Zpomalený notebook

Zpráva

unk.cory · #1 Příspěvek od **unk.cory** » 11 pro 2014 18:20

Dobrý den,

potřeboval bych, prosím, pomoc. Poslední dobou se mi notebook potácí s pomalým načítáním prohlížeče Chrome ale i Opery, načítáním přehrávačů hudby, a dalších software.
Proto bych byl rád, kdybyste , prosím, log zkontrolovali. Skrze Facebook mi chodilo od lidí ve zpráváh pochybné linky, na které jsem sice neklikal, ale člověk nikdy neví.

Děkuji.

RSIT log:

Logfile of random's system information tool 1.10 (written by random/random)
Run by Cory at 2014-12-11 18:02:18
Microsoft Windows 8.1 Pro
System drive C: has 23 GB (23%) free of 100 GB
Total RAM: 3998 MB (55% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:02:25, on 11. 12. 2014
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.17416)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\WINDOWS\syswow64\wwahost.exe
C:\Program Files\trend micro\Cory.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: BS Player ControlBar B Toolbar - {31264a33-a653-46c4-af49-1232c59a7da5} - C:\Users\Cory\AppData\LocalLow\BS_Player_ControlBar_B\prxtbBS_P.dll
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: BS Player ControlBar B - {31264a33-a653-46c4-af49-1232c59a7da5} - C:\Users\Cory\AppData\LocalLow\BS_Player_ControlBar_B\prxtbBS_P.dll
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: NetXfer - {83B80A9C-D91A-4F22-8DCF-EA7204039F79} - C:\Program Files (x86)\Xi\NetXfer\NXIEHelper.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: NetTransport - {C16CBAAC-A75C-4DB5-A0DD-CDF5CAFCDD3A} - C:\Program Files (x86)\Xi\NetXfer\NXToolBar.dll
O3 - Toolbar: BS Player ControlBar B Toolbar - {31264a33-a653-46c4-af49-1232c59a7da5} - C:\Users\Cory\AppData\LocalLow\BS_Player_ControlBar_B\prxtbBS_P.dll
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Cory\AppData\Local\Akamai\netsession_win.exe"
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - Startup: Dropbox.lnk = C:\Users\Cory\AppData\Roaming\Dropbox\bin\Dropbox.exe
O4 - Global Startup: SolidWorks 2014 Rychlé spuštění.lnk = ?
O4 - Global Startup: SolidWorks Nástroj pro stahování na pozadí.lnk = ?
O8 - Extra context menu item: &Enviar para o OneNote - res://C:\PROGRA~1\MICROS~1\Office15\ONBttnIE.dll/105
O8 - Extra context menu item: E&xportar para o Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Stáhnout pomocí NetXferu - C:\Program Files (x86)\Xi\NetXfer\NXAddLink.html
O8 - Extra context menu item: Stáhnout vše pomocí Net&Xferu - C:\Program Files (x86)\Xi\NetXfer\NXAddList.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file)
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O20 - AppInit_DLLs: C:\WINDOWS\SysWOW64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: SW Distributed TS Coordinator Service (CoordinatorServiceHost) - Dassault Systemes SolidWorks Corp. - C:\Program Files\SolidWorks Corp\SolidWorks\swScheduler\DTSCoordinatorService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @C:\WINDOWS\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\WINDOWS\system32\CxAudMsg64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Flexera Software, Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FlexNet Licensing Service 64 - Flexera Software LLC - C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: LSCWinService - Unknown owner - C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Network Service (NvNetworkService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
O23 - Service: NVIDIA Streamer Service (NvStreamSvc) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Conexant SmartAudio service (SAService) - Conexant Systems, Inc. - C:\WINDOWS\system32\SAsrv.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: SolidWorks Licensing Service - SolidWorks - C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Toolbar Service (TBSrv) - ClientConnect Ltd. - C:\Program Files (x86)\Tbccint\ToolbarService\ToolbarService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 11320 bytes

======Listing Processes======

wininit.exe
winlogon.exe

C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
"C:\WINDOWS\system32\nvvsvc.exe"
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\igfxCUIService.exe
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-9aeeb793-696a-4f8d-9f6a-e2fbe0e1b498 -SystemEventPortName:HostProcess-90c11b08-cd09-46aa-8971-1f82a00dd46b -IoCancelEventPortName:HostProcess-9c7204fe-e561-44ff-ac09-ef551a9fc62f -NonStateChangingEventPortName:HostProcess-15a809b8-b972-4d3a-b87a-33fedde4f810 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:6ce18278-0bf2-43b7-bcfb-f7c0143dd714 -DeviceGroupId:WudfDefaultDevicePool
C:\WINDOWS\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\system32\WLANExt.exe 513523748832
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
taskhostex.exe
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\WINDOWS\system32\CxAudMsg64.exe
dashost.exe {f3bfa094-b8c5-4c49-9e8935c05c127ade}
taskeng.exe {5EDE1ED6-EF73-477C-86C2-2BEE662DF83E}
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe"
"C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe"
C:\WINDOWS\SysWOW64\SAsrv.exe
"C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe"
"C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Tbccint\ToolbarService\ToolbarService.exe"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
C:\Windows\System32\skydrive.exe -Embedding
taskeng.exe {0C8B9B02-33B4-47D1-AE92-7BEDFD68B13D}
"C:\Program Files\Microsoft Office\Office15\MsoSync.exe"
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" nss 9b575f9f-14ef-46ac-8b88-9dd01f080d78 1
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe" serviceapp
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe"
"C:\Program Files (x86)\Lenovo\Energy Management\utility.exe"
"C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe"
igfxEM.exe
"C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe"
igfxHK.exe
igfxTray.exe
"C:\Windows\System32\StikyNot.exe"
"C:\Program Files\SolidWorks Corp\SolidWorks\sldworks_fs.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="5072.0.725333746\504477326" --disable-d3d11 --supports-dual-gpus=false --gpu-driver-bug-workarounds=1,6,17,38 --gpu-vendor-id=0x8086 --gpu-device-id=0x0166 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.10.3621 --ignored=" --type=renderer " /prefetch:822062411
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="DomRel-Enable/enable/EmbeddedSearch/Group3 pct:10c stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GoogleNow/Enable/NewProfileManagement/OldAvatarMenu/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Control/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SPDY/DefaultSpdy31Enabled/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_85/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5072.1.533971370\1818065309" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/enable/EmbeddedSearch/Group3 pct:10c stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GoogleNow/Enable/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/StandardR4/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Control/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SPDY/DefaultSpdy31Enabled/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_85/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5072.3.321340751\986218061" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/enable/EmbeddedSearch/Group3 pct:10c stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GCM/Disabled/GoogleNow/Enable/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/StandardR4/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Control/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SPDY/DefaultSpdy31Enabled/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_85/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5072.4.1490736852\1059470457" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/enable/EmbeddedSearch/Group3 pct:10c stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GCM/Disabled/GoogleNow/Enable/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/StandardR4/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Control/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SPDY/DefaultSpdy31Enabled/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_85/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --extension-process --enable-webrtc-hw-h264-encoding --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5072.5.531676241\1194727581" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/enable/EmbeddedSearch/Group3 pct:10c stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GCM/Disabled/GoogleNow/Enable/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/StandardR4/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Control/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SPDY/DefaultSpdy31Enabled/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_85/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5072.10.122035541\1244331773" /prefetch:673131151
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-deferred-image-decoding --lang=cs --force-fieldtrials="BrowserBlacklist/Enabled/DomRel-Enable/enable/EmbeddedSearch/Group3 pct:10c stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnhancedBookmarks/Default/ExtensionContentVerification/Enforce/ExtensionInstallVerification/Enforce/GCM/Disabled/GoogleNow/Enable/NewProfileManagement/OldAvatarMenu/OmniboxBundledExperimentV1/StandardR4/PasswordGeneration/Disabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/PrerenderLocalPredictorSpec/LocalPredictor=Disabled/QUIC/Control/RapporRollout/Enabled/RememberCertificateErrorDecisions/Default/SPDY/DefaultSpdy31Enabled/SRTPromptFieldTrial/Default/SafeBrowsingIncidentReportingService/Default/SettingsEnforcement/enforce_always_with_extensions_and_dse/ShowAppLauncherPromo/ShowPromoUntilDismissed/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Dynamic-Uniformity-Trial/Group3/UMA-New-Install-Uniformity-Trial/Experiment/UMA-Population-Restrict/normal/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_09/UMA-Uniformity-Trial-1-Percent/group_85/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-100-Percent/group_01/UMA-Uniformity-Trial-20-Percent/group_02/UMA-Uniformity-Trial-5-Percent/group_13/UMA-Uniformity-Trial-50-Percent/default/VoiceTrigger/Install/" --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --channel="5072.12.1203154753\281919364" /prefetch:673131151
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 568 572 580 65536 576
C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\pla.dll,PlaHost "LSC Memory" "0xdf0_0x13d4_0x64799f4a"

"D:\RSITx64.exe"
"C:\WINDOWS\syswow64\wwahost.exe" -ServerName:App.wwa
C:\Windows\System32\RuntimeBroker.exe -Embedding

======Scheduled tasks folder======

C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office\Office15\OCHelper.dll [2014-10-22 218776]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2014-12-06 705448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~1\MICROS~1\Office15\GROOVEEX.DLL [2014-10-14 2334928]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31264a33-a653-46c4-af49-1232c59a7da5}]
BS Player ControlBar B Toolbar - C:\Users\Cory\AppData\LocalLow\BS_Player_ControlBar_B\prxtbBS_P.dll [2014-09-30 423744]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll [2014-10-22 153248]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2014-10-21 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{83B80A9C-D91A-4F22-8DCF-EA7204039F79}]
NXIECatcher Class - C:\Program Files (x86)\Xi\NetXfer\NXIEHelper.dll [2013-11-15 53248]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2014-12-06 586968]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL [2014-10-14 1729752]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2014-10-21 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5} -
{31264A33-A653-46C4-AF49-1232C59A7DA5} - BS Player ControlBar B Toolbar - C:\Users\Cory\AppData\LocalLow\BS_Player_ControlBar_B\prxtbBS_P.dll [2014-09-30 423744]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{C16CBAAC-A75C-4DB5-A0DD-CDF5CAFCDD3A} - NetTransport - C:\Program Files (x86)\Xi\NetXfer\NXToolBar.dll [2013-11-14 57344]
{31264a33-a653-46c4-af49-1232c59a7da5} - BS Player ControlBar B Toolbar - C:\Users\Cory\AppData\LocalLow\BS_Player_ControlBar_B\prxtbBS_P.dll [2014-09-30 423744]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvBackend"=C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2014-04-30 2199840]
"ShadowPlay"=C:\WINDOWS\system32\nvspcap64.dll [2014-04-30 1225920]
"Energy Management"=C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [2014-04-04 17079352]
"EnergyUtility"=C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [2014-04-04 191568]
"cAudioFilterAgent"=C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [2013-07-24 903384]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SACpl.exe [2012-06-13 1647616]
"AmIcoSinglun64"=C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2012-06-26 366720]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Akamai NetSession Interface"=C:\Users\Cory\AppData\Local\Akamai\netsession_win.exe [2014-04-17 4672920]
"RESTART_STICKY_NOTES"=C:\Windows\System32\StikyNot.exe [2013-08-22 457728]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-10-23 6501656]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-08-21 959176]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2014-09-26 271744]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2014-12-06 5226600]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
SolidWorks 2014 Rychlé spuštění.lnk - C:\WINDOWS\Installer\{4FFA60C4-9A8B-4C9E-8265-2241B266304C}\NewShortcut2_87EDF6C81D0A4B7B84F42FE0C6A9D608.exe
SolidWorks Nástroj pro stahování na pozadí.lnk - C:\Program Files (x86)\Common Files\Manažer instalací SolidWorks\BackgroundDownloading\sldBgDwld.exe

C:\Users\Cory\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Cory\AppData\Roaming\Dropbox\bin\Dropbox.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\WINDOWS\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
igfxdev.dll []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
C:\Program Files\Lenovo\Bluetooth Software\BtwProximityCP.dll

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"PromptOnSecureDesktop"=0
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
""=

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.scr - open - C:\WINDOWS\system32\notepad.exe "%1"
.scr - install -
.scr - config -

======List of files/folders created in the last 1 month======

2014-12-11 18:02:18 ----D---- C:\rsit
2014-12-11 18:02:18 ----D---- C:\Program Files\trend micro
2014-12-06 14:24:19 ----D---- C:\Program Files (x86)\SkypeWebPlugin
2014-12-06 13:29:41 ----A---- C:\WINDOWS\system32\aswBoot.exe
2014-12-06 13:29:37 ----A---- C:\WINDOWS\avastSS.scr
2014-12-01 19:26:35 ----D---- C:\Program Files (x86)\Mozilla Firefox
2014-12-01 15:38:23 ----D---- C:\Program Files (x86)\Serena Software Inc
2014-11-30 20:41:33 ----D---- C:\Program Files\Common Files\DESIGNER
2014-11-30 20:37:37 ----D---- C:\WINDOWS\PCHEALTH
2014-11-30 20:34:28 ----D---- C:\Program Files\Microsoft Analysis Services
2014-11-30 20:34:28 ----D---- C:\Program Files (x86)\Microsoft Analysis Services
2014-11-29 19:12:48 ----A---- C:\WINDOWS\SYSWOW64\ssprn32.dll
2014-11-29 19:12:48 ----A---- C:\WINDOWS\SYSWOW64\SSMEDT32.DLL
2014-11-29 19:12:48 ----A---- C:\WINDOWS\SYSWOW64\MSWHEEL.DLL
2014-11-29 19:12:46 ----D---- C:\Program Files (x86)\DSwin32
2014-11-29 16:12:54 ----D---- C:\ProgramData\Informer Technologies, Inc
2014-11-29 14:05:40 ----HD---- C:\OneDriveTemp
2014-11-19 10:33:11 ----A---- C:\WINDOWS\SYSWOW64\pku2u.dll
2014-11-19 10:33:11 ----A---- C:\WINDOWS\SYSWOW64\kerberos.dll
2014-11-19 10:33:11 ----A---- C:\WINDOWS\system32\kerberos.dll
2014-11-19 10:33:10 ----A---- C:\WINDOWS\system32\pku2u.dll
2014-11-18 08:41:14 ----A---- C:\WINDOWS\SYSWOW64\FlashPlayerApp.exe
2014-11-15 16:02:45 ----D---- C:\ProgramData\Microsoft OneDrive
2014-11-14 19:26:13 ----D---- C:\Program Files (x86)\Altap Salamander (PB)
2014-11-12 16:23:00 ----A---- C:\WINDOWS\system32\schannel.dll
2014-11-12 16:22:59 ----A---- C:\WINDOWS\SYSWOW64\schannel.dll
2014-11-12 16:22:58 ----A---- C:\WINDOWS\system32\dpapisrv.dll
2014-11-12 16:22:57 ----A---- C:\WINDOWS\SYSWOW64\ncryptsslp.dll
2014-11-12 16:22:57 ----A---- C:\WINDOWS\system32\ncryptsslp.dll
2014-11-12 16:22:22 ----A---- C:\WINDOWS\system32\shell32.dll
2014-11-12 16:22:21 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2014-11-12 16:22:19 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2014-11-12 16:22:18 ----A---- C:\WINDOWS\system32\SettingsHandlers.dll
2014-11-12 16:22:17 ----A---- C:\WINDOWS\system32\twinui.dll
2014-11-12 16:22:16 ----A---- C:\WINDOWS\system32\localspl.dll
2014-11-12 16:22:16 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys
2014-11-12 16:22:15 ----A---- C:\WINDOWS\system32\mfmp4srcsnk.dll
2014-11-12 16:22:15 ----A---- C:\WINDOWS\system32\MFMediaEngine.dll
2014-11-12 16:22:14 ----A---- C:\WINDOWS\SYSWOW64\twinui.dll
2014-11-12 16:22:13 ----A---- C:\WINDOWS\SYSWOW64\mfmp4srcsnk.dll
2014-11-12 16:22:13 ----A---- C:\WINDOWS\SYSWOW64\MFMediaEngine.dll
2014-11-12 16:22:13 ----A---- C:\WINDOWS\system32\win32spl.dll
2014-11-12 16:22:12 ----A---- C:\WINDOWS\system32\WsmSvc.dll
2014-11-12 16:22:12 ----A---- C:\WINDOWS\system32\drivers\netio.sys
2014-11-12 16:22:11 ----A---- C:\WINDOWS\SYSWOW64\WsmSvc.dll
2014-11-12 16:22:11 ----A---- C:\WINDOWS\SYSWOW64\puiobj.dll
2014-11-12 16:22:11 ----A---- C:\WINDOWS\system32\puiobj.dll
2014-11-12 16:22:10 ----AC---- C:\WINDOWS\system32\drivers\USBSTOR.SYS
2014-11-12 16:22:10 ----A---- C:\WINDOWS\system32\drivers\FWPKCLNT.SYS
2014-11-12 16:22:09 ----A---- C:\WINDOWS\SYSWOW64\untfs.dll
2014-11-12 16:22:09 ----A---- C:\WINDOWS\system32\untfs.dll
2014-11-12 16:22:06 ----A---- C:\WINDOWS\system32\FXSCOMEX.dll
2014-11-12 16:22:05 ----A---- C:\WINDOWS\SYSWOW64\FXSAPI.dll
2014-11-12 16:22:05 ----A---- C:\WINDOWS\system32\FXSAPI.dll
2014-11-12 16:21:00 ----A---- C:\WINDOWS\system32\rdpcorets.dll
2014-11-12 16:20:59 ----A---- C:\WINDOWS\SYSWOW64\certcli.dll
2014-11-12 16:20:59 ----A---- C:\WINDOWS\SYSWOW64\adtschema.dll
2014-11-12 16:20:59 ----A---- C:\WINDOWS\system32\lsasrv.dll
2014-11-12 16:20:59 ----A---- C:\WINDOWS\system32\drivers\ksecpkg.sys
2014-11-12 16:20:59 ----A---- C:\WINDOWS\system32\drivers\cng.sys
2014-11-12 16:20:59 ----A---- C:\WINDOWS\system32\certcli.dll
2014-11-12 16:20:59 ----A---- C:\WINDOWS\system32\adtschema.dll
2014-11-12 16:20:58 ----A---- C:\WINDOWS\SYSWOW64\msaudite.dll
2014-11-12 16:20:58 ----A---- C:\WINDOWS\system32\rfxvmt.dll
2014-11-12 16:20:58 ----A---- C:\WINDOWS\system32\rdpudd.dll
2014-11-12 16:20:58 ----A---- C:\WINDOWS\system32\msaudite.dll
2014-11-12 16:20:58 ----A---- C:\WINDOWS\system32\drivers\rdpvideominiport.sys
2014-11-12 16:20:07 ----A---- C:\WINDOWS\SYSWOW64\oleaut32.dll
2014-11-12 16:20:07 ----A---- C:\WINDOWS\system32\oleaut32.dll
2014-11-12 16:20:05 ----A---- C:\WINDOWS\SYSWOW64\msi.dll
2014-11-12 16:20:05 ----A---- C:\WINDOWS\system32\msi.dll
2014-11-12 16:20:05 ----A---- C:\WINDOWS\system32\authui.dll
2014-11-12 16:20:04 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2014-11-12 16:20:04 ----A---- C:\WINDOWS\system32\msihnd.dll
2014-11-12 16:20:03 ----A---- C:\WINDOWS\SYSWOW64\msihnd.dll
2014-11-12 16:20:03 ----A---- C:\WINDOWS\system32\consent.exe
2014-11-12 16:20:03 ----A---- C:\WINDOWS\system32\appinfo.dll
2014-11-12 16:19:59 ----A---- C:\WINDOWS\system32\wuaueng.dll
2014-11-12 16:19:58 ----A---- C:\WINDOWS\SYSWOW64\wuwebv.dll
2014-11-12 16:19:58 ----A---- C:\WINDOWS\SYSWOW64\wuapi.dll
2014-11-12 16:19:58 ----A---- C:\WINDOWS\system32\WUSettingsProvider.dll
2014-11-12 16:19:58 ----A---- C:\WINDOWS\system32\wucltux.dll
2014-11-12 16:19:58 ----A---- C:\WINDOWS\system32\wuapi.dll
2014-11-12 16:19:57 ----A---- C:\WINDOWS\SYSWOW64\wups.dll
2014-11-12 16:19:57 ----A---- C:\WINDOWS\SYSWOW64\wudriver.dll
2014-11-12 16:19:57 ----A---- C:\WINDOWS\SYSWOW64\wuapp.exe
2014-11-12 16:19:57 ----A---- C:\WINDOWS\system32\wuwebv.dll
2014-11-12 16:19:57 ----A---- C:\WINDOWS\system32\wups2.dll
2014-11-12 16:19:57 ----A---- C:\WINDOWS\system32\wups.dll
2014-11-12 16:19:57 ----A---- C:\WINDOWS\system32\wudriver.dll
2014-11-12 16:19:57 ----A---- C:\WINDOWS\system32\wuauclt.exe
2014-11-12 16:19:56 ----A---- C:\WINDOWS\system32\wuapp.exe
2014-11-12 16:19:56 ----A---- C:\WINDOWS\system32\wuaext.dll
2014-11-12 16:19:09 ----A---- C:\WINDOWS\system32\user32.dll
2014-11-12 16:19:08 ----A---- C:\WINDOWS\SYSWOW64\user32.dll
2014-11-12 16:19:08 ----A---- C:\WINDOWS\system32\drivers\WdFilter.sys
2014-11-12 16:19:07 ----A---- C:\WINDOWS\system32\drivers\WdNisDrv.sys
2014-11-12 16:19:07 ----A---- C:\WINDOWS\system32\drivers\WdBoot.sys
2014-11-12 16:19:05 ----A---- C:\WINDOWS\SYSWOW64\winshfhc.dll
2014-11-12 16:19:05 ----A---- C:\WINDOWS\system32\winshfhc.dll
2014-11-12 16:18:22 ----A---- C:\WINDOWS\system32\mshtml.dll
2014-11-12 16:18:21 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2014-11-12 16:17:38 ----A---- C:\WINDOWS\system32\ieframe.dll
2014-11-12 16:17:31 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2014-11-12 16:17:22 ----A---- C:\WINDOWS\system32\jscript9.dll
2014-11-12 16:17:16 ----A---- C:\WINDOWS\SYSWOW64\jscript9.dll
2014-11-12 16:17:13 ----A---- C:\WINDOWS\system32\wininet.dll
2014-11-12 16:17:11 ----A---- C:\WINDOWS\SYSWOW64\wininet.dll
2014-11-12 16:17:10 ----A---- C:\WINDOWS\system32\urlmon.dll
2014-11-12 16:17:08 ----A---- C:\WINDOWS\SYSWOW64\urlmon.dll
2014-11-12 16:17:07 ----A---- C:\WINDOWS\system32\iertutil.dll
2014-11-12 16:17:06 ----A---- C:\WINDOWS\system32\inetcomm.dll
2014-11-12 16:17:04 ----A---- C:\WINDOWS\SYSWOW64\inetcomm.dll
2014-11-12 16:17:04 ----A---- C:\WINDOWS\system32\actxprxy.dll
2014-11-12 16:17:03 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2014-11-12 16:16:58 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2014-11-12 16:16:58 ----A---- C:\WINDOWS\system32\jscript9diag.dll
2014-11-12 16:16:57 ----A---- C:\WINDOWS\system32\jscript.dll
2014-11-12 16:16:56 ----A---- C:\WINDOWS\system32\ieui.dll
2014-11-12 16:16:52 ----A---- C:\WINDOWS\SYSWOW64\jscript9diag.dll
2014-11-12 16:16:52 ----A---- C:\WINDOWS\system32\msfeeds.dll
2014-11-12 16:16:47 ----A---- C:\WINDOWS\SYSWOW64\msfeeds.dll
2014-11-12 16:16:47 ----A---- C:\WINDOWS\SYSWOW64\ieui.dll
2014-11-12 16:16:46 ----A---- C:\WINDOWS\system32\vbscript.dll
2014-11-12 16:16:45 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2014-11-12 16:16:41 ----A---- C:\WINDOWS\SYSWOW64\ieapfltr.dll
2014-11-12 16:16:40 ----A---- C:\WINDOWS\system32\dxtmsft.dll
2014-11-12 16:16:39 ----A---- C:\WINDOWS\SYSWOW64\dxtrans.dll
2014-11-12 16:16:39 ----A---- C:\WINDOWS\SYSWOW64\dxtmsft.dll
2014-11-12 16:16:39 ----A---- C:\WINDOWS\system32\dxtrans.dll
2014-11-12 16:16:37 ----A---- C:\WINDOWS\system32\ieapfltr.dll
2014-11-12 16:16:31 ----A---- C:\WINDOWS\system32\ieetwproxystub.dll
2014-11-12 16:16:27 ----A---- C:\WINDOWS\SYSWOW64\webcheck.dll
2014-11-12 16:16:27 ----A---- C:\WINDOWS\system32\webcheck.dll
2014-11-12 16:16:26 ----A---- C:\WINDOWS\SYSWOW64\iedkcs32.dll
2014-11-12 16:16:21 ----A---- C:\WINDOWS\SYSWOW64\hlink.dll
2014-11-12 16:16:20 ----A---- C:\WINDOWS\system32\iedkcs32.dll
2014-11-12 16:16:19 ----A---- C:\WINDOWS\system32\hlink.dll
2014-11-12 16:16:18 ----A---- C:\WINDOWS\system32\ie4uinit.exe
2014-11-12 16:16:17 ----A---- C:\WINDOWS\SYSWOW64\msrating.dll
2014-11-12 16:16:17 ----A---- C:\WINDOWS\system32\ieUnatt.exe
2014-11-12 16:16:17 ----A---- C:\WINDOWS\system32\iesysprep.dll
2014-11-12 16:16:16 ----A---- C:\WINDOWS\SYSWOW64\iesysprep.dll
2014-11-12 16:16:16 ----A---- C:\WINDOWS\system32\iepeers.dll
2014-11-12 16:16:16 ----A---- C:\WINDOWS\system32\ieetwcollector.exe
2014-11-12 16:16:15 ----A---- C:\WINDOWS\SYSWOW64\inseng.dll
2014-11-12 16:16:15 ----A---- C:\WINDOWS\SYSWOW64\ieUnatt.exe
2014-11-12 16:16:15 ----A---- C:\WINDOWS\SYSWOW64\iepeers.dll
2014-11-12 16:16:14 ----A---- C:\WINDOWS\SYSWOW64\actxprxy.dll
2014-11-12 16:16:12 ----A---- C:\WINDOWS\system32\inseng.dll
2014-11-12 16:16:11 ----A---- C:\WINDOWS\system32\JavaScriptCollectionAgent.dll
2014-11-12 16:16:10 ----A---- C:\WINDOWS\SYSWOW64\msfeedsbs.dll
2014-11-12 16:16:10 ----A---- C:\WINDOWS\system32\msfeedsbs.dll
2014-11-12 16:16:09 ----A---- C:\WINDOWS\SYSWOW64\jsproxy.dll
2014-11-12 16:16:09 ----A---- C:\WINDOWS\system32\mshtmled.dll
2014-11-12 16:16:09 ----A---- C:\WINDOWS\system32\jsproxy.dll
2014-11-12 16:16:08 ----A---- C:\WINDOWS\SYSWOW64\occache.dll
2014-11-12 16:16:08 ----A---- C:\WINDOWS\SYSWOW64\mshtmled.dll
2014-11-12 16:16:07 ----A---- C:\WINDOWS\SYSWOW64\IEAdvpack.dll
2014-11-12 16:16:05 ----A---- C:\WINDOWS\system32\MshtmlDac.dll
2014-11-12 16:16:04 ----A---- C:\WINDOWS\SYSWOW64\iexpress.exe
2014-11-12 16:16:04 ----A---- C:\WINDOWS\system32\msrating.dll
2014-11-12 16:16:03 ----A---- C:\WINDOWS\SYSWOW64\JavaScriptCollectionAgent.dll
2014-11-12 16:16:00 ----A---- C:\WINDOWS\SYSWOW64\imgutil.dll
2014-11-12 16:16:00 ----A---- C:\WINDOWS\system32\occache.dll
2014-11-12 16:15:59 ----A---- C:\WINDOWS\SYSWOW64\MshtmlDac.dll
2014-11-12 16:15:59 ----A---- C:\WINDOWS\SYSWOW64\ieetwproxystub.dll
2014-11-12 16:15:59 ----A---- C:\WINDOWS\system32\imgutil.dll
2014-11-12 16:15:58 ----A---- C:\WINDOWS\system32\pngfilt.dll
2014-11-12 16:15:58 ----A---- C:\WINDOWS\system32\licmgr10.dll
2014-11-12 16:15:57 ----A---- C:\WINDOWS\SYSWOW64\pngfilt.dll
2014-11-12 16:15:57 ----A---- C:\WINDOWS\SYSWOW64\licmgr10.dll
2014-11-12 16:15:56 ----A---- C:\WINDOWS\SYSWOW64\wextract.exe
2014-11-12 16:15:56 ----A---- C:\WINDOWS\SYSWOW64\iernonce.dll
2014-11-12 16:15:55 ----A---- C:\WINDOWS\SYSWOW64\iesetup.dll
2014-11-12 16:15:55 ----A---- C:\WINDOWS\system32\iernonce.dll
2014-11-12 16:15:54 ----A---- C:\WINDOWS\SYSWOW64\url.dll
2014-11-12 16:15:54 ----A---- C:\WINDOWS\system32\url.dll
2014-11-12 16:15:53 ----A---- C:\WINDOWS\system32\IEAdvpack.dll
2014-11-12 16:15:52 ----A---- C:\WINDOWS\system32\wextract.exe
2014-11-12 16:15:50 ----A---- C:\WINDOWS\SYSWOW64\msfeedssync.exe
2014-11-12 16:15:50 ----A---- C:\WINDOWS\system32\iexpress.exe
2014-11-12 16:15:50 ----A---- C:\WINDOWS\system32\iesetup.dll
2014-11-12 16:15:49 ----A---- C:\WINDOWS\SYSWOW64\mshta.exe
2014-11-12 16:15:49 ----A---- C:\WINDOWS\system32\mshta.exe
2014-11-12 16:15:49 ----A---- C:\WINDOWS\system32\msfeedssync.exe
2014-11-12 16:15:18 ----A---- C:\WINDOWS\SYSWOW64\msxml3.dll
2014-11-12 16:15:17 ----A---- C:\WINDOWS\system32\msxml3.dll
2014-11-12 16:15:15 ----A---- C:\WINDOWS\SYSWOW64\packager.dll
2014-11-12 16:15:15 ----A---- C:\WINDOWS\system32\packager.dll
2014-11-12 16:15:13 ----A---- C:\WINDOWS\system32\audiosrv.dll
2014-11-12 16:15:13 ----A---- C:\WINDOWS\system32\AudioSes.dll
2014-11-12 16:15:13 ----A---- C:\WINDOWS\system32\AUDIOKSE.dll
2014-11-12 16:15:12 ----A---- C:\WINDOWS\SYSWOW64\AudioSes.dll
2014-11-12 16:15:12 ----A---- C:\WINDOWS\SYSWOW64\AUDIOKSE.dll
2014-11-12 16:15:12 ----A---- C:\WINDOWS\SYSWOW64\AudioEng.dll
2014-11-12 16:15:12 ----A---- C:\WINDOWS\system32\win32k.sys
2014-11-12 16:15:12 ----A---- C:\WINDOWS\system32\EncDump.dll
2014-11-12 16:15:12 ----A---- C:\WINDOWS\system32\AudioEng.dll
2014-11-12 16:15:12 ----A---- C:\WINDOWS\system32\AudioEndpointBuilder.dll
2014-11-12 16:15:12 ----A---- C:\WINDOWS\system32\audiodg.exe

======List of files/folders modified in the last 1 month======

2014-12-11 18:02:18 ----RD---- C:\Program Files
2014-12-11 18:02:04 ----D---- C:\WINDOWS\Prefetch
2014-12-11 18:02:02 ----D---- C:\WINDOWS\system32\sru
2014-12-11 17:56:25 ----D---- C:\WINDOWS\Temp
2014-12-11 17:48:34 ----D---- C:\Users\Cory\AppData\Roaming\AIMP3
2014-12-11 17:23:41 ----D---- C:\Windows
2014-12-11 17:19:04 ----D---- C:\WINDOWS\Minidump
2014-12-11 17:16:56 ----D---- C:\WINDOWS\AppReadiness
2014-12-10 23:34:32 ----D---- C:\Users\Cory\AppData\Roaming\vlc
2014-12-10 16:21:50 ----D---- C:\WINDOWS\Inf
2014-12-10 10:13:57 ----D---- C:\WINDOWS\system32\config
2014-12-09 21:30:48 ----D---- C:\WINDOWS\Microsoft.NET
2014-12-09 19:00:38 ----D---- C:\WINDOWS\SysWOW64
2014-12-09 13:13:12 ----HD---- C:\Program Files\WindowsApps
2014-12-08 20:11:46 ----D---- C:\Users\Cory\AppData\Roaming\Zoner
2014-12-07 10:40:55 ----SD---- C:\Users\Cory\AppData\Roaming\Microsoft
2014-12-06 22:11:06 ----D---- C:\WINDOWS\system32\Tasks
2014-12-06 22:10:57 ----D---- C:\WINDOWS\system32\drivers
2014-12-06 22:07:49 ----SHD---- C:\Config.Msi
2014-12-06 14:24:29 ----SHD---- C:\WINDOWS\Installer
2014-12-06 14:24:19 ----RD---- C:\Program Files (x86)
2014-12-06 13:29:48 ----D---- C:\WINDOWS\system32\DriverStore
2014-12-06 13:29:41 ----RD---- C:\WINDOWS\System32
2014-12-06 13:27:55 ----SHD---- C:\System Volume Information
2014-12-03 18:29:36 ----D---- C:\Program Files (x86)\Tbccint
2014-12-03 18:27:44 ----D---- C:\Program Files (x86)\Opera
2014-12-02 22:23:43 ----RSD---- C:\WINDOWS\assembly
2014-12-02 08:32:14 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2014-12-01 19:57:47 ----D---- C:\ProgramData\Microsoft Help
2014-12-01 19:55:51 ----A---- C:\WINDOWS\win.ini
2014-12-01 19:52:02 ----D---- C:\Program Files\Common Files\microsoft shared
2014-11-30 20:49:13 ----D---- C:\WINDOWS\ShellNew
2014-11-30 20:42:12 ----RSD---- C:\WINDOWS\Fonts
2014-11-30 20:41:33 ----D---- C:\Program Files\Common Files
2014-11-30 20:39:22 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2014-11-30 20:37:38 ----D---- C:\Program Files\Microsoft Office
2014-11-30 20:36:13 ----D---- C:\Program Files\Common Files\System
2014-11-30 20:34:00 ----D---- C:\Program Files (x86)\Microsoft Office
2014-11-30 19:44:47 ----D---- C:\Users\Cory\AppData\Roaming\DAEMON Tools Lite
2014-11-29 16:12:54 ----HD---- C:\ProgramData
2014-11-29 13:13:10 ----D---- C:\WINDOWS\WinSxS
2014-11-29 13:12:08 ----D---- C:\WINDOWS\CbsTemp
2014-11-21 20:36:00 ----D---- C:\WINDOWS\rescache
2014-11-19 10:37:21 ----D---- C:\WINDOWS\debug
2014-11-19 10:30:54 ----D---- C:\WINDOWS\ModemLogs
2014-11-17 22:59:29 ----D---- C:\WINDOWS\system32\cs-CZ
2014-11-17 22:59:28 ----D---- C:\WINDOWS\SYSWOW64\migration
2014-11-17 22:59:28 ----D---- C:\Program Files (x86)\Internet Explorer
2014-11-17 22:59:25 ----D---- C:\WINDOWS\system32\migration
2014-11-17 22:59:13 ----D---- C:\Program Files\Internet Explorer
2014-11-17 22:58:45 ----D---- C:\Program Files (x86)\Windows Defender
2014-11-17 22:58:44 ----D---- C:\Program Files\Windows Defender
2014-11-17 22:58:30 ----D---- C:\WINDOWS\system32\wbem
2014-11-17 22:58:22 ----D---- C:\WINDOWS\SYSWOW64\cs-CZ
2014-11-17 22:58:16 ----RD---- C:\WINDOWS\ToastData
2014-11-17 22:58:06 ----RD---- C:\WINDOWS\ImmersiveControlPanel
2014-11-17 22:58:01 ----D---- C:\WINDOWS\apppatch
2014-11-17 22:54:51 ----D---- C:\Users\Cory\AppData\Roaming\XnView
2014-11-14 18:51:08 ----D---- C:\WINDOWS\Tasks
2014-11-14 14:05:09 ----D---- C:\WINDOWS\system32\MRT
2014-11-14 13:55:35 ----A---- C:\WINDOWS\system32\MRT.exe
2014-11-12 16:12:43 ----D---- C:\WINDOWS\system32\catroot2

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2014-12-06 65776]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2014-12-06 267632]
R0 iaStor;@oem1.inf,%*PNP0600.DeviceDesc%;Intel AHCI Controller; C:\WINDOWS\System32\drivers\iaStor.sys [2011-11-29 568600]
R0 LHDmgr;LHDmgr; C:\WINDOWS\System32\DRIVERS\LhdX64.sys [2014-04-04 39008]
R0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys [2014-05-20 32544]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2014-12-06 93568]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2014-12-06 1050432]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2014-12-06 436624]
R1 dtsoftbus01;@oem18.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2014-07-12 283064]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\WINDOWS\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2014-12-06 29208]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2014-12-06 83280]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2014-12-06 116728]
R3 ACPIVPC;@oem16.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\WINDOWS\System32\drivers\AcpiVpc.sys [2014-04-04 33560]
R3 BCM43XX;@oem23.inf,%BCM43XX_Service_DispName%;Ovladač síťového adaptéru Broadcom 802.11; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [2012-07-10 6824520]
R3 CnxtHdAudService;@oem21.inf,%UAAFunctionDriverForHdAudio.SvcDesc%;Conexant UAA Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\CHDRT64.sys [2013-07-10 1299648]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2014-05-20 3791872]
R3 iwdbus;@oem10.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2014-05-06 27032]
R3 L1C;@oem15.inf,%L1C.Service.DispName%;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\WINDOWS\system32\DRIVERS\L1C63x64.sys [2013-07-18 130248]
R3 MEIx64;@oem11.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-17 62784]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2014-05-20 12688328]
R3 NvStreamKms;NvStreamKms; \??\C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [2014-04-30 19744]
R3 nvvad_WaveExtensible;@oem2.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2014-03-31 40392]
R3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;Zobrazovací zařízení USB (WDM); C:\WINDOWS\System32\Drivers\usbvideo.sys [2013-08-22 212224]
R3 vwifimp;@%SystemRoot%\System32\drivers\vwifimp.sys,-261; C:\WINDOWS\system32\DRIVERS\vwifimp.sys [2014-04-30 38912]
S3 andnetadb;@oem29.inf,%androidusb.SvcDesc%;ADB Interface DriverNet; C:\WINDOWS\System32\Drivers\lgandnetadb.sys []
S3 AndNetDiag;@oem30.inf,%Lgsi.Service.Name%;LGE AndroidNet USB Serial Port; C:\WINDOWS\system32\DRIVERS\lgandnetdiag64.sys []
S3 ANDNetModem;@oem32.inf,%LGSI.Service.Name%;LGE AndroidNet USB Modem; C:\WINDOWS\system32\DRIVERS\lgandnetmodem64.sys []
S3 andnetndis;@oem33.inf,%LgNdis.Service.DispName%;LGE AndroidNet NDIS Ethernet Adapter; C:\WINDOWS\system32\DRIVERS\lgandnetndis64.sys []
S3 Huawei;@oem51.inf,%Huawei.DeviceDesc%;HUAWEI Mobile Connect - USB Smart Card Reader; C:\WINDOWS\system32\DRIVERS\ewdcsc.sys []
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\WINDOWS\system32\DRIVERS\ewusbmdm.sys []
S3 hwusbdev;Huawei DataCard USB PNP Device; C:\WINDOWS\system32\DRIVERS\ewusbdev.sys []
S3 intaud_WaveExtensible;@oem9.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2014-05-06 38296]
S4 RsFx0200;RsFx0200 Driver; C:\WINDOWS\system32\DRIVERS\RsFx0200.sys [2012-02-11 334936]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-09-12 64704]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2014-12-06 50344]
R2 CxAudMsg;@C:\WINDOWS\system32\CxAudMsg64.exe,-100; C:\WINDOWS\system32\CxAudMsg64.exe [2013-07-25 206552]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2014-05-20 314696]
R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe [2009-07-20 935208]
R2 NvNetworkService;NVIDIA Network Service; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [2014-04-30 1618888]
R2 NvStreamSvc;NVIDIA Streamer Service; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2014-04-30 21009352]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2014-05-20 927520]
R2 SAService;Conexant SmartAudio service; C:\WINDOWS\system32\SAsrv.exe []
R2 SQLBrowser;SQL Server Browser; C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2012-02-11 269912]
R2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2012-02-11 129624]
R2 TBSrv;Toolbar Service; C:\Program Files (x86)\Tbccint\ToolbarService\ToolbarService.exe [2014-09-30 350528]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2013-08-03 43696]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-04-04 116648]
S2 MSSQL$TEW_SQLEXPRESS;SQL Server (TEW_SQLEXPRESS); C:\ProgramData\SolidWorks Electrical\MSSQL11.TEW_SQLEXPRESS\MSSQL\Binn\sqlservr.exe [2012-02-11 191064]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-12-09 267440]
S3 CoordinatorServiceHost;SW Distributed TS Coordinator Service; C:\Program Files\SolidWorks Corp\SolidWorks\swScheduler\DTSCoordinatorService.exe [2014-04-01 76328]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2014-05-20 278344]
S3 FlexNet Licensing Service 64;FlexNet Licensing Service 64; C:\Program Files\Common Files\Macrovision Shared\FlexNet Publisher\FNPLicensingService64.exe [2014-05-28 1357104]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2014-09-27 1044816]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2014-04-04 116648]
S3 LSCWinService;LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [2014-02-19 1662424]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2012-12-08 178760]
S3 SolidWorks Licensing Service;SolidWorks Licensing Service; C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [2014-10-19 79360]
S4 SQLAgent$TEW_SQLEXPRESS;SQL Server Agent (TEW_SQLEXPRESS); C:\ProgramData\SolidWorks Electrical\MSSQL11.TEW_SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [2012-02-11 597080]

-----------------EOF-----------------

#2 Příspěvek od **vyosek** » 11 pro 2014 18:47

Zdravim

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

Ulozte nejlepe na plochu
Ukoncete vsechny programy
Po spusteni probehne stazeni databaze
Kliknete na Scan a nasledne Clean
Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

Stahnete Zoek.exe http://hijackthis.nl/smeenk/ a ulozte jej na plochu

Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
Do okna vlozte skript nize

Kód: Vybrat vše

autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin;

Nasledne kliknete na Run Script
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem

unk.cory · #3 Příspěvek od **unk.cory** » 11 pro 2014 18:52

Mám použít jak AdwCleaner tak i Zoek? Jen pro upřesnění.

Děkuji

PS: Používám Windows 8.1 Pro

unk.cory · #4 Příspěvek od **unk.cory** » 11 pro 2014 20:03

AdwCleaner:

# AdwCleaner v4.105 - Report created 11/12/2014 at 19:54:49
# Updated 08/12/2014 by Xplode
# Database : 2014-12-08.2 [Live]
# Operating System : Windows 8.1 Pro (64 bits)
# Username : Cory - CORY-PC
# Running from : C:\Users\Cory\Desktop\adwcleaner_4.105.exe
# Option : Clean

***** [ Services ] *****

Service Deleted : TBSrv

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\IePluginServices
Folder Deleted : C:\ProgramData\Tbccint
Folder Deleted : C:\ProgramData\Trymedia
Folder Deleted : C:\ProgramData\WindowsMangerProtect
Folder Deleted : C:\Program Files (x86)\SupTab
Folder Deleted : C:\Program Files (x86)\Tbccint
Folder Deleted : C:\Users\Cory\AppData\Local\Temp\BS_Player_ControlBar_B
Folder Deleted : C:\Users\Cory\AppData\Local\Tbccint
Folder Deleted : C:\Users\Cory\AppData\LocalLow\PriceGong
Folder Deleted : C:\Users\Cory\AppData\LocalLow\Tbccint
Folder Deleted : C:\Users\Cory\AppData\LocalLow\BS_Player_ControlBar_B
Folder Deleted : C:\Users\Cory\AppData\Local\Google\Chrome\User Data\Default\Extensions\pelmeidfhdlhlbjimpabfcbnnojbboma
File Deleted : C:\END

***** [ Scheduled Tasks ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck
Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WindowsMangerProtect
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IECT3329621
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT1750559
Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3329621
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3A1209A4-8568-40F0-9B5E-4A06A2A06417}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{31264A33-A653-46C4-AF49-1232C59A7DA5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{968EDCE0-C10A-47BB-B3B6-FDF09F2A417D}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31264A33-A653-46C4-AF49-1232C59A7DA5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{31264A33-A653-46C4-AF49-1232C59A7DA5}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{31264A33-A653-46C4-AF49-1232C59A7DA5}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{3A1209A4-8568-40F0-9B5E-4A06A2A06417}
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{31264A33-A653-46C4-AF49-1232C59A7DA5}]
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{31264A33-A653-46C4-AF49-1232C59A7DA5}]
Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{31264A33-A653-46C4-AF49-1232C59A7DA5}]
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{3A1209A4-8568-40F0-9B5E-4A06A2A06417}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{31264A33-A653-46C4-AF49-1232C59A7DA5}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{917CAAE9-DD47-4025-936E-1414F07DF5B8}
Value Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{FED66DC5-1B74-4A04-8F5C-15C5ACE2B9A5}]
Value Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{31264A33-A653-46C4-AF49-1232C59A7DA5}]
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Data Restored : HKEY_LOCAL_MACHINE\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{B455026D-F180-434F-958F-3FE60BB3FE6D}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\SupHpUISoft
Key Deleted : HKCU\Software\Tbccint
Key Deleted : HKCU\Software\Tbccint_HKLM
Key Deleted : HKCU\Software\AppDataLow\Toolbar
Key Deleted : HKCU\Software\AppDataLow\Software\PriceGong
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKCU\Software\AppDataLow\Software\Tbccint
Key Deleted : HKCU\Software\AppDataLow\Software\TbccintSearchScopes
Key Deleted : HKCU\Software\AppDataLow\Software\BS_Player_ControlBar_B
Key Deleted : HKLM\SOFTWARE\Conduit
Key Deleted : HKLM\SOFTWARE\omiga-plusSoftware
Key Deleted : HKLM\SOFTWARE\SupDp
Key Deleted : HKLM\SOFTWARE\SupTab
Key Deleted : HKLM\SOFTWARE\supWindowsMangerProtect
Key Deleted : HKLM\SOFTWARE\Trymedia Systems

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17416

Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]
Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]

-\\ Google Chrome v39.0.2171.95

[C:\Users\Cory\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.babylon.com/?q={searchTerms}&tt=010412_crm&babsrc=SP_crm
[C:\Users\Cory\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.babylon.com/?q={searchTerms}&tt=010412_crm&babsrc=SP_crm
[C:\Users\Cory\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://searchab.com/?aff=7&uid=1c932dd3-6ebb-11e2-8fa6-001a4d504ad7&q={searchTerms}
[C:\Users\Cory\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://isearch.omiga-plus.com/web/?type=ds&ts=1405879542&from=vtt&uid=ST500LM012XHN-M500MBB_S2U3J9KC802472&q={searchTerms}
[C:\Users\Cory\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://isearch.omiga-plus.com/web/?type=ds&ts=1405879542&from=vtt&uid=ST500LM012XHN-M500MBB_S2U3J9KC802472&q={searchTerms}
[C:\Users\Cory\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://isearch.omiga-plus.com/web/?type=ds&ts=1405879542&from=vtt&uid=ST500LM012XHN-M500MBB_S2U3J9KC802472&q={searchTerms}
[C:\Users\Cory\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://isearch.omiga-plus.com/web/?type=ds&ts=1405879542&from=vtt&uid=ST500LM012XHN-M500MBB_S2U3J9KC802472&q={searchTerms}
[C:\Users\Cory\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.deltabikes.com.br/ListaProdutos.asp ... earchTerms}

-\\ Opera v26.0.1656.32

[C:\Users\Cory\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.babylon.com/?q={searchTerms}&tt=010412_crm&babsrc=SP_crm
[C:\Users\Cory\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://search.babylon.com/?q={searchTerms}&tt=010412_crm&babsrc=SP_crm
[C:\Users\Cory\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://searchab.com/?aff=7&uid=1c932dd3-6ebb-11e2-8fa6-001a4d504ad7&q={searchTerms}
[C:\Users\Cory\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://isearch.omiga-plus.com/web/?type=ds&ts=1405879542&from=vtt&uid=ST500LM012XHN-M500MBB_S2U3J9KC802472&q={searchTerms}
[C:\Users\Cory\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://isearch.omiga-plus.com/web/?type=ds&ts=1405879542&from=vtt&uid=ST500LM012XHN-M500MBB_S2U3J9KC802472&q={searchTerms}
[C:\Users\Cory\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://isearch.omiga-plus.com/web/?type=ds&ts=1405879542&from=vtt&uid=ST500LM012XHN-M500MBB_S2U3J9KC802472&q={searchTerms}
[C:\Users\Cory\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://isearch.omiga-plus.com/web/?type=ds&ts=1405879542&from=vtt&uid=ST500LM012XHN-M500MBB_S2U3J9KC802472&q={searchTerms}
[C:\Users\Cory\AppData\Local\Google\Chrome\User Data\Default\Web Data] - Deleted [Search Provider] : hxxp://www.deltabikes.com.br/ListaProdutos.asp ... earchTerms}

*************************

AdwCleaner[R0].txt - [8232 octets] - [11/12/2014 19:51:59]
AdwCleaner[S0].txt - [8588 octets] - [11/12/2014 19:54:49]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [8648 octets] ##########

Zoek, mi nešel stáhnout, Avast! hlásí, že se jedná o malware.

#5 Příspěvek od **vyosek** » 11 pro 2014 21:02

Avast docasne vypnete, jedna se o falesny poplach, Zoek je cisty

unk.cory · #6 Příspěvek od **unk.cory** » 13 pro 2014 20:17

Tak mi v mých Windows 8.1 Pro nejde Zoek spustit. Ani jako správce...

#7 Příspěvek od **vyosek** » 13 pro 2014 20:50

Dejte log z FRST http://forum.viry.cz/viewtopic.php?f=13&t=133100

unk.cory · #8 Příspěvek od **unk.cory** » 13 pro 2014 21:23

Log z FRST:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 13-12-2014
Ran by Cory (administrator) on CORY-PC on 13-12-2014 21:19:27
Running from C:\Users\Cory\Desktop
Loaded Profile: Cory (Available profiles: Cory)
Platform: Windows 8.1 Pro (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Conexant Systems Inc.) C:\Windows\System32\CxAudMsg64.exe
(Microsoft Corporation) C:\Windows\System32\dasHost.exe
(Microsoft Corporation) C:\ProgramData\SolidWorks Electrical\MSSQL11.TEW_SQLEXPRESS\MSSQL\Binn\sqlservr.exe
(Nero AG) C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Conexant Systems, Inc.) C:\Windows\SysWOW64\SASrv.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Lenovo (Beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Management\utility.exe
(Conexant Systems, Inc.) C:\Program Files\CONEXANT\cAudioFilterAgent\CAudioFilterAgent64.exe
(Alcor Micro Corp.) C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(Dassault Systèmes SolidWorks Corp.) C:\Program Files\SolidWorks Corp\SolidWorks\sldworks_fs.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\SysWOW64\WWAHost.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20689_x64__8wekyb3d8bbwe\livecomm.exe
(forum.viry.cz) C:\Users\Cory\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2199840 2014-04-30] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [Energy Management] => C:\Program Files (x86)\Lenovo\Energy Management\Energy Management.exe [17079352 2014-04-04] (Lenovo (Beijing) Limited)
HKLM\...\Run: [EnergyUtility] => C:\Program Files (x86)\Lenovo\Energy Management\Utility.exe [191568 2014-04-04] (Lenovo(beijing) Limited)
HKLM\...\Run: [cAudioFilterAgent] => C:\Program Files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe [903384 2013-07-24] (Conexant Systems, Inc.)
HKLM\...\Run: [SmartAudio] => C:\Program Files\CONEXANT\SAII\SACpl.exe [1647616 2012-06-13] (Conexant Systems, Inc.)
HKLM\...\Run: [AmIcoSinglun64] => C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [366720 2012-06-26] (Alcor Micro Corp.)
HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1021128 2014-11-20] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [271744 2014-09-26] (Oracle Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5227112 2014-12-13] (AVAST Software)
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKU\S-1-5-21-760272210-2824853156-1073884128-1000\...\Run: [Akamai NetSession Interface] => C:\Users\Cory\AppData\Local\Akamai\netsession_win.exe [4672920 2014-04-17] (Akamai Technologies, Inc.)
HKU\S-1-5-21-760272210-2824853156-1073884128-1000\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [457728 2013-08-22] (Microsoft Corporation)
HKU\S-1-5-21-760272210-2824853156-1073884128-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-760272210-2824853156-1073884128-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [6501656 2014-10-23] (Piriform Ltd)
HKU\S-1-5-21-760272210-2824853156-1073884128-1000\...\RunOnce: [Adobe Speed Launcher] => 1418497634
HKU\S-1-5-21-760272210-2824853156-1073884128-1000\...\Policies\Explorer: []
HKU\S-1-5-21-760272210-2824853156-1073884128-1000\...\MountPoints2: {22fcf56c-aff8-11e3-8d39-20898421c652} - "K:\LG_PC_Programs.exe"
HKU\S-1-5-21-760272210-2824853156-1073884128-1000\...\MountPoints2: {a2bbd6ec-e1c1-11e3-8262-20898421c652} - "G:\LG_PC_Programs.exe"
HKU\S-1-5-21-760272210-2824853156-1073884128-1000\...\MountPoints2: {d340577c-6382-11e4-8280-20898421c652} - "G:\AutoRun.exe"
AppInit_DLLs: C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [166568 2014-05-20] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [146480 2014-05-20] (NVIDIA Corporation)
Lsa: [Notification Packages] scecli C:\Program Files\Lenovo\Bluetooth Software\BtwProximityCP.dll
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SolidWorks 2014 Rychlé spuštění.lnk
ShortcutTarget: SolidWorks 2014 Rychlé spuštění.lnk -> C:\Windows\Installer\{4FFA60C4-9A8B-4C9E-8265-2241B266304C}\NewShortcut2_87EDF6C81D0A4B7B84F42FE0C6A9D608.exe (Flexera Software LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\SolidWorks Nástroj pro stahování na pozadí.lnk
ShortcutTarget: SolidWorks Nástroj pro stahování na pozadí.lnk -> C:\Program Files (x86)\Common Files\Manažer instalací SolidWorks\BackgroundDownloading\sldBgDwld.exe (Dassault Systèmes SolidWorks Corp.)
Startup: C:\Users\Cory\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Cory\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=AV01
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-760272210-2824853156-1073884128-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
HKU\S-1-5-21-760272210-2824853156-1073884128-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/?pc=AV01
HKU\S-1-5-21-760272210-2824853156-1073884128-1000\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.msn.com/?pc=AV01
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM-x32 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-760272210-2824853156-1073884128-1000 -> {632F07F3-19A1-4d16-A23F-E6CE9486BAB5} URL = http://www.bing.com/search?q={searchTer ... DF&PC=AV01
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll (AVAST Software)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: NXIECatcher Class -> {83B80A9C-D91A-4F22-8DCF-EA7204039F79} -> C:\Program Files (x86)\Xi\NetXfer\NXIEHelper.dll (Xi)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM-x32 - NetTransport - {C16CBAAC-A75C-4DB5-A0DD-CDF5CAFCDD3A} - C:\Program Files (x86)\Xi\NetXfer\NXToolBar.dll (Xi)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.2.1

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_15_0_0_246.dll ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @Skype Technologies S.A..com/Skype Web Plugin -> C:\Program Files (x86)\SkypeWebPlugin\3.1.15602.22612\npSkypeWebPlugin64.dll (Skype)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_15_0_0_246.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.71.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office15\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin-x32: @Skype Technologies S.A..com/Skype Web Plugin -> C:\Program Files (x86)\SkypeWebPlugin\3.1.15602.22612\npSkypeWebPlugin.dll (Skype)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.3 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files (x86)\mozilla firefox\plugins\npMeetingJoinPluginOC.dll (Microsoft Corporation)
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-10-22]

Chrome:
=======
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/?logged=1#obsah"
CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter}
CHR Profile: C:\Users\Cory\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Překladač Google) - C:\Users\Cory\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2014-04-04]
CHR Extension: (Angry Birds) - C:\Users\Cory\AppData\Local\Google\Chrome\User Data\Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj [2014-04-04]
CHR Extension: (Dokumenty Google) - C:\Users\Cory\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-04-04]
CHR Extension: (Disk Google) - C:\Users\Cory\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-04-04]
CHR Extension: (James White) - C:\Users\Cory\AppData\Local\Google\Chrome\User Data\Default\Extensions\bkeidgmehkdjmpjodpjkepolokanalkm [2014-04-05]
CHR Extension: (YouTube) - C:\Users\Cory\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-04-04]
CHR Extension: (Vyhledávání Google) - C:\Users\Cory\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-04-04]
CHR Extension: (Kalendář Google) - C:\Users\Cory\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn [2014-12-02]
CHR Extension: (Facebook Friend Inviter) - C:\Users\Cory\AppData\Local\Google\Chrome\User Data\Default\Extensions\fojfflomljfbdfdcfmiihnijjfnnakdn [2014-04-04]
CHR Extension: (AdBlock) - C:\Users\Cory\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-04-04]
CHR Extension: (Last.fm Scrobbler) - C:\Users\Cory\AppData\Local\Google\Chrome\User Data\Default\Extensions\hhinaapppaileiechjoiifaancjggfjm [2014-10-21]
CHR Extension: (Facebook Hide Seen) - C:\Users\Cory\AppData\Local\Google\Chrome\User Data\Default\Extensions\ikmojhhnceodlgkdhaofpfggpbnghccm [2014-11-29]
CHR Extension: (Google Dictionary (by Google)) - C:\Users\Cory\AppData\Local\Google\Chrome\User Data\Default\Extensions\mgijmajocgfcbeboacabfgobmjgjcoja [2014-04-04]
CHR Extension: (Peněženka Google) - C:\Users\Cory\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-04-04]
CHR Extension: (Picasa) - C:\Users\Cory\AppData\Local\Google\Chrome\User Data\Default\Extensions\onlgmecjpnejhfeofkgbfgnmdlipdejb [2014-04-04]
CHR Extension: (Gmail) - C:\Users\Cory\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-04-04]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-12-06]

==================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-12-06] (AVAST Software)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [314696 2014-05-20] (Intel Corporation)
S3 LSCWinService; C:\Program Files\Lenovo\Lenovo Solution Center\App\LSCWinService.exe [1662424 2014-02-19] ()
R2 MSSQL$TEW_SQLEXPRESS; C:\ProgramData\SolidWorks Electrical\MSSQL11.TEW_SQLEXPRESS\MSSQL\Binn\sqlservr.exe [191064 2012-02-11] (Microsoft Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1618888 2014-04-30] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21009352 2014-04-30] (NVIDIA Corporation)
S3 SolidWorks Licensing Service; C:\Program Files (x86)\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [79360 2014-10-19] (SolidWorks) [File not signed]
S4 SQLAgent$TEW_SQLEXPRESS; C:\ProgramData\SolidWorks Electrical\MSSQL11.TEW_SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [597080 2012-02-11] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [368632 2014-09-22] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23792 2014-09-22] (Microsoft Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [29208 2014-12-06] ()
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [83280 2014-12-06] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93568 2014-12-06] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65776 2014-12-06] ()
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1050432 2014-12-06] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [436624 2014-12-06] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [116728 2014-12-06] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [267632 2014-12-06] ()
R3 BCM43XX; C:\Windows\system32\DRIVERS\bcmwl63a.sys [6824520 2012-07-10] (Broadcom Corporation)
R1 dtsoftbus01; C:\Windows\System32\drivers\dtsoftbus01.sys [283064 2014-07-12] (Disc Soft Ltd)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19744 2014-04-30] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [40392 2014-03-31] (NVIDIA Corporation)
S4 RsFx0200; C:\Windows\System32\DRIVERS\RsFx0200.sys [334936 2012-02-11] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114496 2014-09-22] (Microsoft Corporation)
S3 andnetadb; \SystemRoot\System32\Drivers\lgandnetadb.sys [X]
S3 AndNetDiag; \SystemRoot\system32\DRIVERS\lgandnetdiag64.sys [X]
S3 ANDNetModem; \SystemRoot\system32\DRIVERS\lgandnetmodem64.sys [X]
S3 andnetndis; \SystemRoot\system32\DRIVERS\lgandnetndis64.sys [X]
S3 Huawei; \SystemRoot\system32\DRIVERS\ewdcsc.sys [X]
S3 hwdatacard; \SystemRoot\system32\DRIVERS\ewusbmdm.sys [X]
S3 hwusbdev; \SystemRoot\system32\DRIVERS\ewusbdev.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-12-13 21:19 - 2014-12-13 21:20 - 00021506 _____ () C:\Users\Cory\Desktop\FRST.txt
2014-12-13 21:18 - 2014-12-13 21:19 - 00000000 ____D () C:\FRST
2014-12-13 21:17 - 2014-12-13 21:17 - 00112640 _____ (forum.viry.cz) C:\Users\Cory\Desktop\FRSTLauncher.exe
2014-12-13 21:16 - 2014-12-13 21:16 - 02119168 _____ (Farbar) C:\Users\Cory\Desktop\FRST64.exe
2014-12-13 20:15 - 2014-12-13 20:15 - 01295360 _____ () C:\Users\Cory\Desktop\zoek.exe
2014-12-13 20:15 - 2014-12-13 20:15 - 00000000 ____D () C:\zoek_backup
2014-12-11 19:51 - 2014-12-13 20:01 - 00000000 ____D () C:\AdwCleaner
2014-12-11 19:03 - 2014-11-10 03:29 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceSetupStatusProvider.dll
2014-12-11 19:03 - 2014-11-10 02:51 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\DeviceSetupStatusProvider.dll
2014-12-11 19:03 - 2014-10-31 00:39 - 01970432 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2014-12-11 19:03 - 2014-10-31 00:38 - 01612992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\crypt32.dll
2014-12-11 18:54 - 2014-12-11 18:54 - 02166272 _____ () C:\Users\Cory\Desktop\adwcleaner_4.105.exe
2014-12-11 18:48 - 2014-11-22 04:13 - 25059840 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2014-12-11 18:48 - 2014-11-22 03:49 - 02885120 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2014-12-11 18:48 - 2014-11-22 03:34 - 06039552 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2014-12-11 18:48 - 2014-11-22 03:22 - 19749376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2014-12-11 18:48 - 2014-11-22 03:01 - 02277888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2014-12-11 18:48 - 2014-11-22 02:43 - 14412800 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2014-12-11 18:48 - 2014-11-22 02:29 - 04299264 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript9.dll
2014-12-11 18:48 - 2014-11-22 02:28 - 02358272 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2014-12-11 18:48 - 2014-11-22 02:15 - 01548288 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2014-12-11 18:48 - 2014-11-22 02:13 - 12836864 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2014-12-11 18:48 - 2014-11-22 02:03 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2014-12-11 18:48 - 2014-11-22 02:00 - 01888256 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2014-12-11 18:48 - 2014-11-22 01:56 - 01307136 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2014-12-11 18:47 - 2014-11-22 03:50 - 00580096 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2014-12-11 18:47 - 2014-11-22 03:49 - 00417280 _____ (Microsoft Corporation) C:\WINDOWS\system32\html.iec
2014-12-11 18:47 - 2014-11-22 03:48 - 00088064 _____ (Microsoft Corporation) C:\WINDOWS\system32\MshtmlDac.dll
2014-12-11 18:47 - 2014-11-22 03:35 - 00812544 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2014-12-11 18:47 - 2014-11-22 03:08 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2014-12-11 18:47 - 2014-11-22 03:07 - 00501248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2014-12-11 18:47 - 2014-11-22 03:06 - 00340992 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\html.iec
2014-12-11 18:47 - 2014-11-22 03:06 - 00145408 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2014-12-11 18:47 - 2014-11-22 03:05 - 00316928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2014-12-11 18:47 - 2014-11-22 03:05 - 00064000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MshtmlDac.dll
2014-12-11 18:47 - 2014-11-22 02:59 - 01032704 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2014-12-11 18:47 - 2014-11-22 02:55 - 00661504 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2014-12-11 18:47 - 2014-11-22 02:52 - 00262144 _____ (Microsoft Corporation) C:\WINDOWS\system32\webcheck.dll
2014-12-11 18:47 - 2014-11-22 02:49 - 00800768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll
2014-12-11 18:47 - 2014-11-22 02:49 - 00718848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ie4uinit.exe
2014-12-11 18:47 - 2014-11-22 02:49 - 00373760 _____ (Microsoft Corporation) C:\WINDOWS\system32\iedkcs32.dll
2014-12-11 18:47 - 2014-11-22 02:46 - 02125312 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcpl.cpl
2014-12-11 18:47 - 2014-11-22 02:35 - 00076288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtmled.dll
2014-12-11 18:47 - 2014-11-22 02:34 - 00128000 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iepeers.dll
2014-12-11 18:47 - 2014-11-22 02:33 - 00285696 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dxtrans.dll
2014-12-11 18:47 - 2014-11-22 02:29 - 00880128 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcomm.dll
2014-12-11 18:47 - 2014-11-22 02:25 - 00230400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\webcheck.dll
2014-12-11 18:47 - 2014-11-22 02:23 - 00688640 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\msfeeds.dll
2014-12-11 18:47 - 2014-11-22 02:23 - 00326656 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iedkcs32.dll
2014-12-11 18:47 - 2014-11-22 02:22 - 02052096 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\inetcpl.cpl
2014-12-11 18:47 - 2014-11-22 01:54 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieapfltr.dll
2014-12-11 18:46 - 2014-11-07 05:16 - 01762840 _____ (Microsoft Corporation) C:\WINDOWS\system32\WindowsCodecs.dll
2014-12-11 18:46 - 2014-11-07 04:26 - 01489072 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WindowsCodecs.dll
2014-12-11 18:46 - 2014-11-01 00:57 - 01091072 _____ (Microsoft Corporation) C:\WINDOWS\system32\MrmCoreR.dll
2014-12-11 18:46 - 2014-11-01 00:47 - 00790528 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MrmCoreR.dll
2014-12-11 18:46 - 2014-10-13 03:43 - 00238912 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2014-12-11 18:46 - 2014-10-13 03:43 - 00153920 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2014-12-11 18:46 - 2014-10-13 03:43 - 00086336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pdc.sys
2014-12-11 18:46 - 2014-10-13 03:43 - 00039744 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelpep.sys
2014-12-11 18:02 - 2014-12-11 18:02 - 00000000 ____D () C:\rsit
2014-12-11 18:02 - 2014-12-11 18:02 - 00000000 ____D () C:\Program Files\trend micro
2014-12-11 17:19 - 2014-12-11 17:19 - 00297560 _____ () C:\WINDOWS\Minidump\121114-29234-01.dmp
2014-12-06 14:24 - 2014-12-06 14:24 - 00000000 ____D () C:\Program Files (x86)\SkypeWebPlugin
2014-12-06 13:29 - 2014-12-06 13:29 - 00364512 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2014-12-06 13:29 - 2014-12-06 13:29 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2014-12-03 18:31 - 2014-12-03 18:31 - 00001138 _____ () C:\Users\Public\Desktop\BS.Player FREE.lnk
2014-12-01 19:26 - 2014-12-01 19:26 - 00000000 ____D () C:\Program Files (x86)\Mozilla Firefox
2014-12-01 15:38 - 2014-12-01 15:38 - 00001212 _____ () C:\Users\Public\Desktop\OpenProj.lnk
2014-12-01 15:38 - 2014-12-01 15:38 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenProj
2014-12-01 15:38 - 2014-12-01 15:38 - 00000000 ____D () C:\Program Files (x86)\Serena Software Inc
2014-11-30 20:53 - 2014-11-30 20:53 - 00000000 ____D () C:\Users\Cory\AppData\Local\Microsoft Toolkit
2014-11-30 20:42 - 2014-12-11 21:14 - 00000000 ___RD () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2014-11-30 20:41 - 2014-11-30 20:41 - 00000000 ____D () C:\Program Files\Common Files\DESIGNER
2014-11-30 20:37 - 2014-11-30 20:37 - 00000000 ____D () C:\WINDOWS\PCHEALTH
2014-11-30 20:34 - 2014-11-30 20:34 - 00000000 ____D () C:\Program Files\Microsoft Analysis Services
2014-11-30 20:34 - 2014-11-30 20:34 - 00000000 ____D () C:\Program Files (x86)\Microsoft Analysis Services
2014-11-30 19:41 - 2014-12-05 18:18 - 00000000 ____D () C:\Users\Cory\AppData\Local\CrashDumps
2014-11-29 19:12 - 2014-11-29 19:13 - 00000000 ____D () C:\Program Files (x86)\DSwin32
2014-11-29 19:12 - 2014-11-29 19:12 - 00000993 _____ () C:\Users\Cory\Desktop\DS for Windows 2.lnk
2014-11-29 19:12 - 2014-11-29 19:12 - 00000000 ____D () C:\Users\Cory\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DS for Windows 2
2014-11-29 19:12 - 2014-11-29 19:12 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DS for Windows 2
2014-11-29 19:12 - 2000-06-08 17:00 - 00933888 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\temp.000
2014-11-29 19:12 - 1999-09-02 18:29 - 00870128 _____ (Sheridan Software Systems, Inc.) C:\WINDOWS\SysWOW64\SSDW3B32.OCX
2014-11-29 19:12 - 1999-08-27 18:36 - 00061440 _____ (Sheridan Software Systems, Inc.) C:\WINDOWS\SysWOW64\SSMEDT32.DLL
2014-11-29 19:12 - 1999-06-22 09:59 - 00362576 _____ (Data Dynamics) C:\WINDOWS\SysWOW64\ActBar.ocx
2014-11-29 19:12 - 1998-05-06 16:59 - 00072192 _____ (Sheridan Software Systems, Inc.) C:\WINDOWS\SysWOW64\ssprn32.dll
2014-11-29 19:12 - 1997-08-08 00:00 - 00020480 _____ () C:\WINDOWS\SysWOW64\MSWHEEL.DLL
2014-11-29 19:12 - 1996-01-12 00:00 - 00078848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\MSOUTL32.OCX
2014-11-29 16:12 - 2014-12-02 08:18 - 00000000 ____D () C:\ProgramData\Informer Technologies, Inc
2014-11-29 14:05 - 2014-11-29 14:05 - 00000000 ___HD () C:\OneDriveTemp
2014-11-22 15:12 - 2014-12-05 18:18 - 00003705 _____ () C:\WINDOWS\setupact.log
2014-11-22 15:12 - 2014-11-22 15:12 - 00000000 _____ () C:\WINDOWS\setuperr.log
2014-11-21 17:48 - 2014-12-13 20:01 - 00034806 _____ () C:\WINDOWS\PFRO.log
2014-11-19 10:33 - 2014-11-10 00:19 - 00991232 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2014-11-19 10:33 - 2014-11-10 00:19 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2014-11-19 10:33 - 2014-11-10 00:18 - 00259584 _____ (Microsoft Corporation) C:\WINDOWS\system32\pku2u.dll
2014-11-19 10:33 - 2014-11-10 00:18 - 00208896 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\pku2u.dll
2014-11-18 20:47 - 2014-11-18 20:47 - 01691816 _____ (Microsoft Corporation) C:\WINDOWS\system32\FM20.DLL
2014-11-18 08:41 - 2014-11-26 22:10 - 00714720 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2014-11-18 08:41 - 2014-11-26 22:10 - 00106976 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2014-11-15 22:33 - 2014-11-15 22:33 - 00000000 ____D () C:\Users\Cory\OneDrive pro firmy – archivy
2014-11-15 16:02 - 2014-11-15 16:02 - 00000000 ____D () C:\ProgramData\Microsoft OneDrive
2014-11-14 19:26 - 2014-11-14 19:26 - 00000000 ____D () C:\Program Files (x86)\Altap Salamander (PB)

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2014-12-13 21:13 - 2014-10-28 10:55 - 02087381 _____ () C:\WINDOWS\WindowsUpdate.log
2014-12-13 21:00 - 2014-04-05 09:38 - 00000914 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-12-13 21:00 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sru
2014-12-13 20:56 - 2014-04-04 22:29 - 00000976 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-12-13 20:22 - 2014-10-13 11:01 - 00004950 _____ () C:\WINDOWS\System32\Tasks\Microsoft Office 15 Sync Maintenance for CORY-PC-Cory Cory-PC
2014-12-13 20:10 - 2013-04-28 20:29 - 00000000 ___DO () C:\Users\Cory\SkyDrive
2014-12-13 20:06 - 2014-04-04 22:29 - 00000972 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-12-13 20:02 - 2013-08-22 15:45 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-12-13 20:01 - 2014-04-07 12:01 - 10539396 _____ () C:\Users\Public\CAFADEBUG.log
2014-12-13 20:01 - 2013-08-22 14:25 - 00524288 ___SH () C:\WINDOWS\system32\config\BBI
2014-12-13 19:43 - 2014-04-04 22:19 - 00003598 _____ () C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-760272210-2824853156-1073884128-1000
2014-12-13 19:40 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\AppReadiness
2014-12-13 19:34 - 2014-04-04 22:40 - 00002457 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk
2014-12-13 19:32 - 2014-10-22 13:29 - 00004182 _____ () C:\WINDOWS\System32\Tasks\avast! Emergency Update
2014-12-13 19:23 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sr-Latn-RS
2014-12-13 19:23 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\system32\sr-Latn-CS
2014-12-13 19:23 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\PolicyDefinitions
2014-12-13 19:21 - 2014-04-05 01:33 - 00000000 ____D () C:\ProgramData\Microsoft Help
2014-12-11 21:17 - 2013-08-22 16:20 - 00000000 ____D () C:\WINDOWS\CbsTemp
2014-12-11 21:08 - 2014-04-05 00:21 - 00000000 ____D () C:\WINDOWS\system32\MRT
2014-12-11 21:02 - 2014-04-05 00:21 - 112710672 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2014-12-11 17:48 - 2014-11-08 19:54 - 00000000 ____D () C:\Users\Cory\AppData\Roaming\AIMP3
2014-12-11 17:40 - 2014-10-21 22:49 - 00000000 ____D () C:\Users\Cory\AppData\Local\Last.fm
2014-12-11 17:39 - 2014-04-04 22:13 - 00000000 ____D () C:\Users\Cory\AppData\Local\Packages
2014-12-11 17:19 - 2014-04-22 18:13 - 00000000 ____D () C:\WINDOWS\Minidump
2014-12-10 23:34 - 2014-05-16 18:53 - 00000000 ____D () C:\Users\Cory\AppData\Roaming\vlc
2014-12-09 19:00 - 2014-04-05 09:38 - 00003802 _____ () C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2014-12-08 20:11 - 2014-06-12 19:30 - 00000000 ____D () C:\Users\Cory\AppData\Roaming\Zoner
2014-12-08 19:21 - 2013-09-23 10:01 - 00000000 ____D () C:\Users\Cory\ARISExpress
2014-12-06 22:08 - 2013-08-22 15:44 - 05122808 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-12-06 13:36 - 2014-10-22 13:28 - 01050432 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys
2014-12-06 13:29 - 2014-10-22 13:29 - 00001980 _____ () C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2014-12-06 13:29 - 2014-10-22 13:28 - 00436624 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2014-12-06 13:29 - 2014-10-22 13:28 - 00267632 _____ () C:\WINDOWS\system32\Drivers\aswVmm.sys
2014-12-06 13:29 - 2014-10-22 13:28 - 00116728 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2014-12-06 13:29 - 2014-10-22 13:28 - 00093568 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2014-12-06 13:29 - 2014-10-22 13:28 - 00083280 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswmonflt.sys
2014-12-06 13:29 - 2014-10-22 13:28 - 00065776 _____ () C:\WINDOWS\system32\Drivers\aswRvrt.sys
2014-12-06 13:29 - 2014-10-22 13:28 - 00029208 _____ () C:\WINDOWS\system32\Drivers\aswHwid.sys
2014-12-03 18:31 - 2014-04-06 20:38 - 00001144 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\BS.Player FREE.lnk
2014-12-03 18:27 - 2014-06-29 13:40 - 00003828 _____ () C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1404045592
2014-12-03 18:27 - 2014-06-29 13:39 - 00001057 _____ () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2014-12-03 18:27 - 2014-06-29 13:39 - 00000000 ____D () C:\Program Files (x86)\Opera
2014-12-03 17:30 - 2014-09-27 17:44 - 00000000 ____D () C:\Users\Cory\AppData\Local\TempAdresářZálohySW
2014-12-02 21:27 - 2014-04-05 01:33 - 00000000 ____D () C:\Users\Cory\AppData\Local\Microsoft Help
2014-12-02 08:32 - 2014-04-04 22:01 - 01990854 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-12-02 08:32 - 2013-08-22 23:08 - 00825760 _____ () C:\WINDOWS\system32\perfh005.dat
2014-12-02 08:32 - 2013-08-22 23:08 - 00185724 _____ () C:\WINDOWS\system32\perfc005.dat
2014-12-01 19:55 - 2013-08-22 14:25 - 00000167 _____ () C:\WINDOWS\win.ini
2014-12-01 19:52 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Common Files\microsoft shared
2014-11-30 20:49 - 2013-08-22 23:10 - 00000000 ____D () C:\WINDOWS\ShellNew
2014-11-30 20:37 - 2014-04-05 01:33 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-11-30 20:36 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Common Files\System
2014-11-30 20:34 - 2014-04-05 01:33 - 00000000 ____D () C:\Program Files (x86)\Microsoft Office
2014-11-30 19:44 - 2014-04-05 01:31 - 00000000 ____D () C:\Users\Cory\AppData\Roaming\DAEMON Tools Lite
2014-11-30 15:31 - 2014-04-04 22:04 - 00000000 ____D () C:\Users\Cory
2014-11-21 20:36 - 2013-08-22 16:36 - 00000000 ____D () C:\WINDOWS\rescache
2014-11-17 22:58 - 2013-08-22 16:36 - 00000000 ___RD () C:\WINDOWS\ToastData
2014-11-17 22:58 - 2013-08-22 16:36 - 00000000 ___RD () C:\WINDOWS\ImmersiveControlPanel
2014-11-17 22:58 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-11-17 22:58 - 2013-08-22 16:36 - 00000000 ___RD () C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools
2014-11-17 22:58 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files\Windows Defender
2014-11-17 22:58 - 2013-08-22 16:36 - 00000000 ____D () C:\Program Files (x86)\Windows Defender
2014-11-17 22:54 - 2014-04-18 19:39 - 00000000 ____D () C:\Users\Cory\AppData\Roaming\XnView
2014-11-15 16:09 - 2014-07-03 18:36 - 00000000 ____D () C:\Users\Cory\AppData\Local\Flvto Youtube Downloader
2014-11-14 18:51 - 2014-04-04 22:29 - 00003948 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2014-11-14 18:51 - 2014-04-04 22:29 - 00003712 _____ () C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore

Some content of TEMP:
====================
C:\Users\Cory\AppData\Local\Temp\ose00003.exe
C:\Users\Cory\AppData\Local\Temp\ose00004.exe
C:\Users\Cory\AppData\Local\Temp\proxy_vole6867564385649575126.dll
C:\Users\Cory\AppData\Local\Temp\Quarantine.exe
C:\Users\Cory\AppData\Local\Temp\sqlite3.dll

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2014-12-05 18:31

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: () (Fixed) (Total:97.56 GB) (Free:19.65 GB) NTFS
Drive d: () (Fixed) (Total:367.02 GB) (Free:89.81 GB) NTFS
Drive e: (KEJ192) (CDROM) (Total:0.5 GB) (Free:0 GB) CDFS

Available physical RAM: 2110.26 MB
Total physical RAM: 3998.35 MB
Percentage of memory in use: 47%

==================== MBR and Partition Table ==================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: C3FFC3FF)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=97.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=367 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=1.1 GB) - (Type=12)

==================== Scheduled Tasks (whitelisted) ==================

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Alternate Data Streams (whitelisted) ==================

AlternateDataStreams: C:\Users\Cory\SkyDrive:ms-properties

==================== Security Center ==================

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Cory\Desktop" je 110 MB.

***** Startup Programs *****

***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
DoNotAllowExceptions REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
DoNotAllowExceptions REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000

==================== End Of Log ==============================

#9 Příspěvek od **vyosek** » 13 pro 2014 22:44

Tvorba fixlistu pro FRST

Spustte poznamkovy blok (Start-spustit-notepad)
Zkopirujte skript nize

Kód: Vybrat vše

Start
CloseProcesses:

HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1021128 2014-11-20] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [271744 2014-09-26] (Oracle Corporation)
HKU\S-1-5-21-760272210-2824853156-1073884128-1000\...\Run: [Akamai NetSession Interface] => C:\Users\Cory\AppData\Local\Akamai\netsession_win.exe [4672920 2014-04-17] (Akamai Technologies, Inc.)
HKU\S-1-5-21-760272210-2824853156-1073884128-1000\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [457728 2013-08-22] (Microsoft Corporation)
HKU\S-1-5-21-760272210-2824853156-1073884128-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-760272210-2824853156-1073884128-1000\...\RunOnce: [Adobe Speed Launcher] => 1418497634
HKU\S-1-5-21-760272210-2824853156-1073884128-1000\...\Policies\Explorer: []
HKU\S-1-5-21-760272210-2824853156-1073884128-1000\...\MountPoints2: {22fcf56c-aff8-11e3-8d39-20898421c652} - "K:\LG_PC_Programs.exe"
HKU\S-1-5-21-760272210-2824853156-1073884128-1000\...\MountPoints2: {a2bbd6ec-e1c1-11e3-8262-20898421c652} - "G:\LG_PC_Programs.exe"
HKU\S-1-5-21-760272210-2824853156-1073884128-1000\...\MountPoints2: {d340577c-6382-11e4-8280-20898421c652} - "G:\AutoRun.exe" 

SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 

S3 andnetadb; \SystemRoot\System32\Drivers\lgandnetadb.sys [X]
S3 AndNetDiag; \SystemRoot\system32\DRIVERS\lgandnetdiag64.sys [X]
S3 ANDNetModem; \SystemRoot\system32\DRIVERS\lgandnetmodem64.sys [X]
S3 andnetndis; \SystemRoot\system32\DRIVERS\lgandnetndis64.sys [X]
S3 Huawei; \SystemRoot\system32\DRIVERS\ewdcsc.sys [X]
S3 hwdatacard; \SystemRoot\system32\DRIVERS\ewusbmdm.sys [X]
S3 hwusbdev; \SystemRoot\system32\DRIVERS\ewusbdev.sys [X]

2014-12-13 21:19 - 2014-12-13 21:20 - 00021506 _____ () C:\Users\Cory\Desktop\FRST.txt
2014-12-13 21:17 - 2014-12-13 21:17 - 00112640 _____ (forum.viry.cz) C:\Users\Cory\Desktop\FRSTLauncher.exe
014-12-13 20:15 - 2014-12-13 20:15 - 01295360 _____ () C:\Users\Cory\Desktop\zoek.exe
2014-12-13 20:15 - 2014-12-13 20:15 - 00000000 ____D () C:\zoek_backup
2014-12-11 19:51 - 2014-12-13 20:01 - 00000000 ____D () C:\AdwCleaner
2014-12-11 18:54 - 2014-12-11 18:54 - 02166272 _____ () C:\Users\Cory\Desktop\adwcleaner_4.105.exe

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Hosts:
EmptyTemp:
Reboot:
End

Ulozte vytvoreny TXT jako fixlist.txt
Presunte vytvoreny fixlist vedle FRST

Spustte znovu FRST.exe

Kliknete na Fix
Probehne oprava a vytvori log Fixlog.txt

Restart PC a dejte mi sem fixlog.txt

unk.cory · #10 Příspěvek od **unk.cory** » 14 pro 2014 09:46

Fixlog.txt:

Kód: Vybrat vše

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 13-12-2014
Ran by Cory at 2014-12-14 09:38:31 Run:1
Running from C:\Users\Cory\Desktop
Loaded Profile: Cory (Available profiles: Cory)
Boot Mode: Normal
==============================================

Content of fixlist:
*****************
Start
CloseProcesses:

HKLM-x32\...\Run: [Adobe ARM] => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1021128 2014-11-20] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [271744 2014-09-26] (Oracle Corporation)
HKU\S-1-5-21-760272210-2824853156-1073884128-1000\...\Run: [Akamai NetSession Interface] => C:\Users\Cory\AppData\Local\Akamai\netsession_win.exe [4672920 2014-04-17] (Akamai Technologies, Inc.)
HKU\S-1-5-21-760272210-2824853156-1073884128-1000\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [457728 2013-08-22] (Microsoft Corporation)
HKU\S-1-5-21-760272210-2824853156-1073884128-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-760272210-2824853156-1073884128-1000\...\RunOnce: [Adobe Speed Launcher] => 1418497634
HKU\S-1-5-21-760272210-2824853156-1073884128-1000\...\Policies\Explorer: []
HKU\S-1-5-21-760272210-2824853156-1073884128-1000\...\MountPoints2: {22fcf56c-aff8-11e3-8d39-20898421c652} - "K:\LG_PC_Programs.exe"
HKU\S-1-5-21-760272210-2824853156-1073884128-1000\...\MountPoints2: {a2bbd6ec-e1c1-11e3-8262-20898421c652} - "G:\LG_PC_Programs.exe"
HKU\S-1-5-21-760272210-2824853156-1073884128-1000\...\MountPoints2: {d340577c-6382-11e4-8280-20898421c652} - "G:\AutoRun.exe" 

SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 

S3 andnetadb; \SystemRoot\System32\Drivers\lgandnetadb.sys [X]
S3 AndNetDiag; \SystemRoot\system32\DRIVERS\lgandnetdiag64.sys [X]
S3 ANDNetModem; \SystemRoot\system32\DRIVERS\lgandnetmodem64.sys [X]
S3 andnetndis; \SystemRoot\system32\DRIVERS\lgandnetndis64.sys [X]
S3 Huawei; \SystemRoot\system32\DRIVERS\ewdcsc.sys [X]
S3 hwdatacard; \SystemRoot\system32\DRIVERS\ewusbmdm.sys [X]
S3 hwusbdev; \SystemRoot\system32\DRIVERS\ewusbdev.sys [X]

2014-12-13 21:19 - 2014-12-13 21:20 - 00021506 _____ () C:\Users\Cory\Desktop\FRST.txt
2014-12-13 21:17 - 2014-12-13 21:17 - 00112640 _____ (forum.viry.cz) C:\Users\Cory\Desktop\FRSTLauncher.exe
014-12-13 20:15 - 2014-12-13 20:15 - 01295360 _____ () C:\Users\Cory\Desktop\zoek.exe
2014-12-13 20:15 - 2014-12-13 20:15 - 00000000 ____D () C:\zoek_backup
2014-12-11 19:51 - 2014-12-13 20:01 - 00000000 ____D () C:\AdwCleaner
2014-12-11 18:54 - 2014-12-11 18:54 - 02166272 _____ () C:\Users\Cory\Desktop\adwcleaner_4.105.exe

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

Hosts:
EmptyTemp:
Reboot:
End
*****************

Processes closed successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\Adobe ARM => value deleted successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value deleted successfully.
HKU\S-1-5-21-760272210-2824853156-1073884128-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Akamai NetSession Interface => value deleted successfully.
HKU\S-1-5-21-760272210-2824853156-1073884128-1000\Software\Microsoft\Windows\CurrentVersion\Run\\RESTART_STICKY_NOTES => value deleted successfully.
HKU\S-1-5-21-760272210-2824853156-1073884128-1000\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite => value deleted successfully.
HKU\S-1-5-21-760272210-2824853156-1073884128-1000\Software\Microsoft\Windows\CurrentVersion\RunOnce\\Adobe Speed Launcher => value deleted successfully.
HKU\S-1-5-21-760272210-2824853156-1073884128-1000\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\ => value deleted successfully.
"HKU\S-1-5-21-760272210-2824853156-1073884128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{22fcf56c-aff8-11e3-8d39-20898421c652}" => Key deleted successfully.
"HKCR\CLSID\{22fcf56c-aff8-11e3-8d39-20898421c652}" => Key not found.
"HKU\S-1-5-21-760272210-2824853156-1073884128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a2bbd6ec-e1c1-11e3-8262-20898421c652}" => Key deleted successfully.
"HKCR\CLSID\{a2bbd6ec-e1c1-11e3-8262-20898421c652}" => Key not found.
"HKU\S-1-5-21-760272210-2824853156-1073884128-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{d340577c-6382-11e4-8280-20898421c652}" => Key deleted successfully.
"HKCR\CLSID\{d340577c-6382-11e4-8280-20898421c652}" => Key not found.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value deleted successfully.
andnetadb => Service deleted successfully.
AndNetDiag => Service deleted successfully.
ANDNetModem => Service deleted successfully.
andnetndis => Service deleted successfully.
Huawei => Service deleted successfully.
hwdatacard => Service deleted successfully.
hwusbdev => Service deleted successfully.
"C:\Users\Cory\Desktop\FRST.txt" => File/Directory not found.
C:\Users\Cory\Desktop\FRSTLauncher.exe => Moved successfully.
014-12-13 20:15 - 2014-12-13 20:15 - 01295360 _____ () C:\Users\Cory\Desktop\zoek.exe => Error: No automatic fix found for this entry.
C:\zoek_backup => Moved successfully.
C:\AdwCleaner => Moved successfully.
C:\Users\Cory\Desktop\adwcleaner_4.105.exe => Moved successfully.
C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => Moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => Moved successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
EmptyTemp: => Removed 596.1 MB temporary data.


The system needed a reboot. 

==== End of Fixlog ====

#11 Příspěvek od **vyosek** » 14 pro 2014 09:50

Jak se chova notebook??

unk.cory · #12 Příspěvek od **unk.cory** » 14 pro 2014 09:58

Zdá se mi, že načítání prohlížeče je rychlejší než předtím. Netrvá dlouho jeho spuštění. Takže zatím to vypadá velice OK.

Děkuji Vám!

#13 Příspěvek od **vyosek** » 14 pro 2014 10:14

Tak jeste uklidime

DelFix https://toolslib.net/downloads/finish/2/

Stahnete a spustte
Ponechte zatrzitkou pouze u volby Remote disinfection tools
Kliknete na Run

Stahnete Ccleaner https://www.piriform.com/ccleaner/download/standard
Panel čistič

Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

dejte Hledej problémy
nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za tyden

A pokud nejsou problemy ci dotazy, je to z me strany vse

unk.cory · #14 Příspěvek od **unk.cory** » 14 pro 2014 10:24

Super, děkuji. Myslím, že dotazy nejsou. CCleaner používám, využiji ještě DelFix.

Hezké vánoční svátky přeji.

#15 Příspěvek od **vyosek** » 14 pro 2014 10:34

Nemate zac, rad jsem pomohl

Zase nekdy

A na zaklade Pravidla o zamykani temat

VIRY.CZ

Zpomalený notebook

Zpomalený notebook

Re: Zpomalený notebook

Re: Zpomalený notebook

Re: Zpomalený notebook

Re: Zpomalený notebook

Re: Zpomalený notebook

Re: Zpomalený notebook

Re: Zpomalený notebook

Re: Zpomalený notebook

Re: Zpomalený notebook

Re: Zpomalený notebook

Re: Zpomalený notebook

Re: Zpomalený notebook

Re: Zpomalený notebook

Re: Zpomalený notebook