V poslední době se notebook strašně pomalu načítá,sekají se videa na netu a stránky se po přepnutí v panelech stále načítají,nezobrazuje se foto ve článcích.Děkuji za rady a pomoc.
Logfile of random's system information tool 1.10 (written by random/random)
Run by Můj at 2016-10-13 15:36:11
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 81 GB (59%) free of 137 GB
Total RAM: 2039 MB (18% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:36:39, on 13.10.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18098)
Boot mode: Normal
Running processes:
C:\windows\system32\Dwm.exe
C:\windows\Explorer.EXE
C:\windows\system32\taskhost.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\IDT\WDM\sttray.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\windows\system32\igfxsrvc.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
C:\windows\system32\wbem\unsecapp.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\windows\system32\Macromed\Flash\FlashPlayerPlugin_23_0_0_185.exe
C:\windows\system32\Macromed\Flash\FlashPlayerPlugin_23_0_0_185.exe
C:\windows\system32\taskhost.exe
C:\Program Files\Malwarebytes Anti-Malware\mbam.exe
C:\Users\Můj\Desktop\RSIT.exe
C:\Program Files\trend micro\Můj.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.seznam.cz/?clid=22668
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quick ... earchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?clid=22668
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.seznam.cz/?clid=22668
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quick ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?clid=22668
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
O1 - Hosts: 107.178.255.88 http://www.statcounter.com
O1 - Hosts: 107.178.255.88 statcounter.com
O1 - Hosts: 107.178.255.88 ssl.goo.88 partner.googleadservices.com
O1 - Hosts: 107.178.255.88 google-analytics.com
O1 - Hosts: 107.178.255.88 http://www.statcounter.com
O1 - Hosts: 107.178.255.88 statcounter.com
O1 - Hosts: 107.178.255.88 ssl.goo.88 partner.googleadservices.com
O1 - Hosts: 107.178.255.88 google-analytics.com
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O3 - Toolbar: (no name) - {0BF43445-2F28-4351-9252-17FE6E806AA0} - (no file)
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [PDF Complete] C:\Program Files\PDF Complete\pdfsty.exe
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [IgfxTray] C:\windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [BlazeServoTool] "C:\Program Files\BlazeVideo\BlazeDTV 6.0\MediaDetector.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://c:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @C:\Program Files\WIDCOMM\Bluetooth Software\btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://*.mcafee.com (HKLM)
O15 - Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)
O15 - Trusted Zone: http://vs.mcafeeasap.com (HKLM)
O15 - Trusted Zone: http://www.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://*.mcafee.com (HKLM)
O15 - ESC Trusted Zone: http://betavscan.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://vs.mcafeeasap.com (HKLM)
O15 - ESC Trusted Zone: http://www.mcafeeasap.com (HKLM)
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_b3d7bbbd6875f4bb\aestsrv.exe
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - LSI Corporation - C:\Program Files\LSI SoftModem\agrsmsvc.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
O23 - Service: GeniusMouseService - Unknown owner - C:\Genius\ioCentre\GMouseService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: MBAMScheduler - Malwarebytes - C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files\PDF Complete\pdfsvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\windows\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\windows\system32\PnkBstrB.exe
O23 - Service: RoxMediaDB10 - Sonic Solutions - c:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_b3d7bbbd6875f4bb\STacSV.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - c:\Program Files\Common Files\SureThing Shared\stllssvr.exe
--
End of file - 10312 bytes
======Scheduled tasks folder======
C:\windows\tasks\Adobe Flash Player Updater.job - C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\windows\tasks\HPCeeScheduleForMùj.job - C:\Program Files\hewlett-packard\sdp\ceement\HPCEE.exe HPCeeScheduleForMùj (null)
=========Mozilla firefox=========
ProfilePath - C:\Users\Můj\AppData\Roaming\Mozilla\Firefox\Profiles\vq28j942.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/?clid=22668"
prefs.js - "keyword.URL" - "http://search.seznam.cz/?sourceid=quick ... earchTerms}&"
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
"sp@avast.com"=C:\Program Files\AVAST Software\Avast\SafePrice\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 23.0.0.185 Plugin
"Path"=C:\windows\system32\Macromed\Flash\NPSWF32_23_0_0_185.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\windows\system32\Adobe\Director\np32dsw.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
C:\Users\Můj\AppData\Roaming\Mozilla\Firefox\Profiles\vq28j942.default\searchplugins\
icqplugin-2.xml
icqplugin-3.xml
icqplugin-4.xml
icqplugin.gif
icqplugin.src
icqplugin.xml
seznam-avast.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-07-27 63944]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-10-13 713440]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pro přihlášení ke službě Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{0BF43445-2F28-4351-9252-17FE6E806AA0}
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2009-06-17 186904]
"PDF Complete"=C:\Program Files\PDF Complete\pdfsty.exe [2009-06-18 563736]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2009-07-30 1545512]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray.exe [2009-07-14 458844]
"NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2006-01-12 155648]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-07-27 919008]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2009-09-23 141848]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2009-09-23 173592]
"Persistence"=C:\windows\system32\igfxpers.exe [2009-09-23 150552]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2016-10-13 9107616]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2012-04-11 3672384]
"BlazeServoTool"=C:\Program Files\BlazeVideo\BlazeDTV 6.0\MediaDetector.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPADVISOR]
C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe [2009-07-16 1668664]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ioCentre]
C:\Genius\ioCentre\gTaskBar.exe [2009-09-03 61440]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LightScribe Control Panel]
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2009-06-17 2363392]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QlbCtrl.exe]
C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe [2009-07-28 288312]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WirelessAssistant]
C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [2009-07-23 498744]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Adobe Gamma Loader.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2009-09-23 218112]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"msacm.siren"=sirenacm.dll
"VIDC.ACDV"=ACDV.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2016-10-13 15:36:13 ----D---- C:\Program Files\trend micro
2016-10-13 15:36:11 ----D---- C:\rsit
2016-10-13 14:39:12 ----A---- C:\windows\ucrtbase.dll
2016-10-13 14:39:12 ----A---- C:\windows\system32\aswBoot.exe
2016-10-13 14:38:44 ----A---- C:\windows\avastSS.scr
2016-10-13 14:34:56 ----A---- C:\windows\system32\drivers\MBAMSwissArmy.sys
2016-10-13 14:32:48 ----A---- C:\windows\system32\drivers\mbamchameleon.sys
2016-10-13 14:32:47 ----A---- C:\windows\system32\drivers\mwac.sys
2016-10-13 14:32:45 ----A---- C:\windows\system32\drivers\mbam.sys
2016-10-13 14:32:44 ----D---- C:\Program Files\Malwarebytes Anti-Malware
2016-10-02 09:46:13 ----D---- C:\Program Files\Mozilla Firefox
======List of files/folders modified in the last 1 month======
2016-10-13 15:36:13 ----D---- C:\Program Files
2016-10-13 15:07:14 ----D---- C:\windows\Temp
2016-10-13 15:06:50 ----AD---- C:\windows\system32\drivers
2016-10-13 14:47:16 ----D---- C:\windows\system32\Tasks
2016-10-13 14:46:46 ----D---- C:\windows\system32\config
2016-10-13 14:45:46 ----D---- C:\windows\winsxs
2016-10-13 14:39:12 ----D---- C:\windows\System32
2016-10-13 14:39:12 ----D---- C:\Windows
2016-10-13 14:32:44 ----D---- C:\ProgramData\Malwarebytes
2016-10-13 14:30:27 ----A---- C:\windows\system32\FlashPlayerApp.exe
2016-10-13 14:30:20 ----D---- C:\windows\system32\Macromed
2016-10-09 14:59:27 ----D---- C:\windows\Tasks
2016-10-06 15:11:38 ----D---- C:\windows\system32\catroot2
2016-10-06 09:30:35 ----D---- C:\Program Files\Mozilla Maintenance Service
2016-09-30 12:31:30 ----SHD---- C:\System Volume Information
2016-09-21 11:11:19 ----HD---- C:\ProgramData
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aic78xx;aic78xx; C:\windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
R0 aswRvrt;avast! Revert; C:\windows\system32\drivers\aswRvrt.sys [2016-10-13 60424]
R0 aswVmm;avast! VM Monitor; C:\windows\system32\drivers\aswVmm.sys [2016-10-13 224752]
R0 iaStor;Intel RAID Controller; C:\windows\system32\DRIVERS\iaStor.sys [2009-06-05 330264]
R0 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 PxHelp20;PxHelp20; C:\windows\System32\Drivers\PxHelp20.sys [2009-07-09 45200]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 sptd;sptd; C:\windows\System32\Drivers\sptd.sys [2012-06-05 477240]
R1 aswKbd;aswKbd; C:\windows\system32\drivers\aswKbd.sys [2016-10-13 35096]
R1 aswRdr;aswRdr; C:\windows\system32\drivers\aswRdr2.sys [2016-10-13 91232]
R1 aswSnx;aswSnx; C:\windows\system32\drivers\aswSnx.sys [2016-10-13 735488]
R1 aswSP;aswSP; C:\windows\system32\drivers\aswSP.sys [2016-10-13 433768]
R1 mfehidk;McAfee Inc. mfehidk; C:\windows\system32\drivers\mfehidk.sys [2009-05-16 214024]
R1 mfetdik;McAfee Inc. mfetdik; C:\windows\system32\drivers\mfetdik.sys [2009-05-16 55336]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 aswMonFlt;aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [2016-10-13 92256]
R2 aswStm;aswStm; C:\windows\system32\drivers\aswStm.sys [2016-10-13 118664]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\AGRSM.sys [2009-07-27 1161664]
R3 BCM43XX;Ovladač síťového adaptéru Broadcom 802.11; C:\windows\system32\DRIVERS\bcmwl6.sys [2010-03-24 2506232]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
R3 btwaudio;Bluetooth Audio Device Service; C:\windows\system32\drivers\btwaudio.sys [2009-07-01 86056]
R3 btwavdt;Bluetooth AVDT; C:\windows\system32\DRIVERS\btwavdt.sys [2009-07-01 108072]
R3 btwl2cap;Bluetooth L2CAP Service; C:\windows\system32\DRIVERS\btwl2cap.sys [2009-04-08 29472]
R3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys [2009-07-01 18344]
R3 HBtnKey;HBtnKey; C:\windows\system32\DRIVERS\cpqbttn.sys [2009-04-20 9344]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2009-04-29 15872]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd32.sys [2009-09-23 4808192]
R3 MBAMProtector;MBAMProtector; \??\C:\windows\system32\drivers\mbam.sys [2016-03-10 24448]
R3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\windows\system32\drivers\MBAMSwissArmy.sys [2016-10-13 170200]
R3 MBAMWebAccessControl;MBAMWebAccessControl; \??\C:\windows\system32\drivers\mwac.sys [2016-03-10 53120]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
R3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\windows\system32\DRIVERS\snp2uvc.sys [2009-07-02 1765168]
R3 STHDA;IDT High Definition Audio CODEC; C:\windows\system32\DRIVERS\stwrt.sys [2009-07-14 408576]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2009-07-30 213680]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
S2 Parvdm;Parvdm; C:\windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 AF15BDA;AF9015 BDA Device; C:\windows\system32\DRIVERS\AF15BDA.sys [2012-06-15 483200]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 aswHwid;avast! HardwareID; C:\windows\system32\drivers\aswHwid.sys [2016-10-13 34008]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 MfeAVFK;McAfee Inc. MfeAVFK; C:\windows\system32\drivers\MfeAVFK.sys [2009-05-16 79816]
S3 MfeBOPK;McAfee Inc. MfeBOPK; C:\windows\system32\drivers\MfeBOPK.sys [2009-05-16 35272]
S3 MfeRKDK;McAfee Inc. MfeRKDK; C:\windows\system32\drivers\MfeRKDK.sys [2009-05-16 34248]
S3 netw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit; C:\windows\system32\DRIVERS\netw5v32.sys [2009-07-14 4231168]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\windows\System32\drivers\rdpvideominiport.sys [2012-08-23 14848]
S3 sisagp;Filtr SIS sběrnice AGP; C:\windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2009-07-14 30720]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\windows\System32\drivers\tsusbflt.sys [2012-08-23 49664]
S3 usbscan;Ovladač skeneru USB; C:\windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
S3 viaagp;Filtr VIA sběrnice AGP; C:\windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-07-27 63960]
R2 AESTFilters;Andrea ST Filters Service; C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_b3d7bbbd6875f4bb\aestsrv.exe [2009-03-02 81920]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [2009-07-27 14336]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-10-13 197128]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-07-30 582944]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2009-07-14 20992]
R2 GeniusMouseService;GeniusMouseService; C:\Genius\ioCentre\GMouseService.exe [2010-03-11 12288]
R2 HP Health Check Service;HP Health Check Service; C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [2009-07-10 124928]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2009-06-17 354840]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2009-06-17 73728]
R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [2016-03-10 1136608]
R2 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [2016-03-10 1514464]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files\PDF Complete\pdfsvc.exe [2009-06-18 635416]
R2 PnkBstrA;PnkBstrA; C:\windows\system32\PnkBstrA.exe [2013-04-03 66872]
R2 PnkBstrB;PnkBstrB; C:\windows\system32\PnkBstrB.exe [2013-04-03 103736]
R2 STacSV;Audio Service; C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_b3d7bbbd6875f4bb\STacSV.exe [2009-07-14 221266]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-12 103608]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-10-13 270016]
S3 Com4QLBEx;Com4QLBEx; C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2009-05-05 228408]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-01 144200]
S3 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2009-05-01 229944]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2015-10-31 102912]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2016-10-02 172488]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2006-11-10 774144]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 RoxMediaDB10;RoxMediaDB10; c:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [2009-06-13 1120752]
S3 stllssvr;stllssvr; c:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2009-04-30 74392]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2011-06-21 1343400]
S4 aspnet_state;Stavová služba ASP.NET; C:\windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2014-04-12 45744]
S4 NetMsmqActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
prosím o kontrolu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: prosím o kontrolu
Zdravim 
Stahnete AdwCleaner https://toolslib.net/downloads/finish/1/ a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Cleaning
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner[C?].txt ). Ten mi sem zkopirujte.
Udelejte novou kontrolu s MBAM. Test nastavte podle tohoto navodu (cili Vlastni sken vsech disku) http://forum.viry.cz/viewtopic.php?f=29&t=144868 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce
Stahnete AdwCleaner https://toolslib.net/downloads/finish/1/ a ulozte ho na plochu.Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Cleaning
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner[C?].txt ). Ten mi sem zkopirujte.
Udelejte novou kontrolu s MBAM. Test nastavte podle tohoto navodu (cili Vlastni sken vsech disku) http://forum.viry.cz/viewtopic.php?f=29&t=144868 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekcePokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: prosím o kontrolu
# AdwCleaner v6.021 - Log soubor vytvořen 13/10/2016 na 17:44:34
# Aktualizováno dne 06/10/2016 z ToolsLib
# Databáze : 2016-10-13.1 [Server]
# Operační systém : Windows 7 Home Premium Service Pack 1 (X86)
# Uživatelské jméno : Můj - PC
# Beží od : C:\Users\Můj\Downloads\adwcleaner_6.021.exe
# Mod: Čištění
# Podpora : https://toolslib.net/forum
***** [ Služby ] *****
***** [ Adresáře ] *****
[-] Adresář smazán:C:\Users\Můj\AppData\Roaming\Mozilla\Firefox\Profiles\vq28j942.default\ICQToolbarData
[-] Adresář smazán:C:\Genius
[-] Adresář smazán:C:\ProgramData\ICQ\ICQToolbar
[#] Adresář nelze smazat:C:\ProgramData\Application Data\ICQ\ICQToolbar
[-] Adresář smazán:C:\Program Files\ICQ6Toolbar
***** [ Soubory ] *****
[-] Soubor smazán:C:\Users\Můj\AppData\Roaming\Mozilla\Firefox\Profiles\vq28j942.default\searchplugins\icqplugin-2.xml
[-] Soubor smazán:C:\Users\Můj\AppData\Roaming\Mozilla\Firefox\Profiles\vq28j942.default\searchplugins\icqplugin-3.xml
[-] Soubor smazán:C:\Users\Můj\AppData\Roaming\Mozilla\Firefox\Profiles\vq28j942.default\searchplugins\icqplugin-4.xml
[-] Soubor smazán:C:\Users\Můj\AppData\Roaming\Mozilla\Firefox\Profiles\vq28j942.default\searchplugins\icqplugin.gif
[-] Soubor smazán:C:\Users\Můj\AppData\Roaming\Mozilla\Firefox\Profiles\vq28j942.default\searchplugins\icqplugin.src
[-] Soubor smazán:C:\Users\Můj\AppData\Roaming\Mozilla\Firefox\Profiles\vq28j942.default\searchplugins\icqplugin.xml
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Zástupce ] *****
***** [ Plánovač úloh ] *****
***** [ Registry ] *****
[-] Hodnota smazána:HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{32099AAC-C132-4136-9E9A-4E364A424E17}]
[-] Klíč smazán:HKU\S-1-5-21-2528192400-3420705059-2572034240-1001\Software\dt soft\daemon tools toolbar
[#] Klíč smazán po restartování:HKCU\Software\dt soft\daemon tools toolbar
[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolbar
[-] Klíč smazán:HKLM\SOFTWARE\ICQ\ICQToolbar
[-] Data obnovena:HKU\S-1-5-21-2528192400-3420705059-2572034240-1001\Software\Microsoft\Internet Explorer\Main [ICQ Search]
[-] Data obnovena:HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
[-] Klíč smazán:HKU\S-1-5-21-2528192400-3420705059-2572034240-1001\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
[-] Klíč smazán:HKU\S-1-5-21-2528192400-3420705059-2572034240-1001\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}
[#] Klíč smazán po restartování:HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
[#] Klíč smazán po restartování:HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}
[-] Hodnota smazána:HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
***** [ Prohlížeče ] *****
[-] Firefox nastavení vyčištěno:"icqtoolbar.allowSendURL" - false
[-] Firefox nastavení vyčištěno:"icqtoolbar.engineVerified" - false
[-] Firefox nastavení vyčištěno:"icqtoolbar.facebookSmilesAddonShowedPopup" - true
[-] Firefox nastavení vyčištěno:"icqtoolbar.firstTbRun" - false
[-] Firefox nastavení vyčištěno:"icqtoolbar.geolastmodified" - 1411634746
[-] Firefox nastavení vyčištěno:"icqtoolbar.history" - "%C5%A1koda%20fabia%20combi%20auta tdi%20auta lpg%20auta Kancel%C3%A1%C5%99e Obchodn%C3%AD%20prostory Tich%C3%A1%20467%2C%20Tich%C3%A1 Zahradnick%C3%A1%206%2C%20Brno-Star%C3%A9%20Brno nafta%20auta renault%20espace%20auta york%C5%A1%C3%ADrsk%C3%BD%20terier Psi sdi%20auta olesnice skipark byty%20domy"
[-] Firefox nastavení vyčištěno:"icqtoolbar.icqgeo" - 42
[-] Firefox nastavení vyčištěno:"icqtoolbar.installTime" - "1349807103"
[-] Firefox nastavení vyčištěno:"icqtoolbar.installsource" - "1"
[-] Firefox nastavení vyčištěno:"icqtoolbar.newtab_most_visited_state" - "1"
[-] Firefox nastavení vyčištěno:"icqtoolbar.newtab_recently_closed_state" - "1"
[-] Firefox nastavení vyčištěno:"icqtoolbar.newtab_state" - "1"
[-] Firefox nastavení vyčištěno:"icqtoolbar.numberOfSearches" - 0
[-] Firefox nastavení vyčištěno:"icqtoolbar.previousFFVersion" - "31.0"
[-] Firefox nastavení vyčištěno:"icqtoolbar.skip_default_search" - "no"
[-] Firefox nastavení vyčištěno:"icqtoolbar.suggestions" - false
[-] Firefox nastavení vyčištěno:"icqtoolbar.uniqueID" - "130909724513090974851309103671497"
[-] Firefox nastavení vyčištěno:"icqtoolbar.usageStatstTimestamp" - 1411889865
[-] Firefox nastavení vyčištěno:"icqtoolbar.version" - "1.5.3"
[-] Firefox nastavení vyčištěno:"icqtoolbar.voucherHideClicks" - 0
[-] Firefox nastavení vyčištěno:"icqtoolbar.voucherMoreLinkClicks" - 0
[-] Firefox nastavení vyčištěno:"icqtoolbar.voucherRedeemClicks" - 0
[-] Firefox nastavení vyčištěno:"icqtoolbar.voucherWasShown" - 0
[-] Firefox nastavení vyčištěno:"icqtoolbar.xmlEnableSuggestions" - false
[-] Firefox nastavení vyčištěno:"icqtoolbar.xmlLanguage" - "cs"
*************************
:: "Tracing" klíč smazán
:: Winsock nastavení vyčištěno
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [5377 Bajtů] - [13/10/2016 17:44:34]
C:\AdwCleaner\AdwCleaner[S0].txt - [7482 Bajtů] - [13/10/2016 17:32:30]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [5525 Bajtů] ##########
# Aktualizováno dne 06/10/2016 z ToolsLib
# Databáze : 2016-10-13.1 [Server]
# Operační systém : Windows 7 Home Premium Service Pack 1 (X86)
# Uživatelské jméno : Můj - PC
# Beží od : C:\Users\Můj\Downloads\adwcleaner_6.021.exe
# Mod: Čištění
# Podpora : https://toolslib.net/forum
***** [ Služby ] *****
***** [ Adresáře ] *****
[-] Adresář smazán:C:\Users\Můj\AppData\Roaming\Mozilla\Firefox\Profiles\vq28j942.default\ICQToolbarData
[-] Adresář smazán:C:\Genius
[-] Adresář smazán:C:\ProgramData\ICQ\ICQToolbar
[#] Adresář nelze smazat:C:\ProgramData\Application Data\ICQ\ICQToolbar
[-] Adresář smazán:C:\Program Files\ICQ6Toolbar
***** [ Soubory ] *****
[-] Soubor smazán:C:\Users\Můj\AppData\Roaming\Mozilla\Firefox\Profiles\vq28j942.default\searchplugins\icqplugin-2.xml
[-] Soubor smazán:C:\Users\Můj\AppData\Roaming\Mozilla\Firefox\Profiles\vq28j942.default\searchplugins\icqplugin-3.xml
[-] Soubor smazán:C:\Users\Můj\AppData\Roaming\Mozilla\Firefox\Profiles\vq28j942.default\searchplugins\icqplugin-4.xml
[-] Soubor smazán:C:\Users\Můj\AppData\Roaming\Mozilla\Firefox\Profiles\vq28j942.default\searchplugins\icqplugin.gif
[-] Soubor smazán:C:\Users\Můj\AppData\Roaming\Mozilla\Firefox\Profiles\vq28j942.default\searchplugins\icqplugin.src
[-] Soubor smazán:C:\Users\Můj\AppData\Roaming\Mozilla\Firefox\Profiles\vq28j942.default\searchplugins\icqplugin.xml
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Zástupce ] *****
***** [ Plánovač úloh ] *****
***** [ Registry ] *****
[-] Hodnota smazána:HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{32099AAC-C132-4136-9E9A-4E364A424E17}]
[-] Klíč smazán:HKU\S-1-5-21-2528192400-3420705059-2572034240-1001\Software\dt soft\daemon tools toolbar
[#] Klíč smazán po restartování:HKCU\Software\dt soft\daemon tools toolbar
[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\LowRegistry\ICQ\ICQToolbar
[-] Klíč smazán:HKLM\SOFTWARE\ICQ\ICQToolbar
[-] Data obnovena:HKU\S-1-5-21-2528192400-3420705059-2572034240-1001\Software\Microsoft\Internet Explorer\Main [ICQ Search]
[-] Data obnovena:HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
[-] Klíč smazán:HKU\S-1-5-21-2528192400-3420705059-2572034240-1001\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
[-] Klíč smazán:HKU\S-1-5-21-2528192400-3420705059-2572034240-1001\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}
[#] Klíč smazán po restartování:HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6552C7DD-90A4-4387-B795-F8F96747DE19}
[#] Klíč smazán po restartování:HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4fc7-90CC-5EA0ABBE9EB8}
[-] Hodnota smazána:HKCU\Software\Microsoft\Internet Explorer\Main [ICQ Search]
***** [ Prohlížeče ] *****
[-] Firefox nastavení vyčištěno:"icqtoolbar.allowSendURL" - false
[-] Firefox nastavení vyčištěno:"icqtoolbar.engineVerified" - false
[-] Firefox nastavení vyčištěno:"icqtoolbar.facebookSmilesAddonShowedPopup" - true
[-] Firefox nastavení vyčištěno:"icqtoolbar.firstTbRun" - false
[-] Firefox nastavení vyčištěno:"icqtoolbar.geolastmodified" - 1411634746
[-] Firefox nastavení vyčištěno:"icqtoolbar.history" - "%C5%A1koda%20fabia%20combi%20auta tdi%20auta lpg%20auta Kancel%C3%A1%C5%99e Obchodn%C3%AD%20prostory Tich%C3%A1%20467%2C%20Tich%C3%A1 Zahradnick%C3%A1%206%2C%20Brno-Star%C3%A9%20Brno nafta%20auta renault%20espace%20auta york%C5%A1%C3%ADrsk%C3%BD%20terier Psi sdi%20auta olesnice skipark byty%20domy"
[-] Firefox nastavení vyčištěno:"icqtoolbar.icqgeo" - 42
[-] Firefox nastavení vyčištěno:"icqtoolbar.installTime" - "1349807103"
[-] Firefox nastavení vyčištěno:"icqtoolbar.installsource" - "1"
[-] Firefox nastavení vyčištěno:"icqtoolbar.newtab_most_visited_state" - "1"
[-] Firefox nastavení vyčištěno:"icqtoolbar.newtab_recently_closed_state" - "1"
[-] Firefox nastavení vyčištěno:"icqtoolbar.newtab_state" - "1"
[-] Firefox nastavení vyčištěno:"icqtoolbar.numberOfSearches" - 0
[-] Firefox nastavení vyčištěno:"icqtoolbar.previousFFVersion" - "31.0"
[-] Firefox nastavení vyčištěno:"icqtoolbar.skip_default_search" - "no"
[-] Firefox nastavení vyčištěno:"icqtoolbar.suggestions" - false
[-] Firefox nastavení vyčištěno:"icqtoolbar.uniqueID" - "130909724513090974851309103671497"
[-] Firefox nastavení vyčištěno:"icqtoolbar.usageStatstTimestamp" - 1411889865
[-] Firefox nastavení vyčištěno:"icqtoolbar.version" - "1.5.3"
[-] Firefox nastavení vyčištěno:"icqtoolbar.voucherHideClicks" - 0
[-] Firefox nastavení vyčištěno:"icqtoolbar.voucherMoreLinkClicks" - 0
[-] Firefox nastavení vyčištěno:"icqtoolbar.voucherRedeemClicks" - 0
[-] Firefox nastavení vyčištěno:"icqtoolbar.voucherWasShown" - 0
[-] Firefox nastavení vyčištěno:"icqtoolbar.xmlEnableSuggestions" - false
[-] Firefox nastavení vyčištěno:"icqtoolbar.xmlLanguage" - "cs"
*************************
:: "Tracing" klíč smazán
:: Winsock nastavení vyčištěno
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [5377 Bajtů] - [13/10/2016 17:44:34]
C:\AdwCleaner\AdwCleaner[S0].txt - [7482 Bajtů] - [13/10/2016 17:32:30]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [5525 Bajtů] ##########
Re: prosím o kontrolu
Tak jeste ten MBAM a podle vysledku se zaridime dale.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: prosím o kontrolu
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 14.10.2016
Čas skenování: 18:16
Protokol: mab.txt
Správce: Ano
Verze: 2.2.1.1043
Databáze malwaru: v2016.10.14.07
Databáze rootkitů: v2016.09.26.02
Licence: Premium
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto
OS: Windows 7 Service Pack 1
CPU: x86
Souborový systém: NTFS
Uživatel: Můj
Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 487437
Uplynulý čas: 3 hod, 26 min, 3 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Zapnuto
Sken hloubkových rootkitů: Zapnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 0
(Nenalezeny žádné škodlivé položky)
Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 6
Hijack.Host, C:\Windows\System32\drivers\etc\hosts, Dobré: (), Špatné: (107.178.255.88 www.statcounter.com), ,[ed323e5b6b2f35018afc86178e76d22e]
Hijack.Host, C:\Windows\System32\drivers\etc\hosts, Dobré: (), Špatné: (tatcounter.com
107.178.255.88), ,[99864d4c6e2c81b5f6909eff51b3a25e]
Hijack.Host, C:\Windows\System32\drivers\etc\hosts, Dobré: (), Špatné: (ww.statcounter.com
107.178.255.88 statcounter.com
10), ,[948b9cfd8317cb6bc5c1c4d96a9a7789]
Hijack.Host, C:\Windows\System32\drivers\etc\hosts, Dobré: (), Špatné: (178.255.88 statcounter.com
107.178), ,[948bf0a9edad0a2c0185a6f7808458a8]
Hijack.Host, C:\Windows\System32\drivers\etc\hosts, Dobré: (), Špatné: (ter.com
107.178.255.88 statcounte), ,[44dbeaafc3d77db98402623b8b799b65]
Hijack.HostFile, C:\Windows\System32\drivers\etc\hosts, Dobré: (), Špatné: (0.0.0.0 keystone.mwbsys.com), ,[ac73b9e04d4d979fcaea427524e0ee12]
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
www.malwarebytes.org
Datum skenování: 14.10.2016
Čas skenování: 18:16
Protokol: mab.txt
Správce: Ano
Verze: 2.2.1.1043
Databáze malwaru: v2016.10.14.07
Databáze rootkitů: v2016.09.26.02
Licence: Premium
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto
OS: Windows 7 Service Pack 1
CPU: x86
Souborový systém: NTFS
Uživatel: Můj
Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 487437
Uplynulý čas: 3 hod, 26 min, 3 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Zapnuto
Sken hloubkových rootkitů: Zapnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 0
(Nenalezeny žádné škodlivé položky)
Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 6
Hijack.Host, C:\Windows\System32\drivers\etc\hosts, Dobré: (), Špatné: (107.178.255.88 www.statcounter.com), ,[ed323e5b6b2f35018afc86178e76d22e]
Hijack.Host, C:\Windows\System32\drivers\etc\hosts, Dobré: (), Špatné: (tatcounter.com
107.178.255.88), ,[99864d4c6e2c81b5f6909eff51b3a25e]
Hijack.Host, C:\Windows\System32\drivers\etc\hosts, Dobré: (), Špatné: (ww.statcounter.com
107.178.255.88 statcounter.com
10), ,[948b9cfd8317cb6bc5c1c4d96a9a7789]
Hijack.Host, C:\Windows\System32\drivers\etc\hosts, Dobré: (), Špatné: (178.255.88 statcounter.com
107.178), ,[948bf0a9edad0a2c0185a6f7808458a8]
Hijack.Host, C:\Windows\System32\drivers\etc\hosts, Dobré: (), Špatné: (ter.com
107.178.255.88 statcounte), ,[44dbeaafc3d77db98402623b8b799b65]
Hijack.HostFile, C:\Windows\System32\drivers\etc\hosts, Dobré: (), Špatné: (0.0.0.0 keystone.mwbsys.com), ,[ac73b9e04d4d979fcaea427524e0ee12]
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
Re: prosím o kontrolu
Nalezy nechte odstranit.
Vidim, ze mate MBAM plnou verzi. To mate nejak docasne, nebo koupenou? Ja jen ze tam mate i Avast a kdyz maji oba zapnuty stit, dochazi ke kolizi. Proto jeden antivir musi ven. Dejte logy podle tohoto navodu http://forum.viry.cz/viewtopic.php?f=13&t=133100 - vypnete na chvili antivir, je mozne, ze to bude blokovat jako skodnou, ale pouzivame to porad, jedna se o falesny poplach (Kdyby nesel Launcher stahnout, dejte logy jen ze samotneho FRST, tedy bez pouziti Launcheru)
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: prosím o kontrolu
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 13-10-2016
Ran by Můj (administrator) on PC (15-10-2016 18:07:21)
Running from C:\Users\Můj\Desktop
Loaded Profiles: Můj (Available Profiles: Můj)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(IDT, Inc.) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_b3d7bbbd6875f4bb\stacsv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Andrea Electronics Corporation) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_b3d7bbbd6875f4bb\AEstSrv.exe
(LSI Corporation) C:\Program Files\LSI SoftModem\agrsmsvc.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
(PDF Complete Inc) C:\Program Files\PDF Complete\pdfsvc.exe
() C:\Windows\System32\PnkBstrA.exe
() C:\Windows\System32\PnkBstrB.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Service.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\Temp\A8DBC274-247E-4892-92FF-67D7803E6CA8\DismHost.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [IAAnotif] => C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-06-17] (Intel Corporation)
HKLM\...\Run: [PDF Complete] => C:\Program Files\PDF Complete\pdfsty.exe [563736 2009-06-18] (PDF Complete Inc)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1545512 2009-07-30] (Synaptics Incorporated)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray.exe [458844 2009-07-14] (IDT, Inc.)
HKLM\...\Run: [NeroFilterCheck] => C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [155648 2006-01-12] (Nero AG)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [919008 2012-07-27] (Adobe Systems Incorporated)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9083840 2016-10-13] (AVAST Software)
HKU\S-1-5-21-2528192400-3420705059-2572034240-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3672384 2012-04-11] (DT Soft Ltd)
HKU\S-1-5-21-2528192400-3420705059-2572034240-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6868696 2016-08-26] (Piriform Ltd)
HKU\S-1-5-21-2528192400-3420705059-2572034240-1001\...\Run: [CCleaner] => C:\Program Files\CCleaner\CCleaner.exe [6868696 2016-08-26] (Piriform Ltd)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2016-10-13] (AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk [2010-03-24]
ShortcutTarget: Adobe Gamma Loader.lnk -> C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2010-03-24]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{35181EB4-02B0-4C2D-86D1-49EF13922B59}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{CA3D433D-57BB-4EB9-AAE4-B0853CAFA049}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/?clid=22668
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-2528192400-3420705059-2572034240-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/
HKU\S-1-5-21-2528192400-3420705059-2572034240-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
HKU\S-1-5-21-2528192400-3420705059-2572034240-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://www.seznam.cz/?clid=22668
SearchScopes: HKLM -> DefaultScope {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKLM -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2528192400-3420705059-2572034240-1001 -> DefaultScope {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2528192400-3420705059-2572034240-1001 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-07-27] (Adobe Systems Incorporated)
BHO: No Name -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> No File
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO: Pomocník pro přihlášení ke službě Windows Live -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17] (Microsoft Corporation)
Toolbar: HKLM - No Name - {0BF43445-2F28-4351-9252-17FE6E806AA0} - No File
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8050.1202.dll [2008-12-02] (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8050.1202.dll [2008-12-02] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Můj\AppData\Roaming\Mozilla\Firefox\Profiles\vq28j942.default [2016-10-15]
FF DefaultSearchUrl: Mozilla\Firefox\Profiles\vq28j942.default -> hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}&
FF SearchEngineOrder.1: Mozilla\Firefox\Profiles\vq28j942.default -> Seznam
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\vq28j942.default -> Seznam
FF Homepage: Mozilla\Firefox\Profiles\vq28j942.default -> hxxps://www.seznam.cz/
FF Keyword.URL: Mozilla\Firefox\Profiles\vq28j942.default -> hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}&
FF NetworkProxy: Mozilla\Firefox\Profiles\vq28j942.default -> type", 0
FF Extension: (Firefox Hotfix) - C:\Users\Můj\AppData\Roaming\Mozilla\Firefox\Profiles\vq28j942.default\Extensions\firefox-hotfix@mozilla.org.xpi [2016-08-31]
FF Extension: (Adblock Plus) - C:\Users\Můj\AppData\Roaming\Mozilla\Firefox\Profiles\vq28j942.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-10-13]
FF SearchPlugin: C:\Users\Můj\AppData\Roaming\Mozilla\Firefox\Profiles\vq28j942.default\searchplugins\seznam-avast.xml [2014-09-29]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-10-13]
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF32_23_0_0_185.dll [2016-10-13] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\windows\system32\Adobe\Director\np32dsw.dll [2011-06-10] (Adobe Systems, Inc.)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-02] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-02] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2012-07-27] (Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxps://www.seznam.cz/?clid=22668
CHR StartupUrls: Default -> "hxxps://www.seznam.cz/?clid=22668"
CHR DefaultSearchURL: Default -> hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
CHR DefaultSearchKeyword: Default -> seznam
CHR DefaultSuggestURL: Default -> hxxp://suggest.fulltext.seznam.cz/fulltext_ff?phrase={searchTerms}
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\53.0.2785.143\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\53.0.2785.143\ppGoogleNaClPluginChrome.dll => No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\53.0.2785.143\pdf.dll => No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll => No File
CHR Plugin: (Shockwave for Director) - C:\windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
CHR Plugin: (Shockwave Flash) - C:\windows\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll => No File
CHR Profile: C:\Users\Můj\AppData\Local\Google\Chrome\User Data\Default [2016-10-14]
CHR Extension: (Avast SafePrice) - C:\Users\Můj\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2016-10-13]
CHR Extension: (No Name) - C:\Users\Můj\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-08-30]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Můj\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-10-13]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AgereModemAudio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [14336 2009-07-27] (LSI Corporation)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-10-13] (AVAST Software)
R2 HP Health Check Service; C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [124928 2009-07-10] (Hewlett-Packard) [File not signed]
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 LightScribeService; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [73728 2009-06-17] (Hewlett-Packard Company) [File not signed]
S2 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes)
S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
S3 NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [774144 2006-11-10] (Nero AG) [File not signed]
R2 pdfcDispatcher; C:\Program Files\PDF Complete\pdfsvc.exe [635416 2009-06-18] (PDF Complete Inc)
R2 PnkBstrA; C:\windows\system32\PnkBstrA.exe [66872 2013-04-03] ()
R2 PnkBstrB; C:\windows\system32\PnkBstrB.exe [103736 2013-04-03] ()
R2 STacSV; C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_b3d7bbbd6875f4bb\STacSV.exe [221266 2009-07-14] (IDT, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
S2 GeniusMouseService; C:\Genius\ioCentre\GMouseService.exe [X]
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AF15BDA; C:\windows\System32\DRIVERS\AF15BDA.sys [483200 2012-06-15] (ITETech )
S3 aswHwid; C:\windows\system32\drivers\aswHwid.sys [34008 2016-10-13] (AVAST Software)
R1 aswKbd; C:\windows\system32\drivers\aswKbd.sys [35096 2016-10-13] (AVAST Software)
R2 aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [92256 2016-10-13] (AVAST Software)
R1 aswRdr; C:\windows\system32\drivers\aswRdr2.sys [91232 2016-10-13] (AVAST Software)
R0 aswRvrt; C:\windows\system32\Drivers\aswRvrt.sys [60424 2016-10-13] (AVAST Software)
R1 aswSnx; C:\windows\system32\drivers\aswSnx.sys [735488 2016-10-13] (AVAST Software)
R1 aswSP; C:\windows\system32\drivers\aswSP.sys [433768 2016-10-13] (AVAST Software)
S2 aswStm; C:\windows\system32\drivers\aswStm.sys [118664 2016-10-13] (AVAST Software)
R0 aswVmm; C:\windows\system32\Drivers\aswVmm.sys [224752 2016-10-13] (AVAST Software)
S3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [24448 2016-03-10] (Malwarebytes)
S3 MBAMWebAccessControl; C:\windows\system32\drivers\mwac.sys [53120 2016-03-10] (Malwarebytes Corporation)
S3 MfeAVFK; C:\windows\System32\drivers\MfeAVFK.sys [79816 2009-05-16] (McAfee, Inc.)
S3 MfeBOPK; C:\windows\System32\drivers\MfeBOPK.sys [35272 2009-05-16] (McAfee, Inc.)
R1 mfehidk; C:\windows\System32\drivers\mfehidk.sys [214024 2009-05-16] (McAfee, Inc.)
S3 MfeRKDK; C:\windows\System32\drivers\MfeRKDK.sys [34248 2009-05-16] (McAfee, Inc.)
R1 mfetdik; C:\windows\System32\drivers\mfetdik.sys [55336 2009-05-16] (McAfee, Inc.)
R3 SNP2UVC; C:\windows\System32\DRIVERS\snp2uvc.sys [1765168 2009-07-02] ()
R0 sptd; C:\windows\System32\Drivers\sptd.sys [477240 2012-06-05] (Duplex Secure Ltd.)
U3 an3vvz4n; C:\windows\system32\Drivers\an3vvz4n.sys [0 ] (VIA Technologies Inc.,Ltd) <==== ATTENTION (zero byte File/Folder)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-10-15 18:07 - 2016-10-15 18:07 - 00016683 _____ C:\Users\Můj\Desktop\FRST.txt
2016-10-15 18:06 - 2016-10-15 18:07 - 00000000 ____D C:\FRST
2016-10-15 18:06 - 2016-10-15 18:06 - 01756672 _____ (Farbar) C:\Users\Můj\Desktop\FRST.exe
2016-10-14 21:59 - 2016-10-14 21:59 - 00002035 _____ C:\Users\Můj\Documents\mab.txt
2016-10-14 07:02 - 2016-08-05 17:13 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\tzres.dll
2016-10-13 21:48 - 2016-05-11 17:19 - 00363520 _____ (Microsoft Corporation) C:\windows\system32\StructuredQuery.dll
2016-10-13 21:48 - 2016-02-03 19:59 - 00076288 _____ (Microsoft Corporation) C:\windows\system32\Drivers\USBSTOR.SYS
2016-10-13 21:47 - 2016-05-13 23:54 - 00308456 _____ (Adobe Systems Incorporated) C:\windows\system32\atmfd.dll
2016-10-13 21:47 - 2016-05-13 23:49 - 00070656 _____ (Microsoft Corporation) C:\windows\system32\fontsub.dll
2016-10-13 21:47 - 2016-05-13 23:49 - 00026112 _____ (Microsoft Corporation) C:\windows\system32\lpk.dll
2016-10-13 21:47 - 2016-05-13 23:49 - 00010240 _____ (Microsoft Corporation) C:\windows\system32\dciman32.dll
2016-10-13 21:47 - 2016-05-13 23:27 - 00034304 _____ (Adobe Systems) C:\windows\system32\atmlib.dll
2016-10-13 21:47 - 2016-04-14 15:49 - 00603648 _____ (Microsoft Corporation) C:\windows\system32\d3d10level9.dll
2016-10-13 21:47 - 2016-04-09 06:20 - 01230848 _____ (Microsoft Corporation) C:\windows\system32\WindowsCodecs.dll
2016-10-13 21:47 - 2016-03-16 20:28 - 00176128 _____ (Microsoft Corporation) C:\windows\system32\msorcl32.dll
2016-10-13 21:47 - 2016-03-16 20:28 - 00111616 _____ (Microsoft Corporation) C:\windows\system32\mtxoci.dll
2016-10-13 21:47 - 2016-02-09 11:50 - 00021504 _____ (Microsoft Corporation) C:\windows\system32\seclogon.dll
2016-10-13 21:47 - 2016-02-04 20:41 - 00296448 _____ (Microsoft Corporation) C:\windows\system32\mfds.dll
2016-10-13 21:47 - 2016-02-02 20:48 - 00376320 _____ (Microsoft Corporation) C:\windows\system32\rpcss.dll
2016-10-13 21:45 - 2016-03-18 00:28 - 01414144 _____ (Microsoft Corporation) C:\windows\system32\ole32.dll
2016-10-13 21:45 - 2016-03-18 00:26 - 00872448 _____ (Microsoft Corporation) C:\windows\system32\kernel32.dll
2016-10-13 21:45 - 2016-03-18 00:26 - 00294400 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2016-10-13 21:44 - 2016-06-25 21:54 - 00497152 _____ (Microsoft Corporation) C:\windows\system32\win32spl.dll
2016-10-13 21:44 - 2016-06-25 21:53 - 00779776 _____ (Microsoft Corporation) C:\windows\system32\localspl.dll
2016-10-13 21:44 - 2016-06-25 21:53 - 00297472 _____ (Microsoft Corporation) C:\windows\system32\ntprint.dll
2016-10-13 21:44 - 2016-06-25 21:53 - 00126464 _____ (Microsoft Corporation) C:\windows\system32\inetpp.dll
2016-10-13 21:44 - 2016-06-25 21:42 - 00039424 _____ (Microsoft Corporation) C:\windows\system32\wpnpinst.exe
2016-10-13 21:44 - 2016-06-25 21:41 - 00061952 _____ (Microsoft Corporation) C:\windows\system32\ntprint.exe
2016-10-13 21:44 - 2016-06-25 21:41 - 00018944 _____ (Microsoft Corporation) C:\windows\system32\inetppui.dll
2016-10-13 21:44 - 2016-05-12 17:18 - 00606720 _____ (Microsoft Corporation) C:\windows\system32\gpsvc.dll
2016-10-13 21:44 - 2016-05-12 17:18 - 00351744 _____ (Microsoft Corporation) C:\windows\system32\IPSECSVC.DLL
2016-10-13 21:44 - 2016-05-12 17:18 - 00274944 _____ (Microsoft Corporation) C:\windows\system32\polstore.dll
2016-10-13 21:44 - 2016-05-12 17:18 - 00079360 _____ (Microsoft Corporation) C:\windows\system32\gpapi.dll
2016-10-13 21:44 - 2016-05-12 17:18 - 00070144 _____ (Microsoft Corporation) C:\windows\system32\winipsec.dll
2016-10-13 21:44 - 2016-05-12 17:18 - 00044032 _____ (Microsoft Corporation) C:\windows\system32\FwRemoteSvr.dll
2016-10-13 21:44 - 2016-03-18 00:30 - 00171008 _____ (Microsoft Corporation) C:\windows\system32\winsrv.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00005120 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-10-13 21:44 - 2016-03-17 23:36 - 00271360 _____ (Microsoft Corporation) C:\windows\system32\conhost.exe
2016-10-13 21:44 - 2016-03-17 23:29 - 00006144 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-10-13 21:44 - 2016-03-17 23:29 - 00004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-10-13 21:44 - 2016-03-17 23:29 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-10-13 21:44 - 2016-03-17 23:29 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-10-13 21:44 - 2016-03-09 20:40 - 00316416 _____ (Microsoft Corporation) C:\windows\system32\webio.dll
2016-10-13 21:44 - 2015-12-20 20:45 - 02745856 _____ (Microsoft Corporation) C:\windows\system32\rdpcorets.dll
2016-10-13 21:44 - 2015-12-20 20:45 - 00013824 _____ (Microsoft Corporation) C:\windows\system32\RdpGroupPolicyExtension.dll
2016-10-13 21:44 - 2015-12-20 18:16 - 00221184 _____ (Microsoft Corporation) C:\windows\system32\rdpudd.dll
2016-10-13 21:43 - 2016-09-12 22:54 - 00067816 _____ (Microsoft Corporation) C:\windows\system32\CompatTelRunner.exe
2016-10-13 21:43 - 2016-09-12 22:49 - 01017856 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2016-10-13 21:43 - 2016-09-09 17:53 - 01406976 _____ (Microsoft Corporation) C:\windows\system32\appraiser.dll
2016-10-13 21:43 - 2016-09-09 17:53 - 00488448 _____ (Microsoft Corporation) C:\windows\system32\devinv.dll
2016-10-13 21:43 - 2016-09-09 17:53 - 00478208 _____ (Microsoft Corporation) C:\windows\system32\generaltel.dll
2016-10-13 21:43 - 2016-09-09 17:53 - 00268800 _____ (Microsoft Corporation) C:\windows\system32\invagent.dll
2016-10-13 21:43 - 2016-09-09 17:53 - 00213504 _____ (Microsoft Corporation) C:\windows\system32\centel.dll
2016-10-13 21:43 - 2016-09-09 17:53 - 00184320 _____ (Microsoft Corporation) C:\windows\system32\aepic.dll
2016-10-13 21:43 - 2016-09-09 17:53 - 00107008 _____ (Microsoft Corporation) C:\windows\system32\acmigration.dll
2016-10-13 21:43 - 2016-07-22 16:51 - 00123904 _____ (Microsoft Corporation) C:\windows\system32\poqexec.exe
2016-10-13 21:43 - 2016-03-16 01:53 - 00566272 _____ (Microsoft Corporation) C:\windows\system32\samsrv.dll
2016-10-13 21:43 - 2016-03-16 01:53 - 00060416 _____ (Microsoft Corporation) C:\windows\system32\samlib.dll
2016-10-13 21:43 - 2016-03-09 20:34 - 00216064 _____ (Microsoft Corporation) C:\windows\system32\InkEd.dll
2016-10-13 21:42 - 2016-09-30 21:28 - 00346312 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2016-10-13 21:42 - 2016-09-30 17:20 - 04000488 _____ (Microsoft Corporation) C:\windows\system32\ntkrnlpa.exe
2016-10-13 21:42 - 2016-09-30 17:20 - 03944680 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2016-10-13 21:42 - 2016-09-30 07:54 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2016-10-13 21:42 - 2016-09-30 07:54 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2016-10-13 21:42 - 2016-09-30 07:47 - 20306944 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2016-10-13 21:42 - 2016-09-30 07:42 - 00498688 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2016-10-13 21:42 - 2016-09-30 07:42 - 00341504 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2016-10-13 21:42 - 2016-09-30 07:42 - 00062464 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2016-10-13 21:42 - 2016-09-30 07:42 - 00047616 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2016-10-13 21:42 - 2016-09-30 07:41 - 00064000 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2016-10-13 21:42 - 2016-09-30 07:38 - 02286592 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2016-10-13 21:42 - 2016-09-30 07:36 - 00047104 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2016-10-13 21:42 - 2016-09-30 07:35 - 00030720 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2016-10-13 21:42 - 2016-09-30 07:33 - 00476160 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2016-10-13 21:42 - 2016-09-30 07:32 - 00663552 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2016-10-13 21:42 - 2016-09-30 07:32 - 00620032 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2016-10-13 21:42 - 2016-09-30 07:32 - 00115712 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2016-10-13 21:42 - 2016-09-30 07:32 - 00102912 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2016-10-13 21:42 - 2016-09-30 07:27 - 00667648 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2016-10-13 21:42 - 2016-09-30 07:24 - 00416256 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2016-10-13 21:42 - 2016-09-30 07:19 - 00091136 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2016-10-13 21:42 - 2016-09-30 07:19 - 00060416 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2016-10-13 21:42 - 2016-09-30 07:17 - 00168960 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2016-10-13 21:42 - 2016-09-30 07:15 - 00076288 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2016-10-13 21:42 - 2016-09-30 07:14 - 00279040 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2016-10-13 21:42 - 2016-09-30 07:13 - 00130048 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2016-10-13 21:42 - 2016-09-30 07:12 - 04608512 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2016-10-13 21:42 - 2016-09-30 07:07 - 00230400 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2016-10-13 21:42 - 2016-09-30 07:05 - 02055680 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2016-10-13 21:42 - 2016-09-30 07:05 - 01155072 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2016-10-13 21:42 - 2016-09-30 07:05 - 00693248 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2016-10-13 21:42 - 2016-09-30 07:05 - 00689152 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2016-10-13 21:42 - 2016-09-30 07:03 - 13653504 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2016-10-13 21:42 - 2016-09-30 06:46 - 02444288 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2016-10-13 21:42 - 2016-09-30 06:43 - 01312768 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2016-10-13 21:42 - 2016-09-30 06:42 - 00710144 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2016-10-13 21:42 - 2016-09-15 17:15 - 00741888 _____ (Microsoft Corporation) C:\windows\system32\inetcomm.dll
2016-10-13 21:42 - 2016-09-15 17:15 - 00084480 _____ (Microsoft Corporation) C:\windows\system32\INETRES.dll
2016-10-13 21:42 - 2016-09-12 22:53 - 00137960 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2016-10-13 21:42 - 2016-09-12 22:53 - 00067304 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2016-10-13 21:42 - 2016-09-12 22:49 - 01063936 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2016-10-13 21:42 - 2016-09-12 22:49 - 00690688 _____ (Microsoft Corporation) C:\windows\system32\adtschema.dll
2016-10-13 21:42 - 2016-09-12 22:49 - 00655360 _____ (Microsoft Corporation) C:\windows\system32\rpcrt4.dll
2016-10-13 21:42 - 2016-09-12 22:49 - 00553472 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2016-10-13 21:42 - 2016-09-12 22:49 - 00260608 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2016-10-13 21:42 - 2016-09-12 22:49 - 00254464 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2016-10-13 21:42 - 2016-09-12 22:49 - 00223232 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2016-10-13 21:42 - 2016-09-12 22:49 - 00172032 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2016-10-13 21:42 - 2016-09-12 22:49 - 00146432 _____ (Microsoft Corporation) C:\windows\system32\msaudite.dll
2016-10-13 21:42 - 2016-09-12 22:49 - 00141312 _____ (Microsoft Corporation) C:\windows\system32\rpchttp.dll
2016-10-13 21:42 - 2016-09-12 22:49 - 00099840 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2016-10-13 21:42 - 2016-09-12 22:49 - 00076800 _____ (Microsoft Corporation) C:\windows\system32\adsmsext.dll
2016-10-13 21:42 - 2016-09-12 22:49 - 00065536 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2016-10-13 21:42 - 2016-09-12 22:49 - 00060416 _____ (Microsoft Corporation) C:\windows\system32\msobjs.dll
2016-10-13 21:42 - 2016-09-12 22:49 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2016-10-13 21:42 - 2016-09-12 22:49 - 00017408 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2016-10-13 21:42 - 2016-09-12 22:29 - 00050176 _____ (Microsoft Corporation) C:\windows\system32\auditpol.exe
2016-10-13 21:42 - 2016-09-12 22:28 - 02399232 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2016-10-13 21:42 - 2016-09-12 22:26 - 00226304 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb10.sys
2016-10-13 21:42 - 2016-09-12 22:26 - 00124416 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb.sys
2016-10-13 21:42 - 2016-09-12 22:26 - 00098304 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb20.sys
2016-10-13 21:42 - 2016-09-12 22:25 - 00036352 _____ (Microsoft Corporation) C:\windows\system32\cryptbase.dll
2016-10-13 21:42 - 2016-09-12 22:25 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2016-10-13 21:42 - 2016-09-12 22:25 - 00015872 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2016-10-13 21:42 - 2016-09-12 21:08 - 01251328 _____ (Microsoft Corporation) C:\windows\system32\DWrite.dll
2016-10-13 21:42 - 2016-09-12 21:08 - 00909824 _____ (Microsoft Corporation) C:\windows\system32\FntCache.dll
2016-10-13 21:42 - 2016-09-10 17:53 - 02291712 _____ (Microsoft Corporation) C:\windows\system32\MSVidCtl.dll
2016-10-13 21:42 - 2016-09-09 20:01 - 01310528 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2016-10-13 21:42 - 2016-09-09 20:00 - 00400896 _____ (Microsoft Corporation) C:\windows\system32\srcore.dll
2016-10-13 21:42 - 2016-09-09 20:00 - 00043008 _____ (Microsoft Corporation) C:\windows\system32\srclient.dll
2016-10-13 21:42 - 2016-09-09 19:59 - 00644096 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2016-10-13 21:42 - 2016-09-09 19:59 - 00050688 _____ (Microsoft Corporation) C:\windows\system32\appidapi.dll
2016-10-13 21:42 - 2016-09-09 19:59 - 00050176 _____ (Microsoft Corporation) C:\windows\system32\setbcdlocale.dll
2016-10-13 21:42 - 2016-09-09 19:59 - 00038912 _____ (Microsoft Corporation) C:\windows\system32\csrsrv.dll
2016-10-13 21:42 - 2016-09-09 19:59 - 00006656 _____ (Microsoft Corporation) C:\windows\system32\apisetschema.dll
2016-10-13 21:42 - 2016-09-09 19:42 - 00097792 _____ (Microsoft Corporation) C:\windows\system32\appidpolicyconverter.exe
2016-10-13 21:42 - 2016-09-09 19:42 - 00050688 _____ (Microsoft Corporation) C:\windows\system32\Drivers\appid.sys
2016-10-13 21:42 - 2016-09-09 19:42 - 00029696 _____ (Microsoft Corporation) C:\windows\system32\appidsvc.dll
2016-10-13 21:42 - 2016-09-09 19:42 - 00016896 _____ (Microsoft Corporation) C:\windows\system32\appidcertstorecheck.exe
2016-10-13 21:42 - 2016-09-09 19:39 - 00262656 _____ (Microsoft Corporation) C:\windows\system32\rstrui.exe
2016-10-13 21:42 - 2016-09-09 19:37 - 00069632 _____ (Microsoft Corporation) C:\windows\system32\smss.exe
2016-10-13 21:42 - 2016-09-08 22:34 - 00208896 _____ (Microsoft Corporation) C:\windows\system32\WebClnt.dll
2016-10-13 21:42 - 2016-09-08 22:34 - 00087040 _____ (Microsoft Corporation) C:\windows\system32\davclnt.dll
2016-10-13 21:42 - 2016-09-08 16:49 - 00117248 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxdav.sys
2016-10-13 21:42 - 2016-09-08 16:49 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dfsc.sys
2016-10-13 21:42 - 2016-08-16 20:47 - 00419640 _____ C:\windows\system32\locale.nls
2016-10-13 21:42 - 2016-08-12 18:47 - 12574208 _____ (Microsoft Corporation) C:\windows\system32\wmploc.DLL
2016-10-13 21:42 - 2016-08-12 18:47 - 11410432 _____ (Microsoft Corporation) C:\windows\system32\wmp.dll
2016-10-13 21:42 - 2016-08-12 18:31 - 00008192 _____ (Microsoft Corporation) C:\windows\system32\spwmp.dll
2016-10-13 21:42 - 2016-08-12 18:31 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\msdxm.ocx
2016-10-13 21:42 - 2016-08-12 18:31 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\dxmasf.dll
2016-10-13 21:42 - 2016-08-12 18:21 - 00437248 _____ (Microsoft Corporation) C:\windows\system32\scavengeui.dll
2016-10-13 21:42 - 2016-08-06 17:15 - 01178112 _____ (Microsoft Corporation) C:\windows\system32\WsmSvc.dll
2016-10-13 21:42 - 2016-08-06 17:15 - 00249344 _____ (Microsoft Corporation) C:\windows\system32\WSManMigrationPlugin.dll
2016-10-13 21:42 - 2016-08-06 17:15 - 00214016 _____ (Microsoft Corporation) C:\windows\system32\WsmWmiPl.dll
2016-10-13 21:42 - 2016-08-06 17:15 - 00146944 _____ (Microsoft Corporation) C:\windows\system32\WsmAuto.dll
2016-10-13 21:42 - 2016-08-06 17:15 - 00054272 _____ (Microsoft Corporation) C:\windows\system32\WsmRes.dll
2016-10-13 21:42 - 2016-08-06 16:53 - 00199168 _____ (Microsoft Corporation) C:\windows\system32\WSManHTTPConfig.exe
2016-10-13 21:42 - 2016-08-06 16:53 - 00012288 _____ (Microsoft Corporation) C:\windows\system32\wsmprovhost.exe
2016-10-13 21:42 - 2016-08-06 16:53 - 00010240 _____ (Microsoft Corporation) C:\windows\system32\wsmplpxy.dll
2016-10-13 21:42 - 2016-06-14 17:25 - 00078568 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mountmgr.sys
2016-10-13 21:42 - 2016-06-14 17:21 - 03209216 _____ (Microsoft Corporation) C:\windows\system32\mf.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 01329664 _____ (Microsoft Corporation) C:\windows\system32\quartz.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 01176064 _____ (Microsoft Corporation) C:\windows\system32\crypt32.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 01005056 _____ (Microsoft Corporation) C:\windows\system32\cryptui.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 00988160 _____ (Microsoft Corporation) C:\windows\system32\drmv2clt.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 00744960 _____ (Microsoft Corporation) C:\windows\system32\blackbox.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 00617984 _____ (Microsoft Corporation) C:\windows\system32\wmdrmsdk.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 00519680 _____ (Microsoft Corporation) C:\windows\system32\qdvd.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 00504320 _____ (Microsoft Corporation) C:\windows\system32\msscp.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 00489984 _____ (Microsoft Corporation) C:\windows\system32\evr.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 00474624 _____ (Microsoft Corporation) C:\windows\system32\audiosrv.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 00442368 _____ (Microsoft Corporation) C:\windows\system32\AUDIOKSE.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 00406016 _____ (Microsoft Corporation) C:\windows\system32\drmmgrtn.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 00374784 _____ (Microsoft Corporation) C:\windows\system32\AudioEng.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 00354816 _____ (Microsoft Corporation) C:\windows\system32\mfplat.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 00275968 _____ (Microsoft Corporation) C:\windows\system32\EncDump.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 00265216 _____ (Microsoft Corporation) C:\windows\system32\msnetobj.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 00195072 _____ (Microsoft Corporation) C:\windows\system32\AudioSes.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 00179200 _____ (Microsoft Corporation) C:\windows\system32\wintrust.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 00157184 _____ (Microsoft Corporation) C:\windows\system32\pcasvc.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 00145920 _____ (Microsoft Corporation) C:\windows\system32\cryptsvc.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 00106496 _____ (Microsoft Corporation) C:\windows\system32\cryptnet.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 00103424 _____ (Microsoft Corporation) C:\windows\system32\mfps.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 00080896 _____ (Microsoft Corporation) C:\windows\system32\cryptsp.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 00008704 _____ (Microsoft Corporation) C:\windows\system32\pcaevts.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\mferror.dll
2016-10-13 21:42 - 2016-06-14 17:17 - 00593920 _____ (Microsoft Corporation) C:\windows\system32\Drivers\PEAuth.sys
2016-10-13 21:42 - 2016-06-14 17:05 - 00100352 _____ (Microsoft Corporation) C:\windows\system32\audiodg.exe
2016-10-13 21:42 - 2016-06-14 17:05 - 00050176 _____ (Microsoft Corporation) C:\windows\system32\rrinstaller.exe
2016-10-13 21:42 - 2016-06-14 17:05 - 00023040 _____ (Microsoft Corporation) C:\windows\system32\mfpmp.exe
2016-10-13 21:42 - 2016-06-14 17:00 - 00010752 _____ (Microsoft Corporation) C:\windows\system32\msmmsp.dll
2016-10-13 21:42 - 2016-06-14 16:55 - 00009728 _____ (Microsoft Corporation) C:\windows\system32\pcawrk.exe
2016-10-13 21:42 - 2016-06-14 16:55 - 00008192 _____ (Microsoft Corporation) C:\windows\system32\pcalua.exe
2016-10-13 21:42 - 2016-06-14 16:54 - 00028160 _____ (Microsoft Corporation) C:\windows\system32\pcadm.dll
2016-10-13 21:39 - 2016-08-29 17:12 - 12880384 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2016-10-13 21:39 - 2016-08-29 17:12 - 01806848 _____ (Microsoft Corporation) C:\windows\system32\authui.dll
2016-10-13 21:39 - 2016-08-29 17:12 - 01499648 _____ (Microsoft Corporation) C:\windows\system32\ExplorerFrame.dll
2016-10-13 21:39 - 2016-08-29 16:55 - 02972672 _____ (Microsoft Corporation) C:\windows\explorer.exe
2016-10-13 21:39 - 2016-08-16 04:48 - 00811520 _____ (Microsoft Corporation) C:\windows\system32\user32.dll
2016-10-13 21:39 - 2016-07-07 17:20 - 01309928 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys
2016-10-13 21:39 - 2016-07-07 17:20 - 00240872 _____ (Microsoft Corporation) C:\windows\system32\Drivers\netio.sys
2016-10-13 21:39 - 2016-07-07 17:20 - 00187624 _____ (Microsoft Corporation) C:\windows\system32\Drivers\FWPKCLNT.SYS
2016-10-13 21:39 - 2016-07-07 16:57 - 00035840 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpipreg.sys
2016-10-13 21:39 - 2016-01-22 08:04 - 00642048 _____ (Microsoft Corporation) C:\windows\system32\CPFilters.dll
2016-10-13 21:39 - 2016-01-22 08:04 - 00535040 _____ (Microsoft Corporation) C:\windows\system32\EncDec.dll
2016-10-13 21:39 - 2016-01-21 02:51 - 00057280 _____ (Microsoft Corporation) C:\windows\system32\Drivers\disk.sys
2016-10-13 21:38 - 2016-08-12 18:21 - 00313856 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv2.sys
2016-10-13 21:38 - 2016-08-12 18:21 - 00310784 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv.sys
2016-10-13 21:38 - 2016-08-12 18:21 - 00116224 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srvnet.sys
2016-10-13 21:38 - 2016-05-13 23:50 - 02945536 _____ (Microsoft Corporation) C:\windows\system32\wucltux.dll
2016-10-13 21:38 - 2016-05-13 23:50 - 00174080 _____ (Microsoft Corporation) C:\windows\system32\wuwebv.dll
2016-10-13 21:38 - 2016-05-13 23:47 - 00073728 _____ (Microsoft Corporation) C:\windows\system32\WinSetupUI.dll
2016-10-13 21:38 - 2016-05-13 23:39 - 02060288 _____ (Microsoft Corporation) C:\windows\system32\wuaueng.dll
2016-10-13 21:38 - 2016-05-13 23:38 - 00573440 _____ (Microsoft Corporation) C:\windows\system32\wuapi.dll
2016-10-13 21:38 - 2016-05-13 23:38 - 00136192 _____ (Microsoft Corporation) C:\windows\system32\wuauclt.exe
2016-10-13 21:38 - 2016-05-13 23:38 - 00093696 _____ (Microsoft Corporation) C:\windows\system32\wudriver.dll
2016-10-13 21:38 - 2016-05-13 23:38 - 00035840 _____ (Microsoft Corporation) C:\windows\system32\wups2.dll
2016-10-13 21:38 - 2016-05-13 23:38 - 00035328 _____ (Microsoft Corporation) C:\windows\system32\wuapp.exe
2016-10-13 21:38 - 2016-05-13 23:38 - 00030208 _____ (Microsoft Corporation) C:\windows\system32\wups.dll
2016-10-13 21:38 - 2016-05-04 19:17 - 02365440 _____ (Microsoft Corporation) C:\windows\system32\msi.dll
2016-10-13 21:38 - 2016-03-06 20:38 - 01240576 _____ (Microsoft Corporation) C:\windows\system32\msxml3.dll
2016-10-13 21:38 - 2016-03-06 20:38 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\msxml3r.dll
2016-10-13 21:38 - 2015-12-08 23:53 - 00509952 _____ (Microsoft Corporation) C:\windows\system32\qedit.dll
2016-10-13 21:37 - 2016-05-13 23:38 - 00011776 _____ (Microsoft Corporation) C:\windows\system32\wu.upgrade.ps.dll
2016-10-13 21:37 - 2016-05-12 17:18 - 00090624 _____ (Microsoft Corporation) C:\windows\system32\olepro32.dll
2016-10-13 21:37 - 2016-05-12 17:18 - 00067584 _____ (Microsoft Corporation) C:\windows\system32\asycfilt.dll
2016-10-13 21:37 - 2016-05-12 15:04 - 00370784 _____ (Microsoft Corporation) C:\windows\system32\Drivers\cng.sys
2016-10-13 21:37 - 2016-05-12 15:04 - 00249352 _____ (Microsoft Corporation) C:\windows\system32\bcryptprimitives.dll
2016-10-13 21:37 - 2016-05-04 19:21 - 00105192 _____ (Microsoft Corporation) C:\windows\system32\consent.exe
2016-10-13 21:37 - 2016-05-04 19:17 - 00337408 _____ (Microsoft Corporation) C:\windows\system32\msihnd.dll
2016-10-13 21:37 - 2016-05-04 19:17 - 00047104 _____ (Microsoft Corporation) C:\windows\system32\appinfo.dll
2016-10-13 21:37 - 2016-05-04 19:17 - 00025088 _____ (Microsoft Corporation) C:\windows\system32\msimsg.dll
2016-10-13 21:37 - 2016-05-04 16:55 - 00073216 _____ (Microsoft Corporation) C:\windows\system32\msiexec.exe
2016-10-13 21:37 - 2016-02-05 20:58 - 00123328 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tpm.sys
2016-10-13 21:37 - 2016-02-05 20:44 - 00097792 _____ (Microsoft Corporation) C:\windows\system32\fveapibase.dll
2016-10-13 21:37 - 2016-02-05 19:33 - 00015360 _____ (Microsoft Corporation) C:\windows\system32\tbs.dll
2016-10-13 21:37 - 2015-11-19 16:06 - 00922432 _____ (Microsoft Corporation) C:\windows\system32\ucrtbase.dll
2016-10-13 21:37 - 2015-11-19 16:06 - 00066400 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-private-l1-1-0.dll
2016-10-13 21:37 - 2015-11-19 16:06 - 00022368 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-math-l1-1-0.dll
2016-10-13 21:37 - 2015-11-19 16:06 - 00019808 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-10-13 21:37 - 2015-11-19 16:06 - 00017760 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-string-l1-1-0.dll
2016-10-13 21:37 - 2015-11-19 16:06 - 00017760 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-10-13 21:37 - 2015-11-19 16:06 - 00016224 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-10-13 21:37 - 2015-11-19 16:06 - 00015712 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-10-13 21:37 - 2015-11-19 16:06 - 00014176 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-time-l1-1-0.dll
2016-10-13 21:37 - 2015-11-19 16:06 - 00014176 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localization-l1-2-0.dll
2016-10-13 21:37 - 2015-11-19 16:06 - 00013664 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-10-13 21:37 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-process-l1-1-0.dll
2016-10-13 21:37 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-10-13 21:37 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-10-13 21:37 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-10-13 21:37 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-10-13 21:37 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-10-13 21:37 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
2016-10-13 21:37 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2016-10-13 21:37 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2016-10-13 21:37 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2016-10-13 21:37 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l2-1-0.dll
2016-10-13 21:37 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l1-2-0.dll
2016-10-13 21:37 - 2015-11-14 00:50 - 00076800 _____ (Microsoft Corporation) C:\windows\system32\mapistub.dll
2016-10-13 21:37 - 2015-11-14 00:50 - 00076800 _____ (Microsoft Corporation) C:\windows\system32\mapi32.dll
2016-10-13 21:37 - 2015-11-14 00:49 - 00014336 _____ (Microsoft Corporation) C:\windows\system32\fixmapi.exe
2016-10-13 21:37 - 2015-06-03 22:22 - 00355456 _____ (Microsoft Corporation) C:\windows\system32\fveapi.dll
2016-10-13 21:36 - 2016-08-16 22:27 - 00259072 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbhub.sys
2016-10-13 21:36 - 2016-08-16 22:27 - 00076288 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbccgp.sys
2016-10-13 21:36 - 2016-08-16 22:26 - 00285696 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbport.sys
2016-10-13 21:36 - 2016-08-16 22:26 - 00046592 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbehci.sys
2016-10-13 21:36 - 2016-08-16 22:26 - 00024576 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbuhci.sys
2016-10-13 21:36 - 2016-08-16 22:26 - 00020480 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbohci.sys
2016-10-13 21:36 - 2016-08-16 22:26 - 00006016 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbd.sys
2016-10-13 21:36 - 2016-08-06 17:15 - 00581632 _____ (Microsoft Corporation) C:\windows\system32\oleaut32.dll
2016-10-13 21:36 - 2016-05-18 18:10 - 00306688 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll
2016-10-13 21:36 - 2016-05-11 17:19 - 00351744 _____ (Microsoft Corporation) C:\windows\system32\winhttp.dll
2016-10-13 21:36 - 2016-05-11 17:19 - 00231424 _____ (Microsoft Corporation) C:\windows\system32\mswsock.dll
2016-10-13 21:36 - 2016-05-11 17:19 - 00206336 _____ (Microsoft Corporation) C:\windows\system32\ws2_32.dll
2016-10-13 21:36 - 2016-05-11 17:01 - 00026624 _____ (Microsoft Corporation) C:\windows\system32\netbtugc.exe
2016-10-13 21:36 - 2016-05-11 16:52 - 00188928 _____ (Microsoft Corporation) C:\windows\system32\Drivers\netbt.sys
2016-10-13 21:36 - 2016-04-09 08:59 - 00730344 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgkrnl.sys
2016-10-13 21:36 - 2016-04-09 08:59 - 00218856 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgmms1.sys
2016-10-13 21:36 - 2016-04-09 08:54 - 00107520 _____ (Microsoft Corporation) C:\windows\system32\cdd.dll
2016-10-13 21:36 - 2016-01-11 20:54 - 01212352 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ntfs.sys
2016-10-13 21:36 - 2015-12-08 23:54 - 02285056 _____ (Microsoft Corporation) C:\windows\system32\msmpeg2vdec.dll
2016-10-13 21:36 - 2015-12-08 23:54 - 01620992 _____ (Microsoft Corporation) C:\windows\system32\WMVDECOD.DLL
2016-10-13 21:36 - 2015-12-08 23:54 - 01568768 _____ (Microsoft Corporation) C:\windows\system32\WMVENCOD.DLL
2016-10-13 21:36 - 2015-12-08 23:54 - 01325056 _____ (Microsoft Corporation) C:\windows\system32\WMSPDMOE.DLL
2016-10-13 21:36 - 2015-12-08 23:54 - 00902144 _____ (Microsoft Corporation) C:\windows\system32\WMADMOD.DLL
2016-10-13 21:36 - 2015-12-08 23:54 - 00815616 _____ (Microsoft Corporation) C:\windows\system32\WMADMOE.DLL
2016-10-13 21:36 - 2015-12-08 23:54 - 00740352 _____ (Microsoft Corporation) C:\windows\system32\wmpmde.dll
2016-10-13 21:36 - 2015-12-08 23:54 - 00739328 _____ (Microsoft Corporation) C:\windows\system32\WMSPDMOD.DLL
2016-10-13 21:36 - 2015-12-08 23:54 - 00665088 _____ (Microsoft Corporation) C:\windows\system32\WMVXENCD.DLL
2016-10-13 21:36 - 2015-12-08 23:54 - 00541184 _____ (Microsoft Corporation) C:\windows\system32\WMVSDECD.DLL
2016-10-13 21:36 - 2015-12-08 23:54 - 00358400 _____ (Microsoft Corporation) C:\windows\system32\WMVSENCD.DLL
2016-10-13 21:36 - 2015-12-08 23:54 - 00154112 _____ (Microsoft Corporation) C:\windows\system32\VIDRESZR.DLL
2016-10-13 21:36 - 2015-12-08 23:53 - 00970240 _____ (Microsoft Corporation) C:\windows\system32\msmpeg2adec.dll
2016-10-13 21:36 - 2015-12-08 23:53 - 00829952 _____ (Microsoft Corporation) C:\windows\system32\MSMPEG2ENC.DLL
2016-10-13 21:36 - 2015-12-08 23:53 - 00728576 _____ (Microsoft Corporation) C:\windows\system32\mcmde.dll
2016-10-13 21:36 - 2015-12-08 23:53 - 00609280 _____ (Microsoft Corporation) C:\windows\system32\MFWMAAEC.DLL
2016-10-13 21:36 - 2015-12-08 23:53 - 00415744 _____ (Microsoft Corporation) C:\windows\system32\MP4SDECD.DLL
2016-10-13 21:36 - 2015-12-08 23:53 - 00338944 _____ (Microsoft Corporation) C:\windows\system32\SysFxUI.dll
2016-10-13 21:36 - 2015-12-08 23:53 - 00241152 _____ (Microsoft Corporation) C:\windows\system32\MPG4DECD.DLL
2016-10-13 21:36 - 2015-12-08 23:53 - 00241152 _____ (Microsoft Corporation) C:\windows\system32\MP43DECD.DLL
2016-10-13 21:36 - 2015-12-08 23:53 - 00206848 _____ (Microsoft Corporation) C:\windows\system32\RESAMPLEDMO.DLL
2016-10-13 21:36 - 2015-12-08 23:53 - 00206848 _____ (Microsoft Corporation) C:\windows\system32\qasf.dll
2016-10-13 21:36 - 2015-12-08 23:53 - 00193536 _____ (Microsoft Corporation) C:\windows\system32\ksproxy.ax
2016-10-13 21:36 - 2015-12-08 23:53 - 00153600 _____ (Microsoft Corporation) C:\windows\system32\COLORCNV.DLL
2016-10-13 21:36 - 2015-12-08 23:53 - 00079872 _____ (Microsoft Corporation) C:\windows\system32\MP3DMOD.DLL
2016-10-13 21:36 - 2015-12-08 23:53 - 00067584 _____ (Microsoft Corporation) C:\windows\system32\devenum.dll
2016-10-13 21:36 - 2015-12-08 23:53 - 00053248 _____ (Microsoft Corporation) C:\windows\system32\mfvdsp.dll
2016-10-13 21:36 - 2015-12-08 23:53 - 00004608 _____ (Microsoft Corporation) C:\windows\system32\ksuser.dll
2016-10-13 21:36 - 2015-12-08 23:43 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\Drivers\drmk.sys
2016-10-13 21:36 - 2015-12-08 23:11 - 00177152 _____ (Microsoft Corporation) C:\windows\system32\Drivers\portcls.sys
2016-10-13 21:36 - 2015-12-08 23:11 - 00005120 _____ (Microsoft Corporation) C:\windows\system32\Drivers\drmkaud.sys
2016-10-13 18:53 - 2016-10-13 18:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-10-13 18:53 - 2016-10-13 18:53 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-10-13 18:51 - 2016-10-13 18:51 - 07029984 _____ (Microsoft Corporation) C:\Users\Můj\Downloads\Silverlight.exe
2016-10-13 17:56 - 2016-10-13 17:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-10-13 17:55 - 2016-10-13 17:56 - 00000000 ____D C:\Program Files\CCleaner
2016-10-13 17:22 - 2016-10-13 17:44 - 00000000 ____D C:\AdwCleaner
2016-10-13 17:20 - 2016-10-13 17:20 - 08244656 _____ (Piriform Ltd) C:\Users\Můj\Downloads\ccsetup522.exe
2016-10-13 17:19 - 2016-10-13 17:19 - 03874368 _____ C:\Users\Můj\Downloads\adwcleaner_6.021.exe
2016-10-13 16:31 - 2015-11-11 20:39 - 01242624 _____ (Microsoft Corporation) C:\windows\system32\comsvcs.dll
2016-10-13 16:31 - 2015-11-11 20:39 - 00487936 _____ (Microsoft Corporation) C:\windows\system32\catsrvut.dll
2016-10-13 16:30 - 2015-11-05 21:02 - 00014848 _____ (Microsoft Corporation) C:\windows\system32\wshrm.dll
2016-10-13 16:30 - 2015-11-05 11:48 - 00117760 _____ (Microsoft Corporation) C:\windows\system32\Drivers\rmcast.sys
2016-10-13 16:30 - 2015-11-03 20:56 - 00627712 _____ (Microsoft Corporation) C:\windows\system32\usp10.dll
2016-10-13 16:30 - 2015-11-03 20:55 - 00179712 _____ (Microsoft Corporation) C:\windows\system32\els.dll
2016-10-13 15:36 - 2016-10-13 15:36 - 00000000 ____D C:\rsit
2016-10-13 15:36 - 2016-10-13 15:36 - 00000000 ____D C:\Program Files\trend micro
2016-10-13 15:33 - 2016-10-13 15:34 - 22828233 _____ C:\Users\Můj\Downloads\Malwarebytes Anti-Malware Premium 2.2.1.1043 + Keys.zip
2016-10-13 15:09 - 2016-07-14 19:01 - 00000000 ____D C:\Users\Můj\Downloads\ANTIMALWAREBYTES 2016 -SOPORTE TECNICOCV
2016-10-13 14:58 - 2016-10-13 14:58 - 00005278 _____ C:\Users\Můj\Downloads\ANTIMALWAREBYTES 2016 -SOPORTE TECNICOCV.rar
2016-10-13 14:48 - 2016-10-13 14:48 - 00000000 ____D C:\Users\Můj\AppData\Local\CEF
2016-10-13 14:39 - 2016-10-13 14:38 - 00921280 _____ (Microsoft Corporation) C:\windows\ucrtbase.dll
2016-10-13 14:39 - 2016-10-13 14:38 - 00319760 _____ (AVAST Software) C:\windows\system32\aswBoot.exe
2016-10-13 14:38 - 2016-10-13 14:38 - 00053208 _____ (AVAST Software) C:\windows\avastSS.scr
2016-10-13 14:34 - 2016-10-15 17:37 - 00170200 _____ (Malwarebytes) C:\windows\system32\Drivers\MBAMSwissArmy.sys
2016-10-13 14:33 - 2016-10-13 14:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-10-13 14:32 - 2016-10-13 14:33 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware
2016-10-13 14:32 - 2016-03-10 14:09 - 00053120 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mwac.sys
2016-10-13 14:32 - 2016-03-10 14:08 - 00126336 _____ (Malwarebytes) C:\windows\system32\Drivers\mbamchameleon.sys
2016-10-13 14:32 - 2016-03-10 14:08 - 00024448 _____ (Malwarebytes) C:\windows\system32\Drivers\mbam.sys
2016-10-02 09:46 - 2016-10-06 09:30 - 00000000 ____D C:\Program Files\Mozilla Firefox
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-10-15 18:03 - 2009-07-14 06:34 - 00022688 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-10-15 18:03 - 2009-07-14 06:34 - 00022688 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-10-15 18:01 - 2013-06-16 19:46 - 00000940 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-10-15 17:44 - 2015-07-19 09:59 - 00000936 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-10-15 17:33 - 2012-06-05 13:06 - 00000914 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
2016-10-14 21:58 - 2009-07-14 04:37 - 00000000 ____D C:\windows\inf
2016-10-14 18:39 - 2016-03-20 16:44 - 00000314 _____ C:\windows\Tasks\HPCeeScheduleForMùj.job
2016-10-14 08:51 - 2009-09-10 11:00 - 00668792 _____ C:\windows\system32\perfh005.dat
2016-10-14 08:51 - 2009-09-10 11:00 - 00141420 _____ C:\windows\system32\perfc005.dat
2016-10-14 08:51 - 2009-09-10 10:31 - 01583226 _____ C:\windows\system32\PerfStringBackup.INI
2016-10-14 08:43 - 2014-06-23 13:00 - 00000374 _____ C:\windows\system32\Drivers\etc\hosts.ics
2016-10-14 08:43 - 2009-07-14 06:53 - 00000006 ____H C:\windows\Tasks\SA.DAT
2016-10-14 08:38 - 2009-07-14 06:33 - 00450232 _____ C:\windows\system32\FNTCACHE.DAT
2016-10-14 08:35 - 2014-12-14 11:19 - 00000000 ____D C:\windows\system32\appraiser
2016-10-14 08:35 - 2014-05-06 12:16 - 00000000 ___SD C:\windows\system32\CompatTel
2016-10-14 08:35 - 2009-07-14 04:37 - 00000000 ____D C:\windows\system32\Dism
2016-10-14 07:19 - 2013-07-25 09:54 - 00000000 ____D C:\windows\system32\MRT
2016-10-14 07:09 - 2011-06-25 14:53 - 141042968 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe
2016-10-13 18:10 - 2010-03-24 16:36 - 00000000 ____D C:\Users\Můj\AppData\Roaming\DAEMON Tools Lite
2016-10-13 18:08 - 2012-06-05 17:45 - 00000000 ____D C:\Users\Můj\AppData\Local\CrashDumps
2016-10-13 18:08 - 2009-07-27 10:31 - 00000000 ____D C:\windows\Panther
2016-10-13 17:44 - 2011-06-25 18:24 - 00000000 ____D C:\ProgramData\ICQ
2016-10-13 14:43 - 2013-04-03 14:21 - 00224752 _____ (AVAST Software) C:\windows\system32\Drivers\aswvmm.sys
2016-10-13 14:43 - 2012-06-05 12:56 - 00735488 _____ (AVAST Software) C:\windows\system32\Drivers\aswsnx.sys
2016-10-13 14:43 - 2010-03-24 14:49 - 00433768 _____ (AVAST Software) C:\windows\system32\Drivers\aswsp.sys
2016-10-13 14:39 - 2014-06-23 13:29 - 00118664 _____ (AVAST Software) C:\windows\system32\Drivers\aswStm.sys
2016-10-13 14:39 - 2014-06-23 13:29 - 00034008 _____ (AVAST Software) C:\windows\system32\Drivers\aswHwid.sys
2016-10-13 14:39 - 2013-04-03 14:21 - 00060424 _____ (AVAST Software) C:\windows\system32\Drivers\aswRvrt.sys
2016-10-13 14:39 - 2012-06-05 12:56 - 00091232 _____ (AVAST Software) C:\windows\system32\Drivers\aswRdr2.sys
2016-10-13 14:39 - 2010-03-24 14:48 - 00092256 _____ (AVAST Software) C:\windows\system32\Drivers\aswMonFlt.sys
2016-10-13 14:38 - 2012-11-17 17:39 - 00035096 _____ (AVAST Software) C:\windows\system32\Drivers\aswKbd.sys
2016-10-13 14:32 - 2012-06-05 13:11 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-10-13 14:31 - 2010-03-24 17:01 - 00000000 ____D C:\Users\Můj\AppData\Local\Adobe
2016-10-13 14:30 - 2012-06-05 13:06 - 00796352 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerApp.exe
2016-10-13 14:30 - 2011-06-22 16:31 - 00142528 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerCPLApp.cpl
2016-10-13 14:30 - 2009-09-10 10:34 - 00000000 ____D C:\windows\system32\Macromed
2016-10-09 15:03 - 2013-06-16 19:48 - 00002101 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-10-09 15:03 - 2013-06-16 19:48 - 00002089 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-10-06 09:30 - 2012-06-05 13:05 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
==================== Files in the root of some directories =======
2013-04-03 17:53 - 2013-04-03 17:53 - 0022328 _____ () C:\Users\Můj\AppData\Roaming\PnkBstrK.sys
2010-03-24 14:19 - 2010-03-24 14:19 - 0000000 _____ () C:\Users\Můj\AppData\Local\AtStart.txt
2010-03-24 14:19 - 2010-03-24 14:19 - 0000000 _____ () C:\Users\Můj\AppData\Local\DSwitch.txt
2010-03-24 14:19 - 2010-03-24 14:19 - 0000000 _____ () C:\Users\Můj\AppData\Local\QSwitch.txt
2009-09-10 10:58 - 2009-09-10 10:58 - 0000192 _____ () C:\ProgramData\HPWALog.txt
2012-06-15 14:58 - 2012-06-15 14:58 - 0000146 _____ () C:\ProgramData\LmeUSB.log
2012-06-15 14:58 - 2012-06-15 14:58 - 0000145 _____ () C:\ProgramData\LSDmbTH.log
Some files in TEMP:
====================
C:\Users\Můj\AppData\Local\Temp\libeay32.dll
C:\Users\Můj\AppData\Local\Temp\msvcr120.dll
C:\Users\Můj\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\windows\explorer.exe => File is digitally signed
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\dnsapi.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-08-09 14:31
==================== End of FRST.txt ============================
Ran by Můj (administrator) on PC (15-10-2016 18:07:21)
Running from C:\Users\Můj\Desktop
Loaded Profiles: Můj (Available Profiles: Můj)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(IDT, Inc.) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_b3d7bbbd6875f4bb\stacsv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Andrea Electronics Corporation) C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_b3d7bbbd6875f4bb\AEstSrv.exe
(LSI Corporation) C:\Program Files\LSI SoftModem\agrsmsvc.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
(Hewlett-Packard Company) C:\Program Files\Common Files\LightScribe\LSSrvc.exe
(PDF Complete Inc) C:\Program Files\PDF Complete\pdfsvc.exe
() C:\Windows\System32\PnkBstrA.exe
() C:\Windows\System32\PnkBstrB.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe
(Intel Corporation) C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\BTStackServer.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Hewlett-Packard) C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Service.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\CompatTelRunner.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\Temp\A8DBC274-247E-4892-92FF-67D7803E6CA8\DismHost.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [IAAnotif] => C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [186904 2009-06-17] (Intel Corporation)
HKLM\...\Run: [PDF Complete] => C:\Program Files\PDF Complete\pdfsty.exe [563736 2009-06-18] (PDF Complete Inc)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1545512 2009-07-30] (Synaptics Incorporated)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray.exe [458844 2009-07-14] (IDT, Inc.)
HKLM\...\Run: [NeroFilterCheck] => C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [155648 2006-01-12] (Nero AG)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [919008 2012-07-27] (Adobe Systems Incorporated)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9083840 2016-10-13] (AVAST Software)
HKU\S-1-5-21-2528192400-3420705059-2572034240-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3672384 2012-04-11] (DT Soft Ltd)
HKU\S-1-5-21-2528192400-3420705059-2572034240-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6868696 2016-08-26] (Piriform Ltd)
HKU\S-1-5-21-2528192400-3420705059-2572034240-1001\...\Run: [CCleaner] => C:\Program Files\CCleaner\CCleaner.exe [6868696 2016-08-26] (Piriform Ltd)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2016-10-13] (AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk [2010-03-24]
ShortcutTarget: Adobe Gamma Loader.lnk -> C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk [2010-03-24]
ShortcutTarget: Bluetooth.lnk -> C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (Broadcom Corporation.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{35181EB4-02B0-4C2D-86D1-49EF13922B59}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{CA3D433D-57BB-4EB9-AAE4-B0853CAFA049}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/?clid=22668
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-2528192400-3420705059-2572034240-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/
HKU\S-1-5-21-2528192400-3420705059-2572034240-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
HKU\S-1-5-21-2528192400-3420705059-2572034240-1001\Software\Microsoft\Internet Explorer\Main,Search Bar = hxxps://www.seznam.cz/?clid=22668
SearchScopes: HKLM -> DefaultScope {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKLM -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2528192400-3420705059-2572034240-1001 -> DefaultScope {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKU\S-1-5-21-2528192400-3420705059-2572034240-1001 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
BHO: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-07-27] (Adobe Systems Incorporated)
BHO: No Name -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> No File
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO: Pomocník pro přihlášení ke službě Windows Live -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17] (Microsoft Corporation)
Toolbar: HKLM - No Name - {0BF43445-2F28-4351-9252-17FE6E806AA0} - No File
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8050.1202.dll [2008-12-02] (Microsoft Corporation)
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\Program Files\Windows Live\Messenger\msgrapp.14.0.8050.1202.dll [2008-12-02] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Můj\AppData\Roaming\Mozilla\Firefox\Profiles\vq28j942.default [2016-10-15]
FF DefaultSearchUrl: Mozilla\Firefox\Profiles\vq28j942.default -> hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}&
FF SearchEngineOrder.1: Mozilla\Firefox\Profiles\vq28j942.default -> Seznam
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\vq28j942.default -> Seznam
FF Homepage: Mozilla\Firefox\Profiles\vq28j942.default -> hxxps://www.seznam.cz/
FF Keyword.URL: Mozilla\Firefox\Profiles\vq28j942.default -> hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}&
FF NetworkProxy: Mozilla\Firefox\Profiles\vq28j942.default -> type", 0
FF Extension: (Firefox Hotfix) - C:\Users\Můj\AppData\Roaming\Mozilla\Firefox\Profiles\vq28j942.default\Extensions\firefox-hotfix@mozilla.org.xpi [2016-08-31]
FF Extension: (Adblock Plus) - C:\Users\Můj\AppData\Roaming\Mozilla\Firefox\Profiles\vq28j942.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-10-13]
FF SearchPlugin: C:\Users\Můj\AppData\Roaming\Mozilla\Firefox\Profiles\vq28j942.default\searchplugins\seznam-avast.xml [2014-09-29]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-10-13]
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF32_23_0_0_185.dll [2016-10-13] ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\windows\system32\Adobe\Director\np32dsw.dll [2011-06-10] (Adobe Systems, Inc.)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-02] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-08-02] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2012-07-27] (Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxps://www.seznam.cz/?clid=22668
CHR StartupUrls: Default -> "hxxps://www.seznam.cz/?clid=22668"
CHR DefaultSearchURL: Default -> hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
CHR DefaultSearchKeyword: Default -> seznam
CHR DefaultSuggestURL: Default -> hxxp://suggest.fulltext.seznam.cz/fulltext_ff?phrase={searchTerms}
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\53.0.2785.143\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\53.0.2785.143\ppGoogleNaClPluginChrome.dll => No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\53.0.2785.143\pdf.dll => No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll => No File
CHR Plugin: (Shockwave for Director) - C:\windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
CHR Plugin: (Shockwave Flash) - C:\windows\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll => No File
CHR Profile: C:\Users\Můj\AppData\Local\Google\Chrome\User Data\Default [2016-10-14]
CHR Extension: (Avast SafePrice) - C:\Users\Můj\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2016-10-13]
CHR Extension: (No Name) - C:\Users\Můj\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-08-30]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Můj\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-10-13]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AgereModemAudio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [14336 2009-07-27] (LSI Corporation)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-10-13] (AVAST Software)
R2 HP Health Check Service; C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [124928 2009-07-10] (Hewlett-Packard) [File not signed]
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 LightScribeService; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [73728 2009-06-17] (Hewlett-Packard Company) [File not signed]
S2 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1514464 2016-03-10] (Malwarebytes)
S2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1136608 2016-03-10] (Malwarebytes)
S3 NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [774144 2006-11-10] (Nero AG) [File not signed]
R2 pdfcDispatcher; C:\Program Files\PDF Complete\pdfsvc.exe [635416 2009-06-18] (PDF Complete Inc)
R2 PnkBstrA; C:\windows\system32\PnkBstrA.exe [66872 2013-04-03] ()
R2 PnkBstrB; C:\windows\system32\PnkBstrB.exe [103736 2013-04-03] ()
R2 STacSV; C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_b3d7bbbd6875f4bb\STacSV.exe [221266 2009-07-14] (IDT, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
S2 GeniusMouseService; C:\Genius\ioCentre\GMouseService.exe [X]
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 AF15BDA; C:\windows\System32\DRIVERS\AF15BDA.sys [483200 2012-06-15] (ITETech )
S3 aswHwid; C:\windows\system32\drivers\aswHwid.sys [34008 2016-10-13] (AVAST Software)
R1 aswKbd; C:\windows\system32\drivers\aswKbd.sys [35096 2016-10-13] (AVAST Software)
R2 aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [92256 2016-10-13] (AVAST Software)
R1 aswRdr; C:\windows\system32\drivers\aswRdr2.sys [91232 2016-10-13] (AVAST Software)
R0 aswRvrt; C:\windows\system32\Drivers\aswRvrt.sys [60424 2016-10-13] (AVAST Software)
R1 aswSnx; C:\windows\system32\drivers\aswSnx.sys [735488 2016-10-13] (AVAST Software)
R1 aswSP; C:\windows\system32\drivers\aswSP.sys [433768 2016-10-13] (AVAST Software)
S2 aswStm; C:\windows\system32\drivers\aswStm.sys [118664 2016-10-13] (AVAST Software)
R0 aswVmm; C:\windows\system32\Drivers\aswVmm.sys [224752 2016-10-13] (AVAST Software)
S3 MBAMProtector; C:\windows\system32\drivers\mbam.sys [24448 2016-03-10] (Malwarebytes)
S3 MBAMWebAccessControl; C:\windows\system32\drivers\mwac.sys [53120 2016-03-10] (Malwarebytes Corporation)
S3 MfeAVFK; C:\windows\System32\drivers\MfeAVFK.sys [79816 2009-05-16] (McAfee, Inc.)
S3 MfeBOPK; C:\windows\System32\drivers\MfeBOPK.sys [35272 2009-05-16] (McAfee, Inc.)
R1 mfehidk; C:\windows\System32\drivers\mfehidk.sys [214024 2009-05-16] (McAfee, Inc.)
S3 MfeRKDK; C:\windows\System32\drivers\MfeRKDK.sys [34248 2009-05-16] (McAfee, Inc.)
R1 mfetdik; C:\windows\System32\drivers\mfetdik.sys [55336 2009-05-16] (McAfee, Inc.)
R3 SNP2UVC; C:\windows\System32\DRIVERS\snp2uvc.sys [1765168 2009-07-02] ()
R0 sptd; C:\windows\System32\Drivers\sptd.sys [477240 2012-06-05] (Duplex Secure Ltd.)
U3 an3vvz4n; C:\windows\system32\Drivers\an3vvz4n.sys [0 ] (VIA Technologies Inc.,Ltd) <==== ATTENTION (zero byte File/Folder)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-10-15 18:07 - 2016-10-15 18:07 - 00016683 _____ C:\Users\Můj\Desktop\FRST.txt
2016-10-15 18:06 - 2016-10-15 18:07 - 00000000 ____D C:\FRST
2016-10-15 18:06 - 2016-10-15 18:06 - 01756672 _____ (Farbar) C:\Users\Můj\Desktop\FRST.exe
2016-10-14 21:59 - 2016-10-14 21:59 - 00002035 _____ C:\Users\Můj\Documents\mab.txt
2016-10-14 07:02 - 2016-08-05 17:13 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\tzres.dll
2016-10-13 21:48 - 2016-05-11 17:19 - 00363520 _____ (Microsoft Corporation) C:\windows\system32\StructuredQuery.dll
2016-10-13 21:48 - 2016-02-03 19:59 - 00076288 _____ (Microsoft Corporation) C:\windows\system32\Drivers\USBSTOR.SYS
2016-10-13 21:47 - 2016-05-13 23:54 - 00308456 _____ (Adobe Systems Incorporated) C:\windows\system32\atmfd.dll
2016-10-13 21:47 - 2016-05-13 23:49 - 00070656 _____ (Microsoft Corporation) C:\windows\system32\fontsub.dll
2016-10-13 21:47 - 2016-05-13 23:49 - 00026112 _____ (Microsoft Corporation) C:\windows\system32\lpk.dll
2016-10-13 21:47 - 2016-05-13 23:49 - 00010240 _____ (Microsoft Corporation) C:\windows\system32\dciman32.dll
2016-10-13 21:47 - 2016-05-13 23:27 - 00034304 _____ (Adobe Systems) C:\windows\system32\atmlib.dll
2016-10-13 21:47 - 2016-04-14 15:49 - 00603648 _____ (Microsoft Corporation) C:\windows\system32\d3d10level9.dll
2016-10-13 21:47 - 2016-04-09 06:20 - 01230848 _____ (Microsoft Corporation) C:\windows\system32\WindowsCodecs.dll
2016-10-13 21:47 - 2016-03-16 20:28 - 00176128 _____ (Microsoft Corporation) C:\windows\system32\msorcl32.dll
2016-10-13 21:47 - 2016-03-16 20:28 - 00111616 _____ (Microsoft Corporation) C:\windows\system32\mtxoci.dll
2016-10-13 21:47 - 2016-02-09 11:50 - 00021504 _____ (Microsoft Corporation) C:\windows\system32\seclogon.dll
2016-10-13 21:47 - 2016-02-04 20:41 - 00296448 _____ (Microsoft Corporation) C:\windows\system32\mfds.dll
2016-10-13 21:47 - 2016-02-02 20:48 - 00376320 _____ (Microsoft Corporation) C:\windows\system32\rpcss.dll
2016-10-13 21:45 - 2016-03-18 00:28 - 01414144 _____ (Microsoft Corporation) C:\windows\system32\ole32.dll
2016-10-13 21:45 - 2016-03-18 00:26 - 00872448 _____ (Microsoft Corporation) C:\windows\system32\kernel32.dll
2016-10-13 21:45 - 2016-03-18 00:26 - 00294400 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2016-10-13 21:44 - 2016-06-25 21:54 - 00497152 _____ (Microsoft Corporation) C:\windows\system32\win32spl.dll
2016-10-13 21:44 - 2016-06-25 21:53 - 00779776 _____ (Microsoft Corporation) C:\windows\system32\localspl.dll
2016-10-13 21:44 - 2016-06-25 21:53 - 00297472 _____ (Microsoft Corporation) C:\windows\system32\ntprint.dll
2016-10-13 21:44 - 2016-06-25 21:53 - 00126464 _____ (Microsoft Corporation) C:\windows\system32\inetpp.dll
2016-10-13 21:44 - 2016-06-25 21:42 - 00039424 _____ (Microsoft Corporation) C:\windows\system32\wpnpinst.exe
2016-10-13 21:44 - 2016-06-25 21:41 - 00061952 _____ (Microsoft Corporation) C:\windows\system32\ntprint.exe
2016-10-13 21:44 - 2016-06-25 21:41 - 00018944 _____ (Microsoft Corporation) C:\windows\system32\inetppui.dll
2016-10-13 21:44 - 2016-05-12 17:18 - 00606720 _____ (Microsoft Corporation) C:\windows\system32\gpsvc.dll
2016-10-13 21:44 - 2016-05-12 17:18 - 00351744 _____ (Microsoft Corporation) C:\windows\system32\IPSECSVC.DLL
2016-10-13 21:44 - 2016-05-12 17:18 - 00274944 _____ (Microsoft Corporation) C:\windows\system32\polstore.dll
2016-10-13 21:44 - 2016-05-12 17:18 - 00079360 _____ (Microsoft Corporation) C:\windows\system32\gpapi.dll
2016-10-13 21:44 - 2016-05-12 17:18 - 00070144 _____ (Microsoft Corporation) C:\windows\system32\winipsec.dll
2016-10-13 21:44 - 2016-05-12 17:18 - 00044032 _____ (Microsoft Corporation) C:\windows\system32\FwRemoteSvr.dll
2016-10-13 21:44 - 2016-03-18 00:30 - 00171008 _____ (Microsoft Corporation) C:\windows\system32\winsrv.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00005120 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-10-13 21:44 - 2016-03-18 00:24 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-10-13 21:44 - 2016-03-17 23:36 - 00271360 _____ (Microsoft Corporation) C:\windows\system32\conhost.exe
2016-10-13 21:44 - 2016-03-17 23:29 - 00006144 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-10-13 21:44 - 2016-03-17 23:29 - 00004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-10-13 21:44 - 2016-03-17 23:29 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-10-13 21:44 - 2016-03-17 23:29 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-10-13 21:44 - 2016-03-09 20:40 - 00316416 _____ (Microsoft Corporation) C:\windows\system32\webio.dll
2016-10-13 21:44 - 2015-12-20 20:45 - 02745856 _____ (Microsoft Corporation) C:\windows\system32\rdpcorets.dll
2016-10-13 21:44 - 2015-12-20 20:45 - 00013824 _____ (Microsoft Corporation) C:\windows\system32\RdpGroupPolicyExtension.dll
2016-10-13 21:44 - 2015-12-20 18:16 - 00221184 _____ (Microsoft Corporation) C:\windows\system32\rdpudd.dll
2016-10-13 21:43 - 2016-09-12 22:54 - 00067816 _____ (Microsoft Corporation) C:\windows\system32\CompatTelRunner.exe
2016-10-13 21:43 - 2016-09-12 22:49 - 01017856 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2016-10-13 21:43 - 2016-09-09 17:53 - 01406976 _____ (Microsoft Corporation) C:\windows\system32\appraiser.dll
2016-10-13 21:43 - 2016-09-09 17:53 - 00488448 _____ (Microsoft Corporation) C:\windows\system32\devinv.dll
2016-10-13 21:43 - 2016-09-09 17:53 - 00478208 _____ (Microsoft Corporation) C:\windows\system32\generaltel.dll
2016-10-13 21:43 - 2016-09-09 17:53 - 00268800 _____ (Microsoft Corporation) C:\windows\system32\invagent.dll
2016-10-13 21:43 - 2016-09-09 17:53 - 00213504 _____ (Microsoft Corporation) C:\windows\system32\centel.dll
2016-10-13 21:43 - 2016-09-09 17:53 - 00184320 _____ (Microsoft Corporation) C:\windows\system32\aepic.dll
2016-10-13 21:43 - 2016-09-09 17:53 - 00107008 _____ (Microsoft Corporation) C:\windows\system32\acmigration.dll
2016-10-13 21:43 - 2016-07-22 16:51 - 00123904 _____ (Microsoft Corporation) C:\windows\system32\poqexec.exe
2016-10-13 21:43 - 2016-03-16 01:53 - 00566272 _____ (Microsoft Corporation) C:\windows\system32\samsrv.dll
2016-10-13 21:43 - 2016-03-16 01:53 - 00060416 _____ (Microsoft Corporation) C:\windows\system32\samlib.dll
2016-10-13 21:43 - 2016-03-09 20:34 - 00216064 _____ (Microsoft Corporation) C:\windows\system32\InkEd.dll
2016-10-13 21:42 - 2016-09-30 21:28 - 00346312 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2016-10-13 21:42 - 2016-09-30 17:20 - 04000488 _____ (Microsoft Corporation) C:\windows\system32\ntkrnlpa.exe
2016-10-13 21:42 - 2016-09-30 17:20 - 03944680 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2016-10-13 21:42 - 2016-09-30 07:54 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2016-10-13 21:42 - 2016-09-30 07:54 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2016-10-13 21:42 - 2016-09-30 07:47 - 20306944 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2016-10-13 21:42 - 2016-09-30 07:42 - 00498688 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2016-10-13 21:42 - 2016-09-30 07:42 - 00341504 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2016-10-13 21:42 - 2016-09-30 07:42 - 00062464 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2016-10-13 21:42 - 2016-09-30 07:42 - 00047616 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2016-10-13 21:42 - 2016-09-30 07:41 - 00064000 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2016-10-13 21:42 - 2016-09-30 07:38 - 02286592 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2016-10-13 21:42 - 2016-09-30 07:36 - 00047104 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2016-10-13 21:42 - 2016-09-30 07:35 - 00030720 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2016-10-13 21:42 - 2016-09-30 07:33 - 00476160 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2016-10-13 21:42 - 2016-09-30 07:32 - 00663552 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2016-10-13 21:42 - 2016-09-30 07:32 - 00620032 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2016-10-13 21:42 - 2016-09-30 07:32 - 00115712 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2016-10-13 21:42 - 2016-09-30 07:32 - 00102912 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2016-10-13 21:42 - 2016-09-30 07:27 - 00667648 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2016-10-13 21:42 - 2016-09-30 07:24 - 00416256 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2016-10-13 21:42 - 2016-09-30 07:19 - 00091136 _____ (Microsoft Corporation) C:\windows\system32\inseng.dll
2016-10-13 21:42 - 2016-09-30 07:19 - 00060416 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2016-10-13 21:42 - 2016-09-30 07:17 - 00168960 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2016-10-13 21:42 - 2016-09-30 07:15 - 00076288 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2016-10-13 21:42 - 2016-09-30 07:14 - 00279040 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2016-10-13 21:42 - 2016-09-30 07:13 - 00130048 _____ (Microsoft Corporation) C:\windows\system32\occache.dll
2016-10-13 21:42 - 2016-09-30 07:12 - 04608512 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2016-10-13 21:42 - 2016-09-30 07:07 - 00230400 _____ (Microsoft Corporation) C:\windows\system32\webcheck.dll
2016-10-13 21:42 - 2016-09-30 07:05 - 02055680 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2016-10-13 21:42 - 2016-09-30 07:05 - 01155072 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2016-10-13 21:42 - 2016-09-30 07:05 - 00693248 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2016-10-13 21:42 - 2016-09-30 07:05 - 00689152 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2016-10-13 21:42 - 2016-09-30 07:03 - 13653504 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2016-10-13 21:42 - 2016-09-30 06:46 - 02444288 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2016-10-13 21:42 - 2016-09-30 06:43 - 01312768 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2016-10-13 21:42 - 2016-09-30 06:42 - 00710144 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2016-10-13 21:42 - 2016-09-15 17:15 - 00741888 _____ (Microsoft Corporation) C:\windows\system32\inetcomm.dll
2016-10-13 21:42 - 2016-09-15 17:15 - 00084480 _____ (Microsoft Corporation) C:\windows\system32\INETRES.dll
2016-10-13 21:42 - 2016-09-12 22:53 - 00137960 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2016-10-13 21:42 - 2016-09-12 22:53 - 00067304 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2016-10-13 21:42 - 2016-09-12 22:49 - 01063936 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2016-10-13 21:42 - 2016-09-12 22:49 - 00690688 _____ (Microsoft Corporation) C:\windows\system32\adtschema.dll
2016-10-13 21:42 - 2016-09-12 22:49 - 00655360 _____ (Microsoft Corporation) C:\windows\system32\rpcrt4.dll
2016-10-13 21:42 - 2016-09-12 22:49 - 00553472 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2016-10-13 21:42 - 2016-09-12 22:49 - 00260608 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2016-10-13 21:42 - 2016-09-12 22:49 - 00254464 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2016-10-13 21:42 - 2016-09-12 22:49 - 00223232 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2016-10-13 21:42 - 2016-09-12 22:49 - 00172032 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2016-10-13 21:42 - 2016-09-12 22:49 - 00146432 _____ (Microsoft Corporation) C:\windows\system32\msaudite.dll
2016-10-13 21:42 - 2016-09-12 22:49 - 00141312 _____ (Microsoft Corporation) C:\windows\system32\rpchttp.dll
2016-10-13 21:42 - 2016-09-12 22:49 - 00099840 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2016-10-13 21:42 - 2016-09-12 22:49 - 00076800 _____ (Microsoft Corporation) C:\windows\system32\adsmsext.dll
2016-10-13 21:42 - 2016-09-12 22:49 - 00065536 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2016-10-13 21:42 - 2016-09-12 22:49 - 00060416 _____ (Microsoft Corporation) C:\windows\system32\msobjs.dll
2016-10-13 21:42 - 2016-09-12 22:49 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2016-10-13 21:42 - 2016-09-12 22:49 - 00017408 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2016-10-13 21:42 - 2016-09-12 22:29 - 00050176 _____ (Microsoft Corporation) C:\windows\system32\auditpol.exe
2016-10-13 21:42 - 2016-09-12 22:28 - 02399232 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2016-10-13 21:42 - 2016-09-12 22:26 - 00226304 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb10.sys
2016-10-13 21:42 - 2016-09-12 22:26 - 00124416 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb.sys
2016-10-13 21:42 - 2016-09-12 22:26 - 00098304 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb20.sys
2016-10-13 21:42 - 2016-09-12 22:25 - 00036352 _____ (Microsoft Corporation) C:\windows\system32\cryptbase.dll
2016-10-13 21:42 - 2016-09-12 22:25 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2016-10-13 21:42 - 2016-09-12 22:25 - 00015872 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2016-10-13 21:42 - 2016-09-12 21:08 - 01251328 _____ (Microsoft Corporation) C:\windows\system32\DWrite.dll
2016-10-13 21:42 - 2016-09-12 21:08 - 00909824 _____ (Microsoft Corporation) C:\windows\system32\FntCache.dll
2016-10-13 21:42 - 2016-09-10 17:53 - 02291712 _____ (Microsoft Corporation) C:\windows\system32\MSVidCtl.dll
2016-10-13 21:42 - 2016-09-09 20:01 - 01310528 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2016-10-13 21:42 - 2016-09-09 20:00 - 00400896 _____ (Microsoft Corporation) C:\windows\system32\srcore.dll
2016-10-13 21:42 - 2016-09-09 20:00 - 00043008 _____ (Microsoft Corporation) C:\windows\system32\srclient.dll
2016-10-13 21:42 - 2016-09-09 19:59 - 00644096 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2016-10-13 21:42 - 2016-09-09 19:59 - 00050688 _____ (Microsoft Corporation) C:\windows\system32\appidapi.dll
2016-10-13 21:42 - 2016-09-09 19:59 - 00050176 _____ (Microsoft Corporation) C:\windows\system32\setbcdlocale.dll
2016-10-13 21:42 - 2016-09-09 19:59 - 00038912 _____ (Microsoft Corporation) C:\windows\system32\csrsrv.dll
2016-10-13 21:42 - 2016-09-09 19:59 - 00006656 _____ (Microsoft Corporation) C:\windows\system32\apisetschema.dll
2016-10-13 21:42 - 2016-09-09 19:42 - 00097792 _____ (Microsoft Corporation) C:\windows\system32\appidpolicyconverter.exe
2016-10-13 21:42 - 2016-09-09 19:42 - 00050688 _____ (Microsoft Corporation) C:\windows\system32\Drivers\appid.sys
2016-10-13 21:42 - 2016-09-09 19:42 - 00029696 _____ (Microsoft Corporation) C:\windows\system32\appidsvc.dll
2016-10-13 21:42 - 2016-09-09 19:42 - 00016896 _____ (Microsoft Corporation) C:\windows\system32\appidcertstorecheck.exe
2016-10-13 21:42 - 2016-09-09 19:39 - 00262656 _____ (Microsoft Corporation) C:\windows\system32\rstrui.exe
2016-10-13 21:42 - 2016-09-09 19:37 - 00069632 _____ (Microsoft Corporation) C:\windows\system32\smss.exe
2016-10-13 21:42 - 2016-09-08 22:34 - 00208896 _____ (Microsoft Corporation) C:\windows\system32\WebClnt.dll
2016-10-13 21:42 - 2016-09-08 22:34 - 00087040 _____ (Microsoft Corporation) C:\windows\system32\davclnt.dll
2016-10-13 21:42 - 2016-09-08 16:49 - 00117248 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxdav.sys
2016-10-13 21:42 - 2016-09-08 16:49 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dfsc.sys
2016-10-13 21:42 - 2016-08-16 20:47 - 00419640 _____ C:\windows\system32\locale.nls
2016-10-13 21:42 - 2016-08-12 18:47 - 12574208 _____ (Microsoft Corporation) C:\windows\system32\wmploc.DLL
2016-10-13 21:42 - 2016-08-12 18:47 - 11410432 _____ (Microsoft Corporation) C:\windows\system32\wmp.dll
2016-10-13 21:42 - 2016-08-12 18:31 - 00008192 _____ (Microsoft Corporation) C:\windows\system32\spwmp.dll
2016-10-13 21:42 - 2016-08-12 18:31 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\msdxm.ocx
2016-10-13 21:42 - 2016-08-12 18:31 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\dxmasf.dll
2016-10-13 21:42 - 2016-08-12 18:21 - 00437248 _____ (Microsoft Corporation) C:\windows\system32\scavengeui.dll
2016-10-13 21:42 - 2016-08-06 17:15 - 01178112 _____ (Microsoft Corporation) C:\windows\system32\WsmSvc.dll
2016-10-13 21:42 - 2016-08-06 17:15 - 00249344 _____ (Microsoft Corporation) C:\windows\system32\WSManMigrationPlugin.dll
2016-10-13 21:42 - 2016-08-06 17:15 - 00214016 _____ (Microsoft Corporation) C:\windows\system32\WsmWmiPl.dll
2016-10-13 21:42 - 2016-08-06 17:15 - 00146944 _____ (Microsoft Corporation) C:\windows\system32\WsmAuto.dll
2016-10-13 21:42 - 2016-08-06 17:15 - 00054272 _____ (Microsoft Corporation) C:\windows\system32\WsmRes.dll
2016-10-13 21:42 - 2016-08-06 16:53 - 00199168 _____ (Microsoft Corporation) C:\windows\system32\WSManHTTPConfig.exe
2016-10-13 21:42 - 2016-08-06 16:53 - 00012288 _____ (Microsoft Corporation) C:\windows\system32\wsmprovhost.exe
2016-10-13 21:42 - 2016-08-06 16:53 - 00010240 _____ (Microsoft Corporation) C:\windows\system32\wsmplpxy.dll
2016-10-13 21:42 - 2016-06-14 17:25 - 00078568 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mountmgr.sys
2016-10-13 21:42 - 2016-06-14 17:21 - 03209216 _____ (Microsoft Corporation) C:\windows\system32\mf.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 01329664 _____ (Microsoft Corporation) C:\windows\system32\quartz.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 01176064 _____ (Microsoft Corporation) C:\windows\system32\crypt32.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 01005056 _____ (Microsoft Corporation) C:\windows\system32\cryptui.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 00988160 _____ (Microsoft Corporation) C:\windows\system32\drmv2clt.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 00744960 _____ (Microsoft Corporation) C:\windows\system32\blackbox.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 00617984 _____ (Microsoft Corporation) C:\windows\system32\wmdrmsdk.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 00519680 _____ (Microsoft Corporation) C:\windows\system32\qdvd.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 00504320 _____ (Microsoft Corporation) C:\windows\system32\msscp.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 00489984 _____ (Microsoft Corporation) C:\windows\system32\evr.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 00474624 _____ (Microsoft Corporation) C:\windows\system32\audiosrv.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 00442368 _____ (Microsoft Corporation) C:\windows\system32\AUDIOKSE.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 00406016 _____ (Microsoft Corporation) C:\windows\system32\drmmgrtn.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 00374784 _____ (Microsoft Corporation) C:\windows\system32\AudioEng.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 00354816 _____ (Microsoft Corporation) C:\windows\system32\mfplat.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 00275968 _____ (Microsoft Corporation) C:\windows\system32\EncDump.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 00265216 _____ (Microsoft Corporation) C:\windows\system32\msnetobj.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 00195072 _____ (Microsoft Corporation) C:\windows\system32\AudioSes.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 00179200 _____ (Microsoft Corporation) C:\windows\system32\wintrust.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 00157184 _____ (Microsoft Corporation) C:\windows\system32\pcasvc.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 00145920 _____ (Microsoft Corporation) C:\windows\system32\cryptsvc.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 00106496 _____ (Microsoft Corporation) C:\windows\system32\cryptnet.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 00103424 _____ (Microsoft Corporation) C:\windows\system32\mfps.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 00080896 _____ (Microsoft Corporation) C:\windows\system32\cryptsp.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 00008704 _____ (Microsoft Corporation) C:\windows\system32\pcaevts.dll
2016-10-13 21:42 - 2016-06-14 17:21 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\mferror.dll
2016-10-13 21:42 - 2016-06-14 17:17 - 00593920 _____ (Microsoft Corporation) C:\windows\system32\Drivers\PEAuth.sys
2016-10-13 21:42 - 2016-06-14 17:05 - 00100352 _____ (Microsoft Corporation) C:\windows\system32\audiodg.exe
2016-10-13 21:42 - 2016-06-14 17:05 - 00050176 _____ (Microsoft Corporation) C:\windows\system32\rrinstaller.exe
2016-10-13 21:42 - 2016-06-14 17:05 - 00023040 _____ (Microsoft Corporation) C:\windows\system32\mfpmp.exe
2016-10-13 21:42 - 2016-06-14 17:00 - 00010752 _____ (Microsoft Corporation) C:\windows\system32\msmmsp.dll
2016-10-13 21:42 - 2016-06-14 16:55 - 00009728 _____ (Microsoft Corporation) C:\windows\system32\pcawrk.exe
2016-10-13 21:42 - 2016-06-14 16:55 - 00008192 _____ (Microsoft Corporation) C:\windows\system32\pcalua.exe
2016-10-13 21:42 - 2016-06-14 16:54 - 00028160 _____ (Microsoft Corporation) C:\windows\system32\pcadm.dll
2016-10-13 21:39 - 2016-08-29 17:12 - 12880384 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2016-10-13 21:39 - 2016-08-29 17:12 - 01806848 _____ (Microsoft Corporation) C:\windows\system32\authui.dll
2016-10-13 21:39 - 2016-08-29 17:12 - 01499648 _____ (Microsoft Corporation) C:\windows\system32\ExplorerFrame.dll
2016-10-13 21:39 - 2016-08-29 16:55 - 02972672 _____ (Microsoft Corporation) C:\windows\explorer.exe
2016-10-13 21:39 - 2016-08-16 04:48 - 00811520 _____ (Microsoft Corporation) C:\windows\system32\user32.dll
2016-10-13 21:39 - 2016-07-07 17:20 - 01309928 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpip.sys
2016-10-13 21:39 - 2016-07-07 17:20 - 00240872 _____ (Microsoft Corporation) C:\windows\system32\Drivers\netio.sys
2016-10-13 21:39 - 2016-07-07 17:20 - 00187624 _____ (Microsoft Corporation) C:\windows\system32\Drivers\FWPKCLNT.SYS
2016-10-13 21:39 - 2016-07-07 16:57 - 00035840 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tcpipreg.sys
2016-10-13 21:39 - 2016-01-22 08:04 - 00642048 _____ (Microsoft Corporation) C:\windows\system32\CPFilters.dll
2016-10-13 21:39 - 2016-01-22 08:04 - 00535040 _____ (Microsoft Corporation) C:\windows\system32\EncDec.dll
2016-10-13 21:39 - 2016-01-21 02:51 - 00057280 _____ (Microsoft Corporation) C:\windows\system32\Drivers\disk.sys
2016-10-13 21:38 - 2016-08-12 18:21 - 00313856 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv2.sys
2016-10-13 21:38 - 2016-08-12 18:21 - 00310784 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv.sys
2016-10-13 21:38 - 2016-08-12 18:21 - 00116224 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srvnet.sys
2016-10-13 21:38 - 2016-05-13 23:50 - 02945536 _____ (Microsoft Corporation) C:\windows\system32\wucltux.dll
2016-10-13 21:38 - 2016-05-13 23:50 - 00174080 _____ (Microsoft Corporation) C:\windows\system32\wuwebv.dll
2016-10-13 21:38 - 2016-05-13 23:47 - 00073728 _____ (Microsoft Corporation) C:\windows\system32\WinSetupUI.dll
2016-10-13 21:38 - 2016-05-13 23:39 - 02060288 _____ (Microsoft Corporation) C:\windows\system32\wuaueng.dll
2016-10-13 21:38 - 2016-05-13 23:38 - 00573440 _____ (Microsoft Corporation) C:\windows\system32\wuapi.dll
2016-10-13 21:38 - 2016-05-13 23:38 - 00136192 _____ (Microsoft Corporation) C:\windows\system32\wuauclt.exe
2016-10-13 21:38 - 2016-05-13 23:38 - 00093696 _____ (Microsoft Corporation) C:\windows\system32\wudriver.dll
2016-10-13 21:38 - 2016-05-13 23:38 - 00035840 _____ (Microsoft Corporation) C:\windows\system32\wups2.dll
2016-10-13 21:38 - 2016-05-13 23:38 - 00035328 _____ (Microsoft Corporation) C:\windows\system32\wuapp.exe
2016-10-13 21:38 - 2016-05-13 23:38 - 00030208 _____ (Microsoft Corporation) C:\windows\system32\wups.dll
2016-10-13 21:38 - 2016-05-04 19:17 - 02365440 _____ (Microsoft Corporation) C:\windows\system32\msi.dll
2016-10-13 21:38 - 2016-03-06 20:38 - 01240576 _____ (Microsoft Corporation) C:\windows\system32\msxml3.dll
2016-10-13 21:38 - 2016-03-06 20:38 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\msxml3r.dll
2016-10-13 21:38 - 2015-12-08 23:53 - 00509952 _____ (Microsoft Corporation) C:\windows\system32\qedit.dll
2016-10-13 21:37 - 2016-05-13 23:38 - 00011776 _____ (Microsoft Corporation) C:\windows\system32\wu.upgrade.ps.dll
2016-10-13 21:37 - 2016-05-12 17:18 - 00090624 _____ (Microsoft Corporation) C:\windows\system32\olepro32.dll
2016-10-13 21:37 - 2016-05-12 17:18 - 00067584 _____ (Microsoft Corporation) C:\windows\system32\asycfilt.dll
2016-10-13 21:37 - 2016-05-12 15:04 - 00370784 _____ (Microsoft Corporation) C:\windows\system32\Drivers\cng.sys
2016-10-13 21:37 - 2016-05-12 15:04 - 00249352 _____ (Microsoft Corporation) C:\windows\system32\bcryptprimitives.dll
2016-10-13 21:37 - 2016-05-04 19:21 - 00105192 _____ (Microsoft Corporation) C:\windows\system32\consent.exe
2016-10-13 21:37 - 2016-05-04 19:17 - 00337408 _____ (Microsoft Corporation) C:\windows\system32\msihnd.dll
2016-10-13 21:37 - 2016-05-04 19:17 - 00047104 _____ (Microsoft Corporation) C:\windows\system32\appinfo.dll
2016-10-13 21:37 - 2016-05-04 19:17 - 00025088 _____ (Microsoft Corporation) C:\windows\system32\msimsg.dll
2016-10-13 21:37 - 2016-05-04 16:55 - 00073216 _____ (Microsoft Corporation) C:\windows\system32\msiexec.exe
2016-10-13 21:37 - 2016-02-05 20:58 - 00123328 _____ (Microsoft Corporation) C:\windows\system32\Drivers\tpm.sys
2016-10-13 21:37 - 2016-02-05 20:44 - 00097792 _____ (Microsoft Corporation) C:\windows\system32\fveapibase.dll
2016-10-13 21:37 - 2016-02-05 19:33 - 00015360 _____ (Microsoft Corporation) C:\windows\system32\tbs.dll
2016-10-13 21:37 - 2015-11-19 16:06 - 00922432 _____ (Microsoft Corporation) C:\windows\system32\ucrtbase.dll
2016-10-13 21:37 - 2015-11-19 16:06 - 00066400 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-private-l1-1-0.dll
2016-10-13 21:37 - 2015-11-19 16:06 - 00022368 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-math-l1-1-0.dll
2016-10-13 21:37 - 2015-11-19 16:06 - 00019808 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-multibyte-l1-1-0.dll
2016-10-13 21:37 - 2015-11-19 16:06 - 00017760 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-string-l1-1-0.dll
2016-10-13 21:37 - 2015-11-19 16:06 - 00017760 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-stdio-l1-1-0.dll
2016-10-13 21:37 - 2015-11-19 16:06 - 00016224 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-runtime-l1-1-0.dll
2016-10-13 21:37 - 2015-11-19 16:06 - 00015712 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-convert-l1-1-0.dll
2016-10-13 21:37 - 2015-11-19 16:06 - 00014176 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-time-l1-1-0.dll
2016-10-13 21:37 - 2015-11-19 16:06 - 00014176 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localization-l1-2-0.dll
2016-10-13 21:37 - 2015-11-19 16:06 - 00013664 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-filesystem-l1-1-0.dll
2016-10-13 21:37 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-process-l1-1-0.dll
2016-10-13 21:37 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-heap-l1-1-0.dll
2016-10-13 21:37 - 2015-11-19 16:06 - 00012640 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-conio-l1-1-0.dll
2016-10-13 21:37 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-utility-l1-1-0.dll
2016-10-13 21:37 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-locale-l1-1-0.dll
2016-10-13 21:37 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-crt-environment-l1-1-0.dll
2016-10-13 21:37 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-synch-l1-2-0.dll
2016-10-13 21:37 - 2015-11-19 16:06 - 00012128 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processthreads-l1-1-1.dll
2016-10-13 21:37 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-xstate-l2-1-0.dll
2016-10-13 21:37 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-timezone-l1-1-0.dll
2016-10-13 21:37 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l2-1-0.dll
2016-10-13 21:37 - 2015-11-19 16:06 - 00011616 _____ (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l1-2-0.dll
2016-10-13 21:37 - 2015-11-14 00:50 - 00076800 _____ (Microsoft Corporation) C:\windows\system32\mapistub.dll
2016-10-13 21:37 - 2015-11-14 00:50 - 00076800 _____ (Microsoft Corporation) C:\windows\system32\mapi32.dll
2016-10-13 21:37 - 2015-11-14 00:49 - 00014336 _____ (Microsoft Corporation) C:\windows\system32\fixmapi.exe
2016-10-13 21:37 - 2015-06-03 22:22 - 00355456 _____ (Microsoft Corporation) C:\windows\system32\fveapi.dll
2016-10-13 21:36 - 2016-08-16 22:27 - 00259072 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbhub.sys
2016-10-13 21:36 - 2016-08-16 22:27 - 00076288 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbccgp.sys
2016-10-13 21:36 - 2016-08-16 22:26 - 00285696 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbport.sys
2016-10-13 21:36 - 2016-08-16 22:26 - 00046592 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbehci.sys
2016-10-13 21:36 - 2016-08-16 22:26 - 00024576 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbuhci.sys
2016-10-13 21:36 - 2016-08-16 22:26 - 00020480 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbohci.sys
2016-10-13 21:36 - 2016-08-16 22:26 - 00006016 _____ (Microsoft Corporation) C:\windows\system32\Drivers\usbd.sys
2016-10-13 21:36 - 2016-08-06 17:15 - 00581632 _____ (Microsoft Corporation) C:\windows\system32\oleaut32.dll
2016-10-13 21:36 - 2016-05-18 18:10 - 00306688 _____ (Microsoft Corporation) C:\windows\system32\gdi32.dll
2016-10-13 21:36 - 2016-05-11 17:19 - 00351744 _____ (Microsoft Corporation) C:\windows\system32\winhttp.dll
2016-10-13 21:36 - 2016-05-11 17:19 - 00231424 _____ (Microsoft Corporation) C:\windows\system32\mswsock.dll
2016-10-13 21:36 - 2016-05-11 17:19 - 00206336 _____ (Microsoft Corporation) C:\windows\system32\ws2_32.dll
2016-10-13 21:36 - 2016-05-11 17:01 - 00026624 _____ (Microsoft Corporation) C:\windows\system32\netbtugc.exe
2016-10-13 21:36 - 2016-05-11 16:52 - 00188928 _____ (Microsoft Corporation) C:\windows\system32\Drivers\netbt.sys
2016-10-13 21:36 - 2016-04-09 08:59 - 00730344 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgkrnl.sys
2016-10-13 21:36 - 2016-04-09 08:59 - 00218856 _____ (Microsoft Corporation) C:\windows\system32\Drivers\dxgmms1.sys
2016-10-13 21:36 - 2016-04-09 08:54 - 00107520 _____ (Microsoft Corporation) C:\windows\system32\cdd.dll
2016-10-13 21:36 - 2016-01-11 20:54 - 01212352 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ntfs.sys
2016-10-13 21:36 - 2015-12-08 23:54 - 02285056 _____ (Microsoft Corporation) C:\windows\system32\msmpeg2vdec.dll
2016-10-13 21:36 - 2015-12-08 23:54 - 01620992 _____ (Microsoft Corporation) C:\windows\system32\WMVDECOD.DLL
2016-10-13 21:36 - 2015-12-08 23:54 - 01568768 _____ (Microsoft Corporation) C:\windows\system32\WMVENCOD.DLL
2016-10-13 21:36 - 2015-12-08 23:54 - 01325056 _____ (Microsoft Corporation) C:\windows\system32\WMSPDMOE.DLL
2016-10-13 21:36 - 2015-12-08 23:54 - 00902144 _____ (Microsoft Corporation) C:\windows\system32\WMADMOD.DLL
2016-10-13 21:36 - 2015-12-08 23:54 - 00815616 _____ (Microsoft Corporation) C:\windows\system32\WMADMOE.DLL
2016-10-13 21:36 - 2015-12-08 23:54 - 00740352 _____ (Microsoft Corporation) C:\windows\system32\wmpmde.dll
2016-10-13 21:36 - 2015-12-08 23:54 - 00739328 _____ (Microsoft Corporation) C:\windows\system32\WMSPDMOD.DLL
2016-10-13 21:36 - 2015-12-08 23:54 - 00665088 _____ (Microsoft Corporation) C:\windows\system32\WMVXENCD.DLL
2016-10-13 21:36 - 2015-12-08 23:54 - 00541184 _____ (Microsoft Corporation) C:\windows\system32\WMVSDECD.DLL
2016-10-13 21:36 - 2015-12-08 23:54 - 00358400 _____ (Microsoft Corporation) C:\windows\system32\WMVSENCD.DLL
2016-10-13 21:36 - 2015-12-08 23:54 - 00154112 _____ (Microsoft Corporation) C:\windows\system32\VIDRESZR.DLL
2016-10-13 21:36 - 2015-12-08 23:53 - 00970240 _____ (Microsoft Corporation) C:\windows\system32\msmpeg2adec.dll
2016-10-13 21:36 - 2015-12-08 23:53 - 00829952 _____ (Microsoft Corporation) C:\windows\system32\MSMPEG2ENC.DLL
2016-10-13 21:36 - 2015-12-08 23:53 - 00728576 _____ (Microsoft Corporation) C:\windows\system32\mcmde.dll
2016-10-13 21:36 - 2015-12-08 23:53 - 00609280 _____ (Microsoft Corporation) C:\windows\system32\MFWMAAEC.DLL
2016-10-13 21:36 - 2015-12-08 23:53 - 00415744 _____ (Microsoft Corporation) C:\windows\system32\MP4SDECD.DLL
2016-10-13 21:36 - 2015-12-08 23:53 - 00338944 _____ (Microsoft Corporation) C:\windows\system32\SysFxUI.dll
2016-10-13 21:36 - 2015-12-08 23:53 - 00241152 _____ (Microsoft Corporation) C:\windows\system32\MPG4DECD.DLL
2016-10-13 21:36 - 2015-12-08 23:53 - 00241152 _____ (Microsoft Corporation) C:\windows\system32\MP43DECD.DLL
2016-10-13 21:36 - 2015-12-08 23:53 - 00206848 _____ (Microsoft Corporation) C:\windows\system32\RESAMPLEDMO.DLL
2016-10-13 21:36 - 2015-12-08 23:53 - 00206848 _____ (Microsoft Corporation) C:\windows\system32\qasf.dll
2016-10-13 21:36 - 2015-12-08 23:53 - 00193536 _____ (Microsoft Corporation) C:\windows\system32\ksproxy.ax
2016-10-13 21:36 - 2015-12-08 23:53 - 00153600 _____ (Microsoft Corporation) C:\windows\system32\COLORCNV.DLL
2016-10-13 21:36 - 2015-12-08 23:53 - 00079872 _____ (Microsoft Corporation) C:\windows\system32\MP3DMOD.DLL
2016-10-13 21:36 - 2015-12-08 23:53 - 00067584 _____ (Microsoft Corporation) C:\windows\system32\devenum.dll
2016-10-13 21:36 - 2015-12-08 23:53 - 00053248 _____ (Microsoft Corporation) C:\windows\system32\mfvdsp.dll
2016-10-13 21:36 - 2015-12-08 23:53 - 00004608 _____ (Microsoft Corporation) C:\windows\system32\ksuser.dll
2016-10-13 21:36 - 2015-12-08 23:43 - 00081408 _____ (Microsoft Corporation) C:\windows\system32\Drivers\drmk.sys
2016-10-13 21:36 - 2015-12-08 23:11 - 00177152 _____ (Microsoft Corporation) C:\windows\system32\Drivers\portcls.sys
2016-10-13 21:36 - 2015-12-08 23:11 - 00005120 _____ (Microsoft Corporation) C:\windows\system32\Drivers\drmkaud.sys
2016-10-13 18:53 - 2016-10-13 18:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-10-13 18:53 - 2016-10-13 18:53 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-10-13 18:51 - 2016-10-13 18:51 - 07029984 _____ (Microsoft Corporation) C:\Users\Můj\Downloads\Silverlight.exe
2016-10-13 17:56 - 2016-10-13 17:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-10-13 17:55 - 2016-10-13 17:56 - 00000000 ____D C:\Program Files\CCleaner
2016-10-13 17:22 - 2016-10-13 17:44 - 00000000 ____D C:\AdwCleaner
2016-10-13 17:20 - 2016-10-13 17:20 - 08244656 _____ (Piriform Ltd) C:\Users\Můj\Downloads\ccsetup522.exe
2016-10-13 17:19 - 2016-10-13 17:19 - 03874368 _____ C:\Users\Můj\Downloads\adwcleaner_6.021.exe
2016-10-13 16:31 - 2015-11-11 20:39 - 01242624 _____ (Microsoft Corporation) C:\windows\system32\comsvcs.dll
2016-10-13 16:31 - 2015-11-11 20:39 - 00487936 _____ (Microsoft Corporation) C:\windows\system32\catsrvut.dll
2016-10-13 16:30 - 2015-11-05 21:02 - 00014848 _____ (Microsoft Corporation) C:\windows\system32\wshrm.dll
2016-10-13 16:30 - 2015-11-05 11:48 - 00117760 _____ (Microsoft Corporation) C:\windows\system32\Drivers\rmcast.sys
2016-10-13 16:30 - 2015-11-03 20:56 - 00627712 _____ (Microsoft Corporation) C:\windows\system32\usp10.dll
2016-10-13 16:30 - 2015-11-03 20:55 - 00179712 _____ (Microsoft Corporation) C:\windows\system32\els.dll
2016-10-13 15:36 - 2016-10-13 15:36 - 00000000 ____D C:\rsit
2016-10-13 15:36 - 2016-10-13 15:36 - 00000000 ____D C:\Program Files\trend micro
2016-10-13 15:33 - 2016-10-13 15:34 - 22828233 _____ C:\Users\Můj\Downloads\Malwarebytes Anti-Malware Premium 2.2.1.1043 + Keys.zip
2016-10-13 15:09 - 2016-07-14 19:01 - 00000000 ____D C:\Users\Můj\Downloads\ANTIMALWAREBYTES 2016 -SOPORTE TECNICOCV
2016-10-13 14:58 - 2016-10-13 14:58 - 00005278 _____ C:\Users\Můj\Downloads\ANTIMALWAREBYTES 2016 -SOPORTE TECNICOCV.rar
2016-10-13 14:48 - 2016-10-13 14:48 - 00000000 ____D C:\Users\Můj\AppData\Local\CEF
2016-10-13 14:39 - 2016-10-13 14:38 - 00921280 _____ (Microsoft Corporation) C:\windows\ucrtbase.dll
2016-10-13 14:39 - 2016-10-13 14:38 - 00319760 _____ (AVAST Software) C:\windows\system32\aswBoot.exe
2016-10-13 14:38 - 2016-10-13 14:38 - 00053208 _____ (AVAST Software) C:\windows\avastSS.scr
2016-10-13 14:34 - 2016-10-15 17:37 - 00170200 _____ (Malwarebytes) C:\windows\system32\Drivers\MBAMSwissArmy.sys
2016-10-13 14:33 - 2016-10-13 14:33 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-10-13 14:32 - 2016-10-13 14:33 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware
2016-10-13 14:32 - 2016-03-10 14:09 - 00053120 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\mwac.sys
2016-10-13 14:32 - 2016-03-10 14:08 - 00126336 _____ (Malwarebytes) C:\windows\system32\Drivers\mbamchameleon.sys
2016-10-13 14:32 - 2016-03-10 14:08 - 00024448 _____ (Malwarebytes) C:\windows\system32\Drivers\mbam.sys
2016-10-02 09:46 - 2016-10-06 09:30 - 00000000 ____D C:\Program Files\Mozilla Firefox
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-10-15 18:03 - 2009-07-14 06:34 - 00022688 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-10-15 18:03 - 2009-07-14 06:34 - 00022688 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-10-15 18:01 - 2013-06-16 19:46 - 00000940 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-10-15 17:44 - 2015-07-19 09:59 - 00000936 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-10-15 17:33 - 2012-06-05 13:06 - 00000914 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
2016-10-14 21:58 - 2009-07-14 04:37 - 00000000 ____D C:\windows\inf
2016-10-14 18:39 - 2016-03-20 16:44 - 00000314 _____ C:\windows\Tasks\HPCeeScheduleForMùj.job
2016-10-14 08:51 - 2009-09-10 11:00 - 00668792 _____ C:\windows\system32\perfh005.dat
2016-10-14 08:51 - 2009-09-10 11:00 - 00141420 _____ C:\windows\system32\perfc005.dat
2016-10-14 08:51 - 2009-09-10 10:31 - 01583226 _____ C:\windows\system32\PerfStringBackup.INI
2016-10-14 08:43 - 2014-06-23 13:00 - 00000374 _____ C:\windows\system32\Drivers\etc\hosts.ics
2016-10-14 08:43 - 2009-07-14 06:53 - 00000006 ____H C:\windows\Tasks\SA.DAT
2016-10-14 08:38 - 2009-07-14 06:33 - 00450232 _____ C:\windows\system32\FNTCACHE.DAT
2016-10-14 08:35 - 2014-12-14 11:19 - 00000000 ____D C:\windows\system32\appraiser
2016-10-14 08:35 - 2014-05-06 12:16 - 00000000 ___SD C:\windows\system32\CompatTel
2016-10-14 08:35 - 2009-07-14 04:37 - 00000000 ____D C:\windows\system32\Dism
2016-10-14 07:19 - 2013-07-25 09:54 - 00000000 ____D C:\windows\system32\MRT
2016-10-14 07:09 - 2011-06-25 14:53 - 141042968 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe
2016-10-13 18:10 - 2010-03-24 16:36 - 00000000 ____D C:\Users\Můj\AppData\Roaming\DAEMON Tools Lite
2016-10-13 18:08 - 2012-06-05 17:45 - 00000000 ____D C:\Users\Můj\AppData\Local\CrashDumps
2016-10-13 18:08 - 2009-07-27 10:31 - 00000000 ____D C:\windows\Panther
2016-10-13 17:44 - 2011-06-25 18:24 - 00000000 ____D C:\ProgramData\ICQ
2016-10-13 14:43 - 2013-04-03 14:21 - 00224752 _____ (AVAST Software) C:\windows\system32\Drivers\aswvmm.sys
2016-10-13 14:43 - 2012-06-05 12:56 - 00735488 _____ (AVAST Software) C:\windows\system32\Drivers\aswsnx.sys
2016-10-13 14:43 - 2010-03-24 14:49 - 00433768 _____ (AVAST Software) C:\windows\system32\Drivers\aswsp.sys
2016-10-13 14:39 - 2014-06-23 13:29 - 00118664 _____ (AVAST Software) C:\windows\system32\Drivers\aswStm.sys
2016-10-13 14:39 - 2014-06-23 13:29 - 00034008 _____ (AVAST Software) C:\windows\system32\Drivers\aswHwid.sys
2016-10-13 14:39 - 2013-04-03 14:21 - 00060424 _____ (AVAST Software) C:\windows\system32\Drivers\aswRvrt.sys
2016-10-13 14:39 - 2012-06-05 12:56 - 00091232 _____ (AVAST Software) C:\windows\system32\Drivers\aswRdr2.sys
2016-10-13 14:39 - 2010-03-24 14:48 - 00092256 _____ (AVAST Software) C:\windows\system32\Drivers\aswMonFlt.sys
2016-10-13 14:38 - 2012-11-17 17:39 - 00035096 _____ (AVAST Software) C:\windows\system32\Drivers\aswKbd.sys
2016-10-13 14:32 - 2012-06-05 13:11 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-10-13 14:31 - 2010-03-24 17:01 - 00000000 ____D C:\Users\Můj\AppData\Local\Adobe
2016-10-13 14:30 - 2012-06-05 13:06 - 00796352 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerApp.exe
2016-10-13 14:30 - 2011-06-22 16:31 - 00142528 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerCPLApp.cpl
2016-10-13 14:30 - 2009-09-10 10:34 - 00000000 ____D C:\windows\system32\Macromed
2016-10-09 15:03 - 2013-06-16 19:48 - 00002101 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-10-09 15:03 - 2013-06-16 19:48 - 00002089 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-10-06 09:30 - 2012-06-05 13:05 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
==================== Files in the root of some directories =======
2013-04-03 17:53 - 2013-04-03 17:53 - 0022328 _____ () C:\Users\Můj\AppData\Roaming\PnkBstrK.sys
2010-03-24 14:19 - 2010-03-24 14:19 - 0000000 _____ () C:\Users\Můj\AppData\Local\AtStart.txt
2010-03-24 14:19 - 2010-03-24 14:19 - 0000000 _____ () C:\Users\Můj\AppData\Local\DSwitch.txt
2010-03-24 14:19 - 2010-03-24 14:19 - 0000000 _____ () C:\Users\Můj\AppData\Local\QSwitch.txt
2009-09-10 10:58 - 2009-09-10 10:58 - 0000192 _____ () C:\ProgramData\HPWALog.txt
2012-06-15 14:58 - 2012-06-15 14:58 - 0000146 _____ () C:\ProgramData\LmeUSB.log
2012-06-15 14:58 - 2012-06-15 14:58 - 0000145 _____ () C:\ProgramData\LSDmbTH.log
Some files in TEMP:
====================
C:\Users\Můj\AppData\Local\Temp\libeay32.dll
C:\Users\Můj\AppData\Local\Temp\msvcr120.dll
C:\Users\Můj\AppData\Local\Temp\sqlite3.dll
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\windows\explorer.exe => File is digitally signed
C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\dnsapi.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-08-09 14:31
==================== End of FRST.txt ============================
Naposledy upravil(a) ubas dne 15 říj 2016 17:16, celkem upraveno 1 x.
Re: prosím o kontrolu
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 13-10-2016
Ran by Můj (15-10-2016 18:08:41)
Running from C:\Users\Můj\Desktop
Microsoft Windows 7 Home Premium Service Pack 1 (X86) (2010-03-24 12:03:53)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2528192400-3420705059-2572034240-500 - Administrator - Disabled)
Guest (S-1-5-21-2528192400-3420705059-2572034240-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2528192400-3420705059-2572034240-1003 - Limited - Enabled)
Můj (S-1-5-21-2528192400-3420705059-2572034240-1001 - Administrator - Enabled) => C:\Users\Můj
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
2007 Microsoft Office system (HKLM\...\PROHYBRIDR) (Version: 12.0.6612.1000 - Microsoft Corporation)
ACDSee 10 Photo Manager (HKLM\...\{F8B98EB6-FC06-45BF-87D4-9784E0408611}) (Version: 10.0.219 - ACD Systems International)
ActiveCheck component for HP Active Support Library (Version: 3.0.0.2 - Hewlett-Packard) Hidden
Adobe Flash Player 10 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 10.0.22.87 - Adobe Systems Incorporated)
Adobe Flash Player 23 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 23.0.0.185 - Adobe Systems Incorporated)
Adobe Photoshop 7.0 CE (HKLM\...\Adobe Photoshop 7.0 CE) (Version: 7.0 CE - Adobe Systems, Inc.)
Adobe Reader X (10.1.4) - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AA1000000001}) (Version: 10.1.4 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.6 (HKLM\...\Adobe Shockwave Player) (Version: 11.6.0.626 - Adobe Systems, Inc.)
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0405-0000-0000000FF1CE}_PROHYBRIDR_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0405-0000-0000000FF1CE}_PROHYBRIDR_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0405-0000-0000000FF1CE}_PROHYBRIDR_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
Ashampoo Burning Studio 9.10 (HKLM\...\Ashampoo Burning Studio 9_is1) (Version: 9.1.0 - ashampoo GmbH & Co. KG)
Asistent pro přihlášení ke službě Windows Live (HKLM\...\{BD86C297-41C7-4DB5-82C4-98DE3399A2EF}) (Version: 5.000.818.6 - Microsoft Corporation)
Avast Free Antivirus (HKLM\...\avast) (Version: 12.3.2280 - AVAST Software)
Broadcom 802.11 Wireless LAN Adapter (HKLM\...\Broadcom 802.11 Wireless LAN Adapter) (Version: 5.30.21.0 - Broadcom Corporation)
Call of Duty(R) 4 - Modern Warfare(TM) (HKLM\...\InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}) (Version: 1.00.0000 - Activision)
Call of Duty(R) 4 - Modern Warfare(TM) (Version: 1.00.0000 - Activision) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.22 - Piriform)
CPQ Wallpaper (HKLM\...\{F173C2B3-296F-458C-98FF-1676A42EBA02}) (Version: 1.0.1.1 - Hewlett-Packard)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 4.45.4.0314 - DT Soft Ltd)
DirectX 9 Runtime (Version: 1.00.0000 - Sonic Solutions) Hidden
Google Chrome (HKLM\...\Google Chrome) (Version: 53.0.2785.143 - Google Inc.)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.31.5 - Google Inc.) Hidden
HP Advisor (HKLM\...\{B53E61D7-7C80-40DF-82D2-CF5390D6D20A}) (Version: 3.2.8946.3086 - Hewlett-Packard)
HP Common Access Service Library (HKLM\...\{87CA636B-85B8-4611-A81D-F97E71024AFD}) (Version: 3.0.28.1 - Hewlett-Packard)
HP Customer Experience Enhancements (HKLM\...\{5B295588-59C1-4386-9F85-BB4BEDCB0D22}) (Version: 5.7.0.3036 - Hewlett-Packard)
HP ESU for Microsoft Windows 7 (HKLM\...\{511376F5-7E5A-4EC9-B603-193B1D425BC3}) (Version: 1.0.1.1 - Hewlett-Packard)
HP Integrated Module with Bluetooth wireless technology (HKLM\...\{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}) (Version: 6.2.0.9602 - Broadcom Corporation)
HP Quick Launch Buttons (HKLM\...\{34D2AB40-150D-475D-AE32-BD23FB5EE355}) (Version: 6.50.4.2 - Hewlett-Packard)
HP Setup (HKLM\...\{D0BFE65D-C320-4FC9-88D2-B9C32FB95DA0}) (Version: 1.2.3215.3078 - Hewlett-Packard)
HP Software Setup (HKLM\...\{76AF1F61-BB44-4694-A0EA-C6830C8BEF41}) (Version: 1.0.0.15 - Hewlett-Packard)
HP Support Assistant (HKLM\...\{4F46FDB9-B906-47BF-B3D5-C62E01B3C5EE}) (Version: 4.1.11.3 - Hewlett-Packard)
HP User Guides 0140 (HKLM\...\{9CDFC149-8359-4C4B-9DA0-BA1F773CD70C}) (Version: 1.02.0006 - Hewlett-Packard)
HP Webcam (HKLM\...\{1D61E881-43CD-447B-9E6B-D2C6138B2862}) (Version: 1.0 - Roxio)
HP Webcam Driver (HKLM\...\{399C37FB-08AF-493B-BFED-20FBD85EDF7F}) (Version: 5.8.50008.0 - Sonix)
HP Wireless Assistant (HKLM\...\{54CC7901-804D-4155-B353-21F0CC9112AB}) (Version: 3.50.9.1 - Hewlett-Packard)
HPAsset component for HP Active Support Library (Version: 3.0.0.3 - Hewlett-Packard) Hidden
Choice Guard (Version: 1.2.87.0 - Microsoft Corporation) Hidden
IDT Audio (HKLM\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6222.0 - IDT)
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.15.10.1930 - Intel Corporation)
Intel(R) TV Wizard (HKLM\...\TVWiz) (Version: - Intel Corporation)
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - Intel Corporation)
ioCentre (HKLM\...\{A2B4621B-CEB9-4E44-95FD-3500D4DB3727}) (Version: 1.02.000 - KYE)
LightScribe System Software (HKLM\...\{82EF29B1-9B60-4142-A155-0599216DD053}) (Version: 1.18.6.1 - LightScribe)
LSI HDA Modem (HKLM\...\LSI Soft Modem) (Version: 2.1.94 - LSI Corporation)
Malwarebytes Anti-Malware verze 2.2.1.1043 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Marvell Miniport Driver (HKLM\...\Marvell Miniport Driver) (Version: 10.70.5.3 - Marvell)
Microsoft .NET Framework 4.5.2 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Suite Activation Assistant (HKLM\...\{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}) (Version: 2.7 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Mozilla Firefox 49.0.1 (x86 cs) (HKLM\...\Mozilla Firefox 49.0.1 (x86 cs)) (Version: 49.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 49.0.1.6109 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Nero 7 Ultra Edition (HKLM\...\{235BBFC6-D863-4066-A01A-3BD504C31029}) (Version: 7.02.2620 - Nero AG)
NVIDIA PhysX (HKLM\...\{5DB65884-C963-4454-AABA-4CA3089281FA}) (Version: 9.09.0720 - NVIDIA Corporation)
PDF Complete Special Edition (HKLM\...\PDF Complete) (Version: 3.5.108 - PDF Complete, Inc)
QLBCASL (Version: 6.40.17.2 - Hewlett-Packard) Hidden
Roxio Creator Business (HKLM\...\{537BF16E-7412-448C-95D8-846E85A1D817}) (Version: 10.3 - Roxio)
SafeZone Stable 1.51.2220.62 (Version: 1.51.2220.62 - Avast Software) Hidden
Sonic CinePlayer Decoder Pack (Version: 4.3.0 - Sonic Solutions) Hidden
swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 13.2.6.2 - Synaptics Incorporated)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Windows 7 Default Setting (HKLM\...\{E70E6183-F6EC-45B4-AFA4-0C3C36D4B664}) (Version: 1.0.0.6 - Hewlett-Packard)
Windows Live Essentials (HKLM\...\WinLiveSuite_Wave3) (Version: 14.0.8050.1202 - Microsoft Corporation)
Windows Live Upload Tool (HKLM\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)
WinRAR archiver (HKLM\...\WinRAR archiver) (Version: - )
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {02205CD8-5A48-4573-92DC-7B0363860045} - System32\Tasks\{2CFCCC00-96FF-401A-8586-583E4E72A750} => E:\PROGRAMY\Ahead.Nero.v7.5.9.0.Multilingual.Incl.Keymaker-EMBRACE\Nero-7.5.9.0_all_no_atb.exe
Task: {0FEA18ED-B26D-436C-B726-2BC5A7EC4326} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-10-13] (AVAST Software)
Task: {1EB806E0-4207-4E3F-8BCA-4D30D4F0A8E2} - System32\Tasks\Registration => C:\Program Files\Hewlett-Packard\HP TCS\RemEngine.exe [2009-07-08] ()
Task: {30F006C5-6829-456D-9F95-8017E1618F86} - System32\Tasks\Hewlett-Packard\HP Assistant\PC Tuneup => C:\Program Files\Hewlett-Packard\HP Support Framework\HPSF.exe [2009-07-10] (Hewlett-Packard)
Task: {5200FAEF-BEDF-4301-B020-F9FCB6DF6E74} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {6EFBB0F7-48A1-4244-BFB4-7DC60A3EC3BD} - System32\Tasks\Hewlett-Packard\HP Assistant\PC Health Analysis => C:\Program Files\Hewlett-Packard\HP Support Framework\HPSF.exe [2009-07-10] (Hewlett-Packard)
Task: {6F46E8DB-2023-48DD-90BD-8C2BE1A9A756} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-08-26] (Piriform Ltd)
Task: {880369B6-3D38-4473-A816-6B32A9DC4419} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {9D438259-522F-4212-B6C4-EF0C6027B0B6} - System32\Tasks\SafeZone scheduled Autoupdate 1459320387 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-09-06] (Avast Software)
Task: {B22E6DC8-D1DF-4C29-9B93-67D6372B7C3F} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-06-09] (AVAST Software)
Task: {B3188150-0764-4CC7-8EE9-ECF993F5829F} - System32\Tasks\Adobe Flash Player Updater => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-10-13] (Adobe Systems Incorporated)
Task: {C4D572C6-C046-4CBC-A417-7811340D969E} - System32\Tasks\{14BF3FB8-880E-43BF-9373-AD076E9539FF} => E:\PROGRAMY\Ahead.Nero.v7.5.9.0.Multilingual.Incl.Keymaker-EMBRACE\Nero-7.5.9.0_all_no_atb.exe
Task: {F212DDBE-F436-4F66-A752-C809637CC87C} - System32\Tasks\{A2D06495-CEF5-4C11-ACDC-22CCF704FAE9} => pcalua.exe -a D:\DTLite4355-0068.exe -d D:\
Task: {F863F637-A093-43AB-B6B6-326D8513CCAF} - System32\Tasks\{FBF36D2B-B577-4744-9342-C9B6A1531C1E} => E:\Daemon Tools Lite\daemon4123-lite.exe
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\HPCeeScheduleForMùj.job => C:\Program Files\hewlett-packard\sdp\ceement\HPCEE.exe
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2016-10-13 14:38 - 2016-10-13 14:38 - 00169064 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-10-13 14:38 - 2016-10-13 14:38 - 00482928 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-10-15 17:33 - 2016-10-15 17:33 - 03121496 _____ () C:\Program Files\AVAST Software\Avast\defs\16101500\algo.dll
2013-04-03 17:52 - 2013-04-03 17:52 - 00066872 _____ () C:\windows\system32\PnkBstrA.exe
2013-04-03 17:52 - 2013-04-03 17:52 - 00103736 _____ () C:\windows\system32\PnkBstrB.exe
2010-03-24 15:48 - 2006-09-14 01:20 - 00126464 _____ () C:\Program Files\WinRAR\rarext.dll
2010-03-24 15:48 - 2006-08-17 20:35 - 00313344 _____ () C:\Program Files\WinRAR\rarlng.dll
2016-10-13 14:38 - 2016-10-13 14:38 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2009-07-30 17:49 - 2009-07-30 17:49 - 00132384 _____ () C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll
2016-08-26 20:25 - 2016-08-26 20:25 - 00061440 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 04:04 - 2016-03-26 11:32 - 00001584 ____A C:\windows\system32\Drivers\etc\hosts
107.178.255.88 www.statcounter.com
107.178.255.88 statcounter.com
107.178.255.88 ssl.goo.88 partner.googleadservices.com
107.178.255.88 google-analytics.com
107.178.255.88 www.statcounter.com
107.178.255.88 statcounter.com
107.178.255.88 ssl.goo.88 partner.googleadservices.com
107.178.255.88 google-analytics.com127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 lmlicenses.wip4.adobe.com
127.0.0.1 lm.licenses.adobe.com
127.0.0.1 na1r.services.adobe.com
127.0.0.1 hlrcv.stage.adobe.com
127.0.0.1 bandicam.com
127.0.0.1 ssl.bandisoft.com
0.0.0.0 keystone.mwbsys.com
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2528192400-3420705059-2572034240-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Můj\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
MSCONFIG\startupreg: HPADVISOR => C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe view=DOCKVIEW
MSCONFIG\startupreg: ioCentre => C:\Genius\ioCentre\gTaskBar.exe
MSCONFIG\startupreg: LightScribe Control Panel => C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
MSCONFIG\startupreg: QlbCtrl.exe => C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
MSCONFIG\startupreg: WirelessAssistant => C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{7A4A9496-0FF6-4EEE-A09C-67EE9AFAB853}] => (Allow) C:\Windows\System32\PnkBstrA.exe
FirewallRules: [{169DC364-2AC9-4513-8F30-650E729A1480}] => (Allow) C:\Windows\System32\PnkBstrA.exe
FirewallRules: [{749E9DBE-798F-4F6D-AE0A-CCD01FD2072B}] => (Allow) C:\Windows\System32\PnkBstrB.exe
FirewallRules: [{8816025E-1438-4FF9-9EC7-FC1052C42C9B}] => (Allow) C:\Windows\System32\PnkBstrB.exe
FirewallRules: [{AD0B7A0D-5081-4D95-8427-3D7D7BF24A55}] => (Allow) C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe
FirewallRules: [{20EC59B7-0410-4B6F-AF3A-4AEB881D7D4D}] => (Allow) C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe
FirewallRules: [{14131882-5988-4081-B24E-D8A818CB7E82}] => (Allow) C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{7F3BEBB0-72E5-44EC-9F67-27C27B7A6A02}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{1776D4A1-80BB-4398-9321-E74329271C19}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{9F7005AF-9B4D-4C8F-B827-72B9996571A4}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{D23D741A-0C0B-49EA-9341-2BCD507E89E6}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{C32E0213-1D6F-4024-B8AA-6825F0F36740}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
==================== Restore Points =========================
14-10-2016 06:43:47 Windows Update
14-10-2016 18:14:52 Windows Update
15-10-2016 17:33:43 Windows Update
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (10/15/2016 06:05:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: mbamscheduler.exe, verze: 3.1.7.0, časové razítko: 0x56aac2ef
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x64d8be0b
ID chybujícího procesu: 0x1a0
Čas spuštění chybující aplikace: 0x01d225e63e62cd1d
Cesta k chybující aplikaci: C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: 216f3f03-92f1-11e6-af7b-0027133c82f6
Error: (10/15/2016 05:41:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: mbamservice.exe, verze: 3.2.21.0, časové razítko: 0x56bd3616
Název chybujícího modulu: mbamservice.exe, verze: 3.2.21.0, časové razítko: 0x56bd3616
Kód výjimky: 0xc0000005
Posun chyby: 0x000ab501
ID chybujícího procesu: 0x564
Čas spuštění chybující aplikace: 0x01d225e63ffc39cc
Cesta k chybující aplikaci: C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
Cesta k chybujícímu modulu: C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
ID zprávy: d55fca64-92ed-11e6-af7b-0027133c82f6
Error: (10/14/2016 08:57:37 AM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to compile: System.Web.Extensions, Version=3.5.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35 . Error code = 0x80070020
Error: (10/14/2016 08:55:25 AM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to compile: UIAutomationClient, Version=3.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35 . Error code = 0x80070020
Error: (10/13/2016 06:04:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: plugin-container.exe, verze: 49.0.1.6109, časové razítko: 0x57e44563
Název chybujícího modulu: mozglue.dll, verze: 49.0.1.6109, časové razítko: 0x57e43eea
Kód výjimky: 0x80000003
Posun chyby: 0x0000e846
ID chybujícího procesu: 0x100c
Čas spuštění chybující aplikace: 0x01d225697da611aa
Cesta k chybující aplikaci: C:\Program Files\Mozilla Firefox\plugin-container.exe
Cesta k chybujícímu modulu: C:\Program Files\Mozilla Firefox\mozglue.dll
ID zprávy: ba683fb3-915e-11e6-8c95-0027133c82f6
Error: (10/13/2016 06:04:31 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program HPWAMain.exe verze 3.5.9.1 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID procesu: 137c
Čas spuštění: 01d2256b28f02576
Čas ukončení: 123
Cesta k aplikaci: C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
ID hlášení: b4b80523-915e-11e6-8c95-0027133c82f6
Error: (10/13/2016 06:04:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: plugin-container.exe, verze: 49.0.1.6109, časové razítko: 0x57e44563
Název chybujícího modulu: mozglue.dll, verze: 49.0.1.6109, časové razítko: 0x57e43eea
Kód výjimky: 0x80000003
Posun chyby: 0x0000e846
ID chybujícího procesu: 0x14d0
Čas spuštění chybující aplikace: 0x01d225699f3c4d90
Cesta k chybující aplikaci: C:\Program Files\Mozilla Firefox\plugin-container.exe
Cesta k chybujícímu modulu: C:\Program Files\Mozilla Firefox\mozglue.dll
ID zprávy: b464dada-915e-11e6-8c95-0027133c82f6
Error: (10/13/2016 05:54:39 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4101) (User: )
Description: Selhalo načtení automatické aktualizace kořenového certifikátu jiného výrobce z: <http://ctldl.windowsupdate.com/msdownlo ... F36BF2.crt>. Došlo k chybě Daná operace se vrátila, protože vypršel časový limit.
.
Error: (10/13/2016 05:53:46 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4101) (User: )
Description: Selhalo načtení automatické aktualizace kořenového certifikátu jiného výrobce z: <http://ctldl.windowsupdate.com/msdownlo ... F36BF2.crt>. Došlo k chybě Daná operace se vrátila, protože vypršel časový limit.
.
Error: (10/13/2016 05:51:43 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4101) (User: )
Description: Selhalo načtení automatické aktualizace kořenového certifikátu jiného výrobce z: <http://ctldl.windowsupdate.com/msdownlo ... F36BF2.crt>. Došlo k chybě Daná operace se vrátila, protože vypršel časový limit.
.
System errors:
=============
Error: (10/15/2016 06:00:46 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba MBAMService byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (10/15/2016 06:00:42 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Zasílání zpráv o chybách systému Windows bylo dosaženo časového limitu (30000 ms).
Error: (10/15/2016 05:59:02 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Zasílání zpráv o chybách systému Windows bylo dosaženo časového limitu (30000 ms).
Error: (10/15/2016 05:57:32 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Zasílání zpráv o chybách systému Windows bylo dosaženo časového limitu (30000 ms).
Error: (10/15/2016 05:51:33 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {752073A1-23F2-4396-85F0-8FDB879ED0ED} se v daném časovém limitu neregistroval u služby DCOM.
Error: (10/15/2016 05:36:20 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Zasílání zpráv o chybách systému Windows bylo dosaženo časového limitu (30000 ms).
Error: (10/14/2016 09:58:16 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby Wlansvc bylo dosaženo časového limitu (30000 ms).
Error: (10/14/2016 06:12:31 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {995C996E-D918-4A8C-A302-45719A6F4EA7} se v daném časovém limitu neregistroval u služby DCOM.
Error: (10/14/2016 08:43:16 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba GeniusMouseService neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.
Error: (10/14/2016 08:40:55 AM) (Source: Microsoft-Windows-LanguagePackSetup) (EventID: 1000) (User: NT AUTHORITY)
Description: Nepodařilo se inicializovat klienta CBS. Poslední chyba: 0x8007045b
CodeIntegrity:
===================================
Date: 2016-10-13 18:38:25.116
Description: Windows is unable to verify the integrity of the file \Device\HarddiskVolume2\$Windows.~BT\Updates\Critical\37529801-035b-4080-80e8-446c4887e8be\x86_microsoft-windows-errorreportingfaults_31bf3856ad364e35_10.0.10074.1_none_96f694b33cfd42bf\werfault.exe because the signing certificate has been revoked. Check with the publisher to see if a new signed version of the kernel module is available.
Date: 2016-10-13 18:38:25.094
Description: Windows is unable to verify the integrity of the file \Device\HarddiskVolume2\$Windows.~BT\Updates\Critical\37529801-035b-4080-80e8-446c4887e8be\x86_microsoft-windows-errorreportingfaults_31bf3856ad364e35_10.0.10074.1_none_96f694b33cfd42bf\werfault.exe because the signing certificate has been revoked. Check with the publisher to see if a new signed version of the kernel module is available.
Date: 2016-10-13 18:38:25.073
Description: Windows is unable to verify the integrity of the file \Device\HarddiskVolume2\$Windows.~BT\Updates\Critical\37529801-035b-4080-80e8-446c4887e8be\x86_microsoft-windows-errorreportingfaults_31bf3856ad364e35_10.0.10074.1_none_96f694b33cfd42bf\werfault.exe because the signing certificate has been revoked. Check with the publisher to see if a new signed version of the kernel module is available.
Date: 2016-10-13 18:38:25.023
Description: Windows is unable to verify the integrity of the file \Device\HarddiskVolume2\$Windows.~BT\Updates\Critical\37529801-035b-4080-80e8-446c4887e8be\x86_microsoft-windows-errorreportingfaults_31bf3856ad364e35_10.0.10074.1_none_96f694b33cfd42bf\werfault.exe because the signing certificate has been revoked. Check with the publisher to see if a new signed version of the kernel module is available.
Date: 2016-10-13 18:38:25.000
Description: Windows is unable to verify the integrity of the file \Device\HarddiskVolume2\$Windows.~BT\Updates\Critical\37529801-035b-4080-80e8-446c4887e8be\x86_microsoft-windows-errorreportingfaults_31bf3856ad364e35_10.0.10074.1_none_96f694b33cfd42bf\werfault.exe because the signing certificate has been revoked. Check with the publisher to see if a new signed version of the kernel module is available.
Date: 2016-10-13 18:38:24.980
Description: Windows is unable to verify the integrity of the file \Device\HarddiskVolume2\$Windows.~BT\Updates\Critical\37529801-035b-4080-80e8-446c4887e8be\x86_microsoft-windows-errorreportingfaults_31bf3856ad364e35_10.0.10074.1_none_96f694b33cfd42bf\werfault.exe because the signing certificate has been revoked. Check with the publisher to see if a new signed version of the kernel module is available.
Date: 2016-10-13 18:38:24.557
Description: Windows is unable to verify the integrity of the file \Device\HarddiskVolume2\$Windows.~BT\Updates\Critical\37529801-035b-4080-80e8-446c4887e8be\x86_microsoft-windows-errorreportingcore_31bf3856ad364e35_10.0.10074.1_none_47662a2706182d6f\wermgr.exe because the signing certificate has been revoked. Check with the publisher to see if a new signed version of the kernel module is available.
Date: 2016-10-13 18:38:24.537
Description: Windows is unable to verify the integrity of the file \Device\HarddiskVolume2\$Windows.~BT\Updates\Critical\37529801-035b-4080-80e8-446c4887e8be\x86_microsoft-windows-errorreportingcore_31bf3856ad364e35_10.0.10074.1_none_47662a2706182d6f\wermgr.exe because the signing certificate has been revoked. Check with the publisher to see if a new signed version of the kernel module is available.
Date: 2016-10-13 18:38:24.518
Description: Windows is unable to verify the integrity of the file \Device\HarddiskVolume2\$Windows.~BT\Updates\Critical\37529801-035b-4080-80e8-446c4887e8be\x86_microsoft-windows-errorreportingcore_31bf3856ad364e35_10.0.10074.1_none_47662a2706182d6f\wermgr.exe because the signing certificate has been revoked. Check with the publisher to see if a new signed version of the kernel module is available.
Date: 2016-10-13 18:38:24.474
Description: Windows is unable to verify the integrity of the file \Device\HarddiskVolume2\$Windows.~BT\Updates\Critical\37529801-035b-4080-80e8-446c4887e8be\x86_microsoft-windows-errorreportingcore_31bf3856ad364e35_10.0.10074.1_none_47662a2706182d6f\wermgr.exe because the signing certificate has been revoked. Check with the publisher to see if a new signed version of the kernel module is available.
==================== Memory info ===========================
Processor: Genuine Intel(R) CPU T1500 @ 1.86GHz
Percentage of memory in use: 53%
Total physical RAM: 2039.3 MB
Available physical RAM: 939.89 MB
Total Virtual: 4078.61 MB
Available Virtual: 2480 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:133.75 GB) (Free:83.97 GB) NTFS ==>[system with boot components (obtained from drive)]
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 149.1 GB) (Disk ID: 68DB9967)
Partition 1: (Active) - (Size=300 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=133.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=15 GB) - (Type=07 NTFS)
==================== End of Addition.txt ============================
Ran by Můj (15-10-2016 18:08:41)
Running from C:\Users\Můj\Desktop
Microsoft Windows 7 Home Premium Service Pack 1 (X86) (2010-03-24 12:03:53)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-2528192400-3420705059-2572034240-500 - Administrator - Disabled)
Guest (S-1-5-21-2528192400-3420705059-2572034240-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-2528192400-3420705059-2572034240-1003 - Limited - Enabled)
Můj (S-1-5-21-2528192400-3420705059-2572034240-1001 - Administrator - Enabled) => C:\Users\Můj
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
2007 Microsoft Office system (HKLM\...\PROHYBRIDR) (Version: 12.0.6612.1000 - Microsoft Corporation)
ACDSee 10 Photo Manager (HKLM\...\{F8B98EB6-FC06-45BF-87D4-9784E0408611}) (Version: 10.0.219 - ACD Systems International)
ActiveCheck component for HP Active Support Library (Version: 3.0.0.2 - Hewlett-Packard) Hidden
Adobe Flash Player 10 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 10.0.22.87 - Adobe Systems Incorporated)
Adobe Flash Player 23 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 23.0.0.185 - Adobe Systems Incorporated)
Adobe Photoshop 7.0 CE (HKLM\...\Adobe Photoshop 7.0 CE) (Version: 7.0 CE - Adobe Systems, Inc.)
Adobe Reader X (10.1.4) - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AA1000000001}) (Version: 10.1.4 - Adobe Systems Incorporated)
Adobe Shockwave Player 11.6 (HKLM\...\Adobe Shockwave Player) (Version: 11.6.0.626 - Adobe Systems, Inc.)
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0405-0000-0000000FF1CE}_PROHYBRIDR_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0405-0000-0000000FF1CE}_PROHYBRIDR_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0405-0000-0000000FF1CE}_PROHYBRIDR_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
Ashampoo Burning Studio 9.10 (HKLM\...\Ashampoo Burning Studio 9_is1) (Version: 9.1.0 - ashampoo GmbH & Co. KG)
Asistent pro přihlášení ke službě Windows Live (HKLM\...\{BD86C297-41C7-4DB5-82C4-98DE3399A2EF}) (Version: 5.000.818.6 - Microsoft Corporation)
Avast Free Antivirus (HKLM\...\avast) (Version: 12.3.2280 - AVAST Software)
Broadcom 802.11 Wireless LAN Adapter (HKLM\...\Broadcom 802.11 Wireless LAN Adapter) (Version: 5.30.21.0 - Broadcom Corporation)
Call of Duty(R) 4 - Modern Warfare(TM) (HKLM\...\InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}) (Version: 1.00.0000 - Activision)
Call of Duty(R) 4 - Modern Warfare(TM) (Version: 1.00.0000 - Activision) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.22 - Piriform)
CPQ Wallpaper (HKLM\...\{F173C2B3-296F-458C-98FF-1676A42EBA02}) (Version: 1.0.1.1 - Hewlett-Packard)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 4.45.4.0314 - DT Soft Ltd)
DirectX 9 Runtime (Version: 1.00.0000 - Sonic Solutions) Hidden
Google Chrome (HKLM\...\Google Chrome) (Version: 53.0.2785.143 - Google Inc.)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.31.5 - Google Inc.) Hidden
HP Advisor (HKLM\...\{B53E61D7-7C80-40DF-82D2-CF5390D6D20A}) (Version: 3.2.8946.3086 - Hewlett-Packard)
HP Common Access Service Library (HKLM\...\{87CA636B-85B8-4611-A81D-F97E71024AFD}) (Version: 3.0.28.1 - Hewlett-Packard)
HP Customer Experience Enhancements (HKLM\...\{5B295588-59C1-4386-9F85-BB4BEDCB0D22}) (Version: 5.7.0.3036 - Hewlett-Packard)
HP ESU for Microsoft Windows 7 (HKLM\...\{511376F5-7E5A-4EC9-B603-193B1D425BC3}) (Version: 1.0.1.1 - Hewlett-Packard)
HP Integrated Module with Bluetooth wireless technology (HKLM\...\{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}) (Version: 6.2.0.9602 - Broadcom Corporation)
HP Quick Launch Buttons (HKLM\...\{34D2AB40-150D-475D-AE32-BD23FB5EE355}) (Version: 6.50.4.2 - Hewlett-Packard)
HP Setup (HKLM\...\{D0BFE65D-C320-4FC9-88D2-B9C32FB95DA0}) (Version: 1.2.3215.3078 - Hewlett-Packard)
HP Software Setup (HKLM\...\{76AF1F61-BB44-4694-A0EA-C6830C8BEF41}) (Version: 1.0.0.15 - Hewlett-Packard)
HP Support Assistant (HKLM\...\{4F46FDB9-B906-47BF-B3D5-C62E01B3C5EE}) (Version: 4.1.11.3 - Hewlett-Packard)
HP User Guides 0140 (HKLM\...\{9CDFC149-8359-4C4B-9DA0-BA1F773CD70C}) (Version: 1.02.0006 - Hewlett-Packard)
HP Webcam (HKLM\...\{1D61E881-43CD-447B-9E6B-D2C6138B2862}) (Version: 1.0 - Roxio)
HP Webcam Driver (HKLM\...\{399C37FB-08AF-493B-BFED-20FBD85EDF7F}) (Version: 5.8.50008.0 - Sonix)
HP Wireless Assistant (HKLM\...\{54CC7901-804D-4155-B353-21F0CC9112AB}) (Version: 3.50.9.1 - Hewlett-Packard)
HPAsset component for HP Active Support Library (Version: 3.0.0.3 - Hewlett-Packard) Hidden
Choice Guard (Version: 1.2.87.0 - Microsoft Corporation) Hidden
IDT Audio (HKLM\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6222.0 - IDT)
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.15.10.1930 - Intel Corporation)
Intel(R) TV Wizard (HKLM\...\TVWiz) (Version: - Intel Corporation)
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version: - Intel Corporation)
ioCentre (HKLM\...\{A2B4621B-CEB9-4E44-95FD-3500D4DB3727}) (Version: 1.02.000 - KYE)
LightScribe System Software (HKLM\...\{82EF29B1-9B60-4142-A155-0599216DD053}) (Version: 1.18.6.1 - LightScribe)
LSI HDA Modem (HKLM\...\LSI Soft Modem) (Version: 2.1.94 - LSI Corporation)
Malwarebytes Anti-Malware verze 2.2.1.1043 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Marvell Miniport Driver (HKLM\...\Marvell Miniport Driver) (Version: 10.70.5.3 - Marvell)
Microsoft .NET Framework 4.5.2 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Suite Activation Assistant (HKLM\...\{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}) (Version: 2.7 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Mozilla Firefox 49.0.1 (x86 cs) (HKLM\...\Mozilla Firefox 49.0.1 (x86 cs)) (Version: 49.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 49.0.1.6109 - Mozilla)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Nero 7 Ultra Edition (HKLM\...\{235BBFC6-D863-4066-A01A-3BD504C31029}) (Version: 7.02.2620 - Nero AG)
NVIDIA PhysX (HKLM\...\{5DB65884-C963-4454-AABA-4CA3089281FA}) (Version: 9.09.0720 - NVIDIA Corporation)
PDF Complete Special Edition (HKLM\...\PDF Complete) (Version: 3.5.108 - PDF Complete, Inc)
QLBCASL (Version: 6.40.17.2 - Hewlett-Packard) Hidden
Roxio Creator Business (HKLM\...\{537BF16E-7412-448C-95D8-846E85A1D817}) (Version: 10.3 - Roxio)
SafeZone Stable 1.51.2220.62 (Version: 1.51.2220.62 - Avast Software) Hidden
Sonic CinePlayer Decoder Pack (Version: 4.3.0 - Sonic Solutions) Hidden
swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 13.2.6.2 - Synaptics Incorporated)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{91120000-0031-0000-0000-0000000FF1CE}_PROHYBRIDR_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Windows 7 Default Setting (HKLM\...\{E70E6183-F6EC-45B4-AFA4-0C3C36D4B664}) (Version: 1.0.0.6 - Hewlett-Packard)
Windows Live Essentials (HKLM\...\WinLiveSuite_Wave3) (Version: 14.0.8050.1202 - Microsoft Corporation)
Windows Live Upload Tool (HKLM\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)
WinRAR archiver (HKLM\...\WinRAR archiver) (Version: - )
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {02205CD8-5A48-4573-92DC-7B0363860045} - System32\Tasks\{2CFCCC00-96FF-401A-8586-583E4E72A750} => E:\PROGRAMY\Ahead.Nero.v7.5.9.0.Multilingual.Incl.Keymaker-EMBRACE\Nero-7.5.9.0_all_no_atb.exe
Task: {0FEA18ED-B26D-436C-B726-2BC5A7EC4326} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-10-13] (AVAST Software)
Task: {1EB806E0-4207-4E3F-8BCA-4D30D4F0A8E2} - System32\Tasks\Registration => C:\Program Files\Hewlett-Packard\HP TCS\RemEngine.exe [2009-07-08] ()
Task: {30F006C5-6829-456D-9F95-8017E1618F86} - System32\Tasks\Hewlett-Packard\HP Assistant\PC Tuneup => C:\Program Files\Hewlett-Packard\HP Support Framework\HPSF.exe [2009-07-10] (Hewlett-Packard)
Task: {5200FAEF-BEDF-4301-B020-F9FCB6DF6E74} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {6EFBB0F7-48A1-4244-BFB4-7DC60A3EC3BD} - System32\Tasks\Hewlett-Packard\HP Assistant\PC Health Analysis => C:\Program Files\Hewlett-Packard\HP Support Framework\HPSF.exe [2009-07-10] (Hewlett-Packard)
Task: {6F46E8DB-2023-48DD-90BD-8C2BE1A9A756} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-08-26] (Piriform Ltd)
Task: {880369B6-3D38-4473-A816-6B32A9DC4419} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-09-01] (Google Inc.)
Task: {9D438259-522F-4212-B6C4-EF0C6027B0B6} - System32\Tasks\SafeZone scheduled Autoupdate 1459320387 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-09-06] (Avast Software)
Task: {B22E6DC8-D1DF-4C29-9B93-67D6372B7C3F} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-06-09] (AVAST Software)
Task: {B3188150-0764-4CC7-8EE9-ECF993F5829F} - System32\Tasks\Adobe Flash Player Updater => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-10-13] (Adobe Systems Incorporated)
Task: {C4D572C6-C046-4CBC-A417-7811340D969E} - System32\Tasks\{14BF3FB8-880E-43BF-9373-AD076E9539FF} => E:\PROGRAMY\Ahead.Nero.v7.5.9.0.Multilingual.Incl.Keymaker-EMBRACE\Nero-7.5.9.0_all_no_atb.exe
Task: {F212DDBE-F436-4F66-A752-C809637CC87C} - System32\Tasks\{A2D06495-CEF5-4C11-ACDC-22CCF704FAE9} => pcalua.exe -a D:\DTLite4355-0068.exe -d D:\
Task: {F863F637-A093-43AB-B6B6-326D8513CCAF} - System32\Tasks\{FBF36D2B-B577-4744-9342-C9B6A1531C1E} => E:\Daemon Tools Lite\daemon4123-lite.exe
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\HPCeeScheduleForMùj.job => C:\Program Files\hewlett-packard\sdp\ceement\HPCEE.exe
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
==================== Loaded Modules (Whitelisted) ==============
2016-10-13 14:38 - 2016-10-13 14:38 - 00169064 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-10-13 14:38 - 2016-10-13 14:38 - 00482928 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-10-15 17:33 - 2016-10-15 17:33 - 03121496 _____ () C:\Program Files\AVAST Software\Avast\defs\16101500\algo.dll
2013-04-03 17:52 - 2013-04-03 17:52 - 00066872 _____ () C:\windows\system32\PnkBstrA.exe
2013-04-03 17:52 - 2013-04-03 17:52 - 00103736 _____ () C:\windows\system32\PnkBstrB.exe
2010-03-24 15:48 - 2006-09-14 01:20 - 00126464 _____ () C:\Program Files\WinRAR\rarext.dll
2010-03-24 15:48 - 2006-08-17 20:35 - 00313344 _____ () C:\Program Files\WinRAR\rarlng.dll
2016-10-13 14:38 - 2016-10-13 14:38 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2009-07-30 17:49 - 2009-07-30 17:49 - 00132384 _____ () C:\Program Files\WIDCOMM\Bluetooth Software\btkeyind.dll
2016-08-26 20:25 - 2016-08-26 20:25 - 00061440 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 04:04 - 2016-03-26 11:32 - 00001584 ____A C:\windows\system32\Drivers\etc\hosts
107.178.255.88 www.statcounter.com
107.178.255.88 statcounter.com
107.178.255.88 ssl.goo.88 partner.googleadservices.com
107.178.255.88 google-analytics.com
107.178.255.88 www.statcounter.com
107.178.255.88 statcounter.com
107.178.255.88 ssl.goo.88 partner.googleadservices.com
107.178.255.88 google-analytics.com127.0.0.1 activate.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 lmlicenses.wip4.adobe.com
127.0.0.1 lm.licenses.adobe.com
127.0.0.1 na1r.services.adobe.com
127.0.0.1 hlrcv.stage.adobe.com
127.0.0.1 bandicam.com
127.0.0.1 ssl.bandisoft.com
0.0.0.0 keystone.mwbsys.com
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-2528192400-3420705059-2572034240-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Můj\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
MSCONFIG\startupreg: HPADVISOR => C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe view=DOCKVIEW
MSCONFIG\startupreg: ioCentre => C:\Genius\ioCentre\gTaskBar.exe
MSCONFIG\startupreg: LightScribe Control Panel => C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
MSCONFIG\startupreg: QlbCtrl.exe => C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
MSCONFIG\startupreg: WirelessAssistant => C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{7A4A9496-0FF6-4EEE-A09C-67EE9AFAB853}] => (Allow) C:\Windows\System32\PnkBstrA.exe
FirewallRules: [{169DC364-2AC9-4513-8F30-650E729A1480}] => (Allow) C:\Windows\System32\PnkBstrA.exe
FirewallRules: [{749E9DBE-798F-4F6D-AE0A-CCD01FD2072B}] => (Allow) C:\Windows\System32\PnkBstrB.exe
FirewallRules: [{8816025E-1438-4FF9-9EC7-FC1052C42C9B}] => (Allow) C:\Windows\System32\PnkBstrB.exe
FirewallRules: [{AD0B7A0D-5081-4D95-8427-3D7D7BF24A55}] => (Allow) C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe
FirewallRules: [{20EC59B7-0410-4B6F-AF3A-4AEB881D7D4D}] => (Allow) C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe
FirewallRules: [{14131882-5988-4081-B24E-D8A818CB7E82}] => (Allow) C:\windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{7F3BEBB0-72E5-44EC-9F67-27C27B7A6A02}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{1776D4A1-80BB-4398-9321-E74329271C19}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{9F7005AF-9B4D-4C8F-B827-72B9996571A4}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{D23D741A-0C0B-49EA-9341-2BCD507E89E6}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{C32E0213-1D6F-4024-B8AA-6825F0F36740}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
==================== Restore Points =========================
14-10-2016 06:43:47 Windows Update
14-10-2016 18:14:52 Windows Update
15-10-2016 17:33:43 Windows Update
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (10/15/2016 06:05:03 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: mbamscheduler.exe, verze: 3.1.7.0, časové razítko: 0x56aac2ef
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x64d8be0b
ID chybujícího procesu: 0x1a0
Čas spuštění chybující aplikace: 0x01d225e63e62cd1d
Cesta k chybující aplikaci: C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: 216f3f03-92f1-11e6-af7b-0027133c82f6
Error: (10/15/2016 05:41:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: mbamservice.exe, verze: 3.2.21.0, časové razítko: 0x56bd3616
Název chybujícího modulu: mbamservice.exe, verze: 3.2.21.0, časové razítko: 0x56bd3616
Kód výjimky: 0xc0000005
Posun chyby: 0x000ab501
ID chybujícího procesu: 0x564
Čas spuštění chybující aplikace: 0x01d225e63ffc39cc
Cesta k chybující aplikaci: C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
Cesta k chybujícímu modulu: C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
ID zprávy: d55fca64-92ed-11e6-af7b-0027133c82f6
Error: (10/14/2016 08:57:37 AM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to compile: System.Web.Extensions, Version=3.5.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35 . Error code = 0x80070020
Error: (10/14/2016 08:55:25 AM) (Source: .NET Runtime Optimization Service) (EventID: 1101) (User: )
Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to compile: UIAutomationClient, Version=3.0.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35 . Error code = 0x80070020
Error: (10/13/2016 06:04:33 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: plugin-container.exe, verze: 49.0.1.6109, časové razítko: 0x57e44563
Název chybujícího modulu: mozglue.dll, verze: 49.0.1.6109, časové razítko: 0x57e43eea
Kód výjimky: 0x80000003
Posun chyby: 0x0000e846
ID chybujícího procesu: 0x100c
Čas spuštění chybující aplikace: 0x01d225697da611aa
Cesta k chybující aplikaci: C:\Program Files\Mozilla Firefox\plugin-container.exe
Cesta k chybujícímu modulu: C:\Program Files\Mozilla Firefox\mozglue.dll
ID zprávy: ba683fb3-915e-11e6-8c95-0027133c82f6
Error: (10/13/2016 06:04:31 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program HPWAMain.exe verze 3.5.9.1 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID procesu: 137c
Čas spuštění: 01d2256b28f02576
Čas ukončení: 123
Cesta k aplikaci: C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
ID hlášení: b4b80523-915e-11e6-8c95-0027133c82f6
Error: (10/13/2016 06:04:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: plugin-container.exe, verze: 49.0.1.6109, časové razítko: 0x57e44563
Název chybujícího modulu: mozglue.dll, verze: 49.0.1.6109, časové razítko: 0x57e43eea
Kód výjimky: 0x80000003
Posun chyby: 0x0000e846
ID chybujícího procesu: 0x14d0
Čas spuštění chybující aplikace: 0x01d225699f3c4d90
Cesta k chybující aplikaci: C:\Program Files\Mozilla Firefox\plugin-container.exe
Cesta k chybujícímu modulu: C:\Program Files\Mozilla Firefox\mozglue.dll
ID zprávy: b464dada-915e-11e6-8c95-0027133c82f6
Error: (10/13/2016 05:54:39 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4101) (User: )
Description: Selhalo načtení automatické aktualizace kořenového certifikátu jiného výrobce z: <http://ctldl.windowsupdate.com/msdownlo ... F36BF2.crt>. Došlo k chybě Daná operace se vrátila, protože vypršel časový limit.
.
Error: (10/13/2016 05:53:46 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4101) (User: )
Description: Selhalo načtení automatické aktualizace kořenového certifikátu jiného výrobce z: <http://ctldl.windowsupdate.com/msdownlo ... F36BF2.crt>. Došlo k chybě Daná operace se vrátila, protože vypršel časový limit.
.
Error: (10/13/2016 05:51:43 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 4101) (User: )
Description: Selhalo načtení automatické aktualizace kořenového certifikátu jiného výrobce z: <http://ctldl.windowsupdate.com/msdownlo ... F36BF2.crt>. Došlo k chybě Daná operace se vrátila, protože vypršel časový limit.
.
System errors:
=============
Error: (10/15/2016 06:00:46 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba MBAMService byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (10/15/2016 06:00:42 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Zasílání zpráv o chybách systému Windows bylo dosaženo časového limitu (30000 ms).
Error: (10/15/2016 05:59:02 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Zasílání zpráv o chybách systému Windows bylo dosaženo časového limitu (30000 ms).
Error: (10/15/2016 05:57:32 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Zasílání zpráv o chybách systému Windows bylo dosaženo časového limitu (30000 ms).
Error: (10/15/2016 05:51:33 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {752073A1-23F2-4396-85F0-8FDB879ED0ED} se v daném časovém limitu neregistroval u služby DCOM.
Error: (10/15/2016 05:36:20 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Služba Zasílání zpráv o chybách systému Windows bylo dosaženo časového limitu (30000 ms).
Error: (10/14/2016 09:58:16 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby Wlansvc bylo dosaženo časového limitu (30000 ms).
Error: (10/14/2016 06:12:31 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {995C996E-D918-4A8C-A302-45719A6F4EA7} se v daném časovém limitu neregistroval u služby DCOM.
Error: (10/14/2016 08:43:16 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba GeniusMouseService neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.
Error: (10/14/2016 08:40:55 AM) (Source: Microsoft-Windows-LanguagePackSetup) (EventID: 1000) (User: NT AUTHORITY)
Description: Nepodařilo se inicializovat klienta CBS. Poslední chyba: 0x8007045b
CodeIntegrity:
===================================
Date: 2016-10-13 18:38:25.116
Description: Windows is unable to verify the integrity of the file \Device\HarddiskVolume2\$Windows.~BT\Updates\Critical\37529801-035b-4080-80e8-446c4887e8be\x86_microsoft-windows-errorreportingfaults_31bf3856ad364e35_10.0.10074.1_none_96f694b33cfd42bf\werfault.exe because the signing certificate has been revoked. Check with the publisher to see if a new signed version of the kernel module is available.
Date: 2016-10-13 18:38:25.094
Description: Windows is unable to verify the integrity of the file \Device\HarddiskVolume2\$Windows.~BT\Updates\Critical\37529801-035b-4080-80e8-446c4887e8be\x86_microsoft-windows-errorreportingfaults_31bf3856ad364e35_10.0.10074.1_none_96f694b33cfd42bf\werfault.exe because the signing certificate has been revoked. Check with the publisher to see if a new signed version of the kernel module is available.
Date: 2016-10-13 18:38:25.073
Description: Windows is unable to verify the integrity of the file \Device\HarddiskVolume2\$Windows.~BT\Updates\Critical\37529801-035b-4080-80e8-446c4887e8be\x86_microsoft-windows-errorreportingfaults_31bf3856ad364e35_10.0.10074.1_none_96f694b33cfd42bf\werfault.exe because the signing certificate has been revoked. Check with the publisher to see if a new signed version of the kernel module is available.
Date: 2016-10-13 18:38:25.023
Description: Windows is unable to verify the integrity of the file \Device\HarddiskVolume2\$Windows.~BT\Updates\Critical\37529801-035b-4080-80e8-446c4887e8be\x86_microsoft-windows-errorreportingfaults_31bf3856ad364e35_10.0.10074.1_none_96f694b33cfd42bf\werfault.exe because the signing certificate has been revoked. Check with the publisher to see if a new signed version of the kernel module is available.
Date: 2016-10-13 18:38:25.000
Description: Windows is unable to verify the integrity of the file \Device\HarddiskVolume2\$Windows.~BT\Updates\Critical\37529801-035b-4080-80e8-446c4887e8be\x86_microsoft-windows-errorreportingfaults_31bf3856ad364e35_10.0.10074.1_none_96f694b33cfd42bf\werfault.exe because the signing certificate has been revoked. Check with the publisher to see if a new signed version of the kernel module is available.
Date: 2016-10-13 18:38:24.980
Description: Windows is unable to verify the integrity of the file \Device\HarddiskVolume2\$Windows.~BT\Updates\Critical\37529801-035b-4080-80e8-446c4887e8be\x86_microsoft-windows-errorreportingfaults_31bf3856ad364e35_10.0.10074.1_none_96f694b33cfd42bf\werfault.exe because the signing certificate has been revoked. Check with the publisher to see if a new signed version of the kernel module is available.
Date: 2016-10-13 18:38:24.557
Description: Windows is unable to verify the integrity of the file \Device\HarddiskVolume2\$Windows.~BT\Updates\Critical\37529801-035b-4080-80e8-446c4887e8be\x86_microsoft-windows-errorreportingcore_31bf3856ad364e35_10.0.10074.1_none_47662a2706182d6f\wermgr.exe because the signing certificate has been revoked. Check with the publisher to see if a new signed version of the kernel module is available.
Date: 2016-10-13 18:38:24.537
Description: Windows is unable to verify the integrity of the file \Device\HarddiskVolume2\$Windows.~BT\Updates\Critical\37529801-035b-4080-80e8-446c4887e8be\x86_microsoft-windows-errorreportingcore_31bf3856ad364e35_10.0.10074.1_none_47662a2706182d6f\wermgr.exe because the signing certificate has been revoked. Check with the publisher to see if a new signed version of the kernel module is available.
Date: 2016-10-13 18:38:24.518
Description: Windows is unable to verify the integrity of the file \Device\HarddiskVolume2\$Windows.~BT\Updates\Critical\37529801-035b-4080-80e8-446c4887e8be\x86_microsoft-windows-errorreportingcore_31bf3856ad364e35_10.0.10074.1_none_47662a2706182d6f\wermgr.exe because the signing certificate has been revoked. Check with the publisher to see if a new signed version of the kernel module is available.
Date: 2016-10-13 18:38:24.474
Description: Windows is unable to verify the integrity of the file \Device\HarddiskVolume2\$Windows.~BT\Updates\Critical\37529801-035b-4080-80e8-446c4887e8be\x86_microsoft-windows-errorreportingcore_31bf3856ad364e35_10.0.10074.1_none_47662a2706182d6f\wermgr.exe because the signing certificate has been revoked. Check with the publisher to see if a new signed version of the kernel module is available.
==================== Memory info ===========================
Processor: Genuine Intel(R) CPU T1500 @ 1.86GHz
Percentage of memory in use: 53%
Total physical RAM: 2039.3 MB
Available physical RAM: 939.89 MB
Total Virtual: 4078.61 MB
Available Virtual: 2480 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:133.75 GB) (Free:83.97 GB) NTFS ==>[system with boot components (obtained from drive)]
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 149.1 GB) (Disk ID: 68DB9967)
Partition 1: (Active) - (Size=300 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=133.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=15 GB) - (Type=07 NTFS)
==================== End of Addition.txt ============================
Re: prosím o kontrolu
Napiste mi velikost adresare plochy (C:\Users\Můj\Plocha) Otevrete si poznamkovy blok a zkopirujte do nej tento skript
Kód: Vybrat vše
Start
CloseProcesses:
CreateRestorePoint:
HKLM\...\Run: [PDF Complete] => C:\Program Files\PDF Complete\pdfsty.exe [563736 2009-06-18] (PDF Complete Inc)
HKLM\...\Run: [NeroFilterCheck] => C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [155648 2006-01-12] (Nero AG)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [919008 2012-07-27] (Adobe Systems Incorporated)
HKU\S-1-5-21-2528192400-3420705059-2572034240-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3672384 2012-04-11] (DT Soft Ltd)
HKU\S-1-5-21-2528192400-3420705059-2572034240-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6868696 2016-08-26] (Piriform Ltd)
HKU\S-1-5-21-2528192400-3420705059-2572034240-1001\...\Run: [CCleaner] => C:\Program Files\CCleaner\CCleaner.exe [6868696 2016-08-26] (Piriform Ltd)
BHO: No Name -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> No File
Toolbar: HKLM - No Name - {0BF43445-2F28-4351-9252-17FE6E806AA0} - No File
S3 NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [774144 2006-11-10] (Nero AG) [File not signed]
S3 MfeAVFK; C:\windows\System32\drivers\MfeAVFK.sys [79816 2009-05-16] (McAfee, Inc.)
S3 MfeBOPK; C:\windows\System32\drivers\MfeBOPK.sys [35272 2009-05-16] (McAfee, Inc.)
R1 mfehidk; C:\windows\System32\drivers\mfehidk.sys [214024 2009-05-16] (McAfee, Inc.)
S3 MfeRKDK; C:\windows\System32\drivers\MfeRKDK.sys [34248 2009-05-16] (McAfee, Inc.)
R1 mfetdik; C:\windows\System32\drivers\mfetdik.sys [55336 2009-05-16] (McAfee, Inc.)
Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Hosts:
EmptyTemp:
Reboot:
EndKliknete na napis Ulozit jako...
Napiste spravne ten cerveny nazev fixlist a ulozte na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Spustte FRST jako spravce, kliknete na napis Fix a program vykona prikazy.
Po restartu pc by se mel objevit novy log - s nazvem fixlog, ten mi sem zase zkopirujte.
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: prosím o kontrolu
Velikost plochy je 1,77MB
Fix result of Farbar Recovery Scan Tool (x86) Version: 13-10-2016
Ran by Můj (16-10-2016 09:25:46) Run:1
Running from C:\Users\Můj\Desktop
Loaded Profiles: Můj (Available Profiles: Můj)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:
HKLM\...\Run: [PDF Complete] => C:\Program Files\PDF Complete\pdfsty.exe [563736 2009-06-18] (PDF Complete Inc)
HKLM\...\Run: [NeroFilterCheck] => C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [155648 2006-01-12] (Nero AG)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [919008 2012-07-27] (Adobe Systems Incorporated)
HKU\S-1-5-21-2528192400-3420705059-2572034240-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3672384 2012-04-11] (DT Soft Ltd)
HKU\S-1-5-21-2528192400-3420705059-2572034240-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6868696 2016-08-26] (Piriform Ltd)
HKU\S-1-5-21-2528192400-3420705059-2572034240-1001\...\Run: [CCleaner] => C:\Program Files\CCleaner\CCleaner.exe [6868696 2016-08-26] (Piriform Ltd)
BHO: No Name -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> No File
Toolbar: HKLM - No Name - {0BF43445-2F28-4351-9252-17FE6E806AA0} - No File
S3 NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [774144 2006-11-10] (Nero AG) [File not signed]
S3 MfeAVFK; C:\windows\System32\drivers\MfeAVFK.sys [79816 2009-05-16] (McAfee, Inc.)
S3 MfeBOPK; C:\windows\System32\drivers\MfeBOPK.sys [35272 2009-05-16] (McAfee, Inc.)
R1 mfehidk; C:\windows\System32\drivers\mfehidk.sys [214024 2009-05-16] (McAfee, Inc.)
S3 MfeRKDK; C:\windows\System32\drivers\MfeRKDK.sys [34248 2009-05-16] (McAfee, Inc.)
R1 mfetdik; C:\windows\System32\drivers\mfetdik.sys [55336 2009-05-16] (McAfee, Inc.)
Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Hosts:
EmptyTemp:
Reboot:
End
*****************
Processes closed successfully.
Restore point was successfully created.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\PDF Complete => value removed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\NeroFilterCheck => value removed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\GrooveMonitor => value removed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => value removed successfully.
HKU\S-1-5-21-2528192400-3420705059-2572034240-1001\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite => value removed successfully.
HKU\S-1-5-21-2528192400-3420705059-2572034240-1001\Software\Microsoft\Windows\CurrentVersion\Run\\CCleaner Monitoring => value removed successfully.
HKU\S-1-5-21-2528192400-3420705059-2572034240-1001\Software\Microsoft\Windows\CurrentVersion\Run\\CCleaner => value removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}" => key removed successfully.
HKCR\CLSID\{5C255C8A-E604-49b4-9D64-90988571CECB} => key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{0BF43445-2F28-4351-9252-17FE6E806AA0} => value removed successfully.
HKCR\CLSID\{0BF43445-2F28-4351-9252-17FE6E806AA0} => key not found.
NBService => service removed successfully.
MfeAVFK => service removed successfully.
MfeBOPK => service removed successfully.
mfehidk => Unable to stop service.
mfehidk => service removed successfully.
MfeRKDK => service removed successfully.
mfetdik => Unable to stop service.
mfetdik => service removed successfully.
C:\windows\Tasks\Adobe Flash Player Updater.job => moved successfully
C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
=========== EmptyTemp: ==========
BITS transfer queue => 8388608 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 15770173 B
Java, Flash, Steam htmlcache => 609 B
Windows/system/drivers => 4612160 B
Edge => 0 B
Chrome => 211968 B
Firefox => 102006759 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 66228 B
Public => 0 B
ProgramData => 0 B
systemprofile => 13610605 B
LocalService => 66228 B
NetworkService => 67508 B
Můj => 205148 B
RecycleBin => 0 B
EmptyTemp: => 138.3 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 09:27:07 ====
Fix result of Farbar Recovery Scan Tool (x86) Version: 13-10-2016
Ran by Můj (16-10-2016 09:25:46) Run:1
Running from C:\Users\Můj\Desktop
Loaded Profiles: Můj (Available Profiles: Můj)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:
HKLM\...\Run: [PDF Complete] => C:\Program Files\PDF Complete\pdfsty.exe [563736 2009-06-18] (PDF Complete Inc)
HKLM\...\Run: [NeroFilterCheck] => C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [155648 2006-01-12] (Nero AG)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [919008 2012-07-27] (Adobe Systems Incorporated)
HKU\S-1-5-21-2528192400-3420705059-2572034240-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3672384 2012-04-11] (DT Soft Ltd)
HKU\S-1-5-21-2528192400-3420705059-2572034240-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [6868696 2016-08-26] (Piriform Ltd)
HKU\S-1-5-21-2528192400-3420705059-2572034240-1001\...\Run: [CCleaner] => C:\Program Files\CCleaner\CCleaner.exe [6868696 2016-08-26] (Piriform Ltd)
BHO: No Name -> {5C255C8A-E604-49b4-9D64-90988571CECB} -> No File
Toolbar: HKLM - No Name - {0BF43445-2F28-4351-9252-17FE6E806AA0} - No File
S3 NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [774144 2006-11-10] (Nero AG) [File not signed]
S3 MfeAVFK; C:\windows\System32\drivers\MfeAVFK.sys [79816 2009-05-16] (McAfee, Inc.)
S3 MfeBOPK; C:\windows\System32\drivers\MfeBOPK.sys [35272 2009-05-16] (McAfee, Inc.)
R1 mfehidk; C:\windows\System32\drivers\mfehidk.sys [214024 2009-05-16] (McAfee, Inc.)
S3 MfeRKDK; C:\windows\System32\drivers\MfeRKDK.sys [34248 2009-05-16] (McAfee, Inc.)
R1 mfetdik; C:\windows\System32\drivers\mfetdik.sys [55336 2009-05-16] (McAfee, Inc.)
Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Hosts:
EmptyTemp:
Reboot:
End
*****************
Processes closed successfully.
Restore point was successfully created.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\PDF Complete => value removed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\NeroFilterCheck => value removed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\GrooveMonitor => value removed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => value removed successfully.
HKU\S-1-5-21-2528192400-3420705059-2572034240-1001\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite => value removed successfully.
HKU\S-1-5-21-2528192400-3420705059-2572034240-1001\Software\Microsoft\Windows\CurrentVersion\Run\\CCleaner Monitoring => value removed successfully.
HKU\S-1-5-21-2528192400-3420705059-2572034240-1001\Software\Microsoft\Windows\CurrentVersion\Run\\CCleaner => value removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}" => key removed successfully.
HKCR\CLSID\{5C255C8A-E604-49b4-9D64-90988571CECB} => key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{0BF43445-2F28-4351-9252-17FE6E806AA0} => value removed successfully.
HKCR\CLSID\{0BF43445-2F28-4351-9252-17FE6E806AA0} => key not found.
NBService => service removed successfully.
MfeAVFK => service removed successfully.
MfeBOPK => service removed successfully.
mfehidk => Unable to stop service.
mfehidk => service removed successfully.
MfeRKDK => service removed successfully.
mfetdik => Unable to stop service.
mfetdik => service removed successfully.
C:\windows\Tasks\Adobe Flash Player Updater.job => moved successfully
C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
=========== EmptyTemp: ==========
BITS transfer queue => 8388608 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 15770173 B
Java, Flash, Steam htmlcache => 609 B
Windows/system/drivers => 4612160 B
Edge => 0 B
Chrome => 211968 B
Firefox => 102006759 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 66228 B
Public => 0 B
ProgramData => 0 B
systemprofile => 13610605 B
LocalService => 66228 B
NetworkService => 67508 B
Můj => 205148 B
RecycleBin => 0 B
EmptyTemp: => 138.3 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 09:27:07 ====
Re: prosím o kontrolu
Vsechny tyto programy - vcetne pripadne instalace - spoustejte jako spravce (kliknete na ne pravym mysidlem a zvolte - Spustit jako spravce) vyosek píše:
- Stahnete a spustte
- Ponechte zatrzitkou pouze u volby Remove disinfection tools
- Kliknete na Run
Stahnete Ccleaner http://www.filehippo.com/download_ccleaner a spustte.Pri instalaci pozor na toolbar (ci jine doplnky), jestli vam nabidne jeho instalaci, tak zruste zatrzitko.
Po spusteni se ocitnete ve funkci Cistic. Vlevo je spousta zatrzitek. Pozor dejte hlavne na kos, pokud nechate zatrzene, vzdy ho vysype.
Dale, podle toho jak je nastaven, smaze vsechna hesla ulozena na netu!!! Takze jestli mate nastavene, at si pocitac hesla pamatuje (coz neni pro bezpecnost dobre), budete je muset pak napsat znova rucne (napr mail, facebook, ruzna fora atd.)
Kliknete na Analyzovat a az dokonci analyzu, kliknete na Spustit Cleaner.
Potom kliknete vlevo na funkci Registry
Kliknete na Hledej problemy, kdyz najde, kliknete na Opravit problemy. Nabidne Vam zalohu, tu udelejte a ulozte ji tak, at ji v pripade potreby najdete.
Funkce Nastroje umoznuje odinstalovani programu. Je dukladnejsi nez samotny windows!
(Pokud je v pc vice uzivatelskych uctu, pouzijte program i v nich)
Defragmentujte disk(y) (SSD Disky ne!)Stahnete program Defraggler https://www.piriform.com/defraggler/download/standard
Pri instalaci opet pozor na toolbar a dalsi nesmysly.
Po nainstalovani program spustte a kliknete na Analyzovat, po analyze kliknete na Defragmentovat a programek odvede svou praci.
Pak napiste, jak to s pc vypada.Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: prosím o kontrolu
Vypadá to že se notebook o něco zrychlil a i stránky na netu se načítají o hodně rychleji.
Re: prosím o kontrolu
A jede tedy vse jak ma a muzem tema uzavrit, nebo stale neco zlobi a udelame hlubsi kontrolu?
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Re: prosím o kontrolu
Je to lepší a starší notebook takže s pomalejšími reakcemi se počíta.Děkuji vám za pomoc.
Re: prosím o kontrolu
OK
Nemate zac!
Mejte se a treba zase nekdy
Nemate zac!
Mejte se a treba zase nekdy
Pokud máte dotaz, který není určen pro veřejnost, můžete mi napsat na mail marty84zavináčforum.viry.cz
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Možnost podpořit naše fórum https://platba.viry.cz/payment/
Z časových důvodů teď budu na fóru méně často. V případě delšího čekání na odpověď kontaktujte prosím některého z kolegů (většina má mailovou adresu ve svém podpisu).
Přispějete na provoz fóra?