VIRY.CZ

Dobrý den,
prosím o kontrolu log. Startování prohlížeče internetu se mi zdá pomalé a dnes se mi nepodařilo přihlásit se do emailu, hlásil mi, že nezná adresu nebo heslo, přestože si jsem jistý, že jsem vše zadal opakovaně správně. Nakonec jsem musel provést změnu hesla.

Předem děkuji
S pozdravem
Jarda J.


Logfile of random's system information tool 1.10 (written by random/random)
Run by Radmila at 2015-09-08 22:07:37
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 103 GB (23%) free of 455 GB
Total RAM: 3990 MB (45% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:07:40, on 8.9.2015
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17937)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe
C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
C:\Program Files (x86)\Samsung\Easy Settings\dmhkcore.exe
C:\Program Files (x86)\Samsung\Easy Settings\SmartSetting.exe
C:\Program Files (x86)\Samsung\Easy Settings\EasySpeedUpManager.exe
C:\Users\Radmila\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Samsung\Samsung Recovery Solution 5\WCScheduler.exe
C:\Program Files (x86)\Samsung\Easy Support Center\SSCKbdHk.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\Radmila.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://samsung.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [OfficeSyncProcess] "C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Radmila\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Radmila\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {5AE58FCF-6F6A-49B2-B064-02492C66E3F4} (MUCatalogWebControl Class) - http://catalog.update.microsoft.com/v7/ ... 5406038733
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Service (AMPPALR3) - Intel Corporation - C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Device Monitor - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
O23 - Service: Bluetooth Media Service - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
O23 - Service: Bluetooth OBEX Service - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
O23 - Service: Intel(R) Centrino(R) Wireless Bluetooth(R) 3.0 + High Speed Security Service (BTHSSecurityMgr) - Intel(R) Corporation - C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: ExpressCache - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: FileOpen Manager Service (FileOpenManager) - FileOpen Systems Inc. - C:\Program Files\FileOpen\Services\FileOpenManager64.exe
O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\WildGames\Game Console - WildGames\GameConsoleService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: FF Install Filter Service (InstallFilterService) - Unknown owner - C:\Program Files (x86)\STMicroelectronics\Accelerometer\InstallFilterService.exe
O23 - Service: Intel(R) Rapid Start Technology Service (irstrtsv) - Intel Corporation - C:\windows\SysWOW64\irstrtsv.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: SInstalátor (ssinstall) - PS Media s.r.o. - C:\windows\SysWOW64\ssins.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 12084 bytes

======Listing Processes======



\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\windows\system32\services.exe
C:\windows\system32\lsass.exe
C:\windows\system32\lsm.exe
C:\windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k GPSvcGroup
C:\windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\windows\system32\WLANExt.exe 39094480
\??\C:\windows\system32\conhost.exe "-1475562768-17380799251608038453-25305524901656587511264814819885065-228888598
"C:\windows\system32\Dwm.exe"
C:\windows\Explorer.EXE
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe"
"C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Elantech\ETDCtrl.exe"
taskeng.exe {45B52388-20BD-4F0F-835A-333FA4AE9741}
"C:\Windows\System32\rundll32.exe" "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
"C:\Program Files\FileOpen\Services\FileOpenBroker64.exe"
"C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE"
C:\windows\system32\svchost.exe -k bthsvcs
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe"
C:\windows\System32\svchost.exe -k utcsvc
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe"
"C:\Program Files\FileOpen\Services\FileOpenManager64.exe"
"C:\Program Files (x86)\STMicroelectronics\Accelerometer\InstallFilterService.exe"
C:\windows\SysWOW64\irstrtsv.exe
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
C:\windows\SysWOW64\ssins.exe
C:\windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe"
C:\windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe"
C:\windows\system32\wbem\unsecapp.exe -Embedding
C:\windows\system32\wbem\wmiprvse.exe
"C:\windows\system32\GWX\GWX.exe"
"C:\Program Files (x86)\Intel\Bluetooth\BTPlayerCtrl.exe" -Embedding
C:\windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
taskeng.exe {C2BFFB37-6C07-4C80-8265-AE68531FBC3A}
"C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe"
"C:\Program Files (x86)\Samsung\Easy Settings\dmhkcore.exe"
"C:\Program Files (x86)\Samsung\Easy Settings\SmartSetting.exe"
"C:\Program Files (x86)\Samsung\Easy Settings\EasySpeedUpManager.exe"
"C:\Program Files\Samsung\S Agent\CommonAgent.exe"
szndesktop.exe default start
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Users\Radmila\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
\??\C:\windows\system32\conhost.exe "859287794-1436933913-2030057939-1070111739-20016028181951119341645827804-1713271901
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\windows\System32\svchost.exe -k LocalServicePeerNet
C:\windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Samsung\Samsung Recovery Solution 5\WCScheduler.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\Samsung\Easy Support Center\SSCKbdHk.exe"
C:\windows\system32\igfxext.exe -Embedding
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\windows\system32\hkcmd.exe
"C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE"
C:\windows\system32\igfxtray.exe
"C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel PAN Tray
C:\windows\system32\igfxpers.exe
C:\windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"

"C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE"
C:\windows\System32\svchost.exe -k WerSvcGroup
"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe13_ Global\UsGthrCtrlFltPipeMssGthrPipe13 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
C:\windows\system32\igfxsrvc.exe -Embedding
"C:\Users\Radmila\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\windows\tasks\Adobe Flash Player Updater.job - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\Radmila\AppData\Roaming\Mozilla\Firefox\Profiles\lcar078m.default-1437676347181

prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.232 Plugin
"Path"=C:\windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.60.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.60.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_60\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf]
"Description"=PDF-XChange Editor Mozilla Plugin
"Path"=C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 18.0.0.232 Plugin
"Path"=C:\windows\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.60.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.60.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_60\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf]
"Description"=PDF-XChange Editor Mozilla Plugin
"Path"=C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_60\bin\ssv.dll [2015-09-01 551520]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-08-07 655480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-07-23 256456]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2013-03-06 690392]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-09-01 212576]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll [2015-09-01 460384]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-08-07 559624]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-07-23 194504]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2013-03-06 562904]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-09-01 172640]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-07-23 256456]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-07-23 194504]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2011-11-24 13374568]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2011-08-31 2776872]
"BTMTrayAgent"=C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll [2011-10-18 10357008]
"FileOpenBroker"=C:\Program Files\FileOpen\Services\FileOpenBroker64.exe [2013-03-26 1589104]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OfficeSyncProcess"=C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [2015-03-18 720064]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]
"cz.seznam.software.autoupdate"=C:\Users\Radmila\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\Radmila\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"BCSSync"=C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [2012-11-05 89184]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-08-25 6111824]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-08-04 597552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2011-07-26 390144]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2013-12-19 6671064]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2013-12-19 4171480]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-09-08 21:59:30 ----D---- C:\rsit
2015-09-01 18:07:13 ----A---- C:\windows\SYSWOW64\REN5D0D.tmp
2015-09-01 18:05:22 ----D---- C:\Users\Radmila\AppData\Roaming\Sun
2015-08-29 21:26:51 ----D---- C:\Program Files (x86)\Mozilla Firefox
2015-08-21 16:31:41 ----A---- C:\windows\system32\mshtml.dll
2015-08-21 16:31:38 ----A---- C:\windows\SYSWOW64\mshtml.dll
2015-08-20 15:39:14 ----RD---- C:\Program Files (x86)\Skype
2015-08-18 18:16:43 ----A---- C:\windows\SYSWOW64\FlashPlayerInstaller.exe
2015-08-13 16:38:35 ----A---- C:\windows\SYSWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-13 16:38:35 ----A---- C:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-12 05:29:02 ----A---- C:\windows\system32\invagent.dll
2015-08-12 05:29:02 ----A---- C:\windows\system32\appraiser.dll
2015-08-12 05:29:01 ----A---- C:\windows\system32\generaltel.dll
2015-08-12 05:29:01 ----A---- C:\windows\system32\devinv.dll
2015-08-12 05:29:01 ----A---- C:\windows\system32\CompatTelRunner.exe
2015-08-12 05:29:01 ----A---- C:\windows\system32\aepdu.dll
2015-08-12 05:29:01 ----A---- C:\windows\system32\aeinv.dll
2015-08-12 05:29:01 ----A---- C:\windows\system32\acmigration.dll
2015-08-12 05:29:00 ----A---- C:\windows\system32\mstscax.dll
2015-08-12 05:28:59 ----A---- C:\windows\SYSWOW64\mstscax.dll
2015-08-12 05:28:58 ----A---- C:\windows\SYSWOW64\tsgqec.dll
2015-08-12 05:28:58 ----A---- C:\windows\SYSWOW64\rdvidcrl.dll
2015-08-12 05:28:58 ----A---- C:\windows\system32\wksprt.exe
2015-08-12 05:28:58 ----A---- C:\windows\system32\tsgqec.dll
2015-08-12 05:28:58 ----A---- C:\windows\system32\rdvidcrl.dll
2015-08-12 05:28:39 ----A---- C:\windows\system32\ntoskrnl.exe
2015-08-12 05:28:38 ----A---- C:\windows\SYSWOW64\ntoskrnl.exe
2015-08-12 05:28:38 ----A---- C:\windows\system32\ntdll.dll
2015-08-12 05:28:38 ----A---- C:\windows\system32\kernel32.dll
2015-08-12 05:28:37 ----A---- C:\windows\SYSWOW64\ntdll.dll
2015-08-12 05:28:37 ----A---- C:\windows\system32\sysmain.dll
2015-08-12 05:28:36 ----A---- C:\windows\SYSWOW64\ntkrnlpa.exe
2015-08-12 05:28:36 ----A---- C:\windows\system32\drivers\mountmgr.sys
2015-08-12 05:28:35 ----A---- C:\windows\SYSWOW64\kernel32.dll
2015-08-12 05:28:35 ----A---- C:\windows\system32\lsasrv.dll
2015-08-12 05:28:34 ----A---- C:\windows\system32\wow64.dll
2015-08-12 05:28:34 ----A---- C:\windows\system32\rstrui.exe
2015-08-12 05:28:34 ----A---- C:\windows\system32\KernelBase.dll
2015-08-12 05:28:33 ----A---- C:\windows\system32\rpcrt4.dll
2015-08-12 05:28:32 ----A---- C:\windows\SYSWOW64\kerberos.dll
2015-08-12 05:28:31 ----A---- C:\windows\system32\winsrv.dll
2015-08-12 05:28:31 ----A---- C:\windows\system32\srcore.dll
2015-08-12 05:28:31 ----A---- C:\windows\system32\kerberos.dll
2015-08-12 05:28:30 ----A---- C:\windows\SYSWOW64\wdigest.dll
2015-08-12 05:28:30 ----A---- C:\windows\SYSWOW64\TSpkg.dll
2015-08-12 05:28:30 ----A---- C:\windows\SYSWOW64\srclient.dll
2015-08-12 05:28:30 ----A---- C:\windows\SYSWOW64\schannel.dll
2015-08-12 05:28:30 ----A---- C:\windows\SYSWOW64\setup16.exe
2015-08-12 05:28:30 ----A---- C:\windows\SYSWOW64\secur32.dll
2015-08-12 05:28:30 ----A---- C:\windows\SYSWOW64\ntvdm64.dll
2015-08-12 05:28:30 ----A---- C:\windows\SYSWOW64\ncrypt.dll
2015-08-12 05:28:30 ----A---- C:\windows\SYSWOW64\msv1_0.dll
2015-08-12 05:28:30 ----A---- C:\windows\SYSWOW64\KernelBase.dll
2015-08-12 05:28:30 ----A---- C:\windows\SYSWOW64\cryptbase.dll
2015-08-12 05:28:30 ----A---- C:\windows\SYSWOW64\auditpol.exe
2015-08-12 05:28:30 ----A---- C:\windows\system32\wow64win.dll
2015-08-12 05:28:30 ----A---- C:\windows\system32\wdigest.dll
2015-08-12 05:28:30 ----A---- C:\windows\system32\TSpkg.dll
2015-08-12 05:28:30 ----A---- C:\windows\system32\sspisrv.dll
2015-08-12 05:28:30 ----A---- C:\windows\system32\sspicli.dll
2015-08-12 05:28:30 ----A---- C:\windows\system32\srclient.dll
2015-08-12 05:28:30 ----A---- C:\windows\system32\smss.exe
2015-08-12 05:28:30 ----A---- C:\windows\system32\schannel.dll
2015-08-12 05:28:30 ----A---- C:\windows\system32\secur32.dll
2015-08-12 05:28:30 ----A---- C:\windows\system32\ntvdm64.dll
2015-08-12 05:28:30 ----A---- C:\windows\system32\ncrypt.dll
2015-08-12 05:28:30 ----A---- C:\windows\system32\msv1_0.dll
2015-08-12 05:28:30 ----A---- C:\windows\system32\msmmsp.dll
2015-08-12 05:28:30 ----A---- C:\windows\system32\lsass.exe
2015-08-12 05:28:30 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2015-08-12 05:28:30 ----A---- C:\windows\system32\drivers\ksecdd.sys
2015-08-12 05:28:30 ----A---- C:\windows\system32\csrsrv.dll
2015-08-12 05:28:30 ----A---- C:\windows\system32\cryptbase.dll
2015-08-12 05:28:30 ----A---- C:\windows\system32\conhost.exe
2015-08-12 05:28:30 ----A---- C:\windows\system32\auditpol.exe
2015-08-12 05:28:29 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-08-12 05:28:29 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-08-12 05:28:29 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-08-12 05:28:29 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-08-12 05:28:29 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-08-12 05:28:29 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-08-12 05:28:29 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-08-12 05:28:29 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-08-12 05:28:29 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-08-12 05:28:29 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-08-12 05:28:29 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-08-12 05:28:29 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-08-12 05:28:29 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2015-08-12 05:28:29 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-08-12 05:28:29 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-08-12 05:28:29 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-08-12 05:28:29 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2015-08-12 05:28:29 ----AH---- C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-08-12 05:28:29 ----AH---- C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-08-12 05:28:29 ----AH---- C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-08-12 05:28:29 ----AH---- C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-08-12 05:28:29 ----AH---- C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-08-12 05:28:29 ----AH---- C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-08-12 05:28:29 ----AH---- C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-08-12 05:28:29 ----AH---- C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-08-12 05:28:29 ----AH---- C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-08-12 05:28:29 ----AH---- C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-08-12 05:28:29 ----AH---- C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-08-12 05:28:29 ----AH---- C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-08-12 05:28:29 ----AH---- C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-08-12 05:28:29 ----AH---- C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-08-12 05:28:29 ----AH---- C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-08-12 05:28:29 ----AH---- C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-08-12 05:28:29 ----AH---- C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-08-12 05:28:29 ----AH---- C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-08-12 05:28:29 ----AH---- C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-08-12 05:28:29 ----AH---- C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-08-12 05:28:29 ----AH---- C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-08-12 05:28:29 ----A---- C:\windows\SYSWOW64\wow32.dll
2015-08-12 05:28:29 ----A---- C:\windows\SYSWOW64\sspicli.dll
2015-08-12 05:28:29 ----A---- C:\windows\SYSWOW64\rpcrt4.dll
2015-08-12 05:28:29 ----A---- C:\windows\SYSWOW64\credssp.dll
2015-08-12 05:28:29 ----A---- C:\windows\system32\wow64cpu.dll
2015-08-12 05:28:29 ----A---- C:\windows\system32\drivers\mrxsmb20.sys
2015-08-12 05:28:29 ----A---- C:\windows\system32\drivers\mrxsmb10.sys
2015-08-12 05:28:29 ----A---- C:\windows\system32\drivers\mrxsmb.sys
2015-08-12 05:28:29 ----A---- C:\windows\system32\credssp.dll
2015-08-12 05:28:28 ----AH---- C:\windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2015-08-12 05:28:28 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-08-12 05:28:28 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2015-08-12 05:28:28 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2015-08-12 05:28:28 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-08-12 05:28:28 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-08-12 05:28:28 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-08-12 05:28:28 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-08-12 05:28:28 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-08-12 05:28:28 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-08-12 05:28:28 ----AH---- C:\windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2015-08-12 05:28:28 ----AH---- C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-08-12 05:28:28 ----AH---- C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-08-12 05:28:28 ----AH---- C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-08-12 05:28:28 ----AH---- C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-08-12 05:28:28 ----AH---- C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-08-12 05:28:28 ----AH---- C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-08-12 05:28:28 ----AH---- C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-08-12 05:28:28 ----A---- C:\windows\SYSWOW64\instnm.exe
2015-08-12 05:28:28 ----A---- C:\windows\SYSWOW64\apisetschema.dll
2015-08-12 05:28:28 ----A---- C:\windows\system32\apisetschema.dll
2015-08-12 05:28:27 ----A---- C:\windows\SYSWOW64\user.exe
2015-08-12 05:28:27 ----A---- C:\windows\SYSWOW64\msobjs.dll
2015-08-12 05:28:27 ----A---- C:\windows\SYSWOW64\msaudite.dll
2015-08-12 05:28:27 ----A---- C:\windows\SYSWOW64\adtschema.dll
2015-08-12 05:28:27 ----A---- C:\windows\system32\msobjs.dll
2015-08-12 05:28:27 ----A---- C:\windows\system32\msaudite.dll
2015-08-12 05:28:27 ----A---- C:\windows\system32\adtschema.dll
2015-08-12 05:28:04 ----A---- C:\windows\system32\basesrv.dll
2015-08-12 05:27:31 ----A---- C:\windows\SYSWOW64\mshtmled.dll
2015-08-12 05:27:31 ----A---- C:\windows\SYSWOW64\iernonce.dll
2015-08-12 05:27:31 ----A---- C:\windows\SYSWOW64\ieetwproxystub.dll
2015-08-12 05:27:31 ----A---- C:\windows\system32\iertutil.dll
2015-08-12 05:27:31 ----A---- C:\windows\system32\ieetwproxystub.dll
2015-08-12 05:27:31 ----A---- C:\windows\system32\ieetwcollector.exe
2015-08-12 05:27:30 ----A---- C:\windows\SYSWOW64\vbscript.dll
2015-08-12 05:27:30 ----A---- C:\windows\SYSWOW64\urlmon.dll
2015-08-12 05:27:30 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2015-08-12 05:27:30 ----A---- C:\windows\SYSWOW64\JavaScriptCollectionAgent.dll
2015-08-12 05:27:30 ----A---- C:\windows\SYSWOW64\iertutil.dll
2015-08-12 05:27:30 ----A---- C:\windows\SYSWOW64\iedkcs32.dll
2015-08-12 05:27:30 ----A---- C:\windows\SYSWOW64\dxtrans.dll
2015-08-12 05:27:30 ----A---- C:\windows\system32\JavaScriptCollectionAgent.dll
2015-08-12 05:27:30 ----A---- C:\windows\system32\iernonce.dll
2015-08-12 05:27:30 ----A---- C:\windows\system32\ie4uinit.exe
2015-08-12 05:27:28 ----A---- C:\windows\SYSWOW64\jsproxy.dll
2015-08-12 05:27:28 ----A---- C:\windows\SYSWOW64\jscript9diag.dll
2015-08-12 05:27:28 ----A---- C:\windows\SYSWOW64\jscript.dll
2015-08-12 05:27:28 ----A---- C:\windows\SYSWOW64\ieUnatt.exe
2015-08-12 05:27:28 ----A---- C:\windows\SYSWOW64\iesetup.dll
2015-08-12 05:27:28 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2015-08-12 05:27:28 ----A---- C:\windows\system32\urlmon.dll
2015-08-12 05:27:28 ----A---- C:\windows\system32\ieetwcollectorres.dll
2015-08-12 05:27:28 ----A---- C:\windows\system32\iedkcs32.dll
2015-08-12 05:27:27 ----A---- C:\windows\SYSWOW64\ieui.dll
2015-08-12 05:27:27 ----A---- C:\windows\SYSWOW64\ieframe.dll
2015-08-12 05:27:27 ----A---- C:\windows\SYSWOW64\dxtmsft.dll
2015-08-12 05:27:27 ----A---- C:\windows\system32\MsSpellCheckingFacility.exe
2015-08-12 05:27:27 ----A---- C:\windows\system32\msfeeds.dll
2015-08-12 05:27:27 ----A---- C:\windows\system32\dxtrans.dll
2015-08-12 05:27:26 ----A---- C:\windows\system32\iesetup.dll
2015-08-12 05:27:26 ----A---- C:\windows\system32\ieapfltr.dll
2015-08-12 05:27:24 ----A---- C:\windows\SYSWOW64\wininet.dll
2015-08-12 05:27:24 ----A---- C:\windows\SYSWOW64\mshtmlmedia.dll
2015-08-12 05:27:24 ----A---- C:\windows\SYSWOW64\jscript9.dll
2015-08-12 05:27:24 ----A---- C:\windows\system32\vbscript.dll
2015-08-12 05:27:24 ----A---- C:\windows\system32\jsproxy.dll
2015-08-12 05:27:23 ----A---- C:\windows\SYSWOW64\msrating.dll
2015-08-12 05:27:23 ----A---- C:\windows\SYSWOW64\MshtmlDac.dll
2015-08-12 05:27:23 ----A---- C:\windows\system32\ieUnatt.exe
2015-08-12 05:27:23 ----A---- C:\windows\system32\dxtmsft.dll
2015-08-12 05:27:22 ----A---- C:\windows\system32\ieui.dll
2015-08-12 05:27:22 ----A---- C:\windows\system32\ieframe.dll
2015-08-12 05:27:21 ----A---- C:\windows\system32\mshtmlmedia.dll
2015-08-12 05:27:21 ----A---- C:\windows\system32\mshtmled.dll
2015-08-12 05:27:21 ----A---- C:\windows\system32\jscript9diag.dll
2015-08-12 05:27:21 ----A---- C:\windows\system32\jscript9.dll
2015-08-12 05:27:21 ----A---- C:\windows\system32\jscript.dll
2015-08-12 05:27:20 ----A---- C:\windows\system32\wininet.dll
2015-08-12 05:27:19 ----A---- C:\windows\system32\msrating.dll
2015-08-12 05:27:19 ----A---- C:\windows\system32\MshtmlDac.dll
2015-08-12 05:25:28 ----A---- C:\windows\SYSWOW64\WebClnt.dll
2015-08-12 05:25:28 ----A---- C:\windows\system32\WebClnt.dll
2015-08-12 05:25:27 ----A---- C:\windows\SYSWOW64\davclnt.dll
2015-08-12 05:25:27 ----A---- C:\windows\system32\davclnt.dll
2015-08-12 05:25:24 ----A---- C:\windows\system32\msxml3.dll
2015-08-12 05:25:23 ----A---- C:\windows\SYSWOW64\msxml6.dll
2015-08-12 05:25:23 ----A---- C:\windows\SYSWOW64\msxml3.dll
2015-08-12 05:25:23 ----A---- C:\windows\system32\msxml6.dll
2015-08-12 05:25:22 ----A---- C:\windows\SYSWOW64\msxml6r.dll
2015-08-12 05:25:22 ----A---- C:\windows\SYSWOW64\msxml3r.dll
2015-08-12 05:25:22 ----A---- C:\windows\system32\msxml6r.dll
2015-08-12 05:25:22 ----A---- C:\windows\system32\msxml3r.dll
2015-08-12 05:25:19 ----A---- C:\windows\system32\FntCache.dll
2015-08-12 05:25:19 ----A---- C:\windows\system32\DWrite.dll
2015-08-12 05:25:18 ----A---- C:\windows\SYSWOW64\DWrite.dll
2015-08-12 05:25:18 ----A---- C:\windows\system32\win32k.sys
2015-08-12 05:25:18 ----A---- C:\windows\system32\atmfd.dll
2015-08-12 05:25:17 ----A---- C:\windows\SYSWOW64\atmfd.dll
2015-08-12 05:25:15 ----A---- C:\windows\SYSWOW64\lpk.dll
2015-08-12 05:25:15 ----A---- C:\windows\SYSWOW64\fontsub.dll
2015-08-12 05:25:15 ----A---- C:\windows\SYSWOW64\dciman32.dll
2015-08-12 05:25:15 ----A---- C:\windows\SYSWOW64\d3d10warp.dll
2015-08-12 05:25:15 ----A---- C:\windows\SYSWOW64\atmlib.dll
2015-08-12 05:25:15 ----A---- C:\windows\system32\lpk.dll
2015-08-12 05:25:15 ----A---- C:\windows\system32\fontsub.dll
2015-08-12 05:25:15 ----A---- C:\windows\system32\dciman32.dll
2015-08-12 05:25:15 ----A---- C:\windows\system32\d3d10warp.dll
2015-08-12 05:25:15 ----A---- C:\windows\system32\atmlib.dll
2015-08-12 05:25:12 ----A---- C:\windows\SYSWOW64\notepad.exe
2015-08-12 05:25:12 ----A---- C:\windows\system32\notepad.exe
2015-08-12 05:25:12 ----A---- C:\windows\notepad.exe
2015-08-12 05:25:08 ----A---- C:\windows\system32\shell32.dll
2015-08-12 05:25:07 ----A---- C:\windows\SYSWOW64\shell32.dll
2015-08-12 05:25:03 ----A---- C:\windows\SYSWOW64\wuwebv.dll
2015-08-12 05:25:03 ----A---- C:\windows\SYSWOW64\wups.dll
2015-08-12 05:25:03 ----A---- C:\windows\SYSWOW64\wudriver.dll
2015-08-12 05:25:03 ----A---- C:\windows\SYSWOW64\wuapp.exe
2015-08-12 05:25:03 ----A---- C:\windows\SYSWOW64\wuapi.dll
2015-08-12 05:25:03 ----A---- C:\windows\system32\wuwebv.dll
2015-08-12 05:25:03 ----A---- C:\windows\system32\wups2.dll
2015-08-12 05:25:03 ----A---- C:\windows\system32\wups.dll
2015-08-12 05:25:03 ----A---- C:\windows\system32\wudriver.dll
2015-08-12 05:25:03 ----A---- C:\windows\system32\wucltux.dll
2015-08-12 05:25:03 ----A---- C:\windows\system32\wuaueng.dll
2015-08-12 05:25:03 ----A---- C:\windows\system32\wuauclt.exe
2015-08-12 05:25:03 ----A---- C:\windows\system32\wuapp.exe
2015-08-12 05:25:03 ----A---- C:\windows\system32\wuapi.dll
2015-08-12 05:25:03 ----A---- C:\windows\system32\wu.upgrade.ps.dll
2015-08-12 05:25:03 ----A---- C:\windows\system32\WinSetupUI.dll

======List of files/folders modified in the last 1 month======

2015-09-08 22:07:39 ----D---- C:\windows\Temp
2015-09-08 22:07:39 ----D---- C:\Program Files\trend micro
2015-09-08 22:07:00 ----D---- C:\windows\Prefetch
2015-09-08 21:48:04 ----D---- C:\windows\inf
2015-09-08 21:48:03 ----D---- C:\windows\debug
2015-09-08 21:48:03 ----D---- C:\Windows
2015-09-08 18:52:19 ----D---- C:\windows\system32\config
2015-09-08 18:47:16 ----D---- C:\Users\Radmila\AppData\Roaming\Seznam.cz
2015-09-05 20:34:38 ----D---- C:\windows\System32
2015-09-05 20:34:38 ----A---- C:\windows\system32\PerfStringBackup.INI
2015-09-01 18:51:36 ----D---- C:\ProgramData\Oracle
2015-09-01 18:07:18 ----SHD---- C:\windows\Installer
2015-09-01 18:07:18 ----D---- C:\Program Files (x86)\Java
2015-09-01 18:07:13 ----D---- C:\windows\SysWOW64
2015-09-01 18:06:57 ----D---- C:\Program Files\Java
2015-09-01 18:06:16 ----D---- C:\Program Files (x86)\Common Files
2015-09-01 18:05:43 ----A---- C:\windows\system32\WindowsAccessBridge-64.dll
2015-09-01 17:56:01 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2015-09-01 15:31:42 ----D---- C:\windows\system32\NDF
2015-08-31 18:18:11 ----RD---- C:\Program Files (x86)
2015-08-31 18:18:08 ----D---- C:\windows\Tasks
2015-08-24 10:23:29 ----D---- C:\windows\winsxs
2015-08-20 20:34:59 ----D---- C:\Users\Radmila\AppData\Roaming\Skype
2015-08-20 15:39:29 ----D---- C:\ProgramData\Skype
2015-08-18 18:17:03 ----A---- C:\windows\SYSWOW64\FlashPlayerApp.exe
2015-08-18 17:52:07 ----D---- C:\windows\system32\Tasks
2015-08-16 19:04:13 ----D---- C:\windows\system32\drivers
2015-08-14 10:09:44 ----D---- C:\windows\rescache
2015-08-14 09:49:04 ----D---- C:\windows\Microsoft.NET
2015-08-14 08:46:25 ----RSD---- C:\windows\assembly
2015-08-13 17:00:09 ----SD---- C:\windows\system32\CompatTel
2015-08-13 17:00:08 ----D---- C:\windows\system32\appraiser
2015-08-13 17:00:07 ----D---- C:\windows\AppPatch
2015-08-13 16:59:48 ----D---- C:\windows\SYSWOW64\cs-CZ
2015-08-13 16:59:45 ----D---- C:\windows\system32\drivers\cs-CZ
2015-08-13 16:59:44 ----D---- C:\windows\system32\cs-CZ
2015-08-13 16:59:02 ----D---- C:\Program Files\Internet Explorer
2015-08-13 16:58:57 ----D---- C:\windows\SYSWOW64\en-US
2015-08-13 16:58:51 ----D---- C:\windows\system32\en-US
2015-08-13 16:58:46 ----D---- C:\Program Files (x86)\Internet Explorer
2015-08-13 16:37:12 ----D---- C:\Program Files\Microsoft Silverlight
2015-08-13 16:37:12 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2015-08-13 16:35:04 ----D---- C:\ProgramData\Microsoft Help
2015-08-13 16:28:11 ----A---- C:\windows\win.ini
2015-08-13 16:26:26 ----D---- C:\windows\system32\MRT
2015-08-13 16:21:46 ----A---- C:\windows\system32\MRT.exe
2015-08-12 05:23:09 ----D---- C:\windows\system32\catroot2
2015-08-09 19:55:26 ----SD---- C:\Users\Radmila\AppData\Roaming\Microsoft

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\windows\system32\drivers\aswRvrt.sys [2015-08-07 65224]
R0 aswVmm;avast! VM Monitor; C:\windows\system32\drivers\aswVmm.sys [2015-08-07 274808]
R0 excsd;ExpressCache Storage Filter Driver; C:\windows\system32\DRIVERS\excsd.sys [2011-09-23 80688]
R0 iaStor;Intel AHCI Controller; C:\windows\system32\DRIVERS\iaStor.sys [2011-02-18 439320]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 stdflt;Disk Filter Driver for Accelerometer; C:\windows\system32\DRIVERS\stdflt.sys [2010-12-17 19504]
R1 aswRdr;aswRdr; C:\windows\system32\drivers\aswRdr2.sys [2015-08-07 93528]
R1 aswSnx;aswSnx; C:\windows\system32\drivers\aswSnx.sys [2015-08-14 1048344]
R1 aswSP;aswSP; C:\windows\system32\drivers\aswSP.sys [2015-08-07 447944]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\windows\system32\DRIVERS\dtsoftbus01.sys [2014-10-28 283064]
R1 excfs;ExpressCache File System Filter Driver; C:\windows\system32\DRIVERS\excfs.sys [2011-09-23 23344]
R1 SABI;SAMSUNG Kernel Driver For Windows 7; \??\C:\windows\system32\Drivers\SABI.sys [2009-05-28 13824]
R1 VWiFiFlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2011-01-25 60416]
R2 aswHwid;avast! HardwareID; C:\windows\system32\drivers\aswHwid.sys [2015-08-07 28656]
R2 aswMonFlt;aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [2015-08-07 90968]
R2 aswStm;aswStm; C:\windows\system32\drivers\aswStm.sys [2015-08-07 150672]
R2 SGDrv;SGDrv; C:\windows\system32\DRIVERS\SGdrv64.sys [2011-04-11 7680]
R3 AMPPAL;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Virtual Adapter; C:\windows\system32\DRIVERS\AMPPAL.sys [2011-09-15 299008]
R3 asmthub3;ASMedia USB3 Hub Service; C:\windows\system32\DRIVERS\asmthub3.sys [2011-06-02 128488]
R3 asmtxhci;ASMEDIA XHCI Service; C:\windows\system32\DRIVERS\asmtxhci.sys [2011-06-02 401896]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 btmaux;Intel Bluetooth Auxiliary Service; C:\windows\system32\DRIVERS\btmaux.sys [2011-08-29 53760]
R3 btmhsf;btmhsf; C:\windows\system32\DRIVERS\btmhsf.sys [2011-10-10 288768]
R3 clwvd;CyberLink WebCam Virtual Driver; C:\windows\system32\DRIVERS\clwvd.sys [2011-08-17 31216]
R3 ETD;ELAN PS/2 Port Input Device; C:\windows\system32\DRIVERS\ETD.sys [2011-08-31 197416]
R3 iBtFltCoex;iBtFltCoex; C:\windows\system32\DRIVERS\iBtFltCoex.sys [2011-10-11 59904]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2011-07-26 12288480]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\windows\system32\drivers\RTKVHD64.sys [2011-11-28 4712296]
R3 IntcDAud;Intel(R) Display Audio; C:\windows\system32\DRIVERS\IntcDAud.sys [2010-10-14 317440]
R3 irstrtdv;Intel(R) Rapid Start Technology Driver; C:\windows\system32\DRIVERS\irstrtdv.sys [2011-06-15 26504]
R3 iwdbus;IWD Bus Enumerator; C:\windows\system32\DRIVERS\iwdbus.sys [2011-09-08 25496]
R3 MEIx64;Intel(R) Management Engine Interface; C:\windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]
R3 NETwNs64;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit; C:\windows\system32\DRIVERS\NETwNs64.sys [2011-09-17 8604672]
R3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt64win7.sys [2011-05-17 533096]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2011-01-25 18432]
S3 AMPPALP;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Protocol; C:\windows\system32\DRIVERS\amppal.sys [2011-09-15 299008]
S3 BTHPORT;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 HWHandSet;HWUSBSERSP; C:\windows\system32\DRIVERS\hw_quusbmdm.sys [2011-10-24 223232]
S3 intaud_WaveExtensible;Intel WiDi Audio Device; C:\windows\system32\drivers\intelaud.sys [2011-09-08 34200]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\windows\system32\drivers\MBAMSwissArmy.sys []
S3 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 TsUsbFlt;TsUsbFlt; C:\windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 WinUsb;Android USB Driver; C:\windows\system32\drivers\WinUsb.sys [2010-11-21 41984]
S4 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-07-07 82128]
R2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Service; C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2011-09-15 1166848]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-08-07 146600]
R2 Bluetooth Device Monitor;Bluetooth Device Monitor; C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe [2011-10-18 936272]
R2 Bluetooth OBEX Service;Bluetooth OBEX Service; C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe [2011-10-18 1001808]
R2 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) 3.0 + High Speed Security Service; C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2011-06-03 134928]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2011-03-01 27648]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2011-09-15 1518352]
R2 ExpressCache;ExpressCache; C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe [2011-09-23 79664]
R2 FileOpenManager;FileOpen Manager Service; C:\Program Files\FileOpen\Services\FileOpenManager64.exe [2013-03-19 337264]
R2 InstallFilterService;FF Install Filter Service; C:\Program Files (x86)\STMicroelectronics\Accelerometer\InstallFilterService.exe [2010-12-17 60928]
R2 irstrtsv;Intel(R) Rapid Start Technology Service; C:\windows\SysWOW64\irstrtsv.exe [2011-07-06 184320]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2011-08-09 325912]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2011-09-15 844560]
R2 ssinstall;SInstalátor; C:\windows\SysWOW64\ssins.exe [2013-11-21 2324216]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-08-09 2656536]
R3 Bluetooth Media Service;Bluetooth Media Service; C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe [2011-10-18 1354064]
R3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
R3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2014-04-12 103608]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2014-04-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-18 269000]
S3 GameConsoleService;GameConsoleService; C:\Program Files (x86)\WildGames\Game Console - WildGames\GameConsoleService.exe [2010-06-03 246520]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-12-30 194032]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\windows\system32\IEEtwCollector.exe [2015-07-16 114688]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files (x86)\Microsoft Office\Office14\GROOVE.EXE [2013-12-19 30814400]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-08-29 149160]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2011-09-15 340240]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2012-12-25 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2014-04-11 50864]
S4 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe []
S4 NetMsmqActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetPipeActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]
S4 NetTcpActivator;@C:\windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2014-04-12 139944]

-----------------EOF-----------------

Zdravim

Pokud to tam nemate zamerne, odinstalujte Seznam Software.

Stahnete AdwCleaner https://toolslib.net/downloads/finish/1/ a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Cleaning
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner[C?].txt ). Ten mi sem zkopirujte.

Dobrý den,
Seznam jsem odinstaloval a níže zasílám log.
Předem děkuji za kontrolu.
Jirouš J.

# AdwCleaner v5.007 - Logfile created 09/09/2015 at 17:35:42
# Updated 08/09/2015 by Xplode
# Database : 2015-09-08.2 [Server]
# Operating system : Windows 7 Home Premium Service Pack 1 (x64)
# Username : Radmila - JAROSLAV
# Running from : C:\Users\Radmila\Desktop\adwcleaner_5.007.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****


***** [ Folders ] *****


***** [ Files ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****


***** [ Registry ] *****


***** [ Web browsers ] *****


*************************

:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [631 bytes] ##########

Udelejte kontrolu s MBAM. Test nastavte podle tohoto navodu (cili Vlastni sken vsech disku) http://forum.viry.cz/viewtopic.php?f=29&t=144868 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce

Dobrý den, zasílám požadovaný log:

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 10.9.2015
Čas skenování: 16:54
Protokol: MBAM log.txt
Správce: Ano

Verze: 2.1.8.1057
Databáze malwaru: v2015.09.10.06
Databáze rootkitů: v2015.08.16.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto

OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: Radmila

Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 543798
Uplynulý čas: 4 hod, 9 min, 6 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Zapnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 0
(Nenalezeny žádné škodlivé položky)

Hodnoty registru: 0
(Nenalezeny žádné škodlivé položky)

Data registru: 0
(Nenalezeny žádné škodlivé položky)

Složky: 0
(Nenalezeny žádné škodlivé položky)

Soubory: 0
(Nenalezeny žádné škodlivé položky)

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)


(end)

MBAM muzete odinstalovat.

Stahnete crystal disk info http://sourceforge.jp/projects/crystald ... 5_0_0.zip/
Spustte jako spravce. Za chvili se zobrazi vysledek.
Kliknete nahore na napis Úpravy a pak na napis Kopírovat. To co se zkopiruje (ulozi se to do pameti) mi sem vlozte (ctrl + V)

Dejte logy podle tohoto navodu http://forum.viry.cz/viewtopic.php?f=13&t=133100 - vypnete na chvili antivir, je mozne, ze to bude blokovat jako skodnou, ale pouzivame to porad, jedna se o falesny poplach

----------------------------------------------------------------------------
CrystalDiskInfo 5.0.0 (C) 2008-2012 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 7 Home Premium Edition SP1 [6.1 Build 7601] (x64)
Date : 2015/09/11 16:52:55

-- Controller Map ----------------------------------------------------------
+ Intel(R) Mobile Express Chipset SATA AHCI Controller [ATA]
- Hitachi HTS545050A7E380
- SanDisk iSSD P4 16GB

-- Disk List ---------------------------------------------------------------
(1) Hitachi HTS545050A7E380 : 500,1 GB [0/0/0, pd1]
(2) SanDisk iSSD P4 16GB : 16,0 GB [1/0/1, pd1]

----------------------------------------------------------------------------
(1) Hitachi HTS545050A7E380
----------------------------------------------------------------------------
Model : Hitachi HTS545050A7E380
Firmware : GG2OA6C0
Serial Number : TA9511GZJAUJNP
Disk Size : 500,1 GB (8,4/137,4/500,1)
Buffer Size : 8192 KB
Queue Depth : 32
# of Sectors : 976773168
Rotation Rate : 5400 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 6
Transfer Mode : SATA/300
Power On Hours : 2427 hod.
Power On Count : 2994 krát
Temparature : 30 C (86 F)
Health Status : Pozor
Features : S.M.A.R.T., APM, 48bit LBA, NCQ
APM Level : 4001h [ON]
AAM Level : ----

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 _95 _95 _62 0000000B0001 Počet chyb čtení
02 100 100 _40 000000000000 Průchodnost disku
03 200 200 _33 000F00000001 Čas na roztočení ploten
04 _97 _97 __0 00000000173C Počet spuštění/zastavení
05 _77 _77 __5 000000000000 Počet přemapovaných sektorů
07 100 100 _67 000000000000 Počet chybných hledání
08 100 100 _40 000000000000 Čas potřebný na vyhledání
09 _95 _95 __0 00000000097B Hodin v činnosti
0A 100 100 _60 000000000000 Počet opakovaných pokusů o roztočení ploten
0C _99 _99 __0 000000000BB2 Počet cyklů zapnutí zařízení
BF 100 100 __0 000000000000 Počet udalostí zaznamenaných otřesovým senzorem
C0 100 100 __0 000000000010 Počet vypnutí disku
C1 _97 _97 __0 000000007608 Počet cyklů načítání/vymazání
C2 200 200 __0 002E0007001E Teplota
C4 _67 _67 __0 0000000003CE Počet udalostí s číslem realokování sektorů
C5 _56 _56 __0 0000000004D0 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
DF 100 100 __0 000000000000 Zatížení budiče magnetických hlav způsobené opakovanými úkony

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 045A 3FFF C837 0010 0000 003F 003F 0000 0000 0000
010: 2020 2020 2020 5441 3935 475A 475A 4A41 554A 4E50
020: 0003 4000 0004 4747 324F 4330 4330 4869 7461 6368
030: 6920 4854 5335 3435 3035 3745 3745 3338 3020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 2F00
050: 4000 0200 0200 0007 FFFF 003F 003F FFC1 003E 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 1706 1706 0000 005E 004C
080: 01FC 0028 746B 7D69 6163 BC49 BC49 6163 407F 0040
090: 0041 4001 FFFE 0000 0000 0000 0000 0000 0000 0000
100: 6030 3A38 0000 0000 0000 6003 6003 826C 5000 CCA6
110: 54E1 1A95 0000 0000 0000 0000 0000 0000 0000 401C
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 000B
130: 1858 0000 2182 1CF1 FA00 4000 4000 0400 0003 0000
140: 0000 0109 0208 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 3232 4236 0000 0000 0000 5DBD 2518 8000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0003 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 003D 003D 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 1518 0000 0000
220: 0000 0000 101F 0021 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 D2A5

----------------------------------------------------------------------------
(2) SanDisk iSSD P4 16GB
----------------------------------------------------------------------------
Model : SanDisk iSSD P4 16GB
Firmware : SSD 9.14
Serial Number : 115200110009
Disk Size : 16,0 GB (8,4/16,0/16,0)
Buffer Size : Neznámy údaj
Queue Depth : 1
# of Sectors : 31277232
Rotation Rate : ---- (SSD)
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 2d
Transfer Mode : SATA/300
Power On Hours : 1899 hod.
Power On Count : 3007 krát
Temparature : Neznámy údaj
Health Status : Dobrý
Features : S.M.A.R.T., 48bit LBA, TRIM
APM Level : ----
AAM Level : ----

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
05 100 100 __0 000000000000 Počet přemapovaných sektorů
09 100 100 __0 00000000076B Hodin v činnosti
0C 100 100 __0 000000000BBF Počet cyklů zapnutí zařízení
AB 100 100 __0 000000000067 Neznámý
AC 100 100 __0 00000058BD28 Neznámý
AD 100 100 __0 000000000361 Neznámý
AE 100 100 __0 000000000123 Neznámý
BB 100 100 __0 000000000006 Specifický pro výrobce
C7 100 100 __0 000000000000 Neznámý
E6 _28 100 __0 000000000000 Neznámý
E8 _98 100 __5 000000000000 Specifický pro výrobce
EA 100 100 __0 0000000001EC Specifický pro výrobce
F1 100 100 __0 0002B281F451 Specifický pro výrobce
F2 100 100 __0 0001F256A924 Specifický pro výrobce

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0040 3FFF C837 0010 0000 003F 003F 0000 0000 0000
010: 3131 3532 3030 3131 3030 2020 2020 2020 2020 2020
020: 0000 0000 0000 5353 4420 3134 3134 5361 6E44 6973
030: 6B20 6953 5344 2050 3420 4742 4742 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8001 0000 2F00
050: 4000 0200 0000 0007 3FFF 003F 003F BFC1 000F 0101
060: 40B0 01DD 0000 0007 0003 0078 0078 0078 0078 1200
070: 0000 0000 0000 0000 0000 0206 0206 0004 0048 0048
080: 01F0 0107 746B 7D01 4163 BC01 BC01 4163 407F 0001
090: 0001 0000 FFFE 0000 0000 0000 0000 0000 0000 0000
100: 40B0 01DD 0000 0000 0000 4000 4000 0000 5001 B445
110: DE0B 29B9 0000 0000 0000 0000 0000 0000 0000 4014
120: 4014 0000 0000 0000 0000 0000 0000 0000 0029 0000
130: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0004 0001
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 0001 0000 0000
220: 0000 0000 1011 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 91A5

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:10-09-2015 01
Ran by Radmila (administrator) on JAROSLAV (11-09-2015 16:57:26)
Running from C:\Users\Radmila\Desktop
Loaded Profiles: Radmila (Available Profiles: Radmila)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Intel Corporation) C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\devmonsrv.exe
(Intel(R) Corporation) C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Diskeeper Corporation) C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe
(FileOpen Systems Inc.) C:\Program Files\FileOpen\Services\FileOpenManager64.exe
() C:\Program Files (x86)\STMicroelectronics\Accelerometer\InstallFilterService.exe
(Intel Corporation) C:\Windows\SysWOW64\irstrtsv.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(FileOpen Systems Inc.) C:\Program Files\FileOpen\Services\FileOpenBroker64.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Microsoft Corporation) C:\Windows\System32\GWX\GWX.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\obexsrv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\mediasrv.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\btplayerctrl.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(CyberLink) C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Easy Settings\dmhkcore.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\Easy Settings\SmartSetting.exe
(Samsung Electronics) C:\Program Files (x86)\Samsung\Easy Settings\EasySpeedUpManager.exe
(Samsung Electronics CO., LTD.) C:\Program Files\Samsung\S Agent\CommonAgent.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Intel Corporation) C:\Windows\System32\igfxext.exe
(SEC) C:\Program Files (x86)\Samsung\Samsung Recovery Solution 5\WCScheduler.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(SAMSUNG Electronics) C:\Program Files (x86)\Samsung\Easy Support Center\SSCKbdHk.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxtray.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13374568 2011-11-24] (Realtek Semiconductor)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [2776872 2011-08-31] (ELAN Microelectronics Corp.)
HKLM\...\Run: [BTMTrayAgent] => rundll32.exe "C:\Program Files (x86)\Intel\Bluetooth\btmshell.dll",TrayApp
HKLM\...\Run: [FileOpenBroker] => C:\Program Files\FileOpen\Services\FileOpenBroker64.exe [1589104 2013-03-26] (FileOpen Systems Inc.)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6111824 2015-08-25] (AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-198510878-2715960250-1679441269-1000\...\Run: [OfficeSyncProcess] => C:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE [720064 2015-03-18] (Microsoft Corporation)
HKU\S-1-5-21-198510878-2715960250-1679441269-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-08-07] (AVAST Software)
ShellIconOverlayIdentifiers: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Radmila\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll [2013-09-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Radmila\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll [2013-09-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Radmila\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll [2013-09-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [DropboxExt4] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Radmila\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll [2013-09-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt1] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Radmila\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll [2013-09-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt2] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Radmila\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll [2013-09-11] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: [DropboxExt3] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Radmila\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll [2013-09-11] (Dropbox, Inc.)
BootExecute:
CHR HKU\S-1-5-21-198510878-2715960250-1679441269-1000\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 77.78.88.88 109.123.201.11
Tcpip\..\Interfaces\{F1C0FB08-EEE9-4546-8462-00969FE33CBA}: [DhcpNameServer] 77.78.88.88 109.123.201.11

Internet Explorer:
==================
HKU\S-1-5-21-198510878-2715960250-1679441269-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://seznam.cz/
HKU\S-1-5-21-198510878-2715960250-1679441269-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://samsung.msn.com
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-198510878-2715960250-1679441269-1000 -> {ECDFA29A-4100-4126-8FCB-840A16C4C8F2} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_16194
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_60\bin\ssv.dll [2015-09-01] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-08-07] (AVAST Software)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-07-23] (Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-09-01] (Oracle Corporation)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\ssv.dll [2015-09-01] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-08-07] (AVAST Software)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-07-23] (Google Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\jp2ssv.dll [2015-09-01] (Oracle Corporation)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-07-23] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-07-23] (Google Inc.)
DPF: HKLM {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: HKLM-x32 {5AE58FCF-6F6A-49B2-B064-02492C66E3F4} hxxp://catalog.update.microsoft.com/v7/site/ClientControl/en/x86/MuCatalogWebControl.cab?1385406038733
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2014-05-02] (Skype Technologies)

FireFox:
========
FF ProfilePath: C:\Users\Radmila\AppData\Roaming\Mozilla\Firefox\Profiles\lcar078m.default-1437676347181
FF Homepage: hxxps://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_18_0_0_232.dll [2015-08-18] ()
FF Plugin: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-09-01] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-09-01] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x64.dll [2014-02-17] (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_18_0_0_232.dll [2015-08-18] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\dtplugin\npDeployJava1.dll [2015-09-01] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.60.2 -> C:\Program Files (x86)\Java\jre1.8.0_60\bin\plugin2\npjp2.dll [2015-09-01] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [No File]
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-31] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-31] (Google Inc.)
FF Plugin-x32: @tracker-software.com/PDF-XChange Editor Plugin,version=1.0,application/pdf -> C:\Program Files\Tracker Software\PDF Editor\npPDFXEditPlugin.x86.dll [2014-02-17] (Tracker Software Products (Canada) Ltd.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-07-03] (Adobe Systems Inc.)
FF Extension: Adblock Plus - C:\Users\Radmila\AppData\Roaming\Mozilla\Firefox\Profiles\lcar078m.default-1437676347181\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-07-26]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2012-12-24]

Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-03-17]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-08-07] (AVAST Software)
R2 ExpressCache; C:\Program Files\Diskeeper Corporation\ExpressCache\ExpressCache.exe [79664 2011-09-23] (Diskeeper Corporation)
R2 FileOpenManager; C:\Program Files\FileOpen\Services\FileOpenManager64.exe [337264 2013-03-19] (FileOpen Systems Inc.)
R2 InstallFilterService; C:\Program Files (x86)\STMicroelectronics\Accelerometer\InstallFilterService.exe [60928 2010-12-17] () [File not signed]
R2 irstrtsv; C:\windows\SysWOW64\irstrtsv.exe [184320 2011-07-06] (Intel Corporation) [File not signed]
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [340240 2011-09-15] ()
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
U4 AvastVBoxSvc; "C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe" [X]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-08-07] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [90968 2015-08-07] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-08-07] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-08-07] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1048344 2015-08-14] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [447944 2015-08-07] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [150672 2015-08-07] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [274808 2015-08-07] (AVAST Software)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-10-28] (Disc Soft Ltd)
S3 ebdrv; C:\Windows\system32\drivers\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
R1 excfs; C:\Windows\System32\DRIVERS\excfs.sys [23344 2011-09-23] (Diskeeper Corporation)
R0 excsd; C:\Windows\System32\DRIVERS\excsd.sys [80688 2011-09-23] (Diskeeper Corporation)
S3 HWHandSet; C:\Windows\System32\DRIVERS\hw_quusbmdm.sys [223232 2011-10-24] (Huawei Technologies Co., Ltd.)
U5 hw_usbdev; C:\Windows\System32\Drivers\hw_usbdev.sys [116864 2011-10-24] (Huawei Technologies Co., Ltd.)
R3 irstrtdv; C:\Windows\System32\DRIVERS\irstrtdv.sys [26504 2011-06-15] (Intel Corporation)
S3 MBAMSwissArmy; C:\windows\system32\drivers\0D18786C.sys [113880 2015-09-10] (Malwarebytes Corporation)
R2 SGDrv; C:\Windows\System32\DRIVERS\SGdrv64.sys [7680 2011-04-11] (Phoenix Technologies Ltd.)
U4 VBoxAswDrv; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-11 16:57 - 2015-09-11 16:57 - 00017517 _____ C:\Users\Radmila\Desktop\FRST.txt
2015-09-11 16:56 - 2015-09-11 16:57 - 00000000 ____D C:\FRST
2015-09-11 16:54 - 2015-09-11 16:55 - 02190848 _____ (Farbar) C:\Users\Radmila\Desktop\FRST64.exe
2015-09-11 16:49 - 2015-09-11 16:51 - 00000000 ____D C:\Users\Radmila\Downloads\CrystalDiskInfo5_0_0
2015-09-11 16:48 - 2015-09-11 16:48 - 01496172 _____ C:\Users\Radmila\Downloads\CrystalDiskInfo5_0_0.zip
2015-09-10 16:54 - 2015-09-10 16:54 - 00113880 _____ (Malwarebytes Corporation) C:\windows\system32\Drivers\0D18786C.sys
2015-09-09 21:05 - 2015-06-25 12:06 - 00115136 _____ (Microsoft Corporation) C:\windows\system32\consent.exe
2015-09-09 21:05 - 2015-06-25 12:01 - 01941504 _____ (Microsoft Corporation) C:\windows\system32\authui.dll
2015-09-09 21:05 - 2015-06-25 12:01 - 00070656 _____ (Microsoft Corporation) C:\windows\system32\appinfo.dll
2015-09-09 21:05 - 2015-06-25 11:44 - 01805824 _____ (Microsoft Corporation) C:\windows\SysWOW64\authui.dll
2015-09-09 20:52 - 2015-08-04 20:03 - 00692672 _____ (Microsoft Corporation) C:\windows\system32\winload.efi
2015-09-09 20:52 - 2015-08-04 20:00 - 00616360 _____ (Microsoft Corporation) C:\windows\system32\winresume.efi
2015-09-09 20:52 - 2015-08-04 19:56 - 00063488 _____ (Microsoft Corporation) C:\windows\system32\setbcdlocale.dll
2015-09-09 20:52 - 2015-08-04 19:56 - 00059392 _____ (Microsoft Corporation) C:\windows\system32\appidapi.dll
2015-09-09 20:52 - 2015-08-04 19:56 - 00032768 _____ (Microsoft Corporation) C:\windows\system32\appidsvc.dll
2015-09-09 20:52 - 2015-08-04 19:55 - 00147456 _____ (Microsoft Corporation) C:\windows\system32\appidpolicyconverter.exe
2015-09-09 20:52 - 2015-08-04 19:55 - 00017920 _____ (Microsoft Corporation) C:\windows\system32\appidcertstorecheck.exe
2015-09-09 20:52 - 2015-08-04 19:47 - 00050688 _____ (Microsoft Corporation) C:\windows\SysWOW64\appidapi.dll
2015-09-09 20:52 - 2015-08-04 18:58 - 00061440 _____ (Microsoft Corporation) C:\windows\system32\Drivers\appid.sys
2015-09-09 20:51 - 2015-08-18 03:14 - 00344168 _____ (Microsoft Corporation) C:\windows\SysWOW64\iedkcs32.dll
2015-09-09 20:51 - 2015-08-15 08:18 - 00048640 _____ (Microsoft Corporation) C:\windows\system32\ieetwproxystub.dll
2015-09-09 20:51 - 2015-08-15 08:09 - 00034304 _____ (Microsoft Corporation) C:\windows\system32\iernonce.dll
2015-09-09 20:51 - 2015-08-15 08:04 - 00114688 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollector.exe
2015-09-09 20:51 - 2015-08-15 07:39 - 00047616 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieetwproxystub.dll
2015-09-09 20:51 - 2015-08-15 07:38 - 00064000 _____ (Microsoft Corporation) C:\windows\SysWOW64\MshtmlDac.dll
2015-09-09 20:51 - 2015-08-15 07:32 - 00030720 _____ (Microsoft Corporation) C:\windows\SysWOW64\iernonce.dll
2015-09-09 20:51 - 2015-08-15 07:24 - 00720384 _____ (Microsoft Corporation) C:\windows\system32\ie4uinit.exe
2015-09-09 20:51 - 2015-08-15 07:12 - 00076288 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmled.dll
2015-09-09 20:51 - 2015-08-15 06:39 - 01310720 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2015-09-09 20:51 - 2015-08-05 19:56 - 01110016 _____ (Microsoft Corporation) C:\windows\system32\schedsvc.dll
2015-09-09 20:51 - 2015-08-05 19:56 - 00275456 _____ (Microsoft Corporation) C:\windows\system32\InkEd.dll
2015-09-09 20:51 - 2015-08-05 19:56 - 00024576 _____ (Microsoft Corporation) C:\windows\system32\jnwmon.dll
2015-09-09 20:51 - 2015-08-05 19:40 - 00216064 _____ (Microsoft Corporation) C:\windows\SysWOW64\InkEd.dll
2015-09-09 20:51 - 2015-07-15 05:17 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\tzres.dll
2015-09-09 20:51 - 2015-07-15 04:54 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\tzres.dll
2015-09-09 20:51 - 2015-07-09 19:58 - 01632256 _____ (Microsoft Corporation) C:\windows\system32\dwmcore.dll
2015-09-09 20:51 - 2015-07-09 19:58 - 00082944 _____ (Microsoft Corporation) C:\windows\system32\dwmapi.dll
2015-09-09 20:51 - 2015-07-09 19:42 - 01372160 _____ (Microsoft Corporation) C:\windows\SysWOW64\dwmcore.dll
2015-09-09 20:51 - 2015-07-09 19:42 - 00067584 _____ (Microsoft Corporation) C:\windows\SysWOW64\dwmapi.dll
2015-09-09 20:50 - 2015-08-18 03:42 - 00393304 _____ (Microsoft Corporation) C:\windows\system32\iedkcs32.dll
2015-09-09 20:50 - 2015-08-15 08:48 - 25190400 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2015-09-09 20:50 - 2015-08-15 08:34 - 02724864 _____ (Microsoft Corporation) C:\windows\system32\mshtml.tlb
2015-09-09 20:50 - 2015-08-15 08:33 - 00004096 _____ (Microsoft Corporation) C:\windows\system32\ieetwcollectorres.dll
2015-09-09 20:50 - 2015-08-15 08:18 - 00066560 _____ (Microsoft Corporation) C:\windows\system32\iesetup.dll
2015-09-09 20:50 - 2015-08-15 08:17 - 02886144 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2015-09-09 20:50 - 2015-08-15 08:17 - 00585216 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2015-09-09 20:50 - 2015-08-15 08:17 - 00417792 _____ (Microsoft Corporation) C:\windows\system32\html.iec
2015-09-09 20:50 - 2015-08-15 08:17 - 00088064 _____ (Microsoft Corporation) C:\windows\system32\MshtmlDac.dll
2015-09-09 20:50 - 2015-08-15 08:10 - 00054784 _____ (Microsoft Corporation) C:\windows\system32\jsproxy.dll
2015-09-09 20:50 - 2015-08-15 08:06 - 19856896 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2015-09-09 20:50 - 2015-08-15 08:06 - 00615936 _____ (Microsoft Corporation) C:\windows\system32\ieui.dll
2015-09-09 20:50 - 2015-08-15 08:04 - 00817664 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2015-09-09 20:50 - 2015-08-15 08:04 - 00814080 _____ (Microsoft Corporation) C:\windows\system32\jscript9diag.dll
2015-09-09 20:50 - 2015-08-15 08:04 - 00144384 _____ (Microsoft Corporation) C:\windows\system32\ieUnatt.exe
2015-09-09 20:50 - 2015-08-15 08:00 - 05923328 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2015-09-09 20:50 - 2015-08-15 07:57 - 00968704 _____ (Microsoft Corporation) C:\windows\system32\MsSpellCheckingFacility.exe
2015-09-09 20:50 - 2015-08-15 07:53 - 02724864 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.tlb
2015-09-09 20:50 - 2015-08-15 07:53 - 00490496 _____ (Microsoft Corporation) C:\windows\system32\dxtmsft.dll
2015-09-09 20:50 - 2015-08-15 07:46 - 00077824 _____ (Microsoft Corporation) C:\windows\system32\JavaScriptCollectionAgent.dll
2015-09-09 20:50 - 2015-08-15 07:42 - 00199680 _____ (Microsoft Corporation) C:\windows\system32\msrating.dll
2015-09-09 20:50 - 2015-08-15 07:41 - 00092160 _____ (Microsoft Corporation) C:\windows\system32\mshtmled.dll
2015-09-09 20:50 - 2015-08-15 07:40 - 00504832 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2015-09-09 20:50 - 2015-08-15 07:40 - 00062464 _____ (Microsoft Corporation) C:\windows\SysWOW64\iesetup.dll
2015-09-09 20:50 - 2015-08-15 07:39 - 00341504 _____ (Microsoft Corporation) C:\windows\SysWOW64\html.iec
2015-09-09 20:50 - 2015-08-15 07:39 - 00316928 _____ (Microsoft Corporation) C:\windows\system32\dxtrans.dll
2015-09-09 20:50 - 2015-08-15 07:35 - 02279424 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2015-09-09 20:50 - 2015-08-15 07:33 - 00047104 _____ (Microsoft Corporation) C:\windows\SysWOW64\jsproxy.dll
2015-09-09 20:50 - 2015-08-15 07:30 - 00479232 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieui.dll
2015-09-09 20:50 - 2015-08-15 07:29 - 00665600 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2015-09-09 20:50 - 2015-08-15 07:29 - 00620032 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9diag.dll
2015-09-09 20:50 - 2015-08-15 07:29 - 00115712 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieUnatt.exe
2015-09-09 20:50 - 2015-08-15 07:23 - 00801280 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2015-09-09 20:50 - 2015-08-15 07:22 - 02126336 _____ (Microsoft Corporation) C:\windows\system32\inetcpl.cpl
2015-09-09 20:50 - 2015-08-15 07:22 - 01359360 _____ (Microsoft Corporation) C:\windows\system32\mshtmlmedia.dll
2015-09-09 20:50 - 2015-08-15 07:21 - 00418304 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtmsft.dll
2015-09-09 20:50 - 2015-08-15 07:16 - 14451712 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2015-09-09 20:50 - 2015-08-15 07:16 - 00060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\JavaScriptCollectionAgent.dll
2015-09-09 20:50 - 2015-08-15 07:14 - 00168960 _____ (Microsoft Corporation) C:\windows\SysWOW64\msrating.dll
2015-09-09 20:50 - 2015-08-15 07:11 - 00285696 _____ (Microsoft Corporation) C:\windows\SysWOW64\dxtrans.dll
2015-09-09 20:50 - 2015-08-15 07:10 - 04520448 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2015-09-09 20:50 - 2015-08-15 07:07 - 02427392 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2015-09-09 20:50 - 2015-08-15 07:04 - 12857344 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2015-09-09 20:50 - 2015-08-15 07:02 - 00689152 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2015-09-09 20:50 - 2015-08-15 07:01 - 02052608 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcpl.cpl
2015-09-09 20:50 - 2015-08-15 07:01 - 01155072 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtmlmedia.dll
2015-09-09 20:50 - 2015-08-15 06:55 - 01545728 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2015-09-09 20:50 - 2015-08-15 06:43 - 01951232 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2015-09-09 20:50 - 2015-08-15 06:43 - 00800768 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2015-09-09 20:50 - 2015-08-15 06:37 - 00710144 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2015-09-09 20:50 - 2015-07-23 02:06 - 05568960 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2015-09-09 20:50 - 2015-07-23 02:03 - 01730496 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2015-09-09 20:50 - 2015-07-23 02:02 - 01461760 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2015-09-09 20:50 - 2015-07-23 02:02 - 01390592 _____ (Microsoft Corporation) C:\windows\system32\diagtrack.dll
2015-09-09 20:50 - 2015-07-23 02:02 - 01163264 _____ (Microsoft Corporation) C:\windows\system32\kernel32.dll
2015-09-09 20:50 - 2015-07-23 02:02 - 00879104 _____ (Microsoft Corporation) C:\windows\system32\tdh.dll
2015-09-09 20:50 - 2015-07-23 02:02 - 00879104 _____ (Microsoft Corporation) C:\windows\system32\advapi32.dll
2015-09-09 20:50 - 2015-07-23 02:02 - 00424448 _____ (Microsoft Corporation) C:\windows\system32\KernelBase.dll
2015-09-09 20:50 - 2015-07-22 19:57 - 03989952 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntkrnlpa.exe
2015-09-09 20:50 - 2015-07-22 19:57 - 03934656 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntoskrnl.exe
2015-09-09 20:50 - 2015-07-22 19:54 - 01311768 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntdll.dll
2015-09-09 20:50 - 2015-07-22 19:53 - 00641536 _____ (Microsoft Corporation) C:\windows\SysWOW64\advapi32.dll
2015-09-09 20:50 - 2015-07-22 19:53 - 00635392 _____ (Microsoft Corporation) C:\windows\SysWOW64\tdh.dll
2015-09-09 20:50 - 2015-07-22 19:52 - 01114112 _____ (Microsoft Corporation) C:\windows\SysWOW64\kernel32.dll
2015-09-09 20:50 - 2015-07-22 18:48 - 00041984 _____ (Microsoft Corporation) C:\windows\system32\UtcResources.dll
2015-09-09 20:49 - 2015-07-23 02:06 - 00155584 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecpkg.sys
2015-09-09 20:49 - 2015-07-23 02:06 - 00095680 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2015-09-09 20:49 - 2015-07-23 02:03 - 00362496 _____ (Microsoft Corporation) C:\windows\system32\wow64win.dll
2015-09-09 20:49 - 2015-07-23 02:03 - 00243712 _____ (Microsoft Corporation) C:\windows\system32\wow64.dll
2015-09-09 20:49 - 2015-07-23 02:03 - 00215040 _____ (Microsoft Corporation) C:\windows\system32\winsrv.dll
2015-09-09 20:49 - 2015-07-23 02:03 - 00013312 _____ (Microsoft Corporation) C:\windows\system32\wow64cpu.dll
2015-09-09 20:49 - 2015-07-23 02:02 - 01216512 _____ (Microsoft Corporation) C:\windows\system32\rpcrt4.dll
2015-09-09 20:49 - 2015-07-23 02:02 - 00729088 _____ (Microsoft Corporation) C:\windows\system32\kerberos.dll
2015-09-09 20:49 - 2015-07-23 02:02 - 00503808 _____ (Microsoft Corporation) C:\windows\system32\srcore.dll
2015-09-09 20:49 - 2015-07-23 02:02 - 00342016 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2015-09-09 20:49 - 2015-07-23 02:02 - 00315392 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2015-09-09 20:49 - 2015-07-23 02:02 - 00309760 _____ (Microsoft Corporation) C:\windows\system32\ncrypt.dll
2015-09-09 20:49 - 2015-07-23 02:02 - 00296960 _____ (Microsoft Corporation) C:\windows\system32\rstrui.exe
2015-09-09 20:49 - 2015-07-23 02:02 - 00210944 _____ (Microsoft Corporation) C:\windows\system32\wdigest.dll
2015-09-09 20:49 - 2015-07-23 02:02 - 00136192 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2015-09-09 20:49 - 2015-07-23 02:02 - 00112640 _____ (Microsoft Corporation) C:\windows\system32\smss.exe
2015-09-09 20:49 - 2015-07-23 02:02 - 00086528 _____ (Microsoft Corporation) C:\windows\system32\TSpkg.dll
2015-09-09 20:49 - 2015-07-23 02:02 - 00050176 _____ (Microsoft Corporation) C:\windows\system32\srclient.dll
2015-09-09 20:49 - 2015-07-23 02:02 - 00044032 _____ (Microsoft Corporation) C:\windows\system32\cryptbase.dll
2015-09-09 20:49 - 2015-07-23 02:02 - 00043520 _____ (Microsoft Corporation) C:\windows\system32\csrsrv.dll
2015-09-09 20:49 - 2015-07-23 02:02 - 00029184 _____ (Microsoft Corporation) C:\windows\system32\sspisrv.dll
2015-09-09 20:49 - 2015-07-23 02:02 - 00028160 _____ (Microsoft Corporation) C:\windows\system32\secur32.dll
2015-09-09 20:49 - 2015-07-23 02:02 - 00022016 _____ (Microsoft Corporation) C:\windows\system32\credssp.dll
2015-09-09 20:49 - 2015-07-23 02:02 - 00016384 _____ (Microsoft Corporation) C:\windows\system32\ntvdm64.dll
2015-09-09 20:49 - 2015-07-23 02:01 - 00338432 _____ (Microsoft Corporation) C:\windows\system32\conhost.exe
2015-09-09 20:49 - 2015-07-23 02:01 - 00064000 _____ (Microsoft Corporation) C:\windows\system32\auditpol.exe
2015-09-09 20:49 - 2015-07-23 02:01 - 00031232 _____ (Microsoft Corporation) C:\windows\system32\lsass.exe
2015-09-09 20:49 - 2015-07-23 01:58 - 00060416 _____ (Microsoft Corporation) C:\windows\system32\msobjs.dll
2015-09-09 20:49 - 2015-07-23 01:57 - 00146432 _____ (Microsoft Corporation) C:\windows\system32\msaudite.dll
2015-09-09 20:49 - 2015-07-23 01:52 - 00006656 _____ (Microsoft Corporation) C:\windows\system32\apisetschema.dll
2015-09-09 20:49 - 2015-07-23 01:52 - 00006144 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2015-09-09 20:49 - 2015-07-23 01:52 - 00005120 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2015-09-09 20:49 - 2015-07-23 01:52 - 00004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2015-09-09 20:49 - 2015-07-23 01:52 - 00004608 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2015-09-09 20:49 - 2015-07-23 01:52 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2015-09-09 20:49 - 2015-07-23 01:52 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2015-09-09 20:49 - 2015-07-23 01:52 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2015-09-09 20:49 - 2015-07-23 01:52 - 00004096 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2015-09-09 20:49 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-09-09 20:49 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2015-09-09 20:49 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2015-09-09 20:49 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2015-09-09 20:49 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2015-09-09 20:49 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2015-09-09 20:49 - 2015-07-23 01:52 - 00003584 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2015-09-09 20:49 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2015-09-09 20:49 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2015-09-09 20:49 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2015-09-09 20:49 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2015-09-09 20:49 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2015-09-09 20:49 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2015-09-09 20:49 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2015-09-09 20:49 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2015-09-09 20:49 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2015-09-09 20:49 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2015-09-09 20:49 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2015-09-09 20:49 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2015-09-09 20:49 - 2015-07-23 01:52 - 00003072 ____H (Microsoft Corporation) C:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2015-09-09 20:49 - 2015-07-23 01:51 - 00686080 _____ (Microsoft Corporation) C:\windows\system32\adtschema.dll
2015-09-09 20:49 - 2015-07-22 19:53 - 00552960 _____ (Microsoft Corporation) C:\windows\SysWOW64\kerberos.dll
2015-09-09 20:49 - 2015-07-22 19:53 - 00259584 _____ (Microsoft Corporation) C:\windows\SysWOW64\msv1_0.dll
2015-09-09 20:49 - 2015-07-22 19:53 - 00248832 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
2015-09-09 20:49 - 2015-07-22 19:53 - 00221184 _____ (Microsoft Corporation) C:\windows\SysWOW64\ncrypt.dll
2015-09-09 20:49 - 2015-07-22 19:53 - 00172032 _____ (Microsoft Corporation) C:\windows\SysWOW64\wdigest.dll
2015-09-09 20:49 - 2015-07-22 19:53 - 00065536 _____ (Microsoft Corporation) C:\windows\SysWOW64\TSpkg.dll
2015-09-09 20:49 - 2015-07-22 19:53 - 00043008 _____ (Microsoft Corporation) C:\windows\SysWOW64\srclient.dll
2015-09-09 20:49 - 2015-07-22 19:53 - 00036864 _____ (Microsoft Corporation) C:\windows\SysWOW64\cryptbase.dll
2015-09-09 20:49 - 2015-07-22 19:53 - 00022016 _____ (Microsoft Corporation) C:\windows\SysWOW64\secur32.dll
2015-09-09 20:49 - 2015-07-22 19:53 - 00017408 _____ (Microsoft Corporation) C:\windows\SysWOW64\credssp.dll
2015-09-09 20:49 - 2015-07-22 19:53 - 00014336 _____ (Microsoft Corporation) C:\windows\SysWOW64\ntvdm64.dll
2015-09-09 20:49 - 2015-07-22 19:52 - 00665088 _____ (Microsoft Corporation) C:\windows\SysWOW64\rpcrt4.dll
2015-09-09 20:49 - 2015-07-22 19:52 - 00274944 _____ (Microsoft Corporation) C:\windows\SysWOW64\KernelBase.dll
2015-09-09 20:49 - 2015-07-22 19:52 - 00096768 _____ (Microsoft Corporation) C:\windows\SysWOW64\sspicli.dll
2015-09-09 20:49 - 2015-07-22 19:52 - 00050176 _____ (Microsoft Corporation) C:\windows\SysWOW64\auditpol.exe
2015-09-09 20:49 - 2015-07-22 19:52 - 00025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\setup16.exe
2015-09-09 20:49 - 2015-07-22 19:52 - 00005120 _____ (Microsoft Corporation) C:\windows\SysWOW64\wow32.dll
2015-09-09 20:49 - 2015-07-22 19:47 - 00060416 _____ (Microsoft Corporation) C:\windows\SysWOW64\msobjs.dll
2015-09-09 20:49 - 2015-07-22 19:46 - 00146432 _____ (Microsoft Corporation) C:\windows\SysWOW64\msaudite.dll
2015-09-09 20:49 - 2015-07-22 19:42 - 00686080 _____ (Microsoft Corporation) C:\windows\SysWOW64\adtschema.dll
2015-09-09 20:49 - 2015-07-22 19:42 - 00006656 _____ (Microsoft Corporation) C:\windows\SysWOW64\apisetschema.dll
2015-09-09 20:49 - 2015-07-22 19:42 - 00005120 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2015-09-09 20:49 - 2015-07-22 19:42 - 00004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2015-09-09 20:49 - 2015-07-22 19:42 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2015-09-09 20:49 - 2015-07-22 19:42 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2015-09-09 20:49 - 2015-07-22 19:42 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2015-09-09 20:49 - 2015-07-22 19:42 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2015-09-09 20:49 - 2015-07-22 19:42 - 00004096 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2015-09-09 20:49 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2015-09-09 20:49 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2015-09-09 20:49 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2015-09-09 20:49 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2015-09-09 20:49 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2015-09-09 20:49 - 2015-07-22 19:42 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2015-09-09 20:49 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2015-09-09 20:49 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2015-09-09 20:49 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2015-09-09 20:49 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2015-09-09 20:49 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2015-09-09 20:49 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2015-09-09 20:49 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2015-09-09 20:49 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2015-09-09 20:49 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2015-09-09 20:49 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2015-09-09 20:49 - 2015-07-22 19:42 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2015-09-09 20:49 - 2015-07-22 18:45 - 00159232 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb.sys
2015-09-09 20:49 - 2015-07-22 18:44 - 00290816 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb10.sys
2015-09-09 20:49 - 2015-07-22 18:44 - 00129024 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb20.sys
2015-09-09 20:49 - 2015-07-22 18:34 - 00007680 _____ (Microsoft Corporation) C:\windows\SysWOW64\instnm.exe
2015-09-09 20:49 - 2015-07-22 18:34 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\user.exe
2015-09-09 20:49 - 2015-07-22 18:31 - 00006144 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2015-09-09 20:49 - 2015-07-22 18:31 - 00004608 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2015-09-09 20:49 - 2015-07-22 18:31 - 00003584 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2015-09-09 20:49 - 2015-07-22 18:31 - 00003072 ____H (Microsoft Corporation) C:\windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2015-09-09 20:47 - 2015-09-02 05:04 - 00100864 _____ (Microsoft Corporation) C:\windows\system32\fontsub.dll
2015-09-09 20:47 - 2015-09-02 05:04 - 00046080 _____ (Adobe Systems) C:\windows\system32\atmlib.dll
2015-09-09 20:47 - 2015-09-02 05:04 - 00041984 _____ (Microsoft Corporation) C:\windows\system32\lpk.dll
2015-09-09 20:47 - 2015-09-02 05:04 - 00014336 _____ (Microsoft Corporation) C:\windows\system32\dciman32.dll
2015-09-09 20:47 - 2015-09-02 04:48 - 00070656 _____ (Microsoft Corporation) C:\windows\SysWOW64\fontsub.dll
2015-09-09 20:47 - 2015-09-02 04:48 - 00034304 _____ (Adobe Systems) C:\windows\SysWOW64\atmlib.dll
2015-09-09 20:47 - 2015-09-02 04:48 - 00010240 _____ (Microsoft Corporation) C:\windows\SysWOW64\dciman32.dll
2015-09-09 20:47 - 2015-09-02 04:47 - 00025600 _____ (Microsoft Corporation) C:\windows\SysWOW64\lpk.dll
2015-09-09 20:47 - 2015-09-02 03:51 - 03209216 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2015-09-09 20:47 - 2015-09-02 03:47 - 00372736 _____ (Adobe Systems Incorporated) C:\windows\system32\atmfd.dll
2015-09-09 20:47 - 2015-09-02 03:33 - 00299520 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\atmfd.dll
2015-09-09 20:47 - 2015-08-27 20:18 - 02004480 _____ (Microsoft Corporation) C:\windows\system32\msxml6.dll
2015-09-09 20:47 - 2015-08-27 20:18 - 01887232 _____ (Microsoft Corporation) C:\windows\system32\msxml3.dll
2015-09-09 20:47 - 2015-08-27 20:13 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\msxml6r.dll
2015-09-09 20:47 - 2015-08-27 20:13 - 00002048 _____ (Microsoft Corporation) C:\windows\system32\msxml3r.dll
2015-09-09 20:47 - 2015-08-27 19:58 - 01391104 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml6.dll
2015-09-09 20:47 - 2015-08-27 19:58 - 01241088 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml3.dll
2015-09-09 20:47 - 2015-08-27 19:51 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml6r.dll
2015-09-09 20:47 - 2015-08-27 19:51 - 00002048 _____ (Microsoft Corporation) C:\windows\SysWOW64\msxml3r.dll
2015-09-09 20:43 - 2015-08-26 20:07 - 03165696 _____ (Microsoft Corporation) C:\windows\system32\wucltux.dll
2015-09-09 20:43 - 2015-08-26 20:07 - 02606080 _____ (Microsoft Corporation) C:\windows\system32\wuaueng.dll
2015-09-09 20:43 - 2015-08-26 20:07 - 00696320 _____ (Microsoft Corporation) C:\windows\system32\wuapi.dll
2015-09-09 20:43 - 2015-08-26 20:07 - 00192000 _____ (Microsoft Corporation) C:\windows\system32\wuwebv.dll
2015-09-09 20:43 - 2015-08-26 20:07 - 00098304 _____ (Microsoft Corporation) C:\windows\system32\wudriver.dll
2015-09-09 20:43 - 2015-08-26 20:07 - 00037888 _____ (Microsoft Corporation) C:\windows\system32\wups2.dll
2015-09-09 20:43 - 2015-08-26 20:07 - 00036864 _____ (Microsoft Corporation) C:\windows\system32\wups.dll
2015-09-09 20:43 - 2015-08-26 20:06 - 00139776 _____ (Microsoft Corporation) C:\windows\system32\wuauclt.exe
2015-09-09 20:43 - 2015-08-26 20:06 - 00091136 _____ (Microsoft Corporation) C:\windows\system32\WinSetupUI.dll
2015-09-09 20:43 - 2015-08-26 20:06 - 00037376 _____ (Microsoft Corporation) C:\windows\system32\wuapp.exe
2015-09-09 20:43 - 2015-08-26 20:06 - 00012288 _____ (Microsoft Corporation) C:\windows\system32\wu.upgrade.ps.dll
2015-09-09 20:43 - 2015-08-26 19:56 - 00566784 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapi.dll
2015-09-09 20:43 - 2015-08-26 19:56 - 00173056 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuwebv.dll
2015-09-09 20:43 - 2015-08-26 19:56 - 00093184 _____ (Microsoft Corporation) C:\windows\SysWOW64\wudriver.dll
2015-09-09 20:43 - 2015-08-26 19:56 - 00030208 _____ (Microsoft Corporation) C:\windows\SysWOW64\wups.dll
2015-09-09 20:43 - 2015-08-26 19:55 - 00034816 _____ (Microsoft Corporation) C:\windows\SysWOW64\wuapp.exe
2015-09-09 20:24 - 2015-09-09 20:25 - 24345872 _____ (Malwarebytes Corporation ) C:\Users\Radmila\Downloads\mbam-setup-2.1.8.1057.exe
2015-09-09 17:24 - 2015-09-10 03:41 - 00000978 _____ C:\windows\PFRO.log
2015-09-09 06:12 - 2015-09-11 16:37 - 00000504 _____ C:\windows\setupact.log
2015-09-09 06:12 - 2015-09-09 06:12 - 00000000 _____ C:\windows\setuperr.log
2015-09-08 21:59 - 2015-09-08 21:59 - 01222144 _____ C:\Users\Radmila\Downloads\RSITx64.exe
2015-09-08 21:59 - 2015-09-08 21:59 - 00000000 ____D C:\rsit
2015-09-05 22:09 - 2015-09-06 00:20 - 1237488878 _____ C:\Users\Radmila\Downloads\Ocelová-pěst-2011-CZ-dabing-divx.avi
2015-09-05 19:31 - 2015-09-05 19:31 - 22017006 _____ C:\Users\Radmila\Downloads\'STAY CALM' - Five Nights at Freddy's SONG Animated.mp4
2015-09-01 18:07 - 2015-09-01 18:07 - 00000000 _____ C:\windows\SysWOW64\REN5D0D.tmp
2015-09-01 18:05 - 2015-09-01 18:06 - 00000000 ____D C:\Users\Radmila\.oracle_jre_usage
2015-09-01 18:05 - 2015-09-01 18:05 - 00000000 ____D C:\Users\Radmila\AppData\Roaming\Sun
2015-08-29 21:26 - 2015-09-01 17:56 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2015-08-20 15:39 - 2015-08-20 15:39 - 00000000 ___RD C:\Program Files (x86)\Skype
2015-08-20 15:39 - 2015-08-20 15:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-08-18 18:16 - 2015-08-18 18:16 - 18233544 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerInstaller.exe
2015-08-18 17:52 - 2015-09-10 20:16 - 00000914 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
2015-08-18 17:52 - 2015-08-18 18:17 - 00003852 _____ C:\windows\System32\Tasks\Adobe Flash Player Updater
2015-08-13 16:38 - 2015-07-30 15:13 - 00124624 _____ (Microsoft Corporation) C:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-08-13 16:38 - 2015-07-30 15:13 - 00103120 _____ (Microsoft Corporation) C:\windows\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2015-08-12 05:29 - 2015-07-28 22:09 - 00017344 _____ (Microsoft Corporation) C:\windows\system32\CompatTelRunner.exe
2015-08-12 05:29 - 2015-07-28 22:05 - 01116672 _____ (Microsoft Corporation) C:\windows\system32\appraiser.dll
2015-08-12 05:29 - 2015-07-28 22:05 - 00774656 _____ (Microsoft Corporation) C:\windows\system32\invagent.dll
2015-08-12 05:29 - 2015-07-28 22:05 - 00743424 _____ (Microsoft Corporation) C:\windows\system32\generaltel.dll
2015-08-12 05:29 - 2015-07-28 22:05 - 00437760 _____ (Microsoft Corporation) C:\windows\system32\devinv.dll
2015-08-12 05:29 - 2015-07-28 22:05 - 00227328 _____ (Microsoft Corporation) C:\windows\system32\aepdu.dll
2015-08-12 05:29 - 2015-07-28 22:05 - 00069120 _____ (Microsoft Corporation) C:\windows\system32\acmigration.dll
2015-08-12 05:29 - 2015-07-28 21:55 - 01148416 _____ (Microsoft Corporation) C:\windows\system32\aeinv.dll
2015-08-12 05:29 - 2015-07-16 21:11 - 07077376 _____ (Microsoft Corporation) C:\windows\system32\mstscax.dll
2015-08-12 05:28 - 2015-07-16 21:12 - 06131200 _____ (Microsoft Corporation) C:\windows\SysWOW64\mstscax.dll
2015-08-12 05:28 - 2015-07-16 21:12 - 00856064 _____ (Microsoft Corporation) C:\windows\SysWOW64\rdvidcrl.dll
2015-08-12 05:28 - 2015-07-16 21:12 - 00053248 _____ (Microsoft Corporation) C:\windows\SysWOW64\tsgqec.dll
2015-08-12 05:28 - 2015-07-16 21:11 - 01057792 _____ (Microsoft Corporation) C:\windows\system32\rdvidcrl.dll
2015-08-12 05:28 - 2015-07-16 21:11 - 00062976 _____ (Microsoft Corporation) C:\windows\system32\tsgqec.dll
2015-08-12 05:28 - 2015-07-15 20:15 - 00094656 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mountmgr.sys
2015-08-12 05:28 - 2015-07-15 20:10 - 01743360 _____ (Microsoft Corporation) C:\windows\system32\sysmain.dll
2015-08-12 05:28 - 2015-07-15 20:10 - 00011264 _____ (Microsoft Corporation) C:\windows\system32\msmmsp.dll
2015-08-12 05:28 - 2015-07-15 05:19 - 00052736 _____ (Microsoft Corporation) C:\windows\system32\basesrv.dll
2015-08-12 05:28 - 2015-07-11 15:15 - 00429568 _____ (Microsoft Corporation) C:\windows\system32\wksprt.exe
2015-08-12 05:25 - 2015-07-30 20:06 - 02565120 _____ (Microsoft Corporation) C:\windows\system32\d3d10warp.dll
2015-08-12 05:25 - 2015-07-30 20:06 - 01648128 _____ (Microsoft Corporation) C:\windows\system32\DWrite.dll
2015-08-12 05:25 - 2015-07-30 20:06 - 01180160 _____ (Microsoft Corporation) C:\windows\system32\FntCache.dll
2015-08-12 05:25 - 2015-07-30 19:57 - 01987584 _____ (Microsoft Corporation) C:\windows\SysWOW64\d3d10warp.dll
2015-08-12 05:25 - 2015-07-30 19:57 - 01251328 _____ (Microsoft Corporation) C:\windows\SysWOW64\DWrite.dll
2015-08-12 05:25 - 2015-07-10 19:51 - 14177280 _____ (Microsoft Corporation) C:\windows\system32\shell32.dll
2015-08-12 05:25 - 2015-07-10 19:34 - 12875776 _____ (Microsoft Corporation) C:\windows\SysWOW64\shell32.dll
2015-08-12 05:25 - 2015-07-09 19:57 - 00193536 _____ (Microsoft Corporation) C:\windows\system32\notepad.exe
2015-08-12 05:25 - 2015-07-09 19:57 - 00193536 _____ (Microsoft Corporation) C:\windows\notepad.exe
2015-08-12 05:25 - 2015-07-09 19:42 - 00179712 _____ (Microsoft Corporation) C:\windows\SysWOW64\notepad.exe
2015-08-12 05:25 - 2015-07-01 22:49 - 00260096 _____ (Microsoft Corporation) C:\windows\system32\WebClnt.dll
2015-08-12 05:25 - 2015-07-01 22:48 - 00102912 _____ (Microsoft Corporation) C:\windows\system32\davclnt.dll
2015-08-12 05:25 - 2015-07-01 22:30 - 00206848 _____ (Microsoft Corporation) C:\windows\SysWOW64\WebClnt.dll
2015-08-12 05:25 - 2015-07-01 22:30 - 00082432 _____ (Microsoft Corporation) C:\windows\SysWOW64\davclnt.dll

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-11 16:55 - 2012-01-17 20:52 - 01496346 _____ C:\windows\WindowsUpdate.log
2015-09-11 16:53 - 2009-07-14 06:45 - 00028848 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2015-09-11 16:53 - 2009-07-14 06:45 - 00028848 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2015-09-11 16:52 - 2013-01-06 21:13 - 00000000 ____D C:\Users\Radmila\Documents\Soubory aplikace Outlook
2015-09-11 16:38 - 2015-07-15 21:12 - 00000948 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2015-09-11 16:38 - 2012-12-24 21:42 - 00004182 _____ C:\windows\System32\Tasks\avast! Emergency Update
2015-09-11 16:37 - 2009-07-14 07:08 - 00000006 ____H C:\windows\Tasks\SA.DAT
2015-09-10 21:23 - 2015-07-15 21:12 - 00000952 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2015-09-10 20:58 - 2012-01-17 20:39 - 00669132 _____ C:\windows\system32\perfh005.dat
2015-09-10 20:58 - 2012-01-17 20:39 - 00141760 _____ C:\windows\system32\perfc005.dat
2015-09-10 20:58 - 2009-07-14 07:13 - 01584626 _____ C:\windows\system32\PerfStringBackup.INI
2015-09-10 16:50 - 2009-07-14 07:08 - 00032624 _____ C:\windows\Tasks\SCHEDLGU.TXT
2015-09-10 04:31 - 2009-07-14 05:20 - 00000000 ____D C:\windows\rescache
2015-09-10 03:42 - 2009-07-14 06:45 - 00408376 _____ C:\windows\system32\FNTCACHE.DAT
2015-09-10 03:40 - 2012-01-17 20:23 - 00000000 ____D C:\Program Files\Windows Journal
2015-09-10 03:39 - 2009-07-14 05:20 - 00000000 ____D C:\windows\PolicyDefinitions
2015-09-10 03:22 - 2012-12-26 12:35 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-09-10 03:20 - 2013-08-16 21:35 - 00000000 ____D C:\windows\system32\MRT
2015-09-10 03:08 - 2009-07-14 04:34 - 00000478 _____ C:\windows\win.ini
2015-09-09 17:35 - 2015-07-09 22:06 - 00000000 ____D C:\AdwCleaner
2015-09-09 17:21 - 2013-12-10 20:59 - 00000000 ____D C:\Users\Radmila\AppData\Roaming\Seznam.cz
2015-09-09 17:21 - 2013-11-21 22:45 - 00000000 _____ C:\windows\SysWOW64\sinstall.log
2015-09-09 17:18 - 2013-12-10 20:59 - 00000000 ____D C:\Program Files (x86)\Seznam.cz
2015-09-08 22:07 - 2015-07-09 21:37 - 00000000 ____D C:\Program Files\trend micro
2015-09-05 10:29 - 2013-04-14 20:20 - 00327168 _____ C:\Users\Radmila\Documents\Hospodaření.xls
2015-09-01 18:51 - 2014-01-16 19:45 - 00000000 ____D C:\ProgramData\Oracle
2015-09-01 18:07 - 2014-10-21 19:57 - 00000000 ____D C:\Program Files (x86)\Java
2015-09-01 18:06 - 2015-07-15 21:32 - 00000000 ____D C:\Program Files\Java
2015-09-01 18:06 - 2014-10-21 19:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-09-01 18:05 - 2015-07-15 21:33 - 00110688 _____ (Oracle Corporation) C:\windows\system32\WindowsAccessBridge-64.dll
2015-09-01 18:05 - 2012-04-28 15:29 - 00000000 ____D C:\Users\Radmila
2015-09-01 17:56 - 2015-06-27 10:11 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2015-09-01 15:31 - 2009-07-14 05:20 - 00000000 ____D C:\windows\system32\NDF
2015-08-31 18:18 - 2012-12-30 15:49 - 00003948 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineUA
2015-08-31 18:18 - 2012-12-30 15:49 - 00003696 _____ C:\windows\System32\Tasks\GoogleUpdateTaskMachineCore
2015-08-26 18:37 - 2012-12-25 12:18 - 134753440 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe
2015-08-20 20:34 - 2012-12-26 13:12 - 00000000 ____D C:\Users\Radmila\AppData\Roaming\Skype
2015-08-20 15:39 - 2012-04-28 15:30 - 00000000 ____D C:\ProgramData\Skype
2015-08-18 18:17 - 2012-12-26 14:11 - 00778440 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2015-08-18 18:17 - 2012-12-26 14:11 - 00142536 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2015-08-14 18:43 - 2012-12-24 21:42 - 01048344 _____ (AVAST Software) C:\windows\system32\Drivers\aswsnx.sys
2015-08-13 17:00 - 2014-12-14 10:01 - 00000000 ____D C:\windows\system32\appraiser
2015-08-13 17:00 - 2014-05-07 16:47 - 00000000 ___SD C:\windows\system32\CompatTel
2015-08-13 16:38 - 2013-03-16 00:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2015-08-13 16:37 - 2013-03-16 00:43 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2015-08-13 16:37 - 2013-03-16 00:43 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2015-08-13 13:44 - 2012-12-28 22:06 - 00000000 ____D C:\Users\Radmila\Documents\DVDFabPlayer

Some files in TEMP:
====================
C:\Users\Radmila\AppData\Local\Temp\jre-8u60-windows-au.exe
C:\Users\Radmila\AppData\Local\Temp\sqlite3.dll
C:\Users\Radmila\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\SysWOW64\wininit.exe => File is digitally signed
C:\windows\explorer.exe => File is digitally signed
C:\windows\SysWOW64\explorer.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\SysWOW64\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\SysWOW64\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\SysWOW64\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\dnsapi.dll => File is digitally signed
C:\windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-09-03 22:57

==================== End of FRST.txt ============================

Radši vkládám i toto:-)

Additional scan result of Farbar Recovery Scan Tool (x64) Version:10-09-2015 01
Ran by Radmila (2015-09-11 16:58:57)
Running from C:\Users\Radmila\Desktop
Windows 7 Home Premium Service Pack 1 (X64) (2012-04-28 13:29:31)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-198510878-2715960250-1679441269-500 - Administrator - Disabled)
Guest (S-1-5-21-198510878-2715960250-1679441269-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-198510878-2715960250-1679441269-1002 - Limited - Enabled)
Radmila (S-1-5-21-198510878-2715960250-1679441269-1000 - Administrator - Enabled) => C:\Users\Radmila

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version: - )
7-Zip 9.36 (x64 edition) (HKLM\...\{23170F69-40C1-2702-0936-000001000000}) (Version: 9.36.00.0 - Igor Pavlov)
Accelerometer (HKLM-x32\...\{87434D51-51DB-4109-B68F-A829ECDCF380}) (Version: 1.06.08.53 - STMicroelectronics)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 15.008.20082 - Adobe Systems Incorporated)
Adobe Flash Player 18 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Adobe Flash Player 18 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 18.0.0.232 - Adobe Systems Incorporated)
Agatha Christie - Death on the Nile (x32 Version: 2.2.0.82 - WildTangent) Hidden
Any Video Converter 5.8.1 (HKLM-x32\...\Any Video Converter) (Version: 5.8.1 - Anvsoft)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.12.5.0 - Asmedia Technology)
Avast Free Antivirus (HKLM-x32\...\avast) (Version: 10.3.2225 - AVAST Software)
Bejeweled 2 Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden
Build-a-lot (x32 Version: 2.2.0.82 - WildTangent) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.01 - Piriform)
CyberLink YouCam (HKLM-x32\...\InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}) (Version: 3.1.4417 - CyberLink Corp.)
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
Diner Dash 2 Restaurant Rescue (x32 Version: 2.2.0.82 - WildTangent) Hidden
Dropbox (HKU\S-1-5-21-198510878-2715960250-1679441269-1000\...\Dropbox) (Version: 2.6.24 - Dropbox, Inc.)
DVDFab Media Player 1.0.2.9 (01/11/2012) (HKLM-x32\...\DVDFab Media Player_is1) (Version: - Fengtao Software Inc.)
Easy File Share (HKLM-x32\...\{12F81925-F3C1-40DB-91F7-777817974319}) (Version: 1.1.1705 - Samsung Electronics Co., Ltd.)
Easy Migration (HKLM-x32\...\{AD86049C-3D9C-43E1-BE73-643F57D83D50}) (Version: 1.0 - Samsung Electronics Co., Ltd.)
Easy Settings (HKLM-x32\...\{17283B95-21A8-4996-97DA-547A48DB266F}) (Version: 1.1 - Samsung Electronics Co., Ltd.)
Easy Support Center 1.0 (HKLM-x32\...\{F687E657-F636-44DF-8125-9FEEA2C362F5}) (Version: 1.1.47 - Samsung)
E-POP (HKLM-x32\...\{F06DD8D9-9DC8-430C-835C-C9BF21E05CC1}) (Version: 1.0.1 - Samsung)
ETDWare PS/2-X64 10.0.7.3_WHQL (HKLM\...\Elantech) (Version: 10.0.7.3 - ELAN Microelectronic Corp.)
ExpressCache (HKLM\...\{F9EB0DDE-931C-4E89-96B2-DE8286EDFA6C}) (Version: 1.0.64 - Diskeeper Corporation)
Farm Frenzy (x32 Version: 2.2.0.82 - WildTangent) Hidden
Fast Flash Sleep Resume (x32 Version: 1.0.11 - Samsung) Hidden
FileOpen Client (x64) B928 (HKLM\...\{3ED9A79B-1419-4C5F-BA88-EFD6F180EBE5}) (Version: 3.0.95.928 - FileOpen Systems, Inc.)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: 7.5.6710.2136 - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.13 - Google Inc.) Hidden
Handset WinDriver 1.02.03.00 (HKLM-x32\...\Handset WinDriver) (Version: 1.02.03.00 - Huawei technologies Co., Ltd.)
Chuzzle Deluxe (x32 Version: 2.2.0.82 - WildTangent) Hidden
Insaniquarium Deluxe (x32 Version: 2.2.0.82 - WildTangent) Hidden
Intel PROSet Wireless (x32 Version: - ) Hidden
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 7.0.0.1144 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2462 - Intel Corporation)
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology (HKLM\...\{2ABA2E8D-23CF-418F-BC8F-2EC99FA51A3F}) (Version: 1.2.1.0608 - Intel Corporation)
Intel(R) PROSet/Wireless WiFi Software (HKLM\...\{295AEB79-B53A-4F1B-860F-7800BB7E3681}) (Version: 14.2.1000 - Intel Corporation)
Intel(R) Rapid Start Technology (HKLM-x32\...\3D073343-CEEB-4ce7-85AC-A69A7631B5D6) (Version: 1.0.0.1008 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 10.1.5.1001 - Intel Corporation)
Intel(R) WiDi (HKLM-x32\...\{E1B934BB-6AFA-429F-98E4-76F9CBC72BF6}) (Version: 2.2.14.0 - Intel Corporation)
Intel(R) Wireless Display (HKLM\...\{28EF7372-9087-4AC3-9B9F-D9751FCDF830}) (Version: - )
Java 8 Update 60 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418060F0}) (Version: 8.0.600.27 - Oracle Corporation)
Java 8 Update 60 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218060F0}) (Version: 8.0.600.27 - Oracle Corporation)
John Deere Drive Green (x32 Version: 2.2.0.82 - WildTangent) Hidden
K-Lite Codec Pack 9.5.0 (Full) (HKLM-x32\...\KLiteCodecPack_is1) (Version: 9.5.0 - )
Microsoft .NET Framework 4.5.2 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Office Professional Plus 2010 (HKLM-x32\...\Office14.PROPLUSR) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 40.0.3 (x86 cs) (HKLM-x32\...\Mozilla Firefox 40.0.3 (x86 cs)) (Version: 40.0.3 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 40.0.3.5716 - Mozilla)
Multimedia POP (HKLM-x32\...\{331ECF61-69AF-4F57-AC35-AFED610231C3}) (Version: 1.1 - )
PDF-XChange 2012 Pro (HKLM\...\{F92F0AAB-2EF6-412C-8BF4-0B11EB535280}_is1) (Version: 5.0.273.2 - Tracker Software Products Ltd)
PDF-XChange Editor (HKLM-x32\...\{2eef0fe2-cc4a-47d6-959c-de2d5c2cc40b}) (Version: 3.0.307.2 - Tracker Software Products (Canada) Ltd.)
PDF-XChange Editor (Version: 3.0.307.2 - Tracker Software Products (Canada) Ltd.) Hidden
Peggle (x32 Version: 2.2.0.82 - WildTangent) Hidden
Penguins! (x32 Version: 2.2.0.82 - WildTangent) Hidden
Plants vs. Zombies (x32 Version: 2.2.0.82 - WildTangent) Hidden
Polar Golfer (x32 Version: 2.2.0.82 - WildTangent) Hidden
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.45.516.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6515 - Realtek Semiconductor Corp.)
Revo Uninstaller 1.95 (HKLM-x32\...\Revo Uninstaller) (Version: 1.95 - VS Revo Group)
S Agent (Version: 1.0.9 - Samsung Electronics CO., LTD.) Hidden
Samsung Recovery Solution 5 (HKLM-x32\...\{145DE957-0679-4A2A-BB5C-1D3E9808FAB2}) (Version: 5.0.1.8 - Samsung)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{91140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUSR_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Skype™ 7.8 (HKLM-x32\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.8.102 - Skype Technologies S.A.)
Software Launcher (HKLM-x32\...\{B750B5C2-CC17-4967-905B-29F4EB986131}) (Version: 1.0.2 - Samsung)
User Guide (HKLM-x32\...\{BAE68339-B0F6-4D33-9554-5A3DB2DFF5DA}) (Version: 1.1 - )
WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.1.5 - WildTangent)
WildTangent ORB Game Console (x32 Version: - WildTangent) Hidden
Zoner Photo Studio 13 (HKLM\...\ZonerPhotoStudio13_CZ_is1) (Version: 13.0.1.1 - ZONER software)
Zuma Deluxe (x32 Version: 2.2.0.95 - WildTangent) Hidden

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-198510878-2715960250-1679441269-1000_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Radmila\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-198510878-2715960250-1679441269-1000_Classes\CLSID\{BCAFD618-3FAE-4EFE-BF4E-4C43A7E1320B}\InprocServer32 -> C:\Program Files\Zoner\Photo Studio 13\Program64\SHELLEXT.DLL (ZONER software)
CustomCLSID: HKU\S-1-5-21-198510878-2715960250-1679441269-1000_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Radmila\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-198510878-2715960250-1679441269-1000_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Radmila\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-198510878-2715960250-1679441269-1000_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Radmila\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-198510878-2715960250-1679441269-1000_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Radmila\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll (Dropbox, Inc.)

==================== Restore Points =========================

ATTENTION: System Restore is disabled

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2009-06-10 23:00 - 00000824 ____N C:\windows\system32\Drivers\etc\hosts

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {00F7E287-65F9-4249-93E6-08975770AF31} - System32\Tasks\SamsungSupportCenter => C:\Program Files (x86)\Samsung\Easy Support Center\SSCKbdHk.exe [2011-12-08] (SAMSUNG Electronics)
Task: {02641EDD-C0E0-4094-98E6-9F44C6325187} - System32\Tasks\MirageAgent => C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe [2011-08-17] (CyberLink)
Task: {0BC5C259-7A0D-49FF-9DCE-AA4242DAD3A5} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {2BBFF26E-2EB8-4BD7-BE4C-3F709B965664} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-08-07] (AVAST Software)
Task: {40555616-9CBE-4ED0-8475-F473273A1A53} - System32\Tasks\{35069240-8D06-43B8-BB84-D71C64E38989} => pcalua.exe -a C:\Users\Radmila\Downloads\Revo\revouninstaller-portable\Revouninstaller.exe -d C:\Users\Radmila\Downloads\Revo\revouninstaller-portable
Task: {4D20B445-C353-4AF8-A1A8-8E69B8A7FACE} - System32\Tasks\EasyBatteryManager => C:\Program Files (x86)\Samsung\Easy Settings\EBM\EasyBatteryMgr4.exe [2011-11-18] (SAMSUNG Electronics co., LTD.)
Task: {63AE443B-8EE3-44F0-BC28-6980DCA4E0CE} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {6E5E129E-C923-4CB0-BB95-84179E94C6A2} - System32\Tasks\EasyDisplayMgr => C:\Program Files (x86)\Samsung\Easy Settings\dmhkcore.exe [2011-12-09] (Samsung Electronics Co., Ltd.)
Task: {73993ED5-915E-4DEA-B761-5CB3A912B5FE} - System32\Tasks\SmartSetting => C:\Program Files (x86)\Samsung\Easy Settings\SmartSetting.exe [2011-12-09] (Samsung Electronics Co., Ltd.)
Task: {B6AA2FFD-EE17-43EF-92F3-12E075F20AE4} - System32\Tasks\SCCSpeedBoot => C:\Program Files (x86)\Samsung\Easy Settings\SCCSpeedBoot.exe [2011-12-09] (Samsung Electronics Co., Ltd.)
Task: {BDE031C6-98F5-427A-8C98-815AC498BB10} - System32\Tasks\EasySpeedUpManager => C:\Program Files (x86)\Samsung\Easy Settings\EasySpeedUpManager.exe [2011-12-09] (Samsung Electronics)
Task: {BFD1A1F2-DADB-4593-8A99-19397350BF23} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-12-12] (Piriform Ltd)
Task: {C20729A5-1779-42DE-8F15-638C1D4B664C} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {C344E1D5-0D6C-4306-8026-62616606FDC0} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-08-18] (Adobe Systems Incorporated)
Task: {D395B82C-403C-45AD-BF03-DB21B86AAE81} - System32\Tasks\FFSRConfigurer => C:\Program Files (x86)\Samsung\Fast Flash Sleep Resume\FFSRConfigurer.exe [2011-12-17] (Samsung)
Task: {E00D9164-39A5-4688-A4AC-71E78F5A8679} - System32\Tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater => Rundll32.exe invagent.dll,RunUpdate -noappraiser
Task: {EE4FC137-E769-4EC4-938C-68064D4D1448} - System32\Tasks\advSRS5 => C:\Program Files (x86)\Samsung\Samsung Recovery Solution 5\WCScheduler.exe [2011-09-08] (SEC)
Task: {EF220FAE-490B-4DE7-A1FC-FEC3E37CB6F3} - System32\Tasks\{C182DA02-C536-4382-BFD6-BABC91F8A8AD} => pcalua.exe -a C:\Users\Radmila\Downloads\jre-8u51-windows-i586.exe -d C:\Users\Radmila\Downloads
Task: {F039B2B2-4C6C-4792-8959-5AC9B19CF5AF} - System32\Tasks\{D5C032E8-9E14-4016-A91A-6EEBEBD46C77} => pcalua.exe -a "C:\Users\Radmila\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\4BKJ8YKI\windows-media-player-11.exe" -d C:\Users\Radmila\Desktop
Task: {FB60E07B-6461-429C-BDE5-27F3B21BD485} - System32\Tasks\SAgent => C:\Program Files\Samsung\S Agent\CommonAgent.exe [2012-10-25] (Samsung Electronics CO., LTD.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2011-09-15 10:46 - 2011-09-15 10:46 - 01501696 _____ () C:\Program Files\Common Files\Intel\WirelessCommon\Libeay32.dll
2013-09-05 01:17 - 2013-09-05 01:17 - 04300456 _____ () C:\Program Files\Common Files\Microsoft Shared\OFFICE14\Cultures\OFFICE.ODF
2012-01-17 04:03 - 2010-12-17 06:18 - 00060928 _____ () C:\Program Files (x86)\STMicroelectronics\Accelerometer\InstallFilterService.exe
2011-09-15 10:46 - 2011-09-15 10:46 - 01501696 _____ () C:\Program Files\Common Files\Intel\WirelessCommon\LIBEAY32.dll
2011-12-02 04:27 - 2011-07-26 07:37 - 00094208 _____ () C:\windows\system32\IccLibDll_x64.dll
2015-08-07 18:42 - 2015-08-07 18:42 - 00102864 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-08-07 18:42 - 2015-08-07 18:42 - 00123976 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-09-10 21:17 - 2015-09-10 21:17 - 02962944 _____ () C:\Program Files\AVAST Software\Avast\defs\15091001\algo.dll
2015-09-11 16:40 - 2015-09-11 16:40 - 02962944 _____ () C:\Program Files\AVAST Software\Avast\defs\15091100\algo.dll
2015-03-17 19:04 - 2015-03-17 19:04 - 40540672 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2012-01-17 04:17 - 2006-08-12 05:48 - 00049152 _____ () C:\Program Files (x86)\Samsung\Easy Settings\HookDllPS2.dll
2013-09-05 01:14 - 2013-09-05 01:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF
2012-01-17 04:05 - 2011-09-08 12:40 - 01645056 _____ () C:\Program Files (x86)\Samsung\Samsung Recovery Solution 5\Resdll.dll
2013-09-05 01:14 - 2013-09-05 01:14 - 04300456 _____ () C:\Program Files (x86)\Common Files\Microsoft Shared\office14\Cultures\office.odf
2013-02-14 16:46 - 2013-02-14 16:46 - 01044048 _____ () C:\Program Files (x86)\Microsoft Office\Office14\ADDINS\UmOutlookAddin.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\S-1-5-21-198510878-2715960250-1679441269-1000\...\unmz.cz -> hxxps://www.csnonlinefirmy.unmz.cz


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-198510878-2715960250-1679441269-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Radmila\AppData\Roaming\Zoner\ZPS 13\ZPSWallPaper.bmp
DNS Servers: 77.78.88.88 - 109.123.201.11
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{16ED984E-5166-47EE-851E-F0E21A0B1F11}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{DEDFDDB0-88F7-4CE1-A66C-62E8383759DC}] => (Allow) C:\Program Files (x86)\Intel Corporation\Intel WiDi\WiDiApp.exe
FirewallRules: [{8850B6E8-514E-46FF-99F3-7B3879B211E9}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{B689638F-F99B-4660-960C-2ACE57747EF8}C:\program files (x86)\dvdfab media player\dvdfabmediaplayer.exe] => (Allow) C:\program files (x86)\dvdfab media player\dvdfabmediaplayer.exe
FirewallRules: [UDP Query User{CEDD5F87-044D-45EC-8A53-EB1BC3FFCEC7}C:\program files (x86)\dvdfab media player\dvdfabmediaplayer.exe] => (Allow) C:\program files (x86)\dvdfab media player\dvdfabmediaplayer.exe
FirewallRules: [TCP Query User{24FB1C4F-5248-4525-9088-B7A40DFECC67}C:\program files (x86)\dvdfab media player\fabstreamer.exe] => (Allow) C:\program files (x86)\dvdfab media player\fabstreamer.exe
FirewallRules: [UDP Query User{4BFB5539-6B5B-450E-8CE1-96F68223669F}C:\program files (x86)\dvdfab media player\fabstreamer.exe] => (Allow) C:\program files (x86)\dvdfab media player\fabstreamer.exe
FirewallRules: [{6CF794E4-26E0-4892-A4D0-B1C9D2402407}] => (Allow) C:\Users\Radmila\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{07ADD5B8-0CFB-4209-8B84-173C4D924A78}] => (Allow) C:\Users\Radmila\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [TCP Query User{F96A583F-D85E-4760-BF7D-B9AC895CB26A}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [UDP Query User{635CA636-4C6A-4BF4-8965-E9F21F2847AF}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Allow) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [{503A54A9-C6EB-42BD-95F3-067529717B09}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{7444C425-D23E-4DC8-AE3F-8B2A6E9E92FB}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (09/11/2015 04:38:23 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/10/2015 09:17:26 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/10/2015 08:51:05 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Systém Windows nemůže získat přístup k souboru C:\Windows\System32\sysmain.dll z jednoho z těchto důvodů:
došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen, nebo
s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí.
Systém Windows kvůli této chybě ukončil program Host Process for Windows Services.

Program: Host Process for Windows Services
Soubor: C:\Windows\System32\sysmain.dll

Hodnota chyby je uvedena v části Další údaje.
Akce uživatele
1. Otevřete soubor znovu.
Může se jednat o dočasný problém, který se při novém spuštění programu nebude opakovat.
2.
Pokud k souboru stále nelze získat přístup a:
- Nachází se v síti,
měl by správce sítě ověřit, zda nedošlo k problému se sítí a zda lze server kontaktovat.
- Je na vyměnitelném disku (například disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače.
3. Zkontrolujte a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK. Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER.
4. Pokud potíže potrvají, obnovte soubor ze záložní kopie.
5. Zjistěte, zda lze otevřít jiné soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný disk, obraťte se na správce nebo na dodavatele počítačového hardwaru
se žádostí o pomoc.

Další údaje
Hodnota chyby: C00000B5
Typ disku: 3

Error: (09/10/2015 08:51:05 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_SysMain, verze: 6.1.7601.17568, časové razítko: 0x4d6c7db2
Název chybujícího modulu: msvcrt.dll, verze: 7.0.7601.17744, časové razítko: 0x4eeb033f
Kód výjimky: 0xc0000006
Posun chyby: 0x000000000000105c
ID chybujícího procesu: 0x35c
Čas spuštění chybující aplikace: 0xsvchost.exe_SysMain0
Cesta k chybující aplikaci: svchost.exe_SysMain1
Cesta k chybujícímu modulu: svchost.exe_SysMain2
ID zprávy: svchost.exe_SysMain3

Error: (09/10/2015 05:57:17 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Systém Windows nemůže získat přístup k souboru C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F11E5E1A-BF67-4FF5-85D5-361BE14A93A4}\mpengine.dll z jednoho z těchto důvodů:
došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen, nebo
s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí.
Systém Windows kvůli této chybě ukončil program Host Process for Windows Services.

Program: Host Process for Windows Services
Soubor: C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F11E5E1A-BF67-4FF5-85D5-361BE14A93A4}\mpengine.dll

Hodnota chyby je uvedena v části Další údaje.
Akce uživatele
1. Otevřete soubor znovu.
Může se jednat o dočasný problém, který se při novém spuštění programu nebude opakovat.
2.
Pokud k souboru stále nelze získat přístup a:
- Nachází se v síti,
měl by správce sítě ověřit, zda nedošlo k problému se sítí a zda lze server kontaktovat.
- Je na vyměnitelném disku (například disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače.
3. Zkontrolujte a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK. Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER.
4. Pokud potíže potrvají, obnovte soubor ze záložní kopie.
5. Zjistěte, zda lze otevřít jiné soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný disk, obraťte se na správce nebo na dodavatele počítačového hardwaru
se žádostí o pomoc.

Další údaje
Hodnota chyby: C00000B5
Typ disku: 3

Error: (09/10/2015 05:57:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_WinDefend, verze: 6.1.7601.17568, časové razítko: 0x4d6c7db2
Název chybujícího modulu: mpengine.dll, verze: 1.1.12002.0, časové razítko: 0x55bb3638
Kód výjimky: 0xc0000006
Posun chyby: 0x0000000000099840
ID chybujícího procesu: 0x1600
Čas spuštění chybující aplikace: 0xsvchost.exe_WinDefend0
Cesta k chybující aplikaci: svchost.exe_WinDefend1
Cesta k chybujícímu modulu: svchost.exe_WinDefend2
ID zprávy: svchost.exe_WinDefend3

Error: (09/10/2015 05:47:12 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Systém Windows nemůže získat přístup k souboru z jednoho z těchto důvodů:
došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen, nebo
s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí.
Systém Windows kvůli této chybě ukončil program Smart Setting Program.

Program: Smart Setting Program
Soubor:

Hodnota chyby je uvedena v části Další údaje.
Akce uživatele
1. Otevřete soubor znovu.
Může se jednat o dočasný problém, který se při novém spuštění programu nebude opakovat.
2.
Pokud k souboru stále nelze získat přístup a:
- Nachází se v síti,
měl by správce sítě ověřit, zda nedošlo k problému se sítí a zda lze server kontaktovat.
- Je na vyměnitelném disku (například disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače.
3. Zkontrolujte a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK. Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER.
4. Pokud potíže potrvají, obnovte soubor ze záložní kopie.
5. Zjistěte, zda lze otevřít jiné soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný disk, obraťte se na správce nebo na dodavatele počítačového hardwaru
se žádostí o pomoc.

Další údaje
Hodnota chyby: C00000B5
Typ disku: 0

Error: (09/10/2015 05:47:12 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: SmartSetting.exe, verze: 2.3.1.7, časové razítko: 0x4ee19bd7
Název chybujícího modulu: KERNELBASE.dll, verze: 6.1.7601.18939, časové razítko: 0x55afd8e7
Kód výjimky: 0xc0000006
Posun chyby: 0x0000c079
ID chybujícího procesu: 0xbac
Čas spuštění chybující aplikace: 0xSmartSetting.exe0
Cesta k chybující aplikaci: SmartSetting.exe1
Cesta k chybujícímu modulu: SmartSetting.exe2
ID zprávy: SmartSetting.exe3

Error: (09/10/2015 04:51:01 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/10/2015 03:42:47 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


System errors:
=============
Error: (09/10/2015 09:16:14 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (21:15:35, ‎10.‎9.‎2015) bylo neočekávané.

Error: (09/10/2015 09:14:48 PM) (Source: Service Control Manager) (EventID: 7043) (User: )
Description: Služba Windows Update se po přijetí pokynu pro vypnutí neukončila správně.

Error: (09/10/2015 09:14:39 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: {995C996E-D918-4A8C-A302-45719A6F4EA7}

Error: (09/10/2015 08:52:56 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Automatická konfigurace sítě WLAN byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 120000 milisekund: Restartovat službu.

Error: (09/10/2015 08:52:56 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Správce relací správce oken plochy byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 120000 milisekund: Restartovat službu.

Error: (09/10/2015 08:52:56 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Klient služby Sledování distribuovaných odkazů byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 120000 milisekund: Restartovat službu.

Error: (09/10/2015 08:52:56 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Superfetch byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.

Error: (09/10/2015 08:52:56 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Program Compatibility Assistant Service byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.

Error: (09/10/2015 08:52:56 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Síťová připojení byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 100 milisekund: Restartovat službu.

Error: (09/10/2015 08:52:56 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Naslouchací proces domácí skupiny byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 60000 milisekund: Restartovat službu.


Microsoft Office:
=========================
Error: (09/11/2015 04:38:23 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/10/2015 09:17:26 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/10/2015 08:51:05 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: C:\Windows\System32\sysmain.dllHost Process for Windows ServicesC00000B53

Error: (09/10/2015 08:51:05 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: svchost.exe_SysMain6.1.7601.175684d6c7db2msvcrt.dll7.0.7601.177444eeb033fc0000006000000000000105c35c01d0ebd8142aba9eC:\windows\System32\svchost.exeC:\windows\system32\msvcrt.dlle34af9c1-57ec-11e5-a2b4-88532e9b6aa8

Error: (09/10/2015 05:57:17 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F11E5E1A-BF67-4FF5-85D5-361BE14A93A4}\mpengine.dllHost Process for Windows ServicesC00000B53

Error: (09/10/2015 05:57:17 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: svchost.exe_WinDefend6.1.7601.175684d6c7db2mpengine.dll1.1.12002.055bb3638c00000060000000000099840160001d0ebd8763523a9C:\windows\System32\svchost.exeC:\ProgramData\Microsoft\Windows Defender\Definition Updates\{F11E5E1A-BF67-4FF5-85D5-361BE14A93A4}\mpengine.dll9c1859db-57d4-11e5-a2b4-88532e9b6aa8

Error: (09/10/2015 05:47:12 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Smart Setting ProgramC00000B50

Error: (09/10/2015 05:47:12 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: SmartSetting.exe2.3.1.74ee19bd7KERNELBASE.dll6.1.7601.1893955afd8e7c00000060000c079bac01d0ebd830148061C:\Program Files (x86)\Samsung\Easy Settings\SmartSetting.exeC:\windows\syswow64\KERNELBASE.dll336e5ad7-57d3-11e5-a2b4-88532e9b6aa8

Error: (09/10/2015 04:51:01 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (09/10/2015 03:42:47 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003


CodeIntegrity:
===================================
Date: 2015-07-10 20:17:38.604
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Lark Anti-Spyware\LarkScan.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-07-10 20:17:38.354
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Lark Anti-Spyware\LarkScan.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-07-09 21:23:03.451
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Lark Anti-Spyware\LarkScan.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-07-09 21:23:03.321
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Lark Anti-Spyware\LarkScan.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-07-09 21:17:12.161
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Lark Anti-Spyware\LarkScan.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-07-09 21:17:12.081
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Lark Anti-Spyware\LarkScan.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-07-09 21:15:41.771
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Lark Anti-Spyware\LarkScan.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2015-07-09 21:15:41.651
Description: Windows is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files\Lark Anti-Spyware\LarkScan.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5-2467M CPU @ 1.60GHz
Percentage of memory in use: 48%
Total physical RAM: 3990.23 MB
Available physical RAM: 2057.86 MB
Total Virtual: 7978.67 MB
Available Virtual: 5635.89 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:443.88 GB) (Free:99.18 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 465.8 GB) (Disk ID: 8F9E4E3A)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=443.9 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=21.8 GB) - (Type=27)

========================================================
Disk: 1 (Size: 14.9 GB) (Disk ID: 74F02DEA)
Partition 1: (Not Active) - (Size=10.6 GB) - (Type=73)
Partition 2: (Not Active) - (Size=4.3 GB) - (Type=84)

==================== End of Addition.txt ============================

Tento disk na tom neni dobre (1) Hitachi HTS545050A7E380 : 500,1 GB [0/0/0, pd1]


Udelejte kontrolu programem HD Tune
Stahnete http://www.slunecnice.cz/sw/hd-tune/ , nainstalujte a spustte jako spravce (pokud vam pri instalaci nabidne nejaky doplnek, odmitnete ho!)
V tom okne kliknete na posledni zalozku - Error Scan (pokud bude zatrzeny quick scan, tak zatrzitko zruste) a kliknete na Start.
Kontrola bude nejakou dobu trvat. Dejte vedet, jestli tam bylo nejake cervene policko.
Taky se podivejte na zalozku Health a opiste mi (vyfotte), co se tam pise. Melo by tam byt OK http://www.google.cz/imgres?um=1&hl=cs& ... s:20,i:143

Dobrý den, zasílám v příloze výsledek ErrorScanu, pár červených políček tam je, bohužel obsah ze záložky Health se mi nepodařilo zjistit, protože se mi PC vždycky kousne (Neodpovídá) a musím PC vypnout natvrdo.

Ten disk je zraly na vymenu Rozhodne doporucuji pravidelne zalohovat, kdyby nahodou selhal.


Napiste mi velikost adresare plochy (C:\Users\Radmila\Plocha)


Vypnete trvale Windows Defender.


Otevrete si poznamkovy blok a zkopirujte do nej tento skript Vlevo nahore kliknete na napis Soubor
Kliknete na napis Ulozit jako...
Napiste spravne ten cerveny nazev fixlist a ulozte na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Spustte FRST jako spravce, kliknete na napis Fix a program vykona prikazy.
Po restartu pc by se mel objevit novy log - s nazvem fixlog, ten mi sem zase zkopirujte.

Dobrý večer, zasílám požadované. Tedy z toho harddisku radost nemám:-(


Fix result of Farbar Recovery Scan Tool (x64) Version:10-09-2015 01
Ran by Radmila (2015-09-14 20:00:10) Run:1
Running from C:\Users\Radmila\Desktop
Loaded Profiles: Radmila (Available Profiles: Radmila)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CloseProcesses:
CreateRestorePoint:

HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597552 2015-08-04] (Oracle Corporation)
HKU\S-1-5-21-198510878-2715960250-1679441269-1000\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
CHR HKU\S-1-5-21-198510878-2715960250-1679441269-1000\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

HKU\S-1-5-21-198510878-2715960250-1679441269-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://samsung.msn.com
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-07-23] (Google Inc.)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-07-23] (Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2015-07-23] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2015-07-23] (Google Inc.)

Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-07-07 82128]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-07-09 327296]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-12-30 194032]

Hosts:
EmptyTemp:
Reboot:
End
*****************

Processes closed successfully.
Error: (0) Failed to create a restore point.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\BCSSync => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value removed successfully
HKU\S-1-5-21-198510878-2715960250-1679441269-1000\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite => value removed successfully
"HKU\S-1-5-21-198510878-2715960250-1679441269-1000\SOFTWARE\Policies\Google" => key removed successfully
HKU\S-1-5-21-198510878-2715960250-1679441269-1000\Software\Microsoft\Internet Explorer\Main\\Default_Page_URL => value restored successfully
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}" => key removed successfully
"HKCR\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7}" => key removed successfully
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}" => key removed successfully
"HKCR\Wow6432Node\CLSID\{AA58ED58-01DD-4d91-8333-CF10577473F7}" => key removed successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => value removed successfully
"HKCR\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F}" => key removed successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{2318C2B1-4965-11d4-9B18-009027A5CD4F} => value removed successfully
"HKCR\Wow6432Node\CLSID\{2318C2B1-4965-11d4-9B18-009027A5CD4F}" => key removed successfully
C:\windows\Tasks\Adobe Flash Player Updater.job => moved successfully
C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
AdobeARMservice => service removed successfully
gupdate => service removed successfully
SkypeUpdate => service removed successfully
gupdatem => service removed successfully
gusvc => service removed successfully
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
EmptyTemp: => 169.3 MB temporary data Removed.


The system needed a reboot..

==== End of Fixlog 20:00:27 ====

Jaryn74 píše:Tedy z toho harddisku radost nemám:-(

To verim. Je mi lito, ze jsem napsal spatne zpravy. Vite jak to je. Muze bezet jeste dlouho, ale proste ty chyby tam jsou velke a jsou i poskozene sektory, takze bych mu uz moc neveril a bez zalohy bych to rozhodne neriskoval. A zlepsit se to nezlepsi, spis naopak.



Vsechny tyto programy - vcetne pripadne instalace - spoustejte jako spravce (kliknete na ne pravym mysidlem a zvolte - Spustit jako spravce)

vyosek píše: DelFix https://toolslib.net/downloads/finish/2/

• Stahnete a spustte
• Ponechte zatrzitkou pouze u volby Remove disinfection tools
• Kliknete na Run

Stahnete Ccleaner http://www.filehippo.com/download_ccleaner a spustte.
Pri instalaci pozor na toolbar (ci jine doplnky), jestli vam nabidne jeho instalaci, tak zruste zatrzitko.
Po spusteni se ocitnete ve funkci Cistic. Vlevo je spousta zatrzitek. Pozor dejte hlavne na kos, pokud nechate zatrzene, vzdy ho vysype.
Dale, podle toho jak je nastaven, smaze vsechna hesla ulozena na netu!!! Takze jestli mate nastavene, at si pocitac hesla pamatuje (coz neni pro bezpecnost dobre), budete je muset pak napsat znova rucne (napr mail, facebook, ruzna fora atd.)
Kliknete na Analyzovat a az dokonci analyzu, kliknete na Spustit Cleaner.
Potom kliknete vlevo na funkci Registry
Kliknete na Hledej problemy, kdyz najde, kliknete na Opravit problemy. Nabidne Vam zalohu, tu udelejte a ulozte ji tak, at ji v pripade potreby najdete.
Funkce Nastroje umoznuje odinstalovani programu. Je dukladnejsi nez samotny windows!
(Pokud je v pc vice uzivatelskych uctu, pouzijte program i v nich)

Defragmentujte disk(y) (SSD Disky ne!)
Stahnete program Defraggler https://www.piriform.com/defraggler/download/standard
Pri instalaci opet pozor na toolbar a dalsi nesmysly.
Po nainstalovani program spustte a kliknete na Analyzovat, po analyze kliknete na Defragmentovat a programek odvede svou praci.




Pak napiste, jak to s pc vypada.

Dobrý den,
vše jsem provedl dle Vašich rad. Po defragmentaci mi to dokonce psalo výsledek, že stav disku je dobrý....pouze dobrý:-) Řekl bych, že práce s PC je rychlejší, ale např. po nastartování PC, když spustím Firefox, tak zhruba 15-20 sekund čekám než prohlížeč plně naběhne, toto se tedy nezměnilo. Nejsem si jist jestli je to normální.
S pozdravem
JJ