Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Kontrola logu, případné léčení

Nemáte v tuto chvíli žádný problém s pc a chcete se jen ujistit, že je vše v pořádku?
Vložte log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
Blinkoka
Návštěvník
Návštěvník
Příspěvky: 42
Registrován: 11 črc 2011 13:27

Kontrola logu, případné léčení

#1 Příspěvek od Blinkoka »

Dobrý den, prosím o kontrolu PC. Děkuji.

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 24.10.2018
Ran by NAME (administrator) on OEM-B2E7813B358 (29-10-2018 14:54:39)
Running from C:\Documents and Settings\NAME\Plocha
Loaded Profiles: NAME (Available Profiles: NAME)
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) Language: Čeština
Internet Explorer Version 8 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVAST Software) E:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(AVAST Software) E:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(RealNetworks, Inc.) E:\Program Files\Real\RealPlayer\Update\realsched.exe
(Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(Nokia) C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
(Creative Technology Ltd.) C:\WINDOWS\system32\devldr32.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
() C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
(Canon Inc.) C:\Program Files\Canon\CAL\CALMAIN.exe
(Nokia) C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
(Nokia) C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
(Nokia) C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [20145368 2013-10-04] (Realtek Semiconductor Corp.)
HKLM\...\Run: [JMB36X IDE Setup] => C:\WINDOWS\RaidTool\xInsIDE.exe [36864 2007-03-20] ()
HKLM\...\Run: [36X Raid Configurer] => C:\WINDOWS\system32\xRaidSetup.exe [1953792 2007-03-21] (JMicron Technology Corp.)
HKLM\...\Run: [AvastUI.exe] => E:\Program Files\AVAST Software\Avast\AvastUI.exe [7021880 2016-01-04] (AVAST Software)
HKLM\...\Run: [KeePass 2 PreLoad] => E:\Program Files\KeePass Password Safe 2\KeePass.exe [2109952 2014-10-07] (Dominik Reichl)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [KernelFaultCheck] => %systemroot%\system32\dumprep 0 -k
HKLM\...\Run: [TkBellExe] => E:\Program Files\Real\RealPlayer\update\realsched.exe [295512 2015-03-05] (RealNetworks, Inc.)
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [NvMediaCenter] => RunDLL32.exe NvMCTray.dll,NvTaskbarInit -login
HKLM\...\Run: [nwiz] => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2591888 2016-07-11] ()
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2397120 2016-06-14] (NVIDIA Corporation)
HKU\S-1-5-19\...\RunOnce: [_nltide_2] => regsvr32 /s /n /i:U shell32
HKU\S-1-5-20\...\RunOnce: [_nltide_2] => regsvr32 /s /n /i:U shell32
HKU\S-1-5-21-1659004503-220523388-682003330-1003\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-1659004503-220523388-682003330-1003\...\Run: [PC Suite Tray] => C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [1516632 2012-06-26] (Nokia)
HKU\S-1-5-21-1659004503-220523388-682003330-1003\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner.exe [13797712 2018-10-08] (Piriform Ltd)
HKU\S-1-5-21-1659004503-220523388-682003330-1003\...\Run: [Chromium] => "c:\documents and settings\name\local settings\data aplikací\chromium\application\chrome.exe" --auto-launch-at-startup --profile-directory="Default" --restore-last-session
HKU\S-1-5-21-1659004503-220523388-682003330-1003\...\MountPoints2: {dd6bbd90-8859-11e4-97ca-001e8c1fba34} - G:\autorun\autorun.exe
HKU\S-1-5-18\...\RunOnce: [_nltide_2] => regsvr32 /s /n /i:U shell32
Startup: C:\Documents and Settings\NAME\Nabídka Start\Programy\Po spuštění\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk [2015-07-13]
ShortcutTarget: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 213.46.172.36 213.46.172.37
Tcpip\..\Interfaces\{D4DA158D-FB5D-4299-8A29-09ECA2344364}: [DhcpNameServer] 213.46.172.36 213.46.172.37

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/?clid=22668
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-1659004503-220523388-682003330-1003\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
HKU\S-1-5-21-1659004503-220523388-682003330-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/?clid=22668
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "about:newtab" <==== ATTENTION
SearchScopes: HKLM -> DefaultScope {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKLM -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1659004503-220523388-682003330-1003 -> DefaultScope {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1659004503-220523388-682003330-1003 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
BHO: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2013-08-14] (RealDownloader)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> E:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-01-04] (AVAST Software)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF ProfilePath: C:\Documents and Settings\NAME\Data aplikací\Mozilla\Firefox\Profiles\uyteznwf.default [2018-10-29]
FF Homepage: C:\Documents and Settings\NAME\Data aplikací\Mozilla\Firefox\Profiles\uyteznwf.default -> hxxps://www.seznam.cz/?clid=22668
FF NewTab: C:\Documents and Settings\NAME\Data aplikací\Mozilla\Firefox\Profiles\uyteznwf.default -> about:newtab
FF SearchPlugin: C:\Documents and Settings\NAME\Data aplikací\Mozilla\Firefox\Profiles\uyteznwf.default\searchplugins\seznam-avast.xml [2016-12-01]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - E:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - E:\Program Files\AVAST Software\Avast\WebRep\FF [2016-01-04] [Legacy]
FF HKLM\...\Firefox\Extensions: [{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}] - C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: (RealDownloader) - C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2015-03-05] [Legacy] [not signed]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: (Microsoft .NET Framework Assistant) - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2016-01-17] [Legacy] [not signed]
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_31_0_0_122.dll [2018-10-12] ()
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> E:\PROGRAM FILES\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> E:\PROGRAM FILES\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> E:\PROGRAM FILES\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> E:\PROGRAM FILES\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @real.com/nppl3260;version=16.0.3.51 -> E:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll [2015-03-05] (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlchromebrowserrecordext;version=1.3.3 -> C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll [2013-08-14] (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlhtml5videoshim;version=1.3.3 -> C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll [2013-08-14] (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlpepperflashvideoshim;version=1.3.3 -> C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll [2013-08-14] (RealNetworks, Inc.)
FF Plugin: @real.com/nprpplugin;version=16.0.3.51 -> E:\Program Files\Real\RealPlayer\Netscape6\nprpplugin.dll [2015-03-05] (RealPlayer)
FF Plugin: @realnetworks.com/npdlplugin;version=1 -> C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll [2013-08-14] (RealDownloader)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-10-27] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-10-27] (Google Inc.)
StartMenuInternet: FIREFOX.EXE - firefox.exe

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - E:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-01-04]
CHR HKLM\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2013-08-14]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335872 2018-10-12] (Adobe Systems Incorporated) [File not signed]
R2 avast! Antivirus; E:\Program Files\AVAST Software\Avast\AvastSvc.exe [226440 2016-01-04] (AVAST Software)
R2 CCALib8; C:\Program Files\Canon\CAL\CALMAIN.exe [96334 2009-09-08] (Canon Inc.) [File not signed]
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-06-14] (NVIDIA Corporation)
R2 RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] ()
S4 WindowsMangerProtect; C:\Documents and Settings\All Users\Data aplikací\WindowsMangerProtect\ProtectWindowsManager.exe [493712 2015-03-05] () <==== ATTENTION
S2 FoxitCloudUpdateService; "E:\PROGRAM FILES\FOXIT SOFTWARE\FOXIT READER\Foxit Cloud\FCUpdateService.exe" [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1691480 2009-11-18] (Creative)
R1 AsIO; C:\WINDOWS\System32\drivers\AsIO.sys [12664 2006-10-19] ()
R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [24016 2016-01-04] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [81168 2016-01-04] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [55200 2016-01-04] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49776 2016-01-04] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [812720 2016-03-02] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [449384 2016-01-20] (AVAST Software)
R3 aswStmXP; C:\WINDOWS\system32\drivers\aswStmXP.sys [165104 2016-01-04] (AVAST Software)
S3 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [58016 2016-01-04] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [209432 2016-01-04] (AVAST Software)
R3 AtcL001; C:\WINDOWS\System32\DRIVERS\atl01_xp.sys [38656 2007-03-15] (Attansic Technology corporation.)
R3 ctljystk; C:\WINDOWS\System32\DRIVERS\ctljystk.sys [3712 2001-08-17] (Creative Technology Ltd.)
R1 dtsoftbus01; C:\WINDOWS\System32\DRIVERS\dtsoftbus01.sys [243128 2014-12-20] (Disc Soft Ltd)
R3 emu10k; C:\WINDOWS\System32\drivers\emu10k1m.sys [283904 2001-08-17] (Creative Technology Ltd.)
R3 emu10k1; C:\WINDOWS\System32\drivers\ctlfacem.sys [6912 2001-08-17] (Creative Technology Ltd.)
S3 FreshIO; E:\Program Files\FreshDevices\FreshDiagnose\FreshIO.sys [2410 2004-10-26] () [File not signed]
R3 gameenum; C:\WINDOWS\System32\DRIVERS\gameenum.sys [10624 2008-04-13] (Microsoft Corporation)
R0 JGOGO; C:\WINDOWS\System32\DRIVERS\JGOGO.sys [6912 2006-02-07] (JMicron )
R0 JRAID; C:\WINDOWS\System32\DRIVERS\jraid.sys [46208 2007-03-24] (JMicron Technology Corp.)
S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1395800 2009-11-18] (Creative Technology Ltd.)
R3 MTsensor; C:\WINDOWS\System32\DRIVERS\ASACPI.sys [5810 2004-08-13] ()
R3 NVHDA; C:\WINDOWS\System32\drivers\nvhda32.sys [145608 2016-07-11] (NVIDIA Corporation)
R3 sfman; C:\WINDOWS\System32\drivers\sfmanm.sys [36480 2001-08-17] (Creative Technology Ltd.)
S3 cpuz135; \??\E:\Program Files\CPUID\PC Wizard 2012\pcwiz_x32.sys [X]
S3 cpuz137; \??\E:\Program Files\CPUID\PC Wizard 2013\pcwiz_x32.sys [X]
S4 IntelIde; no ImagePath
U1 WS2IFSL; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-10-29 14:37 - 2018-10-29 14:40 - 000000000 ____D C:\Documents and Settings\NAME\Data aplikací\FreeFileSync
2018-10-29 14:37 - 2018-10-29 14:37 - 000000708 _____ C:\Documents and Settings\All Users\Plocha\FreeFileSync.lnk
2018-10-29 14:37 - 2018-10-29 14:37 - 000000708 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\FreeFileSync.lnk
2018-10-29 14:37 - 2018-10-29 14:37 - 000000694 _____ C:\Documents and Settings\All Users\Plocha\RealTimeSync.lnk
2018-10-29 14:37 - 2018-10-29 14:37 - 000000694 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\RealTimeSync.lnk
2018-10-29 14:15 - 2018-10-29 14:15 - 000041902 _____ C:\Documents and Settings\NAME\Plocha\Addition.txt
2018-10-29 14:14 - 2018-10-29 14:54 - 000016254 _____ C:\Documents and Settings\NAME\Plocha\FRST.txt
2018-10-29 14:14 - 2018-10-29 14:54 - 000000000 ____D C:\FRST
2018-10-29 14:08 - 2018-10-29 14:08 - 001774592 _____ (Farbar) C:\Documents and Settings\NAME\Plocha\FRST.exe
2018-10-27 19:27 - 2018-10-27 19:27 - 000003584 _____ C:\Documents and Settings\NAME\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2018-10-27 16:47 - 2018-10-27 16:47 - 000000000 ____D C:\Documents and Settings\All Users\Data aplikací\Canon_Inc_IC
2018-10-27 15:52 - 2018-10-29 14:02 - 000000940 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2018-10-27 15:52 - 2018-10-29 13:48 - 000000936 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2018-10-27 15:34 - 2018-10-27 15:34 - 000000844 _____ C:\Documents and Settings\NAME\Plocha\Continue CamStudio Installation.lnk
2018-10-22 17:21 - 2018-10-22 17:21 - 000000044 _____ C:\Documents and Settings\NetworkService\Data aplikací\WB.CFG
2018-10-21 20:21 - 2018-10-29 14:21 - 000000624 _____ C:\WINDOWS\Tasks\Chromium danef.job
2018-10-21 20:21 - 2018-10-24 17:21 - 000000000 ____D C:\Documents and Settings\NAME\Data aplikací\Detoluh
2018-10-21 20:20 - 2018-10-28 17:23 - 000000000 ____D C:\Documents and Settings\NAME\Local Settings\Data aplikac
2018-10-21 20:20 - 2018-10-21 20:21 - 000214510 _____ C:\Documents and Settings\NAME\Data aplikací\DMGR_1N1I1F1S1T1I0M1F1Q2Y1I1P1B0C1F1Q1P.txt
2018-10-21 20:20 - 2018-10-21 20:20 - 000000000 ____D C:\Documents and Settings\All Users\Data aplikac
2018-10-08 20:40 - 2018-10-29 14:52 - 000002214 _____ C:\WINDOWS\system32\nvAppTimestamps
2018-10-08 20:40 - 2018-10-08 20:42 - 000000000 ____D C:\Documents and Settings\NAME\Local Settings\Data aplikací\NVIDIA
2018-10-08 20:38 - 2018-10-08 20:38 - 000001030 _____ C:\Documents and Settings\All Users\Plocha\GeForce Experience.lnk
2018-10-08 20:38 - 2018-10-08 20:38 - 000000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\NVIDIA Corporation
2018-10-08 20:37 - 2018-10-08 20:37 - 000000000 ____D C:\Documents and Settings\All Users\Data aplikací\NVIDIA Corporation
2018-10-08 20:37 - 2016-07-11 00:29 - 000335872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrshe.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000335872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrsar.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000286720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrsfr.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000282624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrsit.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000282624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrses.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000282624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrsel.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000278528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrsde.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000274432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrspt.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000274432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrsnl.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000274432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrsja.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000274432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrsesm.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000270336 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrsru.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000270336 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrsptb.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000266240 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrsko.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000262144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrshu.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000258048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrstr.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000258048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrssl.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000258048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrssk.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000258048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrspl.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000253952 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrsth.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000253952 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrssv.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000253952 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrsno.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000253952 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrsda.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000249856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrsfi.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000249856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrseng.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000249856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrscs.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000229376 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrszhc.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000126976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrszht.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000054272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwddi.dll
2018-10-08 20:37 - 2016-07-11 00:28 - 015236544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2018-10-08 20:37 - 2016-07-11 00:28 - 000383544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2018-10-08 20:37 - 2016-07-11 00:28 - 000312768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
2018-10-08 20:37 - 2016-07-11 00:28 - 000149952 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcolor.exe
2018-10-08 20:37 - 2016-07-08 17:57 - 007211925 _____ C:\WINDOWS\system32\nvcoproc.bin
2018-10-08 20:36 - 2018-10-08 20:40 - 001633904 _____ C:\WINDOWS\system32\nvdrsdb1.bin
2018-10-08 20:36 - 2018-10-08 20:40 - 000000001 _____ C:\WINDOWS\system32\nvdrssel.bin
2018-10-08 20:36 - 2018-10-08 20:36 - 001303056 _____ C:\WINDOWS\system32\nvdrsdb0.bin
2018-10-08 20:36 - 2018-10-08 20:36 - 000000000 _____ C:\WINDOWS\system32\nvdrswr.lk
2018-10-08 20:36 - 2016-07-11 01:25 - 000186880 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2018-10-08 20:35 - 2016-07-11 01:57 - 000933952 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco3220103.dll
2018-10-08 20:35 - 2016-07-11 01:57 - 000145608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda32.sys
2018-10-08 20:35 - 2016-07-11 01:57 - 000044608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap32.dll
2018-10-08 20:35 - 2016-07-11 01:53 - 002345364 _____ C:\WINDOWS\system32\nvdata.data
2018-10-08 20:35 - 2016-07-11 01:53 - 001075256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco3236881.dll
2018-10-08 20:35 - 2016-07-11 01:53 - 000925752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco3236881.dll
2018-10-08 20:35 - 2016-07-11 01:53 - 000029352 _____ C:\WINDOWS\system32\nvinfo.pb
2018-10-08 20:35 - 2016-07-11 01:25 - 035101184 _____ C:\WINDOWS\system32\nvcompiler.dll
2018-10-08 20:35 - 2016-07-11 01:25 - 017943552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2018-10-08 20:35 - 2016-07-11 01:25 - 017540608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2018-10-08 20:35 - 2016-07-11 01:25 - 017526784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglnt.dll
2018-10-08 20:35 - 2016-07-11 01:25 - 003299840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi.dll
2018-10-08 20:35 - 2016-07-11 01:25 - 002992696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2018-10-08 20:35 - 2016-07-11 01:25 - 000394288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI.dll
2018-10-08 19:41 - 2018-10-08 20:35 - 000000000 ____D C:\Documents and Settings\All Users\Data aplikací\Package Cache
2018-10-08 19:18 - 2018-10-27 19:40 - 000000946 _____ C:\WINDOWS\Tasks\Adobe Flash Player NPAPI Notifier.job
2018-10-08 19:18 - 2018-10-08 19:18 - 000000000 ____D C:\Documents and Settings\LocalService\Data aplikací\Macromedia
2018-10-08 18:43 - 2018-10-29 14:50 - 000000330 ____H C:\WINDOWS\Tasks\CCleaner Update.job
2018-10-08 18:39 - 2008-04-13 23:15 - 000010624 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\gameenum.sys
2018-10-08 18:39 - 2008-04-13 23:15 - 000010624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\gameenum.sys
2018-10-08 18:39 - 2001-10-24 11:25 - 000051200 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\sfman32.dll
2018-10-08 18:39 - 2001-10-24 11:25 - 000024064 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\devldr32.exe
2018-10-08 18:39 - 2001-10-24 11:25 - 000024064 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\devldr32.exe
2018-10-08 18:39 - 2001-10-24 11:24 - 000495616 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\sblfx.dll
2018-10-08 18:39 - 2001-10-24 11:24 - 000495616 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\sblfx.dll
2018-10-08 18:39 - 2001-10-24 11:24 - 000256512 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\devcon32.dll
2018-10-08 18:39 - 2001-10-24 11:24 - 000256512 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\devcon32.dll
2018-10-08 18:39 - 2001-10-24 11:24 - 000004096 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\ctwdm32.dll
2018-10-08 18:39 - 2001-10-24 11:24 - 000004096 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\ctwdm32.dll
2018-10-08 18:39 - 2001-08-17 19:19 - 000283904 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\emu10k1m.sys
2018-10-08 18:39 - 2001-08-17 19:19 - 000283904 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\Drivers\emu10k1m.sys
2018-10-08 18:39 - 2001-08-17 19:19 - 000036480 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\sfmanm.sys
2018-10-08 18:39 - 2001-08-17 19:19 - 000036480 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\Drivers\sfmanm.sys
2018-10-08 18:39 - 2001-08-17 19:19 - 000006912 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\ctlfacem.sys
2018-10-08 18:39 - 2001-08-17 19:19 - 000006912 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\Drivers\ctlfacem.sys
2018-10-08 18:39 - 2001-08-17 19:19 - 000003712 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\ctljystk.sys
2018-10-08 18:39 - 2001-08-17 19:19 - 000003712 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\Drivers\ctljystk.sys
2018-10-08 18:39 - 2001-07-22 01:49 - 002104298 _____ C:\WINDOWS\system32\Drivers\2gmgsmt.sf2
2018-10-08 18:38 - 2018-10-29 14:50 - 000000364 ____H C:\WINDOWS\Tasks\Avast Emergency Update.job

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-10-29 14:54 - 2014-11-12 21:39 - 000000000 ____D C:\Documents and Settings\NAME\Local Settings\Temp
2018-10-29 14:53 - 2014-11-23 18:29 - 000000000 ____D C:\Documents and Settings\NAME\Data aplikací\KeePass
2018-10-29 14:37 - 2014-11-12 22:27 - 000000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy
2018-10-29 14:37 - 2014-11-12 22:27 - 000000000 ____D C:\Documents and Settings\All Users\Plocha
2018-10-29 14:37 - 2014-11-12 21:39 - 000000000 ___HD C:\Documents and Settings\NAME\Data aplikací
2018-10-29 14:18 - 2015-07-30 14:27 - 000000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2018-10-29 14:15 - 2014-11-12 21:39 - 000000000 ____D C:\Documents and Settings\NAME\Plocha
2018-10-29 13:52 - 2014-11-12 22:28 - 001187830 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-10-29 13:52 - 2001-10-25 12:00 - 000491906 _____ C:\WINDOWS\system32\perfh005.dat
2018-10-29 13:52 - 2001-10-25 12:00 - 000098404 _____ C:\WINDOWS\system32\perfc005.dat
2018-10-29 13:48 - 2015-07-27 20:32 - 000000276 _____ C:\WINDOWS\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1659004503-220523388-682003330-1003.job
2018-10-29 13:48 - 2014-11-12 21:38 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-10-29 13:48 - 2001-10-25 12:00 - 000002206 _____ C:\WINDOWS\system32\wpa.dbl
2018-10-28 23:52 - 2014-12-20 16:13 - 000065536 _____ C:\WINDOWS\system32\config\ODiag.evt
2018-10-28 23:52 - 2014-11-12 21:38 - 000032412 ____N C:\WINDOWS\SchedLgU.Txt
2018-10-28 23:50 - 2014-11-12 21:39 - 000000178 ___SH C:\Documents and Settings\NAME\ntuser.ini
2018-10-28 23:50 - 2014-11-12 21:39 - 000000000 ____D C:\Documents and Settings\NAME
2018-10-28 17:24 - 2015-03-05 19:17 - 000000284 _____ C:\WINDOWS\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1659004503-220523388-682003330-1003.job
2018-10-27 19:40 - 2014-11-12 21:34 - 000000000 ____D C:\WINDOWS\system32\Macromed
2018-10-27 19:27 - 2014-11-12 21:39 - 000000000 ___HD C:\Documents and Settings\NAME\Local Settings\Data aplikací
2018-10-27 16:47 - 2014-11-12 22:27 - 000000000 ___HD C:\Documents and Settings\All Users\Data aplikací
2018-10-27 15:52 - 2014-11-12 22:02 - 000000000 ____D C:\Program Files\Google
2018-10-27 15:47 - 2015-05-13 02:33 - 000000852 _____ C:\Documents and Settings\All Users\Plocha\Foxit Reader.lnk
2018-10-27 15:47 - 2015-05-13 02:33 - 000000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Foxit Reader
2018-10-22 19:53 - 2014-11-12 23:05 - 001505822 _____ C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-S-1-5-21-1659004503-220523388-682003330-1003-0.dat
2018-10-22 19:53 - 2014-11-12 23:05 - 000269198 _____ C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-System.dat
2018-10-22 17:21 - 2014-11-12 21:38 - 000000000 ____D C:\Documents and Settings\NetworkService\Data aplikací
2018-10-22 17:19 - 2015-03-05 19:16 - 000000000 ____D C:\Documents and Settings\All Users\Data aplikací\Real
2018-10-22 17:06 - 2015-04-14 23:54 - 000004535 _____ C:\Documents and Settings\NAME\Data aplikací\CamStudio.cfg
2018-10-22 17:06 - 2015-04-14 23:54 - 000000408 _____ C:\Documents and Settings\NAME\Data aplikací\CamShapes.ini
2018-10-22 17:06 - 2015-04-14 23:54 - 000000408 _____ C:\Documents and Settings\NAME\Data aplikací\CamLayout.ini
2018-10-22 17:06 - 2015-04-14 23:54 - 000000096 _____ C:\Documents and Settings\NAME\Data aplikací\Camdata.ini
2018-10-21 20:27 - 2015-10-31 20:58 - 000000000 ____D C:\Program Files\Ubisoft
2018-10-21 20:27 - 2015-10-23 23:16 - 000000000 ____D C:\Documents and Settings\NAME\Nabídka Start\Programy\Ubisoft
2018-10-21 20:23 - 2014-11-12 21:39 - 000000000 ___RD C:\Documents and Settings\NAME\Nabídka Start\Programy
2018-10-21 20:20 - 2014-11-12 22:26 - 000000000 ____D C:\Documents and Settings\All Users
2018-10-12 14:18 - 2015-07-30 14:27 - 000842240 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2018-10-12 14:18 - 2015-07-30 14:27 - 000175104 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2018-10-08 20:40 - 2014-11-12 22:21 - 000000000 ___HD C:\WINDOWS\inf
2018-10-08 20:38 - 2014-11-12 22:55 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2018-10-08 20:37 - 2014-11-12 22:21 - 000000000 RSHDC C:\WINDOWS\system32\dllcache
2018-10-08 20:37 - 2014-11-12 22:21 - 000000000 ____D C:\WINDOWS\Help
2018-10-08 20:15 - 2014-11-12 21:45 - 000000000 ___HD C:\Program Files\InstallShield Installation Information
2018-10-08 20:09 - 2015-07-29 05:13 - 000000000 ____D C:\Program Files\CCleaner
2018-10-08 20:09 - 2014-11-20 19:14 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2018-10-08 20:08 - 2014-11-12 22:21 - 000000000 ____D C:\WINDOWS\security
2018-10-08 20:01 - 2014-11-12 22:04 - 000000000 ____D C:\Documents and Settings\All Users\Data aplikací\Agnitum
2018-10-08 19:18 - 2014-11-12 21:38 - 000000000 ____D C:\Documents and Settings\LocalService\Data aplikací
2018-10-08 18:51 - 2014-11-12 22:33 - 000000000 ____D C:\Documents and Settings\NAME\Local Settings\Data aplikací\Temp

==================== Files in the root of some directories =======

2015-04-14 23:54 - 2018-10-22 17:06 - 000000096 _____ () C:\Documents and Settings\NAME\Data aplikací\Camdata.ini
2015-04-14 23:54 - 2018-10-22 17:06 - 000000408 _____ () C:\Documents and Settings\NAME\Data aplikací\CamLayout.ini
2015-04-14 23:54 - 2018-10-22 17:06 - 000000408 _____ () C:\Documents and Settings\NAME\Data aplikací\CamShapes.ini
2015-04-14 23:54 - 2018-10-22 17:06 - 000004535 _____ () C:\Documents and Settings\NAME\Data aplikací\CamStudio.cfg
2018-10-21 20:20 - 2018-10-21 20:21 - 000214510 _____ () C:\Documents and Settings\NAME\Data aplikací\DMGR_1N1I1F1S1T1I0M1F1Q2Y1I1P1B0C1F1Q1P.txt
2015-04-14 23:54 - 2015-04-14 23:55 - 000000096 _____ () C:\Documents and Settings\NAME\Data aplikací\version2.xml
2018-10-27 19:27 - 2018-10-27 19:27 - 000003584 _____ () C:\Documents and Settings\NAME\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

Some files in TEMP:
====================
2013-01-28 23:20 - 2013-01-28 23:20 - 000248008 _____ (Ask.com) C:\Documents and Settings\NAME\Local Settings\Temp\AskSLib.dll
2018-10-27 15:34 - 2018-10-27 15:34 - 002959288 _____ (CamStudio ) C:\Documents and Settings\NAME\Local Settings\Temp\camstudio.exe
2014-01-31 04:29 - 2014-01-31 04:29 - 000341120 _____ (Gretech Corporation) C:\Documents and Settings\NAME\Local Settings\Temp\ExPromo.exe
2015-05-13 02:33 - 2014-11-26 18:03 - 004856544 _____ (Foxit Corporation) C:\Documents and Settings\NAME\Local Settings\Temp\FoxitUpdater.exe
2018-10-22 17:25 - 2018-10-22 17:25 - 002515032 _____ (Horemafak ) C:\Documents and Settings\NAME\Local Settings\Temp\foxit_reader_3591553459.exe
2015-04-14 23:53 - 2015-04-14 23:53 - 000975208 _____ (%VENDOR%) C:\Documents and Settings\NAME\Local Settings\Temp\ICReinstall_camstudio.exe
2015-07-29 05:11 - 2015-07-29 05:12 - 006609608 _____ (Piriform Ltd) C:\Documents and Settings\NAME\Local Settings\Temp\~1C7.exe
2015-07-29 05:12 - 2015-07-29 05:12 - 000384529 _____ () C:\Documents and Settings\NAME\Local Settings\Temp\~1C8.exe
2015-03-29 21:40 - 2015-03-29 21:40 - 001138397 _____ () C:\Documents and Settings\NAME\Local Settings\Temp\~F5.exe
2015-03-29 21:40 - 2015-03-29 21:41 - 000384529 _____ () C:\Documents and Settings\NAME\Local Settings\Temp\~F6.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of FRST.txt ============================

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 24.10.2018
Ran by NAME (29-10-2018 14:54:54)
Running from C:\Documents and Settings\NAME\Plocha
Systém Microsoft Windows XP Professional Service Pack 3 (X86) (2014-11-12 20:37:23)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1659004503-220523388-682003330-500 - Administrator - Enabled)
ASPNET (S-1-5-21-1659004503-220523388-682003330-1004 - Limited - Enabled)
Guest (S-1-5-21-1659004503-220523388-682003330-501 - Limited - Disabled)
HelpAssistant (S-1-5-21-1659004503-220523388-682003330-1000 - Limited - Disabled)
NAME (S-1-5-21-1659004503-220523388-682003330-1003 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\NAME
SUPPORT_388945a0 (S-1-5-21-1659004503-220523388-682003330-1002 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Enabled - Up to date) {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: avast! Antivirus (Disabled) {7591DB91-41F0-48A3-B128-1A293FD8233D}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 9.22beta (HKLM\...\7-Zip) (Version: - )
Adobe Flash Player 31 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 31.0.0.122 - Adobe Systems Incorporated)
Aktualizace NVIDIA 2.11.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update) (Version: 2.11.4.0 - NVIDIA Corporation) Hidden
Aktualizace systému Windows Internet Explorer 8 (KB2598845) (HKLM\...\KB2598845-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB2345886) (HKLM\...\KB2345886) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB2467659) (HKLM\...\KB2467659) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB2749655) (HKLM\...\KB2749655) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB2904266) (HKLM\...\KB2904266) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB2934207) (HKLM\...\KB2934207) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB898461) (HKLM\...\KB898461) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB951978) (HKLM\...\KB951978) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace systému Windows XP (KB955759) (HKLM\...\KB955759) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB968389) (HKLM\...\KB968389) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB971029) (HKLM\...\KB971029) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows XP (KB973815) (HKLM\...\KB973815) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení aplikace Windows Media Player (KB2378111) (HKLM\...\KB2378111_WM9) (Version: - Microsoft Corporation)
Aktualizace zabezpečení aplikace Windows Media Player (KB2803821-v2) (HKLM\...\KB2803821-v2_WM9) (Version: - Microsoft Corporation)
Aktualizace zabezpečení aplikace Windows Media Player (KB952069) (HKLM\...\KB952069_WM9) (Version: - Microsoft Corporation)
Aktualizace zabezpečení aplikace Windows Media Player (KB954155) (HKLM\...\KB954155_WM9) (Version: - Microsoft Corporation)
Aktualizace zabezpečení aplikace Windows Media Player (KB973540) (HKLM\...\KB973540_WM9) (Version: - Microsoft Corporation)
Aktualizace zabezpečení aplikace Windows Media Player (KB975558) (HKLM\...\KB975558_WM8) (Version: - Microsoft Corporation)
Aktualizace zabezpečení aplikace Windows Media Player (KB978695) (HKLM\...\KB978695_WM9) (Version: - Microsoft Corporation)
Aktualizace zabezpečení pro Microsoft Windows (KB2564958) (HKLM\...\KB2564958) (Version: - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2936068) (HKLM\...\KB2936068-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2964358) (HKLM\...\KB2964358-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2510531) (HKLM\...\KB2510531-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2909210) (HKLM\...\KB2909210-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2909921) (HKLM\...\KB2909921-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2936068) (HKLM\...\KB2936068-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2964358) (HKLM\...\KB2964358-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB982381) (HKLM\...\KB982381-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2115168) (HKLM\...\KB2115168) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2229593) (HKLM\...\KB2229593) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2296011) (HKLM\...\KB2296011) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2347290) (HKLM\...\KB2347290) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2387149) (HKLM\...\KB2387149) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2393802) (HKLM\...\KB2393802) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2419632) (HKLM\...\KB2419632) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2423089) (HKLM\...\KB2423089) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2443105) (HKLM\...\KB2443105) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2478960) (HKLM\...\KB2478960) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2478971) (HKLM\...\KB2478971) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2479943) (HKLM\...\KB2479943) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2481109) (HKLM\...\KB2481109) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2483185) (HKLM\...\KB2483185) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2485663) (HKLM\...\KB2485663) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2506212) (HKLM\...\KB2506212) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2507938) (HKLM\...\KB2507938) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2508429) (HKLM\...\KB2508429) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2509553) (HKLM\...\KB2509553) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2510581) (HKLM\...\KB2510581) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows XP (KB2535512) (HKLM\...\KB2535512) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2536276-v2) (HKLM\...\KB2536276-v2) (Version: 2 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2544893-v2) (HKLM\...\KB2544893-v2) (Version: 2 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2566454) (HKLM\...\KB2566454) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2570947) (HKLM\...\KB2570947) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2584146) (HKLM\...\KB2584146) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2585542) (HKLM\...\KB2585542) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2592799) (HKLM\...\KB2592799) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2598479) (HKLM\...\KB2598479) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2603381) (HKLM\...\KB2603381) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2619339) (HKLM\...\KB2619339) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2620712) (HKLM\...\KB2620712) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2631813) (HKLM\...\KB2631813) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2653956) (HKLM\...\KB2653956) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2655992) (HKLM\...\KB2655992) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2659262) (HKLM\...\KB2659262) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2661637) (HKLM\...\KB2661637) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2676562) (HKLM\...\KB2676562) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2686509) (HKLM\...\KB2686509) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2691442) (HKLM\...\KB2691442) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2698365) (HKLM\...\KB2698365) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2705219-v2) (HKLM\...\KB2705219-v2) (Version: 2 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2712808) (HKLM\...\KB2712808) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2719985) (HKLM\...\KB2719985) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2723135-v2) (HKLM\...\KB2723135-v2) (Version: 2 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2727528) (HKLM\...\KB2727528) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2757638) (HKLM\...\KB2757638) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2770660) (HKLM\...\KB2770660) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2780091) (HKLM\...\KB2780091) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2802968) (HKLM\...\KB2802968) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2807986) (HKLM\...\KB2807986) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2813345) (HKLM\...\KB2813345) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2820917) (HKLM\...\KB2820917) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2834886) (HKLM\...\KB2834886) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2847311) (HKLM\...\KB2847311) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2850869) (HKLM\...\KB2850869) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2859537) (HKLM\...\KB2859537) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2862152) (HKLM\...\KB2862152) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2862330) (HKLM\...\KB2862330) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2862335) (HKLM\...\KB2862335) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2864063) (HKLM\...\KB2864063) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2868626) (HKLM\...\KB2868626) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2876217) (HKLM\...\KB2876217) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2876331) (HKLM\...\KB2876331) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2884256) (HKLM\...\KB2884256) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2892075) (HKLM\...\KB2892075) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2893294) (HKLM\...\KB2893294) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2898715) (HKLM\...\KB2898715) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2900986) (HKLM\...\KB2900986) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2909212) (HKLM\...\KB2909212) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows XP (KB2914368) (HKLM\...\KB2914368) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2916036) (HKLM\...\KB2916036) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2922229) (HKLM\...\KB2922229) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2929961) (HKLM\...\KB2929961) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB2930275) (HKLM\...\KB2930275) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB923561) (HKLM\...\KB923561) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB946648) (HKLM\...\KB946648) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB950762) (HKLM\...\KB950762) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB950974) (HKLM\...\KB950974) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB951376-v2) (HKLM\...\KB951376-v2) (Version: 2 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB952004) (HKLM\...\KB952004) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB952954) (HKLM\...\KB952954) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB956572) (HKLM\...\KB956572) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB956844) (HKLM\...\KB956844) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB959426) (HKLM\...\KB959426) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB960803) (HKLM\...\KB960803) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB960859) (HKLM\...\KB960859) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB969059) (HKLM\...\KB969059) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB970430) (HKLM\...\KB970430) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB971657) (HKLM\...\KB971657) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB972270) (HKLM\...\KB972270) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB973507) (HKLM\...\KB973507) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB973869) (HKLM\...\KB973869) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB973904) (HKLM\...\KB973904) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB974112) (HKLM\...\KB974112) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB974318) (HKLM\...\KB974318) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB974392) (HKLM\...\KB974392) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB974571) (HKLM\...\KB974571) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB975025) (HKLM\...\KB975025) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB975467) (HKLM\...\KB975467) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB975560) (HKLM\...\KB975560) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB975713) (HKLM\...\KB975713) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows XP (KB977816) (HKLM\...\KB977816) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB977914) (HKLM\...\KB977914) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB978338) (HKLM\...\KB978338) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB978542) (HKLM\...\KB978542) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB978706) (HKLM\...\KB978706) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB979309) (HKLM\...\KB979309) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB979482) (HKLM\...\KB979482) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB979687) (HKLM\...\KB979687) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB981997) (HKLM\...\KB981997) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB982132) (HKLM\...\KB982132) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB982665) (HKLM\...\KB982665) (Version: 1 - Microsoft Corporation)
Attansic Ethernet Utility (HKLM\...\{1F698102-5739-441E-96F0-74F4EA540F06}) (Version: 2.0.60.4 - Attansic)
Attansic L1 Gigabit Ethernet Driver (HKLM\...\AtcL1) (Version: - )
Avast Free Antivirus (HKLM\...\Avast) (Version: 11.1.2245 - AVAST Software)
Balíček ovladače systému Windows - Nokia Modem (02/25/2011 4.7) (HKLM\...\E0AC723A3DE3A04256288CADBBB011B112AED454) (Version: 02/25/2011 4.7 - Nokia)
Balíček ovladače systému Windows - Nokia Modem (02/25/2011 7.01.0.9) (HKLM\...\72A50F48CC5601190B9C4E74D81161693133E7F7) (Version: 02/25/2011 7.01.0.9 - Nokia)
Balíček ovladače systému Windows - Nokia pccsmcfd “LegacyDriver” (05/31/2012 7.1.2.0) (HKLM\...\17D063A0A9F5D5A225B76B1D9BCB5ADBE85C8382) (Version: 05/31/2012 7.1.2.0 - Nokia)
CamStudio 2.7.2 (HKLM\...\{04B83666-3A62-452B-85D3-70F8117F2329}_is1) (Version: 2.7.2 - CamStudio Open Source)
Canon Camera Access Library (HKLM\...\CAL) (Version: 8.5.0.2 - Canon Inc.)
Canon MovieEdit Task for ZoomBrowser EX (HKLM\...\MovieEditTask) (Version: 3.4.0.8 - Canon Inc.)
Canon Utilities CameraWindow (HKLM\...\CameraWindowLauncher) (Version: 7.4.0.7 - Canon Inc.)
Canon Utilities CameraWindow DC 8 (HKLM\...\CameraWindowDC8) (Version: 8.1.0.11 - Canon Inc.)
Canon Utilities Movie Uploader for YouTube (HKLM\...\MovieUploaderForYouTube) (Version: 1.0.0.11 - Canon Inc.)
Canon Utilities MyCamera (HKLM\...\MyCamera) (Version: 7.3.0.5 - Canon Inc.)
Canon Utilities PhotoStitch (HKLM\...\PhotoStitch) (Version: 3.1.22.46 - Canon Inc.)
Canon Utilities ZoomBrowser EX (HKLM\...\ZoomBrowser EX) (Version: 6.5.0.14 - Canon Inc.)
Canon ZoomBrowser EX Memory Card Utility (HKLM\...\ZoomBrowser EX Memory Card Utility) (Version: 1.3.0.4 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 5.46 - Piriform)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
ffdshow v1.1.3631 [2010-11-15] (HKLM\...\ffdshow_is1) (Version: 1.1.3631.0 - )
Foxit Cloud (HKLM\...\{41914D8B-9D6E-4764-A1F9-BC43FB6782C1}_is1) (Version: 3.7.143.923 - Foxit Software Inc.)
Foxit Reader (HKLM\...\Foxit Reader_is1) (Version: 7.1.5.425 - Foxit Software Inc.)
FreeFileSync 10.5 (HKLM\...\FreeFileSync_is1) (Version: 10.5 - FreeFileSync.org)
FreshDiagnose (HKLM\...\FreshDevices - FreshDiagnose_is1) (Version: - )
GOM Player (HKLM\...\GOM Player) (Version: 2.2.62.5209 - Gretech Corporation)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
HD Tune 2.50 (HKLM\...\HD Tune_is1) (Version: - EFD Software)
JMB36X Raid Configurer (HKLM\...\{3A1B5D40-41E9-43FA-8C7B-A8667F5586EF}) (Version: 1.00.0000 - JMICRON Technology Corp.)
KeePass Password Safe 2.28 (HKLM\...\KeePassPasswordSafe2_is1) (Version: 2.28 - Dominik Reichl)
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile CSY Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile CSY Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Extended CSY Language Pack (HKLM\...\Microsoft .NET Framework 4 Extended CSY Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Mozilla Firefox 52.9.0 ESR (x86 cs) (HKLM\...\Mozilla Firefox 52.9.0 ESR (x86 cs)) (Version: 52.9.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 52.9.0.6746 - Mozilla)
MSVC90_x86 (HKLM\...\{AF111648-99A1-453E-81DD-80DBBF6DAD0D}) (Version: 1.0.1.2 - Nokia) Hidden
MSXML 6.0 Parser (KB925673) (HKLM\...\{FE9126DB-5F84-495A-BB46-3C724F1C2D08}) (Version: 6.00.3888.0 - Microsoft Corporation)
Nokia Connectivity Cable Driver (HKLM\...\{A57025CC-5F2E-4D01-B387-06DB10500D43}) (Version: 7.1.78.0 - Nokia)
Nokia PC Suite (HKLM\...\{866C4563-ED53-43F3-A29D-8BEE2BD1BA3C}) (Version: 7.1.180.94 - Nokia) Hidden
Nokia PC Suite (HKLM\...\Nokia PC Suite) (Version: 7.1.180.94 - Nokia)
NVIDIA GeForce Experience 2.11.4.0 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.4.0 - NVIDIA Corporation)
NVIDIA nView 141.36 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView) (Version: 141.36 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.34.15 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.15 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 368.81 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 368.81 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
Oprava Hotfix systému Windows XP (KB952287) (HKLM\...\KB952287) (Version: 1 - Microsoft Corporation)
Oprava Hotfix systému Windows XP (KB961118) (HKLM\...\KB961118) (Version: 1 - Microsoft Corporation)
Ovládací panel NVIDIA 368.81 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 368.81 - NVIDIA Corporation) Hidden
PC Connectivity Solution (HKLM\...\{644F4910-E812-49AD-93EC-86828CB81A0D}) (Version: 12.0.27.0 - Nokia)
PC Probe II (HKLM\...\{F7338FA3-DAB5-49B2-900D-0AFB5760C166}) (Version: 1.04.19 - )
RealDownloader (HKLM\...\{C8E8D2E3-EF6A-4B1D-A09E-7B27EBE2F3CE}) (Version: 1.3.3 - RealNetworks, Inc.) Hidden
RealNetworks - Microsoft Visual C++ 2008 Runtime (HKLM\...\{7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}) (Version: 9.0 - RealNetworks, Inc) Hidden
RealNetworks - Microsoft Visual C++ 2010 Runtime (HKLM\...\{AAECF7BA-E83B-4A10-87EA-DE0B333F8734}) (Version: 10.0 - RealNetworks, Inc) Hidden
RealPlayer (HKLM\...\RealPlayer 16.0) (Version: 16.0.3 - RealNetworks)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 5.10.0.7111 - Realtek Semiconductor Corp.)
RealUpgrade 1.1 (HKLM\...\{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}) (Version: 1.1.0 - RealNetworks, Inc.) Hidden
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
WebFldrs XP (HKLM\...\{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}) (Version: 9.50.7523 - Microsoft Corporation) Hidden
Windows Genuine Advantage Notifications (KB905474) (HKLM\...\WgaNotify) (Version: 1.9.0040.0 - Microsoft Corporation)
Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation)
XML Paper Specification Shared Components Pack 1.0 (HKLM\...\XpsEPSC) (Version: - Microsoft Corporation) Hidden

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => E:\Program Files\AVAST Software\Avast\ashShell.dll [2016-01-04] (AVAST Software)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => E:\Program Files\7-Zip\7-zip.dll [2011-04-18] (Igor Pavlov)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => E:\Program Files\AVAST Software\Avast\ashShell.dll [2016-01-04] (AVAST Software)
ContextMenuHandlers1: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => E:\PROGRAM FILES\FOXIT SOFTWARE\FOXIT READER\plugins\ConvertToPDFShellExtension_x86.dll [2015-04-24] (Foxit Software Inc.)
ContextMenuHandlers3: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => E:\Program Files\AVAST Software\Avast\ashShell.dll [2016-01-04] (AVAST Software)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => E:\Program Files\7-Zip\7-zip.dll [2011-04-18] (Igor Pavlov)
ContextMenuHandlers5: [00nView] -> {1E9B04FB-F9E5-4718-997B-B8DA88302A48} => C:\Program Files\NVIDIA Corporation\nview\nvshell.dll [2016-07-11] ()
ContextMenuHandlers5: [NvCplDesktopContext] -> {A70C977A-BF00-412C-90B7-034C51DA2439} => C:\WINDOWS\system32\nvcpl.dll [2016-07-11] (NVIDIA Corporation)
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => E:\Program Files\AVAST Software\Avast\ashShell.dll [2016-01-04] (AVAST Software)

==================== Scheduled Tasks=============================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player NPAPI Notifier.job => C:\WINDOWS\system32\Macromed\Flash\FlashUtil32_31_0_0_122_Plugin.exe
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\Avast Emergency Update.job => E:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
Task: C:\WINDOWS\Tasks\CCleaner Update.job => C:\Program Files\CCleaner\CCUpdate.exe
Task: C:\WINDOWS\Tasks\Chromium danef.job => Wscript exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1659004503-220523388-682003330-1003.job => C:\Program Files\Real\RealUpgrade\realupgrade.exe
Task: C:\WINDOWS\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1659004503-220523388-682003330-1003.job => C:\Program Files\Real\RealUpgrade\realupgrade.exe

==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


==================== Loaded Modules (Whitelisted) ==============

2015-03-21 15:44 - 2016-01-04 23:11 - 000103888 _____ () E:\Program Files\AVAST Software\Avast\log.dll
2015-03-21 15:44 - 2016-01-04 23:11 - 000125512 _____ () E:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2018-10-28 17:27 - 2018-10-28 17:27 - 005693072 _____ () E:\Program Files\AVAST Software\Avast\defs\18102802\algo.dll
2016-04-14 16:48 - 2016-04-14 16:48 - 000510368 _____ () E:\Program Files\AVAST Software\Avast\ffl2.dll
2018-10-29 13:51 - 2018-10-29 13:51 - 005693072 _____ () E:\Program Files\AVAST Software\Avast\defs\18102902\algo.dll
2018-10-08 20:37 - 2016-07-11 01:51 - 000682304 _____ () C:\Program Files\NVIDIA Corporation\nview\nvshell.dll
2008-04-14 07:51 - 2008-04-14 07:51 - 000014336 _____ () C:\WINDOWS\system32\msdmo.dll
2015-03-13 20:23 - 2016-01-04 23:11 - 040539648 _____ () E:\Program Files\AVAST Software\Avast\libcef.dll
2018-10-08 20:38 - 2016-06-14 21:03 - 000018880 _____ () C:\Program Files\NVIDIA Corporation\Update Core\detoured.dll
2012-06-26 12:11 - 2012-06-26 12:11 - 002302040 _____ () C:\Program Files\Nokia\Nokia PC Suite 7\QtCore4.dll
2012-06-26 12:11 - 2012-06-26 12:11 - 008197208 _____ () C:\Program Files\Nokia\Nokia PC Suite 7\QtGui4.dll
2012-06-26 12:11 - 2012-06-26 12:11 - 000345688 _____ () C:\Program Files\Nokia\Nokia PC Suite 7\QtXml4.dll
2012-06-26 12:10 - 2012-06-26 12:10 - 000202328 _____ () C:\Program Files\Nokia\Nokia PC Suite 7\imageformats\qjpeg4.dll
2012-06-26 12:10 - 2012-06-26 12:10 - 000027736 _____ () C:\Program Files\Nokia\Nokia PC Suite 7\imageformats\qsvg4.dll
2012-06-26 12:11 - 2012-06-26 12:11 - 000282200 _____ () C:\Program Files\Nokia\Nokia PC Suite 7\QtSvg4.dll
2015-07-17 18:34 - 2018-10-08 18:43 - 000085320 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
2013-08-14 15:19 - 2013-08-14 15:19 - 000039056 _____ () C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Documents and Settings\All Users\Data aplikací\TEMP:A0CB5C3C [120]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2001-10-25 12:00 - 2018-10-08 18:43 - 000000737 _____ C:\WINDOWS\system32\Drivers\etc\hosts

127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1659004503-220523388-682003330-1003\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\Web\Wallpaper\Nebe.bmp
DNS Servers: 213.46.172.36 - 213.46.172.37
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName3 -> C:\WINDOWS\system32\ipconf.tsp (Microsoft Corporation)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName4 -> C:\WINDOWS\system32\h323.tsp (Microsoft Corporation)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

If an entry is included in the fixlist, it will be removed.


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

StandardProfile\AuthorizedApplications: [C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE] => Enabled:Microsoft Office Outlook
StandardProfile\AuthorizedApplications: [C:\Program Files\Microsoft Office\Office12\GROOVE.EXE] => Enabled:Microsoft Office Groove
StandardProfile\AuthorizedApplications: [C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE] => Enabled:Microsoft Office OneNote
StandardProfile\AuthorizedApplications: [E:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe] => Enabled:Avast Emergency Update
StandardProfile\AuthorizedApplications: [C:\Program Files\CCleaner\CCUpdate.exe] => Enabled:CCleaner Update
StandardProfile\AuthorizedApplications: [E:\Program Files\Mozilla Firefox\firefox.exe] => Enabled:Firefox (E:\Program Files\Mozilla Firefox)
StandardProfile\AuthorizedApplications: [C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe] => Enabled:NVIDIA Network Service TCP Exception (HTTPS)

==================== Restore Points =========================

28-10-2018 20:06:22 Kontrolní bod systému

==================== Faulty Device Manager Devices =============

Name: Attansic L1 Gigabit Ethernet 10/100/1000Base-T Controller - Agnitum firewall miniport
Description: Agnitum firewall miniport
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: Agnitum
Service: afw
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.

Name: WAN Miniport (IP) - Agnitum firewall miniport
Description: Agnitum firewall miniport
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: Agnitum
Service: afw
Problem: : Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)
Resolution: A registry problem was detected.
This can occur when more than one service is defined for a device, if there is a failure opening the service subkey, or if the driver name cannot be obtained from the service subkey. Try these options:
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
Click "Uninstall", and then click "Scan for hardware changes" to load a usable driver.


==================== Event log errors: =========================

Application errors:
==================
Error: (10/28/2018 09:14:15 PM) (Source: Microsoft Office 12) (EventID: 5000) (User: )
Description: EventType officelifeboathang, P1 winword.exe, P2 12.0.6743.5000, P3 ntdll.dll, P4 5.1.2600.6055, P5 NIL, P6 NIL, P7 NIL, P8 NIL, P9 NIL, P10 NIL.

Error: (10/08/2018 08:00:13 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Zablokovaná aplikace _iu14D2N.tmp, verze 51.49.0.0, zablokovaný modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error: (10/08/2018 07:40:27 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Zablokovaná aplikace setup.exe, verze 2.1002.211.1875, zablokovaný modul hungapp, verze 0.0.0.0, adresa bloku 0x00000000.

Error: (10/08/2018 07:03:40 PM) (Source: crypt32) (EventID: 11) (User: )
Description: Extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab> se nezdařilo. Chyba: Při ověření se systémovými hodinami nebo časovým razítkem podepsaného souboru bylo zjištěno, že požadovaný certifikát je mimo lhůtu platnosti.

Error: (10/08/2018 07:03:40 PM) (Source: crypt32) (EventID: 11) (User: )
Description: Extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab> se nezdařilo. Chyba: Při ověření se systémovými hodinami nebo časovým razítkem podepsaného souboru bylo zjištěno, že požadovaný certifikát je mimo lhůtu platnosti.

Error: (12/14/2016 11:19:12 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Chybující aplikace nvbackend.exe, verze 15.3.33.0, chybující modul nvbackend.exe, verze 15.3.33.0, adresa chyby 0x0007240c.
Zpracování události, specifické pro médium ([nvbackend.exe!ws!])

Error: (12/11/2016 06:48:02 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Chybující aplikace nvbackend.exe, verze 15.3.33.0, chybující modul nvbackend.exe, verze 15.3.33.0, adresa chyby 0x0007240c.
Zpracování události, specifické pro médium ([nvbackend.exe!ws!])

Error: (12/08/2016 02:25:36 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Chybující aplikace nvbackend.exe, verze 15.3.33.0, chybující modul nvbackend.exe, verze 15.3.33.0, adresa chyby 0x0007240c.
Zpracování události, specifické pro médium ([nvbackend.exe!ws!])


System errors:
=============
Error: (10/29/2018 01:48:06 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Foxit Cloud Safe Update Service neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (10/28/2018 11:52:35 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {9B1F122C-2982-4E91-AA8B-E071D54F2A4D} se v daném časovém limitu neregistroval u služby DCOM.

Error: (10/28/2018 11:45:07 PM) (Source: DCOM) (EventID: 10010) (User: OEM-B2E7813B358)
Description: Server {9B1F122C-2982-4E91-AA8B-E071D54F2A4D} se v daném časovém limitu neregistroval u služby DCOM.

Error: (10/28/2018 05:24:24 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Foxit Cloud Safe Update Service neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (10/27/2018 08:19:50 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {9B1F122C-2982-4E91-AA8B-E071D54F2A4D} se v daném časovém limitu neregistroval u služby DCOM.

Error: (10/27/2018 08:17:20 PM) (Source: DCOM) (EventID: 10010) (User: OEM-B2E7813B358)
Description: Server {9B1F122C-2982-4E91-AA8B-E071D54F2A4D} se v daném časovém limitu neregistroval u služby DCOM.

Error: (10/27/2018 03:18:55 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Foxit Cloud Safe Update Service neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (10/24/2018 11:33:44 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {9B1F122C-2982-4E91-AA8B-E071D54F2A4D} se v daném časovém limitu neregistroval u služby DCOM.


==================== Memory info ===========================

Processor: Intel(R) Core(TM)2 Duo CPU E8400 @ 3.00GHz
Percentage of memory in use: 29%
Total physical RAM: 2047.04 MB
Available physical RAM: 1438.65 MB
Total Virtual: 3939.68 MB
Available Virtual: 3430.9 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:29.3 GB) (Free:15.59 GB) NTFS ==>[drive with boot components (Windows XP)]
Drive d: (DATA) (Fixed) (Total:341.8 GB) (Free:56.82 GB) NTFS
Drive e: (WORK) (Fixed) (Total:94.66 GB) (Free:18.57 GB) NTFS
Drive g: (FALLOUT) (CDROM) (Total:0.58 GB) (Free:0 GB) CDFS


==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 011F011E)
Partition 1: (Active) - (Size=29.3 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=436.5 GB) - (Type=0F Extended)

==================== End of Addition.txt ============================

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Kontrola logu, případné léčení

#2 Příspěvek od Conder »

Ahoj :)

:arrow: Stiahni AdwCleaner 6.046 (posledna verzia kompatibilna s WinXP): https://filehippo.com/download_adwcleaner/74895/
  • Uloz na plochu a ukonci vsetky programy
  • Spusti AdwCleaner ako spravca
  • Odsuhlas licencne podmienky
  • Klikni na Scan (Skenovanie) a pockaj na dokoncenie
  • Klikni na Clean (Cistenie) a potvrd kliknutim na OK
  • AdwCleaner si vyziada restart PC, potvrd kliknutim na OK
  • Po dokonceni a restartovani PC vyskoci log, jeho obsah sem skopiruj
:arrow: Stiahni Junkware Removal Tool (JRT): https://downloads.malwarebytes.com/file/JRT-EOL/
  • Uloz na plochu a ukonci vsetky programy
  • Spusti JRT ako spravca
  • Stlac lubovolnu klavesu cim sa spusti cistenie
  • Po dokonceni sa otvori log, jeho obsah sem skopiruj
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

Blinkoka
Návštěvník
Návštěvník
Příspěvky: 42
Registrován: 11 črc 2011 13:27

Re: Kontrola logu, případné léčení

#3 Příspěvek od Blinkoka »

Zde je log z AdwC:

# AdwCleaner v6.046 - Log vytvořen 29/10/2018 v 19:19:00
# Aktualizováno dne 24/04/2017 z Malwarebytes
# Databáze : 2017-04-24.1 [Místní]
# Operační systém : Microsoft Windows XP Service Pack 3 (X86)
# Uživatelské jméno : NAME - OEM-B2E7813B358
# Spuštěno z : C:\Documents and Settings\NAME\Plocha\adwcleaner_6.046.exe
# Mod: Čištění
# Podpora : https://www.malwarebytes.com/support



***** [ Služby ] *****

[-] Služba smazána: WindowsMangerProtect


***** [ Složky ] *****

[-] Složka smazána: C:\Documents and Settings\All Users\Data aplikací\WindowsMangerProtect


***** [ Soubory ] *****



***** [ DLL ] *****



***** [ WMI ] *****



***** [ Zástupci ] *****



***** [ Naplánované úlohy ] *****



***** [ Registry ] *****

[#] Klíč smazán po restartu: HKLM\SYSTEM\CurrentControlSet\services\windowsmangerprotect
[-] Klíč smazán: HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\WindowsMangerProtect
[#] Klíč smazán po restartu: HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\windowsmangerprotect
[-] Klíč smazán: HKLM\SOFTWARE\Classes\PCSuiteContactsView
[-] Klíč smazán: HKLM\SOFTWARE\Classes\PCSuiteMessagesView
[-] Klíč smazán: HKLM\SOFTWARE\Classes\speedupmypc
[-] Klíč smazán: HKU\S-1-5-21-1659004503-220523388-682003330-1003\Software\csastats
[#] Klíč smazán po restartu: HKCU\Software\csastats
[-] Klíč smazán: HKLM\SOFTWARE\istartsurfSoftware
[-] Klíč smazán: HKLM\SOFTWARE\Uniblue
[-] Klíč smazán: HKLM\SOFTWARE\systweak
[-] Klíč smazán: HKLM\SOFTWARE\MaxPower


***** [ Prohlížeče ] *****



*************************

:: "Tracing" klíče smazány
:: Winsock nastavení vyčištěno

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [1792 Bajty] - [29/10/2018 19:19:00]
C:\AdwCleaner\AdwCleaner[S0].txt - [2086 Bajty] - [29/10/2018 19:18:21]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [1938 Bajty] ##########

Pak jsem spustil JRT a vygeneroval se log, který jsem omylem zavřel, tak jsem spustil znovu JRT a výsledný log byl jiný. Spustil jsem JRT potřetí a log byl opět jiný (prázdný), tak nevím, co mám dělat.
Tím ukončením všech programů se myslí ukončení všech aplikací ve správci úloh?

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Kontrola logu, případné léčení

#4 Příspěvek od Conder »

:arrow: JRT uklada logy v mieste, odkial bol spusteny, avsak ak uz log existuje tak ten sa prepise novym logom. Ale nevadi. Co sa tyka ukoncenia aplikacii, staci zavriet vsetky otvorene okna a pripadne ulozit rozrobenu pracu, kedze AdwCleaner pred cistenim nasilu ukonci vsetky programy.

:arrow: Poprosim o obidva nove logy z FRST.
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

Blinkoka
Návštěvník
Návštěvník
Příspěvky: 42
Registrován: 11 črc 2011 13:27

Re: Kontrola logu, případné léčení

#5 Příspěvek od Blinkoka »

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 24.10.2018
Ran by NAME (administrator) on OEM-B2E7813B358 (29-10-2018 22:55:53)
Running from C:\Documents and Settings\NAME\Plocha
Loaded Profiles: NAME (Available Profiles: NAME)
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) Language: Čeština
Internet Explorer Version 8 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVAST Software) E:\Program Files\AVAST Software\Avast\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
() C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
(Canon Inc.) C:\Program Files\Canon\CAL\CALMAIN.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(AVAST Software) E:\Program Files\AVAST Software\Avast\AvastUI.exe
(Creative Technology Ltd.) C:\WINDOWS\system32\devldr32.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(RealNetworks, Inc.) E:\Program Files\Real\RealPlayer\Update\realsched.exe
(Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(Nokia) C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
(Nokia) C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
(Nokia) C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
(Nokia) C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [20145368 2013-10-04] (Realtek Semiconductor Corp.)
HKLM\...\Run: [JMB36X IDE Setup] => C:\WINDOWS\RaidTool\xInsIDE.exe [36864 2007-03-20] ()
HKLM\...\Run: [36X Raid Configurer] => C:\WINDOWS\system32\xRaidSetup.exe [1953792 2007-03-21] (JMicron Technology Corp.)
HKLM\...\Run: [AvastUI.exe] => E:\Program Files\AVAST Software\Avast\AvastUI.exe [7021880 2016-01-04] (AVAST Software)
HKLM\...\Run: [KeePass 2 PreLoad] => E:\Program Files\KeePass Password Safe 2\KeePass.exe [2109952 2014-10-07] (Dominik Reichl)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [KernelFaultCheck] => %systemroot%\system32\dumprep 0 -k
HKLM\...\Run: [TkBellExe] => E:\Program Files\Real\RealPlayer\update\realsched.exe [295512 2015-03-05] (RealNetworks, Inc.)
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [NvMediaCenter] => RunDLL32.exe NvMCTray.dll,NvTaskbarInit -login
HKLM\...\Run: [nwiz] => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2591888 2016-07-11] ()
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2397120 2016-06-14] (NVIDIA Corporation)
HKU\S-1-5-19\...\RunOnce: [_nltide_2] => regsvr32 /s /n /i:U shell32
HKU\S-1-5-20\...\RunOnce: [_nltide_2] => regsvr32 /s /n /i:U shell32
HKU\S-1-5-21-1659004503-220523388-682003330-1003\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-1659004503-220523388-682003330-1003\...\Run: [PC Suite Tray] => C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [1516632 2012-06-26] (Nokia)
HKU\S-1-5-21-1659004503-220523388-682003330-1003\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner.exe [13797712 2018-10-08] (Piriform Ltd)
HKU\S-1-5-21-1659004503-220523388-682003330-1003\...\Run: [Chromium] => "c:\documents and settings\name\local settings\data aplikací\chromium\application\chrome.exe" --auto-launch-at-startup --profile-directory="Default" --restore-last-session
HKU\S-1-5-21-1659004503-220523388-682003330-1003\...\MountPoints2: {dd6bbd90-8859-11e4-97ca-001e8c1fba34} - G:\autorun\autorun.exe
HKU\S-1-5-18\...\RunOnce: [_nltide_2] => regsvr32 /s /n /i:U shell32
Startup: C:\Documents and Settings\NAME\Nabídka Start\Programy\Po spuštění\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk [2015-07-13]
ShortcutTarget: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 213.46.172.36 213.46.172.37
Tcpip\..\Interfaces\{D4DA158D-FB5D-4299-8A29-09ECA2344364}: [DhcpNameServer] 213.46.172.36 213.46.172.37

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/?clid=22668
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-1659004503-220523388-682003330-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/?clid=22668
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "about:newtab" <==== ATTENTION
SearchScopes: HKLM -> DefaultScope {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL =
SearchScopes: HKU\S-1-5-21-1659004503-220523388-682003330-1003 -> DefaultScope {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL =
BHO: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2013-08-14] (RealDownloader)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> E:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-01-04] (AVAST Software)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF ProfilePath: C:\Documents and Settings\NAME\Data aplikací\Mozilla\Firefox\Profiles\uyteznwf.default [2018-10-29]
FF Homepage: C:\Documents and Settings\NAME\Data aplikací\Mozilla\Firefox\Profiles\uyteznwf.default -> hxxps://www.seznam.cz/?clid=22668
FF NewTab: C:\Documents and Settings\NAME\Data aplikací\Mozilla\Firefox\Profiles\uyteznwf.default -> about:newtab
FF SearchPlugin: C:\Documents and Settings\NAME\Data aplikací\Mozilla\Firefox\Profiles\uyteznwf.default\searchplugins\seznam-avast.xml [2016-12-01]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - E:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - E:\Program Files\AVAST Software\Avast\WebRep\FF [2016-01-04] [Legacy]
FF HKLM\...\Firefox\Extensions: [{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}] - C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: (RealDownloader) - C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2015-03-05] [Legacy] [not signed]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: (Microsoft .NET Framework Assistant) - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2016-01-17] [Legacy] [not signed]
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_31_0_0_122.dll [2018-10-12] ()
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> E:\PROGRAM FILES\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> E:\PROGRAM FILES\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> E:\PROGRAM FILES\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> E:\PROGRAM FILES\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @real.com/nppl3260;version=16.0.3.51 -> E:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll [2015-03-05] (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlchromebrowserrecordext;version=1.3.3 -> C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll [2013-08-14] (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlhtml5videoshim;version=1.3.3 -> C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll [2013-08-14] (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlpepperflashvideoshim;version=1.3.3 -> C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll [2013-08-14] (RealNetworks, Inc.)
FF Plugin: @real.com/nprpplugin;version=16.0.3.51 -> E:\Program Files\Real\RealPlayer\Netscape6\nprpplugin.dll [2015-03-05] (RealPlayer)
FF Plugin: @realnetworks.com/npdlplugin;version=1 -> C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll [2013-08-14] (RealDownloader)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-10-27] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-10-27] (Google Inc.)
StartMenuInternet: FIREFOX.EXE - firefox.exe

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - E:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-01-04]
CHR HKLM\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2013-08-14]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335872 2018-10-12] (Adobe Systems Incorporated) [File not signed]
R2 avast! Antivirus; E:\Program Files\AVAST Software\Avast\AvastSvc.exe [226440 2016-01-04] (AVAST Software)
R2 CCALib8; C:\Program Files\Canon\CAL\CALMAIN.exe [96334 2009-09-08] (Canon Inc.) [File not signed]
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-06-14] (NVIDIA Corporation)
R2 RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] ()
S2 FoxitCloudUpdateService; "E:\PROGRAM FILES\FOXIT SOFTWARE\FOXIT READER\Foxit Cloud\FCUpdateService.exe" [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1691480 2009-11-18] (Creative)
R1 AsIO; C:\WINDOWS\System32\drivers\AsIO.sys [12664 2006-10-19] ()
R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [24016 2016-01-04] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [81168 2016-01-04] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [55200 2016-01-04] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49776 2016-01-04] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [812720 2016-03-02] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [449384 2016-01-20] (AVAST Software)
R3 aswStmXP; C:\WINDOWS\system32\drivers\aswStmXP.sys [165104 2016-01-04] (AVAST Software)
S3 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [58016 2016-01-04] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [209432 2016-01-04] (AVAST Software)
R3 AtcL001; C:\WINDOWS\System32\DRIVERS\atl01_xp.sys [38656 2007-03-15] (Attansic Technology corporation.)
R3 ctljystk; C:\WINDOWS\System32\DRIVERS\ctljystk.sys [3712 2001-08-17] (Creative Technology Ltd.)
R1 dtsoftbus01; C:\WINDOWS\System32\DRIVERS\dtsoftbus01.sys [243128 2014-12-20] (Disc Soft Ltd)
R3 emu10k; C:\WINDOWS\System32\drivers\emu10k1m.sys [283904 2001-08-17] (Creative Technology Ltd.)
R3 emu10k1; C:\WINDOWS\System32\drivers\ctlfacem.sys [6912 2001-08-17] (Creative Technology Ltd.)
S3 FreshIO; E:\Program Files\FreshDevices\FreshDiagnose\FreshIO.sys [2410 2004-10-26] () [File not signed]
R3 gameenum; C:\WINDOWS\System32\DRIVERS\gameenum.sys [10624 2008-04-13] (Microsoft Corporation)
R0 JGOGO; C:\WINDOWS\System32\DRIVERS\JGOGO.sys [6912 2006-02-07] (JMicron )
R0 JRAID; C:\WINDOWS\System32\DRIVERS\jraid.sys [46208 2007-03-24] (JMicron Technology Corp.)
S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1395800 2009-11-18] (Creative Technology Ltd.)
R3 MTsensor; C:\WINDOWS\System32\DRIVERS\ASACPI.sys [5810 2004-08-13] ()
R3 NVHDA; C:\WINDOWS\System32\drivers\nvhda32.sys [145608 2016-07-11] (NVIDIA Corporation)
R3 sfman; C:\WINDOWS\System32\drivers\sfmanm.sys [36480 2001-08-17] (Creative Technology Ltd.)
S3 cpuz135; \??\E:\Program Files\CPUID\PC Wizard 2012\pcwiz_x32.sys [X]
S3 cpuz137; \??\E:\Program Files\CPUID\PC Wizard 2013\pcwiz_x32.sys [X]
S4 IntelIde; no ImagePath
U1 WS2IFSL; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-10-29 19:35 - 2018-10-29 19:35 - 001790024 _____ (Malwarebytes) C:\Documents and Settings\NAME\Plocha\JRT.exe
2018-10-29 19:16 - 2018-10-29 19:19 - 000000000 ____D C:\AdwCleaner
2018-10-29 19:15 - 2018-10-29 19:16 - 004102600 _____ C:\Documents and Settings\NAME\Plocha\adwcleaner_6.046.exe
2018-10-29 14:37 - 2018-10-29 14:40 - 000000000 ____D C:\Documents and Settings\NAME\Data aplikací\FreeFileSync
2018-10-29 14:37 - 2018-10-29 14:37 - 000000708 _____ C:\Documents and Settings\All Users\Plocha\FreeFileSync.lnk
2018-10-29 14:37 - 2018-10-29 14:37 - 000000708 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\FreeFileSync.lnk
2018-10-29 14:37 - 2018-10-29 14:37 - 000000694 _____ C:\Documents and Settings\All Users\Plocha\RealTimeSync.lnk
2018-10-29 14:37 - 2018-10-29 14:37 - 000000694 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\RealTimeSync.lnk
2018-10-29 14:15 - 2018-10-29 14:54 - 000042072 _____ C:\Documents and Settings\NAME\Plocha\Addition.txt
2018-10-29 14:14 - 2018-10-29 22:56 - 000015400 _____ C:\Documents and Settings\NAME\Plocha\FRST.txt
2018-10-29 14:14 - 2018-10-29 22:55 - 000000000 ____D C:\FRST
2018-10-29 14:08 - 2018-10-29 14:08 - 001774592 _____ (Farbar) C:\Documents and Settings\NAME\Plocha\FRST.exe
2018-10-27 19:27 - 2018-10-27 19:27 - 000003584 _____ C:\Documents and Settings\NAME\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2018-10-27 16:47 - 2018-10-27 16:47 - 000000000 ____D C:\Documents and Settings\All Users\Data aplikací\Canon_Inc_IC
2018-10-27 15:52 - 2018-10-29 22:02 - 000000940 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2018-10-27 15:52 - 2018-10-29 20:59 - 000000936 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2018-10-27 15:34 - 2018-10-27 15:34 - 000000844 _____ C:\Documents and Settings\NAME\Plocha\Continue CamStudio Installation.lnk
2018-10-22 17:21 - 2018-10-22 17:21 - 000000044 _____ C:\Documents and Settings\NetworkService\Data aplikací\WB.CFG
2018-10-21 20:21 - 2018-10-29 22:21 - 000000624 _____ C:\WINDOWS\Tasks\Chromium danef.job
2018-10-21 20:21 - 2018-10-24 17:21 - 000000000 ____D C:\Documents and Settings\NAME\Data aplikací\Detoluh
2018-10-21 20:20 - 2018-10-28 17:23 - 000000000 ____D C:\Documents and Settings\NAME\Local Settings\Data aplikac
2018-10-21 20:20 - 2018-10-21 20:21 - 000214510 _____ C:\Documents and Settings\NAME\Data aplikací\DMGR_1N1I1F1S1T1I0M1F1Q2Y1I1P1B0C1F1Q1P.txt
2018-10-21 20:20 - 2018-10-21 20:20 - 000000000 ____D C:\Documents and Settings\All Users\Data aplikac
2018-10-08 20:40 - 2018-10-29 22:54 - 000002214 _____ C:\WINDOWS\system32\nvAppTimestamps
2018-10-08 20:40 - 2018-10-08 20:42 - 000000000 ____D C:\Documents and Settings\NAME\Local Settings\Data aplikací\NVIDIA
2018-10-08 20:38 - 2018-10-08 20:38 - 000001030 _____ C:\Documents and Settings\All Users\Plocha\GeForce Experience.lnk
2018-10-08 20:38 - 2018-10-08 20:38 - 000000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\NVIDIA Corporation
2018-10-08 20:37 - 2018-10-08 20:37 - 000000000 ____D C:\Documents and Settings\All Users\Data aplikací\NVIDIA Corporation
2018-10-08 20:37 - 2016-07-11 00:29 - 000335872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrshe.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000335872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrsar.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000286720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrsfr.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000282624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrsit.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000282624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrses.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000282624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrsel.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000278528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrsde.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000274432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrspt.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000274432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrsnl.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000274432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrsja.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000274432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrsesm.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000270336 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrsru.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000270336 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrsptb.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000266240 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrsko.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000262144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrshu.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000258048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrstr.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000258048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrssl.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000258048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrssk.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000258048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrspl.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000253952 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrsth.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000253952 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrssv.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000253952 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrsno.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000253952 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrsda.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000249856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrsfi.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000249856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrseng.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000249856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrscs.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000229376 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrszhc.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000126976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrszht.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000054272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwddi.dll
2018-10-08 20:37 - 2016-07-11 00:28 - 015236544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2018-10-08 20:37 - 2016-07-11 00:28 - 000383544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2018-10-08 20:37 - 2016-07-11 00:28 - 000312768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
2018-10-08 20:37 - 2016-07-11 00:28 - 000149952 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcolor.exe
2018-10-08 20:37 - 2016-07-08 17:57 - 007211925 _____ C:\WINDOWS\system32\nvcoproc.bin
2018-10-08 20:36 - 2018-10-08 20:40 - 001633904 _____ C:\WINDOWS\system32\nvdrsdb1.bin
2018-10-08 20:36 - 2018-10-08 20:40 - 000000001 _____ C:\WINDOWS\system32\nvdrssel.bin
2018-10-08 20:36 - 2018-10-08 20:36 - 001303056 _____ C:\WINDOWS\system32\nvdrsdb0.bin
2018-10-08 20:36 - 2018-10-08 20:36 - 000000000 _____ C:\WINDOWS\system32\nvdrswr.lk
2018-10-08 20:36 - 2016-07-11 01:25 - 000186880 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2018-10-08 20:35 - 2016-07-11 01:57 - 000933952 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco3220103.dll
2018-10-08 20:35 - 2016-07-11 01:57 - 000145608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda32.sys
2018-10-08 20:35 - 2016-07-11 01:57 - 000044608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap32.dll
2018-10-08 20:35 - 2016-07-11 01:53 - 002345364 _____ C:\WINDOWS\system32\nvdata.data
2018-10-08 20:35 - 2016-07-11 01:53 - 001075256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco3236881.dll
2018-10-08 20:35 - 2016-07-11 01:53 - 000925752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco3236881.dll
2018-10-08 20:35 - 2016-07-11 01:53 - 000029352 _____ C:\WINDOWS\system32\nvinfo.pb
2018-10-08 20:35 - 2016-07-11 01:25 - 035101184 _____ C:\WINDOWS\system32\nvcompiler.dll
2018-10-08 20:35 - 2016-07-11 01:25 - 017943552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2018-10-08 20:35 - 2016-07-11 01:25 - 017540608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2018-10-08 20:35 - 2016-07-11 01:25 - 017526784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglnt.dll
2018-10-08 20:35 - 2016-07-11 01:25 - 003299840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi.dll
2018-10-08 20:35 - 2016-07-11 01:25 - 002992696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2018-10-08 20:35 - 2016-07-11 01:25 - 000394288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI.dll
2018-10-08 19:41 - 2018-10-08 20:35 - 000000000 ____D C:\Documents and Settings\All Users\Data aplikací\Package Cache
2018-10-08 19:18 - 2018-10-27 19:40 - 000000946 _____ C:\WINDOWS\Tasks\Adobe Flash Player NPAPI Notifier.job
2018-10-08 19:18 - 2018-10-08 19:18 - 000000000 ____D C:\Documents and Settings\LocalService\Data aplikací\Macromedia
2018-10-08 18:43 - 2018-10-29 20:58 - 000000330 ____H C:\WINDOWS\Tasks\CCleaner Update.job
2018-10-08 18:39 - 2008-04-13 23:15 - 000010624 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\gameenum.sys
2018-10-08 18:39 - 2008-04-13 23:15 - 000010624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\gameenum.sys
2018-10-08 18:39 - 2001-10-24 11:25 - 000051200 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\sfman32.dll
2018-10-08 18:39 - 2001-10-24 11:25 - 000024064 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\devldr32.exe
2018-10-08 18:39 - 2001-10-24 11:25 - 000024064 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\devldr32.exe
2018-10-08 18:39 - 2001-10-24 11:24 - 000495616 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\sblfx.dll
2018-10-08 18:39 - 2001-10-24 11:24 - 000495616 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\sblfx.dll
2018-10-08 18:39 - 2001-10-24 11:24 - 000256512 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\devcon32.dll
2018-10-08 18:39 - 2001-10-24 11:24 - 000256512 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\devcon32.dll
2018-10-08 18:39 - 2001-10-24 11:24 - 000004096 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\ctwdm32.dll
2018-10-08 18:39 - 2001-10-24 11:24 - 000004096 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\ctwdm32.dll
2018-10-08 18:39 - 2001-08-17 19:19 - 000283904 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\emu10k1m.sys
2018-10-08 18:39 - 2001-08-17 19:19 - 000283904 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\Drivers\emu10k1m.sys
2018-10-08 18:39 - 2001-08-17 19:19 - 000036480 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\sfmanm.sys
2018-10-08 18:39 - 2001-08-17 19:19 - 000036480 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\Drivers\sfmanm.sys
2018-10-08 18:39 - 2001-08-17 19:19 - 000006912 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\ctlfacem.sys
2018-10-08 18:39 - 2001-08-17 19:19 - 000006912 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\Drivers\ctlfacem.sys
2018-10-08 18:39 - 2001-08-17 19:19 - 000003712 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\ctljystk.sys
2018-10-08 18:39 - 2001-08-17 19:19 - 000003712 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\Drivers\ctljystk.sys
2018-10-08 18:39 - 2001-07-22 01:49 - 002104298 _____ C:\WINDOWS\system32\Drivers\2gmgsmt.sf2
2018-10-08 18:38 - 2018-10-29 20:59 - 000000364 ____H C:\WINDOWS\Tasks\Avast Emergency Update.job

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-10-29 22:56 - 2014-11-12 21:39 - 000000000 ____D C:\Documents and Settings\NAME\Local Settings\Temp
2018-10-29 22:54 - 2014-11-23 18:29 - 000000000 ____D C:\Documents and Settings\NAME\Data aplikací\KeePass
2018-10-29 22:18 - 2015-07-30 14:27 - 000000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2018-10-29 21:17 - 2014-11-12 21:47 - 000069232 _____ C:\Documents and Settings\NAME\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
2018-10-29 20:59 - 2015-07-27 20:32 - 000000276 _____ C:\WINDOWS\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1659004503-220523388-682003330-1003.job
2018-10-29 20:59 - 2015-03-05 19:17 - 000000284 _____ C:\WINDOWS\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1659004503-220523388-682003330-1003.job
2018-10-29 20:59 - 2001-10-25 12:00 - 000002206 _____ C:\WINDOWS\system32\wpa.dbl
2018-10-29 20:58 - 2014-11-12 22:26 - 000270984 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-10-29 20:58 - 2014-11-12 21:38 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-10-29 20:38 - 2014-11-12 21:38 - 000032622 _____ C:\WINDOWS\SchedLgU.Txt
2018-10-29 20:36 - 2014-11-12 21:39 - 000000178 ___SH C:\Documents and Settings\NAME\ntuser.ini
2018-10-29 20:36 - 2014-11-12 21:39 - 000000000 ____D C:\Documents and Settings\NAME
2018-10-29 19:35 - 2014-11-12 21:39 - 000000000 ____D C:\Documents and Settings\NAME\Plocha
2018-10-29 19:26 - 2014-11-12 22:28 - 001187830 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-10-29 19:26 - 2001-10-25 12:00 - 000491906 _____ C:\WINDOWS\system32\perfh005.dat
2018-10-29 19:26 - 2001-10-25 12:00 - 000098404 _____ C:\WINDOWS\system32\perfc005.dat
2018-10-29 19:18 - 2014-11-12 22:27 - 000000000 ___HD C:\Documents and Settings\All Users\Data aplikací
2018-10-29 14:37 - 2014-11-12 22:27 - 000000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy
2018-10-29 14:37 - 2014-11-12 22:27 - 000000000 ____D C:\Documents and Settings\All Users\Plocha
2018-10-29 14:37 - 2014-11-12 21:39 - 000000000 ___HD C:\Documents and Settings\NAME\Data aplikací
2018-10-28 23:52 - 2014-12-20 16:13 - 000065536 _____ C:\WINDOWS\system32\config\ODiag.evt
2018-10-27 19:40 - 2014-11-12 21:34 - 000000000 ____D C:\WINDOWS\system32\Macromed
2018-10-27 19:27 - 2014-11-12 21:39 - 000000000 ___HD C:\Documents and Settings\NAME\Local Settings\Data aplikací
2018-10-27 15:52 - 2014-11-12 22:02 - 000000000 ____D C:\Program Files\Google
2018-10-27 15:47 - 2015-05-13 02:33 - 000000852 _____ C:\Documents and Settings\All Users\Plocha\Foxit Reader.lnk
2018-10-27 15:47 - 2015-05-13 02:33 - 000000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Foxit Reader
2018-10-22 19:53 - 2014-11-12 23:05 - 001505822 _____ C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-S-1-5-21-1659004503-220523388-682003330-1003-0.dat
2018-10-22 19:53 - 2014-11-12 23:05 - 000269198 _____ C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-System.dat
2018-10-22 17:21 - 2014-11-12 21:38 - 000000000 ____D C:\Documents and Settings\NetworkService\Data aplikací
2018-10-22 17:19 - 2015-03-05 19:16 - 000000000 ____D C:\Documents and Settings\All Users\Data aplikací\Real
2018-10-22 17:06 - 2015-04-14 23:54 - 000004535 _____ C:\Documents and Settings\NAME\Data aplikací\CamStudio.cfg
2018-10-22 17:06 - 2015-04-14 23:54 - 000000408 _____ C:\Documents and Settings\NAME\Data aplikací\CamShapes.ini
2018-10-22 17:06 - 2015-04-14 23:54 - 000000408 _____ C:\Documents and Settings\NAME\Data aplikací\CamLayout.ini
2018-10-22 17:06 - 2015-04-14 23:54 - 000000096 _____ C:\Documents and Settings\NAME\Data aplikací\Camdata.ini
2018-10-21 20:27 - 2015-10-31 20:58 - 000000000 ____D C:\Program Files\Ubisoft
2018-10-21 20:27 - 2015-10-23 23:16 - 000000000 ____D C:\Documents and Settings\NAME\Nabídka Start\Programy\Ubisoft
2018-10-21 20:23 - 2014-11-12 21:39 - 000000000 ___RD C:\Documents and Settings\NAME\Nabídka Start\Programy
2018-10-21 20:20 - 2014-11-12 22:26 - 000000000 ____D C:\Documents and Settings\All Users
2018-10-12 14:18 - 2015-07-30 14:27 - 000842240 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2018-10-12 14:18 - 2015-07-30 14:27 - 000175104 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2018-10-08 20:40 - 2014-11-12 22:21 - 000000000 ___HD C:\WINDOWS\inf
2018-10-08 20:38 - 2014-11-12 22:55 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2018-10-08 20:37 - 2014-11-12 22:21 - 000000000 RSHDC C:\WINDOWS\system32\dllcache
2018-10-08 20:37 - 2014-11-12 22:21 - 000000000 ____D C:\WINDOWS\Help
2018-10-08 20:15 - 2014-11-12 21:45 - 000000000 ___HD C:\Program Files\InstallShield Installation Information
2018-10-08 20:09 - 2015-07-29 05:13 - 000000000 ____D C:\Program Files\CCleaner
2018-10-08 20:09 - 2014-11-20 19:14 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2018-10-08 20:08 - 2014-11-12 22:21 - 000000000 ____D C:\WINDOWS\security
2018-10-08 20:01 - 2014-11-12 22:04 - 000000000 ____D C:\Documents and Settings\All Users\Data aplikací\Agnitum
2018-10-08 19:18 - 2014-11-12 21:38 - 000000000 ____D C:\Documents and Settings\LocalService\Data aplikací
2018-10-08 18:51 - 2014-11-12 22:33 - 000000000 ____D C:\Documents and Settings\NAME\Local Settings\Data aplikací\Temp

==================== Files in the root of some directories =======

2015-04-14 23:54 - 2018-10-22 17:06 - 000000096 _____ () C:\Documents and Settings\NAME\Data aplikací\Camdata.ini
2015-04-14 23:54 - 2018-10-22 17:06 - 000000408 _____ () C:\Documents and Settings\NAME\Data aplikací\CamLayout.ini
2015-04-14 23:54 - 2018-10-22 17:06 - 000000408 _____ () C:\Documents and Settings\NAME\Data aplikací\CamShapes.ini
2015-04-14 23:54 - 2018-10-22 17:06 - 000004535 _____ () C:\Documents and Settings\NAME\Data aplikací\CamStudio.cfg
2018-10-21 20:20 - 2018-10-21 20:21 - 000214510 _____ () C:\Documents and Settings\NAME\Data aplikací\DMGR_1N1I1F1S1T1I0M1F1Q2Y1I1P1B0C1F1Q1P.txt
2015-04-14 23:54 - 2015-04-14 23:55 - 000000096 _____ () C:\Documents and Settings\NAME\Data aplikací\version2.xml
2018-10-27 19:27 - 2018-10-27 19:27 - 000003584 _____ () C:\Documents and Settings\NAME\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

Some files in TEMP:
====================
2013-01-28 23:20 - 2013-01-28 23:20 - 000248008 _____ (Ask.com) C:\Documents and Settings\NAME\Local Settings\Temp\AskSLib.dll
2018-10-27 15:34 - 2018-10-27 15:34 - 002959288 _____ (CamStudio ) C:\Documents and Settings\NAME\Local Settings\Temp\camstudio.exe
2014-01-31 04:29 - 2014-01-31 04:29 - 000341120 _____ (Gretech Corporation) C:\Documents and Settings\NAME\Local Settings\Temp\ExPromo.exe
2015-05-13 02:33 - 2014-11-26 18:03 - 004856544 _____ (Foxit Corporation) C:\Documents and Settings\NAME\Local Settings\Temp\FoxitUpdater.exe
2018-10-22 17:25 - 2018-10-22 17:25 - 002515032 _____ (Horemafak ) C:\Documents and Settings\NAME\Local Settings\Temp\foxit_reader_3591553459.exe
2015-04-14 23:53 - 2015-04-14 23:53 - 000975208 _____ (%VENDOR%) C:\Documents and Settings\NAME\Local Settings\Temp\ICReinstall_camstudio.exe
2015-07-29 05:11 - 2015-07-29 05:12 - 006609608 _____ (Piriform Ltd) C:\Documents and Settings\NAME\Local Settings\Temp\~1C7.exe
2015-07-29 05:12 - 2015-07-29 05:12 - 000384529 _____ () C:\Documents and Settings\NAME\Local Settings\Temp\~1C8.exe
2015-03-29 21:40 - 2015-03-29 21:40 - 001138397 _____ () C:\Documents and Settings\NAME\Local Settings\Temp\~F5.exe
2015-03-29 21:40 - 2015-03-29 21:41 - 000384529 _____ () C:\Documents and Settings\NAME\Local Settings\Temp\~F6.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of FRST.txt ============================

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 24.10.2018
Ran by NAME (administrator) on OEM-B2E7813B358 (29-10-2018 22:55:53)
Running from C:\Documents and Settings\NAME\Plocha
Loaded Profiles: NAME (Available Profiles: NAME)
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) Language: Čeština
Internet Explorer Version 8 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVAST Software) E:\Program Files\AVAST Software\Avast\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
() C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe
(Canon Inc.) C:\Program Files\Canon\CAL\CALMAIN.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(AVAST Software) E:\Program Files\AVAST Software\Avast\AvastUI.exe
(Creative Technology Ltd.) C:\WINDOWS\system32\devldr32.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(RealNetworks, Inc.) E:\Program Files\Real\RealPlayer\Update\realsched.exe
(Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(Nokia) C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
(Nokia) C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
(Nokia) C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
(Nokia) C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [20145368 2013-10-04] (Realtek Semiconductor Corp.)
HKLM\...\Run: [JMB36X IDE Setup] => C:\WINDOWS\RaidTool\xInsIDE.exe [36864 2007-03-20] ()
HKLM\...\Run: [36X Raid Configurer] => C:\WINDOWS\system32\xRaidSetup.exe [1953792 2007-03-21] (JMicron Technology Corp.)
HKLM\...\Run: [AvastUI.exe] => E:\Program Files\AVAST Software\Avast\AvastUI.exe [7021880 2016-01-04] (AVAST Software)
HKLM\...\Run: [KeePass 2 PreLoad] => E:\Program Files\KeePass Password Safe 2\KeePass.exe [2109952 2014-10-07] (Dominik Reichl)
HKLM\...\Run: [GrooveMonitor] => C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM\...\Run: [KernelFaultCheck] => %systemroot%\system32\dumprep 0 -k
HKLM\...\Run: [TkBellExe] => E:\Program Files\Real\RealPlayer\update\realsched.exe [295512 2015-03-05] (RealNetworks, Inc.)
HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
HKLM\...\Run: [NvMediaCenter] => RunDLL32.exe NvMCTray.dll,NvTaskbarInit -login
HKLM\...\Run: [nwiz] => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2591888 2016-07-11] ()
HKLM\...\Run: [NvBackend] => C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2397120 2016-06-14] (NVIDIA Corporation)
HKU\S-1-5-19\...\RunOnce: [_nltide_2] => regsvr32 /s /n /i:U shell32
HKU\S-1-5-20\...\RunOnce: [_nltide_2] => regsvr32 /s /n /i:U shell32
HKU\S-1-5-21-1659004503-220523388-682003330-1003\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-1659004503-220523388-682003330-1003\...\Run: [PC Suite Tray] => C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [1516632 2012-06-26] (Nokia)
HKU\S-1-5-21-1659004503-220523388-682003330-1003\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner.exe [13797712 2018-10-08] (Piriform Ltd)
HKU\S-1-5-21-1659004503-220523388-682003330-1003\...\Run: [Chromium] => "c:\documents and settings\name\local settings\data aplikací\chromium\application\chrome.exe" --auto-launch-at-startup --profile-directory="Default" --restore-last-session
HKU\S-1-5-21-1659004503-220523388-682003330-1003\...\MountPoints2: {dd6bbd90-8859-11e4-97ca-001e8c1fba34} - G:\autorun\autorun.exe
HKU\S-1-5-18\...\RunOnce: [_nltide_2] => regsvr32 /s /n /i:U shell32
Startup: C:\Documents and Settings\NAME\Nabídka Start\Programy\Po spuštění\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk [2015-07-13]
ShortcutTarget: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 213.46.172.36 213.46.172.37
Tcpip\..\Interfaces\{D4DA158D-FB5D-4299-8A29-09ECA2344364}: [DhcpNameServer] 213.46.172.36 213.46.172.37

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/?clid=22668
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-1659004503-220523388-682003330-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/?clid=22668
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "about:newtab" <==== ATTENTION
SearchScopes: HKLM -> DefaultScope {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL =
SearchScopes: HKU\S-1-5-21-1659004503-220523388-682003330-1003 -> DefaultScope {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL =
BHO: RealNetworks Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll [2013-08-14] (RealDownloader)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> E:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-01-04] (AVAST Software)
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF ProfilePath: C:\Documents and Settings\NAME\Data aplikací\Mozilla\Firefox\Profiles\uyteznwf.default [2018-10-29]
FF Homepage: C:\Documents and Settings\NAME\Data aplikací\Mozilla\Firefox\Profiles\uyteznwf.default -> hxxps://www.seznam.cz/?clid=22668
FF NewTab: C:\Documents and Settings\NAME\Data aplikací\Mozilla\Firefox\Profiles\uyteznwf.default -> about:newtab
FF SearchPlugin: C:\Documents and Settings\NAME\Data aplikací\Mozilla\Firefox\Profiles\uyteznwf.default\searchplugins\seznam-avast.xml [2016-12-01]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - E:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - E:\Program Files\AVAST Software\Avast\WebRep\FF [2016-01-04] [Legacy]
FF HKLM\...\Firefox\Extensions: [{DF153AFF-6948-45d7-AC98-4FC4AF8A08E2}] - C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Extension: (RealDownloader) - C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext [2015-03-05] [Legacy] [not signed]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: (Microsoft .NET Framework Assistant) - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2016-01-17] [Legacy] [not signed]
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\Firefox\Ext
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_31_0_0_122.dll [2018-10-12] ()
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> E:\PROGRAM FILES\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> E:\PROGRAM FILES\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> E:\PROGRAM FILES\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> E:\PROGRAM FILES\FOXIT SOFTWARE\FOXIT READER\plugins\npFoxitReaderPlugin.dll [2015-02-11] (Foxit Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @real.com/nppl3260;version=16.0.3.51 -> E:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll [2015-03-05] (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlchromebrowserrecordext;version=1.3.3 -> C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlchromebrowserrecordext.dll [2013-08-14] (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlhtml5videoshim;version=1.3.3 -> C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlhtml5videoshim.dll [2013-08-14] (RealNetworks, Inc.)
FF Plugin: @real.com/nprndlpepperflashvideoshim;version=1.3.3 -> C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\MozillaPlugins\nprndlpepperflashvideoshim.dll [2013-08-14] (RealNetworks, Inc.)
FF Plugin: @real.com/nprpplugin;version=16.0.3.51 -> E:\Program Files\Real\RealPlayer\Netscape6\nprpplugin.dll [2015-03-05] (RealPlayer)
FF Plugin: @realnetworks.com/npdlplugin;version=1 -> C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\npdlplugin.dll [2013-08-14] (RealDownloader)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-10-27] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.17\npGoogleUpdate3.dll [2018-10-27] (Google Inc.)
StartMenuInternet: FIREFOX.EXE - firefox.exe

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - E:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-01-04]
CHR HKLM\...\Chrome\Extension: [idhngdhcfkoamngbedgpaokgjbnpdiji] - C:\Documents and Settings\All Users\Data aplikací\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx [2013-08-14]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335872 2018-10-12] (Adobe Systems Incorporated) [File not signed]
R2 avast! Antivirus; E:\Program Files\AVAST Software\Avast\AvastSvc.exe [226440 2016-01-04] (AVAST Software)
R2 CCALib8; C:\Program Files\Canon\CAL\CALMAIN.exe [96334 2009-09-08] (Canon Inc.) [File not signed]
R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-06-14] (NVIDIA Corporation)
R2 RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] ()
S2 FoxitCloudUpdateService; "E:\PROGRAM FILES\FOXIT SOFTWARE\FOXIT READER\Foxit Cloud\FCUpdateService.exe" [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1691480 2009-11-18] (Creative)
R1 AsIO; C:\WINDOWS\System32\drivers\AsIO.sys [12664 2006-10-19] ()
R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [24016 2016-01-04] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [81168 2016-01-04] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [55200 2016-01-04] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49776 2016-01-04] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [812720 2016-03-02] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [449384 2016-01-20] (AVAST Software)
R3 aswStmXP; C:\WINDOWS\system32\drivers\aswStmXP.sys [165104 2016-01-04] (AVAST Software)
S3 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [58016 2016-01-04] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [209432 2016-01-04] (AVAST Software)
R3 AtcL001; C:\WINDOWS\System32\DRIVERS\atl01_xp.sys [38656 2007-03-15] (Attansic Technology corporation.)
R3 ctljystk; C:\WINDOWS\System32\DRIVERS\ctljystk.sys [3712 2001-08-17] (Creative Technology Ltd.)
R1 dtsoftbus01; C:\WINDOWS\System32\DRIVERS\dtsoftbus01.sys [243128 2014-12-20] (Disc Soft Ltd)
R3 emu10k; C:\WINDOWS\System32\drivers\emu10k1m.sys [283904 2001-08-17] (Creative Technology Ltd.)
R3 emu10k1; C:\WINDOWS\System32\drivers\ctlfacem.sys [6912 2001-08-17] (Creative Technology Ltd.)
S3 FreshIO; E:\Program Files\FreshDevices\FreshDiagnose\FreshIO.sys [2410 2004-10-26] () [File not signed]
R3 gameenum; C:\WINDOWS\System32\DRIVERS\gameenum.sys [10624 2008-04-13] (Microsoft Corporation)
R0 JGOGO; C:\WINDOWS\System32\DRIVERS\JGOGO.sys [6912 2006-02-07] (JMicron )
R0 JRAID; C:\WINDOWS\System32\DRIVERS\jraid.sys [46208 2007-03-24] (JMicron Technology Corp.)
S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1395800 2009-11-18] (Creative Technology Ltd.)
R3 MTsensor; C:\WINDOWS\System32\DRIVERS\ASACPI.sys [5810 2004-08-13] ()
R3 NVHDA; C:\WINDOWS\System32\drivers\nvhda32.sys [145608 2016-07-11] (NVIDIA Corporation)
R3 sfman; C:\WINDOWS\System32\drivers\sfmanm.sys [36480 2001-08-17] (Creative Technology Ltd.)
S3 cpuz135; \??\E:\Program Files\CPUID\PC Wizard 2012\pcwiz_x32.sys [X]
S3 cpuz137; \??\E:\Program Files\CPUID\PC Wizard 2013\pcwiz_x32.sys [X]
S4 IntelIde; no ImagePath
U1 WS2IFSL; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-10-29 19:35 - 2018-10-29 19:35 - 001790024 _____ (Malwarebytes) C:\Documents and Settings\NAME\Plocha\JRT.exe
2018-10-29 19:16 - 2018-10-29 19:19 - 000000000 ____D C:\AdwCleaner
2018-10-29 19:15 - 2018-10-29 19:16 - 004102600 _____ C:\Documents and Settings\NAME\Plocha\adwcleaner_6.046.exe
2018-10-29 14:37 - 2018-10-29 14:40 - 000000000 ____D C:\Documents and Settings\NAME\Data aplikací\FreeFileSync
2018-10-29 14:37 - 2018-10-29 14:37 - 000000708 _____ C:\Documents and Settings\All Users\Plocha\FreeFileSync.lnk
2018-10-29 14:37 - 2018-10-29 14:37 - 000000708 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\FreeFileSync.lnk
2018-10-29 14:37 - 2018-10-29 14:37 - 000000694 _____ C:\Documents and Settings\All Users\Plocha\RealTimeSync.lnk
2018-10-29 14:37 - 2018-10-29 14:37 - 000000694 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\RealTimeSync.lnk
2018-10-29 14:15 - 2018-10-29 14:54 - 000042072 _____ C:\Documents and Settings\NAME\Plocha\Addition.txt
2018-10-29 14:14 - 2018-10-29 22:56 - 000015400 _____ C:\Documents and Settings\NAME\Plocha\FRST.txt
2018-10-29 14:14 - 2018-10-29 22:55 - 000000000 ____D C:\FRST
2018-10-29 14:08 - 2018-10-29 14:08 - 001774592 _____ (Farbar) C:\Documents and Settings\NAME\Plocha\FRST.exe
2018-10-27 19:27 - 2018-10-27 19:27 - 000003584 _____ C:\Documents and Settings\NAME\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2018-10-27 16:47 - 2018-10-27 16:47 - 000000000 ____D C:\Documents and Settings\All Users\Data aplikací\Canon_Inc_IC
2018-10-27 15:52 - 2018-10-29 22:02 - 000000940 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2018-10-27 15:52 - 2018-10-29 20:59 - 000000936 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2018-10-27 15:34 - 2018-10-27 15:34 - 000000844 _____ C:\Documents and Settings\NAME\Plocha\Continue CamStudio Installation.lnk
2018-10-22 17:21 - 2018-10-22 17:21 - 000000044 _____ C:\Documents and Settings\NetworkService\Data aplikací\WB.CFG
2018-10-21 20:21 - 2018-10-29 22:21 - 000000624 _____ C:\WINDOWS\Tasks\Chromium danef.job
2018-10-21 20:21 - 2018-10-24 17:21 - 000000000 ____D C:\Documents and Settings\NAME\Data aplikací\Detoluh
2018-10-21 20:20 - 2018-10-28 17:23 - 000000000 ____D C:\Documents and Settings\NAME\Local Settings\Data aplikac
2018-10-21 20:20 - 2018-10-21 20:21 - 000214510 _____ C:\Documents and Settings\NAME\Data aplikací\DMGR_1N1I1F1S1T1I0M1F1Q2Y1I1P1B0C1F1Q1P.txt
2018-10-21 20:20 - 2018-10-21 20:20 - 000000000 ____D C:\Documents and Settings\All Users\Data aplikac
2018-10-08 20:40 - 2018-10-29 22:54 - 000002214 _____ C:\WINDOWS\system32\nvAppTimestamps
2018-10-08 20:40 - 2018-10-08 20:42 - 000000000 ____D C:\Documents and Settings\NAME\Local Settings\Data aplikací\NVIDIA
2018-10-08 20:38 - 2018-10-08 20:38 - 000001030 _____ C:\Documents and Settings\All Users\Plocha\GeForce Experience.lnk
2018-10-08 20:38 - 2018-10-08 20:38 - 000000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\NVIDIA Corporation
2018-10-08 20:37 - 2018-10-08 20:37 - 000000000 ____D C:\Documents and Settings\All Users\Data aplikací\NVIDIA Corporation
2018-10-08 20:37 - 2016-07-11 00:29 - 000335872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrshe.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000335872 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrsar.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000286720 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrsfr.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000282624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrsit.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000282624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrses.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000282624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrsel.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000278528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrsde.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000274432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrspt.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000274432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrsnl.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000274432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrsja.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000274432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrsesm.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000270336 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrsru.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000270336 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrsptb.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000266240 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrsko.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000262144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrshu.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000258048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrstr.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000258048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrssl.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000258048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrssk.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000258048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrspl.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000253952 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrsth.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000253952 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrssv.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000253952 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrsno.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000253952 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrsda.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000249856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrsfi.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000249856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrseng.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000249856 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrscs.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000229376 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrszhc.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000126976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvrszht.dll
2018-10-08 20:37 - 2016-07-11 00:29 - 000054272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwddi.dll
2018-10-08 20:37 - 2016-07-11 00:28 - 015236544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2018-10-08 20:37 - 2016-07-11 00:28 - 000383544 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2018-10-08 20:37 - 2016-07-11 00:28 - 000312768 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
2018-10-08 20:37 - 2016-07-11 00:28 - 000149952 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcolor.exe
2018-10-08 20:37 - 2016-07-08 17:57 - 007211925 _____ C:\WINDOWS\system32\nvcoproc.bin
2018-10-08 20:36 - 2018-10-08 20:40 - 001633904 _____ C:\WINDOWS\system32\nvdrsdb1.bin
2018-10-08 20:36 - 2018-10-08 20:40 - 000000001 _____ C:\WINDOWS\system32\nvdrssel.bin
2018-10-08 20:36 - 2018-10-08 20:36 - 001303056 _____ C:\WINDOWS\system32\nvdrsdb0.bin
2018-10-08 20:36 - 2018-10-08 20:36 - 000000000 _____ C:\WINDOWS\system32\nvdrswr.lk
2018-10-08 20:36 - 2016-07-11 01:25 - 000186880 _____ (Khronos Group) C:\WINDOWS\system32\OpenCL.dll
2018-10-08 20:35 - 2016-07-11 01:57 - 000933952 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdagenco3220103.dll
2018-10-08 20:35 - 2016-07-11 01:57 - 000145608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvhda32.sys
2018-10-08 20:35 - 2016-07-11 01:57 - 000044608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvhdap32.dll
2018-10-08 20:35 - 2016-07-11 01:53 - 002345364 _____ C:\WINDOWS\system32\nvdata.data
2018-10-08 20:35 - 2016-07-11 01:53 - 001075256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco3236881.dll
2018-10-08 20:35 - 2016-07-11 01:53 - 000925752 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco3236881.dll
2018-10-08 20:35 - 2016-07-11 01:53 - 000029352 _____ C:\WINDOWS\system32\nvinfo.pb
2018-10-08 20:35 - 2016-07-11 01:25 - 035101184 _____ C:\WINDOWS\system32\nvcompiler.dll
2018-10-08 20:35 - 2016-07-11 01:25 - 017943552 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2018-10-08 20:35 - 2016-07-11 01:25 - 017540608 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2018-10-08 20:35 - 2016-07-11 01:25 - 017526784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglnt.dll
2018-10-08 20:35 - 2016-07-11 01:25 - 003299840 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi.dll
2018-10-08 20:35 - 2016-07-11 01:25 - 002992696 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2018-10-08 20:35 - 2016-07-11 01:25 - 000394288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvEncodeAPI.dll
2018-10-08 19:41 - 2018-10-08 20:35 - 000000000 ____D C:\Documents and Settings\All Users\Data aplikací\Package Cache
2018-10-08 19:18 - 2018-10-27 19:40 - 000000946 _____ C:\WINDOWS\Tasks\Adobe Flash Player NPAPI Notifier.job
2018-10-08 19:18 - 2018-10-08 19:18 - 000000000 ____D C:\Documents and Settings\LocalService\Data aplikací\Macromedia
2018-10-08 18:43 - 2018-10-29 20:58 - 000000330 ____H C:\WINDOWS\Tasks\CCleaner Update.job
2018-10-08 18:39 - 2008-04-13 23:15 - 000010624 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\gameenum.sys
2018-10-08 18:39 - 2008-04-13 23:15 - 000010624 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\gameenum.sys
2018-10-08 18:39 - 2001-10-24 11:25 - 000051200 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\sfman32.dll
2018-10-08 18:39 - 2001-10-24 11:25 - 000024064 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\devldr32.exe
2018-10-08 18:39 - 2001-10-24 11:25 - 000024064 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\devldr32.exe
2018-10-08 18:39 - 2001-10-24 11:24 - 000495616 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\sblfx.dll
2018-10-08 18:39 - 2001-10-24 11:24 - 000495616 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\sblfx.dll
2018-10-08 18:39 - 2001-10-24 11:24 - 000256512 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\devcon32.dll
2018-10-08 18:39 - 2001-10-24 11:24 - 000256512 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\devcon32.dll
2018-10-08 18:39 - 2001-10-24 11:24 - 000004096 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\ctwdm32.dll
2018-10-08 18:39 - 2001-10-24 11:24 - 000004096 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\ctwdm32.dll
2018-10-08 18:39 - 2001-08-17 19:19 - 000283904 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\emu10k1m.sys
2018-10-08 18:39 - 2001-08-17 19:19 - 000283904 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\Drivers\emu10k1m.sys
2018-10-08 18:39 - 2001-08-17 19:19 - 000036480 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\sfmanm.sys
2018-10-08 18:39 - 2001-08-17 19:19 - 000036480 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\Drivers\sfmanm.sys
2018-10-08 18:39 - 2001-08-17 19:19 - 000006912 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\ctlfacem.sys
2018-10-08 18:39 - 2001-08-17 19:19 - 000006912 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\Drivers\ctlfacem.sys
2018-10-08 18:39 - 2001-08-17 19:19 - 000003712 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\ctljystk.sys
2018-10-08 18:39 - 2001-08-17 19:19 - 000003712 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\Drivers\ctljystk.sys
2018-10-08 18:39 - 2001-07-22 01:49 - 002104298 _____ C:\WINDOWS\system32\Drivers\2gmgsmt.sf2
2018-10-08 18:38 - 2018-10-29 20:59 - 000000364 ____H C:\WINDOWS\Tasks\Avast Emergency Update.job

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-10-29 22:56 - 2014-11-12 21:39 - 000000000 ____D C:\Documents and Settings\NAME\Local Settings\Temp
2018-10-29 22:54 - 2014-11-23 18:29 - 000000000 ____D C:\Documents and Settings\NAME\Data aplikací\KeePass
2018-10-29 22:18 - 2015-07-30 14:27 - 000000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2018-10-29 21:17 - 2014-11-12 21:47 - 000069232 _____ C:\Documents and Settings\NAME\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
2018-10-29 20:59 - 2015-07-27 20:32 - 000000276 _____ C:\WINDOWS\Tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-1659004503-220523388-682003330-1003.job
2018-10-29 20:59 - 2015-03-05 19:17 - 000000284 _____ C:\WINDOWS\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-1659004503-220523388-682003330-1003.job
2018-10-29 20:59 - 2001-10-25 12:00 - 000002206 _____ C:\WINDOWS\system32\wpa.dbl
2018-10-29 20:58 - 2014-11-12 22:26 - 000270984 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2018-10-29 20:58 - 2014-11-12 21:38 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-10-29 20:38 - 2014-11-12 21:38 - 000032622 _____ C:\WINDOWS\SchedLgU.Txt
2018-10-29 20:36 - 2014-11-12 21:39 - 000000178 ___SH C:\Documents and Settings\NAME\ntuser.ini
2018-10-29 20:36 - 2014-11-12 21:39 - 000000000 ____D C:\Documents and Settings\NAME
2018-10-29 19:35 - 2014-11-12 21:39 - 000000000 ____D C:\Documents and Settings\NAME\Plocha
2018-10-29 19:26 - 2014-11-12 22:28 - 001187830 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2018-10-29 19:26 - 2001-10-25 12:00 - 000491906 _____ C:\WINDOWS\system32\perfh005.dat
2018-10-29 19:26 - 2001-10-25 12:00 - 000098404 _____ C:\WINDOWS\system32\perfc005.dat
2018-10-29 19:18 - 2014-11-12 22:27 - 000000000 ___HD C:\Documents and Settings\All Users\Data aplikací
2018-10-29 14:37 - 2014-11-12 22:27 - 000000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy
2018-10-29 14:37 - 2014-11-12 22:27 - 000000000 ____D C:\Documents and Settings\All Users\Plocha
2018-10-29 14:37 - 2014-11-12 21:39 - 000000000 ___HD C:\Documents and Settings\NAME\Data aplikací
2018-10-28 23:52 - 2014-12-20 16:13 - 000065536 _____ C:\WINDOWS\system32\config\ODiag.evt
2018-10-27 19:40 - 2014-11-12 21:34 - 000000000 ____D C:\WINDOWS\system32\Macromed
2018-10-27 19:27 - 2014-11-12 21:39 - 000000000 ___HD C:\Documents and Settings\NAME\Local Settings\Data aplikací
2018-10-27 15:52 - 2014-11-12 22:02 - 000000000 ____D C:\Program Files\Google
2018-10-27 15:47 - 2015-05-13 02:33 - 000000852 _____ C:\Documents and Settings\All Users\Plocha\Foxit Reader.lnk
2018-10-27 15:47 - 2015-05-13 02:33 - 000000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Foxit Reader
2018-10-22 19:53 - 2014-11-12 23:05 - 001505822 _____ C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-S-1-5-21-1659004503-220523388-682003330-1003-0.dat
2018-10-22 19:53 - 2014-11-12 23:05 - 000269198 _____ C:\Documents and Settings\LocalService\Local Settings\Data aplikací\WPFFontCache_v0400-System.dat
2018-10-22 17:21 - 2014-11-12 21:38 - 000000000 ____D C:\Documents and Settings\NetworkService\Data aplikací
2018-10-22 17:19 - 2015-03-05 19:16 - 000000000 ____D C:\Documents and Settings\All Users\Data aplikací\Real
2018-10-22 17:06 - 2015-04-14 23:54 - 000004535 _____ C:\Documents and Settings\NAME\Data aplikací\CamStudio.cfg
2018-10-22 17:06 - 2015-04-14 23:54 - 000000408 _____ C:\Documents and Settings\NAME\Data aplikací\CamShapes.ini
2018-10-22 17:06 - 2015-04-14 23:54 - 000000408 _____ C:\Documents and Settings\NAME\Data aplikací\CamLayout.ini
2018-10-22 17:06 - 2015-04-14 23:54 - 000000096 _____ C:\Documents and Settings\NAME\Data aplikací\Camdata.ini
2018-10-21 20:27 - 2015-10-31 20:58 - 000000000 ____D C:\Program Files\Ubisoft
2018-10-21 20:27 - 2015-10-23 23:16 - 000000000 ____D C:\Documents and Settings\NAME\Nabídka Start\Programy\Ubisoft
2018-10-21 20:23 - 2014-11-12 21:39 - 000000000 ___RD C:\Documents and Settings\NAME\Nabídka Start\Programy
2018-10-21 20:20 - 2014-11-12 22:26 - 000000000 ____D C:\Documents and Settings\All Users
2018-10-12 14:18 - 2015-07-30 14:27 - 000842240 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2018-10-12 14:18 - 2015-07-30 14:27 - 000175104 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2018-10-08 20:40 - 2014-11-12 22:21 - 000000000 ___HD C:\WINDOWS\inf
2018-10-08 20:38 - 2014-11-12 22:55 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2018-10-08 20:37 - 2014-11-12 22:21 - 000000000 RSHDC C:\WINDOWS\system32\dllcache
2018-10-08 20:37 - 2014-11-12 22:21 - 000000000 ____D C:\WINDOWS\Help
2018-10-08 20:15 - 2014-11-12 21:45 - 000000000 ___HD C:\Program Files\InstallShield Installation Information
2018-10-08 20:09 - 2015-07-29 05:13 - 000000000 ____D C:\Program Files\CCleaner
2018-10-08 20:09 - 2014-11-20 19:14 - 000000000 ____D C:\Program Files\Mozilla Maintenance Service
2018-10-08 20:08 - 2014-11-12 22:21 - 000000000 ____D C:\WINDOWS\security
2018-10-08 20:01 - 2014-11-12 22:04 - 000000000 ____D C:\Documents and Settings\All Users\Data aplikací\Agnitum
2018-10-08 19:18 - 2014-11-12 21:38 - 000000000 ____D C:\Documents and Settings\LocalService\Data aplikací
2018-10-08 18:51 - 2014-11-12 22:33 - 000000000 ____D C:\Documents and Settings\NAME\Local Settings\Data aplikací\Temp

==================== Files in the root of some directories =======

2015-04-14 23:54 - 2018-10-22 17:06 - 000000096 _____ () C:\Documents and Settings\NAME\Data aplikací\Camdata.ini
2015-04-14 23:54 - 2018-10-22 17:06 - 000000408 _____ () C:\Documents and Settings\NAME\Data aplikací\CamLayout.ini
2015-04-14 23:54 - 2018-10-22 17:06 - 000000408 _____ () C:\Documents and Settings\NAME\Data aplikací\CamShapes.ini
2015-04-14 23:54 - 2018-10-22 17:06 - 000004535 _____ () C:\Documents and Settings\NAME\Data aplikací\CamStudio.cfg
2018-10-21 20:20 - 2018-10-21 20:21 - 000214510 _____ () C:\Documents and Settings\NAME\Data aplikací\DMGR_1N1I1F1S1T1I0M1F1Q2Y1I1P1B0C1F1Q1P.txt
2015-04-14 23:54 - 2015-04-14 23:55 - 000000096 _____ () C:\Documents and Settings\NAME\Data aplikací\version2.xml
2018-10-27 19:27 - 2018-10-27 19:27 - 000003584 _____ () C:\Documents and Settings\NAME\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

Some files in TEMP:
====================
2013-01-28 23:20 - 2013-01-28 23:20 - 000248008 _____ (Ask.com) C:\Documents and Settings\NAME\Local Settings\Temp\AskSLib.dll
2018-10-27 15:34 - 2018-10-27 15:34 - 002959288 _____ (CamStudio ) C:\Documents and Settings\NAME\Local Settings\Temp\camstudio.exe
2014-01-31 04:29 - 2014-01-31 04:29 - 000341120 _____ (Gretech Corporation) C:\Documents and Settings\NAME\Local Settings\Temp\ExPromo.exe
2015-05-13 02:33 - 2014-11-26 18:03 - 004856544 _____ (Foxit Corporation) C:\Documents and Settings\NAME\Local Settings\Temp\FoxitUpdater.exe
2018-10-22 17:25 - 2018-10-22 17:25 - 002515032 _____ (Horemafak ) C:\Documents and Settings\NAME\Local Settings\Temp\foxit_reader_3591553459.exe
2015-04-14 23:53 - 2015-04-14 23:53 - 000975208 _____ (%VENDOR%) C:\Documents and Settings\NAME\Local Settings\Temp\ICReinstall_camstudio.exe
2015-07-29 05:11 - 2015-07-29 05:12 - 006609608 _____ (Piriform Ltd) C:\Documents and Settings\NAME\Local Settings\Temp\~1C7.exe
2015-07-29 05:12 - 2015-07-29 05:12 - 000384529 _____ () C:\Documents and Settings\NAME\Local Settings\Temp\~1C8.exe
2015-03-29 21:40 - 2015-03-29 21:40 - 001138397 _____ () C:\Documents and Settings\NAME\Local Settings\Temp\~F5.exe
2015-03-29 21:40 - 2015-03-29 21:41 - 000384529 _____ () C:\Documents and Settings\NAME\Local Settings\Temp\~F6.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of FRST.txt ============================
Přílohy
Addition.zip
(9.07 KiB) Staženo 95 x

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Kontrola logu, případné léčení

#6 Příspěvek od Conder »

:arrow: Otvor poznamkovy blok (Win+R -> notepad -> enter)
  • Skopiruj nasledujuci text a vloz ho do poznamkoveho bloku:

    Kód: Vybrat vše

    Start
    CloseProcesses:
    CreateRestorePoint:
    
    File: C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
    File: C:\Program Files\Canon\CAL\CALMAIN.exe
    File: E:\Program Files\FreshDevices\FreshDiagnose\FreshIO.sys
    Folder: c:\documents and settings\name\local settings\data aplikací\chromium
    
    HKU\S-1-5-21-1659004503-220523388-682003330-1003\...\Run: [Chromium] => "c:\documents and settings\name\local settings\data aplikací\chromium\application\chrome.exe" --auto-launch-at-startup --profile-directory="Default" --restore-last-session
    HKU\S-1-5-21-1659004503-220523388-682003330-1003\...\MountPoints2: {dd6bbd90-8859-11e4-97ca-001e8c1fba34} - G:\autorun\autorun.exe
    HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = 
    HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 
    HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = 
    HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "about:newtab" <==== ATTENTION
    SearchScopes: HKLM -> DefaultScope {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = 
    SearchScopes: HKU\S-1-5-21-1659004503-220523388-682003330-1003 -> DefaultScope {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = 
    S2 FoxitCloudUpdateService; "E:\PROGRAM FILES\FOXIT SOFTWARE\FOXIT READER\Foxit Cloud\FCUpdateService.exe" [X]
    S3 cpuz135; \??\E:\Program Files\CPUID\PC Wizard 2012\pcwiz_x32.sys [X]
    S3 cpuz137; \??\E:\Program Files\CPUID\PC Wizard 2013\pcwiz_x32.sys [X]
    S4 IntelIde; no ImagePath
    U1 WS2IFSL; no ImagePath
    Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
    Task: C:\WINDOWS\Tasks\Chromium danef.job => Wscript exe
    AlternateDataStreams: C:\Documents and Settings\All Users\Data aplikací\TEMP:A0CB5C3C [120]
    AlternateDataStreams: C:\Documents and Settings\NAME\Plocha\adwcleaner_6.046.exe:SummaryInformation [43]
    AlternateDataStreams: C:\Documents and Settings\NAME\Plocha\adwcleaner_6.046.exe:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
    
    Hosts:
    EmptyTemp:
    End
  • Uloz na plochu s nazvom fixlist.txt
  • Spusti znovu FRST a klikni na Fix
  • Po dokonceni si FRST vyziada restart PC, potvrd kliknutim na OK
  • Po restartovani PC bude na ploche subor Fixlog.txt, jeho obsah sem skopiruj
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

Blinkoka
Návštěvník
Návštěvník
Příspěvky: 42
Registrován: 11 črc 2011 13:27

Re: Kontrola logu, případné léčení

#7 Příspěvek od Blinkoka »

Fix result of Farbar Recovery Scan Tool (x86) Version: 24.10.2018
Ran by NAME (31-10-2018 20:08:08) Run:1
Running from C:\Documents and Settings\NAME\Plocha
Loaded Profiles: NAME (Available Profiles: NAME)
Boot Mode: Normal

==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:

File: C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
File: C:\Program Files\Canon\CAL\CALMAIN.exe
File: E:\Program Files\FreshDevices\FreshDiagnose\FreshIO.sys
Folder: c:\documents and settings\name\local settings\data aplikac\chromium

HKU\S-1-5-21-1659004503-220523388-682003330-1003\...\Run: [Chromium] => "c:\documents and settings\name\local settings\data aplikac\chromium\application\chrome.exe" --auto-launch-at-startup --profile-directory="Default" --restore-last-session
HKU\S-1-5-21-1659004503-220523388-682003330-1003\...\MountPoints2: {dd6bbd90-8859-11e4-97ca-001e8c1fba34} - G:\autorun\autorun.exe
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "about:newtab" <==== ATTENTION
SearchScopes: HKLM -> DefaultScope {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL =
SearchScopes: HKU\S-1-5-21-1659004503-220523388-682003330-1003 -> DefaultScope {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL =
S2 FoxitCloudUpdateService; "E:\PROGRAM FILES\FOXIT SOFTWARE\FOXIT READER\Foxit Cloud\FCUpdateService.exe" [X]
S3 cpuz135; \??\E:\Program Files\CPUID\PC Wizard 2012\pcwiz_x32.sys [X]
S3 cpuz137; \??\E:\Program Files\CPUID\PC Wizard 2013\pcwiz_x32.sys [X]
S4 IntelIde; no ImagePath
U1 WS2IFSL; no ImagePath
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.17 - Google Inc.) Hidden
Task: C:\WINDOWS\Tasks\Chromium danef.job => Wscript exe
AlternateDataStreams: C:\Documents and Settings\All Users\Data aplikac\TEMP:A0CB5C3C [120]
AlternateDataStreams: C:\Documents and Settings\NAME\Plocha\adwcleaner_6.046.exe:SummaryInformation [43]
AlternateDataStreams: C:\Documents and Settings\NAME\Plocha\adwcleaner_6.046.exe:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]

Hosts:
EmptyTemp:
End
*****************

Processes closed successfully.
Restore point was successfully created.

========================= File: C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe ========================

C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
File not signed
MD5: 4F0426D1C579E02DC2F501F58EA57AE2
Creation and modification date: 2015-07-30 14:27 - 2018-10-12 14:18
Size: 000335872
Attributes: ----A
Company Name: Adobe Systems Incorporated
Internal Name:
Original Name:
Product: Adobe® Flash® Player Update Service
Description: Adobe® Flash® Player Update Service 31.0 r0
File Version: 31,0,0,122
Product Version: 31,0,0,122
Copyright: Copyright © 1996-2018 Adobe Systems Incorporated
VirusTotal: https://www.virustotal.com/file/17cc2c7 ... 540847431/

====== End of File: ======


========================= File: C:\Program Files\Canon\CAL\CALMAIN.exe ========================

C:\Program Files\Canon\CAL\CALMAIN.exe
File not signed
MD5: 359E5A91D26D0439933BEF1C29CEDEF7
Creation and modification date: 2009-09-08 17:25 - 2009-09-08 17:25
Size: 000096334
Attributes: ----A
Company Name: Canon Inc.
Internal Name:
Original Name: CALMAIN.exe
Product:
Description: Canon Camera Access Library 8
File Version: 8, 5, 0, 2
Product Version: 8, 5, 0, 2
Copyright: Copyright (C) Canon Inc.
VirusTotal: https://www.virustotal.com/file/6485636 ... 485782250/

====== End of File: ======


========================= File: E:\Program Files\FreshDevices\FreshDiagnose\FreshIO.sys ========================

E:\Program Files\FreshDevices\FreshDiagnose\FreshIO.sys
File not signed
MD5: CAAC750E6D27866C28494E0DE9FA802A
Creation and modification date: 2014-11-27 00:57 - 2004-10-26 11:22
Size: 000002410
Attributes: ----A
Company Name:
Internal Name:
Original Name:
Product:
Description:
File Version:
Product Version:
Copyright:
VirusTotal: https://www.virustotal.com/file/2500caf ... 505044720/

====== End of File: ======


========================= Folder: c:\documents and settings\name\local settings\data aplikac\chromium ========================

not found.

====== End of Folder: ======

"HKU\S-1-5-21-1659004503-220523388-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Run\\Chromium" => removed successfully.
HKU\S-1-5-21-1659004503-220523388-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{dd6bbd90-8859-11e4-97ca-001e8c1fba34} => removed successfully.
HKLM\Software\Classes\CLSID\{dd6bbd90-8859-11e4-97ca-001e8c1fba34} => not found
HKLM\Software\\Microsoft\Internet Explorer\Main\\Search Page => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
HKLM\Software\\Microsoft\Internet Explorer\Main\\Default_Search_URL => value restored successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs\\Tabs => value restored successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
"HKU\S-1-5-21-1659004503-220523388-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope" => removed successfully.
HKLM\System\CurrentControlSet\Services\FoxitCloudUpdateService => removed successfully.
FoxitCloudUpdateService => service removed successfully.
HKLM\System\CurrentControlSet\Services\cpuz135 => removed successfully.
cpuz135 => service removed successfully.
HKLM\System\CurrentControlSet\Services\cpuz137 => removed successfully.
cpuz137 => service removed successfully.
HKLM\System\CurrentControlSet\Services\IntelIde => removed successfully.
IntelIde => service removed successfully.
HKLM\System\CurrentControlSet\Services\WS2IFSL => removed successfully.
WS2IFSL => service removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}\\SystemComponent" => removed successfully.
C:\WINDOWS\Tasks\Chromium danef.job => moved successfully
"C:\Documents and Settings\All Users\Data aplikac\TEMP" => ":A0CB5C3C" ADS not found.
C:\Documents and Settings\NAME\Plocha\adwcleaner_6.046.exe => ":SummaryInformation" ADS removed successfully.
C:\Documents and Settings\NAME\Plocha\adwcleaner_6.046.exe => ":{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}" ADS removed successfully.
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 9333 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache => 73024 B
Java, Flash, Steam htmlcache => 1171 B
Windows/system/dllcache/drivers => 97146993 B
Edge => 0 B
Chrome => 0 B
Firefox => 13518103 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Documents and Settings => 0 B
Default User => 66228 B
All Users => 0 B
systemprofile => 155810266 B
LocalService => 904 B
NetworkService => 66228 B
NAME => 666882908 B

RecycleBin => 0 B
EmptyTemp: => 890.3 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 20:08:34 ====

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Kontrola logu, případné léčení

#8 Příspěvek od Conder »

:arrow: Logy vyzeraju OK. Nastala nejaka zmena alebo su este nejake problemy s PC?

:arrow: Kazdopadne este musim upozornit, ze pre system Windows XP skoncila podpora s bezpecnostnymi aktualizaciami uz pred 4 rokmi, pre prehliadac Firefox (ESR 52) pred 2 mesiacmi. Pouzivanie neaktualizovaneho systemu je riziko (najma ak je pripojeny k internetu), kedze system obsahuje verejne zname a neopravene bezpecnostne chyby, ktore mozu ulahcit napadnutie skodlivym kodom.
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

Blinkoka
Návštěvník
Návštěvník
Příspěvky: 42
Registrován: 11 črc 2011 13:27

Re: Kontrola logu, případné léčení

#9 Příspěvek od Blinkoka »

Myslím, že je vše v pořádku. Děkuji vám za pomoc.

Conder
VIP
VIP
Příspěvky: 4399
Registrován: 30 pro 2013 22:29
Bydliště: Bratislava

Re: Kontrola logu, případné léčení

#10 Příspěvek od Conder »

:arrow: Tak este upraceme po pouzitych nastrojoch:
Absolvent skoly pre novacikov :)
E-mail: conder (zavinac) forum.viry.cz

Ak nieco nie je jasne, pytaj sa. Odporucam mat vzdy zalohovat dolezite data (dokumenty, fotky a ine).

Fixlisty a ine scripty su pisane len pre konkretny PC. Nepouzivajte ich na inych zariadeniach, inak hrozi poskodenie systemu alebo strata dat.
Ak mate podobny problem ako iny uzivatel, prosim, zalozte si vlastnu temu.

V pripade spokojnosti je mozne podporit forum. Dakujeme!

Odpovědět