Ahoj, asi po deseti vteřinách mi restartuje plocha.Složky se mi zavřou stejně tak nastavení.
Prohlížeč ne.
Nevím co s tím,poradí prosím někdo?
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12-09-2016
Ran by saxin (administrator) on PETRŮV (13-09-2016 16:18:05)
Running from C:\Users\saxin\Desktop
Loaded Profiles: saxin (Available Profiles: saxin)
Platform: Windows 10 Home Version 1511 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Intel(R) Corporation) C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hp\HP System Event\HPWMISVC.exe
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Opera Software) C:\Program Files (x86)\Opera\39.0.2256.71\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\39.0.2256.71\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\39.0.2256.71\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\39.0.2256.71\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\39.0.2256.71\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\39.0.2256.71\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\39.0.2256.71\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\39.0.2256.71\opera.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Opera Software) C:\Program Files (x86)\Opera\39.0.2256.71\opera.exe
(forum.viry.cz) C:\Users\saxin\Desktop\FRSTLauncher.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8505088 2015-07-03] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-07-03] (Realtek Semiconductor)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [657424 2015-09-03] (Hewlett-Packard Development Company, L.P.)
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKU\S-1-5-21-981060814-3022172332-2446712976-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8912088 2016-08-26] (Piriform Ltd)
HKU\S-1-5-21-981060814-3022172332-2446712976-1001\...\MountPoints2: {38e4a828-2623-11e5-8401-90489ad651e2} - "F:\start.exe"
HKU\S-1-5-21-981060814-3022172332-2446712976-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\scrnsave.scr [31744 2015-10-30] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => No File
ShellIconOverlayIdentifiers: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => No File
ShellIconOverlayIdentifiers: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => No File
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => No File
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\launcher.exe [2016-08-03] (Opera Software)
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{65b2bef0-2701-4f31-97aa-cd9ab6b5818e}: [NameServer] 8.8.4.4,8.8.8.8
Tcpip\..\Interfaces\{65b2bef0-2701-4f31-97aa-cd9ab6b5818e}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{d2bfa7d2-82c5-42fa-a4f9-3c82851e86a4}: [DhcpNameServer] 100.100.22.24
ManualProxies:
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-981060814-3022172332-2446712976-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
HKU\S-1-5-21-981060814-3022172332-2446712976-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/
SearchScopes: HKLM -> {2B756B42-DE08-4C1E-BEF6-A5A5B62747BB} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://istart.webssearches.com/web/?type=ds&ts=1408866112&from=wpc&uid=HGSTXHTS545050A7E680_TM8514ZNKV75ARKV75ARX&q={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKLM-x32 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKLM-x32 -> {2B756B42-DE08-4C1E-BEF6-A5A5B62747BB} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://istart.webssearches.com/web/?type=ds&ts=1408866112&from=wpc&uid=HGSTXHTS545050A7E680_TM8514ZNKV75ARKV75ARX&q={searchTerms}
SearchScopes: HKU\S-1-5-21-981060814-3022172332-2446712976-1001 -> 087637E29CD4CBD545EB82D09BA5BA53 URL = hxxp://www.zbozi.cz/?sourceid=quicksearch_6826&q={searchTerms}
SearchScopes: HKU\S-1-5-21-981060814-3022172332-2446712976-1001 -> 384C2A878BABE74FFEC59EACB6AFDD64 URL = hxxp://www.firmy.cz/phr/{searchTerms}
SearchScopes: HKU\S-1-5-21-981060814-3022172332-2446712976-1001 -> 579715926B82CE235142794482545F9A URL = hxxp://videa.seznam.cz/?q={searchTerms}
SearchScopes: HKU\S-1-5-21-981060814-3022172332-2446712976-1001 -> 91E7CAD87DF391C47003E5B553BBBA52 URL = hxxp://www.mapy.cz/?sourceid=quicksearch_6826& ... earchTerms}
SearchScopes: HKU\S-1-5-21-981060814-3022172332-2446712976-1001 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKU\S-1-5-21-981060814-3022172332-2446712976-1001 -> {2B756B42-DE08-4C1E-BEF6-A5A5B62747BB} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKU\S-1-5-21-981060814-3022172332-2446712976-1001 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={44C5BC9A-D0F3-4F21-9547-28DB3F6D4B4E}&mid=84b4f64555cf47cda73bbd8b510e789c-898a10c4d2d860760b27e6c898bd75abde5cebe6&lang=en&ds=sp011&coid=avgtbdissp&cmpid=&pr=sa&d=2015-09-25 20:36:45&v=18.8.0.179&pid=safeguard&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-981060814-3022172332-2446712976-1001 -> {A67A0724-E3DD-449B-A81F-8C2EFCACEB8E} URL = hxxp://www.gsrch.com/#q={searchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: No Name -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> No File
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: No Name -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> No File
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Edge:
======
Edge HomeButtonPage: HKU\S-1-5-21-981060814-3022172332-2446712976-1001 -> hxxp://seznam.cz/
FireFox:
========
FF ProfilePath: C:\Users\saxin\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default
FF DefaultSearchEngine: Seznam
FF SelectedSearchEngine: Google Custom Search
FF Homepage: hxxp://www.gsrch.com/
FF NetworkProxy: "user_pref("network.proxy.type", 5)
FF Keyword.URL: hxxp://www.gsrch.com/#q=
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\Microsoft Office\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1204144.dll [2013-09-05] (Adobe Systems, Inc.)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\Microsoft Office\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin HKU\S-1-5-21-981060814-3022172332-2446712976-1001: @tools.google.com/Google Update;version=3 -> C:\Users\saxin\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll [No File]
FF Plugin HKU\S-1-5-21-981060814-3022172332-2446712976-1001: @tools.google.com/Google Update;version=9 -> C:\Users\saxin\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll [No File]
FF user.js: detected! => C:\Users\saxin\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\user.js [2015-04-24]
FF SearchPlugin: C:\Users\saxin\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\searchplugins\firmy.cz-102024.xml [2014-10-05]
FF SearchPlugin: C:\Users\saxin\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\searchplugins\googlecustomsearch.xml [2015-09-24]
FF SearchPlugin: C:\Users\saxin\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\searchplugins\mapy.cz-102024.xml [2014-10-05]
FF SearchPlugin: C:\Users\saxin\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\searchplugins\seznam.cz-102024.xml [2014-10-05]
FF SearchPlugin: C:\Users\saxin\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\searchplugins\videa.seznam.cz-102024.xml [2014-10-05]
FF SearchPlugin: C:\Users\saxin\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\searchplugins\zbozi.cz-102024.xml [2014-10-05]
FF Extension: (Seznam lištička) - C:\Users\saxin\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2016-08-29]
FF HKLM-x32\...\Firefox\Extensions: [firefox@bho.com] - C:\Program Files\Hewlett-Packard\SimplePass\FFBHOExt => not found
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [aminlpmkfcdibgpgfajlgnamicjckkjf] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [fidikogfgleiaefnjbmnjaplmgknppkg] - hxxps://clients2.google.com/service/update2/crx
Opera:
=======
OPR StartupUrls: "hxxp://www.idnes.cz/","hxxp://s7.cz.battleknig ... seznam.cz/"
OPR Extension: (Přeložit) - C:\Users\saxin\AppData\Roaming\Opera Software\Opera Stable\Extensions\ibnombjmjocaccigcefonnipcnlaeaed [2015-09-26]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [29728 2016-08-15] (HP Inc.)
R2 HPWMISVC; C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [606224 2015-09-03] (Hewlett-Packard Development Company, L.P.)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [319096 2016-09-04] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-01] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [822232 2013-07-01] (Intel(R) Corporation)
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [3046688 2016-07-29] (IObit)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [303360 2015-07-03] (Realtek Semiconductor)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [252008 2016-09-04] (Synaptics Incorporated)
S3 vmicvss; C:\Windows\System32\ICSvc.dll [511488 2015-10-30] (Microsoft Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2016-07-01] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91712 2013-03-05] (CyberLink)
S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows (R) Win 7 DDK provider)
R3 GPIO; C:\Windows\System32\drivers\iaiogpioe.sys [42416 2016-09-04] (Intel Corporation)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-04-04] (REALiX(tm))
S3 iscFlash; C:\Program Files (x86)\sp70262\iscflashx64.sys [66760 2014-07-22] (Insyde Software)
S3 IT9135BDA; C:\Windows\System32\Drivers\IT9135BDA.sys [165504 2015-07-15] (ITE )
R0 MBI; C:\Windows\System32\drivers\MBI.sys [39944 2016-09-04] (Intel Corporation)
S3 MiraDispKmd; C:\Windows\System32\drivers\MiraDispKmd.sys [23552 2015-10-30] (Microsoft Corporation)
R3 netr28x; C:\Windows\system32\DRIVERS\netr28x.sys [2554528 2015-06-12] (MediaTek Inc.)
R3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [328920 2016-09-04] (Realtek Semiconductor Corp.)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [936192 2016-09-04] (Realtek )
R3 rtbth; C:\Windows\System32\drivers\rtbth.sys [1219200 2015-06-03] (Ralink Technology, Corp.)
S3 SMBDATuner; C:\Windows\System32\Drivers\SMBDATuner24.sys [71296 2008-07-03] (Windows (R) Codename Longhorn DDK provider) [File not signed]
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [29936 2013-12-13] (Synaptics Incorporated)
S3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [42696 2015-07-17] (Synaptics Incorporated)
S3 SMIGrabber3C; C:\Windows\System32\Drivers\SmiUsbGrabber3C.sys [827040 2013-09-14] (Windows (R) Win 7 DDK provider)
R3 TXEIx64; C:\Windows\System32\drivers\TXEIx64.sys [146200 2016-09-04] (Intel Corporation)
S1 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [117768 2015-09-08] (Oracle Corporation)
S1 VBoxNetLwf; C:\Windows\system32\DRIVERS\VBoxNetLwf.sys [146072 2015-09-08] (Oracle Corporation)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
S3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [30544 2016-09-04] (HP)
R3 WirelessButtonDriver64; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [30544 2016-09-04] (HP)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-09-13 16:18 - 2016-09-13 16:20 - 00019576 _____ C:\Users\saxin\Desktop\FRST.txt
2016-09-13 16:17 - 2016-09-13 16:18 - 00000000 ____D C:\FRST
2016-09-13 16:17 - 2016-09-13 16:17 - 00029696 _____ C:\Users\saxin\AppData\Local\MSGBOX.EXE
2016-09-13 16:17 - 2016-09-13 16:17 - 00015327 _____ C:\Users\saxin\Desktop\LM.bat
2016-09-13 16:16 - 2016-09-13 16:16 - 00112640 _____ (forum.viry.cz) C:\Users\saxin\Desktop\FRSTLauncher.exe
2016-09-13 16:15 - 2016-09-13 16:15 - 02398720 _____ (Farbar) C:\Users\saxin\Desktop\FRST64.exe
2016-09-13 16:02 - 2016-09-13 16:02 - 00002852 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2016-09-13 16:01 - 2016-09-13 16:01 - 00000872 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-09-13 16:01 - 2016-09-13 16:01 - 00000000 ____D C:\Program Files\CCleaner
2016-09-13 15:56 - 2016-09-13 15:58 - 08244656 _____ (Piriform Ltd) C:\Users\saxin\Desktop\ccsetup522.exe
2016-09-13 15:55 - 2016-09-13 15:55 - 00452882 _____ C:\Users\saxin\Desktop\SysInspector-PETRŮV-160913-1526.zip
2016-09-13 04:43 - 2016-09-13 04:43 - 00446998 _____ C:\Users\saxin\Desktop\SysInspector-PETRŮV-160912-2111.zip
2016-09-12 20:20 - 2016-09-12 20:22 - 04008760 _____ (ESET) C:\Users\saxin\Desktop\SysInspector.exe
2016-09-11 14:46 - 2016-09-11 14:48 - 06760064 _____ (ESET spol. s r.o.) C:\Users\saxin\Desktop\ESETOnlineScanner_CSY.exe
2016-09-11 14:28 - 2016-09-11 14:28 - 00000000 ____D C:\$WINDOWS.~BT
2016-09-11 11:34 - 2016-09-11 11:34 - 03505424 _____ (Hewlett-Packard Company ) C:\Users\saxin\Desktop\sp73248.exe
2016-09-11 11:32 - 2016-09-11 11:32 - 00000270 __RSH C:\ProgramData\ntuser.pol
2016-09-11 10:41 - 2016-09-11 10:42 - 05737808 ____N (Microsoft Corporation) C:\Users\saxin\Desktop\Windows10Upgrade9252.exe
2016-09-10 08:51 - 2016-09-10 08:51 - 00221852 _____ C:\Users\saxin\Downloads\SCC_1005702038_20160518_000890 (1).PDF
2016-09-10 08:51 - 2016-09-10 08:51 - 00203954 _____ C:\Users\saxin\Downloads\SCC_1005702038_20160418_000940 (1).PDF
2016-09-10 08:50 - 2016-09-10 08:51 - 00213150 _____ C:\Users\saxin\Downloads\SCC_1005702038_20160618_000826 (1).PDF
2016-09-09 10:37 - 2016-09-09 10:37 - 00000000 __SHD C:\found.004
2016-09-08 23:26 - 2016-09-11 11:47 - 00000036 _____ C:\Windows\progress.ini
2016-09-08 22:38 - 2016-09-11 11:47 - 00000000 ____D C:\Windows10Upgrade
2016-09-08 22:38 - 2016-09-11 10:43 - 00000758 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pomocník při upgradu na Windows 10.lnk
2016-09-08 22:38 - 2016-09-11 10:43 - 00000746 _____ C:\Users\saxin\Desktop\Pomocník při upgradu na Windows 10.lnk
2016-09-08 22:36 - 2016-09-08 22:37 - 05737808 _____ (Microsoft Corporation) C:\Users\saxin\Desktop\Windows10Upgrade28084.exe
2016-09-08 11:23 - 2016-09-08 11:23 - 00000000 ____D C:\Windows\LastGood
2016-09-08 11:22 - 2016-09-08 11:22 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2016-09-08 09:04 - 2016-09-08 09:04 - 00221852 _____ C:\Users\saxin\Downloads\SCC_1005702038_20160518_000890.PDF
2016-09-08 09:04 - 2016-09-08 09:04 - 00203954 _____ C:\Users\saxin\Downloads\SCC_1005702038_20160418_000940.PDF
2016-09-08 09:03 - 2016-09-08 09:03 - 00213150 _____ C:\Users\saxin\Downloads\SCC_1005702038_20160618_000826.PDF
2016-09-08 08:31 - 2016-09-08 08:31 - 00003952 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1472986071
2016-09-07 23:03 - 2016-09-13 15:57 - 00000000 ____D C:\Users\saxin\Documents\Soubory aplikace Outlook
2016-09-06 08:57 - 2016-09-08 12:36 - 00000000 ___HD C:\$SysReset
2016-09-05 07:55 - 2016-09-05 07:55 - 00000451 _____ C:\Windows\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2016-09-05 07:54 - 2016-09-12 14:51 - 00360136 _____ C:\Windows\system32\FNTCACHE.DAT
2016-09-04 21:51 - 2016-09-04 21:51 - 01795952 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll
2016-09-04 21:51 - 2016-09-04 21:51 - 00861288 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\SynTP.sys
2016-09-04 21:51 - 2016-09-04 21:51 - 00798312 _____ (Synaptics Incorporated) C:\Windows\system32\SynCOM.dll
2016-09-04 21:51 - 2016-09-04 21:51 - 00426600 _____ (Synaptics Incorporated) C:\Windows\SysWOW64\SynCom.dll
2016-09-04 21:51 - 2016-09-04 21:51 - 00279656 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPCo41-1.dll
2016-09-04 21:51 - 2016-09-04 21:51 - 00277096 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPAPI.dll
2016-09-04 21:51 - 2016-09-04 21:51 - 00062568 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\Smb_driver_Intel_Aux.sys
2016-09-04 21:51 - 2016-09-04 21:51 - 00058984 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\Smb_driver_AMDASF_Aux.sys
2016-09-04 21:51 - 2016-09-04 21:51 - 00057448 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\SynRMIHID_Aux.sys
2016-09-04 21:46 - 2016-09-04 21:46 - 00936192 _____ (Realtek ) C:\Windows\system32\Drivers\rt640x64.sys
2016-09-04 21:46 - 2016-09-04 21:46 - 00082544 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2016-09-04 21:45 - 2016-09-04 21:45 - 09890008 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RsCRIcon.dll
2016-09-04 21:45 - 2016-09-04 21:45 - 04330200 _____ (TODO: <Company name>) C:\Windows\RtCRU64.exe
2016-09-04 21:45 - 2016-09-04 21:45 - 00328920 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RtsP2Stor.sys
2016-09-04 21:45 - 2016-09-04 21:45 - 00083160 _____ (Realtek Semiconductor.) C:\Windows\system32\RtCRX64.dll
2016-09-04 21:44 - 2016-09-04 21:44 - 00146200 _____ (Intel Corporation) C:\Windows\system32\Drivers\TXEIx64.sys
2016-09-04 21:43 - 2016-09-04 21:43 - 00039944 _____ (Intel Corporation) C:\Windows\system32\Drivers\MBI.sys
2016-09-04 21:29 - 2016-09-04 21:29 - 06258688 _____ C:\Windows\system32\config\drivers.iobit
2016-09-04 21:29 - 2016-09-04 21:29 - 00372736 _____ C:\Windows\system32\config\default.iobit
2016-09-04 21:29 - 2016-09-04 21:29 - 00028672 _____ C:\Windows\system32\config\security.iobit
2016-09-04 21:29 - 2016-09-04 21:29 - 00028672 _____ C:\Windows\system32\config\sam.iobit
2016-09-04 21:28 - 2016-09-04 21:29 - 164978688 _____ C:\Windows\system32\config\software.iobit
2016-09-04 21:20 - 2016-09-04 21:20 - 22905344 _____ (Intel Corporation) C:\Windows\system32\igdfcl64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 17837568 _____ (Intel Corporation) C:\Windows\SysWOW64\igdfcl32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 12211184 _____ (Intel Corporation) C:\Windows\system32\igd10iumd64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 11783680 _____ (Intel Corporation) C:\Windows\SysWOW64\igd10iumd32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 10946840 _____ (Intel Corporation) C:\Windows\system32\igdumdim64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 10474040 _____ (Intel Corporation) C:\Windows\SysWOW64\igdumdim32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 08513536 _____ (Intel Corporation) C:\Windows\system32\ig7icd64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 06500352 _____ (Intel Corporation) C:\Windows\SysWOW64\ig7icd32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 04611816 _____ (Intel Corporation) C:\Windows\system32\igdusc64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 04382840 _____ (Intel Corporation) C:\Windows\system32\Gfxv4_0.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 04379256 _____ (Intel Corporation) C:\Windows\system32\Gfxv2_0.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 04015576 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiAAC64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 03793872 _____ (Intel Corporation) C:\Windows\system32\Drivers\igdkmd64.sys
2016-09-04 21:20 - 2016-09-04 21:20 - 03650832 _____ (Intel Corporation) C:\Windows\SysWOW64\igdusc32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 02497568 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiVAD64.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 02027008 _____ (Intel Corporation) C:\Windows\system32\igfxcmjit64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 01986560 _____ (Intel Corporation) C:\Windows\system32\igdrcl64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 01785856 _____ (Intel Corporation) C:\Windows\SysWOW64\igdrcl32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 01758208 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmjit32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 01461208 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiSecureSourceFilter64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 01137120 _____ (Intel Corporation) C:\Windows\system32\iglhsip64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 01133000 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhsip32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00959608 _____ (Intel Corporation) C:\Windows\system32\GfxUIEx.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 00863704 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiWinNextAgent64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00672256 _____ (Intel Corporation) C:\Windows\system32\igfxDH.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00650712 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiAudioFilter64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00609280 _____ (Intel Corporation) C:\Windows\system32\MetroIntelGenericUIFramework.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00608216 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiMux64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00545912 _____ (Intel Corporation) C:\Windows\system32\DPTopologyApp.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 00545400 _____ (Intel Corporation) C:\Windows\system32\DPTopologyAppv2_0.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 00530552 _____ (Intel Corporation) C:\Windows\system32\igfxEM.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 00454760 _____ (Intel Corporation) C:\Windows\system32\igdmd64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00433784 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiUMS64.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 00399992 _____ (Intel Corporation) C:\Windows\system32\CustomModeApp.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 00399480 _____ (Intel Corporation) C:\Windows\system32\CustomModeAppv2_0.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 00376832 _____ (Intel Corporation) C:\Windows\system32\IntelOpenCL64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00372856 _____ (Intel Corporation) C:\Windows\system32\igfxTray.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 00371712 _____ (Intel Corporation) C:\Windows\system32\igfxOSP.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00366680 _____ (Intel Corporation) C:\Windows\SysWOW64\igdmd32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00366080 _____ (Intel Corporation) C:\Windows\system32\igdbcl64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00349144 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiSilenceFilter64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00321536 _____ (Intel Corporation) C:\Windows\SysWOW64\igdbcl32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00319096 _____ (Intel Corporation) C:\Windows\system32\igfxCUIService.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 00286720 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelOpenCL32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00284672 _____ (Intel Corporation) C:\Windows\system32\igfxDI.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00280696 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 00255488 _____ C:\Windows\system32\igfxCPL.cpl
2016-09-04 21:20 - 2016-09-04 21:20 - 00252416 _____ (Intel Corporation) C:\Windows\system32\igfxLHM.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00247416 _____ (Intel Corporation) C:\Windows\system32\igfxHK.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 00221184 _____ C:\Windows\system32\igdde64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00218848 _____ (Intel Corporation) C:\Windows\system32\iglhcp64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00215000 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiUtils64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00209408 _____ (Intel Corporation) C:\Windows\system32\igfxDTCM.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00195192 _____ (Intel Corporation) C:\Windows\system32\igfxext.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 00191476 _____ C:\Windows\system32\resTHA.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00190464 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v4425.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00188496 _____ (Intel Corporation) C:\Windows\system32\igfxcmrt64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00184832 _____ (Intel Corporation) C:\Windows\system32\igfx11cmrt64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00184036 _____ C:\Windows\system32\resELL.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00183840 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhcp32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00182784 _____ C:\Windows\SysWOW64\igdde32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00182232 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiDDEAgent64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00179828 _____ C:\Windows\system32\resRUS.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00165460 _____ C:\Windows\system32\resARA.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00164948 _____ C:\Windows\system32\resJPN.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00164884 _____ C:\Windows\system32\resHEB.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00162304 _____ C:\Windows\system32\igdail64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00160260 _____ C:\Windows\system32\resHUN.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00160196 _____ C:\Windows\system32\resFRA.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00159096 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmrt32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00158532 _____ C:\Windows\system32\resKOR.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00158388 _____ C:\Windows\system32\resDEU.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00158356 _____ C:\Windows\system32\resITA.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00158148 _____ C:\Windows\system32\resROM.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00158052 _____ C:\Windows\system32\resESN.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00157652 _____ C:\Windows\system32\resPLK.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00157492 _____ C:\Windows\system32\resSKY.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00157332 _____ C:\Windows\system32\resNLD.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00156708 _____ C:\Windows\system32\resPTB.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00156628 _____ C:\Windows\system32\resCSY.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00156596 _____ C:\Windows\system32\resTRK.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00156420 _____ C:\Windows\system32\resPTG.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00156280 _____ (Intel Corporation) C:\Windows\system32\difx64.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 00155972 _____ C:\Windows\system32\resFIN.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00155540 _____ C:\Windows\system32\resHRV.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00155136 _____ (Intel Corporation) C:\Windows\SysWOW64\igfx11cmrt32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00155124 _____ C:\Windows\system32\resSVE.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00154964 _____ C:\Windows\system32\resSLV.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00154004 _____ C:\Windows\system32\resNOR.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00153508 _____ C:\Windows\system32\resDAN.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00152164 _____ C:\Windows\system32\resENU.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00150404 _____ C:\Windows\system32\resCHT.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00149524 _____ C:\Windows\system32\resCHS.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00143872 _____ C:\Windows\SysWOW64\igdail32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00133080 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiMCUMD64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00098776 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiLogServer64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00094208 _____ C:\Windows\system32\IccLibDll_x64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00086528 _____ C:\Windows\system32\igfxCUIServicePS.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00069632 _____ ( ) C:\Windows\system32\igfxDHLibv2_0.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00064000 _____ (Khronos Group) C:\Windows\system32\Intel_OpenCL_ICD64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00060416 _____ (Khronos Group) C:\Windows\SysWOW64\Intel_OpenCL_ICD32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00059904 _____ ( ) C:\Windows\system32\igfxDHLib.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00031448 _____ (Intel Corporation) C:\Windows\system32\igfxexps.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00030720 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxexps32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00010752 _____ ( ) C:\Windows\system32\igfxDILibv2_0.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00010752 _____ ( ) C:\Windows\system32\igfxDILib.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00010240 _____ ( ) C:\Windows\system32\igfxEMLibv2_0.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00010240 _____ ( ) C:\Windows\system32\igfxEMLib.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00005120 _____ ( ) C:\Windows\system32\igfxLHMLibv2_0.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00005120 _____ ( ) C:\Windows\system32\igfxLHMLib.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00002582 _____ C:\Windows\system32\iglhxs64.vp
2016-09-04 21:15 - 2016-09-04 21:54 - 00000000 ____D C:\Windows\LastGood.Tmp
2016-09-04 21:14 - 2016-09-04 21:14 - 00459536 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\SET7D89.tmp
2016-09-04 21:14 - 2016-09-04 21:14 - 00459536 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcDAud.sys
2016-09-04 21:13 - 2016-09-04 21:13 - 00030544 _____ (HP) C:\Windows\system32\Drivers\WirelessButtonDriver64.sys
2016-09-04 20:49 - 2016-09-04 20:49 - 00042416 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaiogpioe.sys
2016-09-04 20:44 - 2016-09-04 20:44 - 00000000 ____D C:\ProgramData\{FD6F83C0-EC70-4581-8361-C70CD1AA4B98}
2016-09-04 20:44 - 2016-03-25 14:33 - 00128288 _____ (IObit) C:\Windows\system32\IObitSmartDefragExtension.dll
2016-09-04 20:43 - 2016-09-04 20:43 - 00000000 ____D C:\Windows\IObit
2016-09-04 20:37 - 2016-09-04 20:37 - 00000000 ____D C:\ProgramData\{BE2ACE5C-32B7-4777-9BDF-ECF87CDAB705}
2016-09-04 20:25 - 2016-09-04 20:25 - 00002572 _____ C:\Windows\System32\Tasks\GlaryInitialize 5
2016-09-04 20:25 - 2016-09-04 20:25 - 00002548 _____ C:\Windows\System32\Tasks\YCMServiceAgent
2016-09-04 19:57 - 2016-09-04 20:39 - 00000000 ____D C:\ProgramData\360Quarant
2016-09-04 19:56 - 2016-09-04 20:25 - 00000000 ____D C:\Windows\Tasks\360Disabled
2016-09-04 19:54 - 2016-09-01 13:43 - 00095232 _____ (360.cn) C:\Windows\SysWOW64\Drivers\360AvFlt.sys
2016-09-04 19:50 - 2016-09-05 07:55 - 00000000 ____D C:\Program Files (x86)\360
2016-09-04 15:20 - 2016-09-04 15:20 - 00372736 _____ C:\Windows\system32\config\default.gu
2016-09-04 15:20 - 2016-09-04 15:20 - 00057344 _____ C:\Windows\system32\config\system.gu
2016-09-04 15:20 - 2016-09-04 15:20 - 00028672 _____ C:\Windows\system32\config\security.gu
2016-09-04 15:20 - 2016-09-04 15:20 - 00028672 _____ C:\Windows\system32\config\sam.gu
2016-09-04 15:19 - 2016-08-05 09:37 - 00035792 _____ (Glarysoft Ltd) C:\Windows\system32\RegBootDefrag.exe
2016-09-04 12:47 - 2016-09-04 12:47 - 00001211 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera 39.lnk
2016-09-04 12:46 - 2016-09-09 14:36 - 00000000 ____D C:\Program Files (x86)\Opera
2016-09-02 12:58 - 2016-09-02 12:58 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-09-01 18:22 - 2015-03-09 12:26 - 00019768 _____ (NETGATE Technologies s.r.o.) C:\Windows\system32\Drivers\spyemrg_guard.sys
2016-09-01 18:22 - 2011-04-21 11:31 - 00017240 _____ (NETGATE Technologies s.r.o.) C:\Windows\system32\Drivers\spyemrg.sys
2016-08-29 15:52 - 2016-08-29 15:52 - 00000000 ____D C:\Program Files (x86)\Tweaking.com
2016-08-28 11:34 - 2016-08-29 19:47 - 00000000 ____D C:\Program Files (x86)\DLL Suite
2016-08-28 11:14 - 2016-09-01 13:21 - 00000000 ____D C:\ProgramData\tmp
2016-08-28 11:14 - 2016-08-28 11:14 - 00000000 ____D C:\ProgramData\hps
2016-08-28 10:11 - 2016-09-06 10:04 - 00000000 ____D C:\Program Files\Teta CEWE fotosvet
2016-08-20 20:54 - 2016-09-04 15:20 - 165150720 _____ C:\Windows\system32\config\software.gu.bak
2016-08-20 20:54 - 2016-09-04 15:20 - 15466496 _____ C:\Windows\system32\config\system.gu.bak
2016-08-20 19:59 - 2015-07-01 12:55 - 00001608 _____ C:\Windows\SysWOW64\optskcpl.xml
2016-08-20 19:59 - 2015-06-24 16:31 - 00002986 _____ C:\Windows\SysWOW64\Start_SimplePass.xml
2016-08-20 19:59 - 2015-06-24 16:31 - 00002924 _____ C:\Windows\SysWOW64\Start_OPBHOBrokerDesktop.xml
2016-08-20 19:59 - 2015-06-24 16:31 - 00002912 _____ C:\Windows\SysWOW64\Start_OPBHOBroker.xml
2016-08-20 18:02 - 2016-08-20 18:02 - 00000000 __SHD C:\found.003
2016-08-19 23:44 - 2016-09-11 10:05 - 00000000 ____D C:\ProgramData\Glarysoft
2016-08-19 23:44 - 2016-09-11 10:03 - 00000000 ____D C:\Program Files (x86)\Glarysoft
2016-08-19 23:43 - 2016-08-19 23:43 - 00000537 _____ C:\GUDownLoaddebug.txt
2016-08-19 23:42 - 2016-09-11 10:05 - 00000000 ____D C:\Users\saxin\AppData\Roaming\GlarySoft
2016-08-19 23:42 - 2016-08-19 23:42 - 00000000 ____D C:\Users\saxin\AppData\Roaming\DiskDefrag
2016-08-18 23:15 - 2016-08-03 11:44 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2016-08-18 23:15 - 2016-08-03 11:40 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
2016-08-18 23:15 - 2016-08-03 11:30 - 00515072 _____ (Microsoft Corporation) C:\Windows\system32\OneDriveSettingSyncProvider.dll
2016-08-18 23:15 - 2016-08-03 06:44 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryClient.dll
2016-08-18 23:15 - 2016-08-03 06:44 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryBroker.dll
2016-08-18 23:14 - 2016-08-03 12:21 - 00566112 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe
2016-08-18 23:14 - 2016-08-03 11:51 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2016-08-18 23:14 - 2016-08-03 06:19 - 02180096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepository.dll
2016-08-18 23:13 - 2016-08-03 12:22 - 00808288 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2016-08-18 23:13 - 2016-08-03 12:19 - 00604928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2016-08-18 23:13 - 2016-08-03 12:19 - 00161632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-08-18 23:13 - 2016-08-03 11:41 - 00128512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthpan.sys
2016-08-18 23:13 - 2016-08-03 11:41 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthenum.sys
2016-08-18 23:13 - 2016-08-03 11:40 - 00181248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rfcomm.sys
2016-08-18 23:13 - 2016-08-03 11:31 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\wevtutil.exe
2016-08-18 23:13 - 2016-08-03 11:29 - 14252544 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-08-18 23:13 - 2016-08-03 11:29 - 00954368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2016-08-18 23:13 - 2016-08-03 11:29 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2016-08-18 23:13 - 2016-08-03 11:18 - 06974464 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2016-08-18 23:13 - 2016-08-03 11:18 - 01388032 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-08-18 23:13 - 2016-08-03 11:16 - 05123072 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll
2016-08-18 23:13 - 2016-08-03 11:11 - 04171264 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2016-08-18 23:13 - 2016-08-03 07:52 - 00034088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wldp.dll
2016-08-18 23:13 - 2016-08-03 07:34 - 00501592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupEngine.dll
2016-08-18 23:13 - 2016-08-03 07:34 - 00084832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupApi.dll
2016-08-18 23:13 - 2016-08-03 07:33 - 00051128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsNativeApi.dll
2016-08-18 23:13 - 2016-08-03 06:32 - 12585984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2016-08-18 23:13 - 2016-08-03 06:25 - 04078080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbgeng.dll
2016-08-18 23:12 - 2016-08-03 12:36 - 00099680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2016-08-18 23:12 - 2016-08-03 12:30 - 00026408 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-08-18 23:12 - 2016-08-03 12:23 - 00693600 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupEngine.dll
2016-08-18 23:12 - 2016-08-03 12:23 - 00115040 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupApi.dll
2016-08-18 23:12 - 2016-08-03 12:22 - 00465248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2016-08-18 23:12 - 2016-08-03 12:22 - 00331616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2016-08-18 23:12 - 2016-08-03 12:21 - 03675512 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-08-18 23:12 - 2016-08-03 12:20 - 01540224 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2016-08-18 23:12 - 2016-08-03 12:20 - 00692136 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll
2016-08-18 23:12 - 2016-08-03 12:13 - 01988448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2016-08-18 23:12 - 2016-08-03 12:13 - 00576864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2016-08-18 23:12 - 2016-08-03 12:13 - 00393056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2016-08-18 23:12 - 2016-08-03 11:44 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\musdialoghandlers.dll
2016-08-18 23:12 - 2016-08-03 11:43 - 16985088 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2016-08-18 23:12 - 2016-08-03 11:40 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\TpmTasks.dll
2016-08-18 23:12 - 2016-08-03 11:39 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2016-08-18 23:12 - 2016-08-03 11:38 - 00379392 _____ (Microsoft Corporation) C:\Windows\system32\usocore.dll
2016-08-18 23:12 - 2016-08-03 11:36 - 00211456 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupSvc.dll
2016-08-18 23:12 - 2016-08-03 11:36 - 00198144 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-08-18 23:12 - 2016-08-03 11:35 - 00200192 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2016-08-18 23:12 - 2016-08-03 11:29 - 01500160 _____ (Microsoft Corporation) C:\Windows\system32\RecoveryDrive.exe
2016-08-18 23:12 - 2016-08-03 11:29 - 01387520 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2016-08-18 23:12 - 2016-08-03 11:28 - 01213440 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2016-08-18 23:12 - 2016-08-03 11:28 - 00848896 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-08-18 23:12 - 2016-08-03 11:27 - 07536640 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2016-08-18 23:12 - 2016-08-03 11:27 - 01717760 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2016-08-18 23:12 - 2016-08-03 11:16 - 03589120 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2016-08-18 23:12 - 2016-08-03 11:16 - 01732096 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-08-18 23:12 - 2016-08-03 11:14 - 01997824 _____ (Microsoft Corporation) C:\Windows\system32\ActiveSyncProvider.dll
2016-08-18 23:12 - 2016-08-03 11:13 - 03025920 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-08-18 23:12 - 2016-08-03 11:13 - 02280960 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-08-18 23:12 - 2016-08-03 07:31 - 02921368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-08-18 23:12 - 2016-08-03 07:31 - 00957608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2016-08-18 23:12 - 2016-08-03 07:31 - 00703840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
2016-08-18 23:12 - 2016-08-03 06:57 - 00091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdlrecover.exe
2016-08-18 23:12 - 2016-08-03 06:48 - 00051712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshbth.dll
2016-08-18 23:12 - 2016-08-03 06:47 - 13018112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2016-08-18 23:12 - 2016-08-03 06:42 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BluetoothApis.dll
2016-08-18 23:12 - 2016-08-03 06:37 - 00219136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VEEventDispatcher.dll
2016-08-18 23:12 - 2016-08-03 06:35 - 00178688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wevtutil.exe
2016-08-18 23:12 - 2016-08-03 06:34 - 00792064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-08-18 23:12 - 2016-08-03 06:32 - 00434688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LogonController.dll
2016-08-18 23:12 - 2016-08-03 06:31 - 06743040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2016-08-18 23:12 - 2016-08-03 06:31 - 00705536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2016-08-18 23:11 - 2016-08-03 11:44 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\wshbth.dll
2016-08-18 23:11 - 2016-08-03 11:39 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\BluetoothApis.dll
2016-08-18 23:10 - 2016-08-03 13:14 - 01505984 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-08-18 23:10 - 2016-08-03 13:14 - 00092352 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-08-18 23:10 - 2016-08-03 13:14 - 00050368 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-08-18 23:10 - 2016-08-03 12:36 - 07469408 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-08-18 23:10 - 2016-08-03 12:36 - 00037744 _____ (Microsoft Corporation) C:\Windows\system32\wldp.dll
2016-08-18 23:10 - 2016-08-03 12:21 - 00303216 _____ (Microsoft Corporation) C:\Windows\system32\LockAppHost.exe
2016-08-18 23:10 - 2016-08-03 11:51 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\tdlrecover.exe
2016-08-18 23:10 - 2016-08-03 11:41 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryClient.dll
2016-08-18 23:10 - 2016-08-03 11:41 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryBroker.dll
2016-08-18 23:10 - 2016-08-03 11:40 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\VEDataLayerHelpers.dll
2016-08-18 23:10 - 2016-08-03 11:37 - 00110080 _____ (Microsoft Corporation) C:\Windows\system32\IdCtrls.dll
2016-08-18 23:10 - 2016-08-03 11:33 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\VEEventDispatcher.dll
2016-08-18 23:10 - 2016-08-03 11:31 - 00506880 _____ (Microsoft Corporation) C:\Windows\system32\tileobjserver.dll
2016-08-18 23:10 - 2016-08-03 11:29 - 00784384 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-08-18 23:10 - 2016-08-03 11:18 - 02067968 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2016-08-18 23:10 - 2016-08-03 11:17 - 02175488 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2016-08-18 23:10 - 2016-08-03 11:16 - 02635776 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll
2016-08-18 23:10 - 2016-08-03 11:12 - 02746368 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepository.dll
2016-08-18 23:10 - 2016-08-03 07:30 - 21123320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2016-08-18 23:10 - 2016-08-03 07:30 - 00465760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe
2016-08-18 23:10 - 2016-08-03 07:30 - 00255168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockAppHost.exe
2016-08-18 23:10 - 2016-08-03 06:40 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IdCtrls.dll
2016-08-18 23:10 - 2016-08-03 06:39 - 19351040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-08-18 23:10 - 2016-08-03 06:34 - 00400896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneDriveSettingSyncProvider.dll
2016-08-18 23:10 - 2016-08-03 06:33 - 18677760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2016-08-18 23:10 - 2016-08-03 06:33 - 02050048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-08-18 23:10 - 2016-08-03 06:33 - 00687616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-08-18 23:10 - 2016-08-03 06:32 - 01467392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2016-08-18 23:10 - 2016-08-03 06:28 - 03663360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-08-18 23:10 - 2016-08-03 06:25 - 05323776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2016-08-18 23:10 - 2016-08-03 06:23 - 05660672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2016-08-18 23:10 - 2016-08-03 06:23 - 01799680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Logon.dll
2016-08-18 23:10 - 2016-08-03 06:22 - 02501120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-08-18 23:10 - 2016-08-03 06:22 - 01502208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-08-18 23:10 - 2016-08-03 06:21 - 01708032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActiveSyncProvider.dll
2016-08-18 23:09 - 2016-08-03 12:22 - 01322760 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2016-08-18 23:09 - 2016-08-03 12:22 - 00058408 _____ (Microsoft Corporation) C:\Windows\system32\SensorsNativeApi.dll
2016-08-18 23:09 - 2016-08-03 12:21 - 22561256 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-08-18 23:09 - 2016-08-03 12:11 - 00422744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2016-08-18 23:09 - 2016-08-03 11:46 - 22384128 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2016-08-18 23:09 - 2016-08-03 11:40 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\bthserv.dll
2016-08-18 23:09 - 2016-08-03 11:38 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2016-08-18 23:09 - 2016-08-03 11:36 - 00221696 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-08-18 23:09 - 2016-08-03 11:35 - 00764928 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2016-08-18 23:09 - 2016-08-03 11:34 - 00383488 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-08-18 23:09 - 2016-08-03 11:33 - 00339968 _____ (Microsoft Corporation) C:\Windows\system32\SensorService.dll
2016-08-18 23:09 - 2016-08-03 11:31 - 00359936 _____ (Microsoft Corporation) C:\Windows\system32\SensorsApi.dll
2016-08-18 23:09 - 2016-08-03 11:30 - 24613888 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-08-18 23:09 - 2016-08-03 11:30 - 00970752 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-08-18 23:09 - 2016-08-03 11:29 - 02127360 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-08-18 23:09 - 2016-08-03 11:28 - 00529920 _____ (Microsoft Corporation) C:\Windows\system32\LogonController.dll
2016-08-18 23:09 - 2016-08-03 11:27 - 01752576 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-08-18 23:09 - 2016-08-03 11:27 - 00381952 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2016-08-18 23:09 - 2016-08-03 11:20 - 13390336 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-08-18 23:09 - 2016-08-03 11:15 - 07833088 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2016-08-18 23:09 - 2016-08-03 11:14 - 04895232 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-08-18 23:09 - 2016-08-03 06:37 - 00335872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-08-18 23:09 - 2016-08-03 06:35 - 00286208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsApi.dll
2016-08-18 23:09 - 2016-08-03 06:32 - 01526272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-08-18 23:09 - 2016-08-03 06:29 - 12133376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-08-18 20:34 - 2016-08-18 20:34 - 00000000 ___HD C:\_Exception1
2016-08-18 20:33 - 2016-08-18 20:33 - 00000000 ____D C:\Backup_2016-08-18 103348
2016-08-15 11:11 - 2016-09-11 11:32 - 00000000 ___HD C:\$GetCurrent
2016-08-14 13:39 - 2016-08-14 13:39 - 00000000 ____D C:\Users\saxin\AppData\Local\Downloaded Installations
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-09-13 16:11 - 2015-10-30 09:21 - 00000000 ____D C:\Windows\INF
2016-09-13 16:01 - 2016-07-23 09:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-09-13 15:41 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\AppReadiness
2016-09-13 15:38 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-09-13 15:21 - 2015-04-04 09:30 - 00000000 ____D C:\ProgramData\ProductData
2016-09-13 15:20 - 2015-12-21 11:21 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-09-13 15:20 - 2015-02-25 09:22 - 00000000 __SHD C:\Users\saxin\IntelGraphicsProfiles
2016-09-13 15:19 - 2015-05-01 11:02 - 00000000 ____D C:\Users\saxin\AppData\Local\ESET
2016-09-13 04:45 - 2015-10-30 08:28 - 243269632 ___SH C:\Windows\system32\config\BBI
2016-09-13 04:29 - 2014-08-20 14:33 - 00004192 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{353F7DF7-EBE7-4133-BF94-5E9E60EE47E3}
2016-09-12 04:01 - 2014-08-18 16:22 - 00003238 _____ C:\Windows\System32\Tasks\HPCeeScheduleForsaxin
2016-09-12 04:01 - 2014-08-18 16:22 - 00000346 _____ C:\Windows\Tasks\HPCeeScheduleForsaxin.job
2016-09-12 02:04 - 2014-09-27 17:04 - 00000000 ____D C:\Windows\AutoKMS
2016-09-11 14:34 - 2015-01-11 19:42 - 00000000 ____D C:\Program Files (x86)\Hp
2016-09-11 14:28 - 2015-08-08 16:58 - 00001908 _____ C:\Windows\diagwrn.xml
2016-09-11 14:28 - 2015-08-08 16:58 - 00001908 _____ C:\Windows\diagerr.xml
2016-09-11 14:23 - 2015-12-21 10:57 - 01960536 _____ C:\Windows\system32\PerfStringBackup.INI
2016-09-11 14:23 - 2015-10-30 20:31 - 00813554 _____ C:\Windows\system32\perfh005.dat
2016-09-11 14:23 - 2015-10-30 20:31 - 00182950 _____ C:\Windows\system32\perfc005.dat
2016-09-11 14:21 - 2015-04-14 19:18 - 00003808 _____ C:\Windows\System32\Tasks\AutoKMS
2016-09-11 13:22 - 2015-12-21 10:58 - 00000000 ____D C:\Users\saxin
2016-09-11 11:47 - 2015-12-21 10:46 - 00000000 ___DC C:\Windows\Panther
2016-09-10 20:44 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\registration
2016-09-09 17:01 - 2015-10-30 08:28 - 00032768 ___SH C:\Windows\system32\config\ELAM
2016-09-09 14:19 - 2013-08-22 15:25 - 00000234 _____ C:\Windows\win.ini
2016-09-09 13:17 - 2014-08-16 17:33 - 00000000 ____D C:\Users\saxin\AppData\Local\Packages
2016-09-08 11:24 - 2015-12-21 10:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Music, Photos and Videos
2016-09-07 23:28 - 2014-06-19 16:07 - 00000000 ___HD C:\Program Files (x86)\Temp
2016-09-07 23:28 - 2014-06-19 16:05 - 00000000 ____D C:\Program Files (x86)\Realtek
2016-09-07 23:15 - 2015-01-03 19:18 - 00000000 ____D C:\Users\saxin\AppData\Local\Windows Live
2016-09-07 23:14 - 2014-05-04 07:02 - 00000000 ____D C:\Windows\en-GB
2016-09-06 22:45 - 2015-10-03 16:28 - 00000000 ____D C:\Program Files (x86)\IObit
2016-09-06 22:26 - 2014-05-03 21:35 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard
2016-09-06 22:26 - 2013-10-02 23:14 - 00000000 ____D C:\Program Files\Hewlett-Packard
2016-09-06 11:29 - 2014-06-19 16:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2016-09-06 11:27 - 2014-05-03 21:57 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2016-09-06 11:27 - 2014-05-03 21:38 - 00000000 ____D C:\ProgramData\Hewlett-Packard
2016-09-06 10:47 - 2014-05-03 21:56 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-09-06 10:47 - 2014-05-03 21:38 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security and Protection
2016-09-06 09:38 - 2015-04-04 09:29 - 00000000 ____D C:\ProgramData\IObit
2016-09-05 11:48 - 2015-04-04 09:29 - 00000000 ____D C:\Users\saxin\AppData\LocalLow\IObit
2016-09-05 11:02 - 2016-05-02 11:13 - 00000000 ____D C:\Users\saxin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tpv výpočty 4
2016-09-05 11:00 - 2015-07-15 23:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlazeDTV 6.0
2016-09-04 21:45 - 2015-12-21 10:53 - 00000000 ____D C:\Windows\SysWOW64\sda
2016-09-04 21:20 - 2015-12-21 10:53 - 00064000 _____ (Khronos Group) C:\Windows\system32\OpenCL.DLL
2016-09-04 21:20 - 2015-12-21 10:53 - 00060416 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.DLL
2016-09-04 20:44 - 2015-04-04 09:29 - 00000000 ____D C:\Users\saxin\AppData\Roaming\IObit
2016-09-04 20:26 - 2015-11-05 20:42 - 00000000 ____D C:\ProgramData\ClassicShell
2016-09-04 20:26 - 2015-10-01 16:10 - 00000000 ____D C:\Users\saxin\.VirtualBox
2016-09-04 20:26 - 2014-06-19 16:15 - 00000000 ____D C:\ProgramData\Temp
2016-09-04 20:26 - 2014-06-19 16:15 - 00000000 ____D C:\ProgramData\install_clap
2016-09-04 20:25 - 2015-10-03 09:33 - 00000000 ____D C:\Windows\System32\Tasks\Lenovo
2016-09-04 19:56 - 2014-06-19 16:22 - 00002536 _____ C:\Windows\System32\Tasks\CLMLSvc_P2G8
2016-09-04 15:30 - 2014-08-16 17:35 - 00000000 ____D C:\Users\saxin\Documents\Youcam
2016-09-04 12:48 - 2015-04-27 15:31 - 00000000 ____D C:\Users\saxin\AppData\Local\Opera Software
2016-09-03 21:59 - 2014-05-03 21:52 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2016-09-03 20:06 - 2015-12-06 15:40 - 00000000 ____D C:\Program Files\7-Zip
2016-09-02 21:48 - 2016-05-08 16:56 - 00002717 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Word Viewer 2003.lnk
2016-09-02 21:48 - 2015-12-21 11:11 - 00001519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-09-02 21:48 - 2013-10-01 00:49 - 00001602 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Control Zone (Touchpad Clickpad Trackpad Mouse).lnk
2016-09-02 21:42 - 2015-10-05 10:42 - 00000000 ____D C:\Users\saxin\AppData\Local\com
2016-09-02 21:42 - 2015-09-09 18:27 - 00000000 ____D C:\ProgramData\Systweak
2016-09-02 21:42 - 2015-09-09 16:42 - 00000000 ____D C:\Users\saxin\AppData\Roaming\systweak
2016-09-02 21:42 - 2015-03-06 21:32 - 00000000 ____D C:\ProgramData\APN
2016-09-02 21:39 - 2015-10-05 10:39 - 00000000 ____D C:\Program Files (x86)\MixVideoPlayer
2016-09-01 12:31 - 2015-10-30 09:11 - 00000000 ____D C:\Windows\CbsTemp
2016-09-01 12:30 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\system32\appraiser
2016-08-30 18:35 - 2014-09-03 11:22 - 00000000 ____D C:\Program Files (x86)\Google
2016-08-30 17:02 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\rescache
2016-08-30 15:24 - 2014-08-17 14:58 - 00000000 ___RD C:\Users\saxin\OneDrive
2016-08-30 13:11 - 2014-08-24 14:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint
2016-08-30 13:11 - 2014-08-24 14:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2016-08-30 11:56 - 2015-03-25 19:48 - 00000000 ____D C:\Users\saxin\AppData\Local\Adobe
2016-08-29 19:48 - 2015-12-06 15:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2016-08-29 19:48 - 2015-10-30 20:35 - 00000000 ____D C:\Windows\ShellNew
2016-08-29 19:48 - 2015-10-30 20:35 - 00000000 ____D C:\Program Files\Windows Journal
2016-08-29 19:48 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\L2Schemas
2016-08-29 19:47 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-08-29 19:46 - 2015-09-09 13:08 - 00000000 ____D C:\Users\saxin\AppData\Roaming\Seznam.cz
2016-08-29 19:26 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2016-08-29 19:25 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\system32\Macromed
2016-08-29 19:20 - 2014-08-23 14:56 - 00000000 __RHD C:\MSOCache
2016-08-27 14:32 - 2015-04-16 14:06 - 00000000 ____D C:\Users\saxin\AppData\Local\ElevatedDiagnostics
2016-08-23 16:01 - 2014-08-17 08:33 - 00000000 ____D C:\Users\saxin\AppData\Local\Hewlett-Packard
2016-08-22 17:41 - 2014-04-01 03:07 - 00000000 ____D C:\SWSetup
2016-08-21 11:56 - 2015-01-13 18:11 - 00001200 _____ C:\Users\saxin\Downloads\Stažené soubory – zástupce.lnk
2016-08-20 20:53 - 2015-10-30 08:28 - 00524288 _____ C:\Windows\system32\config\default.gu.bak
2016-08-20 20:06 - 2014-05-03 21:56 - 00000000 ____D C:\Windows\System32\Tasks\Hewlett-Packard
2016-08-20 18:59 - 2014-06-19 16:04 - 00000000 ____D C:\Windows\Hewlett-Packard
2016-08-20 16:57 - 2014-08-16 17:31 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-08-20 16:51 - 2015-10-30 09:24 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2016-08-20 16:40 - 2015-01-11 19:42 - 00000000 ____D C:\Users\saxin\AppData\Roaming\HpUpdate
2016-08-20 14:07 - 2015-03-25 19:45 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2016-08-20 14:07 - 2015-03-24 19:02 - 00000000 ____D C:\Users\saxin\AppData\Roaming\ACEStream
2016-08-20 13:56 - 2015-12-24 23:08 - 00000000 ____D C:\Users\saxin\AppData\Local\Vivaldi
2016-08-20 13:55 - 2015-03-24 19:05 - 00000000 ____D C:\Users\saxin\AppData\Roaming\.ACEStream
2016-08-20 11:16 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\system32\SecureBootUpdates
2016-08-20 11:15 - 2014-08-18 15:33 - 00000000 ____D C:\Windows\system32\MRT
2016-08-20 11:02 - 2014-08-18 15:33 - 147640136 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-08-18 20:28 - 2016-07-24 12:35 - 00000000 _____ C:\Recovery.txt
2016-08-18 09:17 - 2014-09-18 13:09 - 00000000 ____D C:\Windows\pss
2016-08-18 09:16 - 2015-11-03 19:10 - 00000000 ____D C:\Program Files (x86)\SarbyxTrayClock
2016-08-18 09:16 - 2015-10-30 08:28 - 00000000 ____D C:\Windows\system32\Sysprep
2016-08-18 09:16 - 2015-06-05 09:13 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2016-08-18 09:16 - 2015-04-04 10:48 - 00000000 ____D C:\Users\saxin\AppData\Roaming\ProductData
2016-08-18 09:13 - 2016-07-28 12:49 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2016-08-18 08:45 - 2015-07-15 23:33 - 00000000 ____D C:\ProgramData\Aviosoft
2016-08-16 22:48 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\system32\NDF
2016-08-14 13:41 - 2015-01-11 20:03 - 00000000 ____D C:\Users\saxin\AppData\Roaming\HP
2016-08-14 13:40 - 2014-08-17 08:33 - 00000000 ____D C:\Users\saxin\AppData\Roaming\hpqlog
==================== Files in the root of some directories =======
2015-04-19 14:20 - 2015-09-15 23:30 - 0000626 _____ () C:\Users\saxin\AppData\Roaming\fD0Peh9Ql9bYC6NhSW
2014-08-24 09:41 - 2014-08-24 11:56 - 0000096 _____ () C:\Users\saxin\AppData\Roaming\regsvr32.exe_log.txt
2016-09-13 16:17 - 2016-09-13 16:17 - 0029696 _____ () C:\Users\saxin\AppData\Local\MSGBOX.EXE
2014-09-18 13:06 - 2016-07-24 12:23 - 0007611 _____ () C:\Users\saxin\AppData\Local\Resmon.ResmonCfg
2015-01-11 19:53 - 2016-09-06 11:38 - 0005584 _____ () C:\ProgramData\hpzinstall.log
2015-09-09 18:11 - 2015-09-09 18:11 - 0000102 _____ () C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
Files to move or delete:
====================
C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-09-06 08:55
==================== End of FRST.txt ============================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Vir?
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119672
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Vir?
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Vir?
Přikládám log:
# AdwCleaner v6.010 - Log soubor vytvořen 14/09/2016 na 16:04:36
# Aktualizováno dne 12/08/2016 z ToolsLib
# Databáze : 2016-09-13.1 [Server]
# Operační systém : Windows 10 Home (X64)
# Uživatelské jméno : saxin - PETRŮV
# Beží od : C:\Users\saxin\Desktop\adwcleaner_6.010.exe
# Mod: Čištění
# Podpora : https://toolslib.net/forum
***** [ Služby ] *****
[-] Služby smazány:sp_rsdrv2
***** [ Adresáře ] *****
[-] Adresář smazán:C:\Program Files (x86)\CA727E98-1441891697-E311-B2A0-6CC217EA916F
[-] Adresář smazán:C:\Program Files (x86)\UnIIDeaLs
[-] Adresář smazán:C:\ProgramData\pRicecehoOp
[-] Adresář smazán:C:\ProgramData\{77311059-f6a9-e247-7731-11059f6a4167}
[-] Adresář smazán:C:\Users\saxin\AppData\Local\CA727E98-1441803927-E311-B2A0-6CC217EA916F
[-] Adresář smazán:C:\Users\saxin\AppData\Local\DriverToolkit
[-] Adresář smazán:C:\Users\saxin\AppData\Local\torch
[-] Adresář smazán:C:\Users\saxin\AppData\LocalLow\.acestream
[-] Adresář smazán:C:\Users\saxin\AppData\Roaming\.acestream
[-] Adresář smazán:C:\Users\saxin\AppData\Roaming\acestream
[-] Adresář smazán:C:\Users\saxin\AppData\Roaming\RPEng
[-] Adresář smazán:C:\Users\saxin\AppData\Roaming\Systweak
[-] Adresář smazán:C:\Users\saxin\AppData\Roaming\UpdateStar Drivers
[-] Adresář smazán:C:\Program Files\NixSrv
[-] Adresář smazán:C:\_acestream_cache_
[-] Adresář smazán:C:\ProgramData\apn
[-] Adresář smazán:C:\ProgramData\Systweak
[-] Adresář smazán:C:\Program Files (x86)\ASP
[-] Adresář smazán:C:\Program Files (x86)\DriverToolkit
[-] Adresář smazán:C:\Program Files (x86)\RCP
[-] Adresář smazán:C:\Program Files (x86)\SFK
[-] Adresář smazán:C:\Users\saxin\AppData\Local\com
***** [ Soubory ] *****
[-] Soubor smazán:C:\Users\saxin\AppData\Roaming\regsvr32.exe_log.txt
[-] Soubor smazán:C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
[-] Soubor smazán:C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\launcher.exe
[-] Soubor smazán:C:\Windows\Reimage.ini
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Zástupce ] *****
***** [ Plánovač úloh ] *****
***** [ Registry ] *****
[-] Klíč smazán:HKCU\Software\7cc68ee3ee93d5f385c4c3aa33747c1d
[-] Klíč smazán:HKU\S-1-5-21-981060814-3022172332-2446712976-1001\Software\Classes\.acestream
[-] Klíč smazán:HKU\S-1-5-21-981060814-3022172332-2446712976-1001\Software\Classes\acestream
[#] Klíč smazán po restartování:HKCU\Software\Classes\.acestream
[#] Klíč smazán po restartování:HKCU\Software\Classes\acestream
[-] Klíč smazán:HKLM\SOFTWARE\Classes\dream.capture
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\AppID\{3A188115-B81B-48F2-A958-F974C8F3F309}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
[-] Klíč smazán:HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{10ECCE17-29B5-4880-A8F5-EAD298611484}
[-] Klíč smazán:HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Reimage
[-] Klíč smazán:HKU\S-1-5-21-981060814-3022172332-2446712976-1001\Software\DriverToolkit
[-] Klíč smazán:HKU\S-1-5-21-981060814-3022172332-2446712976-1001\Software\DriverUpdaterPro
[-] Klíč smazán:HKU\S-1-5-21-981060814-3022172332-2446712976-1001\Software\Reimage
[-] Klíč smazán:HKU\S-1-5-21-981060814-3022172332-2446712976-1001\Software\WEBAPP
[-] Klíč smazán:HKU\S-1-5-21-981060814-3022172332-2446712976-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\windows_ie_ac_001\Software\Installer
[#] Klíč smazán po restartování:HKCU\Software\DriverToolkit
[#] Klíč smazán po restartování:HKCU\Software\DriverUpdaterPro
[#] Klíč smazán po restartování:HKCU\Software\Reimage
[#] Klíč smazán po restartování:HKCU\Software\WEBAPP
[-] Klíč smazán:HKLM\SOFTWARE\SecureWebChannel
[-] Klíč smazán:HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{AD11DADE-C597-45D9-D8C5-1D2EB0B89613}
[-] Klíč smazán:HKU\S-1-5-21-981060814-3022172332-2446712976-1001\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
[#] Klíč smazán po restartování:HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Klíč smazán:HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\researchnow.com
[-] Klíč smazán:HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\surveymyopinion.researchnow.com
[-] Klíč smazán:HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\researchnow.com
[-] Klíč smazán:HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\surveymyopinion.researchnow.com
[-] Hodnota smazána:HKU\S-1-5-21-981060814-3022172332-2446712976-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [AceUpdater]
[-] Klíč smazán:HKCU\Software\Classes\MIME\Database\Content Type\application/x-acestream-plugin
[-] Klíč smazán:HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL
[-] Klíč smazán:HKLM\SOFTWARE\Classes\AppID\SMBarBroker.EXE
[-] Hodnota smazána:HKCU\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION [WeatherBug.exe]
[#] Klíč smazán po restartování:HKCU\SOFTWARE\Classes\MIME\Database\Content Type\application/x-acestream-plugin
[-] Klíč smazán:HKLM\SOFTWARE\Google\Chrome\Extensions\aminlpmkfcdibgpgfajlgnamicjckkjf
***** [ Prohlížeče ] *****
[-] [C:\Users\saxin\AppData\Local\Vivaldi\User Data\Default] [extension] Smazání:aminlpmkfcdibgpgfajlgnamicjckkjf
*************************
:: "Tracing" klíč smazán
:: Winsock nastavení vyčištěno
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [7301 Bajtů] - [14/09/2016 16:04:36]
C:\AdwCleaner\AdwCleaner[S1].txt - [14541 Bajtů] - [21/10/2015 12:45:10]
C:\AdwCleaner\AdwCleaner[S2].txt - [7345 Bajtů] - [14/09/2016 15:47:49]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [7524 Bajtů] ##########
# AdwCleaner v6.010 - Log soubor vytvořen 14/09/2016 na 16:04:36
# Aktualizováno dne 12/08/2016 z ToolsLib
# Databáze : 2016-09-13.1 [Server]
# Operační systém : Windows 10 Home (X64)
# Uživatelské jméno : saxin - PETRŮV
# Beží od : C:\Users\saxin\Desktop\adwcleaner_6.010.exe
# Mod: Čištění
# Podpora : https://toolslib.net/forum
***** [ Služby ] *****
[-] Služby smazány:sp_rsdrv2
***** [ Adresáře ] *****
[-] Adresář smazán:C:\Program Files (x86)\CA727E98-1441891697-E311-B2A0-6CC217EA916F
[-] Adresář smazán:C:\Program Files (x86)\UnIIDeaLs
[-] Adresář smazán:C:\ProgramData\pRicecehoOp
[-] Adresář smazán:C:\ProgramData\{77311059-f6a9-e247-7731-11059f6a4167}
[-] Adresář smazán:C:\Users\saxin\AppData\Local\CA727E98-1441803927-E311-B2A0-6CC217EA916F
[-] Adresář smazán:C:\Users\saxin\AppData\Local\DriverToolkit
[-] Adresář smazán:C:\Users\saxin\AppData\Local\torch
[-] Adresář smazán:C:\Users\saxin\AppData\LocalLow\.acestream
[-] Adresář smazán:C:\Users\saxin\AppData\Roaming\.acestream
[-] Adresář smazán:C:\Users\saxin\AppData\Roaming\acestream
[-] Adresář smazán:C:\Users\saxin\AppData\Roaming\RPEng
[-] Adresář smazán:C:\Users\saxin\AppData\Roaming\Systweak
[-] Adresář smazán:C:\Users\saxin\AppData\Roaming\UpdateStar Drivers
[-] Adresář smazán:C:\Program Files\NixSrv
[-] Adresář smazán:C:\_acestream_cache_
[-] Adresář smazán:C:\ProgramData\apn
[-] Adresář smazán:C:\ProgramData\Systweak
[-] Adresář smazán:C:\Program Files (x86)\ASP
[-] Adresář smazán:C:\Program Files (x86)\DriverToolkit
[-] Adresář smazán:C:\Program Files (x86)\RCP
[-] Adresář smazán:C:\Program Files (x86)\SFK
[-] Adresář smazán:C:\Users\saxin\AppData\Local\com
***** [ Soubory ] *****
[-] Soubor smazán:C:\Users\saxin\AppData\Roaming\regsvr32.exe_log.txt
[-] Soubor smazán:C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
[-] Soubor smazán:C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\launcher.exe
[-] Soubor smazán:C:\Windows\Reimage.ini
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Zástupce ] *****
***** [ Plánovač úloh ] *****
***** [ Registry ] *****
[-] Klíč smazán:HKCU\Software\7cc68ee3ee93d5f385c4c3aa33747c1d
[-] Klíč smazán:HKU\S-1-5-21-981060814-3022172332-2446712976-1001\Software\Classes\.acestream
[-] Klíč smazán:HKU\S-1-5-21-981060814-3022172332-2446712976-1001\Software\Classes\acestream
[#] Klíč smazán po restartování:HKCU\Software\Classes\.acestream
[#] Klíč smazán po restartování:HKCU\Software\Classes\acestream
[-] Klíč smazán:HKLM\SOFTWARE\Classes\dream.capture
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\AppID\{3A188115-B81B-48F2-A958-F974C8F3F309}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\AppID\{28FF42B8-A0DA-4BE5-9B81-E26DD59B350A}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{9BB31AD8-5DB2-459E-A901-DEA536F23BA4}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{BD51A48E-EB5F-4454-8774-EF962DF64546}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\TypeLib\{FA6468D2-FAA4-4951-A53B-2A5CF9CC0A36}
[-] Klíč smazán:HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{10ECCE17-29B5-4880-A8F5-EAD298611484}
[-] Klíč smazán:HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Klíč smazán:[x64] HKLM\SOFTWARE\Reimage
[-] Klíč smazán:HKU\S-1-5-21-981060814-3022172332-2446712976-1001\Software\DriverToolkit
[-] Klíč smazán:HKU\S-1-5-21-981060814-3022172332-2446712976-1001\Software\DriverUpdaterPro
[-] Klíč smazán:HKU\S-1-5-21-981060814-3022172332-2446712976-1001\Software\Reimage
[-] Klíč smazán:HKU\S-1-5-21-981060814-3022172332-2446712976-1001\Software\WEBAPP
[-] Klíč smazán:HKU\S-1-5-21-981060814-3022172332-2446712976-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\windows_ie_ac_001\Software\Installer
[#] Klíč smazán po restartování:HKCU\Software\DriverToolkit
[#] Klíč smazán po restartování:HKCU\Software\DriverUpdaterPro
[#] Klíč smazán po restartování:HKCU\Software\Reimage
[#] Klíč smazán po restartování:HKCU\Software\WEBAPP
[-] Klíč smazán:HKLM\SOFTWARE\SecureWebChannel
[-] Klíč smazán:HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{AD11DADE-C597-45D9-D8C5-1D2EB0B89613}
[-] Klíč smazán:HKU\S-1-5-21-981060814-3022172332-2446712976-1001\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
[#] Klíč smazán po restartování:HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Klíč smazán:HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\researchnow.com
[-] Klíč smazán:HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\surveymyopinion.researchnow.com
[-] Klíč smazán:HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\researchnow.com
[-] Klíč smazán:HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\surveymyopinion.researchnow.com
[-] Hodnota smazána:HKU\S-1-5-21-981060814-3022172332-2446712976-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [AceUpdater]
[-] Klíč smazán:HKCU\Software\Classes\MIME\Database\Content Type\application/x-acestream-plugin
[-] Klíč smazán:HKLM\SOFTWARE\Classes\AppID\REI_AxControl.DLL
[-] Klíč smazán:HKLM\SOFTWARE\Classes\AppID\SMBarBroker.EXE
[-] Hodnota smazána:HKCU\Software\Microsoft\Internet Explorer\Main\FeatureControl\FEATURE_BROWSER_EMULATION [WeatherBug.exe]
[#] Klíč smazán po restartování:HKCU\SOFTWARE\Classes\MIME\Database\Content Type\application/x-acestream-plugin
[-] Klíč smazán:HKLM\SOFTWARE\Google\Chrome\Extensions\aminlpmkfcdibgpgfajlgnamicjckkjf
***** [ Prohlížeče ] *****
[-] [C:\Users\saxin\AppData\Local\Vivaldi\User Data\Default] [extension] Smazání:aminlpmkfcdibgpgfajlgnamicjckkjf
*************************
:: "Tracing" klíč smazán
:: Winsock nastavení vyčištěno
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [7301 Bajtů] - [14/09/2016 16:04:36]
C:\AdwCleaner\AdwCleaner[S1].txt - [14541 Bajtů] - [21/10/2015 12:45:10]
C:\AdwCleaner\AdwCleaner[S2].txt - [7345 Bajtů] - [14/09/2016 15:47:49]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [7524 Bajtů] ##########
-
Rudy
- Site Admin
- Příspěvky: 119672
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Vir?
Dejte nový log FRST.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Vir?
Rychlost pc je lepší ale blikání plochy nepřestalo.
Nejde mi ani aktualizovat w10 po stažení aktualizace a restartu pc se aktualizace zastaví na 14%.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12-09-2016
Ran by saxin (administrator) on PETRŮV (14-09-2016 19:23:30)
Running from C:\Users\saxin\Desktop
Loaded Profiles: saxin (Available Profiles: saxin)
Platform: Windows 10 Home Version 1511 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Intel(R) Corporation) C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hp\HP System Event\HPWMISVC.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Crawler Group, LLC) C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Crawler Group, LLC) C:\Program Files (x86)\Spyware Terminator\SpywareTerminator.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
(Opera Software) C:\Program Files (x86)\Opera\39.0.2256.71\opera.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8505088 2015-07-03] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-07-03] (Realtek Semiconductor)
HKLM\...\Run: [SpywareTerminatorShield] => C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe [5321448 2016-04-09] (Crawler Group, LLC)
HKLM\...\Run: [SpywareTerminatorUpdater] => C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe [5560040 2016-04-09] (Crawler Group, LLC)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [657424 2015-09-03] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [CStart8] => C:\PROGRAM FILES (X86)\CSTART8\CSTART8TRAY64.EXE [3135816 2015-06-29] (Crawler.com)
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKU\S-1-5-21-981060814-3022172332-2446712976-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8912088 2016-08-26] (Piriform Ltd)
HKU\S-1-5-21-981060814-3022172332-2446712976-1001\...\MountPoints2: {38e4a828-2623-11e5-8401-90489ad651e2} - "F:\start.exe"
HKU\S-1-5-21-981060814-3022172332-2446712976-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\scrnsave.scr [31744 2015-10-30] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => No File
ShellIconOverlayIdentifiers: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => No File
ShellIconOverlayIdentifiers: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => No File
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => No File
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 8.8.8.8
Tcpip\..\Interfaces\{65b2bef0-2701-4f31-97aa-cd9ab6b5818e}: [NameServer] 8.8.4.4,8.8.8.8
Tcpip\..\Interfaces\{65b2bef0-2701-4f31-97aa-cd9ab6b5818e}: [DhcpNameServer] 8.8.8.8
Tcpip\..\Interfaces\{d2bfa7d2-82c5-42fa-a4f9-3c82851e86a4}: [DhcpNameServer] 100.100.22.24
ManualProxies:
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-981060814-3022172332-2446712976-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKU\S-1-5-21-981060814-3022172332-2446712976-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/
SearchScopes: HKLM -> {2B756B42-DE08-4C1E-BEF6-A5A5B62747BB} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://istart.webssearches.com/web/?type=ds&ts=1408866112&from=wpc&uid=HGSTXHTS545050A7E680_TM8514ZNKV75ARKV75ARX&q={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKLM-x32 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKLM-x32 -> {2B756B42-DE08-4C1E-BEF6-A5A5B62747BB} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://istart.webssearches.com/web/?type=ds&ts=1408866112&from=wpc&uid=HGSTXHTS545050A7E680_TM8514ZNKV75ARKV75ARX&q={searchTerms}
SearchScopes: HKU\S-1-5-21-981060814-3022172332-2446712976-1001 -> 087637E29CD4CBD545EB82D09BA5BA53 URL = hxxp://www.zbozi.cz/?sourceid=quicksearch_6826&q={searchTerms}
SearchScopes: HKU\S-1-5-21-981060814-3022172332-2446712976-1001 -> 384C2A878BABE74FFEC59EACB6AFDD64 URL = hxxp://www.firmy.cz/phr/{searchTerms}
SearchScopes: HKU\S-1-5-21-981060814-3022172332-2446712976-1001 -> 579715926B82CE235142794482545F9A URL = hxxp://videa.seznam.cz/?q={searchTerms}
SearchScopes: HKU\S-1-5-21-981060814-3022172332-2446712976-1001 -> 91E7CAD87DF391C47003E5B553BBBA52 URL = hxxp://www.mapy.cz/?sourceid=quicksearch_6826& ... earchTerms}
SearchScopes: HKU\S-1-5-21-981060814-3022172332-2446712976-1001 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKU\S-1-5-21-981060814-3022172332-2446712976-1001 -> {2B756B42-DE08-4C1E-BEF6-A5A5B62747BB} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKU\S-1-5-21-981060814-3022172332-2446712976-1001 -> {A67A0724-E3DD-449B-A81F-8C2EFCACEB8E} URL = hxxp://www.gsrch.com/#q={searchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Spyware Terminator 2015 Internet Guard -> {82A76710-4F98-4957-92BE-99648A4E2475} -> C:\Program Files (x86)\Spyware Terminator\STInternetGuard64.dll [2016-04-09] (Crawler Group, LLC)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: No Name -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> No File
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Spyware Terminator 2015 Internet Guard -> {82A76710-4F98-4957-92BE-99648A4E2475} -> C:\Program Files (x86)\Spyware Terminator\STInternetGuard.dll [2016-04-09] (Crawler Group, LLC)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: No Name -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> No File
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Edge:
======
Edge HomeButtonPage: HKU\S-1-5-21-981060814-3022172332-2446712976-1001 -> hxxp://seznam.cz/
FireFox:
========
FF ProfilePath: C:\Users\saxin\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default
FF DefaultSearchEngine: Seznam
FF SelectedSearchEngine: Google Custom Search
FF Homepage: hxxp://www.gsrch.com/
FF NetworkProxy: "user_pref("network.proxy.type", 5)
FF Keyword.URL: hxxp://www.gsrch.com/#q=
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\Microsoft Office\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1204144.dll [2013-09-05] (Adobe Systems, Inc.)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\Microsoft Office\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin HKU\S-1-5-21-981060814-3022172332-2446712976-1001: @tools.google.com/Google Update;version=3 -> C:\Users\saxin\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll [No File]
FF Plugin HKU\S-1-5-21-981060814-3022172332-2446712976-1001: @tools.google.com/Google Update;version=9 -> C:\Users\saxin\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll [No File]
FF user.js: detected! => C:\Users\saxin\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\user.js [2015-04-24]
FF SearchPlugin: C:\Users\saxin\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\searchplugins\firmy.cz-102024.xml [2014-10-05]
FF SearchPlugin: C:\Users\saxin\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\searchplugins\googlecustomsearch.xml [2015-09-24]
FF SearchPlugin: C:\Users\saxin\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\searchplugins\mapy.cz-102024.xml [2014-10-05]
FF SearchPlugin: C:\Users\saxin\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\searchplugins\seznam.cz-102024.xml [2014-10-05]
FF SearchPlugin: C:\Users\saxin\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\searchplugins\videa.seznam.cz-102024.xml [2014-10-05]
FF SearchPlugin: C:\Users\saxin\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\searchplugins\zbozi.cz-102024.xml [2014-10-05]
FF Extension: (Seznam lištička) - C:\Users\saxin\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2016-08-29]
FF HKLM-x32\...\Firefox\Extensions: [firefox@bho.com] - C:\Program Files\Hewlett-Packard\SimplePass\FFBHOExt => not found
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [fidikogfgleiaefnjbmnjaplmgknppkg] - hxxps://clients2.google.com/service/update2/crx
Opera:
=======
OPR StartupUrls: "hxxp://www.idnes.cz/","hxxp://s7.cz.battleknig ... seznam.cz/"
OPR Extension: (Přeložit) - C:\Users\saxin\AppData\Roaming\Opera Software\Opera Stable\Extensions\ibnombjmjocaccigcefonnipcnlaeaed [2015-09-26]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [29728 2016-08-15] (HP Inc.)
R2 HPWMISVC; C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [606224 2015-09-03] (Hewlett-Packard Development Company, L.P.)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [319096 2016-09-04] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-01] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [822232 2013-07-01] (Intel(R) Corporation)
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [3046688 2016-07-29] (IObit)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [303360 2015-07-03] (Realtek Semiconductor)
R2 ST2012_Svc; C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe [3269864 2016-04-09] (Crawler Group, LLC)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [252008 2016-09-04] (Synaptics Incorporated)
S3 vmicvss; C:\Windows\System32\ICSvc.dll [511488 2015-10-30] (Microsoft Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2016-07-01] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91712 2013-03-05] (CyberLink)
S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows (R) Win 7 DDK provider)
R3 GPIO; C:\Windows\System32\drivers\iaiogpioe.sys [42416 2016-09-04] (Intel Corporation)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-04-04] (REALiX(tm))
S3 iscFlash; C:\Program Files (x86)\sp70262\iscflashx64.sys [66760 2014-07-22] (Insyde Software)
S3 IT9135BDA; C:\Windows\System32\Drivers\IT9135BDA.sys [165504 2015-07-15] (ITE )
R0 MBI; C:\Windows\System32\drivers\MBI.sys [39944 2016-09-04] (Intel Corporation)
S3 MiraDispKmd; C:\Windows\System32\drivers\MiraDispKmd.sys [23552 2015-10-30] (Microsoft Corporation)
R3 netr28x; C:\Windows\system32\DRIVERS\netr28x.sys [2554528 2015-06-12] (MediaTek Inc.)
R3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [328920 2016-09-04] (Realtek Semiconductor Corp.)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [936192 2016-09-04] (Realtek )
R3 rtbth; C:\Windows\System32\drivers\rtbth.sys [1219200 2015-06-03] (Ralink Technology, Corp.)
S3 SMBDATuner; C:\Windows\System32\Drivers\SMBDATuner24.sys [71296 2008-07-03] (Windows (R) Codename Longhorn DDK provider) [File not signed]
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [29936 2013-12-13] (Synaptics Incorporated)
S3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [42696 2015-07-17] (Synaptics Incorporated)
S3 SMIGrabber3C; C:\Windows\System32\Drivers\SmiUsbGrabber3C.sys [827040 2013-09-14] (Windows (R) Win 7 DDK provider)
S2 sp_rsdrv2; C:\Windows\System32\DRIVERS\stflt.sys [51496 2011-08-24] (Windows (R) Win 7 DDK provider)
R3 TXEIx64; C:\Windows\System32\drivers\TXEIx64.sys [146200 2016-09-04] (Intel Corporation)
S1 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [117768 2015-09-08] (Oracle Corporation)
S1 VBoxNetLwf; C:\Windows\system32\DRIVERS\VBoxNetLwf.sys [146072 2015-09-08] (Oracle Corporation)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
S3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [30544 2016-09-04] (HP)
R3 WirelessButtonDriver64; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [30544 2016-09-04] (HP)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-09-14 19:23 - 2016-09-14 19:25 - 00019369 _____ C:\Users\saxin\Desktop\FRST.txt
2016-09-13 21:31 - 2016-09-14 15:00 - 00000000 ___HD C:\$WINDOWS.~BT
2016-09-13 19:42 - 2016-09-13 19:45 - 03826240 _____ C:\Users\saxin\Desktop\adwcleaner_6.010.exe
2016-09-13 19:23 - 2016-09-13 19:24 - 00000000 ____D C:\Users\saxin\AppData\Roaming\CStart8
2016-09-13 19:23 - 2016-09-13 19:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Start 8
2016-09-13 19:21 - 2016-09-13 19:23 - 00000000 ____D C:\Program Files (x86)\CStart8
2016-09-13 19:17 - 2016-09-13 19:34 - 00000000 ____D C:\ProgramData\Spyware Terminator
2016-09-13 19:17 - 2016-09-13 19:17 - 00001132 _____ C:\Users\Public\Desktop\Spyware Terminator 2015.lnk
2016-09-13 19:17 - 2016-09-13 19:17 - 00000000 ____D C:\Users\saxin\AppData\Roaming\Spyware Terminator
2016-09-13 19:17 - 2016-09-13 19:17 - 00000000 ____D C:\Users\saxin\AppData\LocalLow\Spyware Terminator
2016-09-13 19:17 - 2016-09-13 19:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spyware Terminator 2015
2016-09-13 19:15 - 2016-09-13 19:18 - 00000000 ____D C:\Program Files (x86)\Spyware Terminator
2016-09-13 17:37 - 2016-09-14 18:30 - 00075454 _____ C:\Windows\ntbtlog.txt
2016-09-13 16:18 - 2016-09-13 16:29 - 00068918 _____ C:\Users\saxin\Desktop\FRST 1.txt
2016-09-13 16:17 - 2016-09-14 19:23 - 00000000 ____D C:\FRST
2016-09-13 16:17 - 2016-09-13 16:17 - 00029696 _____ C:\Users\saxin\AppData\Local\MSGBOX.EXE
2016-09-13 16:17 - 2016-09-13 16:17 - 00015327 _____ C:\Users\saxin\Desktop\LM.bat
2016-09-13 16:16 - 2016-09-13 16:16 - 00112640 _____ (forum.viry.cz) C:\Users\saxin\Desktop\FRSTLauncher.exe
2016-09-13 16:15 - 2016-09-13 16:15 - 02398720 _____ (Farbar) C:\Users\saxin\Desktop\FRST64.exe
2016-09-13 16:02 - 2016-09-13 16:02 - 00002852 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2016-09-13 16:01 - 2016-09-13 16:01 - 00000872 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-09-13 16:01 - 2016-09-13 16:01 - 00000000 ____D C:\Program Files\CCleaner
2016-09-13 15:55 - 2016-09-13 15:55 - 00452882 _____ C:\Users\saxin\Desktop\SysInspector-PETRŮV-160913-1526.zip
2016-09-13 04:43 - 2016-09-13 04:43 - 00446998 _____ C:\Users\saxin\Desktop\SysInspector-PETRŮV-160912-2111.zip
2016-09-12 20:20 - 2016-09-12 20:22 - 04008760 _____ (ESET) C:\Users\saxin\Desktop\SysInspector.exe
2016-09-11 14:46 - 2016-09-11 14:48 - 06760064 _____ (ESET spol. s r.o.) C:\Users\saxin\Desktop\ESETOnlineScanner_CSY.exe
2016-09-11 11:34 - 2016-09-11 11:34 - 03505424 _____ (Hewlett-Packard Company ) C:\Users\saxin\Desktop\sp73248.exe
2016-09-11 11:32 - 2016-09-11 11:32 - 00000270 __RSH C:\ProgramData\ntuser.pol
2016-09-11 10:41 - 2016-09-11 10:42 - 05737808 ____N (Microsoft Corporation) C:\Users\saxin\Desktop\Windows10Upgrade9252.exe
2016-09-10 08:51 - 2016-09-10 08:51 - 00221852 _____ C:\Users\saxin\Downloads\SCC_1005702038_20160518_000890 (1).PDF
2016-09-10 08:51 - 2016-09-10 08:51 - 00203954 _____ C:\Users\saxin\Downloads\SCC_1005702038_20160418_000940 (1).PDF
2016-09-10 08:50 - 2016-09-10 08:51 - 00213150 _____ C:\Users\saxin\Downloads\SCC_1005702038_20160618_000826 (1).PDF
2016-09-09 10:37 - 2016-09-09 10:37 - 00000000 __SHD C:\found.004
2016-09-08 23:26 - 2016-09-13 21:30 - 00000036 _____ C:\Windows\progress.ini
2016-09-08 22:38 - 2016-09-14 01:22 - 00000000 ____D C:\Windows10Upgrade
2016-09-08 22:38 - 2016-09-11 10:43 - 00000758 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pomocník při upgradu na Windows 10.lnk
2016-09-08 22:38 - 2016-09-11 10:43 - 00000746 _____ C:\Users\saxin\Desktop\Pomocník při upgradu na Windows 10.lnk
2016-09-08 22:36 - 2016-09-08 22:37 - 05737808 _____ (Microsoft Corporation) C:\Users\saxin\Desktop\Windows10Upgrade28084.exe
2016-09-08 11:23 - 2016-09-08 11:23 - 00000000 ____D C:\Windows\LastGood
2016-09-08 11:22 - 2016-09-08 11:22 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2016-09-08 09:04 - 2016-09-08 09:04 - 00221852 _____ C:\Users\saxin\Downloads\SCC_1005702038_20160518_000890.PDF
2016-09-08 09:04 - 2016-09-08 09:04 - 00203954 _____ C:\Users\saxin\Downloads\SCC_1005702038_20160418_000940.PDF
2016-09-08 09:03 - 2016-09-08 09:03 - 00213150 _____ C:\Users\saxin\Downloads\SCC_1005702038_20160618_000826.PDF
2016-09-08 08:31 - 2016-09-08 08:31 - 00003952 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1472986071
2016-09-07 23:03 - 2016-09-14 19:23 - 00000000 ____D C:\Users\saxin\Documents\Soubory aplikace Outlook
2016-09-06 08:57 - 2016-09-08 12:36 - 00000000 ___HD C:\$SysReset
2016-09-05 07:55 - 2016-09-05 07:55 - 00000451 _____ C:\Windows\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2016-09-05 07:54 - 2016-09-12 14:51 - 00360136 _____ C:\Windows\system32\FNTCACHE.DAT
2016-09-04 21:51 - 2016-09-04 21:51 - 01795952 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll
2016-09-04 21:51 - 2016-09-04 21:51 - 00861288 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\SynTP.sys
2016-09-04 21:51 - 2016-09-04 21:51 - 00798312 _____ (Synaptics Incorporated) C:\Windows\system32\SynCOM.dll
2016-09-04 21:51 - 2016-09-04 21:51 - 00426600 _____ (Synaptics Incorporated) C:\Windows\SysWOW64\SynCom.dll
2016-09-04 21:51 - 2016-09-04 21:51 - 00279656 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPCo41-1.dll
2016-09-04 21:51 - 2016-09-04 21:51 - 00277096 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPAPI.dll
2016-09-04 21:51 - 2016-09-04 21:51 - 00062568 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\Smb_driver_Intel_Aux.sys
2016-09-04 21:51 - 2016-09-04 21:51 - 00058984 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\Smb_driver_AMDASF_Aux.sys
2016-09-04 21:51 - 2016-09-04 21:51 - 00057448 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\SynRMIHID_Aux.sys
2016-09-04 21:46 - 2016-09-04 21:46 - 00936192 _____ (Realtek ) C:\Windows\system32\Drivers\rt640x64.sys
2016-09-04 21:46 - 2016-09-04 21:46 - 00082544 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2016-09-04 21:45 - 2016-09-04 21:45 - 09890008 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RsCRIcon.dll
2016-09-04 21:45 - 2016-09-04 21:45 - 04330200 _____ (TODO: <Company name>) C:\Windows\RtCRU64.exe
2016-09-04 21:45 - 2016-09-04 21:45 - 00328920 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RtsP2Stor.sys
2016-09-04 21:45 - 2016-09-04 21:45 - 00083160 _____ (Realtek Semiconductor.) C:\Windows\system32\RtCRX64.dll
2016-09-04 21:44 - 2016-09-04 21:44 - 00146200 _____ (Intel Corporation) C:\Windows\system32\Drivers\TXEIx64.sys
2016-09-04 21:43 - 2016-09-04 21:43 - 00039944 _____ (Intel Corporation) C:\Windows\system32\Drivers\MBI.sys
2016-09-04 21:29 - 2016-09-04 21:29 - 06258688 _____ C:\Windows\system32\config\drivers.iobit
2016-09-04 21:29 - 2016-09-04 21:29 - 00372736 _____ C:\Windows\system32\config\default.iobit
2016-09-04 21:29 - 2016-09-04 21:29 - 00028672 _____ C:\Windows\system32\config\security.iobit
2016-09-04 21:29 - 2016-09-04 21:29 - 00028672 _____ C:\Windows\system32\config\sam.iobit
2016-09-04 21:28 - 2016-09-04 21:29 - 164978688 _____ C:\Windows\system32\config\software.iobit
2016-09-04 21:20 - 2016-09-04 21:20 - 22905344 _____ (Intel Corporation) C:\Windows\system32\igdfcl64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 17837568 _____ (Intel Corporation) C:\Windows\SysWOW64\igdfcl32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 12211184 _____ (Intel Corporation) C:\Windows\system32\igd10iumd64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 11783680 _____ (Intel Corporation) C:\Windows\SysWOW64\igd10iumd32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 10946840 _____ (Intel Corporation) C:\Windows\system32\igdumdim64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 10474040 _____ (Intel Corporation) C:\Windows\SysWOW64\igdumdim32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 08513536 _____ (Intel Corporation) C:\Windows\system32\ig7icd64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 06500352 _____ (Intel Corporation) C:\Windows\SysWOW64\ig7icd32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 04611816 _____ (Intel Corporation) C:\Windows\system32\igdusc64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 04382840 _____ (Intel Corporation) C:\Windows\system32\Gfxv4_0.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 04379256 _____ (Intel Corporation) C:\Windows\system32\Gfxv2_0.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 04015576 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiAAC64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 03793872 _____ (Intel Corporation) C:\Windows\system32\Drivers\igdkmd64.sys
2016-09-04 21:20 - 2016-09-04 21:20 - 03650832 _____ (Intel Corporation) C:\Windows\SysWOW64\igdusc32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 02497568 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiVAD64.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 02027008 _____ (Intel Corporation) C:\Windows\system32\igfxcmjit64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 01986560 _____ (Intel Corporation) C:\Windows\system32\igdrcl64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 01785856 _____ (Intel Corporation) C:\Windows\SysWOW64\igdrcl32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 01758208 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmjit32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 01461208 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiSecureSourceFilter64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 01137120 _____ (Intel Corporation) C:\Windows\system32\iglhsip64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 01133000 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhsip32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00959608 _____ (Intel Corporation) C:\Windows\system32\GfxUIEx.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 00863704 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiWinNextAgent64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00672256 _____ (Intel Corporation) C:\Windows\system32\igfxDH.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00650712 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiAudioFilter64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00609280 _____ (Intel Corporation) C:\Windows\system32\MetroIntelGenericUIFramework.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00608216 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiMux64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00545912 _____ (Intel Corporation) C:\Windows\system32\DPTopologyApp.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 00545400 _____ (Intel Corporation) C:\Windows\system32\DPTopologyAppv2_0.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 00530552 _____ (Intel Corporation) C:\Windows\system32\igfxEM.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 00454760 _____ (Intel Corporation) C:\Windows\system32\igdmd64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00433784 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiUMS64.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 00399992 _____ (Intel Corporation) C:\Windows\system32\CustomModeApp.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 00399480 _____ (Intel Corporation) C:\Windows\system32\CustomModeAppv2_0.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 00376832 _____ (Intel Corporation) C:\Windows\system32\IntelOpenCL64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00372856 _____ (Intel Corporation) C:\Windows\system32\igfxTray.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 00371712 _____ (Intel Corporation) C:\Windows\system32\igfxOSP.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00366680 _____ (Intel Corporation) C:\Windows\SysWOW64\igdmd32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00366080 _____ (Intel Corporation) C:\Windows\system32\igdbcl64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00349144 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiSilenceFilter64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00321536 _____ (Intel Corporation) C:\Windows\SysWOW64\igdbcl32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00319096 _____ (Intel Corporation) C:\Windows\system32\igfxCUIService.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 00286720 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelOpenCL32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00284672 _____ (Intel Corporation) C:\Windows\system32\igfxDI.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00280696 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 00255488 _____ C:\Windows\system32\igfxCPL.cpl
2016-09-04 21:20 - 2016-09-04 21:20 - 00252416 _____ (Intel Corporation) C:\Windows\system32\igfxLHM.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00247416 _____ (Intel Corporation) C:\Windows\system32\igfxHK.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 00221184 _____ C:\Windows\system32\igdde64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00218848 _____ (Intel Corporation) C:\Windows\system32\iglhcp64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00215000 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiUtils64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00209408 _____ (Intel Corporation) C:\Windows\system32\igfxDTCM.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00195192 _____ (Intel Corporation) C:\Windows\system32\igfxext.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 00191476 _____ C:\Windows\system32\resTHA.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00190464 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v4425.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00188496 _____ (Intel Corporation) C:\Windows\system32\igfxcmrt64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00184832 _____ (Intel Corporation) C:\Windows\system32\igfx11cmrt64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00184036 _____ C:\Windows\system32\resELL.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00183840 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhcp32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00182784 _____ C:\Windows\SysWOW64\igdde32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00182232 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiDDEAgent64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00179828 _____ C:\Windows\system32\resRUS.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00165460 _____ C:\Windows\system32\resARA.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00164948 _____ C:\Windows\system32\resJPN.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00164884 _____ C:\Windows\system32\resHEB.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00162304 _____ C:\Windows\system32\igdail64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00160260 _____ C:\Windows\system32\resHUN.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00160196 _____ C:\Windows\system32\resFRA.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00159096 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmrt32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00158532 _____ C:\Windows\system32\resKOR.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00158388 _____ C:\Windows\system32\resDEU.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00158356 _____ C:\Windows\system32\resITA.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00158148 _____ C:\Windows\system32\resROM.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00158052 _____ C:\Windows\system32\resESN.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00157652 _____ C:\Windows\system32\resPLK.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00157492 _____ C:\Windows\system32\resSKY.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00157332 _____ C:\Windows\system32\resNLD.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00156708 _____ C:\Windows\system32\resPTB.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00156628 _____ C:\Windows\system32\resCSY.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00156596 _____ C:\Windows\system32\resTRK.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00156420 _____ C:\Windows\system32\resPTG.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00156280 _____ (Intel Corporation) C:\Windows\system32\difx64.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 00155972 _____ C:\Windows\system32\resFIN.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00155540 _____ C:\Windows\system32\resHRV.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00155136 _____ (Intel Corporation) C:\Windows\SysWOW64\igfx11cmrt32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00155124 _____ C:\Windows\system32\resSVE.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00154964 _____ C:\Windows\system32\resSLV.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00154004 _____ C:\Windows\system32\resNOR.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00153508 _____ C:\Windows\system32\resDAN.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00152164 _____ C:\Windows\system32\resENU.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00150404 _____ C:\Windows\system32\resCHT.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00149524 _____ C:\Windows\system32\resCHS.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00143872 _____ C:\Windows\SysWOW64\igdail32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00133080 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiMCUMD64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00098776 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiLogServer64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00094208 _____ C:\Windows\system32\IccLibDll_x64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00086528 _____ C:\Windows\system32\igfxCUIServicePS.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00069632 _____ ( ) C:\Windows\system32\igfxDHLibv2_0.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00064000 _____ (Khronos Group) C:\Windows\system32\Intel_OpenCL_ICD64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00060416 _____ (Khronos Group) C:\Windows\SysWOW64\Intel_OpenCL_ICD32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00059904 _____ ( ) C:\Windows\system32\igfxDHLib.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00031448 _____ (Intel Corporation) C:\Windows\system32\igfxexps.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00030720 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxexps32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00010752 _____ ( ) C:\Windows\system32\igfxDILibv2_0.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00010752 _____ ( ) C:\Windows\system32\igfxDILib.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00010240 _____ ( ) C:\Windows\system32\igfxEMLibv2_0.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00010240 _____ ( ) C:\Windows\system32\igfxEMLib.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00005120 _____ ( ) C:\Windows\system32\igfxLHMLibv2_0.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00005120 _____ ( ) C:\Windows\system32\igfxLHMLib.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00002582 _____ C:\Windows\system32\iglhxs64.vp
2016-09-04 21:15 - 2016-09-04 21:54 - 00000000 ____D C:\Windows\LastGood.Tmp
2016-09-04 21:14 - 2016-09-04 21:14 - 00459536 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\SET7D89.tmp
2016-09-04 21:14 - 2016-09-04 21:14 - 00459536 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcDAud.sys
2016-09-04 21:13 - 2016-09-04 21:13 - 00030544 _____ (HP) C:\Windows\system32\Drivers\WirelessButtonDriver64.sys
2016-09-04 20:49 - 2016-09-04 20:49 - 00042416 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaiogpioe.sys
2016-09-04 20:44 - 2016-09-04 20:44 - 00000000 ____D C:\ProgramData\{FD6F83C0-EC70-4581-8361-C70CD1AA4B98}
2016-09-04 20:44 - 2016-03-25 14:33 - 00128288 _____ (IObit) C:\Windows\system32\IObitSmartDefragExtension.dll
2016-09-04 20:43 - 2016-09-04 20:43 - 00000000 ____D C:\Windows\IObit
2016-09-04 20:37 - 2016-09-04 20:37 - 00000000 ____D C:\ProgramData\{BE2ACE5C-32B7-4777-9BDF-ECF87CDAB705}
2016-09-04 20:25 - 2016-09-04 20:25 - 00002572 _____ C:\Windows\System32\Tasks\GlaryInitialize 5
2016-09-04 20:25 - 2016-09-04 20:25 - 00002548 _____ C:\Windows\System32\Tasks\YCMServiceAgent
2016-09-04 19:57 - 2016-09-04 20:39 - 00000000 ____D C:\ProgramData\360Quarant
2016-09-04 19:56 - 2016-09-04 20:25 - 00000000 ____D C:\Windows\Tasks\360Disabled
2016-09-04 19:54 - 2016-09-01 13:43 - 00095232 _____ (360.cn) C:\Windows\SysWOW64\Drivers\360AvFlt.sys
2016-09-04 19:50 - 2016-09-05 07:55 - 00000000 ____D C:\Program Files (x86)\360
2016-09-04 15:20 - 2016-09-04 15:20 - 00372736 _____ C:\Windows\system32\config\default.gu
2016-09-04 15:20 - 2016-09-04 15:20 - 00057344 _____ C:\Windows\system32\config\system.gu
2016-09-04 15:20 - 2016-09-04 15:20 - 00028672 _____ C:\Windows\system32\config\security.gu
2016-09-04 15:20 - 2016-09-04 15:20 - 00028672 _____ C:\Windows\system32\config\sam.gu
2016-09-04 15:19 - 2016-08-05 09:37 - 00035792 _____ (Glarysoft Ltd) C:\Windows\system32\RegBootDefrag.exe
2016-09-04 12:47 - 2016-09-04 12:47 - 00001211 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera 39.lnk
2016-09-04 12:46 - 2016-09-09 14:36 - 00000000 ____D C:\Program Files (x86)\Opera
2016-09-02 12:58 - 2016-09-02 12:58 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-09-01 18:22 - 2015-03-09 12:26 - 00019768 _____ (NETGATE Technologies s.r.o.) C:\Windows\system32\Drivers\spyemrg_guard.sys
2016-09-01 18:22 - 2011-04-21 11:31 - 00017240 _____ (NETGATE Technologies s.r.o.) C:\Windows\system32\Drivers\spyemrg.sys
2016-08-29 15:52 - 2016-08-29 15:52 - 00000000 ____D C:\Program Files (x86)\Tweaking.com
2016-08-28 11:34 - 2016-08-29 19:47 - 00000000 ____D C:\Program Files (x86)\DLL Suite
2016-08-28 11:14 - 2016-09-01 13:21 - 00000000 ____D C:\ProgramData\tmp
2016-08-28 11:14 - 2016-08-28 11:14 - 00000000 ____D C:\ProgramData\hps
2016-08-28 10:11 - 2016-09-06 10:04 - 00000000 ____D C:\Program Files\Teta CEWE fotosvet
2016-08-20 20:54 - 2016-09-04 15:20 - 165150720 _____ C:\Windows\system32\config\software.gu.bak
2016-08-20 20:54 - 2016-09-04 15:20 - 15466496 _____ C:\Windows\system32\config\system.gu.bak
2016-08-20 19:59 - 2015-07-01 12:55 - 00001608 _____ C:\Windows\SysWOW64\optskcpl.xml
2016-08-20 19:59 - 2015-06-24 16:31 - 00002986 _____ C:\Windows\SysWOW64\Start_SimplePass.xml
2016-08-20 19:59 - 2015-06-24 16:31 - 00002924 _____ C:\Windows\SysWOW64\Start_OPBHOBrokerDesktop.xml
2016-08-20 19:59 - 2015-06-24 16:31 - 00002912 _____ C:\Windows\SysWOW64\Start_OPBHOBroker.xml
2016-08-20 18:02 - 2016-08-20 18:02 - 00000000 __SHD C:\found.003
2016-08-19 23:44 - 2016-09-11 10:05 - 00000000 ____D C:\ProgramData\Glarysoft
2016-08-19 23:44 - 2016-09-11 10:03 - 00000000 ____D C:\Program Files (x86)\Glarysoft
2016-08-19 23:43 - 2016-08-19 23:43 - 00000537 _____ C:\GUDownLoaddebug.txt
2016-08-19 23:42 - 2016-09-11 10:05 - 00000000 ____D C:\Users\saxin\AppData\Roaming\GlarySoft
2016-08-19 23:42 - 2016-08-19 23:42 - 00000000 ____D C:\Users\saxin\AppData\Roaming\DiskDefrag
2016-08-18 23:15 - 2016-08-03 11:44 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2016-08-18 23:15 - 2016-08-03 11:40 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
2016-08-18 23:15 - 2016-08-03 11:30 - 00515072 _____ (Microsoft Corporation) C:\Windows\system32\OneDriveSettingSyncProvider.dll
2016-08-18 23:15 - 2016-08-03 06:44 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryClient.dll
2016-08-18 23:15 - 2016-08-03 06:44 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryBroker.dll
2016-08-18 23:14 - 2016-08-03 12:21 - 00566112 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe
2016-08-18 23:14 - 2016-08-03 11:51 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2016-08-18 23:14 - 2016-08-03 06:19 - 02180096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepository.dll
2016-08-18 23:13 - 2016-08-03 12:22 - 00808288 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2016-08-18 23:13 - 2016-08-03 12:19 - 00604928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2016-08-18 23:13 - 2016-08-03 12:19 - 00161632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-08-18 23:13 - 2016-08-03 11:41 - 00128512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthpan.sys
2016-08-18 23:13 - 2016-08-03 11:41 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthenum.sys
2016-08-18 23:13 - 2016-08-03 11:40 - 00181248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rfcomm.sys
2016-08-18 23:13 - 2016-08-03 11:31 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\wevtutil.exe
2016-08-18 23:13 - 2016-08-03 11:29 - 14252544 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-08-18 23:13 - 2016-08-03 11:29 - 00954368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2016-08-18 23:13 - 2016-08-03 11:29 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2016-08-18 23:13 - 2016-08-03 11:18 - 06974464 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2016-08-18 23:13 - 2016-08-03 11:18 - 01388032 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-08-18 23:13 - 2016-08-03 11:16 - 05123072 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll
2016-08-18 23:13 - 2016-08-03 11:11 - 04171264 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2016-08-18 23:13 - 2016-08-03 07:52 - 00034088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wldp.dll
2016-08-18 23:13 - 2016-08-03 07:34 - 00501592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupEngine.dll
2016-08-18 23:13 - 2016-08-03 07:34 - 00084832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupApi.dll
2016-08-18 23:13 - 2016-08-03 07:33 - 00051128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsNativeApi.dll
2016-08-18 23:13 - 2016-08-03 06:32 - 12585984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2016-08-18 23:13 - 2016-08-03 06:25 - 04078080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbgeng.dll
2016-08-18 23:12 - 2016-08-03 12:36 - 00099680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2016-08-18 23:12 - 2016-08-03 12:30 - 00026408 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-08-18 23:12 - 2016-08-03 12:23 - 00693600 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupEngine.dll
2016-08-18 23:12 - 2016-08-03 12:23 - 00115040 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupApi.dll
2016-08-18 23:12 - 2016-08-03 12:22 - 00465248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2016-08-18 23:12 - 2016-08-03 12:22 - 00331616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2016-08-18 23:12 - 2016-08-03 12:21 - 03675512 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-08-18 23:12 - 2016-08-03 12:20 - 01540224 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2016-08-18 23:12 - 2016-08-03 12:20 - 00692136 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll
2016-08-18 23:12 - 2016-08-03 12:13 - 01988448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2016-08-18 23:12 - 2016-08-03 12:13 - 00576864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2016-08-18 23:12 - 2016-08-03 12:13 - 00393056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2016-08-18 23:12 - 2016-08-03 11:44 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\musdialoghandlers.dll
2016-08-18 23:12 - 2016-08-03 11:43 - 16985088 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2016-08-18 23:12 - 2016-08-03 11:40 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\TpmTasks.dll
2016-08-18 23:12 - 2016-08-03 11:39 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2016-08-18 23:12 - 2016-08-03 11:38 - 00379392 _____ (Microsoft Corporation) C:\Windows\system32\usocore.dll
2016-08-18 23:12 - 2016-08-03 11:36 - 00211456 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupSvc.dll
2016-08-18 23:12 - 2016-08-03 11:36 - 00198144 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-08-18 23:12 - 2016-08-03 11:35 - 00200192 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2016-08-18 23:12 - 2016-08-03 11:29 - 01500160 _____ (Microsoft Corporation) C:\Windows\system32\RecoveryDrive.exe
2016-08-18 23:12 - 2016-08-03 11:29 - 01387520 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2016-08-18 23:12 - 2016-08-03 11:28 - 01213440 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2016-08-18 23:12 - 2016-08-03 11:28 - 00848896 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-08-18 23:12 - 2016-08-03 11:27 - 07536640 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2016-08-18 23:12 - 2016-08-03 11:27 - 01717760 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2016-08-18 23:12 - 2016-08-03 11:16 - 03589120 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2016-08-18 23:12 - 2016-08-03 11:16 - 01732096 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-08-18 23:12 - 2016-08-03 11:14 - 01997824 _____ (Microsoft Corporation) C:\Windows\system32\ActiveSyncProvider.dll
2016-08-18 23:12 - 2016-08-03 11:13 - 03025920 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-08-18 23:12 - 2016-08-03 11:13 - 02280960 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-08-18 23:12 - 2016-08-03 07:31 - 02921368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-08-18 23:12 - 2016-08-03 07:31 - 00957608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2016-08-18 23:12 - 2016-08-03 07:31 - 00703840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
2016-08-18 23:12 - 2016-08-03 06:57 - 00091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdlrecover.exe
2016-08-18 23:12 - 2016-08-03 06:48 - 00051712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshbth.dll
2016-08-18 23:12 - 2016-08-03 06:47 - 13018112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2016-08-18 23:12 - 2016-08-03 06:42 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BluetoothApis.dll
2016-08-18 23:12 - 2016-08-03 06:37 - 00219136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VEEventDispatcher.dll
2016-08-18 23:12 - 2016-08-03 06:35 - 00178688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wevtutil.exe
2016-08-18 23:12 - 2016-08-03 06:34 - 00792064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-08-18 23:12 - 2016-08-03 06:32 - 00434688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LogonController.dll
2016-08-18 23:12 - 2016-08-03 06:31 - 06743040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2016-08-18 23:12 - 2016-08-03 06:31 - 00705536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2016-08-18 23:11 - 2016-08-03 11:44 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\wshbth.dll
2016-08-18 23:11 - 2016-08-03 11:39 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\BluetoothApis.dll
2016-08-18 23:10 - 2016-08-03 13:14 - 01505984 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-08-18 23:10 - 2016-08-03 13:14 - 00092352 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-08-18 23:10 - 2016-08-03 13:14 - 00050368 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-08-18 23:10 - 2016-08-03 12:36 - 07469408 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-08-18 23:10 - 2016-08-03 12:36 - 00037744 _____ (Microsoft Corporation) C:\Windows\system32\wldp.dll
2016-08-18 23:10 - 2016-08-03 12:21 - 00303216 _____ (Microsoft Corporation) C:\Windows\system32\LockAppHost.exe
2016-08-18 23:10 - 2016-08-03 11:51 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\tdlrecover.exe
2016-08-18 23:10 - 2016-08-03 11:41 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryClient.dll
2016-08-18 23:10 - 2016-08-03 11:41 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryBroker.dll
2016-08-18 23:10 - 2016-08-03 11:40 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\VEDataLayerHelpers.dll
2016-08-18 23:10 - 2016-08-03 11:37 - 00110080 _____ (Microsoft Corporation) C:\Windows\system32\IdCtrls.dll
2016-08-18 23:10 - 2016-08-03 11:33 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\VEEventDispatcher.dll
2016-08-18 23:10 - 2016-08-03 11:31 - 00506880 _____ (Microsoft Corporation) C:\Windows\system32\tileobjserver.dll
2016-08-18 23:10 - 2016-08-03 11:29 - 00784384 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-08-18 23:10 - 2016-08-03 11:18 - 02067968 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2016-08-18 23:10 - 2016-08-03 11:17 - 02175488 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2016-08-18 23:10 - 2016-08-03 11:16 - 02635776 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll
2016-08-18 23:10 - 2016-08-03 11:12 - 02746368 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepository.dll
2016-08-18 23:10 - 2016-08-03 07:30 - 21123320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2016-08-18 23:10 - 2016-08-03 07:30 - 00465760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe
2016-08-18 23:10 - 2016-08-03 07:30 - 00255168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockAppHost.exe
2016-08-18 23:10 - 2016-08-03 06:40 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IdCtrls.dll
2016-08-18 23:10 - 2016-08-03 06:39 - 19351040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-08-18 23:10 - 2016-08-03 06:34 - 00400896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneDriveSettingSyncProvider.dll
2016-08-18 23:10 - 2016-08-03 06:33 - 18677760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2016-08-18 23:10 - 2016-08-03 06:33 - 02050048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-08-18 23:10 - 2016-08-03 06:33 - 00687616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-08-18 23:10 - 2016-08-03 06:32 - 01467392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2016-08-18 23:10 - 2016-08-03 06:28 - 03663360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-08-18 23:10 - 2016-08-03 06:25 - 05323776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2016-08-18 23:10 - 2016-08-03 06:23 - 05660672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2016-08-18 23:10 - 2016-08-03 06:23 - 01799680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Logon.dll
2016-08-18 23:10 - 2016-08-03 06:22 - 02501120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-08-18 23:10 - 2016-08-03 06:22 - 01502208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-08-18 23:10 - 2016-08-03 06:21 - 01708032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActiveSyncProvider.dll
2016-08-18 23:09 - 2016-08-03 12:22 - 01322760 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2016-08-18 23:09 - 2016-08-03 12:22 - 00058408 _____ (Microsoft Corporation) C:\Windows\system32\SensorsNativeApi.dll
2016-08-18 23:09 - 2016-08-03 12:21 - 22561256 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-08-18 23:09 - 2016-08-03 12:11 - 00422744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2016-08-18 23:09 - 2016-08-03 11:46 - 22384128 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2016-08-18 23:09 - 2016-08-03 11:40 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\bthserv.dll
2016-08-18 23:09 - 2016-08-03 11:38 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2016-08-18 23:09 - 2016-08-03 11:36 - 00221696 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-08-18 23:09 - 2016-08-03 11:35 - 00764928 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2016-08-18 23:09 - 2016-08-03 11:34 - 00383488 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-08-18 23:09 - 2016-08-03 11:33 - 00339968 _____ (Microsoft Corporation) C:\Windows\system32\SensorService.dll
2016-08-18 23:09 - 2016-08-03 11:31 - 00359936 _____ (Microsoft Corporation) C:\Windows\system32\SensorsApi.dll
2016-08-18 23:09 - 2016-08-03 11:30 - 24613888 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-08-18 23:09 - 2016-08-03 11:30 - 00970752 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-08-18 23:09 - 2016-08-03 11:29 - 02127360 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-08-18 23:09 - 2016-08-03 11:28 - 00529920 _____ (Microsoft Corporation) C:\Windows\system32\LogonController.dll
2016-08-18 23:09 - 2016-08-03 11:27 - 01752576 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-08-18 23:09 - 2016-08-03 11:27 - 00381952 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2016-08-18 23:09 - 2016-08-03 11:20 - 13390336 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-08-18 23:09 - 2016-08-03 11:15 - 07833088 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2016-08-18 23:09 - 2016-08-03 11:14 - 04895232 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-08-18 23:09 - 2016-08-03 06:37 - 00335872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-08-18 23:09 - 2016-08-03 06:35 - 00286208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsApi.dll
2016-08-18 23:09 - 2016-08-03 06:32 - 01526272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-08-18 23:09 - 2016-08-03 06:29 - 12133376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-08-18 20:34 - 2016-08-18 20:34 - 00000000 ___HD C:\_Exception1
2016-08-18 20:33 - 2016-08-18 20:33 - 00000000 ____D C:\Backup_2016-08-18 103348
2016-08-15 11:11 - 2016-09-14 01:21 - 00000000 ___HD C:\$GetCurrent
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-09-14 19:21 - 2014-08-20 14:33 - 00004192 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{353F7DF7-EBE7-4133-BF94-5E9E60EE47E3}
2016-09-14 18:30 - 2015-02-25 09:22 - 00000000 __SHD C:\Users\saxin\IntelGraphicsProfiles
2016-09-14 18:29 - 2015-12-21 11:21 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-09-14 18:29 - 2015-10-30 08:28 - 243269632 ___SH C:\Windows\system32\config\BBI
2016-09-14 18:28 - 2015-10-21 12:44 - 00000000 ____D C:\AdwCleaner
2016-09-14 16:12 - 2015-12-21 10:57 - 01960536 _____ C:\Windows\system32\PerfStringBackup.INI
2016-09-14 16:12 - 2015-10-30 20:31 - 00813554 _____ C:\Windows\system32\perfh005.dat
2016-09-14 16:12 - 2015-10-30 20:31 - 00182950 _____ C:\Windows\system32\perfc005.dat
2016-09-14 16:12 - 2015-10-30 09:21 - 00000000 ____D C:\Windows\INF
2016-09-14 15:25 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\AppReadiness
2016-09-14 15:20 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-09-14 01:21 - 2015-08-08 16:58 - 00001908 _____ C:\Windows\diagwrn.xml
2016-09-14 01:21 - 2015-08-08 16:58 - 00001908 _____ C:\Windows\diagerr.xml
2016-09-14 01:19 - 2015-12-21 10:46 - 00000000 ___DC C:\Windows\Panther
2016-09-14 00:15 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\registration
2016-09-13 16:01 - 2016-07-23 09:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-09-13 15:21 - 2015-04-04 09:30 - 00000000 ____D C:\ProgramData\ProductData
2016-09-13 15:19 - 2015-05-01 11:02 - 00000000 ____D C:\Users\saxin\AppData\Local\ESET
2016-09-12 04:01 - 2014-08-18 16:22 - 00003238 _____ C:\Windows\System32\Tasks\HPCeeScheduleForsaxin
2016-09-12 04:01 - 2014-08-18 16:22 - 00000346 _____ C:\Windows\Tasks\HPCeeScheduleForsaxin.job
2016-09-12 02:04 - 2014-09-27 17:04 - 00000000 ____D C:\Windows\AutoKMS
2016-09-11 14:34 - 2015-01-11 19:42 - 00000000 ____D C:\Program Files (x86)\Hp
2016-09-11 14:21 - 2015-04-14 19:18 - 00003808 _____ C:\Windows\System32\Tasks\AutoKMS
2016-09-11 13:22 - 2015-12-21 10:58 - 00000000 ____D C:\Users\saxin
2016-09-09 17:01 - 2015-10-30 08:28 - 00032768 ___SH C:\Windows\system32\config\ELAM
2016-09-09 14:19 - 2013-08-22 15:25 - 00000234 _____ C:\Windows\win.ini
2016-09-09 13:17 - 2014-08-16 17:33 - 00000000 ____D C:\Users\saxin\AppData\Local\Packages
2016-09-08 11:24 - 2015-12-21 10:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Music, Photos and Videos
2016-09-07 23:28 - 2014-06-19 16:07 - 00000000 ___HD C:\Program Files (x86)\Temp
2016-09-07 23:28 - 2014-06-19 16:05 - 00000000 ____D C:\Program Files (x86)\Realtek
2016-09-07 23:15 - 2015-01-03 19:18 - 00000000 ____D C:\Users\saxin\AppData\Local\Windows Live
2016-09-07 23:14 - 2014-05-04 07:02 - 00000000 ____D C:\Windows\en-GB
2016-09-06 22:45 - 2015-10-03 16:28 - 00000000 ____D C:\Program Files (x86)\IObit
2016-09-06 22:26 - 2014-05-03 21:35 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard
2016-09-06 22:26 - 2013-10-02 23:14 - 00000000 ____D C:\Program Files\Hewlett-Packard
2016-09-06 11:29 - 2014-06-19 16:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2016-09-06 11:27 - 2014-05-03 21:57 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2016-09-06 11:27 - 2014-05-03 21:38 - 00000000 ____D C:\ProgramData\Hewlett-Packard
2016-09-06 10:47 - 2014-05-03 21:56 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-09-06 10:47 - 2014-05-03 21:38 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security and Protection
2016-09-06 09:38 - 2015-04-04 09:29 - 00000000 ____D C:\ProgramData\IObit
2016-09-05 11:48 - 2015-04-04 09:29 - 00000000 ____D C:\Users\saxin\AppData\LocalLow\IObit
2016-09-05 11:02 - 2016-05-02 11:13 - 00000000 ____D C:\Users\saxin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tpv výpočty 4
2016-09-05 11:00 - 2015-07-15 23:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlazeDTV 6.0
2016-09-04 21:45 - 2015-12-21 10:53 - 00000000 ____D C:\Windows\SysWOW64\sda
2016-09-04 21:20 - 2015-12-21 10:53 - 00064000 _____ (Khronos Group) C:\Windows\system32\OpenCL.DLL
2016-09-04 21:20 - 2015-12-21 10:53 - 00060416 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.DLL
2016-09-04 20:44 - 2015-04-04 09:29 - 00000000 ____D C:\Users\saxin\AppData\Roaming\IObit
2016-09-04 20:26 - 2015-11-05 20:42 - 00000000 ____D C:\ProgramData\ClassicShell
2016-09-04 20:26 - 2015-10-01 16:10 - 00000000 ____D C:\Users\saxin\.VirtualBox
2016-09-04 20:26 - 2014-06-19 16:15 - 00000000 ____D C:\ProgramData\Temp
2016-09-04 20:26 - 2014-06-19 16:15 - 00000000 ____D C:\ProgramData\install_clap
2016-09-04 20:25 - 2015-10-03 09:33 - 00000000 ____D C:\Windows\System32\Tasks\Lenovo
2016-09-04 19:56 - 2014-06-19 16:22 - 00002536 _____ C:\Windows\System32\Tasks\CLMLSvc_P2G8
2016-09-04 15:30 - 2014-08-16 17:35 - 00000000 ____D C:\Users\saxin\Documents\Youcam
2016-09-04 12:48 - 2015-04-27 15:31 - 00000000 ____D C:\Users\saxin\AppData\Local\Opera Software
2016-09-03 21:59 - 2014-05-03 21:52 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2016-09-03 20:06 - 2015-12-06 15:40 - 00000000 ____D C:\Program Files\7-Zip
2016-09-02 21:48 - 2016-05-08 16:56 - 00002717 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Word Viewer 2003.lnk
2016-09-02 21:48 - 2015-12-21 11:11 - 00001519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-09-02 21:48 - 2013-10-01 00:49 - 00001602 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Control Zone (Touchpad Clickpad Trackpad Mouse).lnk
2016-09-02 21:39 - 2015-10-05 10:39 - 00000000 ____D C:\Program Files (x86)\MixVideoPlayer
2016-09-01 12:31 - 2015-10-30 09:11 - 00000000 ____D C:\Windows\CbsTemp
2016-09-01 12:30 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\system32\appraiser
2016-08-30 18:35 - 2014-09-03 11:22 - 00000000 ____D C:\Program Files (x86)\Google
2016-08-30 17:02 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\rescache
2016-08-30 15:24 - 2014-08-17 14:58 - 00000000 ___RD C:\Users\saxin\OneDrive
2016-08-30 13:11 - 2014-08-24 14:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint
2016-08-30 13:11 - 2014-08-24 14:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2016-08-30 11:56 - 2015-03-25 19:48 - 00000000 ____D C:\Users\saxin\AppData\Local\Adobe
2016-08-29 19:48 - 2015-12-06 15:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2016-08-29 19:48 - 2015-10-30 20:35 - 00000000 ____D C:\Windows\ShellNew
2016-08-29 19:48 - 2015-10-30 20:35 - 00000000 ____D C:\Program Files\Windows Journal
2016-08-29 19:48 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\L2Schemas
2016-08-29 19:47 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-08-29 19:46 - 2015-09-09 13:08 - 00000000 ____D C:\Users\saxin\AppData\Roaming\Seznam.cz
2016-08-29 19:26 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2016-08-29 19:25 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\system32\Macromed
2016-08-29 19:20 - 2014-08-23 14:56 - 00000000 __RHD C:\MSOCache
2016-08-27 14:32 - 2015-04-16 14:06 - 00000000 ____D C:\Users\saxin\AppData\Local\ElevatedDiagnostics
2016-08-23 16:01 - 2014-08-17 08:33 - 00000000 ____D C:\Users\saxin\AppData\Local\Hewlett-Packard
2016-08-22 17:41 - 2014-04-01 03:07 - 00000000 ____D C:\SWSetup
2016-08-21 11:56 - 2015-01-13 18:11 - 00001200 _____ C:\Users\saxin\Downloads\Stažené soubory – zástupce.lnk
2016-08-20 20:53 - 2015-10-30 08:28 - 00524288 _____ C:\Windows\system32\config\default.gu.bak
2016-08-20 20:06 - 2014-05-03 21:56 - 00000000 ____D C:\Windows\System32\Tasks\Hewlett-Packard
2016-08-20 18:59 - 2014-06-19 16:04 - 00000000 ____D C:\Windows\Hewlett-Packard
2016-08-20 16:57 - 2014-08-16 17:31 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-08-20 16:51 - 2015-10-30 09:24 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2016-08-20 16:40 - 2015-01-11 19:42 - 00000000 ____D C:\Users\saxin\AppData\Roaming\HpUpdate
2016-08-20 14:07 - 2015-03-25 19:45 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2016-08-20 13:56 - 2015-12-24 23:08 - 00000000 ____D C:\Users\saxin\AppData\Local\Vivaldi
2016-08-20 11:16 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\system32\SecureBootUpdates
2016-08-20 11:15 - 2014-08-18 15:33 - 00000000 ____D C:\Windows\system32\MRT
2016-08-20 11:02 - 2014-08-18 15:33 - 147640136 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-08-18 20:28 - 2016-07-24 12:35 - 00000000 _____ C:\Recovery.txt
2016-08-18 09:17 - 2014-09-18 13:09 - 00000000 ____D C:\Windows\pss
2016-08-18 09:16 - 2015-11-03 19:10 - 00000000 ____D C:\Program Files (x86)\SarbyxTrayClock
2016-08-18 09:16 - 2015-10-30 08:28 - 00000000 ____D C:\Windows\system32\Sysprep
2016-08-18 09:16 - 2015-06-05 09:13 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2016-08-18 09:16 - 2015-04-04 10:48 - 00000000 ____D C:\Users\saxin\AppData\Roaming\ProductData
2016-08-18 09:13 - 2016-07-28 12:49 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2016-08-18 08:45 - 2015-07-15 23:33 - 00000000 ____D C:\ProgramData\Aviosoft
2016-08-16 22:48 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\system32\NDF
==================== Files in the root of some directories =======
2015-04-19 14:20 - 2015-09-15 23:30 - 0000626 _____ () C:\Users\saxin\AppData\Roaming\fD0Peh9Ql9bYC6NhSW
2016-09-13 16:17 - 2016-09-13 16:17 - 0029696 _____ () C:\Users\saxin\AppData\Local\MSGBOX.EXE
2014-09-18 13:06 - 2016-07-24 12:23 - 0007611 _____ () C:\Users\saxin\AppData\Local\Resmon.ResmonCfg
2015-01-11 19:53 - 2016-09-06 11:38 - 0005584 _____ () C:\ProgramData\hpzinstall.log
Some files in TEMP:
====================
C:\Users\saxin\AppData\Local\Temp\libeay32.dll
C:\Users\saxin\AppData\Local\Temp\msvcr120.dll
C:\Users\saxin\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-09-06 08:55
==================== End of FRST.txt ============================
Nejde mi ani aktualizovat w10 po stažení aktualizace a restartu pc se aktualizace zastaví na 14%.
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 12-09-2016
Ran by saxin (administrator) on PETRŮV (14-09-2016 19:23:30)
Running from C:\Users\saxin\Desktop
Loaded Profiles: saxin (Available Profiles: saxin)
Platform: Windows 10 Home Version 1511 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Intel(R) Corporation) C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe
(IObit) C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe
(Hewlett-Packard Development Company, L.P.) C:\Program Files (x86)\Hp\HP System Event\HPWMISVC.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Crawler Group, LLC) C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Crawler Group, LLC) C:\Program Files (x86)\Spyware Terminator\SpywareTerminator.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.15.20002.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
(Opera Software) C:\Program Files (x86)\Opera\39.0.2256.71\opera.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8505088 2015-07-03] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-07-03] (Realtek Semiconductor)
HKLM\...\Run: [SpywareTerminatorShield] => C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe [5321448 2016-04-09] (Crawler Group, LLC)
HKLM\...\Run: [SpywareTerminatorUpdater] => C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe [5560040 2016-04-09] (Crawler Group, LLC)
HKLM-x32\...\Run: [HPMessageService] => C:\Program Files (x86)\HP\HP System Event\HPMSGSVC.exe [657424 2015-09-03] (Hewlett-Packard Development Company, L.P.)
HKLM-x32\...\Run: [CStart8] => C:\PROGRAM FILES (X86)\CSTART8\CSTART8TRAY64.EXE [3135816 2015-06-29] (Crawler.com)
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKU\S-1-5-21-981060814-3022172332-2446712976-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8912088 2016-08-26] (Piriform Ltd)
HKU\S-1-5-21-981060814-3022172332-2446712976-1001\...\MountPoints2: {38e4a828-2623-11e5-8401-90489ad651e2} - "F:\start.exe"
HKU\S-1-5-21-981060814-3022172332-2446712976-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\scrnsave.scr [31744 2015-10-30] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => No File
ShellIconOverlayIdentifiers: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => No File
ShellIconOverlayIdentifiers: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => No File
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => No File
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 8.8.8.8
Tcpip\..\Interfaces\{65b2bef0-2701-4f31-97aa-cd9ab6b5818e}: [NameServer] 8.8.4.4,8.8.8.8
Tcpip\..\Interfaces\{65b2bef0-2701-4f31-97aa-cd9ab6b5818e}: [DhcpNameServer] 8.8.8.8
Tcpip\..\Interfaces\{d2bfa7d2-82c5-42fa-a4f9-3c82851e86a4}: [DhcpNameServer] 100.100.22.24
ManualProxies:
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-981060814-3022172332-2446712976-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
HKU\S-1-5-21-981060814-3022172332-2446712976-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.msn.com/
SearchScopes: HKLM -> {2B756B42-DE08-4C1E-BEF6-A5A5B62747BB} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://istart.webssearches.com/web/?type=ds&ts=1408866112&from=wpc&uid=HGSTXHTS545050A7E680_TM8514ZNKV75ARKV75ARX&q={searchTerms}
SearchScopes: HKLM-x32 -> DefaultScope {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKLM-x32 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKLM-x32 -> {2B756B42-DE08-4C1E-BEF6-A5A5B62747BB} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://istart.webssearches.com/web/?type=ds&ts=1408866112&from=wpc&uid=HGSTXHTS545050A7E680_TM8514ZNKV75ARKV75ARX&q={searchTerms}
SearchScopes: HKU\S-1-5-21-981060814-3022172332-2446712976-1001 -> 087637E29CD4CBD545EB82D09BA5BA53 URL = hxxp://www.zbozi.cz/?sourceid=quicksearch_6826&q={searchTerms}
SearchScopes: HKU\S-1-5-21-981060814-3022172332-2446712976-1001 -> 384C2A878BABE74FFEC59EACB6AFDD64 URL = hxxp://www.firmy.cz/phr/{searchTerms}
SearchScopes: HKU\S-1-5-21-981060814-3022172332-2446712976-1001 -> 579715926B82CE235142794482545F9A URL = hxxp://videa.seznam.cz/?q={searchTerms}
SearchScopes: HKU\S-1-5-21-981060814-3022172332-2446712976-1001 -> 91E7CAD87DF391C47003E5B553BBBA52 URL = hxxp://www.mapy.cz/?sourceid=quicksearch_6826& ... earchTerms}
SearchScopes: HKU\S-1-5-21-981060814-3022172332-2446712976-1001 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKU\S-1-5-21-981060814-3022172332-2446712976-1001 -> {2B756B42-DE08-4C1E-BEF6-A5A5B62747BB} URL = hxxp://www.amazon.co.uk/s/ref=azs_osd_ieauk?ie ... earchTerms}
SearchScopes: HKU\S-1-5-21-981060814-3022172332-2446712976-1001 -> {A67A0724-E3DD-449B-A81F-8C2EFCACEB8E} URL = hxxp://www.gsrch.com/#q={searchTerms}
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Spyware Terminator 2015 Internet Guard -> {82A76710-4F98-4957-92BE-99648A4E2475} -> C:\Program Files (x86)\Spyware Terminator\STInternetGuard64.dll [2016-04-09] (Crawler Group, LLC)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: No Name -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> No File
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Spyware Terminator 2015 Internet Guard -> {82A76710-4F98-4957-92BE-99648A4E2475} -> C:\Program Files (x86)\Spyware Terminator\STInternetGuard.dll [2016-04-09] (Crawler Group, LLC)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: No Name -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> No File
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Edge:
======
Edge HomeButtonPage: HKU\S-1-5-21-981060814-3022172332-2446712976-1001 -> hxxp://seznam.cz/
FireFox:
========
FF ProfilePath: C:\Users\saxin\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default
FF DefaultSearchEngine: Seznam
FF SelectedSearchEngine: Google Custom Search
FF Homepage: hxxp://www.gsrch.com/
FF NetworkProxy: "user_pref("network.proxy.type", 5)
FF Keyword.URL: hxxp://www.gsrch.com/#q=
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\Microsoft Office\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\windows\SysWOW64\Adobe\Director\np32dsw_1204144.dll [2013-09-05] (Adobe Systems, Inc.)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\Microsoft Office\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin HKU\S-1-5-21-981060814-3022172332-2446712976-1001: @tools.google.com/Google Update;version=3 -> C:\Users\saxin\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll [No File]
FF Plugin HKU\S-1-5-21-981060814-3022172332-2446712976-1001: @tools.google.com/Google Update;version=9 -> C:\Users\saxin\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll [No File]
FF user.js: detected! => C:\Users\saxin\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\user.js [2015-04-24]
FF SearchPlugin: C:\Users\saxin\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\searchplugins\firmy.cz-102024.xml [2014-10-05]
FF SearchPlugin: C:\Users\saxin\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\searchplugins\googlecustomsearch.xml [2015-09-24]
FF SearchPlugin: C:\Users\saxin\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\searchplugins\mapy.cz-102024.xml [2014-10-05]
FF SearchPlugin: C:\Users\saxin\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\searchplugins\seznam.cz-102024.xml [2014-10-05]
FF SearchPlugin: C:\Users\saxin\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\searchplugins\videa.seznam.cz-102024.xml [2014-10-05]
FF SearchPlugin: C:\Users\saxin\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\searchplugins\zbozi.cz-102024.xml [2014-10-05]
FF Extension: (Seznam lištička) - C:\Users\saxin\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2016-08-29]
FF HKLM-x32\...\Firefox\Extensions: [firefox@bho.com] - C:\Program Files\Hewlett-Packard\SimplePass\FFBHOExt => not found
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [fidikogfgleiaefnjbmnjaplmgknppkg] - hxxps://clients2.google.com/service/update2/crx
Opera:
=======
OPR StartupUrls: "hxxp://www.idnes.cz/","hxxp://s7.cz.battleknig ... seznam.cz/"
OPR Extension: (Přeložit) - C:\Users\saxin\AppData\Roaming\Opera Software\Opera Stable\Extensions\ibnombjmjocaccigcefonnipcnlaeaed [2015-09-26]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [29728 2016-08-15] (HP Inc.)
R2 HPWMISVC; C:\Program Files (x86)\HP\HP System Event\HPWMISVC.exe [606224 2015-09-03] (Hewlett-Packard Development Company, L.P.)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [319096 2016-09-04] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\TXE Components\TCS\HeciServer.exe [733696 2013-07-01] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\TXE Components\TCS\SocketHeciServer.exe [822232 2013-07-01] (Intel(R) Corporation)
R2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [3046688 2016-07-29] (IObit)
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [71680 2010-08-06] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [89600 2010-08-06] (Hewlett-Packard) [File not signed]
R2 RtkAudioService; C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [303360 2015-07-03] (Realtek Semiconductor)
R2 ST2012_Svc; C:\Program Files (x86)\Spyware Terminator\st_rsser64.exe [3269864 2016-04-09] (Crawler Group, LLC)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [252008 2016-09-04] (Synaptics Incorporated)
S3 vmicvss; C:\Windows\System32\ICSvc.dll [511488 2015-10-30] (Microsoft Corporation)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2016-07-01] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 CLVirtualDrive; C:\Windows\system32\DRIVERS\CLVirtualDrive.sys [91712 2013-03-05] (CyberLink)
S3 dot4; C:\Windows\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\Windows\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows (R) Win 7 DDK provider)
R3 GPIO; C:\Windows\System32\drivers\iaiogpioe.sys [42416 2016-09-04] (Intel Corporation)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [26528 2015-04-04] (REALiX(tm))
S3 iscFlash; C:\Program Files (x86)\sp70262\iscflashx64.sys [66760 2014-07-22] (Insyde Software)
S3 IT9135BDA; C:\Windows\System32\Drivers\IT9135BDA.sys [165504 2015-07-15] (ITE )
R0 MBI; C:\Windows\System32\drivers\MBI.sys [39944 2016-09-04] (Intel Corporation)
S3 MiraDispKmd; C:\Windows\System32\drivers\MiraDispKmd.sys [23552 2015-10-30] (Microsoft Corporation)
R3 netr28x; C:\Windows\system32\DRIVERS\netr28x.sys [2554528 2015-06-12] (MediaTek Inc.)
R3 RSP2STOR; C:\Windows\system32\DRIVERS\RtsP2Stor.sys [328920 2016-09-04] (Realtek Semiconductor Corp.)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [936192 2016-09-04] (Realtek )
R3 rtbth; C:\Windows\System32\drivers\rtbth.sys [1219200 2015-06-03] (Ralink Technology, Corp.)
S3 SMBDATuner; C:\Windows\System32\Drivers\SMBDATuner24.sys [71296 2008-07-03] (Windows (R) Codename Longhorn DDK provider) [File not signed]
S3 SmbDrv; C:\Windows\System32\drivers\Smb_driver_AMDASF.sys [29936 2013-12-13] (Synaptics Incorporated)
S3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [42696 2015-07-17] (Synaptics Incorporated)
S3 SMIGrabber3C; C:\Windows\System32\Drivers\SmiUsbGrabber3C.sys [827040 2013-09-14] (Windows (R) Win 7 DDK provider)
S2 sp_rsdrv2; C:\Windows\System32\DRIVERS\stflt.sys [51496 2011-08-24] (Windows (R) Win 7 DDK provider)
R3 TXEIx64; C:\Windows\System32\drivers\TXEIx64.sys [146200 2016-09-04] (Intel Corporation)
S1 VBoxNetAdp; C:\Windows\system32\DRIVERS\VBoxNetAdp6.sys [117768 2015-09-08] (Oracle Corporation)
S1 VBoxNetLwf; C:\Windows\system32\DRIVERS\VBoxNetLwf.sys [146072 2015-09-08] (Oracle Corporation)
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
S3 WirelessButtonDriver; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [30544 2016-09-04] (HP)
R3 WirelessButtonDriver64; C:\Windows\System32\drivers\WirelessButtonDriver64.sys [30544 2016-09-04] (HP)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-09-14 19:23 - 2016-09-14 19:25 - 00019369 _____ C:\Users\saxin\Desktop\FRST.txt
2016-09-13 21:31 - 2016-09-14 15:00 - 00000000 ___HD C:\$WINDOWS.~BT
2016-09-13 19:42 - 2016-09-13 19:45 - 03826240 _____ C:\Users\saxin\Desktop\adwcleaner_6.010.exe
2016-09-13 19:23 - 2016-09-13 19:24 - 00000000 ____D C:\Users\saxin\AppData\Roaming\CStart8
2016-09-13 19:23 - 2016-09-13 19:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Start 8
2016-09-13 19:21 - 2016-09-13 19:23 - 00000000 ____D C:\Program Files (x86)\CStart8
2016-09-13 19:17 - 2016-09-13 19:34 - 00000000 ____D C:\ProgramData\Spyware Terminator
2016-09-13 19:17 - 2016-09-13 19:17 - 00001132 _____ C:\Users\Public\Desktop\Spyware Terminator 2015.lnk
2016-09-13 19:17 - 2016-09-13 19:17 - 00000000 ____D C:\Users\saxin\AppData\Roaming\Spyware Terminator
2016-09-13 19:17 - 2016-09-13 19:17 - 00000000 ____D C:\Users\saxin\AppData\LocalLow\Spyware Terminator
2016-09-13 19:17 - 2016-09-13 19:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spyware Terminator 2015
2016-09-13 19:15 - 2016-09-13 19:18 - 00000000 ____D C:\Program Files (x86)\Spyware Terminator
2016-09-13 17:37 - 2016-09-14 18:30 - 00075454 _____ C:\Windows\ntbtlog.txt
2016-09-13 16:18 - 2016-09-13 16:29 - 00068918 _____ C:\Users\saxin\Desktop\FRST 1.txt
2016-09-13 16:17 - 2016-09-14 19:23 - 00000000 ____D C:\FRST
2016-09-13 16:17 - 2016-09-13 16:17 - 00029696 _____ C:\Users\saxin\AppData\Local\MSGBOX.EXE
2016-09-13 16:17 - 2016-09-13 16:17 - 00015327 _____ C:\Users\saxin\Desktop\LM.bat
2016-09-13 16:16 - 2016-09-13 16:16 - 00112640 _____ (forum.viry.cz) C:\Users\saxin\Desktop\FRSTLauncher.exe
2016-09-13 16:15 - 2016-09-13 16:15 - 02398720 _____ (Farbar) C:\Users\saxin\Desktop\FRST64.exe
2016-09-13 16:02 - 2016-09-13 16:02 - 00002852 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2016-09-13 16:01 - 2016-09-13 16:01 - 00000872 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-09-13 16:01 - 2016-09-13 16:01 - 00000000 ____D C:\Program Files\CCleaner
2016-09-13 15:55 - 2016-09-13 15:55 - 00452882 _____ C:\Users\saxin\Desktop\SysInspector-PETRŮV-160913-1526.zip
2016-09-13 04:43 - 2016-09-13 04:43 - 00446998 _____ C:\Users\saxin\Desktop\SysInspector-PETRŮV-160912-2111.zip
2016-09-12 20:20 - 2016-09-12 20:22 - 04008760 _____ (ESET) C:\Users\saxin\Desktop\SysInspector.exe
2016-09-11 14:46 - 2016-09-11 14:48 - 06760064 _____ (ESET spol. s r.o.) C:\Users\saxin\Desktop\ESETOnlineScanner_CSY.exe
2016-09-11 11:34 - 2016-09-11 11:34 - 03505424 _____ (Hewlett-Packard Company ) C:\Users\saxin\Desktop\sp73248.exe
2016-09-11 11:32 - 2016-09-11 11:32 - 00000270 __RSH C:\ProgramData\ntuser.pol
2016-09-11 10:41 - 2016-09-11 10:42 - 05737808 ____N (Microsoft Corporation) C:\Users\saxin\Desktop\Windows10Upgrade9252.exe
2016-09-10 08:51 - 2016-09-10 08:51 - 00221852 _____ C:\Users\saxin\Downloads\SCC_1005702038_20160518_000890 (1).PDF
2016-09-10 08:51 - 2016-09-10 08:51 - 00203954 _____ C:\Users\saxin\Downloads\SCC_1005702038_20160418_000940 (1).PDF
2016-09-10 08:50 - 2016-09-10 08:51 - 00213150 _____ C:\Users\saxin\Downloads\SCC_1005702038_20160618_000826 (1).PDF
2016-09-09 10:37 - 2016-09-09 10:37 - 00000000 __SHD C:\found.004
2016-09-08 23:26 - 2016-09-13 21:30 - 00000036 _____ C:\Windows\progress.ini
2016-09-08 22:38 - 2016-09-14 01:22 - 00000000 ____D C:\Windows10Upgrade
2016-09-08 22:38 - 2016-09-11 10:43 - 00000758 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Pomocník při upgradu na Windows 10.lnk
2016-09-08 22:38 - 2016-09-11 10:43 - 00000746 _____ C:\Users\saxin\Desktop\Pomocník při upgradu na Windows 10.lnk
2016-09-08 22:36 - 2016-09-08 22:37 - 05737808 _____ (Microsoft Corporation) C:\Users\saxin\Desktop\Windows10Upgrade28084.exe
2016-09-08 11:23 - 2016-09-08 11:23 - 00000000 ____D C:\Windows\LastGood
2016-09-08 11:22 - 2016-09-08 11:22 - 00000000 ____D C:\Windows\SysWOW64\RTCOM
2016-09-08 09:04 - 2016-09-08 09:04 - 00221852 _____ C:\Users\saxin\Downloads\SCC_1005702038_20160518_000890.PDF
2016-09-08 09:04 - 2016-09-08 09:04 - 00203954 _____ C:\Users\saxin\Downloads\SCC_1005702038_20160418_000940.PDF
2016-09-08 09:03 - 2016-09-08 09:03 - 00213150 _____ C:\Users\saxin\Downloads\SCC_1005702038_20160618_000826.PDF
2016-09-08 08:31 - 2016-09-08 08:31 - 00003952 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1472986071
2016-09-07 23:03 - 2016-09-14 19:23 - 00000000 ____D C:\Users\saxin\Documents\Soubory aplikace Outlook
2016-09-06 08:57 - 2016-09-08 12:36 - 00000000 ___HD C:\$SysReset
2016-09-05 07:55 - 2016-09-05 07:55 - 00000451 _____ C:\Windows\system32\{F33C3B9B-72AF-418A-B3FD-560646F7CDA2}.bat
2016-09-05 07:54 - 2016-09-12 14:51 - 00360136 _____ C:\Windows\system32\FNTCACHE.DAT
2016-09-04 21:51 - 2016-09-04 21:51 - 01795952 _____ (Microsoft Corporation) C:\Windows\system32\WdfCoInstaller01011.dll
2016-09-04 21:51 - 2016-09-04 21:51 - 00861288 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\SynTP.sys
2016-09-04 21:51 - 2016-09-04 21:51 - 00798312 _____ (Synaptics Incorporated) C:\Windows\system32\SynCOM.dll
2016-09-04 21:51 - 2016-09-04 21:51 - 00426600 _____ (Synaptics Incorporated) C:\Windows\SysWOW64\SynCom.dll
2016-09-04 21:51 - 2016-09-04 21:51 - 00279656 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPCo41-1.dll
2016-09-04 21:51 - 2016-09-04 21:51 - 00277096 _____ (Synaptics Incorporated) C:\Windows\system32\SynTPAPI.dll
2016-09-04 21:51 - 2016-09-04 21:51 - 00062568 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\Smb_driver_Intel_Aux.sys
2016-09-04 21:51 - 2016-09-04 21:51 - 00058984 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\Smb_driver_AMDASF_Aux.sys
2016-09-04 21:51 - 2016-09-04 21:51 - 00057448 _____ (Synaptics Incorporated) C:\Windows\system32\Drivers\SynRMIHID_Aux.sys
2016-09-04 21:46 - 2016-09-04 21:46 - 00936192 _____ (Realtek ) C:\Windows\system32\Drivers\rt640x64.sys
2016-09-04 21:46 - 2016-09-04 21:46 - 00082544 _____ (Realtek Semiconductor Corporation) C:\Windows\system32\RtNicProp64.dll
2016-09-04 21:45 - 2016-09-04 21:45 - 09890008 _____ (Realtek Semiconductor Corp.) C:\Windows\SysWOW64\RsCRIcon.dll
2016-09-04 21:45 - 2016-09-04 21:45 - 04330200 _____ (TODO: <Company name>) C:\Windows\RtCRU64.exe
2016-09-04 21:45 - 2016-09-04 21:45 - 00328920 _____ (Realtek Semiconductor Corp.) C:\Windows\system32\Drivers\RtsP2Stor.sys
2016-09-04 21:45 - 2016-09-04 21:45 - 00083160 _____ (Realtek Semiconductor.) C:\Windows\system32\RtCRX64.dll
2016-09-04 21:44 - 2016-09-04 21:44 - 00146200 _____ (Intel Corporation) C:\Windows\system32\Drivers\TXEIx64.sys
2016-09-04 21:43 - 2016-09-04 21:43 - 00039944 _____ (Intel Corporation) C:\Windows\system32\Drivers\MBI.sys
2016-09-04 21:29 - 2016-09-04 21:29 - 06258688 _____ C:\Windows\system32\config\drivers.iobit
2016-09-04 21:29 - 2016-09-04 21:29 - 00372736 _____ C:\Windows\system32\config\default.iobit
2016-09-04 21:29 - 2016-09-04 21:29 - 00028672 _____ C:\Windows\system32\config\security.iobit
2016-09-04 21:29 - 2016-09-04 21:29 - 00028672 _____ C:\Windows\system32\config\sam.iobit
2016-09-04 21:28 - 2016-09-04 21:29 - 164978688 _____ C:\Windows\system32\config\software.iobit
2016-09-04 21:20 - 2016-09-04 21:20 - 22905344 _____ (Intel Corporation) C:\Windows\system32\igdfcl64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 17837568 _____ (Intel Corporation) C:\Windows\SysWOW64\igdfcl32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 12211184 _____ (Intel Corporation) C:\Windows\system32\igd10iumd64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 11783680 _____ (Intel Corporation) C:\Windows\SysWOW64\igd10iumd32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 10946840 _____ (Intel Corporation) C:\Windows\system32\igdumdim64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 10474040 _____ (Intel Corporation) C:\Windows\SysWOW64\igdumdim32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 08513536 _____ (Intel Corporation) C:\Windows\system32\ig7icd64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 06500352 _____ (Intel Corporation) C:\Windows\SysWOW64\ig7icd32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 04611816 _____ (Intel Corporation) C:\Windows\system32\igdusc64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 04382840 _____ (Intel Corporation) C:\Windows\system32\Gfxv4_0.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 04379256 _____ (Intel Corporation) C:\Windows\system32\Gfxv2_0.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 04015576 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiAAC64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 03793872 _____ (Intel Corporation) C:\Windows\system32\Drivers\igdkmd64.sys
2016-09-04 21:20 - 2016-09-04 21:20 - 03650832 _____ (Intel Corporation) C:\Windows\SysWOW64\igdusc32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 02497568 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiVAD64.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 02027008 _____ (Intel Corporation) C:\Windows\system32\igfxcmjit64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 01986560 _____ (Intel Corporation) C:\Windows\system32\igdrcl64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 01785856 _____ (Intel Corporation) C:\Windows\SysWOW64\igdrcl32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 01758208 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmjit32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 01461208 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiSecureSourceFilter64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 01137120 _____ (Intel Corporation) C:\Windows\system32\iglhsip64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 01133000 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhsip32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00959608 _____ (Intel Corporation) C:\Windows\system32\GfxUIEx.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 00863704 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiWinNextAgent64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00672256 _____ (Intel Corporation) C:\Windows\system32\igfxDH.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00650712 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiAudioFilter64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00609280 _____ (Intel Corporation) C:\Windows\system32\MetroIntelGenericUIFramework.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00608216 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiMux64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00545912 _____ (Intel Corporation) C:\Windows\system32\DPTopologyApp.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 00545400 _____ (Intel Corporation) C:\Windows\system32\DPTopologyAppv2_0.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 00530552 _____ (Intel Corporation) C:\Windows\system32\igfxEM.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 00454760 _____ (Intel Corporation) C:\Windows\system32\igdmd64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00433784 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiUMS64.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 00399992 _____ (Intel Corporation) C:\Windows\system32\CustomModeApp.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 00399480 _____ (Intel Corporation) C:\Windows\system32\CustomModeAppv2_0.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 00376832 _____ (Intel Corporation) C:\Windows\system32\IntelOpenCL64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00372856 _____ (Intel Corporation) C:\Windows\system32\igfxTray.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 00371712 _____ (Intel Corporation) C:\Windows\system32\igfxOSP.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00366680 _____ (Intel Corporation) C:\Windows\SysWOW64\igdmd32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00366080 _____ (Intel Corporation) C:\Windows\system32\igdbcl64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00349144 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiSilenceFilter64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00321536 _____ (Intel Corporation) C:\Windows\SysWOW64\igdbcl32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00319096 _____ (Intel Corporation) C:\Windows\system32\igfxCUIService.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 00286720 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelOpenCL32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00284672 _____ (Intel Corporation) C:\Windows\system32\igfxDI.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00280696 _____ (Intel Corporation) C:\Windows\SysWOW64\IntelCpHeciSvc.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 00255488 _____ C:\Windows\system32\igfxCPL.cpl
2016-09-04 21:20 - 2016-09-04 21:20 - 00252416 _____ (Intel Corporation) C:\Windows\system32\igfxLHM.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00247416 _____ (Intel Corporation) C:\Windows\system32\igfxHK.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 00221184 _____ C:\Windows\system32\igdde64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00218848 _____ (Intel Corporation) C:\Windows\system32\iglhcp64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00215000 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiUtils64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00209408 _____ (Intel Corporation) C:\Windows\system32\igfxDTCM.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00195192 _____ (Intel Corporation) C:\Windows\system32\igfxext.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 00191476 _____ C:\Windows\system32\resTHA.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00190464 _____ (Intel Corporation) C:\Windows\system32\igfxCoIn_v4425.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00188496 _____ (Intel Corporation) C:\Windows\system32\igfxcmrt64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00184832 _____ (Intel Corporation) C:\Windows\system32\igfx11cmrt64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00184036 _____ C:\Windows\system32\resELL.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00183840 _____ (Intel Corporation) C:\Windows\SysWOW64\iglhcp32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00182784 _____ C:\Windows\SysWOW64\igdde32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00182232 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiDDEAgent64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00179828 _____ C:\Windows\system32\resRUS.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00165460 _____ C:\Windows\system32\resARA.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00164948 _____ C:\Windows\system32\resJPN.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00164884 _____ C:\Windows\system32\resHEB.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00162304 _____ C:\Windows\system32\igdail64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00160260 _____ C:\Windows\system32\resHUN.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00160196 _____ C:\Windows\system32\resFRA.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00159096 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxcmrt32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00158532 _____ C:\Windows\system32\resKOR.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00158388 _____ C:\Windows\system32\resDEU.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00158356 _____ C:\Windows\system32\resITA.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00158148 _____ C:\Windows\system32\resROM.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00158052 _____ C:\Windows\system32\resESN.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00157652 _____ C:\Windows\system32\resPLK.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00157492 _____ C:\Windows\system32\resSKY.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00157332 _____ C:\Windows\system32\resNLD.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00156708 _____ C:\Windows\system32\resPTB.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00156628 _____ C:\Windows\system32\resCSY.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00156596 _____ C:\Windows\system32\resTRK.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00156420 _____ C:\Windows\system32\resPTG.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00156280 _____ (Intel Corporation) C:\Windows\system32\difx64.exe
2016-09-04 21:20 - 2016-09-04 21:20 - 00155972 _____ C:\Windows\system32\resFIN.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00155540 _____ C:\Windows\system32\resHRV.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00155136 _____ (Intel Corporation) C:\Windows\SysWOW64\igfx11cmrt32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00155124 _____ C:\Windows\system32\resSVE.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00154964 _____ C:\Windows\system32\resSLV.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00154004 _____ C:\Windows\system32\resNOR.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00153508 _____ C:\Windows\system32\resDAN.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00152164 _____ C:\Windows\system32\resENU.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00150404 _____ C:\Windows\system32\resCHT.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00149524 _____ C:\Windows\system32\resCHS.cui
2016-09-04 21:20 - 2016-09-04 21:20 - 00143872 _____ C:\Windows\SysWOW64\igdail32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00133080 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiMCUMD64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00098776 _____ (Intel Corporation) C:\Windows\system32\IntelWiDiLogServer64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00094208 _____ C:\Windows\system32\IccLibDll_x64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00086528 _____ C:\Windows\system32\igfxCUIServicePS.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00069632 _____ ( ) C:\Windows\system32\igfxDHLibv2_0.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00064000 _____ (Khronos Group) C:\Windows\system32\Intel_OpenCL_ICD64.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00060416 _____ (Khronos Group) C:\Windows\SysWOW64\Intel_OpenCL_ICD32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00059904 _____ ( ) C:\Windows\system32\igfxDHLib.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00031448 _____ (Intel Corporation) C:\Windows\system32\igfxexps.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00030720 _____ (Intel Corporation) C:\Windows\SysWOW64\igfxexps32.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00010752 _____ ( ) C:\Windows\system32\igfxDILibv2_0.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00010752 _____ ( ) C:\Windows\system32\igfxDILib.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00010240 _____ ( ) C:\Windows\system32\igfxEMLibv2_0.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00010240 _____ ( ) C:\Windows\system32\igfxEMLib.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00005120 _____ ( ) C:\Windows\system32\igfxLHMLibv2_0.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00005120 _____ ( ) C:\Windows\system32\igfxLHMLib.dll
2016-09-04 21:20 - 2016-09-04 21:20 - 00002582 _____ C:\Windows\system32\iglhxs64.vp
2016-09-04 21:15 - 2016-09-04 21:54 - 00000000 ____D C:\Windows\LastGood.Tmp
2016-09-04 21:14 - 2016-09-04 21:14 - 00459536 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\SET7D89.tmp
2016-09-04 21:14 - 2016-09-04 21:14 - 00459536 _____ (Intel(R) Corporation) C:\Windows\system32\Drivers\IntcDAud.sys
2016-09-04 21:13 - 2016-09-04 21:13 - 00030544 _____ (HP) C:\Windows\system32\Drivers\WirelessButtonDriver64.sys
2016-09-04 20:49 - 2016-09-04 20:49 - 00042416 _____ (Intel Corporation) C:\Windows\system32\Drivers\iaiogpioe.sys
2016-09-04 20:44 - 2016-09-04 20:44 - 00000000 ____D C:\ProgramData\{FD6F83C0-EC70-4581-8361-C70CD1AA4B98}
2016-09-04 20:44 - 2016-03-25 14:33 - 00128288 _____ (IObit) C:\Windows\system32\IObitSmartDefragExtension.dll
2016-09-04 20:43 - 2016-09-04 20:43 - 00000000 ____D C:\Windows\IObit
2016-09-04 20:37 - 2016-09-04 20:37 - 00000000 ____D C:\ProgramData\{BE2ACE5C-32B7-4777-9BDF-ECF87CDAB705}
2016-09-04 20:25 - 2016-09-04 20:25 - 00002572 _____ C:\Windows\System32\Tasks\GlaryInitialize 5
2016-09-04 20:25 - 2016-09-04 20:25 - 00002548 _____ C:\Windows\System32\Tasks\YCMServiceAgent
2016-09-04 19:57 - 2016-09-04 20:39 - 00000000 ____D C:\ProgramData\360Quarant
2016-09-04 19:56 - 2016-09-04 20:25 - 00000000 ____D C:\Windows\Tasks\360Disabled
2016-09-04 19:54 - 2016-09-01 13:43 - 00095232 _____ (360.cn) C:\Windows\SysWOW64\Drivers\360AvFlt.sys
2016-09-04 19:50 - 2016-09-05 07:55 - 00000000 ____D C:\Program Files (x86)\360
2016-09-04 15:20 - 2016-09-04 15:20 - 00372736 _____ C:\Windows\system32\config\default.gu
2016-09-04 15:20 - 2016-09-04 15:20 - 00057344 _____ C:\Windows\system32\config\system.gu
2016-09-04 15:20 - 2016-09-04 15:20 - 00028672 _____ C:\Windows\system32\config\security.gu
2016-09-04 15:20 - 2016-09-04 15:20 - 00028672 _____ C:\Windows\system32\config\sam.gu
2016-09-04 15:19 - 2016-08-05 09:37 - 00035792 _____ (Glarysoft Ltd) C:\Windows\system32\RegBootDefrag.exe
2016-09-04 12:47 - 2016-09-04 12:47 - 00001211 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera 39.lnk
2016-09-04 12:46 - 2016-09-09 14:36 - 00000000 ____D C:\Program Files (x86)\Opera
2016-09-02 12:58 - 2016-09-02 12:58 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-09-01 18:22 - 2015-03-09 12:26 - 00019768 _____ (NETGATE Technologies s.r.o.) C:\Windows\system32\Drivers\spyemrg_guard.sys
2016-09-01 18:22 - 2011-04-21 11:31 - 00017240 _____ (NETGATE Technologies s.r.o.) C:\Windows\system32\Drivers\spyemrg.sys
2016-08-29 15:52 - 2016-08-29 15:52 - 00000000 ____D C:\Program Files (x86)\Tweaking.com
2016-08-28 11:34 - 2016-08-29 19:47 - 00000000 ____D C:\Program Files (x86)\DLL Suite
2016-08-28 11:14 - 2016-09-01 13:21 - 00000000 ____D C:\ProgramData\tmp
2016-08-28 11:14 - 2016-08-28 11:14 - 00000000 ____D C:\ProgramData\hps
2016-08-28 10:11 - 2016-09-06 10:04 - 00000000 ____D C:\Program Files\Teta CEWE fotosvet
2016-08-20 20:54 - 2016-09-04 15:20 - 165150720 _____ C:\Windows\system32\config\software.gu.bak
2016-08-20 20:54 - 2016-09-04 15:20 - 15466496 _____ C:\Windows\system32\config\system.gu.bak
2016-08-20 19:59 - 2015-07-01 12:55 - 00001608 _____ C:\Windows\SysWOW64\optskcpl.xml
2016-08-20 19:59 - 2015-06-24 16:31 - 00002986 _____ C:\Windows\SysWOW64\Start_SimplePass.xml
2016-08-20 19:59 - 2015-06-24 16:31 - 00002924 _____ C:\Windows\SysWOW64\Start_OPBHOBrokerDesktop.xml
2016-08-20 19:59 - 2015-06-24 16:31 - 00002912 _____ C:\Windows\SysWOW64\Start_OPBHOBroker.xml
2016-08-20 18:02 - 2016-08-20 18:02 - 00000000 __SHD C:\found.003
2016-08-19 23:44 - 2016-09-11 10:05 - 00000000 ____D C:\ProgramData\Glarysoft
2016-08-19 23:44 - 2016-09-11 10:03 - 00000000 ____D C:\Program Files (x86)\Glarysoft
2016-08-19 23:43 - 2016-08-19 23:43 - 00000537 _____ C:\GUDownLoaddebug.txt
2016-08-19 23:42 - 2016-09-11 10:05 - 00000000 ____D C:\Users\saxin\AppData\Roaming\GlarySoft
2016-08-19 23:42 - 2016-08-19 23:42 - 00000000 ____D C:\Users\saxin\AppData\Roaming\DiskDefrag
2016-08-18 23:15 - 2016-08-03 11:44 - 00189952 _____ (Microsoft Corporation) C:\Windows\system32\MusNotification.exe
2016-08-18 23:15 - 2016-08-03 11:40 - 00058880 _____ (Microsoft Corporation) C:\Windows\system32\MusNotificationUx.exe
2016-08-18 23:15 - 2016-08-03 11:30 - 00515072 _____ (Microsoft Corporation) C:\Windows\system32\OneDriveSettingSyncProvider.dll
2016-08-18 23:15 - 2016-08-03 06:44 - 00048640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryClient.dll
2016-08-18 23:15 - 2016-08-03 06:44 - 00048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepositoryBroker.dll
2016-08-18 23:14 - 2016-08-03 12:21 - 00566112 _____ (Microsoft Corporation) C:\Windows\system32\SettingSyncHost.exe
2016-08-18 23:14 - 2016-08-03 11:51 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\rdpudd.dll
2016-08-18 23:14 - 2016-08-03 06:19 - 02180096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.StateRepository.dll
2016-08-18 23:13 - 2016-08-03 12:22 - 00808288 _____ (Microsoft Corporation) C:\Windows\system32\WWAHost.exe
2016-08-18 23:13 - 2016-08-03 12:19 - 00604928 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2016-08-18 23:13 - 2016-08-03 12:19 - 00161632 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-08-18 23:13 - 2016-08-03 11:41 - 00128512 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthpan.sys
2016-08-18 23:13 - 2016-08-03 11:41 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthenum.sys
2016-08-18 23:13 - 2016-08-03 11:40 - 00181248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rfcomm.sys
2016-08-18 23:13 - 2016-08-03 11:31 - 00247296 _____ (Microsoft Corporation) C:\Windows\system32\wevtutil.exe
2016-08-18 23:13 - 2016-08-03 11:29 - 14252544 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-08-18 23:13 - 2016-08-03 11:29 - 00954368 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bthport.sys
2016-08-18 23:13 - 2016-08-03 11:29 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\BTHUSB.SYS
2016-08-18 23:13 - 2016-08-03 11:18 - 06974464 _____ (Microsoft Corporation) C:\Windows\system32\Windows.Data.Pdf.dll
2016-08-18 23:13 - 2016-08-03 11:18 - 01388032 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-08-18 23:13 - 2016-08-03 11:16 - 05123072 _____ (Microsoft Corporation) C:\Windows\system32\dbgeng.dll
2016-08-18 23:13 - 2016-08-03 11:11 - 04171264 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2016-08-18 23:13 - 2016-08-03 07:52 - 00034088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wldp.dll
2016-08-18 23:13 - 2016-08-03 07:34 - 00501592 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupEngine.dll
2016-08-18 23:13 - 2016-08-03 07:34 - 00084832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\NetSetupApi.dll
2016-08-18 23:13 - 2016-08-03 07:33 - 00051128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsNativeApi.dll
2016-08-18 23:13 - 2016-08-03 06:32 - 12585984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wmp.dll
2016-08-18 23:13 - 2016-08-03 06:25 - 04078080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dbgeng.dll
2016-08-18 23:12 - 2016-08-03 12:36 - 00099680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pdc.sys
2016-08-18 23:12 - 2016-08-03 12:30 - 00026408 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-08-18 23:12 - 2016-08-03 12:23 - 00693600 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupEngine.dll
2016-08-18 23:12 - 2016-08-03 12:23 - 00115040 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupApi.dll
2016-08-18 23:12 - 2016-08-03 12:22 - 00465248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\storport.sys
2016-08-18 23:12 - 2016-08-03 12:22 - 00331616 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\pci.sys
2016-08-18 23:12 - 2016-08-03 12:21 - 03675512 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-08-18 23:12 - 2016-08-03 12:20 - 01540224 _____ (Microsoft Corporation) C:\Windows\system32\sppobjs.dll
2016-08-18 23:12 - 2016-08-03 12:20 - 00692136 _____ (Microsoft Corporation) C:\Windows\system32\sppwinob.dll
2016-08-18 23:12 - 2016-08-03 12:13 - 01988448 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2016-08-18 23:12 - 2016-08-03 12:13 - 00576864 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms2.sys
2016-08-18 23:12 - 2016-08-03 12:13 - 00393056 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2016-08-18 23:12 - 2016-08-03 11:44 - 00044544 _____ (Microsoft Corporation) C:\Windows\system32\musdialoghandlers.dll
2016-08-18 23:12 - 2016-08-03 11:43 - 16985088 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Xaml.dll
2016-08-18 23:12 - 2016-08-03 11:40 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\TpmTasks.dll
2016-08-18 23:12 - 2016-08-03 11:39 - 00218624 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2016-08-18 23:12 - 2016-08-03 11:38 - 00379392 _____ (Microsoft Corporation) C:\Windows\system32\usocore.dll
2016-08-18 23:12 - 2016-08-03 11:36 - 00211456 _____ (Microsoft Corporation) C:\Windows\system32\NetSetupSvc.dll
2016-08-18 23:12 - 2016-08-03 11:36 - 00198144 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-08-18 23:12 - 2016-08-03 11:35 - 00200192 _____ (Microsoft Corporation) C:\Windows\system32\WUDFPlatform.dll
2016-08-18 23:12 - 2016-08-03 11:29 - 01500160 _____ (Microsoft Corporation) C:\Windows\system32\RecoveryDrive.exe
2016-08-18 23:12 - 2016-08-03 11:29 - 01387520 _____ (Microsoft Corporation) C:\Windows\system32\win32kbase.sys
2016-08-18 23:12 - 2016-08-03 11:28 - 01213440 _____ (Microsoft Corporation) C:\Windows\system32\wwansvc.dll
2016-08-18 23:12 - 2016-08-03 11:28 - 00848896 _____ (Microsoft Corporation) C:\Windows\system32\wuapi.dll
2016-08-18 23:12 - 2016-08-03 11:27 - 07536640 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2016-08-18 23:12 - 2016-08-03 11:27 - 01717760 _____ (Microsoft Corporation) C:\Windows\system32\GdiPlus.dll
2016-08-18 23:12 - 2016-08-03 11:16 - 03589120 _____ (Microsoft Corporation) C:\Windows\system32\win32kfull.sys
2016-08-18 23:12 - 2016-08-03 11:16 - 01732096 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-08-18 23:12 - 2016-08-03 11:14 - 01997824 _____ (Microsoft Corporation) C:\Windows\system32\ActiveSyncProvider.dll
2016-08-18 23:12 - 2016-08-03 11:13 - 03025920 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-08-18 23:12 - 2016-08-03 11:13 - 02280960 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-08-18 23:12 - 2016-08-03 07:31 - 02921368 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-08-18 23:12 - 2016-08-03 07:31 - 00957608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
2016-08-18 23:12 - 2016-08-03 07:31 - 00703840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
2016-08-18 23:12 - 2016-08-03 06:57 - 00091648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tdlrecover.exe
2016-08-18 23:12 - 2016-08-03 06:48 - 00051712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wshbth.dll
2016-08-18 23:12 - 2016-08-03 06:47 - 13018112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Xaml.dll
2016-08-18 23:12 - 2016-08-03 06:42 - 00080896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\BluetoothApis.dll
2016-08-18 23:12 - 2016-08-03 06:37 - 00219136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\VEEventDispatcher.dll
2016-08-18 23:12 - 2016-08-03 06:35 - 00178688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wevtutil.exe
2016-08-18 23:12 - 2016-08-03 06:34 - 00792064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-08-18 23:12 - 2016-08-03 06:32 - 00434688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LogonController.dll
2016-08-18 23:12 - 2016-08-03 06:31 - 06743040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2016-08-18 23:12 - 2016-08-03 06:31 - 00705536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapi.dll
2016-08-18 23:11 - 2016-08-03 11:44 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\wshbth.dll
2016-08-18 23:11 - 2016-08-03 11:39 - 00104448 _____ (Microsoft Corporation) C:\Windows\system32\BluetoothApis.dll
2016-08-18 23:10 - 2016-08-03 13:14 - 01505984 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-08-18 23:10 - 2016-08-03 13:14 - 00092352 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-08-18 23:10 - 2016-08-03 13:14 - 00050368 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-08-18 23:10 - 2016-08-03 12:36 - 07469408 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-08-18 23:10 - 2016-08-03 12:36 - 00037744 _____ (Microsoft Corporation) C:\Windows\system32\wldp.dll
2016-08-18 23:10 - 2016-08-03 12:21 - 00303216 _____ (Microsoft Corporation) C:\Windows\system32\LockAppHost.exe
2016-08-18 23:10 - 2016-08-03 11:51 - 00123392 _____ (Microsoft Corporation) C:\Windows\system32\tdlrecover.exe
2016-08-18 23:10 - 2016-08-03 11:41 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryClient.dll
2016-08-18 23:10 - 2016-08-03 11:41 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepositoryBroker.dll
2016-08-18 23:10 - 2016-08-03 11:40 - 00127488 _____ (Microsoft Corporation) C:\Windows\system32\VEDataLayerHelpers.dll
2016-08-18 23:10 - 2016-08-03 11:37 - 00110080 _____ (Microsoft Corporation) C:\Windows\system32\IdCtrls.dll
2016-08-18 23:10 - 2016-08-03 11:33 - 00285184 _____ (Microsoft Corporation) C:\Windows\system32\VEEventDispatcher.dll
2016-08-18 23:10 - 2016-08-03 11:31 - 00506880 _____ (Microsoft Corporation) C:\Windows\system32\tileobjserver.dll
2016-08-18 23:10 - 2016-08-03 11:29 - 00784384 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-08-18 23:10 - 2016-08-03 11:18 - 02067968 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentExtensions.dll
2016-08-18 23:10 - 2016-08-03 11:17 - 02175488 _____ (Microsoft Corporation) C:\Windows\system32\AppXDeploymentServer.dll
2016-08-18 23:10 - 2016-08-03 11:16 - 02635776 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.Logon.dll
2016-08-18 23:10 - 2016-08-03 11:12 - 02746368 _____ (Microsoft Corporation) C:\Windows\system32\Windows.StateRepository.dll
2016-08-18 23:10 - 2016-08-03 07:30 - 21123320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2016-08-18 23:10 - 2016-08-03 07:30 - 00465760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SettingSyncHost.exe
2016-08-18 23:10 - 2016-08-03 07:30 - 00255168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\LockAppHost.exe
2016-08-18 23:10 - 2016-08-03 06:40 - 00092160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IdCtrls.dll
2016-08-18 23:10 - 2016-08-03 06:39 - 19351040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-08-18 23:10 - 2016-08-03 06:34 - 00400896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\OneDriveSettingSyncProvider.dll
2016-08-18 23:10 - 2016-08-03 06:33 - 18677760 _____ (Microsoft Corporation) C:\Windows\SysWOW64\edgehtml.dll
2016-08-18 23:10 - 2016-08-03 06:33 - 02050048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-08-18 23:10 - 2016-08-03 06:33 - 00687616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-08-18 23:10 - 2016-08-03 06:32 - 01467392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\GdiPlus.dll
2016-08-18 23:10 - 2016-08-03 06:28 - 03663360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-08-18 23:10 - 2016-08-03 06:25 - 05323776 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.Data.Pdf.dll
2016-08-18 23:10 - 2016-08-03 06:23 - 05660672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Chakra.dll
2016-08-18 23:10 - 2016-08-03 06:23 - 01799680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.Logon.dll
2016-08-18 23:10 - 2016-08-03 06:22 - 02501120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-08-18 23:10 - 2016-08-03 06:22 - 01502208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-08-18 23:10 - 2016-08-03 06:21 - 01708032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ActiveSyncProvider.dll
2016-08-18 23:09 - 2016-08-03 12:22 - 01322760 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2016-08-18 23:09 - 2016-08-03 12:22 - 00058408 _____ (Microsoft Corporation) C:\Windows\system32\SensorsNativeApi.dll
2016-08-18 23:09 - 2016-08-03 12:21 - 22561256 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-08-18 23:09 - 2016-08-03 12:11 - 00422744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdbss.sys
2016-08-18 23:09 - 2016-08-03 11:46 - 22384128 _____ (Microsoft Corporation) C:\Windows\system32\edgehtml.dll
2016-08-18 23:09 - 2016-08-03 11:40 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\bthserv.dll
2016-08-18 23:09 - 2016-08-03 11:38 - 00412160 _____ (Microsoft Corporation) C:\Windows\system32\MusUpdateHandlers.dll
2016-08-18 23:09 - 2016-08-03 11:36 - 00221696 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-08-18 23:09 - 2016-08-03 11:35 - 00764928 _____ (Microsoft Corporation) C:\Windows\system32\Chakradiag.dll
2016-08-18 23:09 - 2016-08-03 11:34 - 00383488 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-08-18 23:09 - 2016-08-03 11:33 - 00339968 _____ (Microsoft Corporation) C:\Windows\system32\SensorService.dll
2016-08-18 23:09 - 2016-08-03 11:31 - 00359936 _____ (Microsoft Corporation) C:\Windows\system32\SensorsApi.dll
2016-08-18 23:09 - 2016-08-03 11:30 - 24613888 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-08-18 23:09 - 2016-08-03 11:30 - 00970752 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-08-18 23:09 - 2016-08-03 11:29 - 02127360 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-08-18 23:09 - 2016-08-03 11:28 - 00529920 _____ (Microsoft Corporation) C:\Windows\system32\LogonController.dll
2016-08-18 23:09 - 2016-08-03 11:27 - 01752576 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-08-18 23:09 - 2016-08-03 11:27 - 00381952 _____ (Microsoft Corporation) C:\Windows\system32\wuuhext.dll
2016-08-18 23:09 - 2016-08-03 11:20 - 13390336 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-08-18 23:09 - 2016-08-03 11:15 - 07833088 _____ (Microsoft Corporation) C:\Windows\system32\Chakra.dll
2016-08-18 23:09 - 2016-08-03 11:14 - 04895232 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-08-18 23:09 - 2016-08-03 06:37 - 00335872 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-08-18 23:09 - 2016-08-03 06:35 - 00286208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\SensorsApi.dll
2016-08-18 23:09 - 2016-08-03 06:32 - 01526272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-08-18 23:09 - 2016-08-03 06:29 - 12133376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-08-18 20:34 - 2016-08-18 20:34 - 00000000 ___HD C:\_Exception1
2016-08-18 20:33 - 2016-08-18 20:33 - 00000000 ____D C:\Backup_2016-08-18 103348
2016-08-15 11:11 - 2016-09-14 01:21 - 00000000 ___HD C:\$GetCurrent
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-09-14 19:21 - 2014-08-20 14:33 - 00004192 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{353F7DF7-EBE7-4133-BF94-5E9E60EE47E3}
2016-09-14 18:30 - 2015-02-25 09:22 - 00000000 __SHD C:\Users\saxin\IntelGraphicsProfiles
2016-09-14 18:29 - 2015-12-21 11:21 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-09-14 18:29 - 2015-10-30 08:28 - 243269632 ___SH C:\Windows\system32\config\BBI
2016-09-14 18:28 - 2015-10-21 12:44 - 00000000 ____D C:\AdwCleaner
2016-09-14 16:12 - 2015-12-21 10:57 - 01960536 _____ C:\Windows\system32\PerfStringBackup.INI
2016-09-14 16:12 - 2015-10-30 20:31 - 00813554 _____ C:\Windows\system32\perfh005.dat
2016-09-14 16:12 - 2015-10-30 20:31 - 00182950 _____ C:\Windows\system32\perfc005.dat
2016-09-14 16:12 - 2015-10-30 09:21 - 00000000 ____D C:\Windows\INF
2016-09-14 15:25 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\AppReadiness
2016-09-14 15:20 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-09-14 01:21 - 2015-08-08 16:58 - 00001908 _____ C:\Windows\diagwrn.xml
2016-09-14 01:21 - 2015-08-08 16:58 - 00001908 _____ C:\Windows\diagerr.xml
2016-09-14 01:19 - 2015-12-21 10:46 - 00000000 ___DC C:\Windows\Panther
2016-09-14 00:15 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\registration
2016-09-13 16:01 - 2016-07-23 09:12 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-09-13 15:21 - 2015-04-04 09:30 - 00000000 ____D C:\ProgramData\ProductData
2016-09-13 15:19 - 2015-05-01 11:02 - 00000000 ____D C:\Users\saxin\AppData\Local\ESET
2016-09-12 04:01 - 2014-08-18 16:22 - 00003238 _____ C:\Windows\System32\Tasks\HPCeeScheduleForsaxin
2016-09-12 04:01 - 2014-08-18 16:22 - 00000346 _____ C:\Windows\Tasks\HPCeeScheduleForsaxin.job
2016-09-12 02:04 - 2014-09-27 17:04 - 00000000 ____D C:\Windows\AutoKMS
2016-09-11 14:34 - 2015-01-11 19:42 - 00000000 ____D C:\Program Files (x86)\Hp
2016-09-11 14:21 - 2015-04-14 19:18 - 00003808 _____ C:\Windows\System32\Tasks\AutoKMS
2016-09-11 13:22 - 2015-12-21 10:58 - 00000000 ____D C:\Users\saxin
2016-09-09 17:01 - 2015-10-30 08:28 - 00032768 ___SH C:\Windows\system32\config\ELAM
2016-09-09 14:19 - 2013-08-22 15:25 - 00000234 _____ C:\Windows\win.ini
2016-09-09 13:17 - 2014-08-16 17:33 - 00000000 ____D C:\Users\saxin\AppData\Local\Packages
2016-09-08 11:24 - 2015-12-21 10:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Music, Photos and Videos
2016-09-07 23:28 - 2014-06-19 16:07 - 00000000 ___HD C:\Program Files (x86)\Temp
2016-09-07 23:28 - 2014-06-19 16:05 - 00000000 ____D C:\Program Files (x86)\Realtek
2016-09-07 23:15 - 2015-01-03 19:18 - 00000000 ____D C:\Users\saxin\AppData\Local\Windows Live
2016-09-07 23:14 - 2014-05-04 07:02 - 00000000 ____D C:\Windows\en-GB
2016-09-06 22:45 - 2015-10-03 16:28 - 00000000 ____D C:\Program Files (x86)\IObit
2016-09-06 22:26 - 2014-05-03 21:35 - 00000000 ____D C:\Program Files (x86)\Hewlett-Packard
2016-09-06 22:26 - 2013-10-02 23:14 - 00000000 ____D C:\Program Files\Hewlett-Packard
2016-09-06 11:29 - 2014-06-19 16:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP
2016-09-06 11:27 - 2014-05-03 21:57 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Help and Support
2016-09-06 11:27 - 2014-05-03 21:38 - 00000000 ____D C:\ProgramData\Hewlett-Packard
2016-09-06 10:47 - 2014-05-03 21:56 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2016-09-06 10:47 - 2014-05-03 21:38 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Security and Protection
2016-09-06 09:38 - 2015-04-04 09:29 - 00000000 ____D C:\ProgramData\IObit
2016-09-05 11:48 - 2015-04-04 09:29 - 00000000 ____D C:\Users\saxin\AppData\LocalLow\IObit
2016-09-05 11:02 - 2016-05-02 11:13 - 00000000 ____D C:\Users\saxin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Tpv výpočty 4
2016-09-05 11:00 - 2015-07-15 23:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlazeDTV 6.0
2016-09-04 21:45 - 2015-12-21 10:53 - 00000000 ____D C:\Windows\SysWOW64\sda
2016-09-04 21:20 - 2015-12-21 10:53 - 00064000 _____ (Khronos Group) C:\Windows\system32\OpenCL.DLL
2016-09-04 21:20 - 2015-12-21 10:53 - 00060416 _____ (Khronos Group) C:\Windows\SysWOW64\OpenCL.DLL
2016-09-04 20:44 - 2015-04-04 09:29 - 00000000 ____D C:\Users\saxin\AppData\Roaming\IObit
2016-09-04 20:26 - 2015-11-05 20:42 - 00000000 ____D C:\ProgramData\ClassicShell
2016-09-04 20:26 - 2015-10-01 16:10 - 00000000 ____D C:\Users\saxin\.VirtualBox
2016-09-04 20:26 - 2014-06-19 16:15 - 00000000 ____D C:\ProgramData\Temp
2016-09-04 20:26 - 2014-06-19 16:15 - 00000000 ____D C:\ProgramData\install_clap
2016-09-04 20:25 - 2015-10-03 09:33 - 00000000 ____D C:\Windows\System32\Tasks\Lenovo
2016-09-04 19:56 - 2014-06-19 16:22 - 00002536 _____ C:\Windows\System32\Tasks\CLMLSvc_P2G8
2016-09-04 15:30 - 2014-08-16 17:35 - 00000000 ____D C:\Users\saxin\Documents\Youcam
2016-09-04 12:48 - 2015-04-27 15:31 - 00000000 ____D C:\Users\saxin\AppData\Local\Opera Software
2016-09-03 21:59 - 2014-05-03 21:52 - 00000000 ____D C:\Program Files (x86)\Microsoft SQL Server Compact Edition
2016-09-03 20:06 - 2015-12-06 15:40 - 00000000 ____D C:\Program Files\7-Zip
2016-09-02 21:48 - 2016-05-08 16:56 - 00002717 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office Word Viewer 2003.lnk
2016-09-02 21:48 - 2015-12-21 11:11 - 00001519 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-09-02 21:48 - 2013-10-01 00:49 - 00001602 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP Control Zone (Touchpad Clickpad Trackpad Mouse).lnk
2016-09-02 21:39 - 2015-10-05 10:39 - 00000000 ____D C:\Program Files (x86)\MixVideoPlayer
2016-09-01 12:31 - 2015-10-30 09:11 - 00000000 ____D C:\Windows\CbsTemp
2016-09-01 12:30 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\system32\appraiser
2016-08-30 18:35 - 2014-09-03 11:22 - 00000000 ____D C:\Program Files (x86)\Google
2016-08-30 17:02 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\rescache
2016-08-30 15:24 - 2014-08-17 14:58 - 00000000 ___RD C:\Users\saxin\OneDrive
2016-08-30 13:11 - 2014-08-24 14:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint
2016-08-30 13:11 - 2014-08-24 14:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2016-08-30 11:56 - 2015-03-25 19:48 - 00000000 ____D C:\Users\saxin\AppData\Local\Adobe
2016-08-29 19:48 - 2015-12-06 15:40 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2016-08-29 19:48 - 2015-10-30 20:35 - 00000000 ____D C:\Windows\ShellNew
2016-08-29 19:48 - 2015-10-30 20:35 - 00000000 ____D C:\Program Files\Windows Journal
2016-08-29 19:48 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\L2Schemas
2016-08-29 19:47 - 2015-10-30 09:24 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-08-29 19:46 - 2015-09-09 13:08 - 00000000 ____D C:\Users\saxin\AppData\Roaming\Seznam.cz
2016-08-29 19:26 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2016-08-29 19:25 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\system32\Macromed
2016-08-29 19:20 - 2014-08-23 14:56 - 00000000 __RHD C:\MSOCache
2016-08-27 14:32 - 2015-04-16 14:06 - 00000000 ____D C:\Users\saxin\AppData\Local\ElevatedDiagnostics
2016-08-23 16:01 - 2014-08-17 08:33 - 00000000 ____D C:\Users\saxin\AppData\Local\Hewlett-Packard
2016-08-22 17:41 - 2014-04-01 03:07 - 00000000 ____D C:\SWSetup
2016-08-21 11:56 - 2015-01-13 18:11 - 00001200 _____ C:\Users\saxin\Downloads\Stažené soubory – zástupce.lnk
2016-08-20 20:53 - 2015-10-30 08:28 - 00524288 _____ C:\Windows\system32\config\default.gu.bak
2016-08-20 20:06 - 2014-05-03 21:56 - 00000000 ____D C:\Windows\System32\Tasks\Hewlett-Packard
2016-08-20 18:59 - 2014-06-19 16:04 - 00000000 ____D C:\Windows\Hewlett-Packard
2016-08-20 16:57 - 2014-08-16 17:31 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-08-20 16:51 - 2015-10-30 09:24 - 00000000 ___RD C:\Windows\ImmersiveControlPanel
2016-08-20 16:40 - 2015-01-11 19:42 - 00000000 ____D C:\Users\saxin\AppData\Roaming\HpUpdate
2016-08-20 14:07 - 2015-03-25 19:45 - 00000000 ____D C:\Program Files (x86)\VideoLAN
2016-08-20 13:56 - 2015-12-24 23:08 - 00000000 ____D C:\Users\saxin\AppData\Local\Vivaldi
2016-08-20 11:16 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\system32\SecureBootUpdates
2016-08-20 11:15 - 2014-08-18 15:33 - 00000000 ____D C:\Windows\system32\MRT
2016-08-20 11:02 - 2014-08-18 15:33 - 147640136 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-08-18 20:28 - 2016-07-24 12:35 - 00000000 _____ C:\Recovery.txt
2016-08-18 09:17 - 2014-09-18 13:09 - 00000000 ____D C:\Windows\pss
2016-08-18 09:16 - 2015-11-03 19:10 - 00000000 ____D C:\Program Files (x86)\SarbyxTrayClock
2016-08-18 09:16 - 2015-10-30 08:28 - 00000000 ____D C:\Windows\system32\Sysprep
2016-08-18 09:16 - 2015-06-05 09:13 - 00000000 ____D C:\ProgramData\Spybot - Search & Destroy
2016-08-18 09:16 - 2015-04-04 10:48 - 00000000 ____D C:\Users\saxin\AppData\Roaming\ProductData
2016-08-18 09:13 - 2016-07-28 12:49 - 00000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2016-08-18 08:45 - 2015-07-15 23:33 - 00000000 ____D C:\ProgramData\Aviosoft
2016-08-16 22:48 - 2015-10-30 09:24 - 00000000 ____D C:\Windows\system32\NDF
==================== Files in the root of some directories =======
2015-04-19 14:20 - 2015-09-15 23:30 - 0000626 _____ () C:\Users\saxin\AppData\Roaming\fD0Peh9Ql9bYC6NhSW
2016-09-13 16:17 - 2016-09-13 16:17 - 0029696 _____ () C:\Users\saxin\AppData\Local\MSGBOX.EXE
2014-09-18 13:06 - 2016-07-24 12:23 - 0007611 _____ () C:\Users\saxin\AppData\Local\Resmon.ResmonCfg
2015-01-11 19:53 - 2016-09-06 11:38 - 0005584 _____ () C:\ProgramData\hpzinstall.log
Some files in TEMP:
====================
C:\Users\saxin\AppData\Local\Temp\libeay32.dll
C:\Users\saxin\AppData\Local\Temp\msvcr120.dll
C:\Users\saxin\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-09-06 08:55
==================== End of FRST.txt ============================
-
Rudy
- Site Admin
- Příspěvky: 119672
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Vir?
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
HKU\S-1-5-21-981060814-3022172332-2446712976-1001\...\MountPoints2: {38e4a828-2623-11e5-8401-90489ad651e2} - "F:\start.exe"
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => No File
ShellIconOverlayIdentifiers: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => No File
ShellIconOverlayIdentifiers: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => No File
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => No File
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-981060814-3022172332-2446712976-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://istart.webssearches.com/web/?typ ... KV75ARX&q={searchTerms}
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://istart.webssearches.com/web/?typ ... KV75ARX&q={searchTerms}
SearchScopes: HKU\S-1-5-21-981060814-3022172332-2446712976-1001 -> {A67A0724-E3DD-449B-A81F-8C2EFCACEB8E} URL = hxxp://www.gsrch.com/#q={searchTerms}
BHO-x32: No Name -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> No File
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
FF Keyword.URL: hxxp://www.gsrch.com/#q=
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin HKU\S-1-5-21-981060814-3022172332-2446712976-1001: @tools.google.com/Google Update;version=3 -> C:\Users\saxin\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll [No File]
FF Plugin HKU\S-1-5-21-981060814-3022172332-2446712976-1001: @tools.google.com/Google Update;version=9 -> C:\Users\saxin\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll [No File]
FF HKLM-x32\...\Firefox\Extensions: [firefox@bho.com] - C:\Program Files\Hewlett-Packard\SimplePass\FFBHOExt => not found
C:\Windows\system32\Drivers\SET7D89.tmp
C:\Users\saxin\AppData\Local\Temp
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Vir?
po fixu se pc zrestartoval fixlist.txt zmizel a naběhl tento log:
Fix result of Farbar Recovery Scan Tool (x64) Version: 12-09-2016
Ran by saxin (14-09-2016 20:18:33) Run:1
Running from C:\Users\saxin\Desktop
Loaded Profiles: saxin (Available Profiles: saxin)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
HKU\S-1-5-21-981060814-3022172332-2446712976-1001\...\MountPoints2: {38e4a828-2623-11e5-8401-90489ad651e2} - "F:\start.exe"
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => No File
ShellIconOverlayIdentifiers: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => No File
ShellIconOverlayIdentifiers: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => No File
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => No File
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-981060814-3022172332-2446712976-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://istart.webssearches.com/web/?typ ... KV75ARX&q={searchTerms}
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://istart.webssearches.com/web/?typ ... KV75ARX&q={searchTerms}
SearchScopes: HKU\S-1-5-21-981060814-3022172332-2446712976-1001 -> {A67A0724-E3DD-449B-A81F-8C2EFCACEB8E} URL = hxxp://www.gsrch.com/#q={searchTerms}
BHO-x32: No Name -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> No File
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
FF Keyword.URL: hxxp://www.gsrch.com/#q=
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin HKU\S-1-5-21-981060814-3022172332-2446712976-1001: @tools.google.com/Google Update;version=3 -> C:\Users\saxin\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll [No File]
FF Plugin HKU\S-1-5-21-981060814-3022172332-2446712976-1001: @tools.google.com/Google Update;version=9 -> C:\Users\saxin\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll [No File]
FF HKLM-x32\...\Firefox\Extensions: [firefox@bho.com] - C:\Program Files\Hewlett-Packard\SimplePass\FFBHOExt => not found
C:\Windows\system32\Drivers\SET7D89.tmp
C:\Users\saxin\AppData\Local\Temp
End
*****************
"HKU\S-1-5-21-981060814-3022172332-2446712976-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{38e4a828-2623-11e5-8401-90489ad651e2}" => key removed successfully
HKCR\CLSID\{38e4a828-2623-11e5-8401-90489ad651e2} => key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1" => key removed successfully
HKCR\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524} => key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2" => key removed successfully
HKCR\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282} => key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3" => key removed successfully
HKCR\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30} => key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4" => key removed successfully
HKCR\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A} => key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5" => key removed successfully
HKCR\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrivePro1 (ErrorConflict)" => key removed successfully
HKCR\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7} => key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrivePro2 (SyncInProgress)" => key removed successfully
HKCR\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE} => key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrivePro3 (InSync)" => key removed successfully
HKCR\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast" => key removed successfully
HKCR\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1" => key removed successfully
HKCR\Wow6432Node\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524} => key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2" => key removed successfully
HKCR\Wow6432Node\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282} => key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3" => key removed successfully
HKCR\Wow6432Node\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30} => key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4" => key removed successfully
HKCR\Wow6432Node\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A} => key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5" => key removed successfully
HKCR\Wow6432Node\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrivePro1 (ErrorConflict)" => key removed successfully
HKCR\Wow6432Node\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7} => key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrivePro2 (SyncInProgress)" => key removed successfully
HKCR\Wow6432Node\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE} => key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrivePro3 (InSync)" => key removed successfully
HKCR\Wow6432Node\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => key not found.
"HKLM\SOFTWARE\Policies\Google" => key removed successfully
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully
"HKU\S-1-5-21-981060814-3022172332-2446712976-1001\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}" => key removed successfully
HKCR\CLSID\{33BB0A4E-99AF-4226-BDF6-49120163DE86} => key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} => key not found.
HKCR\CLSID\{33BB0A4E-99AF-4226-BDF6-49120163DE86} => key not found.
"HKU\S-1-5-21-981060814-3022172332-2446712976-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{A67A0724-E3DD-449B-A81F-8C2EFCACEB8E}" => key removed successfully
HKCR\CLSID\{A67A0724-E3DD-449B-A81F-8C2EFCACEB8E} => key not found.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}" => key removed successfully
HKCR\Wow6432Node\CLSID\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE} => key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} => value removed successfully
HKCR\CLSID\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} => key not found.
Firefox "Keyword.URL" removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.0" => key removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1" => key removed successfully
"HKU\S-1-5-21-981060814-3022172332-2446712976-1001\Software\MozillaPlugins\@tools.google.com/Google Update;version=3" => key removed successfully
C:\Users\saxin\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll => not found.
"HKU\S-1-5-21-981060814-3022172332-2446712976-1001\Software\MozillaPlugins\@tools.google.com/Google Update;version=9" => key removed successfully
C:\Users\saxin\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll => not found.
HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\firefox@bho.com => value removed successfully
C:\Windows\system32\Drivers\SET7D89.tmp => moved successfully
"C:\Users\saxin\AppData\Local\Temp" folder move:
Could not move "C:\Users\saxin\AppData\Local\Temp" => Scheduled to move on reboot.
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 14-09-2016 20:21:13)
C:\Users\saxin\AppData\Local\Temp => moved successfully
==== End of Fixlog 20:21:27 ====
Fix result of Farbar Recovery Scan Tool (x64) Version: 12-09-2016
Ran by saxin (14-09-2016 20:18:33) Run:1
Running from C:\Users\saxin\Desktop
Loaded Profiles: saxin (Available Profiles: saxin)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
HKU\S-1-5-21-981060814-3022172332-2446712976-1001\...\MountPoints2: {38e4a828-2623-11e5-8401-90489ad651e2} - "F:\start.exe"
ShellIconOverlayIdentifiers: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
ShellIconOverlayIdentifiers: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => No File
ShellIconOverlayIdentifiers: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => No File
ShellIconOverlayIdentifiers: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => No File
ShellIconOverlayIdentifiers: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => No File
ShellIconOverlayIdentifiers: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => No File
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive1] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive2] -> {5AB7172C-9C11-405C-8DD5-AF20F3606282} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive3] -> {A78ED123-AB77-406B-9962-2A5D9D2F7F30} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive4] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => No File
ShellIconOverlayIdentifiers-x32: [ OneDrive5] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => No File
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => No File
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-981060814-3022172332-2446712976-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://istart.webssearches.com/web/?typ ... KV75ARX&q={searchTerms}
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://istart.webssearches.com/web/?typ ... KV75ARX&q={searchTerms}
SearchScopes: HKU\S-1-5-21-981060814-3022172332-2446712976-1001 -> {A67A0724-E3DD-449B-A81F-8C2EFCACEB8E} URL = hxxp://www.gsrch.com/#q={searchTerms}
BHO-x32: No Name -> {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} -> No File
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
FF Keyword.URL: hxxp://www.gsrch.com/#q=
FF Plugin-x32: @videolan.org/vlc,version=2.2.0 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [No File]
FF Plugin HKU\S-1-5-21-981060814-3022172332-2446712976-1001: @tools.google.com/Google Update;version=3 -> C:\Users\saxin\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll [No File]
FF Plugin HKU\S-1-5-21-981060814-3022172332-2446712976-1001: @tools.google.com/Google Update;version=9 -> C:\Users\saxin\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll [No File]
FF HKLM-x32\...\Firefox\Extensions: [firefox@bho.com] - C:\Program Files\Hewlett-Packard\SimplePass\FFBHOExt => not found
C:\Windows\system32\Drivers\SET7D89.tmp
C:\Users\saxin\AppData\Local\Temp
End
*****************
"HKU\S-1-5-21-981060814-3022172332-2446712976-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{38e4a828-2623-11e5-8401-90489ad651e2}" => key removed successfully
HKCR\CLSID\{38e4a828-2623-11e5-8401-90489ad651e2} => key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1" => key removed successfully
HKCR\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524} => key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2" => key removed successfully
HKCR\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282} => key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3" => key removed successfully
HKCR\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30} => key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4" => key removed successfully
HKCR\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A} => key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5" => key removed successfully
HKCR\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrivePro1 (ErrorConflict)" => key removed successfully
HKCR\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7} => key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrivePro2 (SyncInProgress)" => key removed successfully
HKCR\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE} => key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrivePro3 (InSync)" => key removed successfully
HKCR\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => key not found.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\00avast" => key removed successfully
HKCR\CLSID\{472083B0-C522-11CF-8763-00608CC02F24} => key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive1" => key removed successfully
HKCR\Wow6432Node\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524} => key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive2" => key removed successfully
HKCR\Wow6432Node\CLSID\{5AB7172C-9C11-405C-8DD5-AF20F3606282} => key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive3" => key removed successfully
HKCR\Wow6432Node\CLSID\{A78ED123-AB77-406B-9962-2A5D9D2F7F30} => key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive4" => key removed successfully
HKCR\Wow6432Node\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A} => key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ OneDrive5" => key removed successfully
HKCR\Wow6432Node\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrivePro1 (ErrorConflict)" => key removed successfully
HKCR\Wow6432Node\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7} => key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrivePro2 (SyncInProgress)" => key removed successfully
HKCR\Wow6432Node\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE} => key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\ SkyDrivePro3 (InSync)" => key removed successfully
HKCR\Wow6432Node\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => key not found.
"HKLM\SOFTWARE\Policies\Google" => key removed successfully
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully
"HKU\S-1-5-21-981060814-3022172332-2446712976-1001\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}" => key removed successfully
HKCR\CLSID\{33BB0A4E-99AF-4226-BDF6-49120163DE86} => key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86} => key not found.
HKCR\CLSID\{33BB0A4E-99AF-4226-BDF6-49120163DE86} => key not found.
"HKU\S-1-5-21-981060814-3022172332-2446712976-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{A67A0724-E3DD-449B-A81F-8C2EFCACEB8E}" => key removed successfully
HKCR\CLSID\{A67A0724-E3DD-449B-A81F-8C2EFCACEB8E} => key not found.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}" => key removed successfully
HKCR\Wow6432Node\CLSID\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE} => key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} => value removed successfully
HKCR\CLSID\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} => key not found.
Firefox "Keyword.URL" removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.0" => key removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1" => key removed successfully
"HKU\S-1-5-21-981060814-3022172332-2446712976-1001\Software\MozillaPlugins\@tools.google.com/Google Update;version=3" => key removed successfully
C:\Users\saxin\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll => not found.
"HKU\S-1-5-21-981060814-3022172332-2446712976-1001\Software\MozillaPlugins\@tools.google.com/Google Update;version=9" => key removed successfully
C:\Users\saxin\AppData\Local\Google\Update\1.3.24.15\npGoogleUpdate3.dll => not found.
HKLM\Software\Wow6432Node\Mozilla\Firefox\Extensions\\firefox@bho.com => value removed successfully
C:\Windows\system32\Drivers\SET7D89.tmp => moved successfully
"C:\Users\saxin\AppData\Local\Temp" folder move:
Could not move "C:\Users\saxin\AppData\Local\Temp" => Scheduled to move on reboot.
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 14-09-2016 20:21:13)
C:\Users\saxin\AppData\Local\Temp => moved successfully
==== End of Fixlog 20:21:27 ====
-
Rudy
- Site Admin
- Příspěvky: 119672
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Vir?
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
Rudy
- Site Admin
- Příspěvky: 119672
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Vir?
Máte zapnuto indexování? Pokud ne zapněte. Najdete to ve vlastnostech disku.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
Rudy
- Site Admin
- Příspěvky: 119672
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Vir?
Udělejte kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Vir?
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto
OS: Windows 10
CPU: x64
Souborový systém: NTFS
Uživatel: saxin
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 339454
Uplynulý čas: 3 hod, 47 min, 16 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Zapnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 0
(Nenalezeny žádné škodlivé položky)
Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 0
(Nenalezeny žádné škodlivé položky)
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto
OS: Windows 10
CPU: x64
Souborový systém: NTFS
Uživatel: saxin
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 339454
Uplynulý čas: 3 hod, 47 min, 16 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Zapnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 0
(Nenalezeny žádné škodlivé položky)
Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 0
(Nenalezeny žádné škodlivé položky)
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
-
Rudy
- Site Admin
- Příspěvky: 119672
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Vir?
Toto je OK, virový problém to není. Zkuste provést obnovu systému k datu, kdy korketně fungoval.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?