Dobrý den,
nenápadně, plíživě ale už přesto zřetelně se zpomalily náběhy oken, programů, přepínání. Snad to nebude mít maligní pozadí ...
Budu rád za kontrolu a děkuji
Logfile of random's system information tool 1.10 (written by random/random)
Run by Admin at 2016-11-07 13:29:15
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 535 GB (56%) free of 954 GB
Total RAM: 3326 MB (35% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:29:24, on 7.11.2016
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18500)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Program Files\Cobian Backup 11\cbInterface.exe
C:\Program Files\AVG\AVG2015\avgui.exe
C:\Program Files\Garmin\Express Tray\ExpressTray.exe
C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesApp32.exe
C:\Windows\system32\ctfmon.exe
C:\Windows\system32\ntvdm.exe
C:\Windows\system32\conhost.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\temp\RSIT.exe
C:\Windows\system32\taskeng.exe
C:\temp\RSIT.exe
C:\Program Files\trend micro\Admin.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: IE7Pro BHO - {00011268-E188-40DF-A514-835FCD78B1BF} - C:\Program Files\IEPro\iepro.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_77\bin\ssv.dll
O2 - BHO: CHelper Class - {99A7C4DD-B2E6-4CA0-BB6E-737A61364155} - C:\PROGRA~1\EUROTR~1\e2003i.dll
O2 - BHO: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~3\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_77\bin\jp2ssv.dll
O3 - Toolbar: Grab Pro - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - C:\Program Files\IEPro\IEProRecorder.dll
O4 - HKLM\..\Run: [WD Quick View] C:\Program Files\Western Digital\WD Quick View\WDDMStatus.exe
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: [Cobian Backup 11 interface] "C:\Program Files\Cobian Backup 11\cbInterface.exe" -service
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\AVG2015\avuirunnerx.exe" C:\Program Files\AVG\AVG2015\avgui.exe
O4 - HKCU\..\Run: [KiesPreload] C:\Program Files\Samsung\Kies\Kies.exe /preload
O4 - HKCU\..\Run: [KiesPDLR.exe] C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe Run
O4 - HKCU\..\Run: [GarminExpressTrayApp] "C:\Program Files\Garmin\Express Tray\ExpressTray.exe"
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] "C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXE"
O4 - HKUS\S-1-5-18\..\Run: [GarminExpressTrayApp] "C:\Program Files\Garmin\Express Tray\ExpressTray.exe" (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [GarminExpressTrayApp] "C:\Program Files\Garmin\Express Tray\ExpressTray.exe" (User 'Default user')
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~3\Office14\ONBttnIE.dll/105
O9 - Extra button: IE7Pro Grab and Drag - {000002a3-84fe-43f1-b958-f2c3ca804f1a} - C:\Program Files\IEPro\iepro.dll
O9 - Extra 'Tools' menuitem: IE7Pro Grab and Drag - {000002a3-84fe-43f1-b958-f2c3ca804f1a} - C:\Program Files\IEPro\iepro.dll
O9 - Extra button: IE7Pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - C:\Program Files\IEPro\iepro.dll
O9 - Extra 'Tools' menuitem: IE7Pro Preferences - {0026439F-A980-4f18-8C95-4F1CBBF9C1D8} - C:\Program Files\IEPro\iepro.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: Eurotran - {572BF76C-9EFF-4e1e-93DE-72EF1E91B3DF} - C:\PROGRA~1\EUROTR~1\e2003i.dll
O9 - Extra 'Tools' menuitem: Eurotran - {572BF76C-9EFF-4e1e-93DE-72EF1E91B3DF} - C:\PROGRA~1\EUROTR~1\e2003i.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O20 - AppInit_DLLs: d0
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2015\avgfws.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2015\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2015\avgwdsvc.exe
O23 - Service: Cobian Backup 11 Stínová kopie - Requester (cbVSCService11) - CobianSoft, Luis Cobian - C:\Program Files\Cobian Backup 11\cbVSCService11.exe
O23 - Service: cgm.brevir-1 - Unknown owner - C:\CGMSERVER\bin\brevir-1\cgm.brevir-1.exe
O23 - Service: cgm.ecommunication-1 - CompuGroup Medical Česká republika s.r.o. - C:\CGMSERVER\bin\ecommunication-1\cgm.ecommunication-1.exe
O23 - Service: cgm.servercore - CGM - C:\CGMSERVER\bin\core\cgm.servercore.exe
O23 - Service: Cobian Backup 11 Gravity (CobianBackup11) - Luis Cobian, CobianSoft - C:\Program Files\Cobian Backup 11\cbService.exe
O23 - Service: Garmin Device Interaction Service - Garmin Ltd. or its subsidiaries - C:\Program Files\Garmin\Device Interaction Service\GarminService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HCS.MedConnect.Service - HCS GmbH - C:\CGMSERVER\bin\medical-net\MedConnect\HCS.MedConnect.Service.exe
O23 - Service: HCS.MEDCONNECT.SERVICEMANAGER - HCS GmbH - C:\CGMSERVER\bin\medical-net\MedConnect.ServiceManager\HCS.MedConnect.ServiceManager.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @C:\Program Files\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files\Nero\Update\NASvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: SAMSUNG Mobile Connectivity Service (ss_conn_service) - DEVGURU Co., LTD. - C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
O23 - Service: AVG PC TuneUp Service (TuneUp.UtilitiesSvc) - AVG - C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesService32.exe
--
End of file - 9757 bytes
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
=========Mozilla firefox=========
ProfilePath - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\ofv7r74m.default
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 23.0.0.205 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_23_0_0_205.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@garmin.com/GpsControl]
"Description"=Garmin GPS Control for Firefox
"Path"=C:\Program Files\Garmin GPS Plugin\npGarmin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files\Google\Picasa3\npPicasa3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.77.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_77\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.77.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_77\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3538.0513]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Nero.com/KM]
"Description"=
"Path"=C:\PROGRA~1\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@software602.cz/602XML Filler]
"Description"=Software602 Form Filler Plugin
"Path"=C:\Program Files\Software602\602XML\Filler\npfiller.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\ofv7r74m.default\extensions\
{ea614400-e918-4741-9a97-7a972ff7c30b}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00011268-E188-40DF-A514-835FCD78B1BF}]
IE7Pro BHO - C:\Program Files\IEPro\iepro.dll [2010-06-02 777392]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_77\bin\ssv.dll [2016-03-28 462400]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{99A7C4DD-B2E6-4CA0-BB6E-737A61364155}]
CHelper Class - C:\PROGRA~1\EUROTR~1\e2003i.dll [2013-06-23 98304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-05-14 4531320]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~3\Office14\URLREDIR.DLL [2010-12-21 561552]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_77\bin\jp2ssv.dll [2016-03-28 173120]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{C55BBCD6-41AD-48AD-9953-3609C48EACC7} - Grab Pro - C:\Program Files\IEPro\IEProRecorder.dll [2010-06-02 662736]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"WD Quick View"=C:\Program Files\Western Digital\WD Quick View\WDDMStatus.exe [2014-06-02 5563760]
"KiesTrayAgent"=C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [2016-01-08 318248]
"Cobian Backup 11 interface"=C:\Program Files\Cobian Backup 11\cbInterface.exe [2012-12-05 4407808]
"AVG_UI"=C:\Program Files\AVG\AVG2015\avuirunnerx.exe [2016-05-28 25496]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"KiesPreload"=C:\Program Files\Samsung\Kies\Kies.exe [2016-01-08 1572648]
"KiesPDLR.exe"=C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [2016-01-08 1021736]
"GarminExpressTrayApp"=C:\Program Files\Garmin\Express Tray\ExpressTray.exe [2016-10-25 1407912]
"Zoner Photo Studio Autoupdate"=C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXE [2014-12-23 833240]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="d0"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files\IEPro\MiniDM.exe"="C:\Program Files\IEPro\MiniDM.exe:*:Enabled:MiniDM"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\filler602.exe]
"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\javacpl.exe]
"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\javaw.exe]
"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\javaws.exe]
"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\kiesagent.exe]
"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\nvstlink.exe]
"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\nvstview.exe]
"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\setup.exe]
"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\skype.exe]
"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\unins000.exe]
"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\uninst.exe]
"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\wddmstatus.exe]
"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\wdsmartware.exe]
"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\zps.exe]
"Debugger=""C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"msacm.siren"=sirenacm.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"wave8"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer8"=wdmaud.drv
"wave9"=wdmaud.drv
"midi9"=wdmaud.drv
"mixer9"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2016-11-07 13:27:35 ----D---- C:\rsit
2016-10-21 15:06:39 ----D---- C:\Program Files\Mozilla Firefox
2016-10-19 10:41:21 ----A---- C:\Windows\system32\poqexec.exe
2016-10-13 16:20:44 ----A---- C:\Windows\system32\mshtml.dll
2016-10-13 16:20:42 ----A---- C:\Windows\system32\wmp.dll
2016-10-13 16:20:41 ----A---- C:\Windows\system32\jscript9.dll
2016-10-13 16:20:41 ----A---- C:\Windows\system32\ieframe.dll
2016-10-13 16:20:40 ----A---- C:\Windows\system32\wininet.dll
2016-10-13 16:20:40 ----A---- C:\Windows\system32\mf.dll
2016-10-13 16:20:40 ----A---- C:\Windows\system32\drmv2clt.dll
2016-10-13 16:20:40 ----A---- C:\Windows\system32\blackbox.dll
2016-10-13 16:20:39 ----A---- C:\Windows\system32\WsmSvc.dll
2016-10-13 16:20:39 ----A---- C:\Windows\system32\wmdrmsdk.dll
2016-10-13 16:20:39 ----A---- C:\Windows\system32\vbscript.dll
2016-10-13 16:20:39 ----A---- C:\Windows\system32\urlmon.dll
2016-10-13 16:20:39 ----A---- C:\Windows\system32\scavengeui.dll
2016-10-13 16:20:39 ----A---- C:\Windows\system32\quartz.dll
2016-10-13 16:20:39 ----A---- C:\Windows\system32\qdvd.dll
2016-10-13 16:20:39 ----A---- C:\Windows\system32\iertutil.dll
2016-10-13 16:20:39 ----A---- C:\Windows\system32\evr.dll
2016-10-13 16:20:39 ----A---- C:\Windows\system32\drmmgrtn.dll
2016-10-13 16:20:39 ----A---- C:\Windows\system32\audiosrv.dll
2016-10-13 16:20:38 ----A---- C:\Windows\system32\WsmWmiPl.dll
2016-10-13 16:20:38 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2016-10-13 16:20:38 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2016-10-13 16:20:38 ----A---- C:\Windows\system32\ntkrnlpa.exe
2016-10-13 16:20:38 ----A---- C:\Windows\system32\MSVidCtl.dll
2016-10-13 16:20:38 ----A---- C:\Windows\system32\msfeeds.dll
2016-10-13 16:20:38 ----A---- C:\Windows\system32\mfplat.dll
2016-10-13 16:20:38 ----A---- C:\Windows\system32\lsasrv.dll
2016-10-13 16:20:38 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2016-10-13 16:20:38 ----A---- C:\Windows\system32\cryptui.dll
2016-10-13 16:20:38 ----A---- C:\Windows\system32\AUDIOKSE.dll
2016-10-13 16:20:38 ----A---- C:\Windows\system32\AudioEng.dll
2016-10-13 16:20:37 ----A---- C:\Windows\system32\WsmAuto.dll
2016-10-13 16:20:37 ----A---- C:\Windows\system32\wmploc.DLL
2016-10-13 16:20:37 ----A---- C:\Windows\system32\pcasvc.dll
2016-10-13 16:20:37 ----A---- C:\Windows\system32\EncDump.dll
2016-10-13 16:20:37 ----A---- C:\Windows\system32\DWrite.dll
2016-10-13 16:20:37 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2016-10-13 16:20:37 ----A---- C:\Windows\system32\AudioSes.dll
2016-10-13 16:20:36 ----A---- C:\Windows\system32\ntoskrnl.exe
2016-10-13 16:20:36 ----A---- C:\Windows\system32\FntCache.dll
2016-10-13 16:20:36 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2016-10-13 16:20:36 ----A---- C:\Windows\system32\drivers\dfsc.sys
2016-10-13 16:20:35 ----A---- C:\Windows\system32\win32k.sys
2016-10-13 16:20:35 ----A---- C:\Windows\system32\ntdll.dll
2016-10-13 16:20:35 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2016-10-13 16:20:35 ----A---- C:\Windows\system32\msscp.dll
2016-10-13 16:20:35 ----A---- C:\Windows\system32\mshtmlmedia.dll
2016-10-13 16:20:35 ----A---- C:\Windows\system32\mfps.dll
2016-10-13 16:20:35 ----A---- C:\Windows\system32\inetcomm.dll
2016-10-13 16:20:35 ----A---- C:\Windows\system32\iedkcs32.dll
2016-10-13 16:20:35 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2016-10-13 16:20:35 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2016-10-13 16:20:35 ----A---- C:\Windows\system32\cryptsp.dll
2016-10-13 16:20:35 ----A---- C:\Windows\system32\audiodg.exe
2016-10-13 16:20:35 ----A---- C:\Windows\system32\adsmsext.dll
2016-10-13 16:20:34 ----A---- C:\Windows\system32\WsmRes.dll
2016-10-13 16:20:34 ----A---- C:\Windows\system32\wsmprovhost.exe
2016-10-13 16:20:34 ----A---- C:\Windows\system32\wsmplpxy.dll
2016-10-13 16:20:34 ----A---- C:\Windows\system32\webcheck.dll
2016-10-13 16:20:34 ----A---- C:\Windows\system32\WebClnt.dll
2016-10-13 16:20:34 ----A---- C:\Windows\system32\spwmp.dll
2016-10-13 16:20:34 ----A---- C:\Windows\system32\smss.exe
2016-10-13 16:20:34 ----A---- C:\Windows\system32\rrinstaller.exe
2016-10-13 16:20:34 ----A---- C:\Windows\system32\rpcrt4.dll
2016-10-13 16:20:34 ----A---- C:\Windows\system32\pcawrk.exe
2016-10-13 16:20:34 ----A---- C:\Windows\system32\pcalua.exe
2016-10-13 16:20:34 ----A---- C:\Windows\system32\pcaevts.dll
2016-10-13 16:20:34 ----A---- C:\Windows\system32\pcadm.dll
2016-10-13 16:20:34 ----A---- C:\Windows\system32\occache.dll
2016-10-13 16:20:34 ----A---- C:\Windows\system32\msv1_0.dll
2016-10-13 16:20:34 ----A---- C:\Windows\system32\msrating.dll
2016-10-13 16:20:34 ----A---- C:\Windows\system32\msnetobj.dll
2016-10-13 16:20:34 ----A---- C:\Windows\system32\msmmsp.dll
2016-10-13 16:20:34 ----A---- C:\Windows\system32\mshtmled.dll
2016-10-13 16:20:34 ----A---- C:\Windows\system32\MshtmlDac.dll
2016-10-13 16:20:34 ----A---- C:\Windows\system32\mfpmp.exe
2016-10-13 16:20:34 ----A---- C:\Windows\system32\mferror.dll
2016-10-13 16:20:34 ----A---- C:\Windows\system32\kerberos.dll
2016-10-13 16:20:34 ----A---- C:\Windows\system32\jsproxy.dll
2016-10-13 16:20:34 ----A---- C:\Windows\system32\jscript9diag.dll
2016-10-13 16:20:34 ----A---- C:\Windows\system32\jscript.dll
2016-10-13 16:20:34 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-10-13 16:20:34 ----A---- C:\Windows\system32\inseng.dll
2016-10-13 16:20:34 ----A---- C:\Windows\system32\INETRES.dll
2016-10-13 16:20:34 ----A---- C:\Windows\system32\ieUnatt.exe
2016-10-13 16:20:34 ----A---- C:\Windows\system32\ieui.dll
2016-10-13 16:20:34 ----A---- C:\Windows\system32\iesetup.dll
2016-10-13 16:20:34 ----A---- C:\Windows\system32\ieetwproxystub.dll
2016-10-13 16:20:34 ----A---- C:\Windows\system32\ieapfltr.dll
2016-10-13 16:20:34 ----A---- C:\Windows\system32\ie4uinit.exe
2016-10-13 16:20:34 ----A---- C:\Windows\system32\dxtrans.dll
2016-10-13 16:20:34 ----A---- C:\Windows\system32\dxtmsft.dll
2016-10-13 16:20:34 ----A---- C:\Windows\system32\dxmasf.dll
2016-10-13 16:20:34 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2016-10-13 16:20:34 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2016-10-13 16:20:34 ----A---- C:\Windows\system32\davclnt.dll
2016-10-13 16:20:34 ----A---- C:\Windows\system32\advapi32.dll
2016-10-13 16:20:33 ----A---- C:\Windows\system32\wintrust.dll
2016-10-13 16:20:33 ----A---- C:\Windows\system32\wdigest.dll
2016-10-13 16:20:33 ----A---- C:\Windows\system32\TSpkg.dll
2016-10-13 16:20:33 ----A---- C:\Windows\system32\sspisrv.dll
2016-10-13 16:20:33 ----A---- C:\Windows\system32\sspicli.dll
2016-10-13 16:20:33 ----A---- C:\Windows\system32\srcore.dll
2016-10-13 16:20:33 ----A---- C:\Windows\system32\srclient.dll
2016-10-13 16:20:33 ----A---- C:\Windows\system32\schannel.dll
2016-10-13 16:20:33 ----A---- C:\Windows\system32\setbcdlocale.dll
2016-10-13 16:20:33 ----A---- C:\Windows\system32\secur32.dll
2016-10-13 16:20:33 ----A---- C:\Windows\system32\rstrui.exe
2016-10-13 16:20:33 ----A---- C:\Windows\system32\rpchttp.dll
2016-10-13 16:20:33 ----A---- C:\Windows\system32\ncrypt.dll
2016-10-13 16:20:33 ----A---- C:\Windows\system32\msobjs.dll
2016-10-13 16:20:33 ----A---- C:\Windows\system32\msaudite.dll
2016-10-13 16:20:33 ----A---- C:\Windows\system32\lsass.exe
2016-10-13 16:20:33 ----A---- C:\Windows\system32\iernonce.dll
2016-10-13 16:20:33 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2016-10-13 16:20:33 ----A---- C:\Windows\system32\ieetwcollector.exe
2016-10-13 16:20:33 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2016-10-13 16:20:33 ----A---- C:\Windows\system32\drivers\appid.sys
2016-10-13 16:20:33 ----A---- C:\Windows\system32\csrsrv.dll
2016-10-13 16:20:33 ----A---- C:\Windows\system32\cryptsvc.dll
2016-10-13 16:20:33 ----A---- C:\Windows\system32\cryptnet.dll
2016-10-13 16:20:33 ----A---- C:\Windows\system32\cryptbase.dll
2016-10-13 16:20:33 ----A---- C:\Windows\system32\crypt32.dll
2016-10-13 16:20:33 ----A---- C:\Windows\system32\credssp.dll
2016-10-13 16:20:33 ----A---- C:\Windows\system32\auditpol.exe
2016-10-13 16:20:33 ----A---- C:\Windows\system32\appidsvc.dll
2016-10-13 16:20:33 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2016-10-13 16:20:33 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2016-10-13 16:20:33 ----A---- C:\Windows\system32\appidapi.dll
2016-10-13 16:20:33 ----A---- C:\Windows\system32\apisetschema.dll
2016-10-13 16:20:33 ----A---- C:\Windows\system32\adtschema.dll
2016-10-13 16:20:22 ----A---- C:\Windows\system32\invagent.dll
2016-10-13 16:20:22 ----A---- C:\Windows\system32\generaltel.dll
2016-10-13 16:20:22 ----A---- C:\Windows\system32\devinv.dll
2016-10-13 16:20:22 ----A---- C:\Windows\system32\CompatTelRunner.exe
2016-10-13 16:20:22 ----A---- C:\Windows\system32\centel.dll
2016-10-13 16:20:22 ----A---- C:\Windows\system32\appraiser.dll
2016-10-13 16:20:22 ----A---- C:\Windows\system32\aepic.dll
2016-10-13 16:20:22 ----A---- C:\Windows\system32\aeinv.dll
2016-10-13 16:20:22 ----A---- C:\Windows\system32\acmigration.dll
2016-10-13 16:20:20 ----A---- C:\Windows\system32\shell32.dll
2016-10-13 16:20:20 ----A---- C:\Windows\system32\ExplorerFrame.dll
2016-10-13 16:20:20 ----A---- C:\Windows\system32\authui.dll
2016-10-13 16:20:20 ----A---- C:\Windows\explorer.exe
2016-10-13 16:18:19 ----A---- C:\Windows\system32\drivers\usbuhci.sys
2016-10-13 16:18:19 ----A---- C:\Windows\system32\drivers\usbport.sys
2016-10-13 16:18:19 ----A---- C:\Windows\system32\drivers\usbohci.sys
2016-10-13 16:18:19 ----A---- C:\Windows\system32\drivers\usbhub.sys
2016-10-13 16:18:19 ----A---- C:\Windows\system32\drivers\usbehci.sys
2016-10-13 16:18:19 ----A---- C:\Windows\system32\drivers\usbd.sys
2016-10-13 16:18:19 ----A---- C:\Windows\system32\drivers\usbccgp.sys
======List of files/folders modified in the last 1 month======
2016-11-07 13:29:17 ----D---- C:\Program Files\trend micro
2016-11-07 13:27:48 ----D---- C:\Windows\Prefetch
2016-11-07 13:26:53 ----D---- C:\temp
2016-11-07 13:25:23 ----D---- C:\Windows\temp
2016-11-07 13:21:35 ----D---- C:\ProgramData\MFAData
2016-11-07 13:20:13 ----D---- C:\Program Files\Dialog MIS
2016-11-07 13:20:04 ----D---- C:\Windows\System32
2016-11-07 13:20:04 ----D---- C:\Windows\inf
2016-11-07 13:20:04 ----A---- C:\Windows\system32\PerfStringBackup.INI
2016-11-07 13:19:39 ----D---- C:\Windows\system32\config
2016-11-07 13:19:13 ----D---- C:\ALFIS16J
2016-11-07 13:15:19 ----D---- C:\Windows
2016-11-06 16:54:42 ----D---- C:\BATCH
2016-11-06 16:24:21 ----D---- C:\VYPAL
2016-11-06 16:13:56 ----D---- C:\Users\Admin\AppData\Roaming\vlc
2016-11-06 16:12:58 ----SHD---- C:\Windows\Installer
2016-11-06 16:09:29 ----D---- C:\Windows\system32\Tasks
2016-11-05 10:20:33 ----D---- C:\ProgramData\Package Cache
2016-11-05 10:20:23 ----D---- C:\Program Files\Garmin
2016-11-05 10:19:05 ----SHD---- C:\System Volume Information
2016-11-05 10:18:34 ----D---- C:\Program Files\IDOS
2016-11-04 15:38:08 ----A---- C:\NBDBList.ini
2016-11-04 15:29:33 ----D---- C:\Windows\SoftwareDistribution
2016-11-01 15:01:16 ----RSD---- C:\Windows\assembly
2016-11-01 15:01:16 ----D---- C:\Windows\Microsoft.NET
2016-10-31 18:35:48 ----D---- C:\MP3
2016-10-26 19:15:59 ----D---- C:\S W
2016-10-26 15:49:13 ----D---- C:\CGMSERVER
2016-10-26 10:05:06 ----A---- C:\Windows\system32\FlashPlayerApp.exe
2016-10-26 10:05:04 ----D---- C:\Windows\system32\Macromed
2016-10-25 12:20:49 ----D---- C:\Windows\system32\catroot2
2016-10-24 13:53:21 ----D---- C:\FOTOGRAFIE
2016-10-21 18:54:54 ----D---- C:\Program Files\Mozilla Maintenance Service
2016-10-21 15:06:51 ----RD---- C:\Program Files
2016-10-21 15:05:42 ----D---- C:\Users\Admin\AppData\Roaming\YouTube Downloader
2016-10-19 10:40:27 ----D---- C:\Windows\winsxs
2016-10-14 08:30:48 ----D---- C:\Windows\rescache
2016-10-13 18:34:41 ----D---- C:\Program Files\Microsoft Silverlight
2016-10-13 16:43:54 ----SD---- C:\Windows\system32\CompatTel
2016-10-13 16:43:54 ----D---- C:\Windows\system32\drivers
2016-10-13 16:43:54 ----D---- C:\Windows\system32\Dism
2016-10-13 16:43:54 ----D---- C:\Windows\system32\cs-CZ
2016-10-13 16:43:54 ----D---- C:\Windows\system32\appraiser
2016-10-13 16:43:53 ----D---- C:\Windows\system32\en-US
2016-10-13 16:43:53 ----D---- C:\Windows\AppPatch
2016-10-13 16:43:53 ----D---- C:\Program Files\Windows Media Player
2016-10-13 16:43:53 ----D---- C:\Program Files\Internet Explorer
2016-10-13 16:43:52 ----D---- C:\Windows\system32\drivers\cs-CZ
2016-10-13 16:43:52 ----D---- C:\Windows\cs-CZ
2016-10-13 16:43:51 ----D---- C:\Windows\system32\DriverStore
2016-10-13 16:30:39 ----D---- C:\Windows\system32\MRT
2016-10-13 16:26:43 ----D---- C:\Program Files\rajce
2016-10-13 16:23:03 ----D---- C:\Windows\debug
2016-10-13 16:22:50 ----AC---- C:\Windows\system32\MRT.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 AVGIDSHX;AVGIDSHX; C:\Windows\system32\DRIVERS\avgidshx.sys [2016-01-13 223152]
R0 Avglogx;AVG Logging Driver; C:\Windows\system32\DRIVERS\avglogx.sys [2015-05-07 290272]
R0 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx86.sys [2016-01-22 193456]
R0 Avgrkx86;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx86.sys [2015-03-20 35808]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 Avgdiskx;AVG Disk Driver; C:\Windows\system32\DRIVERS\avgdiskx.sys [2015-03-11 132576]
R1 Avgfwfd;AVG network filter service; C:\Windows\system32\DRIVERS\avgfwd6x.sys [2015-07-09 68032]
R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdriverx.sys [2015-12-16 252336]
R1 AVGIDSShim;AVGIDSShim; C:\Windows\system32\DRIVERS\avgidsshimx.sys [2015-11-25 31664]
R1 Avgldx86;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx86.sys [2015-12-16 234416]
R1 Avgtdix;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdix.sys [2015-08-04 230832]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2009-03-01 139776]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver32.sys [2013-09-18 12320]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 appliandMP;appliandMP; C:\Windows\system32\DRIVERS\appliand.sys []
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 78336]
S3 dgderdrv;dgderdrv; C:\Windows\System32\drivers\dgderdrv.sys []
S3 dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 131072]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\drivers\Dot4Prt.sys [2010-11-20 16384]
S3 Dot4Scan;Scan Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Scan.sys [2009-07-14 10752]
S3 dot4usb;Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 36864]
S3 eapihdrv;eapihdrv; \??\C:\Users\Admin\AppData\Local\Temp\ehdrv.sys []
S3 ivusb;Initio Driver for USB Default Controller; C:\Windows\system32\DRIVERS\ivusb.sys [2010-03-10 25112]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda32v.sys [2013-10-27 161056]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [2009-11-25 47360]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 ss_bus;SAMSUNG Mobile USB Device 1.0 driver (WDM); C:\Windows\system32\DRIVERS\ss_bus.sys [2014-10-13 98560]
S3 ss_mdfl;SAMSUNG Mobile USB Modem 1.0 Filter; C:\Windows\system32\DRIVERS\ss_mdfl.sys [2014-10-13 14848]
S3 ss_mdm;SAMSUNG Mobile USB Modem 1.0 Drivers; C:\Windows\system32\DRIVERS\ss_mdm.sys [2014-10-13 123776]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 WDC_SAM;WD SCSI Pass Thru driver; C:\Windows\system32\DRIVERS\wdcsam.sys [2009-02-13 11520]
S3 WinUsb;WinUsb; C:\Windows\system32\drivers\WinUsb.sys [2010-11-20 35968]
S4 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\Windows\system32\drivers\nvvad32v.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-09-16 82128]
R2 avgfws;AVG Firewall; C:\Program Files\AVG\AVG2015\avgfws.exe [2016-04-21 1563648]
R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files\AVG\AVG2015\avgidsagent.exe [2016-04-21 3647384]
R2 avgwd;AVG WatchDog; C:\Program Files\AVG\AVG2015\avgwdsvc.exe [2016-04-21 336152]
R2 cbVSCService11;Cobian Backup 11 Stínová kopie - Requester; C:\Program Files\Cobian Backup 11\cbVSCService11.exe [2012-12-05 67584]
R2 cgm.brevir-1;cgm.brevir-1; C:\CGMSERVER\bin\brevir-1\cgm.brevir-1.exe [2016-10-24 260608]
R2 cgm.ebooking-1;cgm.ebooking-1; C:\CGMSERVER\bin\ebooking-1\cgm.ebooking-1.exe [2014-10-20 44944]
R2 cgm.ecommunication-1;cgm.ecommunication-1; C:\CGMSERVER\bin\ecommunication-1\cgm.ecommunication-1.exe [2016-10-25 72800]
R2 cgm.servercore;cgm.servercore; C:\CGMSERVER\bin\core\cgm.servercore.exe [2016-04-20 54536]
R2 CobianBackup11;Cobian Backup 11 Gravity; C:\Program Files\Cobian Backup 11\cbService.exe [2012-12-05 1131008]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 Garmin Device Interaction Service;Garmin Device Interaction Service; C:\Program Files\Garmin\Device Interaction Service\GarminService.exe [2016-10-25 985616]
R2 HCS.MEDCONNECT.SERVICEMANAGER;HCS.MEDCONNECT.SERVICEMANAGER; C:\CGMSERVER\bin\medical-net\MedConnect.ServiceManager\HCS.MedConnect.ServiceManager.exe [2015-02-11 87952]
R2 NAUpdate;@C:\Program Files\Nero\Update\NASvc.exe,-200; C:\Program Files\Nero\Update\NASvc.exe [2015-07-07 785904]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2014-02-08 664864]
R2 ss_conn_service;SAMSUNG Mobile Connectivity Service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [2016-01-08 754784]
R2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service; C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesService32.exe [2013-09-23 1740088]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2011-03-28 1713536]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2015-11-05 105144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-10-26 270016]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2015-11-05 45744]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-05-09 136120]
S3 HCS.MedConnect.Service;HCS.MedConnect.Service; C:\CGMSERVER\bin\medical-net\MedConnect\HCS.MedConnect.Service.exe [2015-02-11 48528]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-09-30 102912]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2016-10-21 172488]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-11-16 1343400]
S4 602XML Updater;602Updater; C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe [2011-10-10 85344]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2015-11-05 135848]
S4 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2014-12-11 315496]
S4 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2014-02-08 411936]
S4 WDBackup;WD Backup; C:\Program Files\Western Digital\WD SmartWare\WDBackupEngine.exe [2014-06-02 1042808]
S4 WDDriveService;WD Drive Manager; C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe [2014-06-02 296312]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
plíživé zpomalení PC
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: plíživé zpomalení PC
Zdravím,
1) Zde je ke stahnutí AdwCleaner http://general-changelog-team.fr/fr/download/adwcleaner
2) Utilitu uložte na plochu
3) Mate-li spuštěné, ukončete všechny otevřené programy
4) Následně klikněte nejprve na Scan a poté Clean
5) Po dokončení skenováni se objeví log, který sem vložte
1) Zde je ke stahnutí AdwCleaner http://general-changelog-team.fr/fr/download/adwcleaner
2) Utilitu uložte na plochu
3) Mate-li spuštěné, ukončete všechny otevřené programy
4) Následně klikněte nejprve na Scan a poté Clean
5) Po dokončení skenováni se objeví log, který sem vložte
Re: plíživé zpomalení PC
Dobrý den, děkuji.
Odkaz sice není funkční, snad jsem ale stáhnul odtud
http://download.bleepingcomputer.com/dl ... leaner.exe
verzi použitelnou.
Zde je log
# AdwCleaner v6.030 - Log soubor vytvořen 07/11/2016 na 22:12:49
# Aktualizováno dne 19/10/2016 z Malwarebytes
# Databáze : 2016-11-07.1 [Server]
# Operační systém : Windows 7 Home Premium Service Pack 1 (X86)
# Uživatelské jméno : Admin - ADMIN-PC
# Beží od : C:\Users\Admin\Desktop\AdwCleaner.exe
# Mod: Skenování
# Podpora : https://www.malwarebytes.com/support
***** [ Služby ] *****
Nebyly nalezeny žádné škodlivé služby.
***** [ Adresáře ] *****
Složka nalezena: C:\Users\Admin\AppData\Local\AskToolbar
Složka nalezena: C:\Users\Admin\AppData\LocalLow\AskToolbar
Složka nalezena: C:\Users\Admin\AppData\Roaming\GrabPro
Složka nalezena: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\myfree codec
Složka nalezena: C:\Program Files\myfree codec
Složka nalezena: C:\Windows\installer\{86d4b82a-abed-442a-be86-96357b70f4fe}
Složka nalezena: C:\Windows\system32\config\systemprofile\AppData\LocalLow\AVG Secure Search
***** [ Soubory ] *****
Nebyly nalezeny žádné škodlivé soubory.
***** [ DLL ] *****
Nebyly nalezeny žádné škodlivé DLL soubory.
***** [ WMI ] *****
Nebyly nalezeny žádné škodlivé klíče.
***** [ Zástupce ] *****
Žádné infikovaný zástupce nenalezen.
***** [ Plánovač úloh ] *****
Úkol nalezen: Scheduled Update for Ask Toolbar
***** [ Registry ] *****
Klíč nalezen: HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Klíč nalezen: HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Klíč nalezen: HKLM\SOFTWARE\Classes\VbGUI.cToolbar
Klíč nalezen: HKLM\SOFTWARE\Classes\VbGUI.cToolbarHost
Klíč nalezen: HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Klíč nalezen: HKCU\Software\Classes\CLSID\{16C8C46E-C811-4977-BF0A-B5CC1FA78D95}
Klíč nalezen: HKLM\SOFTWARE\Classes\CLSID\{C55BBCD6-41AD-48AD-9953-3609C48EACC7}
Klíč nalezen: HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Klíč nalezen: HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Klíč nalezen: HKLM\SOFTWARE\Classes\CLSID\{00011268-E188-40DF-A514-835FCD78B1BF}
Klíč nalezen: HKLM\SOFTWARE\Classes\CLSID\{5C3B5DAA-0AFF-4808-90FB-0F2F2D760E36}
Klíč nalezen: HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Klíč nalezen: HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Klíč nalezen: HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Klíč nalezen: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00011268-E188-40DF-A514-835FCD78B1BF}
Klíč nalezen: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A86782D8-7B41-452F-A217-1854F72DBA54}
Klíč nalezen: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C55BBCD6-41AD-48AD-9953-3609C48EACC7}
Klíč nalezen: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Klíč nalezen: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{38122A36-83B2-46B8-B39A-EC72A4614A07}
Klíč nalezen: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00011268-E188-40DF-A514-835FCD78B1BF}
Klíč nalezen: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C55BBCD6-41AD-48AD-9953-3609C48EACC7}
Klíč nalezen: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{00011268-E188-40DF-A514-835FCD78B1BF}
Klíč nalezen: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{38122A36-83B2-46B8-B39A-EC72A4614A07}
Hodnota nalezena: HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{C55BBCD6-41AD-48AD-9953-3609C48EACC7}]
Hodnota nalezena: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{C55BBCD6-41AD-48AD-9953-3609C48EACC7}]
Klíč nalezen: HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\Software\Ask.com
Klíč nalezen: HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\Software\AskToolbar
Klíč nalezen: HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\Software\ImInstaller
Klíč nalezen: HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\Software\Myfree Codec
Klíč nalezen: HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\Software\YahooPartnerToolbar
Klíč nalezen: HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\Software\AppDataLow\AskToolbarInfo
Klíč nalezen: HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\Software\AppDataLow\Software\AskToolbar
Klíč nalezen: HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec
Klíč nalezen: HKCU\Software\Ask.com
Klíč nalezen: HKCU\Software\AskToolbar
Klíč nalezen: HKCU\Software\ImInstaller
Klíč nalezen: HKCU\Software\Myfree Codec
Klíč nalezen: HKCU\Software\YahooPartnerToolbar
Klíč nalezen: HKCU\Software\AppDataLow\AskToolbarInfo
Klíč nalezen: HKCU\Software\AppDataLow\Software\AskToolbar
Klíč nalezen: HKLM\SOFTWARE\Myfree Codec
Klíč nalezen: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec
Klíč nalezen: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Klíč nalezen: HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9
Klíč nalezen: HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\F928123A039649549966d4C29D35B1C9
Klíč nalezen: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9
Klíč nalezen: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F928123A039649549966d4C29D35B1C9
Klíč nalezen: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\akcniceny.cz
Klíč nalezen: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\slunecnice.cz
Klíč nalezen: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.akcniceny.cz
Klíč nalezen: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.slunecnice.cz
Klíč nalezen: HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
***** [ Internetové prohlížeče ] *****
Nebyly nalezeny žádné škodlivé položky prohlížeče Firefox báze.
Nebyly nalezeny žádné škodlivé položky prohlížeče Chromium báze.
*************************
C:\AdwCleaner\AdwCleaner[S0].txt - [6238 Bajtů] - [07/11/2016 22:12:49]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [6312 Bajtů] ##########
Odkaz sice není funkční, snad jsem ale stáhnul odtud
http://download.bleepingcomputer.com/dl ... leaner.exe
verzi použitelnou.
Zde je log
# AdwCleaner v6.030 - Log soubor vytvořen 07/11/2016 na 22:12:49
# Aktualizováno dne 19/10/2016 z Malwarebytes
# Databáze : 2016-11-07.1 [Server]
# Operační systém : Windows 7 Home Premium Service Pack 1 (X86)
# Uživatelské jméno : Admin - ADMIN-PC
# Beží od : C:\Users\Admin\Desktop\AdwCleaner.exe
# Mod: Skenování
# Podpora : https://www.malwarebytes.com/support
***** [ Služby ] *****
Nebyly nalezeny žádné škodlivé služby.
***** [ Adresáře ] *****
Složka nalezena: C:\Users\Admin\AppData\Local\AskToolbar
Složka nalezena: C:\Users\Admin\AppData\LocalLow\AskToolbar
Složka nalezena: C:\Users\Admin\AppData\Roaming\GrabPro
Složka nalezena: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\myfree codec
Složka nalezena: C:\Program Files\myfree codec
Složka nalezena: C:\Windows\installer\{86d4b82a-abed-442a-be86-96357b70f4fe}
Složka nalezena: C:\Windows\system32\config\systemprofile\AppData\LocalLow\AVG Secure Search
***** [ Soubory ] *****
Nebyly nalezeny žádné škodlivé soubory.
***** [ DLL ] *****
Nebyly nalezeny žádné škodlivé DLL soubory.
***** [ WMI ] *****
Nebyly nalezeny žádné škodlivé klíče.
***** [ Zástupce ] *****
Žádné infikovaný zástupce nenalezen.
***** [ Plánovač úloh ] *****
Úkol nalezen: Scheduled Update for Ask Toolbar
***** [ Registry ] *****
Klíč nalezen: HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
Klíč nalezen: HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
Klíč nalezen: HKLM\SOFTWARE\Classes\VbGUI.cToolbar
Klíč nalezen: HKLM\SOFTWARE\Classes\VbGUI.cToolbarHost
Klíč nalezen: HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
Klíč nalezen: HKCU\Software\Classes\CLSID\{16C8C46E-C811-4977-BF0A-B5CC1FA78D95}
Klíč nalezen: HKLM\SOFTWARE\Classes\CLSID\{C55BBCD6-41AD-48AD-9953-3609C48EACC7}
Klíč nalezen: HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Klíč nalezen: HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Klíč nalezen: HKLM\SOFTWARE\Classes\CLSID\{00011268-E188-40DF-A514-835FCD78B1BF}
Klíč nalezen: HKLM\SOFTWARE\Classes\CLSID\{5C3B5DAA-0AFF-4808-90FB-0F2F2D760E36}
Klíč nalezen: HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
Klíč nalezen: HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
Klíč nalezen: HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
Klíč nalezen: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00011268-E188-40DF-A514-835FCD78B1BF}
Klíč nalezen: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A86782D8-7B41-452F-A217-1854F72DBA54}
Klíč nalezen: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C55BBCD6-41AD-48AD-9953-3609C48EACC7}
Klíč nalezen: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Klíč nalezen: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{38122A36-83B2-46B8-B39A-EC72A4614A07}
Klíč nalezen: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00011268-E188-40DF-A514-835FCD78B1BF}
Klíč nalezen: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C55BBCD6-41AD-48AD-9953-3609C48EACC7}
Klíč nalezen: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{00011268-E188-40DF-A514-835FCD78B1BF}
Klíč nalezen: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{38122A36-83B2-46B8-B39A-EC72A4614A07}
Hodnota nalezena: HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{C55BBCD6-41AD-48AD-9953-3609C48EACC7}]
Hodnota nalezena: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{C55BBCD6-41AD-48AD-9953-3609C48EACC7}]
Klíč nalezen: HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\Software\Ask.com
Klíč nalezen: HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\Software\AskToolbar
Klíč nalezen: HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\Software\ImInstaller
Klíč nalezen: HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\Software\Myfree Codec
Klíč nalezen: HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\Software\YahooPartnerToolbar
Klíč nalezen: HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\Software\AppDataLow\AskToolbarInfo
Klíč nalezen: HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\Software\AppDataLow\Software\AskToolbar
Klíč nalezen: HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec
Klíč nalezen: HKCU\Software\Ask.com
Klíč nalezen: HKCU\Software\AskToolbar
Klíč nalezen: HKCU\Software\ImInstaller
Klíč nalezen: HKCU\Software\Myfree Codec
Klíč nalezen: HKCU\Software\YahooPartnerToolbar
Klíč nalezen: HKCU\Software\AppDataLow\AskToolbarInfo
Klíč nalezen: HKCU\Software\AppDataLow\Software\AskToolbar
Klíč nalezen: HKLM\SOFTWARE\Myfree Codec
Klíč nalezen: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec
Klíč nalezen: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
Klíč nalezen: HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9
Klíč nalezen: HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\F928123A039649549966d4C29D35B1C9
Klíč nalezen: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9
Klíč nalezen: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F928123A039649549966d4C29D35B1C9
Klíč nalezen: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\akcniceny.cz
Klíč nalezen: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\slunecnice.cz
Klíč nalezen: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.akcniceny.cz
Klíč nalezen: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.slunecnice.cz
Klíč nalezen: HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
***** [ Internetové prohlížeče ] *****
Nebyly nalezeny žádné škodlivé položky prohlížeče Firefox báze.
Nebyly nalezeny žádné škodlivé položky prohlížeče Chromium báze.
*************************
C:\AdwCleaner\AdwCleaner[S0].txt - [6238 Bajtů] - [07/11/2016 22:12:49]
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [6312 Bajtů] ##########
Re: plíživé zpomalení PC
Omlouvám se, ten log byl před čištěním. Zde je poté:
# AdwCleaner v6.030 - Log soubor vytvořen 07/11/2016 na 22:19:11
# Aktualizováno dne 19/10/2016 z Malwarebytes
# Databáze : 2016-11-07.1 [Server]
# Operační systém : Windows 7 Home Premium Service Pack 1 (X86)
# Uživatelské jméno : Admin - ADMIN-PC
# Beží od : C:\Users\Admin\Desktop\AdwCleaner.exe
# Mod: Čištění
# Podpora : hxxps://www.malwarebytes.com/support
***** [ Služby ] *****
***** [ Adresáře ] *****
[-] Adresář smazán:C:\Users\Admin\AppData\Local\AskToolbar
[-] Adresář smazán:C:\Users\Admin\AppData\LocalLow\AskToolbar
[-] Adresář smazán:C:\Users\Admin\AppData\Roaming\GrabPro
[-] Adresář smazán:C:\ProgramData\Microsoft\Windows\Start Menu\Programs\myfree codec
[-] Adresář smazán:C:\Program Files\myfree codec
[-] Adresář smazán:C:\Windows\installer\{86d4b82a-abed-442a-be86-96357b70f4fe}
[-] Adresář smazán:C:\Windows\system32\config\systemprofile\AppData\LocalLow\AVG Secure Search
***** [ Soubory ] *****
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Zástupce ] *****
***** [ Plánovač úloh ] *****
***** [ Registry ] *****
[-] Klíč smazán:HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
[-] Klíč smazán:HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
[-] Klíč smazán:HKLM\SOFTWARE\Classes\VbGUI.cToolbar
[-] Klíč smazán:HKLM\SOFTWARE\Classes\VbGUI.cToolbarHost
[-] Klíč smazán:HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
[-] Klíč smazán:HKCU\Software\Classes\CLSID\{16C8C46E-C811-4977-BF0A-B5CC1FA78D95}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CLSID\{C55BBCD6-41AD-48AD-9953-3609C48EACC7}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CLSID\{00011268-E188-40DF-A514-835FCD78B1BF}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CLSID\{5C3B5DAA-0AFF-4808-90FB-0F2F2D760E36}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
[-] Klíč smazán:HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00011268-E188-40DF-A514-835FCD78B1BF}
[-] Klíč smazán:HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A86782D8-7B41-452F-A217-1854F72DBA54}
[-] Klíč smazán:HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C55BBCD6-41AD-48AD-9953-3609C48EACC7}
[-] Klíč smazán:HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
[-] Klíč smazán:HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{38122A36-83B2-46B8-B39A-EC72A4614A07}
[-] Klíč smazán:HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00011268-E188-40DF-A514-835FCD78B1BF}
[-] Klíč smazán:HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C55BBCD6-41AD-48AD-9953-3609C48EACC7}
[-] Klíč smazán:HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{00011268-E188-40DF-A514-835FCD78B1BF}
[-] Klíč smazán:HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{38122A36-83B2-46B8-B39A-EC72A4614A07}
[-] Hodnota smazána:HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{C55BBCD6-41AD-48AD-9953-3609C48EACC7}]
[-] Hodnota smazána:HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{C55BBCD6-41AD-48AD-9953-3609C48EACC7}]
[-] Klíč smazán:HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\Software\Ask.com
[-] Klíč smazán:HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\Software\AskToolbar
[-] Klíč smazán:HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\Software\ImInstaller
[-] Klíč smazán:HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\Software\Myfree Codec
[-] Klíč smazán:HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\Software\YahooPartnerToolbar
[-] Klíč smazán:HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\Software\AppDataLow\AskToolbarInfo
[-] Klíč smazán:HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\Software\AppDataLow\Software\AskToolbar
[-] Klíč smazán:HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec
[#] Klíč smazán po restartování:HKCU\Software\Ask.com
[#] Klíč smazán po restartování:HKCU\Software\AskToolbar
[#] Klíč smazán po restartování:HKCU\Software\ImInstaller
[#] Klíč smazán po restartování:HKCU\Software\Myfree Codec
[#] Klíč smazán po restartování:HKCU\Software\YahooPartnerToolbar
[#] Klíč smazán po restartování:HKCU\Software\AppDataLow\AskToolbarInfo
[#] Klíč smazán po restartování:HKCU\Software\AppDataLow\Software\AskToolbar
[-] Klíč smazán:HKLM\SOFTWARE\Myfree Codec
[#] Klíč smazán po restartování:HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec
[-] Klíč smazán:HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9
[#] Klíč smazán po restartování:HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\F928123A039649549966d4C29D35B1C9
[-] Klíč smazán:HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9
[#] Klíč smazán po restartování:HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F928123A039649549966d4C29D35B1C9
[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\DOMStorage\akcniceny.cz
[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\DOMStorage\slunecnice.cz
[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.akcniceny.cz
[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.slunecnice.cz
[-] Klíč smazán:HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
***** [ Prohlížeče ] *****
*************************
:: "Tracing" klíč smazán
:: Winsock nastavení vyčištěno
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [6256 Bajtů] - [07/11/2016 22:19:11]
C:\AdwCleaner\AdwCleaner[S0].txt - [6392 Bajtů] - [07/11/2016 22:12:49]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [6404 Bajtů] ##########
# AdwCleaner v6.030 - Log soubor vytvořen 07/11/2016 na 22:19:11
# Aktualizováno dne 19/10/2016 z Malwarebytes
# Databáze : 2016-11-07.1 [Server]
# Operační systém : Windows 7 Home Premium Service Pack 1 (X86)
# Uživatelské jméno : Admin - ADMIN-PC
# Beží od : C:\Users\Admin\Desktop\AdwCleaner.exe
# Mod: Čištění
# Podpora : hxxps://www.malwarebytes.com/support
***** [ Služby ] *****
***** [ Adresáře ] *****
[-] Adresář smazán:C:\Users\Admin\AppData\Local\AskToolbar
[-] Adresář smazán:C:\Users\Admin\AppData\LocalLow\AskToolbar
[-] Adresář smazán:C:\Users\Admin\AppData\Roaming\GrabPro
[-] Adresář smazán:C:\ProgramData\Microsoft\Windows\Start Menu\Programs\myfree codec
[-] Adresář smazán:C:\Program Files\myfree codec
[-] Adresář smazán:C:\Windows\installer\{86d4b82a-abed-442a-be86-96357b70f4fe}
[-] Adresář smazán:C:\Windows\system32\config\systemprofile\AppData\LocalLow\AVG Secure Search
***** [ Soubory ] *****
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Zástupce ] *****
***** [ Plánovač úloh ] *****
***** [ Registry ] *****
[-] Klíč smazán:HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
[-] Klíč smazán:HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
[-] Klíč smazán:HKLM\SOFTWARE\Classes\VbGUI.cToolbar
[-] Klíč smazán:HKLM\SOFTWARE\Classes\VbGUI.cToolbarHost
[-] Klíč smazán:HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
[-] Klíč smazán:HKCU\Software\Classes\CLSID\{16C8C46E-C811-4977-BF0A-B5CC1FA78D95}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CLSID\{C55BBCD6-41AD-48AD-9953-3609C48EACC7}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CLSID\{00011268-E188-40DF-A514-835FCD78B1BF}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\CLSID\{5C3B5DAA-0AFF-4808-90FB-0F2F2D760E36}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
[-] Klíč smazán:HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00011268-E188-40DF-A514-835FCD78B1BF}
[-] Klíč smazán:HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A86782D8-7B41-452F-A217-1854F72DBA54}
[-] Klíč smazán:HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{C55BBCD6-41AD-48AD-9953-3609C48EACC7}
[-] Klíč smazán:HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
[-] Klíč smazán:HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{38122A36-83B2-46B8-B39A-EC72A4614A07}
[-] Klíč smazán:HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00011268-E188-40DF-A514-835FCD78B1BF}
[-] Klíč smazán:HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{C55BBCD6-41AD-48AD-9953-3609C48EACC7}
[-] Klíč smazán:HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{00011268-E188-40DF-A514-835FCD78B1BF}
[-] Klíč smazán:HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{38122A36-83B2-46B8-B39A-EC72A4614A07}
[-] Hodnota smazána:HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{C55BBCD6-41AD-48AD-9953-3609C48EACC7}]
[-] Hodnota smazána:HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{C55BBCD6-41AD-48AD-9953-3609C48EACC7}]
[-] Klíč smazán:HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\Software\Ask.com
[-] Klíč smazán:HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\Software\AskToolbar
[-] Klíč smazán:HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\Software\ImInstaller
[-] Klíč smazán:HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\Software\Myfree Codec
[-] Klíč smazán:HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\Software\YahooPartnerToolbar
[-] Klíč smazán:HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\Software\AppDataLow\AskToolbarInfo
[-] Klíč smazán:HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\Software\AppDataLow\Software\AskToolbar
[-] Klíč smazán:HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec
[#] Klíč smazán po restartování:HKCU\Software\Ask.com
[#] Klíč smazán po restartování:HKCU\Software\AskToolbar
[#] Klíč smazán po restartování:HKCU\Software\ImInstaller
[#] Klíč smazán po restartování:HKCU\Software\Myfree Codec
[#] Klíč smazán po restartování:HKCU\Software\YahooPartnerToolbar
[#] Klíč smazán po restartování:HKCU\Software\AppDataLow\AskToolbarInfo
[#] Klíč smazán po restartování:HKCU\Software\AppDataLow\Software\AskToolbar
[-] Klíč smazán:HKLM\SOFTWARE\Myfree Codec
[#] Klíč smazán po restartování:HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec
[-] Klíč smazán:HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
[-] Klíč smazán:HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9
[#] Klíč smazán po restartování:HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\F928123A039649549966d4C29D35B1C9
[-] Klíč smazán:HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9
[#] Klíč smazán po restartování:HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F928123A039649549966d4C29D35B1C9
[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\DOMStorage\akcniceny.cz
[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\DOMStorage\slunecnice.cz
[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.akcniceny.cz
[-] Klíč smazán:HKCU\Software\Microsoft\Internet Explorer\DOMStorage\www.slunecnice.cz
[-] Klíč smazán:HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
***** [ Prohlížeče ] *****
*************************
:: "Tracing" klíč smazán
:: Winsock nastavení vyčištěno
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [6256 Bajtů] - [07/11/2016 22:19:11]
C:\AdwCleaner\AdwCleaner[S0].txt - [6392 Bajtů] - [07/11/2016 22:12:49]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [6404 Bajtů] ##########
Re: plíživé zpomalení PC
ADW jste stáhl v poslední verzi 
Nyní prosím:
Proveďte prosím sken FRST. http://forum.viry.cz/viewtopic.php?f=24&t=132509
Log z FRST i Addition vložte sem, do Vašeho topicu.
Při varování u stahování FRSTLauncheru, vyberte v pravém dolním rohu Ignorovat
Nyní prosím:
Proveďte prosím sken FRST. http://forum.viry.cz/viewtopic.php?f=24&t=132509
Log z FRST i Addition vložte sem, do Vašeho topicu.
Při varování u stahování FRSTLauncheru, vyberte v pravém dolním rohu Ignorovat
Re: plíživé zpomalení PC
Dobrý den,
uf, netušil jsem, jak se se mnou bude AVG a Firefox "rvát". Ale doufám, že jsem vše zdárně splnil a děkuji.
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 06-11-2016
Ran by Admin (administrator) on ADMIN-PC (08-11-2016 15:04:19)
Running from C:\Users\Admin\Desktop
Loaded Profiles: Admin (Available Profiles: Admin)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgfws.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgwdsvc.exe
(CobianSoft, Luis Cobian) C:\Program Files\Cobian Backup 11\cbVSCService11.exe
(Microsoft) C:\CGMSERVER\bin\ebooking-1\cgm.ebooking-1.exe
(Luis Cobian, CobianSoft) C:\Program Files\Cobian Backup 11\cbService.exe
(Garmin Ltd. or its subsidiaries) C:\Program Files\Garmin\Device Interaction Service\GarminService.exe
(Luis Cobian, CobianSoft) C:\Program Files\Cobian Backup 11\cbInterface.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgui.exe
(Garmin Ltd. or its subsidiaries) C:\Program Files\Garmin\Express Tray\ExpressTray.exe
(DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(AVG) C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesService32.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(HCS GmbH) C:\CGMSERVER\bin\medical-net\MedConnect.ServiceManager\HCS.MedConnect.ServiceManager.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(CGM) C:\CGMSERVER\bin\core\cgm.servercore.exe
(AVG) C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesApp32.exe
(Oracle Corporation) C:\CGMSERVER\jre\bin\java.exe
(PostgreSQL Global Development Group) C:\CGMSERVER\bin\pgsql\bin\postgres.exe
(PostgreSQL Global Development Group) C:\CGMSERVER\bin\pgsql\bin\postgres.exe
(PostgreSQL Global Development Group) C:\CGMSERVER\bin\pgsql\bin\postgres.exe
(PostgreSQL Global Development Group) C:\CGMSERVER\bin\pgsql\bin\postgres.exe
(PostgreSQL Global Development Group) C:\CGMSERVER\bin\pgsql\bin\postgres.exe
(PostgreSQL Global Development Group) C:\CGMSERVER\bin\pgsql\bin\postgres.exe
() C:\CGMSERVER\bin\brevir-1\cgm.brevir-1.exe
(CompuGroup Medical Česká republika s.r.o.) C:\CGMSERVER\bin\ecommunication-1\cgm.ecommunication-1.exe
(PostgreSQL Global Development Group) C:\CGMSERVER\bin\pgsql\bin\postgres.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Nero AG) C:\Program Files\Nero\Update\NASvc.exe
(Nero AG) C:\Program Files\Nero\Nero 10\Nero BackItUp\NBAgent.exe
(PostgreSQL Global Development Group) C:\CGMSERVER\bin\pgsql\bin\postgres.exe
(Microsoft Corporation) C:\Windows\System32\ntvdm.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(forum.viry.cz) C:\Users\Admin\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [WD Quick View] => C:\Program Files\Western Digital\WD Quick View\WDDMStatus.exe [5563760 2014-06-02] (Western Digital Technologies, Inc.)
HKLM\...\Run: [KiesTrayAgent] => C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [318248 2016-01-08] (Samsung Electronics Co., Ltd.)
HKLM\...\Run: [Cobian Backup 11 interface] => C:\Program Files\Cobian Backup 11\cbInterface.exe [4407808 2012-12-05] (Luis Cobian, CobianSoft)
HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\AVG2015\avgui.exe [3820440 2016-04-21] (AVG Technologies CZ, s.r.o.)
HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\...\Run: [KiesPreload] => C:\Program Files\Samsung\Kies\Kies.exe [1572648 2016-01-08] (Samsung)
HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\...\Run: [KiesPDLR.exe] => C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [1021736 2016-01-08] (Samsung)
HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\...\Run: [GarminExpressTrayApp] => C:\Program Files\Garmin\Express Tray\ExpressTray.exe [1407912 2016-10-25] (Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\...\Run: [Zoner Photo Studio Autoupdate] => C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXE [833240 2014-12-23] (ZONER software)
HKU\S-1-5-18\...\Run: [GarminExpressTrayApp] => C:\Program Files\Garmin\Express Tray\ExpressTray.exe [1407912 2016-10-25] (Garmin Ltd. or its subsidiaries)
AppInit_DLLs: d0 => No File
IFEO\filler602.exe: [Debugger] "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
IFEO\javacpl.exe: [Debugger] "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
IFEO\javaw.exe: [Debugger] "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
IFEO\javaws.exe: [Debugger] "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
IFEO\kiesagent.exe: [Debugger] "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
IFEO\nvstlink.exe: [Debugger] "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
IFEO\nvstview.exe: [Debugger] "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
IFEO\setup.exe: [Debugger] "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
IFEO\skype.exe: [Debugger] "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
IFEO\unins000.exe: [Debugger] "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
IFEO\uninst.exe: [Debugger] "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
IFEO\wddmstatus.exe: [Debugger] "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
IFEO\wdsmartware.exe: [Debugger] "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
IFEO\zps.exe: [Debugger] "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{AAB8EADF-2FEB-44F4-BB3B-F04B63C36168}: [DhcpNameServer] 10.0.0.138
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/
HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie
SearchScopes: HKU\S-1-5-21-3551886561-2034735683-3825333376-1001 -> DefaultScope {80B005AD-673F-40D8-9611-CADFE4D9B452} URL = hxxp://www.google.cz/search?q={searchTerms}&rl ... {startPage}
SearchScopes: HKU\S-1-5-21-3551886561-2034735683-3825333376-1001 -> {0D2B5428-BE2B-4A8F-9BF1-E638CF0D9F97} URL = hxxp://cs.wikipedia.org/w/index.php?title=Speci%C3%A1ln%C3%AD:Hled%C3%A1n%C3%AD&search={searchTerms}
SearchScopes: HKU\S-1-5-21-3551886561-2034735683-3825333376-1001 -> {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL =
SearchScopes: HKU\S-1-5-21-3551886561-2034735683-3825333376-1001 -> {80B005AD-673F-40D8-9611-CADFE4D9B452} URL = hxxp://www.google.cz/search?q={searchTerms}&rl ... {startPage}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_77\bin\ssv.dll [2016-03-28] (Oracle Corporation)
BHO: CHelper Class -> {99A7C4DD-B2E6-4CA0-BB6E-737A61364155} -> C:\Program Files\Eurotran 2003\e2003i.dll [2013-06-23] ()
BHO: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-05-14] (Skype Technologies S.A.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-12-21] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_77\bin\jp2ssv.dll [2016-03-28] (Oracle Corporation)
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} hxxp://download.eset.com/special/eos/OnlineScanner.cab
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - No File
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - No File
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-05-14] (Skype Technologies S.A.)
FireFox:
========
FF ProfilePath: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\ofv7r74m.default [2016-11-08]
FF Homepage: Mozilla\Firefox\Profiles\ofv7r74m.default -> hxxp://www.seznam.cz/
FF Extension: (FireGestures) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\ofv7r74m.default\Extensions\firegestures@xuldev.org.xpi [2016-08-17]
FF Extension: (Google Translator for Firefox) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\ofv7r74m.default\Extensions\translator@zoli.bod.xpi [2016-04-27]
FF Extension: (gtranslate) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\ofv7r74m.default\Extensions\{aff87fa2-a58e-4edd-b852-0a20203c1e17}.xpi [2016-05-28]
FF Extension: (Adblock Plus) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\ofv7r74m.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-10-28]
FF Extension: (Seznam lištička) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\ofv7r74m.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2016-09-02]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_23_0_0_205.dll [2016-10-26] ()
FF Plugin: @garmin.com/GpsControl -> C:\Program Files\Garmin GPS Plugin\npGarmin.dll [2012-05-30] (GARMIN Corp.)
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2014-01-06] (Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=11.77.2 -> C:\Program Files\Java\jre1.8.0_77\bin\dtplugin\npDeployJava1.dll [2016-03-28] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.77.2 -> C:\Program Files\Java\jre1.8.0_77\bin\plugin2\npjp2.dll [2016-03-28] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin: @Nero.com/KM -> C:\PROGRA~1\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL [2015-10-23] (Nero AG)
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2014-02-08] (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2014-02-08] (NVIDIA Corporation)
FF Plugin: @software602.cz/602XML Filler -> C:\Program Files\Software602\602XML\Filler\npfiller.dll [2012-08-06] (Software602 a.s.)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR StartupUrls: Default -> "hxxps://www.google.cz/"
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\52.0.2743.116\PepperFlash\pepflashplayer.dll => No File
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\52.0.2743.116\ppGoogleNaClPluginChrome.dll => No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\52.0.2743.116\pdf.dll => No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll => No File
CHR Plugin: (Java Deployment Toolkit 6.0.290.11) - C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll => No File
CHR Plugin: (Java(TM) Platform SE 6 U29) - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll => No File
CHR Plugin: (Nero Kwik Media Helper) - C:\PROGRA~1\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (AVG SiteSafety plugin) - C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\14.2.0\\npsitesafety.dll => No File
CHR Plugin: (Garmin Communicator Plug-In) - C:\Program Files\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
CHR Plugin: (Picasa) - C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll => No File
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll => No File
CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default [2016-10-04]
CHR Extension: (Prezentace Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-09-02]
CHR Extension: (Dokumenty Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-07-12]
CHR Extension: (Disk Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-09-02]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2016-09-02]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2016-09-02]
CHR Extension: (YouTube) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-29]
CHR Extension: (Vyhledávání Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-07-12]
CHR Extension: (Tabulky Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-09-02]
CHR Extension: (Dokumenty Google offline) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-09-02]
CHR Extension: (Skype) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2016-09-02]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-09-02]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2016-09-02]
CHR Extension: (Gmail) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-07-12]
CHR Extension: (Chrome Media Router) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-09-02]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-05-14]
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S4 602XML Updater; C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s.)
R2 avgfws; C:\Program Files\AVG\AVG2015\avgfws.exe [1563648 2016-04-21] (AVG Technologies CZ, s.r.o.)
S2 AVGIDSAgent; C:\Program Files\AVG\AVG2015\avgidsagent.exe [3647384 2016-04-21] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2015\avgwdsvc.exe [336152 2016-04-21] (AVG Technologies CZ, s.r.o.)
R2 cbVSCService11; C:\Program Files\Cobian Backup 11\cbVSCService11.exe [67584 2012-12-05] (CobianSoft, Luis Cobian) [File not signed]
R2 cgm.brevir-1; C:\CGMSERVER\bin\brevir-1\cgm.brevir-1.exe [260608 2016-10-24] () [File not signed]
R2 cgm.ebooking-1; C:\CGMSERVER\bin\ebooking-1\cgm.ebooking-1.exe [44944 2014-10-20] (Microsoft) [File not signed]
R2 cgm.ecommunication-1; C:\CGMSERVER\bin\ecommunication-1\cgm.ecommunication-1.exe [72800 2016-10-25] (CompuGroup Medical Česká republika s.r.o.)
R2 cgm.servercore; C:\CGMSERVER\bin\core\cgm.servercore.exe [54536 2016-04-20] (CGM)
R2 CobianBackup11; C:\Program Files\Cobian Backup 11\cbService.exe [1131008 2012-12-05] (Luis Cobian, CobianSoft) [File not signed]
R2 Garmin Device Interaction Service; C:\Program Files\Garmin\Device Interaction Service\GarminService.exe [985616 2016-10-25] (Garmin Ltd. or its subsidiaries)
S3 HCS.MedConnect.Service; C:\CGMSERVER\bin\medical-net\MedConnect\HCS.MedConnect.Service.exe [48528 2015-02-11] (HCS GmbH) [File not signed]
R2 HCS.MEDCONNECT.SERVICEMANAGER; C:\CGMSERVER\bin\medical-net\MedConnect.ServiceManager\HCS.MedConnect.ServiceManager.exe [87952 2015-02-11] (HCS GmbH) [File not signed]
R2 NAUpdate; C:\Program Files\Nero\Update\NASvc.exe [785904 2015-07-07] (Nero AG)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-01-08] (DEVGURU Co., LTD.)
R2 TuneUp.UtilitiesSvc; C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesService32.exe [1740088 2013-09-23] (AVG)
S4 WDBackup; C:\Program Files\Western Digital\WD SmartWare\WDBackupEngine.exe [1042808 2014-06-02] (Western Digital Technologies, Inc.)
S4 WDDriveService; C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe [296312 2014-06-02] (Western Digital Technologies, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 Avgdiskx; C:\Windows\System32\DRIVERS\avgdiskx.sys [132576 2015-03-11] (AVG Technologies CZ, s.r.o.)
R1 Avgfwfd; C:\Windows\System32\DRIVERS\avgfwd6x.sys [68032 2015-07-09] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [252336 2015-12-16] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [223152 2016-01-13] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [31664 2015-11-25] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [234416 2015-12-16] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [290272 2015-05-07] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [193456 2016-01-22] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [35808 2015-03-20] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [230832 2015-08-04] (AVG Technologies CZ, s.r.o.)
S3 Dot4Scan; C:\Windows\System32\DRIVERS\Dot4Scan.sys [10752 2009-07-14] (Microsoft Corporation)
S3 ivusb; C:\Windows\System32\DRIVERS\ivusb.sys [25112 2010-03-10] (Initio Corporation)
R3 TuneUpUtilitiesDrv; C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver32.sys [12320 2013-09-18] (TuneUp Software)
S3 appliandMP; system32\DRIVERS\appliand.sys [X]
U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation)
S3 dgderdrv; System32\drivers\dgderdrv.sys [X]
S3 eapihdrv; \??\C:\Users\Admin\AppData\Local\Temp\ehdrv.sys [X]
S4 nvvad_WaveExtensible; system32\drivers\nvvad32v.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-11-08 15:04 - 2016-11-08 15:04 - 00022595 _____ C:\Users\Admin\Desktop\FRST.txt
2016-11-08 15:02 - 2016-11-08 15:04 - 00000000 ____D C:\FRST
2016-11-08 15:00 - 2016-11-08 15:02 - 00112640 _____ (forum.viry.cz) C:\Users\Admin\Desktop\FRSTLauncher.exe
2016-11-08 14:59 - 2016-11-08 14:59 - 01759744 _____ (Farbar) C:\Users\Admin\Desktop\FRST.exe
2016-11-08 09:41 - 2016-11-08 09:41 - 00000000 ____D C:\Users\Admin\AppData\Local\{43E38692-0CEF-4370-9E09-5A630B5D03B3}
2016-11-07 13:45 - 2016-11-07 13:45 - 00000000 ____D C:\Users\Admin\AppData\Local\{C0C10348-20BA-4783-915F-4A9787467347}
2016-11-07 13:27 - 2016-11-08 14:43 - 00000000 ____D C:\rsit
2016-11-06 17:43 - 2016-11-06 17:43 - 00000000 ____D C:\Users\Admin\AppData\Local\{BC74D47E-5FB7-497A-A4E5-F0575FD5D656}
2016-11-04 10:16 - 2016-11-04 10:16 - 00000000 ____D C:\Users\Admin\AppData\Local\{FD5C2C13-A59D-485A-A402-1B6B34FAB435}
2016-11-03 14:44 - 2016-11-03 14:44 - 00000000 ____D C:\Users\Admin\AppData\Local\{F4B51C1F-575B-4280-80DB-9B10BC4D0019}
2016-11-02 17:19 - 2016-11-02 17:19 - 00000000 ____D C:\Users\Admin\AppData\Local\{E07966B3-B8C0-45D8-BB81-5D3CD301E9F4}
2016-10-31 14:12 - 2016-10-31 14:12 - 00000000 ____D C:\Users\Admin\AppData\Local\{66241F8C-A838-41F0-B4EC-2C5A6E897C10}
2016-10-30 12:50 - 2016-10-30 12:50 - 00000000 ____D C:\Users\Admin\AppData\Local\{38EE0BC0-7DAD-4C62-808D-D8D3C58A3518}
2016-10-28 16:24 - 2016-10-28 16:24 - 00000000 ____D C:\Users\Admin\AppData\Local\{5A134410-0243-46E4-A280-6A65EF930B43}
2016-10-27 15:10 - 2016-10-27 15:10 - 00000000 ____D C:\Users\Admin\AppData\Local\{DCF365E6-8570-4CDB-84E7-1D430C116888}
2016-10-26 19:12 - 2016-10-26 19:12 - 00000000 ____D C:\Users\Admin\AppData\Local\{D217875B-F875-4CD5-B843-E52451E764DF}
2016-10-25 12:28 - 2016-10-25 12:28 - 00000000 ____D C:\Users\Admin\AppData\Local\{8E41F6FF-C7FC-4A79-A8C8-C0ED9F50DA82}
2016-10-24 13:24 - 2016-10-24 13:24 - 00000000 ____D C:\Users\Admin\AppData\Local\{41D482D6-1A2C-427E-80F8-0E0D8DFC5E71}
2016-10-23 15:10 - 2016-10-23 15:10 - 00000000 ____D C:\Users\Admin\AppData\Local\{9B9FA7B6-9C4B-45F5-96F7-B1BA2B7446E0}
2016-10-22 14:10 - 2016-10-22 14:10 - 00000000 ____D C:\Users\Admin\AppData\Local\{D253738C-28D5-463F-9B0E-DAF198A1BBEC}
2016-10-21 15:06 - 2016-10-21 15:06 - 00000000 ____D C:\Program Files\Mozilla Firefox
2016-10-21 09:33 - 2016-10-21 09:33 - 00000000 ____D C:\Users\Admin\AppData\Local\{771F1101-244A-4469-A17B-0C4139C51794}
2016-10-20 09:13 - 2016-10-20 09:13 - 00000000 ____D C:\Users\Admin\AppData\Local\{CE5A20BA-1032-42CD-BB42-1364346AC531}
2016-10-19 10:48 - 2016-10-19 10:48 - 00000000 ____D C:\Users\Admin\AppData\Local\{41B5C005-431D-40AC-9B4A-CA51825171EF}
2016-10-19 10:41 - 2016-07-22 15:51 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2016-10-18 15:21 - 2016-10-18 15:21 - 00000000 ____D C:\Users\Admin\AppData\Local\{CA7BD1D0-9E41-4314-B3D7-E760073D3945}
2016-10-17 10:56 - 2016-10-17 10:56 - 00000000 ____D C:\Users\Admin\AppData\Local\{AE37B276-7D0E-4E23-B9DB-A1591944147A}
2016-10-16 17:51 - 2016-10-16 17:51 - 00000000 ____D C:\Users\Admin\AppData\Local\{6BB1564E-2348-47EA-98D1-D0636DED7CC9}
2016-10-14 10:06 - 2016-10-14 10:06 - 00000000 ____D C:\Users\Admin\AppData\Local\{132D3AB6-3D2E-4FCD-B52A-6F110EB04F26}
2016-10-13 16:20 - 2016-09-30 20:28 - 00346312 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-10-13 16:20 - 2016-09-30 16:20 - 04000488 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2016-10-13 16:20 - 2016-09-30 16:20 - 03944680 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-10-13 16:20 - 2016-09-30 06:54 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-10-13 16:20 - 2016-09-30 06:54 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-10-13 16:20 - 2016-09-30 06:47 - 20306944 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-10-13 16:20 - 2016-09-30 06:42 - 00498688 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-10-13 16:20 - 2016-09-30 06:42 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-10-13 16:20 - 2016-09-30 06:42 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-10-13 16:20 - 2016-09-30 06:42 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-10-13 16:20 - 2016-09-30 06:41 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-10-13 16:20 - 2016-09-30 06:38 - 02286592 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-10-13 16:20 - 2016-09-30 06:36 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-10-13 16:20 - 2016-09-30 06:35 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-10-13 16:20 - 2016-09-30 06:33 - 00476160 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-10-13 16:20 - 2016-09-30 06:32 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-10-13 16:20 - 2016-09-30 06:32 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-10-13 16:20 - 2016-09-30 06:32 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-10-13 16:20 - 2016-09-30 06:32 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-10-13 16:20 - 2016-09-30 06:27 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-10-13 16:20 - 2016-09-30 06:24 - 00416256 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-10-13 16:20 - 2016-09-30 06:19 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2016-10-13 16:20 - 2016-09-30 06:19 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-10-13 16:20 - 2016-09-30 06:17 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-10-13 16:20 - 2016-09-30 06:15 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-10-13 16:20 - 2016-09-30 06:14 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-10-13 16:20 - 2016-09-30 06:13 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-10-13 16:20 - 2016-09-30 06:12 - 04608512 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-10-13 16:20 - 2016-09-30 06:07 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-10-13 16:20 - 2016-09-30 06:05 - 02055680 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-10-13 16:20 - 2016-09-30 06:05 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-10-13 16:20 - 2016-09-30 06:05 - 00693248 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-10-13 16:20 - 2016-09-30 06:05 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-10-13 16:20 - 2016-09-30 06:03 - 13653504 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-10-13 16:20 - 2016-09-30 05:46 - 02444288 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-10-13 16:20 - 2016-09-30 05:43 - 01312768 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-10-13 16:20 - 2016-09-30 05:42 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-10-13 16:20 - 2016-09-15 16:15 - 00741888 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2016-10-13 16:20 - 2016-09-15 16:15 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\INETRES.dll
2016-10-13 16:20 - 2016-09-12 21:54 - 00067816 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-10-13 16:20 - 2016-09-12 21:53 - 00137960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-10-13 16:20 - 2016-09-12 21:53 - 00067304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-10-13 16:20 - 2016-09-12 21:49 - 01063936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-10-13 16:20 - 2016-09-12 21:49 - 01017856 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-10-13 16:20 - 2016-09-12 21:49 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-10-13 16:20 - 2016-09-12 21:49 - 00655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-10-13 16:20 - 2016-09-12 21:49 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-10-13 16:20 - 2016-09-12 21:49 - 00260608 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-10-13 16:20 - 2016-09-12 21:49 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-10-13 16:20 - 2016-09-12 21:49 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-10-13 16:20 - 2016-09-12 21:49 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-10-13 16:20 - 2016-09-12 21:49 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-10-13 16:20 - 2016-09-12 21:49 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2016-10-13 16:20 - 2016-09-12 21:49 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-10-13 16:20 - 2016-09-12 21:49 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\adsmsext.dll
2016-10-13 16:20 - 2016-09-12 21:49 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-10-13 16:20 - 2016-09-12 21:49 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-10-13 16:20 - 2016-09-12 21:49 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-10-13 16:20 - 2016-09-12 21:49 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-10-13 16:20 - 2016-09-12 21:29 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-10-13 16:20 - 2016-09-12 21:28 - 02399232 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-10-13 16:20 - 2016-09-12 21:26 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-10-13 16:20 - 2016-09-12 21:26 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-10-13 16:20 - 2016-09-12 21:26 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-10-13 16:20 - 2016-09-12 21:25 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-10-13 16:20 - 2016-09-12 21:25 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-10-13 16:20 - 2016-09-12 21:25 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-10-13 16:20 - 2016-09-12 20:08 - 01251328 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2016-10-13 16:20 - 2016-09-12 20:08 - 00909824 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2016-10-13 16:20 - 2016-09-10 16:53 - 02291712 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2016-10-13 16:20 - 2016-09-09 19:01 - 01310528 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-10-13 16:20 - 2016-09-09 19:00 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-10-13 16:20 - 2016-09-09 19:00 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-10-13 16:20 - 2016-09-09 18:59 - 00644096 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-10-13 16:20 - 2016-09-09 18:59 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2016-10-13 16:20 - 2016-09-09 18:59 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2016-10-13 16:20 - 2016-09-09 18:59 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-10-13 16:20 - 2016-09-09 18:59 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-10-13 16:20 - 2016-09-09 18:42 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2016-10-13 16:20 - 2016-09-09 18:42 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2016-10-13 16:20 - 2016-09-09 18:42 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2016-10-13 16:20 - 2016-09-09 18:42 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2016-10-13 16:20 - 2016-09-09 18:39 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-10-13 16:20 - 2016-09-09 18:37 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-10-13 16:20 - 2016-09-09 16:53 - 01406976 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-10-13 16:20 - 2016-09-09 16:53 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-10-13 16:20 - 2016-09-09 16:53 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-10-13 16:20 - 2016-09-09 16:53 - 00268800 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-10-13 16:20 - 2016-09-09 16:53 - 00213504 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2016-10-13 16:20 - 2016-09-09 16:53 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-10-13 16:20 - 2016-09-09 16:53 - 00107008 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-10-13 16:20 - 2016-09-08 21:34 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2016-10-13 16:20 - 2016-09-08 21:34 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2016-10-13 16:20 - 2016-09-08 15:49 - 00117248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2016-10-13 16:20 - 2016-09-08 15:49 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2016-10-13 16:20 - 2016-08-29 16:12 - 12880384 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-10-13 16:20 - 2016-08-29 16:12 - 01806848 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-10-13 16:20 - 2016-08-29 16:12 - 01499648 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2016-10-13 16:20 - 2016-08-29 15:55 - 02972672 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2016-10-13 16:20 - 2016-08-16 19:47 - 00419640 _____ C:\Windows\system32\locale.nls
2016-10-13 16:20 - 2016-08-12 17:47 - 12574208 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2016-10-13 16:20 - 2016-08-12 17:47 - 11410432 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-10-13 16:20 - 2016-08-12 17:31 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2016-10-13 16:20 - 2016-08-12 17:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2016-10-13 16:20 - 2016-08-12 17:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2016-10-13 16:20 - 2016-08-12 17:21 - 00437248 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2016-10-13 16:20 - 2016-08-06 16:15 - 01178112 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2016-10-13 16:20 - 2016-08-06 16:15 - 00249344 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2016-10-13 16:20 - 2016-08-06 16:15 - 00214016 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2016-10-13 16:20 - 2016-08-06 16:15 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2016-10-13 16:20 - 2016-08-06 16:15 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\WsmRes.dll
2016-10-13 16:20 - 2016-08-06 15:53 - 00199168 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2016-10-13 16:20 - 2016-08-06 15:53 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wsmprovhost.exe
2016-10-13 16:20 - 2016-08-06 15:53 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\wsmplpxy.dll
2016-10-13 16:20 - 2016-06-14 16:25 - 00078568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2016-10-13 16:20 - 2016-06-14 16:21 - 03209216 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 01329664 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 01176064 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 01005056 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00988160 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00744960 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00617984 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00519680 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00474624 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00442368 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00406016 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00374784 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00354816 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00265216 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00195072 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00179200 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00157184 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00103424 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2016-10-13 16:20 - 2016-06-14 16:17 - 00593920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2016-10-13 16:20 - 2016-06-14 16:05 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2016-10-13 16:20 - 2016-06-14 16:05 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2016-10-13 16:20 - 2016-06-14 16:05 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2016-10-13 16:20 - 2016-06-14 16:00 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2016-10-13 16:20 - 2016-06-14 15:55 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe
2016-10-13 16:20 - 2016-06-14 15:55 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2016-10-13 16:20 - 2016-06-14 15:54 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2016-10-13 16:18 - 2016-08-16 21:27 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2016-10-13 16:18 - 2016-08-16 21:27 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2016-10-13 16:18 - 2016-08-16 21:26 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2016-10-13 16:18 - 2016-08-16 21:26 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2016-10-13 16:18 - 2016-08-16 21:26 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2016-10-13 16:18 - 2016-08-16 21:26 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2016-10-13 16:18 - 2016-08-16 21:26 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2016-10-13 15:40 - 2016-10-13 15:40 - 00000000 ____D C:\Users\Admin\AppData\Local\{0C7FAC83-E655-4BC9-9A64-48803905B6DD}
2016-10-12 14:28 - 2016-10-12 14:28 - 00000000 ____D C:\Users\Admin\AppData\Local\{A98DBA2E-F079-4C1C-9040-6E8D59E0F3B8}
2016-10-11 13:04 - 2016-10-11 13:04 - 00000000 ____D C:\Users\Admin\AppData\Local\{B0D946BB-0336-4D28-ACA9-A4DBEB21E1BE}
2016-10-10 14:05 - 2016-10-10 14:05 - 00000000 ____D C:\Users\Admin\AppData\Local\{C3A16C21-3188-4E59-8DD9-C362AECBF2D8}
2016-10-10 08:50 - 2016-10-10 08:50 - 00000000 ____D C:\Users\Admin\AppData\Local\{D3E86A58-4E4B-44A9-BC50-7BC379410771}
2016-10-09 14:20 - 2016-10-09 14:20 - 00000000 ____D C:\Users\Admin\AppData\Local\{6B2F668D-6EBE-4EE9-810E-B7FEE8828839}
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-11-08 15:05 - 2012-08-19 10:19 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-11-08 14:39 - 2014-09-23 13:14 - 00000000 ____D C:\Program Files\Dialog MIS
2016-11-08 14:39 - 2013-08-15 14:40 - 00000000 ____D C:\ProgramData\MFAData
2016-11-08 14:36 - 2011-02-16 16:31 - 00000000 ____D C:\Users\Admin\AppData\LocalLow\Temp
2016-11-08 14:31 - 2016-02-08 15:40 - 00000000 ____D C:\ALFIS16J
2016-11-08 14:23 - 2013-07-16 07:27 - 00000940 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-11-08 13:59 - 2009-07-14 05:34 - 00023568 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-11-08 13:59 - 2009-07-14 05:34 - 00023568 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-11-08 13:51 - 2013-07-16 07:27 - 00000936 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-11-08 13:51 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-11-08 12:17 - 2010-11-18 17:03 - 00000000 ____D C:\Users\Admin\Documents\Soubory aplikace Outlook
2016-11-07 22:11 - 2012-09-29 09:59 - 00000000 ____D C:\temp
2016-11-07 13:37 - 2015-04-15 15:27 - 00004606 _____ C:\NBDBList.ini
2016-11-07 13:29 - 2014-03-04 18:18 - 00000000 ____D C:\Program Files\trend micro
2016-11-07 13:20 - 2009-11-24 10:26 - 01593150 _____ C:\Windows\system32\PerfStringBackup.INI
2016-11-07 13:20 - 2009-07-14 09:44 - 00672136 _____ C:\Windows\system32\perfh005.dat
2016-11-07 13:20 - 2009-07-14 09:44 - 00142732 _____ C:\Windows\system32\perfc005.dat
2016-11-07 13:20 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\inf
2016-11-07 13:18 - 2012-04-14 09:15 - 00000000 ____D C:\Users\Admin\AppData\Local\CrashDumps
2016-11-06 16:54 - 2010-11-16 19:20 - 00000000 ____D C:\BATCH
2016-11-06 16:24 - 2010-11-19 14:03 - 00000000 ____D C:\VYPAL
2016-11-06 16:13 - 2013-01-29 18:39 - 00000000 ____D C:\Users\Admin\AppData\Roaming\vlc
2016-11-06 16:12 - 2015-11-08 17:03 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-11-05 10:20 - 2013-02-18 17:54 - 00000000 ____D C:\ProgramData\Package Cache
2016-11-05 10:20 - 2012-08-23 14:46 - 00000000 ____D C:\Program Files\Garmin
2016-11-05 10:19 - 2015-08-21 13:15 - 00001860 _____ C:\Users\Public\Desktop\Garmin Express.lnk
2016-11-05 10:19 - 2012-08-23 14:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin
2016-11-05 10:18 - 2010-11-16 18:46 - 00000000 ____D C:\Program Files\IDOS
2016-10-31 18:35 - 2011-02-04 21:17 - 00000000 ____D C:\MP3
2016-10-26 19:15 - 2011-02-08 18:20 - 00000000 ____D C:\S W
2016-10-26 15:51 - 2013-12-23 17:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CompuGroup Medical
2016-10-26 15:49 - 2013-07-29 12:58 - 00000000 ____D C:\CGMSERVER
2016-10-26 10:05 - 2012-04-09 09:18 - 00796352 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2016-10-26 10:05 - 2011-06-01 16:48 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2016-10-26 10:05 - 2010-11-16 15:01 - 00000000 ____D C:\Windows\system32\Macromed
2016-10-25 12:24 - 2013-02-26 20:11 - 00002141 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-10-25 12:24 - 2013-02-26 20:11 - 00002129 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-10-24 13:53 - 2010-11-17 10:01 - 00000000 ____D C:\FOTOGRAFIE
2016-10-24 08:21 - 2010-11-22 14:22 - 00000000 ____D C:\Users\Admin\AppData\Local\ElevatedDiagnostics
2016-10-21 18:54 - 2014-04-15 13:58 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2016-10-21 15:05 - 2015-12-24 15:21 - 00000000 ____D C:\Users\Admin\AppData\Roaming\YouTube Downloader
2016-10-14 08:30 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\rescache
2016-10-14 06:43 - 2009-07-14 05:46 - 00001515 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-10-13 18:34 - 2010-11-19 17:48 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-10-13 18:34 - 2009-07-14 05:33 - 00411768 _____ C:\Windows\system32\FNTCACHE.DAT
2016-10-13 16:43 - 2014-12-10 17:36 - 00000000 ____D C:\Windows\system32\appraiser
2016-10-13 16:43 - 2014-04-23 15:58 - 00000000 ___SD C:\Windows\system32\CompatTel
2016-10-13 16:43 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system32\Dism
2016-10-13 16:30 - 2013-07-11 13:48 - 00000000 ____D C:\Windows\system32\MRT
2016-10-13 16:26 - 2010-11-17 14:58 - 00000000 ____D C:\Program Files\rajce
2016-10-13 16:22 - 2010-11-19 17:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-10-13 16:22 - 2009-11-24 13:38 - 141042968 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
==================== Files in the root of some directories =======
2015-01-24 10:13 - 2015-01-24 10:23 - 2171392 _____ () C:\Users\Admin\AppData\Roaming\bfldb.dll
2015-01-24 10:13 - 2015-01-24 10:23 - 2248704 _____ () C:\Users\Admin\AppData\Roaming\bfldongle.dll
2015-01-24 10:13 - 2015-01-24 10:23 - 2265088 _____ () C:\Users\Admin\AppData\Roaming\bfluart.dll
2015-01-24 10:13 - 2015-01-24 10:23 - 2416640 _____ () C:\Users\Admin\AppData\Roaming\bflusb.dll
2015-01-24 10:13 - 2015-01-24 10:23 - 0004366 _____ () C:\Users\Admin\AppData\Roaming\C
2014-01-03 17:22 - 2014-01-03 17:22 - 0087608 _____ () C:\Users\Admin\AppData\Roaming\inst.exe
2009-11-25 10:37 - 2014-01-03 17:22 - 0007887 _____ () C:\Users\Admin\AppData\Roaming\pcouffin.cat
2009-11-25 10:37 - 2014-01-03 17:22 - 0001144 _____ () C:\Users\Admin\AppData\Roaming\pcouffin.inf
2009-11-25 10:37 - 2014-01-03 17:22 - 0000055 _____ () C:\Users\Admin\AppData\Roaming\pcouffin.log
2009-11-25 10:37 - 2014-01-03 17:22 - 0047360 _____ (VSO Software) C:\Users\Admin\AppData\Roaming\pcouffin.sys
2010-11-16 22:37 - 2010-11-16 22:37 - 0000022 ___SH () C:\Users\Admin\AppData\Roaming\Sys6925.Config Collection.sys
2010-11-23 14:44 - 2012-06-04 13:07 - 0005120 _____ () C:\Users\Admin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-08-31 21:26 - 2012-08-31 21:26 - 0027520 _____ () C:\Users\Admin\AppData\Local\dt.dat
2010-11-22 14:20 - 2012-10-22 15:59 - 0007608 _____ () C:\Users\Admin\AppData\Local\resmon.resmoncfg
2013-06-21 15:26 - 2013-06-21 16:24 - 0000000 _____ () C:\ProgramData\g252qs.txt
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
==================== Alternate Data Streams (whitelisted) ==================
AlternateDataStreams: C:\ProgramData\TEMP:0B4227B4 [124]
==================== Security Center ==================
AV: AVG Internet Security 2015 (Disabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG Internet Security 2015 (Disabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE}
FW: AVG Internet Security 2015 (Enabled) {757AB44A-78C2-7D1A-E37F-CA42A037B368}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Admin\Desktop" je 4 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\\Program Files\\IEPro\\MiniDM.exe"="C:\\Program Files\\IEPro\\MiniDM.exe:*:Enabled:MiniDM"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
uf, netušil jsem, jak se se mnou bude AVG a Firefox "rvát". Ale doufám, že jsem vše zdárně splnil a děkuji.
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 06-11-2016
Ran by Admin (administrator) on ADMIN-PC (08-11-2016 15:04:19)
Running from C:\Users\Admin\Desktop
Loaded Profiles: Admin (Available Profiles: Admin)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgfws.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgwdsvc.exe
(CobianSoft, Luis Cobian) C:\Program Files\Cobian Backup 11\cbVSCService11.exe
(Microsoft) C:\CGMSERVER\bin\ebooking-1\cgm.ebooking-1.exe
(Luis Cobian, CobianSoft) C:\Program Files\Cobian Backup 11\cbService.exe
(Garmin Ltd. or its subsidiaries) C:\Program Files\Garmin\Device Interaction Service\GarminService.exe
(Luis Cobian, CobianSoft) C:\Program Files\Cobian Backup 11\cbInterface.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgui.exe
(Garmin Ltd. or its subsidiaries) C:\Program Files\Garmin\Express Tray\ExpressTray.exe
(DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(AVG) C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesService32.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(HCS GmbH) C:\CGMSERVER\bin\medical-net\MedConnect.ServiceManager\HCS.MedConnect.ServiceManager.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(CGM) C:\CGMSERVER\bin\core\cgm.servercore.exe
(AVG) C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesApp32.exe
(Oracle Corporation) C:\CGMSERVER\jre\bin\java.exe
(PostgreSQL Global Development Group) C:\CGMSERVER\bin\pgsql\bin\postgres.exe
(PostgreSQL Global Development Group) C:\CGMSERVER\bin\pgsql\bin\postgres.exe
(PostgreSQL Global Development Group) C:\CGMSERVER\bin\pgsql\bin\postgres.exe
(PostgreSQL Global Development Group) C:\CGMSERVER\bin\pgsql\bin\postgres.exe
(PostgreSQL Global Development Group) C:\CGMSERVER\bin\pgsql\bin\postgres.exe
(PostgreSQL Global Development Group) C:\CGMSERVER\bin\pgsql\bin\postgres.exe
() C:\CGMSERVER\bin\brevir-1\cgm.brevir-1.exe
(CompuGroup Medical Česká republika s.r.o.) C:\CGMSERVER\bin\ecommunication-1\cgm.ecommunication-1.exe
(PostgreSQL Global Development Group) C:\CGMSERVER\bin\pgsql\bin\postgres.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Nero AG) C:\Program Files\Nero\Update\NASvc.exe
(Nero AG) C:\Program Files\Nero\Nero 10\Nero BackItUp\NBAgent.exe
(PostgreSQL Global Development Group) C:\CGMSERVER\bin\pgsql\bin\postgres.exe
(Microsoft Corporation) C:\Windows\System32\ntvdm.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(forum.viry.cz) C:\Users\Admin\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [WD Quick View] => C:\Program Files\Western Digital\WD Quick View\WDDMStatus.exe [5563760 2014-06-02] (Western Digital Technologies, Inc.)
HKLM\...\Run: [KiesTrayAgent] => C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [318248 2016-01-08] (Samsung Electronics Co., Ltd.)
HKLM\...\Run: [Cobian Backup 11 interface] => C:\Program Files\Cobian Backup 11\cbInterface.exe [4407808 2012-12-05] (Luis Cobian, CobianSoft)
HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\AVG2015\avgui.exe [3820440 2016-04-21] (AVG Technologies CZ, s.r.o.)
HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\...\Run: [KiesPreload] => C:\Program Files\Samsung\Kies\Kies.exe [1572648 2016-01-08] (Samsung)
HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\...\Run: [KiesPDLR.exe] => C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [1021736 2016-01-08] (Samsung)
HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\...\Run: [GarminExpressTrayApp] => C:\Program Files\Garmin\Express Tray\ExpressTray.exe [1407912 2016-10-25] (Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\...\Run: [Zoner Photo Studio Autoupdate] => C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXE [833240 2014-12-23] (ZONER software)
HKU\S-1-5-18\...\Run: [GarminExpressTrayApp] => C:\Program Files\Garmin\Express Tray\ExpressTray.exe [1407912 2016-10-25] (Garmin Ltd. or its subsidiaries)
AppInit_DLLs: d0 => No File
IFEO\filler602.exe: [Debugger] "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
IFEO\javacpl.exe: [Debugger] "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
IFEO\javaw.exe: [Debugger] "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
IFEO\javaws.exe: [Debugger] "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
IFEO\kiesagent.exe: [Debugger] "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
IFEO\nvstlink.exe: [Debugger] "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
IFEO\nvstview.exe: [Debugger] "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
IFEO\setup.exe: [Debugger] "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
IFEO\skype.exe: [Debugger] "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
IFEO\unins000.exe: [Debugger] "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
IFEO\uninst.exe: [Debugger] "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
IFEO\wddmstatus.exe: [Debugger] "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
IFEO\wdsmartware.exe: [Debugger] "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
IFEO\zps.exe: [Debugger] "C:\Program Files\AVG\AVG PC TuneUp\TUAutoReactivator32.exe"
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{AAB8EADF-2FEB-44F4-BB3B-F04B63C36168}: [DhcpNameServer] 10.0.0.138
Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/
HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie
SearchScopes: HKU\S-1-5-21-3551886561-2034735683-3825333376-1001 -> DefaultScope {80B005AD-673F-40D8-9611-CADFE4D9B452} URL = hxxp://www.google.cz/search?q={searchTerms}&rl ... {startPage}
SearchScopes: HKU\S-1-5-21-3551886561-2034735683-3825333376-1001 -> {0D2B5428-BE2B-4A8F-9BF1-E638CF0D9F97} URL = hxxp://cs.wikipedia.org/w/index.php?title=Speci%C3%A1ln%C3%AD:Hled%C3%A1n%C3%AD&search={searchTerms}
SearchScopes: HKU\S-1-5-21-3551886561-2034735683-3825333376-1001 -> {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL =
SearchScopes: HKU\S-1-5-21-3551886561-2034735683-3825333376-1001 -> {80B005AD-673F-40D8-9611-CADFE4D9B452} URL = hxxp://www.google.cz/search?q={searchTerms}&rl ... {startPage}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_77\bin\ssv.dll [2016-03-28] (Oracle Corporation)
BHO: CHelper Class -> {99A7C4DD-B2E6-4CA0-BB6E-737A61364155} -> C:\Program Files\Eurotran 2003\e2003i.dll [2013-06-23] ()
BHO: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-05-14] (Skype Technologies S.A.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-12-21] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_77\bin\jp2ssv.dll [2016-03-28] (Oracle Corporation)
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} hxxp://download.eset.com/special/eos/OnlineScanner.cab
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - No File
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - No File
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2013-05-14] (Skype Technologies S.A.)
FireFox:
========
FF ProfilePath: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\ofv7r74m.default [2016-11-08]
FF Homepage: Mozilla\Firefox\Profiles\ofv7r74m.default -> hxxp://www.seznam.cz/
FF Extension: (FireGestures) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\ofv7r74m.default\Extensions\firegestures@xuldev.org.xpi [2016-08-17]
FF Extension: (Google Translator for Firefox) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\ofv7r74m.default\Extensions\translator@zoli.bod.xpi [2016-04-27]
FF Extension: (gtranslate) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\ofv7r74m.default\Extensions\{aff87fa2-a58e-4edd-b852-0a20203c1e17}.xpi [2016-05-28]
FF Extension: (Adblock Plus) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\ofv7r74m.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-10-28]
FF Extension: (Seznam lištička) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\ofv7r74m.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2016-09-02]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_23_0_0_205.dll [2016-10-26] ()
FF Plugin: @garmin.com/GpsControl -> C:\Program Files\Garmin GPS Plugin\npGarmin.dll [2012-05-30] (GARMIN Corp.)
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2014-01-06] (Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=11.77.2 -> C:\Program Files\Java\jre1.8.0_77\bin\dtplugin\npDeployJava1.dll [2016-03-28] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.77.2 -> C:\Program Files\Java\jre1.8.0_77\bin\plugin2\npjp2.dll [2016-03-28] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin: @Nero.com/KM -> C:\PROGRA~1\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL [2015-10-23] (Nero AG)
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2014-02-08] (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2014-02-08] (NVIDIA Corporation)
FF Plugin: @software602.cz/602XML Filler -> C:\Program Files\Software602\602XML\Filler\npfiller.dll [2012-08-06] (Software602 a.s.)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR StartupUrls: Default -> "hxxps://www.google.cz/"
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\52.0.2743.116\PepperFlash\pepflashplayer.dll => No File
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\52.0.2743.116\ppGoogleNaClPluginChrome.dll => No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\52.0.2743.116\pdf.dll => No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll => No File
CHR Plugin: (Java Deployment Toolkit 6.0.290.11) - C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll => No File
CHR Plugin: (Java(TM) Platform SE 6 U29) - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll => No File
CHR Plugin: (Nero Kwik Media Helper) - C:\PROGRA~1\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (AVG SiteSafety plugin) - C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\14.2.0\\npsitesafety.dll => No File
CHR Plugin: (Garmin Communicator Plug-In) - C:\Program Files\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
CHR Plugin: (Picasa) - C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll => No File
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll => No File
CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default [2016-10-04]
CHR Extension: (Prezentace Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-09-02]
CHR Extension: (Dokumenty Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-07-12]
CHR Extension: (Disk Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-09-02]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2016-09-02]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2016-09-02]
CHR Extension: (YouTube) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-29]
CHR Extension: (Vyhledávání Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-07-12]
CHR Extension: (Tabulky Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-09-02]
CHR Extension: (Dokumenty Google offline) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-09-02]
CHR Extension: (Skype) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2016-09-02]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-09-02]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2016-09-02]
CHR Extension: (Gmail) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-07-12]
CHR Extension: (Chrome Media Router) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-09-02]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-05-14]
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S4 602XML Updater; C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s.)
R2 avgfws; C:\Program Files\AVG\AVG2015\avgfws.exe [1563648 2016-04-21] (AVG Technologies CZ, s.r.o.)
S2 AVGIDSAgent; C:\Program Files\AVG\AVG2015\avgidsagent.exe [3647384 2016-04-21] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2015\avgwdsvc.exe [336152 2016-04-21] (AVG Technologies CZ, s.r.o.)
R2 cbVSCService11; C:\Program Files\Cobian Backup 11\cbVSCService11.exe [67584 2012-12-05] (CobianSoft, Luis Cobian) [File not signed]
R2 cgm.brevir-1; C:\CGMSERVER\bin\brevir-1\cgm.brevir-1.exe [260608 2016-10-24] () [File not signed]
R2 cgm.ebooking-1; C:\CGMSERVER\bin\ebooking-1\cgm.ebooking-1.exe [44944 2014-10-20] (Microsoft) [File not signed]
R2 cgm.ecommunication-1; C:\CGMSERVER\bin\ecommunication-1\cgm.ecommunication-1.exe [72800 2016-10-25] (CompuGroup Medical Česká republika s.r.o.)
R2 cgm.servercore; C:\CGMSERVER\bin\core\cgm.servercore.exe [54536 2016-04-20] (CGM)
R2 CobianBackup11; C:\Program Files\Cobian Backup 11\cbService.exe [1131008 2012-12-05] (Luis Cobian, CobianSoft) [File not signed]
R2 Garmin Device Interaction Service; C:\Program Files\Garmin\Device Interaction Service\GarminService.exe [985616 2016-10-25] (Garmin Ltd. or its subsidiaries)
S3 HCS.MedConnect.Service; C:\CGMSERVER\bin\medical-net\MedConnect\HCS.MedConnect.Service.exe [48528 2015-02-11] (HCS GmbH) [File not signed]
R2 HCS.MEDCONNECT.SERVICEMANAGER; C:\CGMSERVER\bin\medical-net\MedConnect.ServiceManager\HCS.MedConnect.ServiceManager.exe [87952 2015-02-11] (HCS GmbH) [File not signed]
R2 NAUpdate; C:\Program Files\Nero\Update\NASvc.exe [785904 2015-07-07] (Nero AG)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-01-08] (DEVGURU Co., LTD.)
R2 TuneUp.UtilitiesSvc; C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesService32.exe [1740088 2013-09-23] (AVG)
S4 WDBackup; C:\Program Files\Western Digital\WD SmartWare\WDBackupEngine.exe [1042808 2014-06-02] (Western Digital Technologies, Inc.)
S4 WDDriveService; C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe [296312 2014-06-02] (Western Digital Technologies, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 Avgdiskx; C:\Windows\System32\DRIVERS\avgdiskx.sys [132576 2015-03-11] (AVG Technologies CZ, s.r.o.)
R1 Avgfwfd; C:\Windows\System32\DRIVERS\avgfwd6x.sys [68032 2015-07-09] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [252336 2015-12-16] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [223152 2016-01-13] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [31664 2015-11-25] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [234416 2015-12-16] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [290272 2015-05-07] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [193456 2016-01-22] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [35808 2015-03-20] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [230832 2015-08-04] (AVG Technologies CZ, s.r.o.)
S3 Dot4Scan; C:\Windows\System32\DRIVERS\Dot4Scan.sys [10752 2009-07-14] (Microsoft Corporation)
S3 ivusb; C:\Windows\System32\DRIVERS\ivusb.sys [25112 2010-03-10] (Initio Corporation)
R3 TuneUpUtilitiesDrv; C:\Program Files\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver32.sys [12320 2013-09-18] (TuneUp Software)
S3 appliandMP; system32\DRIVERS\appliand.sys [X]
U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation)
S3 dgderdrv; System32\drivers\dgderdrv.sys [X]
S3 eapihdrv; \??\C:\Users\Admin\AppData\Local\Temp\ehdrv.sys [X]
S4 nvvad_WaveExtensible; system32\drivers\nvvad32v.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-11-08 15:04 - 2016-11-08 15:04 - 00022595 _____ C:\Users\Admin\Desktop\FRST.txt
2016-11-08 15:02 - 2016-11-08 15:04 - 00000000 ____D C:\FRST
2016-11-08 15:00 - 2016-11-08 15:02 - 00112640 _____ (forum.viry.cz) C:\Users\Admin\Desktop\FRSTLauncher.exe
2016-11-08 14:59 - 2016-11-08 14:59 - 01759744 _____ (Farbar) C:\Users\Admin\Desktop\FRST.exe
2016-11-08 09:41 - 2016-11-08 09:41 - 00000000 ____D C:\Users\Admin\AppData\Local\{43E38692-0CEF-4370-9E09-5A630B5D03B3}
2016-11-07 13:45 - 2016-11-07 13:45 - 00000000 ____D C:\Users\Admin\AppData\Local\{C0C10348-20BA-4783-915F-4A9787467347}
2016-11-07 13:27 - 2016-11-08 14:43 - 00000000 ____D C:\rsit
2016-11-06 17:43 - 2016-11-06 17:43 - 00000000 ____D C:\Users\Admin\AppData\Local\{BC74D47E-5FB7-497A-A4E5-F0575FD5D656}
2016-11-04 10:16 - 2016-11-04 10:16 - 00000000 ____D C:\Users\Admin\AppData\Local\{FD5C2C13-A59D-485A-A402-1B6B34FAB435}
2016-11-03 14:44 - 2016-11-03 14:44 - 00000000 ____D C:\Users\Admin\AppData\Local\{F4B51C1F-575B-4280-80DB-9B10BC4D0019}
2016-11-02 17:19 - 2016-11-02 17:19 - 00000000 ____D C:\Users\Admin\AppData\Local\{E07966B3-B8C0-45D8-BB81-5D3CD301E9F4}
2016-10-31 14:12 - 2016-10-31 14:12 - 00000000 ____D C:\Users\Admin\AppData\Local\{66241F8C-A838-41F0-B4EC-2C5A6E897C10}
2016-10-30 12:50 - 2016-10-30 12:50 - 00000000 ____D C:\Users\Admin\AppData\Local\{38EE0BC0-7DAD-4C62-808D-D8D3C58A3518}
2016-10-28 16:24 - 2016-10-28 16:24 - 00000000 ____D C:\Users\Admin\AppData\Local\{5A134410-0243-46E4-A280-6A65EF930B43}
2016-10-27 15:10 - 2016-10-27 15:10 - 00000000 ____D C:\Users\Admin\AppData\Local\{DCF365E6-8570-4CDB-84E7-1D430C116888}
2016-10-26 19:12 - 2016-10-26 19:12 - 00000000 ____D C:\Users\Admin\AppData\Local\{D217875B-F875-4CD5-B843-E52451E764DF}
2016-10-25 12:28 - 2016-10-25 12:28 - 00000000 ____D C:\Users\Admin\AppData\Local\{8E41F6FF-C7FC-4A79-A8C8-C0ED9F50DA82}
2016-10-24 13:24 - 2016-10-24 13:24 - 00000000 ____D C:\Users\Admin\AppData\Local\{41D482D6-1A2C-427E-80F8-0E0D8DFC5E71}
2016-10-23 15:10 - 2016-10-23 15:10 - 00000000 ____D C:\Users\Admin\AppData\Local\{9B9FA7B6-9C4B-45F5-96F7-B1BA2B7446E0}
2016-10-22 14:10 - 2016-10-22 14:10 - 00000000 ____D C:\Users\Admin\AppData\Local\{D253738C-28D5-463F-9B0E-DAF198A1BBEC}
2016-10-21 15:06 - 2016-10-21 15:06 - 00000000 ____D C:\Program Files\Mozilla Firefox
2016-10-21 09:33 - 2016-10-21 09:33 - 00000000 ____D C:\Users\Admin\AppData\Local\{771F1101-244A-4469-A17B-0C4139C51794}
2016-10-20 09:13 - 2016-10-20 09:13 - 00000000 ____D C:\Users\Admin\AppData\Local\{CE5A20BA-1032-42CD-BB42-1364346AC531}
2016-10-19 10:48 - 2016-10-19 10:48 - 00000000 ____D C:\Users\Admin\AppData\Local\{41B5C005-431D-40AC-9B4A-CA51825171EF}
2016-10-19 10:41 - 2016-07-22 15:51 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2016-10-18 15:21 - 2016-10-18 15:21 - 00000000 ____D C:\Users\Admin\AppData\Local\{CA7BD1D0-9E41-4314-B3D7-E760073D3945}
2016-10-17 10:56 - 2016-10-17 10:56 - 00000000 ____D C:\Users\Admin\AppData\Local\{AE37B276-7D0E-4E23-B9DB-A1591944147A}
2016-10-16 17:51 - 2016-10-16 17:51 - 00000000 ____D C:\Users\Admin\AppData\Local\{6BB1564E-2348-47EA-98D1-D0636DED7CC9}
2016-10-14 10:06 - 2016-10-14 10:06 - 00000000 ____D C:\Users\Admin\AppData\Local\{132D3AB6-3D2E-4FCD-B52A-6F110EB04F26}
2016-10-13 16:20 - 2016-09-30 20:28 - 00346312 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-10-13 16:20 - 2016-09-30 16:20 - 04000488 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2016-10-13 16:20 - 2016-09-30 16:20 - 03944680 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-10-13 16:20 - 2016-09-30 06:54 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-10-13 16:20 - 2016-09-30 06:54 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-10-13 16:20 - 2016-09-30 06:47 - 20306944 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-10-13 16:20 - 2016-09-30 06:42 - 00498688 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-10-13 16:20 - 2016-09-30 06:42 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-10-13 16:20 - 2016-09-30 06:42 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-10-13 16:20 - 2016-09-30 06:42 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-10-13 16:20 - 2016-09-30 06:41 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-10-13 16:20 - 2016-09-30 06:38 - 02286592 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-10-13 16:20 - 2016-09-30 06:36 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-10-13 16:20 - 2016-09-30 06:35 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-10-13 16:20 - 2016-09-30 06:33 - 00476160 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-10-13 16:20 - 2016-09-30 06:32 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-10-13 16:20 - 2016-09-30 06:32 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-10-13 16:20 - 2016-09-30 06:32 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-10-13 16:20 - 2016-09-30 06:32 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-10-13 16:20 - 2016-09-30 06:27 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-10-13 16:20 - 2016-09-30 06:24 - 00416256 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-10-13 16:20 - 2016-09-30 06:19 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2016-10-13 16:20 - 2016-09-30 06:19 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-10-13 16:20 - 2016-09-30 06:17 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-10-13 16:20 - 2016-09-30 06:15 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-10-13 16:20 - 2016-09-30 06:14 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-10-13 16:20 - 2016-09-30 06:13 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-10-13 16:20 - 2016-09-30 06:12 - 04608512 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-10-13 16:20 - 2016-09-30 06:07 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-10-13 16:20 - 2016-09-30 06:05 - 02055680 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-10-13 16:20 - 2016-09-30 06:05 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-10-13 16:20 - 2016-09-30 06:05 - 00693248 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-10-13 16:20 - 2016-09-30 06:05 - 00689152 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-10-13 16:20 - 2016-09-30 06:03 - 13653504 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-10-13 16:20 - 2016-09-30 05:46 - 02444288 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-10-13 16:20 - 2016-09-30 05:43 - 01312768 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-10-13 16:20 - 2016-09-30 05:42 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-10-13 16:20 - 2016-09-15 16:15 - 00741888 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2016-10-13 16:20 - 2016-09-15 16:15 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\INETRES.dll
2016-10-13 16:20 - 2016-09-12 21:54 - 00067816 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-10-13 16:20 - 2016-09-12 21:53 - 00137960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-10-13 16:20 - 2016-09-12 21:53 - 00067304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-10-13 16:20 - 2016-09-12 21:49 - 01063936 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-10-13 16:20 - 2016-09-12 21:49 - 01017856 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-10-13 16:20 - 2016-09-12 21:49 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-10-13 16:20 - 2016-09-12 21:49 - 00655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-10-13 16:20 - 2016-09-12 21:49 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-10-13 16:20 - 2016-09-12 21:49 - 00260608 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-10-13 16:20 - 2016-09-12 21:49 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-10-13 16:20 - 2016-09-12 21:49 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-10-13 16:20 - 2016-09-12 21:49 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-10-13 16:20 - 2016-09-12 21:49 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-10-13 16:20 - 2016-09-12 21:49 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2016-10-13 16:20 - 2016-09-12 21:49 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-10-13 16:20 - 2016-09-12 21:49 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\adsmsext.dll
2016-10-13 16:20 - 2016-09-12 21:49 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-10-13 16:20 - 2016-09-12 21:49 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-10-13 16:20 - 2016-09-12 21:49 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-10-13 16:20 - 2016-09-12 21:49 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-10-13 16:20 - 2016-09-12 21:29 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-10-13 16:20 - 2016-09-12 21:28 - 02399232 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-10-13 16:20 - 2016-09-12 21:26 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-10-13 16:20 - 2016-09-12 21:26 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-10-13 16:20 - 2016-09-12 21:26 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-10-13 16:20 - 2016-09-12 21:25 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-10-13 16:20 - 2016-09-12 21:25 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-10-13 16:20 - 2016-09-12 21:25 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-10-13 16:20 - 2016-09-12 20:08 - 01251328 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2016-10-13 16:20 - 2016-09-12 20:08 - 00909824 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2016-10-13 16:20 - 2016-09-10 16:53 - 02291712 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2016-10-13 16:20 - 2016-09-09 19:01 - 01310528 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-10-13 16:20 - 2016-09-09 19:00 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-10-13 16:20 - 2016-09-09 19:00 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-10-13 16:20 - 2016-09-09 18:59 - 00644096 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-10-13 16:20 - 2016-09-09 18:59 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2016-10-13 16:20 - 2016-09-09 18:59 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2016-10-13 16:20 - 2016-09-09 18:59 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-10-13 16:20 - 2016-09-09 18:59 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-10-13 16:20 - 2016-09-09 18:42 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2016-10-13 16:20 - 2016-09-09 18:42 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2016-10-13 16:20 - 2016-09-09 18:42 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2016-10-13 16:20 - 2016-09-09 18:42 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2016-10-13 16:20 - 2016-09-09 18:39 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-10-13 16:20 - 2016-09-09 18:37 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-10-13 16:20 - 2016-09-09 16:53 - 01406976 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-10-13 16:20 - 2016-09-09 16:53 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-10-13 16:20 - 2016-09-09 16:53 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-10-13 16:20 - 2016-09-09 16:53 - 00268800 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-10-13 16:20 - 2016-09-09 16:53 - 00213504 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2016-10-13 16:20 - 2016-09-09 16:53 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-10-13 16:20 - 2016-09-09 16:53 - 00107008 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-10-13 16:20 - 2016-09-08 21:34 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2016-10-13 16:20 - 2016-09-08 21:34 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2016-10-13 16:20 - 2016-09-08 15:49 - 00117248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2016-10-13 16:20 - 2016-09-08 15:49 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2016-10-13 16:20 - 2016-08-29 16:12 - 12880384 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-10-13 16:20 - 2016-08-29 16:12 - 01806848 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-10-13 16:20 - 2016-08-29 16:12 - 01499648 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2016-10-13 16:20 - 2016-08-29 15:55 - 02972672 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2016-10-13 16:20 - 2016-08-16 19:47 - 00419640 _____ C:\Windows\system32\locale.nls
2016-10-13 16:20 - 2016-08-12 17:47 - 12574208 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2016-10-13 16:20 - 2016-08-12 17:47 - 11410432 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-10-13 16:20 - 2016-08-12 17:31 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2016-10-13 16:20 - 2016-08-12 17:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2016-10-13 16:20 - 2016-08-12 17:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2016-10-13 16:20 - 2016-08-12 17:21 - 00437248 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2016-10-13 16:20 - 2016-08-06 16:15 - 01178112 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2016-10-13 16:20 - 2016-08-06 16:15 - 00249344 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2016-10-13 16:20 - 2016-08-06 16:15 - 00214016 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2016-10-13 16:20 - 2016-08-06 16:15 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2016-10-13 16:20 - 2016-08-06 16:15 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\WsmRes.dll
2016-10-13 16:20 - 2016-08-06 15:53 - 00199168 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2016-10-13 16:20 - 2016-08-06 15:53 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wsmprovhost.exe
2016-10-13 16:20 - 2016-08-06 15:53 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\wsmplpxy.dll
2016-10-13 16:20 - 2016-06-14 16:25 - 00078568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2016-10-13 16:20 - 2016-06-14 16:21 - 03209216 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 01329664 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 01176064 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 01005056 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00988160 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00744960 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00617984 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00519680 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00474624 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00442368 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00406016 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00374784 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00354816 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00265216 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00195072 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00179200 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00157184 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00103424 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2016-10-13 16:20 - 2016-06-14 16:17 - 00593920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2016-10-13 16:20 - 2016-06-14 16:05 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2016-10-13 16:20 - 2016-06-14 16:05 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2016-10-13 16:20 - 2016-06-14 16:05 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2016-10-13 16:20 - 2016-06-14 16:00 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2016-10-13 16:20 - 2016-06-14 15:55 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe
2016-10-13 16:20 - 2016-06-14 15:55 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2016-10-13 16:20 - 2016-06-14 15:54 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2016-10-13 16:18 - 2016-08-16 21:27 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2016-10-13 16:18 - 2016-08-16 21:27 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2016-10-13 16:18 - 2016-08-16 21:26 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2016-10-13 16:18 - 2016-08-16 21:26 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2016-10-13 16:18 - 2016-08-16 21:26 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2016-10-13 16:18 - 2016-08-16 21:26 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2016-10-13 16:18 - 2016-08-16 21:26 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2016-10-13 15:40 - 2016-10-13 15:40 - 00000000 ____D C:\Users\Admin\AppData\Local\{0C7FAC83-E655-4BC9-9A64-48803905B6DD}
2016-10-12 14:28 - 2016-10-12 14:28 - 00000000 ____D C:\Users\Admin\AppData\Local\{A98DBA2E-F079-4C1C-9040-6E8D59E0F3B8}
2016-10-11 13:04 - 2016-10-11 13:04 - 00000000 ____D C:\Users\Admin\AppData\Local\{B0D946BB-0336-4D28-ACA9-A4DBEB21E1BE}
2016-10-10 14:05 - 2016-10-10 14:05 - 00000000 ____D C:\Users\Admin\AppData\Local\{C3A16C21-3188-4E59-8DD9-C362AECBF2D8}
2016-10-10 08:50 - 2016-10-10 08:50 - 00000000 ____D C:\Users\Admin\AppData\Local\{D3E86A58-4E4B-44A9-BC50-7BC379410771}
2016-10-09 14:20 - 2016-10-09 14:20 - 00000000 ____D C:\Users\Admin\AppData\Local\{6B2F668D-6EBE-4EE9-810E-B7FEE8828839}
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-11-08 15:05 - 2012-08-19 10:19 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-11-08 14:39 - 2014-09-23 13:14 - 00000000 ____D C:\Program Files\Dialog MIS
2016-11-08 14:39 - 2013-08-15 14:40 - 00000000 ____D C:\ProgramData\MFAData
2016-11-08 14:36 - 2011-02-16 16:31 - 00000000 ____D C:\Users\Admin\AppData\LocalLow\Temp
2016-11-08 14:31 - 2016-02-08 15:40 - 00000000 ____D C:\ALFIS16J
2016-11-08 14:23 - 2013-07-16 07:27 - 00000940 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-11-08 13:59 - 2009-07-14 05:34 - 00023568 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-11-08 13:59 - 2009-07-14 05:34 - 00023568 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-11-08 13:51 - 2013-07-16 07:27 - 00000936 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-11-08 13:51 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-11-08 12:17 - 2010-11-18 17:03 - 00000000 ____D C:\Users\Admin\Documents\Soubory aplikace Outlook
2016-11-07 22:11 - 2012-09-29 09:59 - 00000000 ____D C:\temp
2016-11-07 13:37 - 2015-04-15 15:27 - 00004606 _____ C:\NBDBList.ini
2016-11-07 13:29 - 2014-03-04 18:18 - 00000000 ____D C:\Program Files\trend micro
2016-11-07 13:20 - 2009-11-24 10:26 - 01593150 _____ C:\Windows\system32\PerfStringBackup.INI
2016-11-07 13:20 - 2009-07-14 09:44 - 00672136 _____ C:\Windows\system32\perfh005.dat
2016-11-07 13:20 - 2009-07-14 09:44 - 00142732 _____ C:\Windows\system32\perfc005.dat
2016-11-07 13:20 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\inf
2016-11-07 13:18 - 2012-04-14 09:15 - 00000000 ____D C:\Users\Admin\AppData\Local\CrashDumps
2016-11-06 16:54 - 2010-11-16 19:20 - 00000000 ____D C:\BATCH
2016-11-06 16:24 - 2010-11-19 14:03 - 00000000 ____D C:\VYPAL
2016-11-06 16:13 - 2013-01-29 18:39 - 00000000 ____D C:\Users\Admin\AppData\Roaming\vlc
2016-11-06 16:12 - 2015-11-08 17:03 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-11-05 10:20 - 2013-02-18 17:54 - 00000000 ____D C:\ProgramData\Package Cache
2016-11-05 10:20 - 2012-08-23 14:46 - 00000000 ____D C:\Program Files\Garmin
2016-11-05 10:19 - 2015-08-21 13:15 - 00001860 _____ C:\Users\Public\Desktop\Garmin Express.lnk
2016-11-05 10:19 - 2012-08-23 14:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin
2016-11-05 10:18 - 2010-11-16 18:46 - 00000000 ____D C:\Program Files\IDOS
2016-10-31 18:35 - 2011-02-04 21:17 - 00000000 ____D C:\MP3
2016-10-26 19:15 - 2011-02-08 18:20 - 00000000 ____D C:\S W
2016-10-26 15:51 - 2013-12-23 17:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CompuGroup Medical
2016-10-26 15:49 - 2013-07-29 12:58 - 00000000 ____D C:\CGMSERVER
2016-10-26 10:05 - 2012-04-09 09:18 - 00796352 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2016-10-26 10:05 - 2011-06-01 16:48 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2016-10-26 10:05 - 2010-11-16 15:01 - 00000000 ____D C:\Windows\system32\Macromed
2016-10-25 12:24 - 2013-02-26 20:11 - 00002141 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-10-25 12:24 - 2013-02-26 20:11 - 00002129 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-10-24 13:53 - 2010-11-17 10:01 - 00000000 ____D C:\FOTOGRAFIE
2016-10-24 08:21 - 2010-11-22 14:22 - 00000000 ____D C:\Users\Admin\AppData\Local\ElevatedDiagnostics
2016-10-21 18:54 - 2014-04-15 13:58 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2016-10-21 15:05 - 2015-12-24 15:21 - 00000000 ____D C:\Users\Admin\AppData\Roaming\YouTube Downloader
2016-10-14 08:30 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\rescache
2016-10-14 06:43 - 2009-07-14 05:46 - 00001515 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-10-13 18:34 - 2010-11-19 17:48 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-10-13 18:34 - 2009-07-14 05:33 - 00411768 _____ C:\Windows\system32\FNTCACHE.DAT
2016-10-13 16:43 - 2014-12-10 17:36 - 00000000 ____D C:\Windows\system32\appraiser
2016-10-13 16:43 - 2014-04-23 15:58 - 00000000 ___SD C:\Windows\system32\CompatTel
2016-10-13 16:43 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system32\Dism
2016-10-13 16:30 - 2013-07-11 13:48 - 00000000 ____D C:\Windows\system32\MRT
2016-10-13 16:26 - 2010-11-17 14:58 - 00000000 ____D C:\Program Files\rajce
2016-10-13 16:22 - 2010-11-19 17:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-10-13 16:22 - 2009-11-24 13:38 - 141042968 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
==================== Files in the root of some directories =======
2015-01-24 10:13 - 2015-01-24 10:23 - 2171392 _____ () C:\Users\Admin\AppData\Roaming\bfldb.dll
2015-01-24 10:13 - 2015-01-24 10:23 - 2248704 _____ () C:\Users\Admin\AppData\Roaming\bfldongle.dll
2015-01-24 10:13 - 2015-01-24 10:23 - 2265088 _____ () C:\Users\Admin\AppData\Roaming\bfluart.dll
2015-01-24 10:13 - 2015-01-24 10:23 - 2416640 _____ () C:\Users\Admin\AppData\Roaming\bflusb.dll
2015-01-24 10:13 - 2015-01-24 10:23 - 0004366 _____ () C:\Users\Admin\AppData\Roaming\C
2014-01-03 17:22 - 2014-01-03 17:22 - 0087608 _____ () C:\Users\Admin\AppData\Roaming\inst.exe
2009-11-25 10:37 - 2014-01-03 17:22 - 0007887 _____ () C:\Users\Admin\AppData\Roaming\pcouffin.cat
2009-11-25 10:37 - 2014-01-03 17:22 - 0001144 _____ () C:\Users\Admin\AppData\Roaming\pcouffin.inf
2009-11-25 10:37 - 2014-01-03 17:22 - 0000055 _____ () C:\Users\Admin\AppData\Roaming\pcouffin.log
2009-11-25 10:37 - 2014-01-03 17:22 - 0047360 _____ (VSO Software) C:\Users\Admin\AppData\Roaming\pcouffin.sys
2010-11-16 22:37 - 2010-11-16 22:37 - 0000022 ___SH () C:\Users\Admin\AppData\Roaming\Sys6925.Config Collection.sys
2010-11-23 14:44 - 2012-06-04 13:07 - 0005120 _____ () C:\Users\Admin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-08-31 21:26 - 2012-08-31 21:26 - 0027520 _____ () C:\Users\Admin\AppData\Local\dt.dat
2010-11-22 14:20 - 2012-10-22 15:59 - 0007608 _____ () C:\Users\Admin\AppData\Local\resmon.resmoncfg
2013-06-21 15:26 - 2013-06-21 16:24 - 0000000 _____ () C:\ProgramData\g252qs.txt
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
==================== Alternate Data Streams (whitelisted) ==================
AlternateDataStreams: C:\ProgramData\TEMP:0B4227B4 [124]
==================== Security Center ==================
AV: AVG Internet Security 2015 (Disabled - Up to date) {4D41356F-32AD-7C42-C820-63775EE4F413}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG Internet Security 2015 (Disabled - Up to date) {F620D48B-1497-73CC-F290-58052563BEAE}
FW: AVG Internet Security 2015 (Enabled) {757AB44A-78C2-7D1A-E37F-CA42A037B368}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Admin\Desktop" je 4 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\\Program Files\\IEPro\\MiniDM.exe"="C:\\Program Files\\IEPro\\MiniDM.exe:*:Enabled:MiniDM"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR"=dword:00000000
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
- Přílohy
-
- Addition.rar
- (9.09 KiB) Staženo 83 x
Re: plíživé zpomalení PC
Následující doporučuji odinstalovat:
TuneUpUtilities
Skype Click to Call
Aktualizujte:
Java 8
FIXLIST pro FRST
1) Obsah fixu níže, nakopírujte do Notepadu + uložte jej jako: fixlist.txt
2) Soubor uložte na stejné místo, kde má aktuálně utilitu FRST
3) Spusťte FRSTa kliněte na tlačítko FIX
4) Restartujte PC.
5) Sledujte PC, jak se chová
6) FIXLOG mi prosím nakopírujte sem do Vašeho topicu
7) Vytvořte (bez použití FRSTLauncheru), nový log FRST + Addition a postněte jej do Vašeho topicu
TuneUpUtilities
Skype Click to Call
Aktualizujte:
Java 8
FIXLIST pro FRST
1) Obsah fixu níže, nakopírujte do Notepadu + uložte jej jako: fixlist.txt
2) Soubor uložte na stejné místo, kde má aktuálně utilitu FRST
Kód: Vybrat vše
START
CreateRestorePoint:
EmptyTemp:
CloseProcesses:
Hosts:
File: C:\Windows\Scafea.exe
Folder: C:\Users\Admin\AppData\Local\{CA7BD1D0-9E41-4314-B3D7-E760073D3945}
AppInit_DLLs: d0 => No File
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - No File
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - No File
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\52.0.2743.116\PepperFlash\pepflashplayer.dll => No File
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\52.0.2743.116\ppGoogleNaClPluginChrome.dll => No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\52.0.2743.116\pdf.dll => No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll => No File
CHR Plugin: (Java Deployment Toolkit 6.0.290.11) - C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll => No File
CHR Plugin: (Java(TM) Platform SE 6 U29) - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll => No File
CHR Plugin: (AVG SiteSafety plugin) - C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\14.2.0\\npsitesafety.dll => No File
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll => No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll => No File
Task: {F9EDAEB5-8904-4BEC-923B-F675B80D5F43} - System32\Tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C} => C:\Windows\Scafea.exe
Task: {396363E6-AE80-4AA2-97D5-1626084A597B} - System32\Tasks\{6A799F9A-8C56-4D78-B00A-8DAA57E89163} => pcalua.exe -a "C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4HK672CE\doktor-setupsfx[1].exe" -d "C:\Program Files\Dialog MIS"
Task: {BDCA8E3E-3F06-472C-810A-9491B656F1D2} - System32\Tasks\{69D05509-C9ED-4103-88A4-57F8F3924D55} => pcalua.exe -a "C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\REICC82S\IE7ProSetup_2.5.1[1].exe" -d C:\Users\Admin\Desktop
Task: {CA013DCE-C188-4850-A559-A6D0125BABF3} - System32\Tasks\{A8E0F5CE-C126-4B44-AB0A-2BCD373EB53B} => pcalua.exe -a C:\Users\Admin\AppData\Local\temp\IXP000.TMP\setup.exe -d C:\Users\Admin\AppData\Local\temp\IXP000.TMP <==== ATTENTION
AlternateDataStreams: C:\ProgramData\TEMP:0B4227B4 [124]
END4) Restartujte PC.
5) Sledujte PC, jak se chová
6) FIXLOG mi prosím nakopírujte sem do Vašeho topicu
7) Vytvořte (bez použití FRSTLauncheru), nový log FRST + Addition a postněte jej do Vašeho topicu
Re: plíživé zpomalení PC
Dobrý den, učinil jsem žádané a přikládám výsledky. Prvním dojmem je jistě prodloužení startu systému. Ostatní odezvu jdu zkoušet.
Děkuji
Fix result of Farbar Recovery Scan Tool (x86) Version: 06-11-2016
Ran by Admin (10-11-2016 14:36:07) Run:1
Running from C:\Users\Admin\Documents\K VIRŮM
Loaded Profiles: Admin (Available Profiles: Admin)
Boot Mode: Normal
==============================================
fixlist content:
*****************
START
CreateRestorePoint:
EmptyTemp:
CloseProcesses:
Hosts:
File: C:\Windows\Scafea.exe
Folder: C:\Users\Admin\AppData\Local\{CA7BD1D0-9E41-4314-B3D7-E760073D3945}
AppInit_DLLs: d0 => No File
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - No File
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - No File
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\52.0.2743.116\PepperFlash\pepflashplayer.dll => No File
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\52.0.2743.116\ppGoogleNaClPluginChrome.dll => No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\52.0.2743.116\pdf.dll => No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll => No File
CHR Plugin: (Java Deployment Toolkit 6.0.290.11) - C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll => No File
CHR Plugin: (Java(TM) Platform SE 6 U29) - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll => No File
CHR Plugin: (AVG SiteSafety plugin) - C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\14.2.0\\npsitesafety.dll => No File
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll => No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll => No File
Task: {F9EDAEB5-8904-4BEC-923B-F675B80D5F43} - System32\Tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C} => C:\Windows\Scafea.exe
Task: {396363E6-AE80-4AA2-97D5-1626084A597B} - System32\Tasks\{6A799F9A-8C56-4D78-B00A-8DAA57E89163} => pcalua.exe -a "C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4HK672CE\doktor-setupsfx[1].exe" -d "C:\Program Files\Dialog MIS"
Task: {BDCA8E3E-3F06-472C-810A-9491B656F1D2} - System32\Tasks\{69D05509-C9ED-4103-88A4-57F8F3924D55} => pcalua.exe -a "C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\REICC82S\IE7ProSetup_2.5.1[1].exe" -d C:\Users\Admin\Desktop
Task: {CA013DCE-C188-4850-A559-A6D0125BABF3} - System32\Tasks\{A8E0F5CE-C126-4B44-AB0A-2BCD373EB53B} => pcalua.exe -a C:\Users\Admin\AppData\Local\temp\IXP000.TMP\setup.exe -d C:\Users\Admin\AppData\Local\temp\IXP000.TMP <==== ATTENTION
AlternateDataStreams: C:\ProgramData\TEMP:0B4227B4 [124]
END
*****************
Restore point was successfully created.
Processes closed successfully.
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
========================= File: C:\Windows\Scafea.exe ========================
"C:\Windows\Scafea.exe" => not found.
====== End of File: ======
========================= Folder: C:\Users\Admin\AppData\Local\{CA7BD1D0-9E41-4314-B3D7-E760073D3945} ========================
====== End of Folder: ======
"d0" => Value data not found.
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully.
"HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully.
"HKCR\PROTOCOLS\Handler\livecall" => key removed successfully.
HKCR\CLSID\{828030A1-22C1-4009-854F-8E305202313F} => key not found.
"HKCR\PROTOCOLS\Handler\msnim" => key removed successfully.
HKCR\CLSID\{828030A1-22C1-4009-854F-8E305202313F} => key not found.
"HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => key removed successfully.
C:\Program Files\Google\Chrome\Application\52.0.2743.116\PepperFlash\pepflashplayer.dll => not found.
C:\Program Files\Google\Chrome\Application\52.0.2743.116\ppGoogleNaClPluginChrome.dll => not found.
C:\Program Files\Google\Chrome\Application\52.0.2743.116\pdf.dll => not found.
C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll => not found.
C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll => not found.
C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll => not found.
C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\14.2.0\\npsitesafety.dll => not found.
C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll => not found.
c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll => not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F9EDAEB5-8904-4BEC-923B-F675B80D5F43}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F9EDAEB5-8904-4BEC-923B-F675B80D5F43}" => key removed successfully.
C:\Windows\System32\Tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{35DC3473-A719-4d14-B7C1-FD326CA84A0C}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{396363E6-AE80-4AA2-97D5-1626084A597B}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{396363E6-AE80-4AA2-97D5-1626084A597B}" => key removed successfully.
C:\Windows\System32\Tasks\{6A799F9A-8C56-4D78-B00A-8DAA57E89163} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{6A799F9A-8C56-4D78-B00A-8DAA57E89163}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BDCA8E3E-3F06-472C-810A-9491B656F1D2}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BDCA8E3E-3F06-472C-810A-9491B656F1D2}" => key removed successfully.
C:\Windows\System32\Tasks\{69D05509-C9ED-4103-88A4-57F8F3924D55} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{69D05509-C9ED-4103-88A4-57F8F3924D55}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CA013DCE-C188-4850-A559-A6D0125BABF3}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CA013DCE-C188-4850-A559-A6D0125BABF3}" => key removed successfully.
C:\Windows\System32\Tasks\{A8E0F5CE-C126-4B44-AB0A-2BCD373EB53B} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{A8E0F5CE-C126-4B44-AB0A-2BCD373EB53B}" => key removed successfully.
C:\ProgramData\TEMP => ":0B4227B4" ADS removed successfully..
=========== EmptyTemp: ==========
BITS transfer queue => 8388608 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 22990054 B
Java, Flash, Steam htmlcache => 734 B
Windows/system/drivers => 455750 B
Edge => 0 B
Chrome => 296960 B
Firefox => 37105108 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 39814 B
Public => 0 B
ProgramData => 0 B
systemprofile => 85179 B
LocalService => 132244 B
NetworkService => 66868 B
Admin => 235288211 B
UpdatusUser => 0 B
RecycleBin => 26927 B
EmptyTemp: => 290.8 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 14:38:39 ====
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 06-11-2016
Ran by Admin (administrator) on ADMIN-PC (10-11-2016 14:48:17)
Running from C:\Users\Admin\Documents\K VIRŮM
Loaded Profiles: Admin (Available Profiles: Admin)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgrsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgcsrvx.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Software602 a.s.) C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgfws.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgwdsvc.exe
(CobianSoft, Luis Cobian) C:\Program Files\Cobian Backup 11\cbVSCService11.exe
(Microsoft) C:\CGMSERVER\bin\ebooking-1\cgm.ebooking-1.exe
(Luis Cobian, CobianSoft) C:\Program Files\Cobian Backup 11\cbService.exe
(Garmin Ltd. or its subsidiaries) C:\Program Files\Garmin\Device Interaction Service\GarminService.exe
(Western Digital Technologies, Inc.) C:\Program Files\Western Digital\WD Quick View\WDDMStatus.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
(Luis Cobian, CobianSoft) C:\Program Files\Cobian Backup 11\cbInterface.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgui.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Samsung) C:\Program Files\Samsung\Kies\Kies.exe
(Samsung) C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
(Garmin Ltd. or its subsidiaries) C:\Program Files\Garmin\Express Tray\ExpressTray.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgnsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgemcx.exe
(DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Western Digital Technologies, Inc.) C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(HCS GmbH) C:\CGMSERVER\bin\medical-net\MedConnect.ServiceManager\HCS.MedConnect.ServiceManager.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Western Digital Technologies, Inc.) C:\Program Files\Western Digital\WD SmartWare\WDBackupEngine.exe
(CGM) C:\CGMSERVER\bin\core\cgm.servercore.exe
(ZONER software) C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTray.exe
(Oracle Corporation) C:\CGMSERVER\jre\bin\java.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
(PostgreSQL Global Development Group) C:\CGMSERVER\bin\pgsql\bin\postgres.exe
(PostgreSQL Global Development Group) C:\CGMSERVER\bin\pgsql\bin\postgres.exe
(PostgreSQL Global Development Group) C:\CGMSERVER\bin\pgsql\bin\postgres.exe
(PostgreSQL Global Development Group) C:\CGMSERVER\bin\pgsql\bin\postgres.exe
(PostgreSQL Global Development Group) C:\CGMSERVER\bin\pgsql\bin\postgres.exe
(PostgreSQL Global Development Group) C:\CGMSERVER\bin\pgsql\bin\postgres.exe
() C:\CGMSERVER\bin\brevir-1\cgm.brevir-1.exe
(CompuGroup Medical Česká republika s.r.o.) C:\CGMSERVER\bin\ecommunication-1\cgm.ecommunication-1.exe
(PostgreSQL Global Development Group) C:\CGMSERVER\bin\pgsql\bin\postgres.exe
(PostgreSQL Global Development Group) C:\CGMSERVER\bin\pgsql\bin\postgres.exe
(Microsoft Corporation) C:\Program Files\Windows Live\Mail\wlmail.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\Windows Live\Contacts\wlcomm.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Nero AG) C:\Program Files\Nero\Update\NASvc.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [WD Quick View] => C:\Program Files\Western Digital\WD Quick View\WDDMStatus.exe [5563760 2014-06-02] (Western Digital Technologies, Inc.)
HKLM\...\Run: [KiesTrayAgent] => C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [318248 2016-01-08] (Samsung Electronics Co., Ltd.)
HKLM\...\Run: [Cobian Backup 11 interface] => C:\Program Files\Cobian Backup 11\cbInterface.exe [4407808 2012-12-05] (Luis Cobian, CobianSoft)
HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\AVG2015\avgui.exe [3820440 2016-04-21] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\...\Run: [KiesPreload] => C:\Program Files\Samsung\Kies\Kies.exe [1572648 2016-01-08] (Samsung)
HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\...\Run: [KiesPDLR.exe] => C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [1021736 2016-01-08] (Samsung)
HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\...\Run: [GarminExpressTrayApp] => C:\Program Files\Garmin\Express Tray\ExpressTray.exe [1407912 2016-10-25] (Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\...\Run: [Zoner Photo Studio Autoupdate] => C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXE [833240 2014-12-23] (ZONER software)
HKU\S-1-5-18\...\Run: [GarminExpressTrayApp] => C:\Program Files\Garmin\Express Tray\ExpressTray.exe [1407912 2016-10-25] (Garmin Ltd. or its subsidiaries)
AppInit_DLLs: d0 => No File
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{AAB8EADF-2FEB-44F4-BB3B-F04B63C36168}: [DhcpNameServer] 10.0.0.138
Internet Explorer:
==================
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/
HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie
SearchScopes: HKU\S-1-5-21-3551886561-2034735683-3825333376-1001 -> DefaultScope {80B005AD-673F-40D8-9611-CADFE4D9B452} URL = hxxp://www.google.cz/search?q={searchTerms}&rl ... {startPage}
SearchScopes: HKU\S-1-5-21-3551886561-2034735683-3825333376-1001 -> {0D2B5428-BE2B-4A8F-9BF1-E638CF0D9F97} URL = hxxp://cs.wikipedia.org/w/index.php?title=Speci%C3%A1ln%C3%AD:Hled%C3%A1n%C3%AD&search={searchTerms}
SearchScopes: HKU\S-1-5-21-3551886561-2034735683-3825333376-1001 -> {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL =
SearchScopes: HKU\S-1-5-21-3551886561-2034735683-3825333376-1001 -> {80B005AD-673F-40D8-9611-CADFE4D9B452} URL = hxxp://www.google.cz/search?q={searchTerms}&rl ... {startPage}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_111\bin\ssv.dll [2016-11-10] (Oracle Corporation)
BHO: CHelper Class -> {99A7C4DD-B2E6-4CA0-BB6E-737A61364155} -> C:\Program Files\Eurotran 2003\e2003i.dll [2013-06-23] ()
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-12-21] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-11-10] (Oracle Corporation)
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} hxxp://download.eset.com/special/eos/OnlineScanner.cab
FireFox:
========
FF ProfilePath: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\ofv7r74m.default [2016-11-10]
FF Homepage: Mozilla\Firefox\Profiles\ofv7r74m.default -> hxxp://www.seznam.cz/
FF Extension: (FireGestures) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\ofv7r74m.default\Extensions\firegestures@xuldev.org.xpi [2016-08-17]
FF Extension: (Google Translator for Firefox) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\ofv7r74m.default\Extensions\translator@zoli.bod.xpi [2016-04-27]
FF Extension: (gtranslate) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\ofv7r74m.default\Extensions\{aff87fa2-a58e-4edd-b852-0a20203c1e17}.xpi [2016-05-28]
FF Extension: (Adblock Plus) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\ofv7r74m.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-10-28]
FF Extension: (Seznam lištička) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\ofv7r74m.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2016-09-02]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_23_0_0_207.dll [2016-11-10] ()
FF Plugin: @garmin.com/GpsControl -> C:\Program Files\Garmin GPS Plugin\npGarmin.dll [2012-05-30] (GARMIN Corp.)
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2014-01-06] (Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-11-10] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-11-10] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin: @Nero.com/KM -> C:\PROGRA~1\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL [2015-10-23] (Nero AG)
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2014-02-08] (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2014-02-08] (NVIDIA Corporation)
FF Plugin: @software602.cz/602XML Filler -> C:\Program Files\Software602\602XML\Filler\npfiller.dll [2012-08-06] (Software602 a.s.)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR StartupUrls: Default -> "hxxps://www.google.cz/"
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\52.0.2743.116\PepperFlash\pepflashplayer.dll => No File
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\52.0.2743.116\ppGoogleNaClPluginChrome.dll => No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\52.0.2743.116\pdf.dll => No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll => No File
CHR Plugin: (Java Deployment Toolkit 6.0.290.11) - C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll => No File
CHR Plugin: (Java(TM) Platform SE 6 U29) - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll => No File
CHR Plugin: (Nero Kwik Media Helper) - C:\PROGRA~1\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (AVG SiteSafety plugin) - C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\14.2.0\\npsitesafety.dll => No File
CHR Plugin: (Garmin Communicator Plug-In) - C:\Program Files\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
CHR Plugin: (Picasa) - C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll => No File
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll => No File
CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default [2016-11-10]
CHR Extension: (Prezentace Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-09-02]
CHR Extension: (Dokumenty Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-07-12]
CHR Extension: (Disk Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-09-02]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2016-09-02]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2016-09-02]
CHR Extension: (YouTube) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-29]
CHR Extension: (Vyhledávání Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-07-12]
CHR Extension: (Tabulky Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-09-02]
CHR Extension: (Dokumenty Google offline) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-09-02]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-09-02]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2016-09-02]
CHR Extension: (Gmail) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-07-12]
CHR Extension: (Chrome Media Router) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-09-02]
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 602XML Updater; C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s.)
R2 avgfws; C:\Program Files\AVG\AVG2015\avgfws.exe [1563648 2016-04-21] (AVG Technologies CZ, s.r.o.)
R2 AVGIDSAgent; C:\Program Files\AVG\AVG2015\avgidsagent.exe [3647384 2016-04-21] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2015\avgwdsvc.exe [336152 2016-04-21] (AVG Technologies CZ, s.r.o.)
R2 cbVSCService11; C:\Program Files\Cobian Backup 11\cbVSCService11.exe [67584 2012-12-05] (CobianSoft, Luis Cobian) [File not signed]
R2 cgm.brevir-1; C:\CGMSERVER\bin\brevir-1\cgm.brevir-1.exe [260608 2016-10-24] () [File not signed]
R2 cgm.ebooking-1; C:\CGMSERVER\bin\ebooking-1\cgm.ebooking-1.exe [44944 2014-10-20] (Microsoft) [File not signed]
R2 cgm.ecommunication-1; C:\CGMSERVER\bin\ecommunication-1\cgm.ecommunication-1.exe [72800 2016-10-25] (CompuGroup Medical Česká republika s.r.o.)
R2 cgm.servercore; C:\CGMSERVER\bin\core\cgm.servercore.exe [54536 2016-04-20] (CGM)
R2 CobianBackup11; C:\Program Files\Cobian Backup 11\cbService.exe [1131008 2012-12-05] (Luis Cobian, CobianSoft) [File not signed]
R2 Garmin Device Interaction Service; C:\Program Files\Garmin\Device Interaction Service\GarminService.exe [985616 2016-10-25] (Garmin Ltd. or its subsidiaries)
S3 HCS.MedConnect.Service; C:\CGMSERVER\bin\medical-net\MedConnect\HCS.MedConnect.Service.exe [48528 2015-02-11] (HCS GmbH) [File not signed]
R2 HCS.MEDCONNECT.SERVICEMANAGER; C:\CGMSERVER\bin\medical-net\MedConnect.ServiceManager\HCS.MedConnect.ServiceManager.exe [87952 2015-02-11] (HCS GmbH) [File not signed]
R2 NAUpdate; C:\Program Files\Nero\Update\NASvc.exe [805752 2016-09-14] (Nero AG)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-01-08] (DEVGURU Co., LTD.)
R2 WDBackup; C:\Program Files\Western Digital\WD SmartWare\WDBackupEngine.exe [1042808 2014-06-02] (Western Digital Technologies, Inc.)
R2 WDDriveService; C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe [296312 2014-06-02] (Western Digital Technologies, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 Avgdiskx; C:\Windows\System32\DRIVERS\avgdiskx.sys [132576 2015-03-11] (AVG Technologies CZ, s.r.o.)
R1 Avgfwfd; C:\Windows\System32\DRIVERS\avgfwd6x.sys [68032 2015-07-09] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [252336 2015-12-16] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [223152 2016-01-13] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [31664 2015-11-25] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [234416 2015-12-16] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [290272 2015-05-07] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [193456 2016-01-22] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [35808 2015-03-20] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [230832 2015-08-04] (AVG Technologies CZ, s.r.o.)
S3 Dot4Scan; C:\Windows\System32\DRIVERS\Dot4Scan.sys [10752 2009-07-14] (Microsoft Corporation)
S3 ivusb; C:\Windows\System32\DRIVERS\ivusb.sys [25112 2010-03-10] (Initio Corporation)
S3 appliandMP; system32\DRIVERS\appliand.sys [X]
U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation)
S3 dgderdrv; System32\drivers\dgderdrv.sys [X]
S3 eapihdrv; \??\C:\Users\Admin\AppData\Local\Temp\ehdrv.sys [X]
S4 nvvad_WaveExtensible; system32\drivers\nvvad32v.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-11-10 14:35 - 2016-11-10 14:48 - 00000000 ____D C:\FRST
2016-11-10 14:21 - 2016-11-10 14:21 - 00095808 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2016-11-10 14:21 - 2016-11-10 14:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-11-10 14:13 - 2016-11-02 16:22 - 00308456 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2016-11-10 14:13 - 2016-11-02 16:16 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2016-11-10 14:13 - 2016-11-02 16:16 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2016-11-10 14:13 - 2016-11-02 16:16 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2016-11-10 14:13 - 2016-11-02 15:53 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2016-11-10 14:13 - 2016-10-28 04:14 - 00346320 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-11-10 14:13 - 2016-10-27 16:05 - 20304896 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-11-10 14:13 - 2016-10-27 15:16 - 00689664 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-11-10 14:13 - 2016-10-25 15:54 - 02399744 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-11-10 14:13 - 2016-10-22 18:54 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-11-10 14:13 - 2016-10-22 18:53 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-11-10 14:13 - 2016-10-22 18:36 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-11-10 14:13 - 2016-10-22 18:36 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-11-10 14:13 - 2016-10-22 18:35 - 00498688 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-11-10 14:13 - 2016-10-22 18:35 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-11-10 14:13 - 2016-10-22 18:34 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-11-10 14:13 - 2016-10-22 18:27 - 02287616 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-11-10 14:13 - 2016-10-22 18:27 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-11-10 14:13 - 2016-10-22 18:26 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-11-10 14:13 - 2016-10-22 18:22 - 00476160 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-11-10 14:13 - 2016-10-22 18:21 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-11-10 14:13 - 2016-10-22 18:21 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-11-10 14:13 - 2016-10-22 18:21 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-11-10 14:13 - 2016-10-22 18:20 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-11-10 14:13 - 2016-10-22 18:13 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-11-10 14:13 - 2016-10-22 18:09 - 00416256 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-11-10 14:13 - 2016-10-22 18:04 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-11-10 14:13 - 2016-10-22 18:03 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2016-11-10 14:13 - 2016-10-22 17:59 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-11-10 14:13 - 2016-10-22 17:58 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-11-10 14:13 - 2016-10-22 17:56 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-11-10 14:13 - 2016-10-22 17:54 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-11-10 14:13 - 2016-10-22 17:46 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-11-10 14:13 - 2016-10-22 17:45 - 00693248 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-11-10 14:13 - 2016-10-22 17:44 - 04608000 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-11-10 14:13 - 2016-10-22 17:43 - 02055680 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-11-10 14:13 - 2016-10-22 17:43 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-11-10 14:13 - 2016-10-22 17:30 - 13654016 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-11-10 14:13 - 2016-10-22 17:12 - 02444800 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-11-10 14:13 - 2016-10-22 17:09 - 01312256 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-11-10 14:13 - 2016-10-22 17:09 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-11-10 14:13 - 2016-10-15 16:13 - 00741888 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2016-11-10 14:13 - 2016-10-15 16:13 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\INETRES.dll
2016-11-10 14:13 - 2016-10-11 16:24 - 00250600 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2016-11-10 14:13 - 2016-10-11 16:18 - 01027584 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10.IME
2016-11-10 14:13 - 2016-10-11 16:18 - 00829952 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2016-11-10 14:13 - 2016-10-11 16:18 - 00701440 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2016-11-10 14:13 - 2016-10-11 16:18 - 00430080 _____ (Microsoft Corporation) C:\Windows\system32\imkr80.ime
2016-11-10 14:13 - 2016-10-11 16:18 - 00202240 _____ (Microsoft Corporation) C:\Windows\system32\input.dll
2016-11-10 14:13 - 2016-10-11 16:18 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\tintlgnt.ime
2016-11-10 14:13 - 2016-10-11 16:18 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\quick.ime
2016-11-10 14:13 - 2016-10-11 16:18 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\qintlgnt.ime
2016-11-10 14:13 - 2016-10-11 16:18 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\phon.ime
2016-11-10 14:13 - 2016-10-11 16:18 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\chajei.ime
2016-11-10 14:13 - 2016-10-11 16:18 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\cintlgnt.ime
2016-11-10 14:13 - 2016-10-11 16:18 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\pintlgnt.ime
2016-11-10 14:13 - 2016-10-11 14:33 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2016-11-10 14:13 - 2016-10-10 16:21 - 00137960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-11-10 14:13 - 2016-10-10 16:21 - 00067304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-11-10 14:13 - 2016-10-10 16:16 - 01062912 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-11-10 14:13 - 2016-10-10 16:16 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-11-10 14:13 - 2016-10-10 16:16 - 00655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-11-10 14:13 - 2016-10-10 16:16 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-11-10 14:13 - 2016-10-10 16:16 - 00261120 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-11-10 14:13 - 2016-10-10 16:16 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-11-10 14:13 - 2016-10-10 16:16 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-11-10 14:13 - 2016-10-10 16:16 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-11-10 14:13 - 2016-10-10 16:16 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-11-10 14:13 - 2016-10-10 16:16 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2016-11-10 14:13 - 2016-10-10 16:16 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-11-10 14:13 - 2016-10-10 16:16 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-11-10 14:13 - 2016-10-10 16:16 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-11-10 14:13 - 2016-10-10 16:16 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-11-10 14:13 - 2016-10-10 16:16 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-11-10 14:13 - 2016-10-10 15:54 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-11-10 14:13 - 2016-10-10 15:50 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-11-10 14:13 - 2016-10-10 15:50 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-11-10 14:13 - 2016-10-10 15:50 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-11-10 14:13 - 2016-10-10 15:50 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-11-10 14:13 - 2016-10-10 15:50 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-11-10 14:13 - 2016-10-10 15:50 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-11-10 14:13 - 2016-10-07 16:18 - 04000488 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2016-11-10 14:13 - 2016-10-07 16:18 - 03944680 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-11-10 14:13 - 2016-10-07 16:15 - 01310528 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-11-10 14:13 - 2016-10-07 16:12 - 02291712 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2016-11-10 14:13 - 2016-10-07 16:12 - 00644096 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-11-10 14:13 - 2016-10-07 16:12 - 00581632 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2016-11-10 14:13 - 2016-10-07 16:12 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-11-10 14:13 - 2016-10-07 16:12 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\olepro32.dll
2016-11-10 14:13 - 2016-10-07 16:12 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2016-11-10 14:13 - 2016-10-07 16:12 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2016-11-10 14:13 - 2016-10-07 16:12 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2016-11-10 14:13 - 2016-10-07 16:12 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-11-10 14:13 - 2016-10-07 16:12 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-11-10 14:13 - 2016-10-07 16:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-11-10 14:13 - 2016-10-07 15:54 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2016-11-10 14:13 - 2016-10-07 15:54 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2016-11-10 14:13 - 2016-10-07 15:54 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2016-11-10 14:13 - 2016-10-07 15:54 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2016-11-10 14:13 - 2016-10-07 15:51 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-11-10 14:13 - 2016-10-07 15:49 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-11-10 14:13 - 2016-10-05 15:50 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2016-11-10 14:13 - 2016-09-15 15:51 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2016-11-10 14:13 - 2016-09-13 16:11 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2016-11-10 14:13 - 2016-09-09 19:00 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2016-11-10 14:13 - 2016-08-21 14:05 - 00935424 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2016-11-10 14:01 - 2016-11-10 14:01 - 00000000 ____D C:\Users\Admin\AppData\Local\{B73DF40E-1904-4B61-9658-E6C9662C9B63}
2016-11-09 15:04 - 2016-11-09 15:04 - 00000000 ____D C:\Users\Admin\AppData\Local\{7811C825-601D-4E52-AB47-D5C14D8BFC33}
2016-11-08 22:03 - 2016-11-08 22:03 - 00000000 ____D C:\Users\Admin\AppData\Local\{87610BD5-E05E-4241-8483-5CA8ED93AD49}
2016-11-08 15:22 - 2016-11-10 14:48 - 00000000 ____D C:\Users\Admin\Documents\K VIRŮM
2016-11-08 09:41 - 2016-11-08 09:41 - 00000000 ____D C:\Users\Admin\AppData\Local\{43E38692-0CEF-4370-9E09-5A630B5D03B3}
2016-11-07 13:45 - 2016-11-07 13:45 - 00000000 ____D C:\Users\Admin\AppData\Local\{C0C10348-20BA-4783-915F-4A9787467347}
2016-11-07 13:27 - 2016-11-08 14:43 - 00000000 ____D C:\rsit
2016-11-06 17:43 - 2016-11-06 17:43 - 00000000 ____D C:\Users\Admin\AppData\Local\{BC74D47E-5FB7-497A-A4E5-F0575FD5D656}
2016-11-04 10:16 - 2016-11-04 10:16 - 00000000 ____D C:\Users\Admin\AppData\Local\{FD5C2C13-A59D-485A-A402-1B6B34FAB435}
2016-11-03 14:44 - 2016-11-03 14:44 - 00000000 ____D C:\Users\Admin\AppData\Local\{F4B51C1F-575B-4280-80DB-9B10BC4D0019}
2016-11-02 17:19 - 2016-11-02 17:19 - 00000000 ____D C:\Users\Admin\AppData\Local\{E07966B3-B8C0-45D8-BB81-5D3CD301E9F4}
2016-10-31 14:12 - 2016-10-31 14:12 - 00000000 ____D C:\Users\Admin\AppData\Local\{66241F8C-A838-41F0-B4EC-2C5A6E897C10}
2016-10-30 12:50 - 2016-10-30 12:50 - 00000000 ____D C:\Users\Admin\AppData\Local\{38EE0BC0-7DAD-4C62-808D-D8D3C58A3518}
2016-10-28 16:24 - 2016-10-28 16:24 - 00000000 ____D C:\Users\Admin\AppData\Local\{5A134410-0243-46E4-A280-6A65EF930B43}
2016-10-27 15:10 - 2016-10-27 15:10 - 00000000 ____D C:\Users\Admin\AppData\Local\{DCF365E6-8570-4CDB-84E7-1D430C116888}
2016-10-26 19:12 - 2016-10-26 19:12 - 00000000 ____D C:\Users\Admin\AppData\Local\{D217875B-F875-4CD5-B843-E52451E764DF}
2016-10-25 12:28 - 2016-10-25 12:28 - 00000000 ____D C:\Users\Admin\AppData\Local\{8E41F6FF-C7FC-4A79-A8C8-C0ED9F50DA82}
2016-10-24 13:24 - 2016-10-24 13:24 - 00000000 ____D C:\Users\Admin\AppData\Local\{41D482D6-1A2C-427E-80F8-0E0D8DFC5E71}
2016-10-23 15:10 - 2016-10-23 15:10 - 00000000 ____D C:\Users\Admin\AppData\Local\{9B9FA7B6-9C4B-45F5-96F7-B1BA2B7446E0}
2016-10-22 14:10 - 2016-10-22 14:10 - 00000000 ____D C:\Users\Admin\AppData\Local\{D253738C-28D5-463F-9B0E-DAF198A1BBEC}
2016-10-21 15:06 - 2016-10-21 15:06 - 00000000 ____D C:\Program Files\Mozilla Firefox
2016-10-21 09:33 - 2016-10-21 09:33 - 00000000 ____D C:\Users\Admin\AppData\Local\{771F1101-244A-4469-A17B-0C4139C51794}
2016-10-20 09:13 - 2016-10-20 09:13 - 00000000 ____D C:\Users\Admin\AppData\Local\{CE5A20BA-1032-42CD-BB42-1364346AC531}
2016-10-19 10:48 - 2016-10-19 10:48 - 00000000 ____D C:\Users\Admin\AppData\Local\{41B5C005-431D-40AC-9B4A-CA51825171EF}
2016-10-19 10:41 - 2016-07-22 15:51 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2016-10-18 15:21 - 2016-10-18 15:21 - 00000000 ____D C:\Users\Admin\AppData\Local\{CA7BD1D0-9E41-4314-B3D7-E760073D3945}
2016-10-17 10:56 - 2016-10-17 10:56 - 00000000 ____D C:\Users\Admin\AppData\Local\{AE37B276-7D0E-4E23-B9DB-A1591944147A}
2016-10-16 17:51 - 2016-10-16 17:51 - 00000000 ____D C:\Users\Admin\AppData\Local\{6BB1564E-2348-47EA-98D1-D0636DED7CC9}
2016-10-14 10:06 - 2016-10-14 10:06 - 00000000 ____D C:\Users\Admin\AppData\Local\{132D3AB6-3D2E-4FCD-B52A-6F110EB04F26}
2016-10-13 16:20 - 2016-09-12 21:54 - 00067816 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-10-13 16:20 - 2016-09-12 21:49 - 01017856 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-10-13 16:20 - 2016-09-12 21:49 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\adsmsext.dll
2016-10-13 16:20 - 2016-09-12 20:08 - 01251328 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2016-10-13 16:20 - 2016-09-12 20:08 - 00909824 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2016-10-13 16:20 - 2016-09-09 16:53 - 01406976 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-10-13 16:20 - 2016-09-09 16:53 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-10-13 16:20 - 2016-09-09 16:53 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-10-13 16:20 - 2016-09-09 16:53 - 00268800 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-10-13 16:20 - 2016-09-09 16:53 - 00213504 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2016-10-13 16:20 - 2016-09-09 16:53 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-10-13 16:20 - 2016-09-09 16:53 - 00107008 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-10-13 16:20 - 2016-09-08 21:34 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2016-10-13 16:20 - 2016-09-08 21:34 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2016-10-13 16:20 - 2016-09-08 15:49 - 00117248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2016-10-13 16:20 - 2016-09-08 15:49 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2016-10-13 16:20 - 2016-08-29 16:12 - 12880384 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-10-13 16:20 - 2016-08-29 16:12 - 01806848 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-10-13 16:20 - 2016-08-29 16:12 - 01499648 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2016-10-13 16:20 - 2016-08-29 15:55 - 02972672 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2016-10-13 16:20 - 2016-08-16 19:47 - 00419640 _____ C:\Windows\system32\locale.nls
2016-10-13 16:20 - 2016-08-12 17:47 - 12574208 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2016-10-13 16:20 - 2016-08-12 17:47 - 11410432 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-10-13 16:20 - 2016-08-12 17:31 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2016-10-13 16:20 - 2016-08-12 17:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2016-10-13 16:20 - 2016-08-12 17:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2016-10-13 16:20 - 2016-08-12 17:21 - 00437248 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2016-10-13 16:20 - 2016-08-06 16:15 - 01178112 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2016-10-13 16:20 - 2016-08-06 16:15 - 00249344 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2016-10-13 16:20 - 2016-08-06 16:15 - 00214016 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2016-10-13 16:20 - 2016-08-06 16:15 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2016-10-13 16:20 - 2016-08-06 16:15 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\WsmRes.dll
2016-10-13 16:20 - 2016-08-06 15:53 - 00199168 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2016-10-13 16:20 - 2016-08-06 15:53 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wsmprovhost.exe
2016-10-13 16:20 - 2016-08-06 15:53 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\wsmplpxy.dll
2016-10-13 16:20 - 2016-06-14 16:25 - 00078568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2016-10-13 16:20 - 2016-06-14 16:21 - 03209216 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 01329664 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 01176064 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 01005056 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00988160 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00744960 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00617984 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00519680 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00474624 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00442368 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00406016 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00374784 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00354816 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00265216 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00195072 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00179200 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00157184 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00103424 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2016-10-13 16:20 - 2016-06-14 16:17 - 00593920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2016-10-13 16:20 - 2016-06-14 16:05 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2016-10-13 16:20 - 2016-06-14 16:05 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2016-10-13 16:20 - 2016-06-14 16:05 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2016-10-13 16:20 - 2016-06-14 16:00 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2016-10-13 16:20 - 2016-06-14 15:55 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe
2016-10-13 16:20 - 2016-06-14 15:55 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2016-10-13 16:20 - 2016-06-14 15:54 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2016-10-13 16:18 - 2016-08-16 21:27 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2016-10-13 16:18 - 2016-08-16 21:27 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2016-10-13 16:18 - 2016-08-16 21:26 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2016-10-13 16:18 - 2016-08-16 21:26 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2016-10-13 16:18 - 2016-08-16 21:26 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2016-10-13 16:18 - 2016-08-16 21:26 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2016-10-13 16:18 - 2016-08-16 21:26 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2016-10-13 15:40 - 2016-10-13 15:40 - 00000000 ____D C:\Users\Admin\AppData\Local\{0C7FAC83-E655-4BC9-9A64-48803905B6DD}
2016-10-12 14:28 - 2016-10-12 14:28 - 00000000 ____D C:\Users\Admin\AppData\Local\{A98DBA2E-F079-4C1C-9040-6E8D59E0F3B8}
2016-10-11 13:04 - 2016-10-11 13:04 - 00000000 ____D C:\Users\Admin\AppData\Local\{B0D946BB-0336-4D28-ACA9-A4DBEB21E1BE}
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-11-10 14:48 - 2009-07-14 05:34 - 00023568 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-11-10 14:48 - 2009-07-14 05:34 - 00023568 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-11-10 14:46 - 2013-08-15 14:40 - 00000000 ____D C:\ProgramData\MFAData
2016-11-10 14:40 - 2014-06-20 14:09 - 00008192 _____ C:\Windows\system32\WDPABKP.dat
2016-11-10 14:40 - 2014-04-04 14:44 - 00000000 ____D C:\ProgramData\NVIDIA
2016-11-10 14:40 - 2013-07-16 07:27 - 00000936 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-11-10 14:40 - 2012-08-19 10:19 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-11-10 14:40 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-11-10 14:37 - 2011-02-16 16:31 - 00000000 ____D C:\Users\Admin\AppData\LocalLow\Temp
2016-11-10 14:32 - 2009-11-24 10:26 - 01593150 _____ C:\Windows\system32\PerfStringBackup.INI
2016-11-10 14:32 - 2009-07-14 09:44 - 00672136 _____ C:\Windows\system32\perfh005.dat
2016-11-10 14:32 - 2009-07-14 09:44 - 00142732 _____ C:\Windows\system32\perfc005.dat
2016-11-10 14:32 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\inf
2016-11-10 14:31 - 2014-06-29 13:40 - 00000000 ____D C:\Users\Admin\AppData\Local\Adobe
2016-11-10 14:31 - 2012-04-09 09:18 - 00796352 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2016-11-10 14:31 - 2011-06-01 16:48 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2016-11-10 14:31 - 2010-11-16 15:01 - 00000000 ____D C:\Windows\system32\Macromed
2016-11-10 14:25 - 2009-07-14 05:33 - 00411768 _____ C:\Windows\system32\FNTCACHE.DAT
2016-11-10 14:23 - 2013-07-16 07:27 - 00000940 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-11-10 14:22 - 2014-03-06 15:05 - 00000000 ____D C:\ProgramData\Oracle
2016-11-10 14:22 - 2013-07-11 13:48 - 00000000 ____D C:\Windows\system32\MRT
2016-11-10 14:21 - 2010-11-16 20:06 - 00000000 ____D C:\Program Files\Java
2016-11-10 14:15 - 2009-11-24 13:38 - 138444440 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-11-10 14:09 - 2013-03-30 10:01 - 00000000 ___RD C:\Program Files\Skype
2016-11-10 14:09 - 2013-03-30 10:01 - 00000000 ____D C:\ProgramData\Skype
2016-11-10 14:04 - 2015-04-15 15:27 - 00004606 _____ C:\NBDBList.ini
2016-11-10 13:58 - 2016-02-08 15:40 - 00000000 ____D C:\ALFIS16J
2016-11-10 13:56 - 2014-09-23 13:14 - 00000000 ____D C:\Program Files\Dialog MIS
2016-11-10 12:05 - 2010-11-18 17:03 - 00000000 ____D C:\Users\Admin\Documents\Soubory aplikace Outlook
2016-11-08 17:27 - 2012-09-24 15:43 - 00000969 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-11-08 17:25 - 2012-04-14 09:15 - 00000000 ____D C:\Users\Admin\AppData\Local\CrashDumps
2016-11-07 22:11 - 2012-09-29 09:59 - 00000000 ____D C:\temp
2016-11-07 13:29 - 2014-03-04 18:18 - 00000000 ____D C:\Program Files\trend micro
2016-11-06 16:54 - 2010-11-16 19:20 - 00000000 ____D C:\BATCH
2016-11-06 16:24 - 2010-11-19 14:03 - 00000000 ____D C:\VYPAL
2016-11-06 16:13 - 2013-01-29 18:39 - 00000000 ____D C:\Users\Admin\AppData\Roaming\vlc
2016-11-06 16:12 - 2015-11-08 17:03 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-11-05 10:20 - 2013-02-18 17:54 - 00000000 ____D C:\ProgramData\Package Cache
2016-11-05 10:20 - 2012-08-23 14:46 - 00000000 ____D C:\Program Files\Garmin
2016-11-05 10:19 - 2015-08-21 13:15 - 00001860 _____ C:\Users\Public\Desktop\Garmin Express.lnk
2016-11-05 10:19 - 2012-08-23 14:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin
2016-11-05 10:18 - 2010-11-16 18:46 - 00000000 ____D C:\Program Files\IDOS
2016-10-31 18:35 - 2011-02-04 21:17 - 00000000 ____D C:\MP3
2016-10-26 19:15 - 2011-02-08 18:20 - 00000000 ____D C:\S W
2016-10-26 15:51 - 2013-12-23 17:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CompuGroup Medical
2016-10-26 15:49 - 2013-07-29 12:58 - 00000000 ____D C:\CGMSERVER
2016-10-25 12:24 - 2013-02-26 20:11 - 00002141 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-10-25 12:24 - 2013-02-26 20:11 - 00002129 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-10-24 13:53 - 2010-11-17 10:01 - 00000000 ____D C:\FOTOGRAFIE
2016-10-24 08:21 - 2010-11-22 14:22 - 00000000 ____D C:\Users\Admin\AppData\Local\ElevatedDiagnostics
2016-10-21 18:54 - 2014-04-15 13:58 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2016-10-21 15:05 - 2015-12-24 15:21 - 00000000 ____D C:\Users\Admin\AppData\Roaming\YouTube Downloader
2016-10-14 08:30 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\rescache
2016-10-14 06:43 - 2009-07-14 05:46 - 00001515 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-10-13 18:34 - 2010-11-19 17:48 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-10-13 16:43 - 2014-12-10 17:36 - 00000000 ____D C:\Windows\system32\appraiser
2016-10-13 16:43 - 2014-04-23 15:58 - 00000000 ___SD C:\Windows\system32\CompatTel
2016-10-13 16:43 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system32\Dism
2016-10-13 16:26 - 2010-11-17 14:58 - 00000000 ____D C:\Program Files\rajce
2016-10-13 16:22 - 2010-11-19 17:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
==================== Files in the root of some directories =======
2015-01-24 10:13 - 2015-01-24 10:23 - 2171392 _____ () C:\Users\Admin\AppData\Roaming\bfldb.dll
2015-01-24 10:13 - 2015-01-24 10:23 - 2248704 _____ () C:\Users\Admin\AppData\Roaming\bfldongle.dll
2015-01-24 10:13 - 2015-01-24 10:23 - 2265088 _____ () C:\Users\Admin\AppData\Roaming\bfluart.dll
2015-01-24 10:13 - 2015-01-24 10:23 - 2416640 _____ () C:\Users\Admin\AppData\Roaming\bflusb.dll
2015-01-24 10:13 - 2015-01-24 10:23 - 0004366 _____ () C:\Users\Admin\AppData\Roaming\C
2014-01-03 17:22 - 2014-01-03 17:22 - 0087608 _____ () C:\Users\Admin\AppData\Roaming\inst.exe
2009-11-25 10:37 - 2014-01-03 17:22 - 0007887 _____ () C:\Users\Admin\AppData\Roaming\pcouffin.cat
2009-11-25 10:37 - 2014-01-03 17:22 - 0001144 _____ () C:\Users\Admin\AppData\Roaming\pcouffin.inf
2009-11-25 10:37 - 2014-01-03 17:22 - 0000055 _____ () C:\Users\Admin\AppData\Roaming\pcouffin.log
2009-11-25 10:37 - 2014-01-03 17:22 - 0047360 _____ (VSO Software) C:\Users\Admin\AppData\Roaming\pcouffin.sys
2010-11-16 22:37 - 2010-11-16 22:37 - 0000022 ___SH () C:\Users\Admin\AppData\Roaming\Sys6925.Config Collection.sys
2010-11-23 14:44 - 2012-06-04 13:07 - 0005120 _____ () C:\Users\Admin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-08-31 21:26 - 2012-08-31 21:26 - 0027520 _____ () C:\Users\Admin\AppData\Local\dt.dat
2010-11-22 14:20 - 2012-10-22 15:59 - 0007608 _____ () C:\Users\Admin\AppData\Local\resmon.resmoncfg
2013-06-21 15:26 - 2013-06-21 16:24 - 0000000 _____ () C:\ProgramData\g252qs.txt
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-11-04 08:31
==================== End of FRST.txt ============================
Děkuji
Fix result of Farbar Recovery Scan Tool (x86) Version: 06-11-2016
Ran by Admin (10-11-2016 14:36:07) Run:1
Running from C:\Users\Admin\Documents\K VIRŮM
Loaded Profiles: Admin (Available Profiles: Admin)
Boot Mode: Normal
==============================================
fixlist content:
*****************
START
CreateRestorePoint:
EmptyTemp:
CloseProcesses:
Hosts:
File: C:\Windows\Scafea.exe
Folder: C:\Users\Admin\AppData\Local\{CA7BD1D0-9E41-4314-B3D7-E760073D3945}
AppInit_DLLs: d0 => No File
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - No File
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - No File
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\52.0.2743.116\PepperFlash\pepflashplayer.dll => No File
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\52.0.2743.116\ppGoogleNaClPluginChrome.dll => No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\52.0.2743.116\pdf.dll => No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll => No File
CHR Plugin: (Java Deployment Toolkit 6.0.290.11) - C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll => No File
CHR Plugin: (Java(TM) Platform SE 6 U29) - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll => No File
CHR Plugin: (AVG SiteSafety plugin) - C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\14.2.0\\npsitesafety.dll => No File
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll => No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll => No File
Task: {F9EDAEB5-8904-4BEC-923B-F675B80D5F43} - System32\Tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C} => C:\Windows\Scafea.exe
Task: {396363E6-AE80-4AA2-97D5-1626084A597B} - System32\Tasks\{6A799F9A-8C56-4D78-B00A-8DAA57E89163} => pcalua.exe -a "C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4HK672CE\doktor-setupsfx[1].exe" -d "C:\Program Files\Dialog MIS"
Task: {BDCA8E3E-3F06-472C-810A-9491B656F1D2} - System32\Tasks\{69D05509-C9ED-4103-88A4-57F8F3924D55} => pcalua.exe -a "C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\REICC82S\IE7ProSetup_2.5.1[1].exe" -d C:\Users\Admin\Desktop
Task: {CA013DCE-C188-4850-A559-A6D0125BABF3} - System32\Tasks\{A8E0F5CE-C126-4B44-AB0A-2BCD373EB53B} => pcalua.exe -a C:\Users\Admin\AppData\Local\temp\IXP000.TMP\setup.exe -d C:\Users\Admin\AppData\Local\temp\IXP000.TMP <==== ATTENTION
AlternateDataStreams: C:\ProgramData\TEMP:0B4227B4 [124]
END
*****************
Restore point was successfully created.
Processes closed successfully.
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
========================= File: C:\Windows\Scafea.exe ========================
"C:\Windows\Scafea.exe" => not found.
====== End of File: ======
========================= Folder: C:\Users\Admin\AppData\Local\{CA7BD1D0-9E41-4314-B3D7-E760073D3945} ========================
====== End of Folder: ======
"d0" => Value data not found.
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully.
"HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully.
"HKCR\PROTOCOLS\Handler\livecall" => key removed successfully.
HKCR\CLSID\{828030A1-22C1-4009-854F-8E305202313F} => key not found.
"HKCR\PROTOCOLS\Handler\msnim" => key removed successfully.
HKCR\CLSID\{828030A1-22C1-4009-854F-8E305202313F} => key not found.
"HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => key removed successfully.
C:\Program Files\Google\Chrome\Application\52.0.2743.116\PepperFlash\pepflashplayer.dll => not found.
C:\Program Files\Google\Chrome\Application\52.0.2743.116\ppGoogleNaClPluginChrome.dll => not found.
C:\Program Files\Google\Chrome\Application\52.0.2743.116\pdf.dll => not found.
C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll => not found.
C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll => not found.
C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll => not found.
C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\14.2.0\\npsitesafety.dll => not found.
C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll => not found.
c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll => not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F9EDAEB5-8904-4BEC-923B-F675B80D5F43}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F9EDAEB5-8904-4BEC-923B-F675B80D5F43}" => key removed successfully.
C:\Windows\System32\Tasks\{35DC3473-A719-4d14-B7C1-FD326CA84A0C} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{35DC3473-A719-4d14-B7C1-FD326CA84A0C}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{396363E6-AE80-4AA2-97D5-1626084A597B}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{396363E6-AE80-4AA2-97D5-1626084A597B}" => key removed successfully.
C:\Windows\System32\Tasks\{6A799F9A-8C56-4D78-B00A-8DAA57E89163} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{6A799F9A-8C56-4D78-B00A-8DAA57E89163}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BDCA8E3E-3F06-472C-810A-9491B656F1D2}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BDCA8E3E-3F06-472C-810A-9491B656F1D2}" => key removed successfully.
C:\Windows\System32\Tasks\{69D05509-C9ED-4103-88A4-57F8F3924D55} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{69D05509-C9ED-4103-88A4-57F8F3924D55}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CA013DCE-C188-4850-A559-A6D0125BABF3}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CA013DCE-C188-4850-A559-A6D0125BABF3}" => key removed successfully.
C:\Windows\System32\Tasks\{A8E0F5CE-C126-4B44-AB0A-2BCD373EB53B} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{A8E0F5CE-C126-4B44-AB0A-2BCD373EB53B}" => key removed successfully.
C:\ProgramData\TEMP => ":0B4227B4" ADS removed successfully..
=========== EmptyTemp: ==========
BITS transfer queue => 8388608 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 22990054 B
Java, Flash, Steam htmlcache => 734 B
Windows/system/drivers => 455750 B
Edge => 0 B
Chrome => 296960 B
Firefox => 37105108 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 39814 B
Public => 0 B
ProgramData => 0 B
systemprofile => 85179 B
LocalService => 132244 B
NetworkService => 66868 B
Admin => 235288211 B
UpdatusUser => 0 B
RecycleBin => 26927 B
EmptyTemp: => 290.8 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 14:38:39 ====
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 06-11-2016
Ran by Admin (administrator) on ADMIN-PC (10-11-2016 14:48:17)
Running from C:\Users\Admin\Documents\K VIRŮM
Loaded Profiles: Admin (Available Profiles: Admin)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: IE)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgrsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgcsrvx.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Software602 a.s.) C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgfws.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgwdsvc.exe
(CobianSoft, Luis Cobian) C:\Program Files\Cobian Backup 11\cbVSCService11.exe
(Microsoft) C:\CGMSERVER\bin\ebooking-1\cgm.ebooking-1.exe
(Luis Cobian, CobianSoft) C:\Program Files\Cobian Backup 11\cbService.exe
(Garmin Ltd. or its subsidiaries) C:\Program Files\Garmin\Device Interaction Service\GarminService.exe
(Western Digital Technologies, Inc.) C:\Program Files\Western Digital\WD Quick View\WDDMStatus.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
(Luis Cobian, CobianSoft) C:\Program Files\Cobian Backup 11\cbInterface.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgui.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Samsung) C:\Program Files\Samsung\Kies\Kies.exe
(Samsung) C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
(Garmin Ltd. or its subsidiaries) C:\Program Files\Garmin\Express Tray\ExpressTray.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgnsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2015\avgemcx.exe
(DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Western Digital Technologies, Inc.) C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
(HCS GmbH) C:\CGMSERVER\bin\medical-net\MedConnect.ServiceManager\HCS.MedConnect.ServiceManager.exe
(Microsoft Corp.) C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
(Western Digital Technologies, Inc.) C:\Program Files\Western Digital\WD SmartWare\WDBackupEngine.exe
(CGM) C:\CGMSERVER\bin\core\cgm.servercore.exe
(ZONER software) C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTray.exe
(Oracle Corporation) C:\CGMSERVER\jre\bin\java.exe
(Microsoft Corporation) C:\Windows\System32\cmd.exe
(PostgreSQL Global Development Group) C:\CGMSERVER\bin\pgsql\bin\postgres.exe
(PostgreSQL Global Development Group) C:\CGMSERVER\bin\pgsql\bin\postgres.exe
(PostgreSQL Global Development Group) C:\CGMSERVER\bin\pgsql\bin\postgres.exe
(PostgreSQL Global Development Group) C:\CGMSERVER\bin\pgsql\bin\postgres.exe
(PostgreSQL Global Development Group) C:\CGMSERVER\bin\pgsql\bin\postgres.exe
(PostgreSQL Global Development Group) C:\CGMSERVER\bin\pgsql\bin\postgres.exe
() C:\CGMSERVER\bin\brevir-1\cgm.brevir-1.exe
(CompuGroup Medical Česká republika s.r.o.) C:\CGMSERVER\bin\ecommunication-1\cgm.ecommunication-1.exe
(PostgreSQL Global Development Group) C:\CGMSERVER\bin\pgsql\bin\postgres.exe
(PostgreSQL Global Development Group) C:\CGMSERVER\bin\pgsql\bin\postgres.exe
(Microsoft Corporation) C:\Program Files\Windows Live\Mail\wlmail.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\Windows Live\Contacts\wlcomm.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Nero AG) C:\Program Files\Nero\Update\NASvc.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [WD Quick View] => C:\Program Files\Western Digital\WD Quick View\WDDMStatus.exe [5563760 2014-06-02] (Western Digital Technologies, Inc.)
HKLM\...\Run: [KiesTrayAgent] => C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [318248 2016-01-08] (Samsung Electronics Co., Ltd.)
HKLM\...\Run: [Cobian Backup 11 interface] => C:\Program Files\Cobian Backup 11\cbInterface.exe [4407808 2012-12-05] (Luis Cobian, CobianSoft)
HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\AVG2015\avgui.exe [3820440 2016-04-21] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\...\Run: [KiesPreload] => C:\Program Files\Samsung\Kies\Kies.exe [1572648 2016-01-08] (Samsung)
HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\...\Run: [KiesPDLR.exe] => C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [1021736 2016-01-08] (Samsung)
HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\...\Run: [GarminExpressTrayApp] => C:\Program Files\Garmin\Express Tray\ExpressTray.exe [1407912 2016-10-25] (Garmin Ltd. or its subsidiaries)
HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\...\Run: [Zoner Photo Studio Autoupdate] => C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXE [833240 2014-12-23] (ZONER software)
HKU\S-1-5-18\...\Run: [GarminExpressTrayApp] => C:\Program Files\Garmin\Express Tray\ExpressTray.exe [1407912 2016-10-25] (Garmin Ltd. or its subsidiaries)
AppInit_DLLs: d0 => No File
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{AAB8EADF-2FEB-44F4-BB3B-F04B63C36168}: [DhcpNameServer] 10.0.0.138
Internet Explorer:
==================
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/
HKU\S-1-5-21-3551886561-2034735683-3825333376-1001\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com/ie
SearchScopes: HKU\S-1-5-21-3551886561-2034735683-3825333376-1001 -> DefaultScope {80B005AD-673F-40D8-9611-CADFE4D9B452} URL = hxxp://www.google.cz/search?q={searchTerms}&rl ... {startPage}
SearchScopes: HKU\S-1-5-21-3551886561-2034735683-3825333376-1001 -> {0D2B5428-BE2B-4A8F-9BF1-E638CF0D9F97} URL = hxxp://cs.wikipedia.org/w/index.php?title=Speci%C3%A1ln%C3%AD:Hled%C3%A1n%C3%AD&search={searchTerms}
SearchScopes: HKU\S-1-5-21-3551886561-2034735683-3825333376-1001 -> {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL =
SearchScopes: HKU\S-1-5-21-3551886561-2034735683-3825333376-1001 -> {80B005AD-673F-40D8-9611-CADFE4D9B452} URL = hxxp://www.google.cz/search?q={searchTerms}&rl ... {startPage}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_111\bin\ssv.dll [2016-11-10] (Oracle Corporation)
BHO: CHelper Class -> {99A7C4DD-B2E6-4CA0-BB6E-737A61364155} -> C:\Program Files\Eurotran 2003\e2003i.dll [2013-06-23] ()
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-12-21] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-11-10] (Oracle Corporation)
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} hxxp://download.eset.com/special/eos/OnlineScanner.cab
FireFox:
========
FF ProfilePath: C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\ofv7r74m.default [2016-11-10]
FF Homepage: Mozilla\Firefox\Profiles\ofv7r74m.default -> hxxp://www.seznam.cz/
FF Extension: (FireGestures) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\ofv7r74m.default\Extensions\firegestures@xuldev.org.xpi [2016-08-17]
FF Extension: (Google Translator for Firefox) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\ofv7r74m.default\Extensions\translator@zoli.bod.xpi [2016-04-27]
FF Extension: (gtranslate) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\ofv7r74m.default\Extensions\{aff87fa2-a58e-4edd-b852-0a20203c1e17}.xpi [2016-05-28]
FF Extension: (Adblock Plus) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\ofv7r74m.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-10-28]
FF Extension: (Seznam lištička) - C:\Users\Admin\AppData\Roaming\Mozilla\Firefox\Profiles\ofv7r74m.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2016-09-02]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_23_0_0_207.dll [2016-11-10] ()
FF Plugin: @garmin.com/GpsControl -> C:\Program Files\Garmin GPS Plugin\npGarmin.dll [2012-05-30] (GARMIN Corp.)
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2014-01-06] (Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-11-10] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-11-10] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=15.4.3555.0308 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2012-03-08] (Microsoft Corporation)
FF Plugin: @Nero.com/KM -> C:\PROGRA~1\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL [2015-10-23] (Nero AG)
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2014-02-08] (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2014-02-08] (NVIDIA Corporation)
FF Plugin: @software602.cz/602XML Filler -> C:\Program Files\Software602\602XML\Filler\npfiller.dll [2012-08-06] (Software602 a.s.)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR StartupUrls: Default -> "hxxps://www.google.cz/"
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\52.0.2743.116\PepperFlash\pepflashplayer.dll => No File
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\52.0.2743.116\ppGoogleNaClPluginChrome.dll => No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\52.0.2743.116\pdf.dll => No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll => No File
CHR Plugin: (Java Deployment Toolkit 6.0.290.11) - C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll => No File
CHR Plugin: (Java(TM) Platform SE 6 U29) - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll => No File
CHR Plugin: (Nero Kwik Media Helper) - C:\PROGRA~1\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation)
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (AVG SiteSafety plugin) - C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\14.2.0\\npsitesafety.dll => No File
CHR Plugin: (Garmin Communicator Plug-In) - C:\Program Files\Garmin GPS Plugin\npGarmin.dll (GARMIN Corp.)
CHR Plugin: (Picasa) - C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll => No File
CHR Plugin: (NVIDIA 3D Vision) - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
CHR Plugin: (NVIDIA 3D VISION) - C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
CHR Plugin: (Windows Live Photo Gallery) - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll => No File
CHR Profile: C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default [2016-11-10]
CHR Extension: (Prezentace Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-09-02]
CHR Extension: (Dokumenty Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-07-12]
CHR Extension: (Disk Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-09-02]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2016-09-02]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2016-09-02]
CHR Extension: (YouTube) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-29]
CHR Extension: (Vyhledávání Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-07-12]
CHR Extension: (Tabulky Google) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-09-02]
CHR Extension: (Dokumenty Google offline) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-09-02]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-09-02]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2016-09-02]
CHR Extension: (Gmail) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-07-12]
CHR Extension: (Chrome Media Router) - C:\Users\Admin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-09-02]
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 602XML Updater; C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s.)
R2 avgfws; C:\Program Files\AVG\AVG2015\avgfws.exe [1563648 2016-04-21] (AVG Technologies CZ, s.r.o.)
R2 AVGIDSAgent; C:\Program Files\AVG\AVG2015\avgidsagent.exe [3647384 2016-04-21] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2015\avgwdsvc.exe [336152 2016-04-21] (AVG Technologies CZ, s.r.o.)
R2 cbVSCService11; C:\Program Files\Cobian Backup 11\cbVSCService11.exe [67584 2012-12-05] (CobianSoft, Luis Cobian) [File not signed]
R2 cgm.brevir-1; C:\CGMSERVER\bin\brevir-1\cgm.brevir-1.exe [260608 2016-10-24] () [File not signed]
R2 cgm.ebooking-1; C:\CGMSERVER\bin\ebooking-1\cgm.ebooking-1.exe [44944 2014-10-20] (Microsoft) [File not signed]
R2 cgm.ecommunication-1; C:\CGMSERVER\bin\ecommunication-1\cgm.ecommunication-1.exe [72800 2016-10-25] (CompuGroup Medical Česká republika s.r.o.)
R2 cgm.servercore; C:\CGMSERVER\bin\core\cgm.servercore.exe [54536 2016-04-20] (CGM)
R2 CobianBackup11; C:\Program Files\Cobian Backup 11\cbService.exe [1131008 2012-12-05] (Luis Cobian, CobianSoft) [File not signed]
R2 Garmin Device Interaction Service; C:\Program Files\Garmin\Device Interaction Service\GarminService.exe [985616 2016-10-25] (Garmin Ltd. or its subsidiaries)
S3 HCS.MedConnect.Service; C:\CGMSERVER\bin\medical-net\MedConnect\HCS.MedConnect.Service.exe [48528 2015-02-11] (HCS GmbH) [File not signed]
R2 HCS.MEDCONNECT.SERVICEMANAGER; C:\CGMSERVER\bin\medical-net\MedConnect.ServiceManager\HCS.MedConnect.ServiceManager.exe [87952 2015-02-11] (HCS GmbH) [File not signed]
R2 NAUpdate; C:\Program Files\Nero\Update\NASvc.exe [805752 2016-09-14] (Nero AG)
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-01-08] (DEVGURU Co., LTD.)
R2 WDBackup; C:\Program Files\Western Digital\WD SmartWare\WDBackupEngine.exe [1042808 2014-06-02] (Western Digital Technologies, Inc.)
R2 WDDriveService; C:\Program Files\Western Digital\WD Drive Manager\WDDriveService.exe [296312 2014-06-02] (Western Digital Technologies, Inc.)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 Avgdiskx; C:\Windows\System32\DRIVERS\avgdiskx.sys [132576 2015-03-11] (AVG Technologies CZ, s.r.o.)
R1 Avgfwfd; C:\Windows\System32\DRIVERS\avgfwd6x.sys [68032 2015-07-09] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [252336 2015-12-16] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [223152 2016-01-13] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [31664 2015-11-25] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [234416 2015-12-16] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [290272 2015-05-07] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [193456 2016-01-22] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [35808 2015-03-20] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [230832 2015-08-04] (AVG Technologies CZ, s.r.o.)
S3 Dot4Scan; C:\Windows\System32\DRIVERS\Dot4Scan.sys [10752 2009-07-14] (Microsoft Corporation)
S3 ivusb; C:\Windows\System32\DRIVERS\ivusb.sys [25112 2010-03-10] (Initio Corporation)
S3 appliandMP; system32\DRIVERS\appliand.sys [X]
U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation)
S3 dgderdrv; System32\drivers\dgderdrv.sys [X]
S3 eapihdrv; \??\C:\Users\Admin\AppData\Local\Temp\ehdrv.sys [X]
S4 nvvad_WaveExtensible; system32\drivers\nvvad32v.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-11-10 14:35 - 2016-11-10 14:48 - 00000000 ____D C:\FRST
2016-11-10 14:21 - 2016-11-10 14:21 - 00095808 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2016-11-10 14:21 - 2016-11-10 14:21 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-11-10 14:13 - 2016-11-02 16:22 - 00308456 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2016-11-10 14:13 - 2016-11-02 16:16 - 00070656 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2016-11-10 14:13 - 2016-11-02 16:16 - 00026112 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2016-11-10 14:13 - 2016-11-02 16:16 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2016-11-10 14:13 - 2016-11-02 15:53 - 00034304 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2016-11-10 14:13 - 2016-10-28 04:14 - 00346320 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-11-10 14:13 - 2016-10-27 16:05 - 20304896 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-11-10 14:13 - 2016-10-27 15:16 - 00689664 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-11-10 14:13 - 2016-10-25 15:54 - 02399744 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-11-10 14:13 - 2016-10-22 18:54 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-11-10 14:13 - 2016-10-22 18:53 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-11-10 14:13 - 2016-10-22 18:36 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-11-10 14:13 - 2016-10-22 18:36 - 00047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-11-10 14:13 - 2016-10-22 18:35 - 00498688 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-11-10 14:13 - 2016-10-22 18:35 - 00341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-11-10 14:13 - 2016-10-22 18:34 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-11-10 14:13 - 2016-10-22 18:27 - 02287616 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-11-10 14:13 - 2016-10-22 18:27 - 00047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-11-10 14:13 - 2016-10-22 18:26 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-11-10 14:13 - 2016-10-22 18:22 - 00476160 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-11-10 14:13 - 2016-10-22 18:21 - 00663552 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-11-10 14:13 - 2016-10-22 18:21 - 00115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-11-10 14:13 - 2016-10-22 18:21 - 00102912 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-11-10 14:13 - 2016-10-22 18:20 - 00620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-11-10 14:13 - 2016-10-22 18:13 - 00667648 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-11-10 14:13 - 2016-10-22 18:09 - 00416256 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-11-10 14:13 - 2016-10-22 18:04 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-11-10 14:13 - 2016-10-22 18:03 - 00091136 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2016-11-10 14:13 - 2016-10-22 17:59 - 00168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-11-10 14:13 - 2016-10-22 17:58 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-11-10 14:13 - 2016-10-22 17:56 - 00279040 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-11-10 14:13 - 2016-10-22 17:54 - 00130048 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-11-10 14:13 - 2016-10-22 17:46 - 00230400 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-11-10 14:13 - 2016-10-22 17:45 - 00693248 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-11-10 14:13 - 2016-10-22 17:44 - 04608000 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-11-10 14:13 - 2016-10-22 17:43 - 02055680 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-11-10 14:13 - 2016-10-22 17:43 - 01155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-11-10 14:13 - 2016-10-22 17:30 - 13654016 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-11-10 14:13 - 2016-10-22 17:12 - 02444800 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-11-10 14:13 - 2016-10-22 17:09 - 01312256 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-11-10 14:13 - 2016-10-22 17:09 - 00710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-11-10 14:13 - 2016-10-15 16:13 - 00741888 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2016-11-10 14:13 - 2016-10-15 16:13 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\INETRES.dll
2016-11-10 14:13 - 2016-10-11 16:24 - 00250600 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2016-11-10 14:13 - 2016-10-11 16:18 - 01027584 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10.IME
2016-11-10 14:13 - 2016-10-11 16:18 - 00829952 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2016-11-10 14:13 - 2016-10-11 16:18 - 00701440 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2016-11-10 14:13 - 2016-10-11 16:18 - 00430080 _____ (Microsoft Corporation) C:\Windows\system32\imkr80.ime
2016-11-10 14:13 - 2016-10-11 16:18 - 00202240 _____ (Microsoft Corporation) C:\Windows\system32\input.dll
2016-11-10 14:13 - 2016-10-11 16:18 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\tintlgnt.ime
2016-11-10 14:13 - 2016-10-11 16:18 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\quick.ime
2016-11-10 14:13 - 2016-10-11 16:18 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\qintlgnt.ime
2016-11-10 14:13 - 2016-10-11 16:18 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\phon.ime
2016-11-10 14:13 - 2016-10-11 16:18 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\chajei.ime
2016-11-10 14:13 - 2016-10-11 16:18 - 00125952 _____ (Microsoft Corporation) C:\Windows\system32\cintlgnt.ime
2016-11-10 14:13 - 2016-10-11 16:18 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\pintlgnt.ime
2016-11-10 14:13 - 2016-10-11 14:33 - 00187392 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2016-11-10 14:13 - 2016-10-10 16:21 - 00137960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-11-10 14:13 - 2016-10-10 16:21 - 00067304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-11-10 14:13 - 2016-10-10 16:16 - 01062912 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-11-10 14:13 - 2016-10-10 16:16 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-11-10 14:13 - 2016-10-10 16:16 - 00655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-11-10 14:13 - 2016-10-10 16:16 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-11-10 14:13 - 2016-10-10 16:16 - 00261120 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-11-10 14:13 - 2016-10-10 16:16 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-11-10 14:13 - 2016-10-10 16:16 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-11-10 14:13 - 2016-10-10 16:16 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-11-10 14:13 - 2016-10-10 16:16 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-11-10 14:13 - 2016-10-10 16:16 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2016-11-10 14:13 - 2016-10-10 16:16 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-11-10 14:13 - 2016-10-10 16:16 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-11-10 14:13 - 2016-10-10 16:16 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-11-10 14:13 - 2016-10-10 16:16 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-11-10 14:13 - 2016-10-10 16:16 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-11-10 14:13 - 2016-10-10 15:54 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-11-10 14:13 - 2016-10-10 15:50 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-11-10 14:13 - 2016-10-10 15:50 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-11-10 14:13 - 2016-10-10 15:50 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-11-10 14:13 - 2016-10-10 15:50 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-11-10 14:13 - 2016-10-10 15:50 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-11-10 14:13 - 2016-10-10 15:50 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-11-10 14:13 - 2016-10-07 16:18 - 04000488 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2016-11-10 14:13 - 2016-10-07 16:18 - 03944680 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-11-10 14:13 - 2016-10-07 16:15 - 01310528 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-11-10 14:13 - 2016-10-07 16:12 - 02291712 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2016-11-10 14:13 - 2016-10-07 16:12 - 00644096 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-11-10 14:13 - 2016-10-07 16:12 - 00581632 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2016-11-10 14:13 - 2016-10-07 16:12 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-11-10 14:13 - 2016-10-07 16:12 - 00090624 _____ (Microsoft Corporation) C:\Windows\system32\olepro32.dll
2016-11-10 14:13 - 2016-10-07 16:12 - 00067584 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2016-11-10 14:13 - 2016-10-07 16:12 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2016-11-10 14:13 - 2016-10-07 16:12 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2016-11-10 14:13 - 2016-10-07 16:12 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-11-10 14:13 - 2016-10-07 16:12 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-11-10 14:13 - 2016-10-07 16:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-11-10 14:13 - 2016-10-07 15:54 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2016-11-10 14:13 - 2016-10-07 15:54 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2016-11-10 14:13 - 2016-10-07 15:54 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2016-11-10 14:13 - 2016-10-07 15:54 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2016-11-10 14:13 - 2016-10-07 15:51 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-11-10 14:13 - 2016-10-07 15:49 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-11-10 14:13 - 2016-10-05 15:50 - 00068608 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2016-11-10 14:13 - 2016-09-15 15:51 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2016-11-10 14:13 - 2016-09-13 16:11 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2016-11-10 14:13 - 2016-09-09 19:00 - 00497152 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2016-11-10 14:13 - 2016-08-21 14:05 - 00935424 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2016-11-10 14:01 - 2016-11-10 14:01 - 00000000 ____D C:\Users\Admin\AppData\Local\{B73DF40E-1904-4B61-9658-E6C9662C9B63}
2016-11-09 15:04 - 2016-11-09 15:04 - 00000000 ____D C:\Users\Admin\AppData\Local\{7811C825-601D-4E52-AB47-D5C14D8BFC33}
2016-11-08 22:03 - 2016-11-08 22:03 - 00000000 ____D C:\Users\Admin\AppData\Local\{87610BD5-E05E-4241-8483-5CA8ED93AD49}
2016-11-08 15:22 - 2016-11-10 14:48 - 00000000 ____D C:\Users\Admin\Documents\K VIRŮM
2016-11-08 09:41 - 2016-11-08 09:41 - 00000000 ____D C:\Users\Admin\AppData\Local\{43E38692-0CEF-4370-9E09-5A630B5D03B3}
2016-11-07 13:45 - 2016-11-07 13:45 - 00000000 ____D C:\Users\Admin\AppData\Local\{C0C10348-20BA-4783-915F-4A9787467347}
2016-11-07 13:27 - 2016-11-08 14:43 - 00000000 ____D C:\rsit
2016-11-06 17:43 - 2016-11-06 17:43 - 00000000 ____D C:\Users\Admin\AppData\Local\{BC74D47E-5FB7-497A-A4E5-F0575FD5D656}
2016-11-04 10:16 - 2016-11-04 10:16 - 00000000 ____D C:\Users\Admin\AppData\Local\{FD5C2C13-A59D-485A-A402-1B6B34FAB435}
2016-11-03 14:44 - 2016-11-03 14:44 - 00000000 ____D C:\Users\Admin\AppData\Local\{F4B51C1F-575B-4280-80DB-9B10BC4D0019}
2016-11-02 17:19 - 2016-11-02 17:19 - 00000000 ____D C:\Users\Admin\AppData\Local\{E07966B3-B8C0-45D8-BB81-5D3CD301E9F4}
2016-10-31 14:12 - 2016-10-31 14:12 - 00000000 ____D C:\Users\Admin\AppData\Local\{66241F8C-A838-41F0-B4EC-2C5A6E897C10}
2016-10-30 12:50 - 2016-10-30 12:50 - 00000000 ____D C:\Users\Admin\AppData\Local\{38EE0BC0-7DAD-4C62-808D-D8D3C58A3518}
2016-10-28 16:24 - 2016-10-28 16:24 - 00000000 ____D C:\Users\Admin\AppData\Local\{5A134410-0243-46E4-A280-6A65EF930B43}
2016-10-27 15:10 - 2016-10-27 15:10 - 00000000 ____D C:\Users\Admin\AppData\Local\{DCF365E6-8570-4CDB-84E7-1D430C116888}
2016-10-26 19:12 - 2016-10-26 19:12 - 00000000 ____D C:\Users\Admin\AppData\Local\{D217875B-F875-4CD5-B843-E52451E764DF}
2016-10-25 12:28 - 2016-10-25 12:28 - 00000000 ____D C:\Users\Admin\AppData\Local\{8E41F6FF-C7FC-4A79-A8C8-C0ED9F50DA82}
2016-10-24 13:24 - 2016-10-24 13:24 - 00000000 ____D C:\Users\Admin\AppData\Local\{41D482D6-1A2C-427E-80F8-0E0D8DFC5E71}
2016-10-23 15:10 - 2016-10-23 15:10 - 00000000 ____D C:\Users\Admin\AppData\Local\{9B9FA7B6-9C4B-45F5-96F7-B1BA2B7446E0}
2016-10-22 14:10 - 2016-10-22 14:10 - 00000000 ____D C:\Users\Admin\AppData\Local\{D253738C-28D5-463F-9B0E-DAF198A1BBEC}
2016-10-21 15:06 - 2016-10-21 15:06 - 00000000 ____D C:\Program Files\Mozilla Firefox
2016-10-21 09:33 - 2016-10-21 09:33 - 00000000 ____D C:\Users\Admin\AppData\Local\{771F1101-244A-4469-A17B-0C4139C51794}
2016-10-20 09:13 - 2016-10-20 09:13 - 00000000 ____D C:\Users\Admin\AppData\Local\{CE5A20BA-1032-42CD-BB42-1364346AC531}
2016-10-19 10:48 - 2016-10-19 10:48 - 00000000 ____D C:\Users\Admin\AppData\Local\{41B5C005-431D-40AC-9B4A-CA51825171EF}
2016-10-19 10:41 - 2016-07-22 15:51 - 00123904 _____ (Microsoft Corporation) C:\Windows\system32\poqexec.exe
2016-10-18 15:21 - 2016-10-18 15:21 - 00000000 ____D C:\Users\Admin\AppData\Local\{CA7BD1D0-9E41-4314-B3D7-E760073D3945}
2016-10-17 10:56 - 2016-10-17 10:56 - 00000000 ____D C:\Users\Admin\AppData\Local\{AE37B276-7D0E-4E23-B9DB-A1591944147A}
2016-10-16 17:51 - 2016-10-16 17:51 - 00000000 ____D C:\Users\Admin\AppData\Local\{6BB1564E-2348-47EA-98D1-D0636DED7CC9}
2016-10-14 10:06 - 2016-10-14 10:06 - 00000000 ____D C:\Users\Admin\AppData\Local\{132D3AB6-3D2E-4FCD-B52A-6F110EB04F26}
2016-10-13 16:20 - 2016-09-12 21:54 - 00067816 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2016-10-13 16:20 - 2016-09-12 21:49 - 01017856 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2016-10-13 16:20 - 2016-09-12 21:49 - 00076800 _____ (Microsoft Corporation) C:\Windows\system32\adsmsext.dll
2016-10-13 16:20 - 2016-09-12 20:08 - 01251328 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2016-10-13 16:20 - 2016-09-12 20:08 - 00909824 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2016-10-13 16:20 - 2016-09-09 16:53 - 01406976 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2016-10-13 16:20 - 2016-09-09 16:53 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2016-10-13 16:20 - 2016-09-09 16:53 - 00478208 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2016-10-13 16:20 - 2016-09-09 16:53 - 00268800 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2016-10-13 16:20 - 2016-09-09 16:53 - 00213504 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2016-10-13 16:20 - 2016-09-09 16:53 - 00184320 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2016-10-13 16:20 - 2016-09-09 16:53 - 00107008 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2016-10-13 16:20 - 2016-09-08 21:34 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2016-10-13 16:20 - 2016-09-08 21:34 - 00087040 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2016-10-13 16:20 - 2016-09-08 15:49 - 00117248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxdav.sys
2016-10-13 16:20 - 2016-09-08 15:49 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dfsc.sys
2016-10-13 16:20 - 2016-08-29 16:12 - 12880384 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-10-13 16:20 - 2016-08-29 16:12 - 01806848 _____ (Microsoft Corporation) C:\Windows\system32\authui.dll
2016-10-13 16:20 - 2016-08-29 16:12 - 01499648 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2016-10-13 16:20 - 2016-08-29 15:55 - 02972672 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2016-10-13 16:20 - 2016-08-16 19:47 - 00419640 _____ C:\Windows\system32\locale.nls
2016-10-13 16:20 - 2016-08-12 17:47 - 12574208 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL
2016-10-13 16:20 - 2016-08-12 17:47 - 11410432 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-10-13 16:20 - 2016-08-12 17:31 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\spwmp.dll
2016-10-13 16:20 - 2016-08-12 17:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\msdxm.ocx
2016-10-13 16:20 - 2016-08-12 17:31 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\dxmasf.dll
2016-10-13 16:20 - 2016-08-12 17:21 - 00437248 _____ (Microsoft Corporation) C:\Windows\system32\scavengeui.dll
2016-10-13 16:20 - 2016-08-06 16:15 - 01178112 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2016-10-13 16:20 - 2016-08-06 16:15 - 00249344 _____ (Microsoft Corporation) C:\Windows\system32\WSManMigrationPlugin.dll
2016-10-13 16:20 - 2016-08-06 16:15 - 00214016 _____ (Microsoft Corporation) C:\Windows\system32\WsmWmiPl.dll
2016-10-13 16:20 - 2016-08-06 16:15 - 00146944 _____ (Microsoft Corporation) C:\Windows\system32\WsmAuto.dll
2016-10-13 16:20 - 2016-08-06 16:15 - 00054272 _____ (Microsoft Corporation) C:\Windows\system32\WsmRes.dll
2016-10-13 16:20 - 2016-08-06 15:53 - 00199168 _____ (Microsoft Corporation) C:\Windows\system32\WSManHTTPConfig.exe
2016-10-13 16:20 - 2016-08-06 15:53 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\wsmprovhost.exe
2016-10-13 16:20 - 2016-08-06 15:53 - 00010240 _____ (Microsoft Corporation) C:\Windows\system32\wsmplpxy.dll
2016-10-13 16:20 - 2016-06-14 16:25 - 00078568 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mountmgr.sys
2016-10-13 16:20 - 2016-06-14 16:21 - 03209216 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 01329664 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 01176064 _____ (Microsoft Corporation) C:\Windows\system32\crypt32.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 01005056 _____ (Microsoft Corporation) C:\Windows\system32\cryptui.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00988160 _____ (Microsoft Corporation) C:\Windows\system32\drmv2clt.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00744960 _____ (Microsoft Corporation) C:\Windows\system32\blackbox.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00617984 _____ (Microsoft Corporation) C:\Windows\system32\wmdrmsdk.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00519680 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00504320 _____ (Microsoft Corporation) C:\Windows\system32\msscp.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\evr.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00474624 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00442368 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00406016 _____ (Microsoft Corporation) C:\Windows\system32\drmmgrtn.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00374784 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00354816 _____ (Microsoft Corporation) C:\Windows\system32\mfplat.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00275968 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00265216 _____ (Microsoft Corporation) C:\Windows\system32\msnetobj.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00195072 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00179200 _____ (Microsoft Corporation) C:\Windows\system32\wintrust.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00157184 _____ (Microsoft Corporation) C:\Windows\system32\pcasvc.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00145920 _____ (Microsoft Corporation) C:\Windows\system32\cryptsvc.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00106496 _____ (Microsoft Corporation) C:\Windows\system32\cryptnet.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00103424 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00080896 _____ (Microsoft Corporation) C:\Windows\system32\cryptsp.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00008704 _____ (Microsoft Corporation) C:\Windows\system32\pcaevts.dll
2016-10-13 16:20 - 2016-06-14 16:21 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\mferror.dll
2016-10-13 16:20 - 2016-06-14 16:17 - 00593920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\PEAuth.sys
2016-10-13 16:20 - 2016-06-14 16:05 - 00100352 _____ (Microsoft Corporation) C:\Windows\system32\audiodg.exe
2016-10-13 16:20 - 2016-06-14 16:05 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\rrinstaller.exe
2016-10-13 16:20 - 2016-06-14 16:05 - 00023040 _____ (Microsoft Corporation) C:\Windows\system32\mfpmp.exe
2016-10-13 16:20 - 2016-06-14 16:00 - 00010752 _____ (Microsoft Corporation) C:\Windows\system32\msmmsp.dll
2016-10-13 16:20 - 2016-06-14 15:55 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\pcawrk.exe
2016-10-13 16:20 - 2016-06-14 15:55 - 00008192 _____ (Microsoft Corporation) C:\Windows\system32\pcalua.exe
2016-10-13 16:20 - 2016-06-14 15:54 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\pcadm.dll
2016-10-13 16:18 - 2016-08-16 21:27 - 00259072 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2016-10-13 16:18 - 2016-08-16 21:27 - 00076288 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2016-10-13 16:18 - 2016-08-16 21:26 - 00285696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2016-10-13 16:18 - 2016-08-16 21:26 - 00046592 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2016-10-13 16:18 - 2016-08-16 21:26 - 00024576 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2016-10-13 16:18 - 2016-08-16 21:26 - 00020480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2016-10-13 16:18 - 2016-08-16 21:26 - 00006016 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2016-10-13 15:40 - 2016-10-13 15:40 - 00000000 ____D C:\Users\Admin\AppData\Local\{0C7FAC83-E655-4BC9-9A64-48803905B6DD}
2016-10-12 14:28 - 2016-10-12 14:28 - 00000000 ____D C:\Users\Admin\AppData\Local\{A98DBA2E-F079-4C1C-9040-6E8D59E0F3B8}
2016-10-11 13:04 - 2016-10-11 13:04 - 00000000 ____D C:\Users\Admin\AppData\Local\{B0D946BB-0336-4D28-ACA9-A4DBEB21E1BE}
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-11-10 14:48 - 2009-07-14 05:34 - 00023568 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-11-10 14:48 - 2009-07-14 05:34 - 00023568 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-11-10 14:46 - 2013-08-15 14:40 - 00000000 ____D C:\ProgramData\MFAData
2016-11-10 14:40 - 2014-06-20 14:09 - 00008192 _____ C:\Windows\system32\WDPABKP.dat
2016-11-10 14:40 - 2014-04-04 14:44 - 00000000 ____D C:\ProgramData\NVIDIA
2016-11-10 14:40 - 2013-07-16 07:27 - 00000936 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-11-10 14:40 - 2012-08-19 10:19 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2016-11-10 14:40 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-11-10 14:37 - 2011-02-16 16:31 - 00000000 ____D C:\Users\Admin\AppData\LocalLow\Temp
2016-11-10 14:32 - 2009-11-24 10:26 - 01593150 _____ C:\Windows\system32\PerfStringBackup.INI
2016-11-10 14:32 - 2009-07-14 09:44 - 00672136 _____ C:\Windows\system32\perfh005.dat
2016-11-10 14:32 - 2009-07-14 09:44 - 00142732 _____ C:\Windows\system32\perfc005.dat
2016-11-10 14:32 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\inf
2016-11-10 14:31 - 2014-06-29 13:40 - 00000000 ____D C:\Users\Admin\AppData\Local\Adobe
2016-11-10 14:31 - 2012-04-09 09:18 - 00796352 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2016-11-10 14:31 - 2011-06-01 16:48 - 00142528 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2016-11-10 14:31 - 2010-11-16 15:01 - 00000000 ____D C:\Windows\system32\Macromed
2016-11-10 14:25 - 2009-07-14 05:33 - 00411768 _____ C:\Windows\system32\FNTCACHE.DAT
2016-11-10 14:23 - 2013-07-16 07:27 - 00000940 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-11-10 14:22 - 2014-03-06 15:05 - 00000000 ____D C:\ProgramData\Oracle
2016-11-10 14:22 - 2013-07-11 13:48 - 00000000 ____D C:\Windows\system32\MRT
2016-11-10 14:21 - 2010-11-16 20:06 - 00000000 ____D C:\Program Files\Java
2016-11-10 14:15 - 2009-11-24 13:38 - 138444440 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-11-10 14:09 - 2013-03-30 10:01 - 00000000 ___RD C:\Program Files\Skype
2016-11-10 14:09 - 2013-03-30 10:01 - 00000000 ____D C:\ProgramData\Skype
2016-11-10 14:04 - 2015-04-15 15:27 - 00004606 _____ C:\NBDBList.ini
2016-11-10 13:58 - 2016-02-08 15:40 - 00000000 ____D C:\ALFIS16J
2016-11-10 13:56 - 2014-09-23 13:14 - 00000000 ____D C:\Program Files\Dialog MIS
2016-11-10 12:05 - 2010-11-18 17:03 - 00000000 ____D C:\Users\Admin\Documents\Soubory aplikace Outlook
2016-11-08 17:27 - 2012-09-24 15:43 - 00000969 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-11-08 17:25 - 2012-04-14 09:15 - 00000000 ____D C:\Users\Admin\AppData\Local\CrashDumps
2016-11-07 22:11 - 2012-09-29 09:59 - 00000000 ____D C:\temp
2016-11-07 13:29 - 2014-03-04 18:18 - 00000000 ____D C:\Program Files\trend micro
2016-11-06 16:54 - 2010-11-16 19:20 - 00000000 ____D C:\BATCH
2016-11-06 16:24 - 2010-11-19 14:03 - 00000000 ____D C:\VYPAL
2016-11-06 16:13 - 2013-01-29 18:39 - 00000000 ____D C:\Users\Admin\AppData\Roaming\vlc
2016-11-06 16:12 - 2015-11-08 17:03 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-11-05 10:20 - 2013-02-18 17:54 - 00000000 ____D C:\ProgramData\Package Cache
2016-11-05 10:20 - 2012-08-23 14:46 - 00000000 ____D C:\Program Files\Garmin
2016-11-05 10:19 - 2015-08-21 13:15 - 00001860 _____ C:\Users\Public\Desktop\Garmin Express.lnk
2016-11-05 10:19 - 2012-08-23 14:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Garmin
2016-11-05 10:18 - 2010-11-16 18:46 - 00000000 ____D C:\Program Files\IDOS
2016-10-31 18:35 - 2011-02-04 21:17 - 00000000 ____D C:\MP3
2016-10-26 19:15 - 2011-02-08 18:20 - 00000000 ____D C:\S W
2016-10-26 15:51 - 2013-12-23 17:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CompuGroup Medical
2016-10-26 15:49 - 2013-07-29 12:58 - 00000000 ____D C:\CGMSERVER
2016-10-25 12:24 - 2013-02-26 20:11 - 00002141 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-10-25 12:24 - 2013-02-26 20:11 - 00002129 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-10-24 13:53 - 2010-11-17 10:01 - 00000000 ____D C:\FOTOGRAFIE
2016-10-24 08:21 - 2010-11-22 14:22 - 00000000 ____D C:\Users\Admin\AppData\Local\ElevatedDiagnostics
2016-10-21 18:54 - 2014-04-15 13:58 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2016-10-21 15:05 - 2015-12-24 15:21 - 00000000 ____D C:\Users\Admin\AppData\Roaming\YouTube Downloader
2016-10-14 08:30 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\rescache
2016-10-14 06:43 - 2009-07-14 05:46 - 00001515 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2016-10-13 18:34 - 2010-11-19 17:48 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-10-13 16:43 - 2014-12-10 17:36 - 00000000 ____D C:\Windows\system32\appraiser
2016-10-13 16:43 - 2014-04-23 15:58 - 00000000 ___SD C:\Windows\system32\CompatTel
2016-10-13 16:43 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system32\Dism
2016-10-13 16:26 - 2010-11-17 14:58 - 00000000 ____D C:\Program Files\rajce
2016-10-13 16:22 - 2010-11-19 17:48 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
==================== Files in the root of some directories =======
2015-01-24 10:13 - 2015-01-24 10:23 - 2171392 _____ () C:\Users\Admin\AppData\Roaming\bfldb.dll
2015-01-24 10:13 - 2015-01-24 10:23 - 2248704 _____ () C:\Users\Admin\AppData\Roaming\bfldongle.dll
2015-01-24 10:13 - 2015-01-24 10:23 - 2265088 _____ () C:\Users\Admin\AppData\Roaming\bfluart.dll
2015-01-24 10:13 - 2015-01-24 10:23 - 2416640 _____ () C:\Users\Admin\AppData\Roaming\bflusb.dll
2015-01-24 10:13 - 2015-01-24 10:23 - 0004366 _____ () C:\Users\Admin\AppData\Roaming\C
2014-01-03 17:22 - 2014-01-03 17:22 - 0087608 _____ () C:\Users\Admin\AppData\Roaming\inst.exe
2009-11-25 10:37 - 2014-01-03 17:22 - 0007887 _____ () C:\Users\Admin\AppData\Roaming\pcouffin.cat
2009-11-25 10:37 - 2014-01-03 17:22 - 0001144 _____ () C:\Users\Admin\AppData\Roaming\pcouffin.inf
2009-11-25 10:37 - 2014-01-03 17:22 - 0000055 _____ () C:\Users\Admin\AppData\Roaming\pcouffin.log
2009-11-25 10:37 - 2014-01-03 17:22 - 0047360 _____ (VSO Software) C:\Users\Admin\AppData\Roaming\pcouffin.sys
2010-11-16 22:37 - 2010-11-16 22:37 - 0000022 ___SH () C:\Users\Admin\AppData\Roaming\Sys6925.Config Collection.sys
2010-11-23 14:44 - 2012-06-04 13:07 - 0005120 _____ () C:\Users\Admin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2012-08-31 21:26 - 2012-08-31 21:26 - 0027520 _____ () C:\Users\Admin\AppData\Local\dt.dat
2010-11-22 14:20 - 2012-10-22 15:59 - 0007608 _____ () C:\Users\Admin\AppData\Local\resmon.resmoncfg
2013-06-21 15:26 - 2013-06-21 16:24 - 0000000 _____ () C:\ProgramData\g252qs.txt
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-11-04 08:31
==================== End of FRST.txt ============================
- Přílohy
-
- Addition.rar
- (14.21 KiB) Staženo 109 x
Re: plíživé zpomalení PC
Další fixlist:
1) Obsah fixu níže, nakopírujte do Notepadu + uložte jej jako: fixlist.txt
2) Soubor uložte na stejné místo, kde má aktuálně utilitu FRST
3) Spusťte FRST a kliněte na tlačítko FIX
4) Restartujte PC.
5) Sledujte PC, jak se chová
5) Obsah FIXLOGU postněte sem do Vašeho topicu
Máte v Pc skutečně mnoho softwaru. Doporučuji to, co nepoužíváte, odinstalovat.
1) Obsah fixu níže, nakopírujte do Notepadu + uložte jej jako: fixlist.txt
2) Soubor uložte na stejné místo, kde má aktuálně utilitu FRST
Kód: Vybrat vše
Start
CreateRestorePoint:
EmptyTemp:
CloseProcesses:
Hosts:
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\52.0.2743.116\PepperFlash\pepflashplayer.dll => No File
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\52.0.2743.116\ppGoogleNaClPluginChrome.dll => No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\52.0.2743.116\pdf.dll => No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll => No File
CHR Plugin: (Java Deployment Toolkit 6.0.290.11) - C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll => No File
CHR Plugin: (Java(TM) Platform SE 6 U29) - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll => No File
CHR Plugin: (AVG SiteSafety plugin) - C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\14.2.0\\npsitesafety.dll => No File
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll => No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll => No File
S3 appliandMP; system32\DRIVERS\appliand.sys [X]
S3 dgderdrv; System32\drivers\dgderdrv.sys [X]
S3 eapihdrv; \??\C:\Users\Admin\AppData\Local\Temp\ehdrv.sys [X]
S4 nvvad_WaveExtensible; system32\drivers\nvvad32v.sys [X]
END4) Restartujte PC.
5) Sledujte PC, jak se chová
5) Obsah FIXLOGU postněte sem do Vašeho topicu
Máte v Pc skutečně mnoho softwaru. Doporučuji to, co nepoužíváte, odinstalovat.
Re: plíživé zpomalení PC
Dobrý den, odinstaloval jsem Picassa, DVD Fab, DVD Shrek, Kastner SW, ostatní pravidelně používám. Zde je log, děkuji:
Fix result of Farbar Recovery Scan Tool (x86) Version: 06-11-2016
Ran by Admin (11-11-2016 16:09:54) Run:2
Running from C:\Users\Admin\Documents\K VIRŮM
Loaded Profiles: Admin (Available Profiles: Admin)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CreateRestorePoint:
EmptyTemp:
CloseProcesses:
Hosts:
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\52.0.2743.116\PepperFlash\pepflashplayer.dll => No File
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\52.0.2743.116\ppGoogleNaClPluginChrome.dll => No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\52.0.2743.116\pdf.dll => No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll => No File
CHR Plugin: (Java Deployment Toolkit 6.0.290.11) - C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll => No File
CHR Plugin: (Java(TM) Platform SE 6 U29) - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll => No File
CHR Plugin: (AVG SiteSafety plugin) - C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\14.2.0\\npsitesafety.dll => No File
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll => No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll => No File
S3 appliandMP; system32\DRIVERS\appliand.sys [X]
S3 dgderdrv; System32\drivers\dgderdrv.sys [X]
S3 eapihdrv; \??\C:\Users\Admin\AppData\Local\Temp\ehdrv.sys [X]
S4 nvvad_WaveExtensible; system32\drivers\nvvad32v.sys [X]
END
*****************
Restore point was successfully created.
Processes closed successfully.
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
C:\Program Files\Google\Chrome\Application\52.0.2743.116\PepperFlash\pepflashplayer.dll => not found.
C:\Program Files\Google\Chrome\Application\52.0.2743.116\ppGoogleNaClPluginChrome.dll => not found.
C:\Program Files\Google\Chrome\Application\52.0.2743.116\pdf.dll => not found.
C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll => not found.
C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll => not found.
C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll => not found.
C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\14.2.0\\npsitesafety.dll => not found.
C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll => not found.
c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll => not found.
appliandMP => service removed successfully.
dgderdrv => service removed successfully.
eapihdrv => service removed successfully.
nvvad_WaveExtensible => service removed successfully.
=========== EmptyTemp: ==========
BITS transfer queue => 8388608 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 3749102 B
Java, Flash, Steam htmlcache => 1398 B
Windows/system/drivers => 628 B
Edge => 0 B
Chrome => 0 B
Firefox => 11552150 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 0 B
LocalService => 0 B
NetworkService => 0 B
Admin => 139467276 B
UpdatusUser => 0 B
RecycleBin => 0 B
EmptyTemp: => 155.6 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 16:11:00 ====
Fix result of Farbar Recovery Scan Tool (x86) Version: 06-11-2016
Ran by Admin (11-11-2016 16:09:54) Run:2
Running from C:\Users\Admin\Documents\K VIRŮM
Loaded Profiles: Admin (Available Profiles: Admin)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CreateRestorePoint:
EmptyTemp:
CloseProcesses:
Hosts:
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\52.0.2743.116\PepperFlash\pepflashplayer.dll => No File
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\52.0.2743.116\ppGoogleNaClPluginChrome.dll => No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\52.0.2743.116\pdf.dll => No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll => No File
CHR Plugin: (Java Deployment Toolkit 6.0.290.11) - C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll => No File
CHR Plugin: (Java(TM) Platform SE 6 U29) - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll => No File
CHR Plugin: (AVG SiteSafety plugin) - C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\14.2.0\\npsitesafety.dll => No File
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll => No File
CHR Plugin: (Silverlight Plug-In) - c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll => No File
S3 appliandMP; system32\DRIVERS\appliand.sys [X]
S3 dgderdrv; System32\drivers\dgderdrv.sys [X]
S3 eapihdrv; \??\C:\Users\Admin\AppData\Local\Temp\ehdrv.sys [X]
S4 nvvad_WaveExtensible; system32\drivers\nvvad32v.sys [X]
END
*****************
Restore point was successfully created.
Processes closed successfully.
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
C:\Program Files\Google\Chrome\Application\52.0.2743.116\PepperFlash\pepflashplayer.dll => not found.
C:\Program Files\Google\Chrome\Application\52.0.2743.116\ppGoogleNaClPluginChrome.dll => not found.
C:\Program Files\Google\Chrome\Application\52.0.2743.116\pdf.dll => not found.
C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll => not found.
C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll => not found.
C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll => not found.
C:\Program Files\Common Files\AVG Secure Search\SiteSafetyInstaller\14.2.0\\npsitesafety.dll => not found.
C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll => not found.
c:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll => not found.
appliandMP => service removed successfully.
dgderdrv => service removed successfully.
eapihdrv => service removed successfully.
nvvad_WaveExtensible => service removed successfully.
=========== EmptyTemp: ==========
BITS transfer queue => 8388608 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 3749102 B
Java, Flash, Steam htmlcache => 1398 B
Windows/system/drivers => 628 B
Edge => 0 B
Chrome => 0 B
Firefox => 11552150 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 0 B
LocalService => 0 B
NetworkService => 0 B
Admin => 139467276 B
UpdatusUser => 0 B
RecycleBin => 0 B
EmptyTemp: => 155.6 MB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 16:11:00 ====
Re: plíživé zpomalení PC
Nyni prosím proveďte Sken a vložte log z programu MBAM.
Návod zde: http://forum.viry.cz/viewtopic.php?f=29&t=144868
Návod zde: http://forum.viry.cz/viewtopic.php?f=29&t=144868
Re: plíživé zpomalení PC
Dobrý den, tohle bylo rychlé. A zdá se mi, že i starty programů (Firefox, Widows Live Mail) jsou čipernější. A nebo je to placebo efekt.
Děkuji
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 11.11.2016
Čas skenování: 22:34
Protokol: mbam_scan.txt
Správce: Ano
Verze: 2.2.1.1043
Databáze malwaru: v2016.11.11.09
Databáze rootkitů: v2016.10.31.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto
OS: Windows 7 Service Pack 1
CPU: x86
Souborový systém: NTFS
Uživatel: Admin
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 288122
Uplynulý čas: 18 min, 33 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Zapnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 0
(Nenalezeny žádné škodlivé položky)
Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 0
(Nenalezeny žádné škodlivé položky)
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
Děkuji
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 11.11.2016
Čas skenování: 22:34
Protokol: mbam_scan.txt
Správce: Ano
Verze: 2.2.1.1043
Databáze malwaru: v2016.11.11.09
Databáze rootkitů: v2016.10.31.01
Licence: Zkušební verze
Ochrana proti malwaru: Zapnuto
Ochrana proti škodlivým webovým stránkám: Zapnuto
Ochrana programu: Vypnuto
OS: Windows 7 Service Pack 1
CPU: x86
Souborový systém: NTFS
Uživatel: Admin
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 288122
Uplynulý čas: 18 min, 33 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Zapnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 0
(Nenalezeny žádné škodlivé položky)
Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 0
(Nenalezeny žádné škodlivé položky)
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
Re: plíživé zpomalení PC
Dobrý den,
s CCleanerem pracuji pravidelně a i včera jsem po odinstalacích dělal kontrolu; včera navíc i Defragglerem.
Nyní je PC zase líné jinak: desítky vteřin trvá při ukončování nápis: Vypínání
Děkuji za Váš čas a pomoc
s CCleanerem pracuji pravidelně a i včera jsem po odinstalacích dělal kontrolu; včera navíc i Defragglerem.
Nyní je PC zase líné jinak: desítky vteřin trvá při ukončování nápis: Vypínání
Děkuji za Váš čas a pomoc
Re: plíživé zpomalení PC
Zde stáhněte utilitu Crystal disk info: http://www.slunecnice.cz/sw/crystaldiskinfo/
Při instalaci se vyvarujte různých doplňků a nabídek (zrušením zatrhovacích políček)
Po krátké době bude znám výsledek.
Nahoře klikněte na Úpravy a pak na Kopírovat.
Kopírováné vložíte stiskem CTRL + V, sem do topicu.
Při instalaci se vyvarujte různých doplňků a nabídek (zrušením zatrhovacích políček)
Po krátké době bude znám výsledek.
Nahoře klikněte na Úpravy a pak na Kopírovat.
Kopírováné vložíte stiskem CTRL + V, sem do topicu.
Přispějete na provoz fóra?