] => (Allow) C:\Program Files (x86)\nokia\nokia suite\nokiasuite.exe

==================== Restore Points =========================

20-05-2016 19:26:17 Restore Point Created by FRST
22-05-2016 13:27:21 Restore Point Created by FRST

==================== Faulty Device Manager Devices =============

Name: USB-IF xHCI USB Host Controller
Description: USB-IF xHCI USB Host Controller
Class Guid: {8a2edc79-c759-46f2-88af-9d4efe3b5eee}
Manufacturer: Intel Corporation
Service: XHCIPort
Problem: : This device is not working properly because Windows cannot load the drivers required for this device. (Code 31)
Resolution: Update the driver


==================== Event log errors: =========================

Application errors:
==================
Error: (05/22/2016 01:27:38 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (05/22/2016 01:27:20 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Chyba služby Stínová kopie svazků: Při dotazu na rozhraní IVssWriterCallback došlo k neočekávané chybě. hr = 0x80070005, Přístup byl odepřen.
.
To je často způsobeno nesprávným nastavením zabezpečení v modulu pro zápis nebo žadateli.


Operace:
Shromažďování dat modulu pro zápis

Kontext:
ID třídy modulu pro zápis: {e8132975-6f93-4464-a53e-1050253ae220}
Název modulu pro zápis: System Writer
ID instance modulu pro zápis: {6fe2e969-ca1b-4833-8fb6-979925fc22a6}

Error: (05/20/2016 07:34:28 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: PC-DANA)
Description: Balíček windows.immersivecontrolpanel_6.2.0.0_neutral_neutral_cw5n1h2txyewy+microsoft.windows.immersivecontrolpanel se ukončil, protože jeho pozastavování trvalo moc dlouho.

Error: (05/20/2016 07:33:50 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: PC-DANA)
Description: Balíček windows.immersivecontrolpanel_6.2.0.0_neutral_neutral_cw5n1h2txyewy+microsoft.windows.immersivecontrolpanel se ukončil, protože jeho pozastavování trvalo moc dlouho.

Error: (05/20/2016 07:26:54 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (05/20/2016 07:26:16 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Chyba služby Stínová kopie svazků: Při dotazu na rozhraní IVssWriterCallback došlo k neočekávané chybě. hr = 0x80070005, Přístup byl odepřen.
.
To je často způsobeno nesprávným nastavením zabezpečení v modulu pro zápis nebo žadateli.


Operace:
Shromažďování dat modulu pro zápis

Kontext:
ID třídy modulu pro zápis: {e8132975-6f93-4464-a53e-1050253ae220}
Název modulu pro zápis: System Writer
ID instance modulu pro zápis: {71fe8893-c58d-4d1b-b9b5-7a60719ad860}

Error: (05/19/2016 07:23:07 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: PC-DANA)
Description: Aplikaci microsoft.windowscommunicationsapps_8wekyb3d8bbwe!ppleae38af2e007f4358a809ac99a64a67c1 se nepovedlo aktivovat, protože došlo k chybě: -2144927141. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (05/19/2016 11:26:00 AM) (Source: ESENT) (EventID: 455) (User: )
Description: svchost (1224) SRUJet: Při otevírání souboru protokolu C:\WINDOWS\system32\SRU\SRU00010.log došlo k chybě -1811 (0xfffff8ed).

Error: (05/19/2016 10:05:14 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: winlogon.exe, verze: 10.0.10586.306, časové razítko: 0x571af779
Název chybujícího modulu: ntdll.dll, verze: 10.0.10586.306, časové razítko: 0x571af2eb
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000ab7da
ID chybujícího procesu: 0x558
Čas spuštění chybující aplikace: 0xwinlogon.exe0
Cesta k chybující aplikaci: winlogon.exe1
Cesta k chybujícímu modulu: winlogon.exe2
ID zprávy: winlogon.exe3
Úplný název chybujícího balíčku: winlogon.exe4
ID aplikace související s chybujícím balíčkem: winlogon.exe5

Error: (05/19/2016 10:05:12 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: winlogon.exe, verze: 10.0.10586.306, časové razítko: 0x571af779
Název chybujícího modulu: ntdll.dll, verze: 10.0.10586.306, časové razítko: 0x571af2eb
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000ab7da
ID chybujícího procesu: 0x13a0
Čas spuštění chybující aplikace: 0xwinlogon.exe0
Cesta k chybující aplikaci: winlogon.exe1
Cesta k chybujícímu modulu: winlogon.exe2
ID zprávy: winlogon.exe3
Úplný název chybujícího balíčku: winlogon.exe4
ID aplikace související s chybujícím balíčkem: winlogon.exe5


System errors:
=============
Error: (05/22/2016 01:33:43 PM) (Source: bowser) (EventID: 8003) (User: )
Description: Hlavní prohledávač přijal oznámení serveru od počítače TC7200-DMS,
který se považuje za hlavní prohledávač domény pro přenos NetBT_Tcpip_{75D28585-8DA2-449D-9034-21B3EC8132EA}.
Hlavní prohledávač bude ukončen nebo bude vyvolána volba.

Error: (05/22/2016 01:31:32 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba VBoxAswDrv neuspěla při spuštění v důsledku následující chyby:
%%2

Error: (05/22/2016 01:30:06 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: {78FD0120-D39C-45D8-A9BE-2B802B3C23E5}

Error: (05/22/2016 01:30:06 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: {78FD0120-D39C-45D8-A9BE-2B802B3C23E5}

Error: (05/22/2016 01:29:56 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Hostitel synchronizace_ff09cf byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.

Error: (05/22/2016 01:29:56 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: specifické pro aplikaciMístníAktivace{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYSYSTEMS-1-5-18LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici

Error: (05/22/2016 01:14:45 PM) (Source: DCOM) (EventID: 10010) (User: PC-DANA)
Description: {DABF28BE-F6B4-4E40-8F40-C4FB26F3116C}

Error: (05/22/2016 01:14:15 PM) (Source: DCOM) (EventID: 10010) (User: PC-DANA)
Description: {DABF28BE-F6B4-4E40-8F40-C4FB26F3116C}

Error: (05/22/2016 09:59:39 AM) (Source: bowser) (EventID: 8003) (User: )
Description: Hlavní prohledávač přijal oznámení serveru od počítače TC7200-DMS,
který se považuje za hlavní prohledávač domény pro přenos NetBT_Tcpip_{75D28585-8DA2-449D-9034-21B3EC8132EA}.
Hlavní prohledávač bude ukončen nebo bude vyvolána volba.

Error: (05/22/2016 09:47:09 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: specifické pro aplikaciMístníAktivace{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYSYSTEMS-1-5-18LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici


CodeIntegrity:
===================================
Date: 2016-05-19 09:50:55.041
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-05-19 09:33:49.936
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-05-18 14:35:05.995
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-05-18 14:24:51.584
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-05-15 14:45:39.760
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-05-15 13:17:19.746
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-05-15 11:42:34.750
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-05-14 19:51:43.312
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-05-14 18:24:59.005
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-05-14 12:14:02.655
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i7-3632QM CPU @ 2.20GHz
Percentage of memory in use: 28%
Total physical RAM: 8071.27 MB
Available physical RAM: 5786.14 MB
Total Virtual: 9351.27 MB
Available Virtual: 6927 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:930.2 GB) (Free:556.05 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: E6A97F38)

Partition: GPT.

==================== End of Addition.txt ============================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:22-05-2016
Ran by Dana (administrator) on PC-DANA (22-05-2016 14:29:19)
Running from C:\Users\Dana\Desktop
Loaded Profiles: Dana (Available Profiles: Dana)
Platform: Windows 10 Home Version 1511 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSMonitorServicePDVD13.exe
(CyberLink) C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSServerPDVD13.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Monet+, a.s.) C:\Windows\SysWOW64\xmesrv.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgr.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\VESMgrSub.exe
(Microsoft Corporation) C:\Windows\SysWOW64\dllhost.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Gate\VAIO Gate.exe
(Microsoft Corporation) C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkClient.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD13\PowerDVD13Agent.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VAIOUpdt.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Sony Corporation) C:\Program Files\Sony\VAIO Update\VUAgent.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
(Sony Corporation) C:\Program Files (x86)\Sony\VAIO Control Center\vim.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.325.12390.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1361112 2000-01-01] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1361112 2000-01-01] (Realtek Semiconductor)
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2013-08-07] (Intel Corporation)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2397752 2016-04-05] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\WINDOWS\system32\rundll32.exe" C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161728 2015-08-09] (IvoSoft)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3928264 2015-05-27] (Synaptics Incorporated)
HKLM-x32\...\Run: [ISBMgr.exe] => C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe [68776 2012-08-18] (Sony Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7139256 2016-05-14] (AVAST Software)
HKLM-x32\...\Run: [PowerDVD13Agent] => C:\Program Files (x86)\CyberLink\PowerDVD13\PowerDVD13Agent.exe [517144 2014-07-24] (CyberLink Corp.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596504 2016-04-01] (Oracle Corporation)
HKU\S-1-5-21-1563608661-2103815483-2595864723-1001\...\Run: [ShowBatteryBar] => C:\Program Files\BatteryBar\ShowBatteryBar.exe [89600 2014-09-19] ()
HKU\S-1-5-21-1563608661-2103815483-2595864723-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8619224 2016-01-15] (Piriform Ltd)
HKU\S-1-5-21-1563608661-2103815483-2595864723-1001\...\Run: [NokiaSuite.exe] => C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe [1092448 2014-11-19] (Nokia)
HKU\S-1-5-21-1563608661-2103815483-2595864723-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\scrnsave.scr [31744 2015-10-30] (Microsoft Corporation)
AppInit_DLLs: C:\Windows\system32\nvinitx.dll => C:\Windows\system32\nvinitx.dll [175880 2016-04-27] (NVIDIA Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-02-11] (AVAST Software)
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-08-09] (IvoSoft)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-08-09] (IvoSoft)
Startup: C:\Users\Dana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Odeslat do OneNote.lnk [2014-07-31]
ShortcutTarget: Odeslat do OneNote.lnk -> C:\Program Files\Microsoft Office 15\root\office15\onenotem.exe (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.36
Tcpip\..\Interfaces\{3a6d3bdb-8753-4c38-bf95-6c0b90155b7b}: [DhcpNameServer] 20.20.20.1
Tcpip\..\Interfaces\{75d28585-8da2-449d-9034-21b3ec8132ea}: [DhcpNameServer] 213.46.172.37 213.46.172.36

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKU\S-1-5-21-1563608661-2103815483-2595864723-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxps://www.google.com/search?q={searchTerms}
SearchScopes: HKLM-x32 -> {EFE522B3-7ABD-49CB-A5C3-A2AFBBA83B9D} URL = hxxps://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1563608661-2103815483-2595864723-1001 -> DefaultScope {EFE522B3-7ABD-49CB-A5C3-A2AFBBA83B9D} URL = hxxps://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-1563608661-2103815483-2595864723-1001 -> {672FA6CF-6B5E-4129-857B-BFD83450FB19} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-1563608661-2103815483-2595864723-1001 -> {EFE522B3-7ABD-49CB-A5C3-A2AFBBA83B9D} URL = hxxps://www.google.com/search?q={searchTerms}
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2016-03-15] (Microsoft Corporation)
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-08-09] (IvoSoft)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-02-11] (AVAST Software)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2016-04-19] (Microsoft Corporation)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2015-08-09] (IvoSoft)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-08-09] (IvoSoft)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-04-28] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-02-11] (AVAST Software)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-04-28] (Oracle Corporation)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2015-08-09] (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-08-09] (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-08-09] (IvoSoft)
DPF: HKLM-x32 {26E1BEAF-C1A1-482B-8714-08844F1BCF7F} hxxp://88.100.181.37/webviewer.cab
DPF: HKLM-x32 {3AA1C0E3-DA98-4BB4-91AE-D3BC61178240} hxxp://88.100.181.37/GVersionMan.cab
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Dana\AppData\Roaming\Mozilla\Firefox\Profiles\79887ckr.default-1438761696420
FF SelectedSearchEngine: Yahoo®
FF Homepage: hxxps://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_21_0_0_242.dll [2016-05-14] ()
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_242.dll [2016-05-14] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=3.5.29 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-08-14] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-08-14] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-04-28] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-04-28] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-01-04] (Microsoft Corporation)
FF Plugin-x32: @nokia.com/EnablerPlugin -> C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll [2014-11-19] ( )
FF Plugin HKU\S-1-5-21-1563608661-2103815483-2595864723-1001: @servis24.cz/PKIComponent -> C:\Users\Dana\AppData\Roaming\CSAS\lib\x86\npPKIComponentNPAPI.dll [2013-12-05] (Česká spořitelna, a.s.)
FF Plugin HKU\S-1-5-21-1563608661-2103815483-2595864723-1001: @servis24.cz/PKIComponent-x64 -> C:\Users\Dana\AppData\Roaming\CSAS\lib\x64\npPKIComponentNPAPI.dll [2013-12-05] (Česká spořitelna, a.s.)
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-05-18]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-05-18]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF

Chrome:
=======
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR Profile: C:\Users\Dana\AppData\Local\Google\Chrome\User Data\Default
CHR HKU\S-1-5-21-1563608661-2103815483-2595864723-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [hegneaniplmfjcmohoclabblbahcbjoe] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-05-14]
CHR HKLM-x32\...\Chrome\Extension: [hegneaniplmfjcmohoclabblbahcbjoe] - hxxp://clients2.google.com/service/update2/crx

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [237096 2016-02-11] (AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2829552 2016-03-08] (Microsoft Corporation)
R2 CyberLink PowerDVD 13 Media Server Monitor Service; C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSMonitorServicePDVD13.exe [77576 2014-07-24] (CyberLink)
R2 CyberLink PowerDVD 13 Media Server Service; C:\Program Files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSServerPDVD13.exe [327432 2014-07-24] (CyberLink)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1164856 2016-04-05] (NVIDIA Corporation)
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [15720 2013-08-07] (Intel Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [330136 2015-10-11] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-11] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-11] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-08-14] (Intel Corporation)
R2 Intel(R) Wireless Bluetooth(R) 4.0 Radio Management; C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe [157128 2013-09-18] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-08-14] (Intel Corporation)
S3 NetworkSupport; C:\Program Files (x86)\Sony\VAIO Control Center\NetworkSetting\NetworkSupport.exe [625240 2013-09-28] (Sony Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1881144 2016-04-05] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3634232 2016-04-05] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2522680 2016-04-05] (NVIDIA Corporation)
R3 VUAgent; C:\Program Files\Sony\VAIO Update\vuagent.exe [1653272 2015-07-31] (Sony Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)
R2 xmengine service; C:\Windows\SysWOW64\xmesrv.exe [34696 2014-10-19] (Monet+, a.s.)
S3 AvastVBoxSvc; "C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe" [X]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-02-11] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-02-11] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [107792 2016-05-14] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-02-11] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-02-11] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1070904 2016-05-14] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [463744 2016-05-14] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [165344 2016-02-11] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [287016 2016-05-14] (AVAST Software)
S3 IT9135BDA; C:\Windows\System32\Drivers\IT9135BDA.sys [188280 2016-04-01] (ITE )
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99800 2013-08-14] (Intel Corporation)
R3 NETwNe64; C:\Windows\System32\drivers\NETwew01.sys [3343872 2015-10-30] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28216 2016-04-05] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [56384 2016-03-21] (NVIDIA Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [589824 2015-10-30] (Realtek )
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [42696 2015-05-27] (Synaptics Incorporated)
R3 SOWS; C:\Windows\System32\drivers\sows.sys [24280 2012-06-11] (Sony Corporation)
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [12352 2010-07-01] ()
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
S3 XHCIPort; C:\Windows\System32\drivers\XHCIPort.sys [188384 2012-08-09] (Windows (R) Win 7 DDK provider)
R2 {09F57980-3432-4AFC-957D-27AC45FAE1F5}; C:\Program Files (x86)\CyberLink\PowerDVD13\Common\NavFilter\000.fcl [32456 2014-07-24] (CyberLink Corp.)
S2 VBoxAswDrv; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-05-22 14:29 - 2016-05-22 14:29 - 00020915 _____ C:\Users\Dana\Desktop\FRST.txt
2016-05-22 14:03 - 2016-05-22 14:03 - 00000981 _____ C:\Users\Dana\Desktop\Fixlog.txt
2016-05-22 13:27 - 2016-05-22 13:27 - 00000000 ____D C:\Users\Dana\Desktop\FRST-OlderVersion
2016-05-22 12:54 - 2016-05-22 13:45 - 765128988 _____ C:\Users\Dana\Downloads\Gomora.01x03.DVB-T.CZ.avi
2016-05-22 12:02 - 2016-05-22 12:53 - 923601458 _____ C:\Users\Dana\Downloads\Gomora.01x02.DVB-T.CZ.avi
2016-05-22 11:05 - 2016-05-22 11:54 - 879861528 _____ C:\Users\Dana\Downloads\Gomora.01x01.DVB-T.CZ.avi
2016-05-22 09:59 - 2016-05-22 11:04 - 585919564 _____ C:\Users\Dana\Downloads\Most-3---9.-díl.avi
2016-05-21 17:24 - 2016-05-21 17:25 - 00066888 _____ C:\Users\Dana\Desktop\Princess-Aurora--Orora-gongju-(2005)-JK.srt
2016-05-21 15:39 - 2016-05-21 17:01 - 1465881906 _____ C:\Users\Dana\Desktop\Princess-Aurora--Orora-gongju-(2005)-JK.avi
2016-05-18 18:38 - 2016-05-18 18:40 - 00392132 _____ C:\WINDOWS\ntbtlog.txt
2016-05-18 15:54 - 2016-05-18 15:54 - 00003290 _____ C:\WINDOWS\System32\Tasks\{70D6A9CB-1B2E-47B6-A825-BF3E7E747480}
2016-05-18 15:35 - 2016-02-11 13:19 - 00398152 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2016-05-18 14:48 - 2016-05-18 16:28 - 00000000 ____D C:\WINDOWS\system32\%LOCALAPPDATA%
2016-05-18 07:57 - 2016-05-19 08:54 - 00029696 _____ C:\Users\Dana\AppData\Local\MSGBOX.EXE
2016-05-17 13:12 - 2016-05-22 14:29 - 00000000 ____D C:\FRST
2016-05-17 13:08 - 2016-05-22 13:27 - 02383360 _____ (Farbar) C:\Users\Dana\Desktop\FRST64.exe
2016-05-15 17:33 - 2016-05-22 13:01 - 00192216 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-05-15 17:33 - 2016-05-15 17:33 - 00001175 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-05-15 17:33 - 2016-05-15 17:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-05-15 17:33 - 2016-05-15 17:33 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-05-15 17:33 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-05-15 17:33 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-05-15 17:33 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-05-14 19:13 - 2016-05-14 19:13 - 00000000 ____D C:\Users\Dana\AppData\Roaming\AVAST Software
2016-05-14 18:23 - 2016-05-18 15:37 - 00003162 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1463243023
2016-05-14 18:23 - 2016-05-18 15:37 - 00003040 _____ C:\WINDOWS\System32\Tasks\avast! Windows 10 Start Menu helper
2016-05-14 18:23 - 2016-05-18 15:37 - 00001082 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone 1 Browser.lnk
2016-05-06 12:01 - 2016-05-07 18:46 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-05-03 12:13 - 2016-04-28 18:19 - 00048696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvpciflt.sys
2016-05-03 12:13 - 2016-04-27 16:33 - 42921920 _____ C:\WINDOWS\system32\nvcompiler.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 37567424 _____ C:\WINDOWS\SysWOW64\nvcompiler.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 31598136 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 25350712 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 21365048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 20906872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 20079168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 17756440 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 17369768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 17350288 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 17333344 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 14227888 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 10550736 _____ C:\WINDOWS\system32\nvptxJitCompiler.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 08659472 _____ C:\WINDOWS\SysWOW64\nvptxJitCompiler.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 02614208 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 02258368 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 01922496 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6436510.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 01573432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6436510.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 00960056 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 00887744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 00786872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncMFTH264.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 00753208 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 00694208 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 00678704 _____ C:\WINDOWS\system32\nvfatbinaryLoader.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 00632152 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncMFTH264.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 00571912 _____ C:\WINDOWS\SysWOW64\nvfatbinaryLoader.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 00546328 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvumdshimx.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 00448824 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 00425016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFROpenGL.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 00379480 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI64.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 00379448 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFROpenGL.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 00317472 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvEncodeAPI.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 00175880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 00153392 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 00151368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglshim64.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 00129024 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglshim32.dll
2016-05-03 12:13 - 2016-04-27 16:33 - 00000139 _____ C:\WINDOWS\SysWOW64\nv-vk32.json
2016-05-03 12:13 - 2016-04-27 16:33 - 00000139 _____ C:\WINDOWS\system32\nv-vk64.json
2016-05-03 12:04 - 2016-03-21 22:01 - 00109632 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2016-05-03 12:04 - 2016-03-21 22:01 - 00100416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2016-05-01 12:59 - 2016-05-01 12:59 - 00002162 _____ C:\Users\Public\Desktop\Nokia Suite.lnk
2016-05-01 12:59 - 2016-05-01 12:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nokia

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-05-22 14:02 - 2015-10-11 16:38 - 00000000 ____D C:\Users\Dana\AppData\Local\ClassicShell
2016-05-22 13:59 - 2014-01-05 16:17 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-05-22 13:40 - 2014-01-03 10:57 - 00004194 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{5C234D32-1D5E-4215-BAD2-993259A87C8A}
2016-05-22 13:31 - 2015-12-19 18:38 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-05-22 13:31 - 2015-08-31 12:32 - 00000000 __SHD C:\Users\Dana\IntelGraphicsProfiles
2016-05-22 13:30 - 2015-10-30 08:28 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-05-22 13:17 - 2015-10-30 20:31 - 00752310 _____ C:\WINDOWS\system32\perfh005.dat
2016-05-22 13:17 - 2015-10-30 20:31 - 00151396 _____ C:\WINDOWS\system32\perfc005.dat
2016-05-22 13:17 - 2015-10-30 09:21 - 00000000 ____D C:\WINDOWS\INF
2016-05-22 13:17 - 2015-08-31 12:12 - 01774890 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-05-22 07:28 - 2014-05-04 12:49 - 00004280 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2016-05-20 19:29 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-05-20 19:24 - 2015-08-31 12:37 - 00002425 _____ C:\Users\Dana\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2016-05-20 19:24 - 2015-08-31 12:37 - 00000000 ___RD C:\Users\Dana\OneDrive
2016-05-19 12:42 - 2016-04-17 13:43 - 00000000 ____D C:\Users\Dana\AppData\Roaming\MPC-HC
2016-05-19 11:41 - 2015-10-30 20:35 - 00000000 ____D C:\Program Files\Windows Journal
2016-05-19 11:41 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-05-19 11:41 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-05-19 11:41 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\Provisioning
2016-05-19 11:41 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-05-19 11:40 - 2015-10-30 08:28 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2016-05-19 11:40 - 2015-08-03 15:20 - 00000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software
2016-05-19 11:40 - 2014-03-13 17:59 - 00000000 ____D C:\Users\Dana\AppData\Local\Cyberlink SoftDMA
2016-05-19 11:38 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-05-19 11:34 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\registration
2016-05-19 11:25 - 2015-12-19 18:18 - 00000000 ____D C:\Users\Dana
2016-05-19 10:00 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-05-19 09:33 - 2015-10-30 09:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-05-18 18:59 - 2014-01-03 10:55 - 00000000 ____D C:\Users\Dana\AppData\Local\Packages
2016-05-18 18:39 - 2016-02-04 10:32 - 00000214 _____ C:\WINDOWS\Tasks\CreateExplorerShellUnelevatedTask.job
2016-05-18 16:28 - 2014-08-19 12:47 - 00000000 ____D C:\AdwCleaner
2016-05-18 16:00 - 2014-08-08 10:14 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MG3500 series Manual
2016-05-18 15:57 - 2014-01-05 17:28 - 00000000 ____D C:\Users\Dana\AppData\Local\CrashDumps
2016-05-18 15:56 - 2014-03-12 19:04 - 00000000 ___RD C:\Users\Dana\Documents\návody
2016-05-18 15:55 - 2014-08-08 10:26 - 00000000 ___HD C:\ProgramData\CanonIJScan
2016-05-18 15:37 - 2016-02-11 13:20 - 00001979 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast Free Antivirus.lnk
2016-05-18 15:37 - 2015-08-03 15:24 - 00001967 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2016-05-18 08:12 - 2014-08-08 10:25 - 00000000 ____D C:\Users\Dana\AppData\Roaming\Canon
2016-05-18 08:00 - 2014-07-31 09:15 - 00000000 ____D C:\Users\Dana\AppData\LocalLow\Temp
2016-05-18 07:40 - 2015-04-18 15:36 - 00000000 ____D C:\Users\Dana\Documents\JavaExe
2016-05-17 10:05 - 2014-01-25 14:49 - 00000000 ____D C:\Users\Dana\AppData\Roaming\Seznam.cz
2016-05-17 10:04 - 2014-01-25 14:49 - 00000000 ____D C:\Program Files (x86)\Seznam.cz
2016-05-14 19:14 - 2015-07-30 16:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2016-05-14 19:14 - 2014-05-04 12:47 - 00000000 ____D C:\Program Files\AVAST Software
2016-05-14 19:08 - 2014-01-03 13:11 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-05-14 19:00 - 2014-05-04 12:46 - 00000000 ____D C:\ProgramData\AVAST Software
2016-05-14 18:40 - 2014-01-05 17:28 - 00000000 ____D C:\Users\Dana\AppData\Local\ElevatedDiagnostics
2016-05-14 18:27 - 2014-11-10 18:30 - 00001282 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Thunderbird.lnk
2016-05-14 18:27 - 2014-11-10 18:30 - 00001270 _____ C:\Users\Public\Desktop\Mozilla Thunderbird.lnk
2016-05-14 18:26 - 2016-04-08 17:19 - 00000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2016-05-14 18:23 - 2014-05-04 12:48 - 01070904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2016-05-14 18:23 - 2014-05-04 12:48 - 00463744 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2016-05-14 18:23 - 2014-05-04 12:48 - 00287016 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2016-05-14 18:23 - 2014-05-04 12:48 - 00107792 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2016-05-07 18:47 - 2015-12-19 18:13 - 00000000 ____D C:\ProgramData\NVIDIA
2016-05-07 13:28 - 2016-02-11 13:25 - 00003162 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1455189915
2016-05-07 13:28 - 2016-02-11 13:25 - 00001088 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2016-05-05 09:12 - 2015-10-30 09:24 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-05-05 09:11 - 2014-01-04 16:08 - 00000000 ____D C:\Program Files\Microsoft Office 15
2016-05-03 12:14 - 2015-12-19 18:12 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-05-03 03:24 - 2015-10-30 09:26 - 00829944 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-05-03 03:24 - 2015-10-30 09:26 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-04-28 18:18 - 2015-11-05 12:04 - 12631616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2016-04-28 08:09 - 2015-04-18 16:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-04-28 08:09 - 2014-08-09 12:22 - 00000000 ____D C:\Program Files (x86)\Java
2016-04-28 08:09 - 2014-07-28 19:29 - 00000000 ____D C:\ProgramData\Oracle
2016-04-28 08:08 - 2015-09-21 07:36 - 00000000 ____D C:\Users\Dana\.oracle_jre_usage
2016-04-28 08:08 - 2015-04-18 16:40 - 00097856 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2016-04-27 16:33 - 2015-11-05 12:04 - 03685280 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2016-04-27 16:33 - 2015-11-05 12:04 - 03262784 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2016-04-27 16:33 - 2015-11-05 12:04 - 00038050 _____ C:\WINDOWS\system32\nvinfo.pb
2016-04-27 14:18 - 2015-12-19 18:13 - 06369728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2016-04-27 14:18 - 2015-12-19 18:13 - 02994744 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2016-04-27 14:18 - 2015-12-19 18:13 - 02563128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2016-04-27 14:18 - 2015-12-19 18:13 - 01265720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2016-04-27 14:18 - 2015-12-19 18:13 - 00530880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshext.dll
2016-04-27 14:18 - 2015-12-19 18:13 - 00393784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2016-04-27 14:18 - 2015-12-19 18:13 - 00081856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nv3dappshextr.dll
2016-04-27 14:18 - 2015-12-19 18:13 - 00071224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2016-04-25 07:33 - 2015-12-19 18:13 - 06381278 _____ C:\WINDOWS\system32\nvcoproc.bin

==================== Files in the root of some directories =======

2014-01-09 11:40 - 2014-01-09 11:41 - 0003747 _____ () C:\Program Files (x86)\Mozilla Firefoxsafeguard-secure-search.xml
2014-09-03 23:36 - 2015-04-18 21:12 - 0000365 _____ () C:\Users\Dana\AppData\Roaming\CPOKCZF
2014-05-01 16:50 - 2014-05-01 17:44 - 0099384 _____ () C:\Users\Dana\AppData\Roaming\inst.exe
2014-09-03 23:36 - 2014-09-03 23:36 - 0002086 _____ () C:\Users\Dana\AppData\Roaming\OPSN
2014-05-01 16:50 - 2014-05-01 17:44 - 0007859 _____ () C:\Users\Dana\AppData\Roaming\pcouffin.cat
2014-05-01 16:50 - 2014-05-01 17:44 - 0001167 _____ () C:\Users\Dana\AppData\Roaming\pcouffin.inf
2014-05-01 16:50 - 2014-05-01 17:44 - 0000055 _____ () C:\Users\Dana\AppData\Roaming\pcouffin.log
2014-05-01 16:50 - 2014-05-01 17:44 - 0082816 _____ (VSO Software) C:\Users\Dana\AppData\Roaming\pcouffin.sys
2014-05-01 18:16 - 2016-03-06 13:50 - 0001057 _____ () C:\Users\Dana\AppData\Roaming\vso_ts_preview.xml
2016-05-18 07:57 - 2016-05-19 08:54 - 0029696 _____ () C:\Users\Dana\AppData\Local\MSGBOX.EXE
2014-01-03 11:12 - 2014-01-03 11:13 - 0011214 _____ () C:\Users\Dana\AppData\Local\WiDiSetupLog.20140103.101223.txt
2015-12-19 18:13 - 2015-12-19 18:13 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-05-18 19:15

==================== End of FRST.txt ============================

[altrok]

• Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
• ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
• znovu spustte FRST a kliknete na Fix
• na plose bude ulozen fixlog, jehoz obsah vlozte do pristi odpovedi

  Kód: Vybrat vše

  Start
  File: C:\Users\Dana\AppData\Roaming\inst.exe
  File: C:\Users\Dana\AppData\Roaming\CPOKCZF
  File: C:\Users\Dana\AppData\Roaming\OPSN
  Task: {516643AA-00B6-4FE4-8374-9563DC5DA25B} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\BrowserChoice\browserchoice.exe
  2014-09-03 23:36 - 2015-04-18 21:12 - 0000365 _____ () C:\Users\Dana\AppData\Roaming\CPOKCZF
  2014-09-03 23:36 - 2014-09-03 23:36 - 0002086 _____ () C:\Users\Dana\AppData\Roaming\OPSN
  CreateRestorePoint:
  End

[tacvud]

Fix result of Farbar Recovery Scan Tool (x64) Version:22-05-2016
Ran by Dana (2016-05-23 17:14:04) Run:6
Running from C:\Users\Dana\Desktop
Loaded Profiles: Dana (Available Profiles: Dana)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
File: C:\Users\Dana\AppData\Roaming\inst.exe
File: C:\Users\Dana\AppData\Roaming\CPOKCZF
File: C:\Users\Dana\AppData\Roaming\OPSN
Task: {516643AA-00B6-4FE4-8374-9563DC5DA25B} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\BrowserChoice\browserchoice.exe
2014-09-03 23:36 - 2015-04-18 21:12 - 0000365 _____ () C:\Users\Dana\AppData\Roaming\CPOKCZF
2014-09-03 23:36 - 2014-09-03 23:36 - 0002086 _____ () C:\Users\Dana\AppData\Roaming\OPSN
CreateRestorePoint:
End
*****************


========================= File: C:\Users\Dana\AppData\Roaming\inst.exe ========================

====== End of File: ======


========================= File: C:\Users\Dana\AppData\Roaming\CPOKCZF ========================

====== End of File: ======

[altrok]

Ulozte GMER (nahodne pojmenovany soubor) http://www2.gmer.net/download.php

• docasne vypnete antivirovou ochranu v realnem case (real-time protection)
• spustte GMER jako spravce (pravej klik -> Spustit jako spravce)
• po kratkem pocatecnim skenu se nachazite na zalozce Rootkit/Malware
• zatrhnete volbu Quick Scan
• zruste zatrzitko u polozek
  • IAT/EAT
  • Show All
• kliknete na Scan - v prubehu skenovani nechte pocitac v klidu (zhruba 5-10 min)
• po dokonceni skenu ulozte log pomoci tlacitka Save ... v pravem dolnim rohu
• obsah tohoto souboru vlozte do pristi odpovedi (.log lze otevrit v poznamkovem bloku)