VIRY.CZ

Dobrý den,
četl jsem na vašem fóru o podobném problému, který mám nyní i já. Proces MsMpEng.exe vytěžuje disk na 100% a nejsem téměř schopen s počítačem pracovat.

Děkuji předem za pomoc.

Petr

zde uvádím výpisy potřebných logů:

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:23-11-2015
Ran by Petr (administrator) on ACER-ASPIRE (24-11-2015 15:36:34)
Running from C:\Install\FRST
Loaded Profiles: Petr (Available Profiles: Petr & MSSQL$CSH2012)
Platform: Microsoft Windows 10 Pro (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Software602 a.s.) C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
(ABBYY Production LLC) C:\Program Files\ABBYY FineReader 12\NetworkLicenseServer.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX86\officeclicktorun.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(CANON INC.) C:\Windows\System32\CAP3RSK.EXE
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(CANON INC.) C:\Windows\System32\spool\drivers\w32x86\3\CAP3SWK.EXE
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Siliten) C:\Program Files\SilverCrest STMS 2219 A1 Driver\KbClient_FD2.exe
(Siliten) C:\Program Files\SilverCrest STMS 2219 A1 Driver\MouClient_FD2.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(CANON INC.) C:\Program Files\Canon\Canon MF Network Scan Utility\CNMFSUT.EXE
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(CANON INC.) C:\Windows\System32\spool\drivers\w32x86\3\CAP3LAK.EXE
(CANON INC.) C:\Windows\System32\spool\drivers\w32x86\3\CAP3SWK.EXE
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jucheck.exe
(Microsoft Corporation) C:\Windows\System32\backgroundTaskHost.exe
() C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1510.13020.0_x86__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Farbar) C:\Install\FRST\Farbar Recovery Scan Tool.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\OUTLOOK.EXE
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [12214528 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [Launch SilverCrest STMS 2219 A1-K] => C:\Program Files\SilverCrest STMS 2219 A1 Driver\KbClient_FD2.exe [3403256 2013-07-16] (Siliten)
HKLM\...\Run: [Launch SilverCrest STMS 2219 A1-M] => C:\Program Files\SilverCrest STMS 2219 A1 Driver\MouClient_FD2.exe [2841592 2013-07-16] (Siliten)
HKLM\...\Run: [IgfxTray] => C:\Windows\system32\igfxtray.exe
HKLM\...\Run: [HotKeysCmds] => C:\Windows\system32\hkcmd.exe
HKLM\...\Run: [Persistence] => C:\Windows\system32\igfxpers.exe
HKLM\...\Run: [CAP3ON] => C:\WINDOWS\system32\spool\drivers\w32x86\3\CAP3ONN.EXE [28288 2007-01-19] (CANON INC.)
HKLM\...\Run: [Bonus.SSR.FR12] => C:\Program Files\ABBYY FineReader 12\Bonus.ScreenshotReader.exe [1517088 2014-07-14] (ABBYY Production LLC.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6133520 2015-11-07] (AVAST Software)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3531952 2015-09-06] (Synaptics Incorporated)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [597040 2015-10-06] (Oracle Corporation)
HKLM\...\Run: [MFNetworkScanUtility] => C:\Program Files\Canon\Canon MF Network Scan Utility\CNMFSUT.EXE [484760 2009-12-15] (CANON INC.)
HKU\S-1-5-21-4151063491-2367327077-1708916229-1000\...\Run: [Sidebar] => C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
HKU\S-1-5-21-4151063491-2367327077-1708916229-1000\...\Run: [CSOB Business Connector] => "C:\Users\Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ČSOB\ČSOB Business Connector.appref-ms"
HKU\S-1-5-21-4151063491-2367327077-1708916229-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [48138880 2015-10-14] (Skype Technologies S.A.)
HKU\S-1-5-21-4151063491-2367327077-1708916229-1000\...\Run: [332300980E2D344CE9FF911C649296933E942748._service_run] => C:\Program Files\Google\Chrome\Application\chrome.exe [811848 2015-11-07] (Google Inc.)
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Petr\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\FileSyncShell.dll [2015-11-03] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Petr\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\FileSyncShell.dll [2015-11-03] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Petr\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\FileSyncShell.dll [2015-11-03] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2015-09-29] (AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Canon LASER SHOT LBP-1120 Status Window.LNK [2015-11-24]
ShortcutTarget: Canon LASER SHOT LBP-1120 Status Window.LNK -> C:\Windows\System32\spool\drivers\w32x86\3\CAP3LAK.EXE (CANON INC.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodecPackUpdateChecker.lnk [2015-11-24]
ShortcutTarget: CodecPackUpdateChecker.lnk -> C:\Windows\System32\C2MP\UpdateChecker.exe ()
Startup: C:\Users\Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Odeslat do OneNote.lnk [2015-11-24]
ShortcutTarget: Odeslat do OneNote.lnk -> C:\Program Files\Microsoft Office 15\root\office15\onenotem.exe (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 10.10.10.200 8.8.8.8
Tcpip\..\Interfaces\{20ada6e7-ca33-4f04-a2ef-f6fea7bb38b2}: [DhcpNameServer] 10.10.10.200 8.8.8.8
Tcpip\..\Interfaces\{3d955ffb-8405-406e-8001-930940a7e28f}: [DhcpNameServer] 10.10.10.200 8.8.8.8

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
SearchScopes: HKLM -> DefaultScope {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL =
SearchScopes: HKU\S-1-5-21-4151063491-2367327077-1708916229-1000 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKU\S-1-5-21-4151063491-2367327077-1708916229-1000 -> {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL =
SearchScopes: HKU\S-1-5-21-4151063491-2367327077-1708916229-1000 -> {ADE95AE3-F013-4A10-864A-70371746AF96} URL =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_65\bin\ssv.dll [2015-10-26] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-08-25] (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-10-26] (Oracle Corporation)
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

Edge:
======
Edge HomeButtonPage: HKU\S-1-5-21-4151063491-2367327077-1708916229-1000 -> hxxp://www.omniboxes.com/?type=hp&ts=144835041 ... R4936R4936

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.65.2 -> C:\Program Files\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll [2015-10-26] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.65.2 -> C:\Program Files\Java\jre1.8.0_65\bin\plugin2\npjp2.dll [2015-10-26] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-02-25] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin: @software602.cz/602XML Filler -> C:\Program Files\Software602\602XML\Filler\npfiller.dll [2012-08-06] (Software602 a.s.)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-14] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-14] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-09-29] [not signed]

Chrome:
=======
CHR HomePage: Default -> hxxp://www.omniboxes.com/?type=hp&ts=144835041 ... R4936R4936
CHR NewTab: Default -> "chrome-extension://llaficoajjainaijghjlofdfmbjpebpa/newtab.html"
CHR Profile: C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-04-21]
CHR Extension: (Dokumenty Google) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-04-22]
CHR Extension: (Disk Google) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (YouTube) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (Vyhledávání Google) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Avast SafePrice) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2015-10-30]
CHR Extension: (Tabulky Google) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-04-21]
CHR Extension: (Dokumenty Google offline) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-18]
CHR Extension: (Avast Online Security) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-11-03]
CHR Extension: (Google Keep – poznámky a seznamy) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2015-11-19]
CHR Extension: (Speed Dial [FVD] - New Tab Page, 3D, Sync...) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\llaficoajjainaijghjlofdfmbjpebpa [2015-11-14]
CHR Extension: (Rozšíření Odběry RSS (od Googlu)) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlbjncdgjeocebhnmkbbbdekmmmcbfjd [2015-11-19]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-25]
CHR Extension: (Gmail) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-22]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2015-08-25]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-08-25]
StartMenuInternet: Google Chrome - Chrome.exe

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 602XML Updater; C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s.)
R2 ABBYY.Licensing.FineReader.Professional.12.0; C:\Program Files\ABBYY FineReader 12\NetworkLicenseServer.exe [961744 2014-07-13] (ABBYY Production LLC)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-09-29] (AVAST Software)
R2 BcmBtRSupport; C:\WINDOWS\system32\BtwRSupportService.exe [1680088 2015-09-01] (Broadcom Corporation.)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX86\OfficeClickToRun.exe [1883320 2015-10-07] (Microsoft Corporation)
S2 MSSQL$CSH2012; c:\Program Files\Microsoft SQL Server\MSSQL11.CSH2012\MSSQL\Binn\sqlservr.exe [163008 2015-05-05] (Microsoft Corporation)
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [45568 2014-11-17] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [55808 2014-11-17] (Hewlett-Packard) [File not signed]
S4 SQLAgent$CSH2012; c:\Program Files\Microsoft SQL Server\MSSQL11.CSH2012\MSSQL\Binn\SQLAGENT.EXE [448704 2015-05-05] (Microsoft Corporation)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [218784 2015-09-06] (Synaptics Incorporated)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [277760 2015-07-10] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23264 2015-07-10] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AF15BDA; C:\WINDOWS\system32\DRIVERS\AF15BDA.sys [483200 2015-10-06] (ITETech )
R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [24016 2015-09-29] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [26096 2015-09-29] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [76000 2015-09-29] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [81728 2015-09-29] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49776 2015-09-29] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [794952 2015-11-07] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [435464 2015-11-07] (AVAST Software)
R2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [115640 2015-09-29] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [208664 2015-09-29] (AVAST Software)
S3 bcbtums; C:\WINDOWS\system32\drivers\bcbtums.sys [175320 2015-09-01] (Broadcom Corporation.)
S3 BthA2DP; C:\WINDOWS\system32\drivers\BthA2DP.sys [125440 2015-07-10] (Microsoft Corporation)
S3 btwampfl; C:\WINDOWS\system32\DRIVERS\btwampfl.sys [144600 2015-09-01] (Broadcom Corporation.)
S3 dot4; C:\WINDOWS\system32\DRIVERS\Dot4.sys [137632 2015-08-27] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\WINDOWS\System32\drivers\Dot4Prt.sys [22432 2015-08-27] (Windows (R) Win 7 DDK provider)
S3 DroidCam; C:\WINDOWS\system32\DRIVERS\droidcam.sys [29496 2015-10-23] (Dev47Apps)
S3 DroidCamVideo; C:\WINDOWS\system32\DRIVERS\droidcamvideo.sys [225592 2015-10-23] (Windows (R) Win 7 DDK provider)
S3 GemCCID; C:\WINDOWS\system32\DRIVERS\GemCCID.sys [108656 2015-08-24] (Gemalto)
R3 InputFilter_Hid_FlexDef2b; C:\WINDOWS\System32\drivers\InputFilter_FlexDef2b.sys [14848 2010-06-19] (Siliten)
R3 MouFilter_Mou_FlexDef4; C:\WINDOWS\System32\drivers\MouFilter_FlexDef4.sys [11776 2010-10-20] (Siliten)
R1 MpKsl7b2e304b; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{0E0121C1-912F-46F0-8088-EC0DC53A4914}\MpKsl7b2e304b.sys [39168 2015-11-24] (Microsoft Corporation)
S1 MpKslf82bd25e; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Default\MpKslf82bd25e.sys [39464 2015-08-08] () [File not signed]
S4 RsFx0200; C:\WINDOWS\System32\DRIVERS\RsFx0200.sys [268888 2012-02-11] (Microsoft Corporation)
S4 RsFx0201; C:\WINDOWS\System32\DRIVERS\RsFx0201.sys [271040 2014-05-15] (Microsoft Corporation)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [37024 2015-09-06] (Synaptics Incorporated)
S3 UdeCx; C:\WINDOWS\System32\drivers\udecx.sys [31744 2015-07-10] ()
R3 VmtkmHid_0; C:\WINDOWS\System32\drivers\VmtkmHid_0.sys [8704 2012-02-20] (0)
R3 VmtkmHid_MouFiltr_0; C:\WINDOWS\System32\drivers\VmtkmMouFiltr_0.sys [5632 2012-02-20] (0)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [37400 2015-07-10] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [245600 2015-07-10] (Microsoft Corporation)
R2 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [97632 2015-07-10] (Microsoft Corporation)
R3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [161792 2015-07-10] (Microsoft Corporation)
R3 yukonw8; C:\WINDOWS\System32\drivers\yk63x86.sys [249288 2015-07-10] (Marvell)
U3 idsvc; no ImagePath
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-11-24 15:30 - 2015-11-24 15:30 - 00000000 __SHD C:\found.002
2015-11-24 15:30 - 2015-11-24 15:30 - 00000000 __SHD C:\found.001
2015-11-24 15:30 - 2015-11-24 15:30 - 00000000 __SHD C:\found.000
2015-11-24 14:33 - 2015-11-24 15:36 - 00000000 ____D C:\FRST
2015-11-24 13:31 - 2015-11-24 13:31 - 00016148 _____ C:\WINDOWS\system32\ACER-ASPIRE_Petr_HistoryPrediction.bin
2015-11-24 12:56 - 2015-11-24 12:56 - 00005184 ____N C:\bootsqm.dat
2015-11-24 12:04 - 2015-11-24 12:04 - 00003286 _____ C:\Users\Petr\AppData\Local\recently-used.xbel
2015-11-24 09:13 - 2015-11-24 09:13 - 00000000 ___HD C:\OneDriveTemp
2015-11-24 08:49 - 2015-11-24 08:49 - 00000000 ___HD C:\WINDOWS\system32\CanonMF Uninstaller Information
2015-11-24 08:48 - 2015-11-24 08:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon
2015-11-24 08:48 - 2015-11-24 08:55 - 00000000 ____D C:\Program Files\Canon
2015-11-24 08:47 - 2011-05-10 10:29 - 00139264 _____ (CANON INC.) C:\WINDOWS\system32\CNCENPM.dll
2015-11-24 08:47 - 2011-05-10 10:29 - 00110592 _____ (CANON INC.) C:\WINDOWS\system32\CNCENPU.dll
2015-11-24 08:47 - 2009-06-18 18:43 - 00204800 _____ (CANON INC.) C:\WINDOWS\system32\CNCENPR.dll
2015-11-24 08:47 - 2009-06-11 22:47 - 00017861 _____ C:\WINDOWS\system32\CNCENPMK.chm
2015-11-24 08:37 - 2015-11-24 08:37 - 00000000 ____D C:\Users\Petr\AppData\Roaming\eCyber
2015-11-24 08:34 - 2015-11-24 11:10 - 00000001 _____ C:\WINDOWS\system32\en.html
2015-11-23 23:56 - 2015-11-23 23:56 - 00000000 ____D C:\ProgramData\redistpart
2015-11-23 23:51 - 2015-11-23 23:51 - 00000000 ____D C:\ProgramData\formatpart
2015-11-23 23:50 - 2015-11-23 23:50 - 00000000 ____D C:\ProgramData\launcher
2015-11-23 23:50 - 2015-11-23 23:50 - 00000000 ____D C:\ProgramData\explauncher
2015-11-23 23:48 - 2015-11-23 23:48 - 00000000 ____D C:\Program Files\Paragon Software
2015-11-23 23:46 - 2015-11-23 23:46 - 00000000 ____D C:\Users\Petr\AppData\Local\Downloaded Installations
2015-11-23 22:47 - 2015-11-23 22:47 - 00000000 _____ C:\Users\Petr\AppData\Local\{93322ED8-80CF-47E3-A555-65B81268858D}
2015-11-22 18:12 - 2015-11-22 21:48 - 00000000 ____D C:\Users\Petr\Downloads\fonty
2015-11-16 07:43 - 2015-11-16 07:43 - 00636472 _____ C:\WINDOWS\Minidump\111615-20218-01.dmp
2015-11-11 15:32 - 2015-11-11 15:47 - 00000000 ____D C:\4b92338d810618b67346fbb1
2015-11-11 14:10 - 2015-11-05 05:34 - 00558944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2015-11-11 14:10 - 2015-11-05 05:32 - 00479072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2015-11-11 14:10 - 2015-11-05 05:13 - 00095072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2015-11-11 14:10 - 2015-11-05 04:47 - 19326464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-11-11 14:10 - 2015-11-05 04:35 - 18803712 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-11-11 14:10 - 2015-11-05 04:23 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2015-11-11 14:09 - 2015-11-05 05:34 - 06265696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-11-11 14:09 - 2015-11-05 05:34 - 00337752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2015-11-11 14:09 - 2015-11-05 05:30 - 00961376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-11-11 14:09 - 2015-11-05 05:24 - 02878512 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-11-11 14:09 - 2015-11-05 05:23 - 00762888 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2015-11-11 14:09 - 2015-11-05 05:18 - 00539728 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-11-11 14:09 - 2015-11-05 05:14 - 00923840 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2015-11-11 14:09 - 2015-11-05 05:14 - 00024256 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2015-11-11 14:09 - 2015-11-05 04:49 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2015-11-11 14:09 - 2015-11-05 04:42 - 02647040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-11-11 14:09 - 2015-11-05 04:40 - 01918976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-11-11 14:09 - 2015-11-05 04:40 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\internetmail.dll
2015-11-11 14:09 - 2015-11-05 04:39 - 00260608 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-11-11 14:09 - 2015-11-05 04:35 - 02639872 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2015-11-11 14:09 - 2015-11-05 04:35 - 00821760 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-11-11 14:09 - 2015-11-05 04:34 - 00311296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2015-11-11 14:09 - 2015-11-05 04:33 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-11-11 14:09 - 2015-11-05 04:33 - 00650240 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-11-11 14:09 - 2015-11-05 04:32 - 00738304 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2015-11-11 14:09 - 2015-11-05 04:30 - 01918976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-11-11 14:09 - 2015-11-05 04:30 - 00767488 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2015-11-11 14:09 - 2015-11-05 04:30 - 00546816 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2015-11-11 14:09 - 2015-11-05 04:29 - 00491008 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-11-11 14:09 - 2015-11-05 04:28 - 11262976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-11-11 14:09 - 2015-11-05 04:27 - 02985472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-11-11 14:09 - 2015-11-05 04:27 - 02049536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2015-11-11 14:09 - 2015-11-05 04:27 - 01135104 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-11-11 14:09 - 2015-11-05 04:27 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2015-11-11 14:09 - 2015-11-05 04:24 - 01499136 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-11-11 14:09 - 2015-11-05 04:24 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2015-11-07 11:17 - 2015-11-07 11:17 - 00000000 ____D C:\Users\Petr\AppData\Local\CEF
2015-11-07 11:04 - 2015-11-24 12:53 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2015-11-07 11:04 - 2015-11-07 11:04 - 00000000 ____D C:\Program Files\Adobe
2015-11-04 17:47 - 2015-11-12 21:20 - 00000000 ____D C:\Users\Petr\Downloads\moje
2015-11-03 22:51 - 2015-11-03 22:51 - 00013797 _____ C:\Users\Petr\Documents\návrh na změnu příspěvků - SVJ 790-2.xlsx
2015-11-03 13:37 - 2015-11-03 13:37 - 00000852 _____ C:\Users\Petr\Downloads\Group-Office_email.reg
2015-10-27 20:21 - 2015-10-27 20:34 - 00000000 ____D C:\Users\Petr\AppData\Roaming\vlc
2015-10-27 20:19 - 2015-10-27 20:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-10-27 20:18 - 2015-10-27 20:18 - 00000000 ____D C:\Program Files\VideoLAN
2015-10-27 20:16 - 2015-10-27 20:31 - 28849904 _____ C:\Users\Petr\Downloads\vlc-2.2.1-win32.exe
2015-10-27 20:12 - 2015-10-27 20:12 - 00000000 ____D C:\Users\Petr\Tracing
2015-10-27 20:11 - 2015-10-29 06:59 - 00000000 ____D C:\Users\Petr\AppData\Roaming\Skype
2015-10-27 20:11 - 2015-10-27 20:11 - 00000000 ___RD C:\Program Files\Skype
2015-10-27 20:11 - 2015-10-27 20:11 - 00000000 ____D C:\Users\Petr\AppData\Local\Skype
2015-10-27 20:11 - 2015-10-27 20:11 - 00000000 ____D C:\ProgramData\Skype
2015-10-27 20:11 - 2015-10-27 20:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-10-27 20:11 - 2015-10-27 20:11 - 00000000 ____D C:\Program Files\Common Files\Skype
2015-10-27 16:48 - 2015-10-27 16:48 - 00002430 _____ C:\Users\Petr\Desktop\125.XLS
2015-10-26 17:55 - 2015-10-26 17:55 - 00000000 ____D C:\Program Files\Common Files\Java
2015-10-26 17:41 - 2015-11-24 09:30 - 00170200 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-10-26 17:41 - 2015-10-26 17:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-10-26 17:41 - 2015-10-26 17:41 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware
2015-10-26 17:41 - 2015-10-05 09:50 - 00094936 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-10-26 17:41 - 2015-10-05 09:50 - 00051928 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-10-26 17:41 - 2015-10-05 09:50 - 00023256 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2015-10-25 19:25 - 2015-10-25 19:29 - 00000000 ____D C:\Users\Petr\AppData\Roaming\Apple Computer
2015-10-25 19:25 - 2015-10-25 19:25 - 00000000 ____D C:\Users\Petr\AppData\Local\Apple Computer
2015-10-25 19:24 - 2015-10-25 19:24 - 00000000 ____D C:\ProgramData\Apple Computer
2015-10-25 19:22 - 2015-11-24 12:53 - 00002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2015-10-25 19:22 - 2015-10-25 19:22 - 00000000 ____D C:\Users\Petr\AppData\Local\Apple
2015-10-25 19:22 - 2015-10-25 19:22 - 00000000 ____D C:\Program Files\Bonjour
2015-10-25 19:22 - 2015-10-25 19:22 - 00000000 ____D C:\Program Files\Apple Software Update
2015-10-25 19:21 - 2015-10-25 19:42 - 00000000 ____D C:\Program Files\Common Files\Apple
2015-10-25 19:21 - 2015-10-25 19:22 - 00000000 ____D C:\ProgramData\Apple

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-11-24 15:19 - 2015-04-21 21:50 - 00000960 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-11-24 15:18 - 2015-02-25 19:04 - 00000000 ____D C:\Users\Petr\Documents\Soubory aplikace Outlook
2015-11-24 14:30 - 2015-10-11 20:34 - 00000000 ____D C:\Users\Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome
2015-11-24 14:30 - 2015-03-06 11:17 - 00007599 _____ C:\Users\Petr\AppData\Local\Resmon.ResmonCfg
2015-11-24 14:29 - 2015-02-19 14:25 - 00000000 ____D C:\Install
2015-11-24 14:16 - 2015-08-08 14:51 - 02479614 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-11-24 13:43 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\sru
2015-11-24 13:11 - 2015-08-08 16:44 - 00000000 ____D C:\Users\Petr\AppData\Local\Deployment
2015-11-24 13:11 - 2015-02-25 15:20 - 00000000 ___RD C:\Users\Petr\OneDrive
2015-11-24 13:08 - 2015-04-21 21:50 - 00000956 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-11-24 13:07 - 2015-02-19 13:23 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-11-24 13:06 - 2015-07-10 10:55 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-11-24 13:05 - 2015-08-08 14:41 - 00049286 _____ C:\WINDOWS\PFRO.log
2015-11-24 12:58 - 2015-08-08 14:53 - 00000000 ____D C:\Users\Petr
2015-11-24 12:53 - 2015-08-08 16:47 - 00002400 _____ C:\Users\Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-11-24 12:53 - 2015-08-08 16:40 - 00001051 _____ C:\Users\Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Volitelné funkce.lnk
2015-11-24 12:53 - 2015-08-08 15:33 - 00001520 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-11-24 12:53 - 2015-03-22 16:01 - 00001251 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
2015-11-24 12:53 - 2015-03-22 16:00 - 00001320 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
2015-11-24 12:53 - 2015-03-11 16:18 - 00001075 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Software602 Form Filler.lnk
2015-11-24 12:53 - 2015-03-04 08:35 - 00002034 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Toolbox 4.9.lnk
2015-11-24 12:51 - 2015-10-11 20:34 - 00002292 _____ C:\Users\Petr\Desktop\Spouštěč aplikací Chrome.lnk
2015-11-24 12:51 - 2015-08-25 17:15 - 00002182 _____ C:\Users\Public\Desktop\Avast SafeZone.lnk
2015-11-24 12:23 - 2015-07-10 07:59 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2015-11-24 12:02 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\Microsoft.NET
2015-11-24 08:48 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\twain_32
2015-11-24 08:34 - 2015-08-27 18:58 - 00000098 _____ C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
2015-11-24 08:33 - 2015-10-12 07:28 - 00000382 _____ C:\WINDOWS\system32\data.bin
2015-11-24 08:22 - 2015-06-22 18:40 - 00000000 ____D C:\Users\Petr\Documents\Mototrip-moje
2015-11-24 07:50 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-11-24 01:07 - 2015-02-19 21:04 - 00002332 ____H C:\Users\Petr\Documents\Default.rdp
2015-11-23 22:58 - 2015-07-10 10:53 - 00039896 _____ C:\WINDOWS\setupact.log
2015-11-23 22:41 - 2015-07-10 10:53 - 00299208 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-11-23 09:28 - 2015-02-26 18:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lexmark
2015-11-23 09:10 - 2015-02-20 07:04 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-11-20 21:35 - 2015-02-19 15:10 - 00000000 ____D C:\Users\Petr\Documents\moje
2015-11-20 14:13 - 2015-02-21 16:41 - 00000000 ____D C:\Users\Petr\Documents\Správa
2015-11-17 18:40 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\rescache
2015-11-16 16:13 - 2015-02-23 16:30 - 00000000 ____D C:\Users\Petr\.ica
2015-11-16 08:49 - 2015-03-02 08:59 - 00000000 ____D C:\Users\Petr\Downloads\Tichý2009- BN
2015-11-16 08:48 - 2015-03-02 08:59 - 00000000 ____D C:\Users\Petr\Downloads\Tichý
2015-11-16 07:43 - 2015-08-08 19:02 - 00000000 ____D C:\WINDOWS\Minidump
2015-11-16 07:43 - 2015-02-22 16:47 - 301934087 _____ C:\WINDOWS\MEMORY.DMP
2015-11-15 10:54 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-11-15 00:47 - 2015-03-19 22:46 - 00000000 ____D C:\Users\Petr\Documents\NT700v
2015-11-14 23:30 - 2015-03-04 11:23 - 00000000 ____D C:\csh-záloha
2015-11-11 15:53 - 2015-07-10 09:20 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-11-11 15:47 - 2015-02-19 20:10 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-11-11 15:32 - 2015-02-19 20:10 - 143250520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-11-07 20:39 - 2015-08-25 17:14 - 00794952 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys
2015-11-07 20:39 - 2015-08-25 17:14 - 00435464 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys
2015-11-07 11:17 - 2015-02-19 22:23 - 00000000 ____D C:\Users\Petr\AppData\Local\Adobe
2015-11-07 11:04 - 2015-02-19 22:26 - 00000000 ____D C:\ProgramData\Adobe
2015-11-07 11:04 - 2015-02-19 22:26 - 00000000 ____D C:\Program Files\Common Files\Adobe
2015-11-03 19:20 - 2015-10-05 10:44 - 00810488 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-11-03 19:20 - 2015-10-05 10:44 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2015-11-02 15:52 - 2015-03-02 09:02 - 00000000 ____D C:\Users\Petr\Downloads\Profit Real -Bonorum
2015-11-02 08:54 - 2015-08-08 14:53 - 00000000 ____D C:\Users\MSSQL$CSH2012
2015-11-02 08:20 - 2015-08-07 10:17 - 00000000 ____D C:\Users\Petr\Downloads\ČSOB
2015-10-31 07:31 - 2015-02-25 14:59 - 00000000 ____D C:\Program Files\Microsoft Office 15
2015-10-27 08:53 - 2015-08-28 13:35 - 00000227 _____ C:\Users\Petr\Desktop\Impuls.url
2015-10-27 08:53 - 2015-06-30 06:39 - 00000197 _____ C:\Users\Petr\Desktop\roční Inflace.url
2015-10-26 17:56 - 2015-02-19 22:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-10-26 17:55 - 2015-08-24 12:41 - 00000000 ____D C:\Users\Petr\.oracle_jre_usage
2015-10-26 17:55 - 2015-02-19 22:41 - 00097888 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll
2015-10-26 17:54 - 2015-02-19 22:41 - 00000000 ____D C:\Program Files\Java
2015-10-26 08:52 - 2015-10-15 09:29 - 00000000 ____D C:\Users\Petr\Downloads\ACER iconia tab A500

==================== Files in the root of some directories =======

2015-11-24 12:04 - 2015-11-24 12:04 - 0003286 _____ () C:\Users\Petr\AppData\Local\recently-used.xbel
2015-03-06 11:17 - 2015-11-24 14:30 - 0007599 _____ () C:\Users\Petr\AppData\Local\Resmon.ResmonCfg
2015-11-23 22:47 - 2015-11-23 22:47 - 0000000 _____ () C:\Users\Petr\AppData\Local\{93322ED8-80CF-47E3-A555-65B81268858D}
2015-08-08 14:46 - 2015-08-08 14:46 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2015-10-23 19:07 - 2015-10-23 19:22 - 0000033 _____ () C:\ProgramData\droidcam-settings
2015-08-27 18:58 - 2015-11-24 08:34 - 0000098 _____ () C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat

Files to move or delete:
====================
C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat

Some files in TEMP:
====================
C:\Users\Petr\AppData\Local\Temp\cct.dll
C:\Users\Petr\AppData\Local\Temp\JavaIC.dll
C:\Users\Petr\AppData\Local\Temp\jre-8u65-windows-au.exe
C:\Users\Petr\AppData\Local\Temp\msscct32.dll
C:\Users\Petr\AppData\Local\Temp\SetupDomovnikInt.exe
C:\Users\Petr\AppData\Local\Temp\SetupSyselSyslikInt.exe
C:\Users\Petr\AppData\Local\Temp\YSearchUtil.dll

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-11-20 07:58

==================== End of FRST.txt ============================

Additional scan result of Farbar Recovery Scan Tool (x86) Version:23-11-2015
Ran by Petr (2015-11-24 15:37:37)
Running from C:\Install\FRST
Microsoft Windows 10 Pro (X86) (2015-08-08 15:34:24)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-4151063491-2367327077-1708916229-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-4151063491-2367327077-1708916229-503 - Limited - Disabled)
Guest (S-1-5-21-4151063491-2367327077-1708916229-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-4151063491-2367327077-1708916229-1002 - Limited - Enabled)
Petr (S-1-5-21-4151063491-2367327077-1708916229-1000 - Administrator - Enabled) => C:\Users\Petr

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

32 Bit HP CIO Components Installer (Version: 18.1.4 - Hewlett-Packard) Hidden
ABBYY FineReader 12 Professional (HKLM\...\{F12000FE-0001-0000-0000-074957833700}) (Version: 12.1.426 - ABBYY Production LLC)
Adobe Acrobat Reader DC - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 15.009.20077 - Adobe Systems Incorporated)
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
Apple Mobile Device Support (HKLM\...\{9A629DCB-415D-4A50-85B9-5C2E4F8F74A8}) (Version: 9.1.0.6 - Apple Inc.)
Apple Software Update (HKLM\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
Avast Pro Antivirus (HKLM\...\Avast) (Version: 10.4.2233 - AVAST Software)
Balíček ovladače systému Windows - Lexmark International Printer (05/01/2013 2.8.0.0) (HKLM\...\D08FD8AD548FE2F2F6AE15C34F59D3F388D690EE) (Version: 05/01/2013 2.8.0.0 - Lexmark International)
Bonjour (HKLM\...\{D168AAD0-6686-47C1-B599-CDD4888B9D1A}) (Version: 3.1.0.1 - Apple Inc.)
Canon LASER SHOT LBP-1120 (HKLM\...\Canon LASER SHOT LBP-1120) (Version: - )
Canon MF Toolbox 4.9.1.1.mf17 (HKLM\...\{6767DFEE-8909-453A-B553-C7693912B2EB}) (Version: 4.9.1.1.mf17 - CANON INC.)
Canon MF8000 Series (HKLM\...\{5BE226B3-1722-4fd0-9E39-997712B68F67}) (Version: - )
Crypta 2.2.0 (HKLM\...\5139-7455-1198-4436) (Version: 2.2.0 - Česká pošta, s.p.)
ČSOB Business Connector (HKU\S-1-5-21-4151063491-2367327077-1708916229-1000\...\f360eb138a7c1f89) (Version: 1.3.0.2 - ČSOB)
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
Domovník klient pro Windows 2000/XP/Vista/7/8 (HKLM\...\Domovník CS klient_is1) (Version: 2.2.8 - CSH spol. s r.o.)
DS komunikátor (HKLM\...\DS komunikátor_is1) (Version: 2.00 - CSH spol. s r.o.)
FLV and Media Player 4.2.1.1 (HKLM\...\FLV and Media Player) (Version: 4.2.1.1 - Applian Technologies)
Fotogalerie (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Freez FLV to AVI/MPEG/WMV Converter (HKLM\...\Freez FLV to AVI/MPEG/WMV Converter v1.6_is1) (Version: 1.6 - www.smallvideosoft.com)
GDR 5343 for SQL Server 2012 (KB3045321) (HKLM\...\KB3045321) (Version: 11.2.5343.0 - Microsoft Corporation)
GemPcCCID (HKLM\...\{8BD3AFAF-636E-4516-A7E8-D57CCDBE28B8}) (Version: 2.0.3 - Gemalto)
Google Chrome (HKLM\...\Google Chrome) (Version: 46.0.2490.86 - Google Inc.)
Google Update Helper (Version: 1.3.28.15 - Google Inc.) Hidden
HID OMNIKEY 4040 PC/SC Driver (HKLM\...\{28F7D5D1-9639-41AB-9B22-E9B5FDFC58A4}) (Version: 3.0.0.2 - HID Global Corporation)
I.CA SecureStore 2.29.4 (HKLM\...\{313FF7F5-9193-4C71-A874-75B1A7673E69}) (Version: 2.29.4 - První certifikační autorita, a.s.)
Image Composite Editor (HKLM\...\{B29E2C62-496A-4F4F-9ED0-239FA15E1CB8}) (Version: 2.0.3 - Microsoft Corporation)
Inkscape 0.91 (HKLM\...\{81922150-317E-4BB0-A31D-FF1C14F707C5}) (Version: 0.91 - inkscape.org)
Java 8 Update 51 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218051F0}) (Version: 8.0.510 - Oracle Corporation)
Java 8 Update 65 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218065F0}) (Version: 8.0.650.17 - Oracle Corporation)
Lexmark Printer Driver Configuration Utility (HKLM\...\{3AC4D205-4CFA-6581-4EAA-48294CCCEA79}) (Version: 3.0.0.0 - Lexmark International, Inc.)
Lexmark Universal v2 Print Driver (HKLM\...\{72C6F541-7F46-4E67-9489-A9FB7CDDD2D5}) (Version: 2.8.0.0 - Lexmark International, Inc.)
Malwarebytes Anti-Malware verze 2.2.0.1024 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Microsoft Office 2013 pro podnikatele - cs-cz (HKLM\...\HomeBusinessRetail - cs-cz) (Version: 15.0.4763.1003 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files (HKLM\...\{D441BD04-E548-4F8E-97A4-1B66135BAAA8}) (Version: 10.1.2731.0 - Microsoft Corporation)
Microsoft SQL Server 2012 (HKLM\...\Microsoft SQL Server SQLServer2012) (Version: - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client (HKLM\...\{EDBA1369-52F2-4BBD-B740-C58FF9518356}) (Version: 11.2.5058.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Setup (English) (HKLM\...\{11778632-197C-4D05-8AF3-4C4626019712}) (Version: 11.2.5343.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL ScriptDom (HKLM\...\{F872269C-E25C-48D2-AFE5-516EBDC78121}) (Version: 11.2.5058.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft VSS Writer for SQL Server 2012 (HKLM\...\{2EB88B38-A700-411C-B45E-33A5EB81B936}) (Version: 11.2.5058.0 - Microsoft Corporation)
Movie Maker (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MPVaK - verze pro zpracovatele (HKLM\...\{AD06B94D-FC9C-4256-98DA-D32D1E257424}) (Version: - )
MSXML 4.0 SP3 Parser (KB2758694) (HKLM\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Nero Info (HKLM\...\{B791E0AB-87A9-41A4-8D98-D13C2E37D928}) (Version: 16.0.1003 - Nero AG)
Nero WaveEditor (HKLM\...\{EE430B59-A026-4C96-8906-E4C05B7FCC37}) (Version: 12.5.01500 - Nero AG)
Office 15 Click-to-Run Extensibility Component (Version: 15.0.4763.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4763.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (Version: 15.0.4763.1003 - Microsoft Corporation) Hidden
PDF reDirect (remove only) (HKLM\...\PDF reDirect) (Version: v2.5.2 - EXP Systems LLC)
Podpora aplikací Apple (32bitová) (HKLM\...\{649A1FD9-5892-46AD-8DF0-C4A43FF61CB7}) (Version: 4.1 - Apple Inc.)
Prerequisite installer (Version: 12.0.0005 - Nero AG) Hidden
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.51 - Piriform)
Service Pack 2 for SQL Server 2012 (KB2958429) (HKLM\...\KB2958429) (Version: 11.2.5058.0 - Microsoft Corporation)
SilverCrest STMS 2219 A1 Driver (HKLM\...\{1E494817-D81E-4B0E-B379-F34DF4DCDA58}) (Version: 1.2 - SilverCrest)
Skype™ 7.13 (HKLM\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.13.101 - Skype Technologies S.A.)
Software602 Form Filler (HKLM\...\{F8F79FE0-64EA-439C-A6AE-B1946A178F24}) (Version: 4.55 - Software602 a.s.)
SQL Server 2012 Common Files (Version: 11.2.5058.0 - Microsoft Corporation) Hidden
SQL Server 2012 Database Engine Services (Version: 11.0.2100.60 - Microsoft Corporation) Hidden
SQL Server 2012 Database Engine Services (Version: 11.2.5058.0 - Microsoft Corporation) Hidden
SQL Server 2012 Database Engine Shared (Version: 11.2.5058.0 - Microsoft Corporation) Hidden
SQL Server Browser for SQL Server 2012 (HKLM\...\{4B9E6EB0-0EED-4E74-9479-F982C3254F71}) (Version: 11.2.5058.0 - Microsoft Corporation)
Sql Server Customer Experience Improvement Program (Version: 11.2.5058.0 - Microsoft Corporation) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.19.1 - Synaptics Incorporated)
Sysel/Syslík klient pro Windows 2000/XP/Vista/7/8 (HKLM\...\Sysel/Syslík CS klient_is1) (Version: 5.3.4 - CSH spol. s r.o.)
Tabulka pro Windows 98/ME/NT/2000/XP/Vista (HKLM\...\Tabulka_is1) (Version: 3.5.5 - CSH)
upgrade Domovník pro Windows XP/Vista/7/8/10 (HKLM\...\Domovník CS_is1) (Version: 2.2.9 - CSH spol. s r.o.)
upgrade Sysel/Syslík pro Windows XP/Vista/7/8/10 (HKLM\...\Sysel/Syslík CS_is1) (Version: 5.3.5 - CSH spol. s r.o.)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Windows 7 Codec Pack 4.1.0 (HKLM\...\Windows 7 - Codec Pack) (Version: 4.1.0 - Windows 7 Codec Pack)
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.20 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== Restore Points =========================

20-11-2015 08:00:32 Windows Zálohování
20-11-2015 08:22:18 Windows Zálohování
23-11-2015 09:26:07 Removed Lexmark Universal v2 Print Driver
23-11-2015 09:27:24 Removed Zákaznická podpora
23-11-2015 23:47:26 Installed Paragon Partition Manager™ 14 Free.
24-11-2015 08:40:59 Removed Paragon Partition Manager™ 14 Free.

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:04 - 2009-06-10 22:39 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0894FD44-AD26-4D12-A157-A17E60159CBE} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {13144846-8113-483A-A09F-95D0B620C3D5} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {2247D311-FD71-4F8A-A777-3097D83EFAA8} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {225B934B-9D33-4AA1-8753-C46DC8976826} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {273640B4-DE59-4083-AE04-5B267863CE70} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {2DD11AA8-DA7A-49FE-B831-DC2E4C5E086C} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {3760EE3D-2893-42D6-B07C-4DF170D9440F} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {3AC97B70-5E7A-4A52-BC92-E04F04EB5F45} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {443AFFF3-DCD4-4BE0-A418-2A9CD9474447} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-04-21] (Google Inc.)
Task: {51F9E7F7-56E6-4AE6-8CF8-D1548A3FD59A} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {585F79DA-84C1-4E8A-BDCF-B2A705B9CDAF} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {5A190A33-4970-4240-9048-6E5B5BEDD3ED} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-04-21] (Google Inc.)
Task: {5A50FBBF-12E9-40E4-89E4-14EDCFF9879B} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {5F7A1BB9-C34D-487D-AE51-0918E00A49F0} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {66E573E7-24CC-4187-B5B0-FAF51CB04ECE} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-11-11] (Microsoft Corporation)
Task: {67B2C89B-E504-4F72-9592-CEC639CF8E87} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {6FEC5B19-5BE3-4725-A428-6C6431C1D760} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {72ACF8B6-F5FE-4D68-8A7F-6AAFA1BF8D95} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-09-29] (AVAST Software)
Task: {75E54862-738F-4024-9364-D432F65CD81D} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7986BE83-56AE-4CA9-AF41-B4D5ED94FAD2} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {7F726B61-0D88-4D48-8E38-0C5548FDB8B3} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {846B47E4-D22E-45B7-878A-E5789AA38533} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {881732DB-2A22-470A-8004-1D67BF0EEC00} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {8A947E50-C199-4961-A676-AF457ED55FB2} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
Task: {94E0BCCA-F286-4415-948E-1ADD41240FCD} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX86\OfficeC2RClient.exe [2015-10-07] (Microsoft Corporation)
Task: {991C9A96-B649-44BC-BBC8-2318F61405E2} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {A2609817-A4B4-4A51-B202-6588FE903FCF} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {A7C7AB71-093F-40AE-A0EB-F8EB51FA8E54} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {A805910E-C5B6-4F73-AE14-5011C299BE29} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX86\OfficeC2RClient.exe [2015-10-07] (Microsoft Corporation)
Task: {AB254A60-86EE-44EA-A128-6722673439B0} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B31D5C4F-3230-4067-838C-801C6CC1FFBD} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {C0CE3CE1-3EDA-4E07-BFAB-7E6A7920D6EF} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {C5D6134D-8889-401E-B9A0-D4979BD12AC5} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {CC39F27F-8DFF-4C6C-AC0E-5938DA6A8FEB} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {DB834779-B63B-4405-B06F-A88D8737A106} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {DD5A42A2-5BAD-453C-BFA7-BCB2A5644C86} - System32\Tasks\Nero\Nero Info => C:\Program Files\Common Files\Nero\Nero Info\NeroInfo.exe [2014-07-21] (Nero AG)
Task: {E272AFB9-5CDF-4A4E-83F7-DCA691746AB3} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2015-08-27] (Apple Inc.)
Task: {E775094B-1EF8-4A48-8913-AF4BC5A35FB3} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {EAAB82D5-28C0-449B-A776-2944B6B6F46F} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {EB1783C2-9F68-46B2-860F-15CD1500AE9D} - System32\Tasks\{7943D906-9689-49C2-97BE-B0DCCAE897C4} => pcalua.exe -a "C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" -c /uninstall ENTERPRISE /dll OSETUP.DLL
Task: {EF43D1FE-B455-486A-92BC-5B7D230E7657} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {EF66EAFA-91EE-4E68-A0A7-7C327A0783E0} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {F372796B-7EDB-4288-B74C-3E6FD8A61E23} - \Microsoft\Windows\File Classification Infrastructure\Property Definition Sync -> No File <==== ATTENTION
Task: {F7598A78-CED0-4143-91DF-21BADDC3FCF6} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {FD04D092-A7CA-432B-A5EA-BBAE81F2BACB} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2015-08-08 15:32 - 2015-08-08 15:32 - 00025088 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2015-09-29 08:38 - 2015-09-29 08:38 - 00103376 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-09-29 08:38 - 2015-09-29 08:38 - 00123976 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-11-23 22:40 - 2015-11-23 22:40 - 02994688 _____ () C:\Program Files\AVAST Software\Avast\defs\15112301\algo.dll
2010-06-06 15:20 - 2010-06-06 15:20 - 00065344 _____ () C:\WINDOWS\System32\PDFreDirectMonNT.dll
2015-10-13 05:46 - 2015-10-13 05:46 - 00073512 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-10-13 05:46 - 2015-10-13 05:46 - 01040144 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2015-08-20 08:04 - 2015-08-11 09:53 - 00301056 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2015-02-25 14:59 - 2015-10-07 18:01 - 00080040 _____ () C:\Program Files\Microsoft Office 15\ClientX86\ApiClient.dll
2015-10-02 08:56 - 2015-09-17 07:27 - 01766952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-10-02 08:56 - 2015-09-17 07:27 - 01766952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-10-02 08:56 - 2015-09-17 06:28 - 04317696 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-10-02 08:53 - 2015-09-17 06:25 - 00377856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-10-02 08:53 - 2015-09-17 06:25 - 01183232 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-10-02 08:56 - 2015-09-17 06:26 - 01425920 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-07-10 09:24 - 2015-07-10 09:24 - 00288768 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-09-29 08:38 - 2015-09-29 08:38 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-02-25 15:10 - 2015-02-25 15:10 - 00316576 _____ () C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\AppVIsvStream32.dll
2015-11-11 20:22 - 2015-11-07 05:36 - 01532744 _____ () C:\Program Files\Google\Chrome\Application\46.0.2490.86\libglesv2.dll
2015-11-11 20:22 - 2015-11-07 05:36 - 00081224 _____ () C:\Program Files\Google\Chrome\Application\46.0.2490.86\libegl.dll
2015-10-23 07:10 - 2015-10-23 07:10 - 02836992 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1510.13020.0_x86__8wekyb3d8bbwe\Calculator.exe
2015-02-25 14:59 - 2015-02-25 14:59 - 00316576 _____ () C:\Program Files\Microsoft Office 15\root\office15\AppVIsvStream32.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\TEMP:1CE11B51

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-4151063491-2367327077-1708916229-1000\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 10.10.10.200 - 8.8.8.8
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-4151063491-2367327077-1708916229-1000\...\StartupApproved\Run: => "Skype"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-32bit] => (Allow) LPort=808
FirewallRules: [{0DC62BD8-A190-4F13-BE7B-7C657D0920AB}] => (Allow) C:\Users\Petr\AppData\Local\Temp\nsoE218.tmpMoboInstall\mobogenieP2sp.exe
FirewallRules: [{39F1A4A9-7F9F-4952-AB2B-5207E889FC30}] => (Allow) C:\Users\Petr\AppData\Local\Temp\nsoE218.tmpMoboInstall\mobogenieP2sp.exe
FirewallRules: [{8AAFCC57-49CC-4136-B3A7-6AEDEF9B51AC}] => (Allow) LPort=1900
FirewallRules: [{0A83D3D3-58B9-43E5-AF33-966988AA37B9}] => (Allow) LPort=2869
FirewallRules: [{C2E0663F-1B3B-4731-BE4E-FFF7425F7EC5}] => (Allow) C:\Program Files\Windows Live\Contacts\wlcomm.exe
FirewallRules: [UDP Query User{D7ED9E2D-DAF4-4CFE-AF9C-979C11A520DE}C:\program files\windows sidebar\sidebar.exe] => (Allow) C:\program files\windows sidebar\sidebar.exe
FirewallRules: [TCP Query User{BC349DFC-3FE8-4ECC-8403-73FA4C982B09}C:\program files\windows sidebar\sidebar.exe] => (Allow) C:\program files\windows sidebar\sidebar.exe
FirewallRules: [{A389095A-B86A-49AB-8049-99240FA94B92}] => (Allow) C:\Program Files\Common Files\soft602\langserv.exe
FirewallRules: [{5726EC11-3248-4C0F-8416-28FC0A6F9758}] => (Allow) C:\Program Files\Common Files\soft602\langserv.exe
FirewallRules: [{24FF2863-104F-4727-A8A3-23B71D0CDCF5}] => (Allow) C:\Users\Petr\AppData\Local\Temp\RarSFX0\InstallationPackage\install\x86\installgui.exe
FirewallRules: [{53A5A464-EA86-4EE4-93EC-02D50EF7C965}] => (Allow) C:\Users\Petr\AppData\Local\Temp\RarSFX0\InstallationPackage\install\x86\installgui.exe
FirewallRules: [{C623B939-AF97-4A22-8444-A7D1F2268C1E}] => (Allow) C:\Users\Petr\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{95C07000-4A4A-4EF0-824A-C95C7AAA9D43}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
FirewallRules: [{DBD36B55-1102-4514-9054-35714AB00D2D}] => (Allow) LPort=25322
FirewallRules: [{39232AD7-1C4F-4CC3-97A1-734FF8856865}] => (Allow) LPort=25322
FirewallRules: [{1AD1EC7D-0004-48D6-B5EF-1230CFC22442}] => (Allow) c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{03A18481-B4DC-40A4-85A4-C4805DBCADED}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{4730675B-FDF3-402B-9D83-BF1DB17FD840}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{79EF59D4-9E9C-406F-8DF3-2B4C6ED55BB2}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{A1DD0DAC-9FDE-4E24-A567-2917C52F9EA0}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============

Name: MediaTek DA USB VCOM Port (COM5)
Description: MediaTek DA USB VCOM Port
Class Guid: {4d36e978-e325-11ce-bfc1-08002be10318}
Manufacturer: MediaTek Inc.
Service: usbser
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

==================== Event log errors: =========================

Application errors:
==================
Error: (11/24/2015 02:21:06 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program MicrosoftEdge.exe verze 11.0.10240.16590 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Zabezpečení a údržba.

ID procesu: 1fe0

Čas spuštění: 01d126b1a1b330bd

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe

ID hlášení: c4f809d8-92ad-11e5-940d-001d72cd63dc

Úplný název balíčku s chybou: Microsoft.MicrosoftEdge_20.10240.16384.0_neutral__8wekyb3d8bbwe

ID aplikace související s balíčkem s chybou: MicrosoftEdge

Error: (11/24/2015 02:17:14 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2484) (User: ACER-ASPIRE)
Description: Balíček Microsoft.MicrosoftEdge_20.10240.16384.0_neutral__8wekyb3d8bbwe+MicrosoftEdge se ukončil, protože jeho pozastavování trvalo moc dlouho.

Error: (11/24/2015 01:15:06 PM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (4992) Nový soubor protokolu se nedá vytvořit, protože databáze nemůže zapisovat na jednotku protokolu. Jednotka může být jen pro čtení, špatně nakonfigurovaná nebo poškozená nebo na ní nemusí být dost místa. Chyba: -1032

Error: (11/24/2015 01:15:06 PM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost (4992) Pokus o vytvoření souboru C:\WINDOWS\system32\edbtmp.log selhal. Došlo k systémové chybě 5 (0x00000005): Přístup byl odepřen. . Operace vytvoření souboru selže a dojde k chybě -1032 (0xfffffbf8).

Error: (11/24/2015 01:14:51 PM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (4992) Nový soubor protokolu se nedá vytvořit, protože databáze nemůže zapisovat na jednotku protokolu. Jednotka může být jen pro čtení, špatně nakonfigurovaná nebo poškozená nebo na ní nemusí být dost místa. Chyba: -1032

Error: (11/24/2015 01:14:51 PM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost (4992) Pokus o vytvoření souboru C:\WINDOWS\system32\edbtmp.log selhal. Došlo k systémové chybě 5 (0x00000005): Přístup byl odepřen. . Operace vytvoření souboru selže a dojde k chybě -1032 (0xfffffbf8).

Error: (11/24/2015 01:14:40 PM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (4992) Nový soubor protokolu se nedá vytvořit, protože databáze nemůže zapisovat na jednotku protokolu. Jednotka může být jen pro čtení, špatně nakonfigurovaná nebo poškozená nebo na ní nemusí být dost místa. Chyba: -1032

Error: (11/24/2015 01:14:40 PM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost (4992) Pokus o vytvoření souboru C:\WINDOWS\system32\edbtmp.log selhal. Došlo k systémové chybě 5 (0x00000005): Přístup byl odepřen. . Operace vytvoření souboru selže a dojde k chybě -1032 (0xfffffbf8).

Error: (11/24/2015 01:14:30 PM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (4992) Nový soubor protokolu se nedá vytvořit, protože databáze nemůže zapisovat na jednotku protokolu. Jednotka může být jen pro čtení, špatně nakonfigurovaná nebo poškozená nebo na ní nemusí být dost místa. Chyba: -1032

Error: (11/24/2015 01:14:30 PM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost (4992) Pokus o vytvoření souboru C:\WINDOWS\system32\edbtmp.log selhal. Došlo k systémové chybě 5 (0x00000005): Přístup byl odepřen. . Operace vytvoření souboru selže a dojde k chybě -1032 (0xfffffbf8).

System errors:
=============
Error: (11/24/2015 03:31:04 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.

Error: (11/24/2015 03:31:03 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.

Error: (11/24/2015 03:31:00 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.

Error: (11/24/2015 03:30:59 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.

Error: (11/24/2015 03:30:57 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.

Error: (11/24/2015 03:30:55 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.

Error: (11/24/2015 03:30:53 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.

Error: (11/24/2015 03:30:51 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.

Error: (11/24/2015 03:30:49 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.

Error: (11/24/2015 03:30:02 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.

CodeIntegrity:
===================================
Date: 2015-11-24 14:30:05.377
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-11-24 14:30:05.308
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-11-24 14:29:59.870
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-11-24 14:29:59.797
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-11-24 14:29:59.534
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-11-24 14:24:34.331
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-11-24 14:24:34.244
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-11-24 14:24:33.611
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-11-24 14:24:33.499
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-11-24 14:24:22.808
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

==================== Memory info ===========================

Processor: Intel(R) Pentium(R) Dual CPU T3200 @ 2.00GHz
Percentage of memory in use: 57%
Total physical RAM: 3000.86 MB
Available physical RAM: 1286.81 MB
Total Virtual: 6072.86 MB
Available Virtual: 3825.25 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:297.55 GB) (Free:228.76 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: 3EF09505)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=297.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)

==================== End of Addition.txt ============================

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

Dobré ráno,

tak jsem provedl, co jste popisoval, a výsledek posílám.

Děkuji, Petr Šára

# AdwCleaner v5.022 - Logfile created 25/11/2015 at 08:24:04
# Updated 22/11/2015 by Xplode
# Database : 2015-11-22.2 [Server]
# Operating system : Windows 10 Pro (x86)
# Username : Petr - ACER-ASPIRE
# Running from : C:\Install\adwcleaner_5.022.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****

***** [ Folders ] *****

[-] Folder Deleted : C:\Program Files\Applian Technologies
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinZipper
[-] Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Applian Technologies
[-] Folder Deleted : C:\Users\Petr\mobogenieP2sp
[-] Folder Deleted : C:\Users\Petr\AppData\Roaming\eCyber
[-] Folder Deleted : C:\Users\Petr\AppData\Roaming\WinZipper
[-] Folder Deleted : C:\Users\Petr\AppData\Roaming\FLV and Media Player
[-] Folder Deleted : C:\WINDOWS\system32\C2MP

***** [ Files ] *****

[-] File Deleted : C:\Users\Petr\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Picexa.lnk

***** [ DLLs ] *****

***** [ Shortcuts ] *****

***** [ Scheduled tasks ] *****

***** [ Registry ] *****

[-] Key Deleted : HKLM\SOFTWARE\Microsoft\RADAR\HeapLeakDetection\DiagnosedApplications\iSafeSvc2.exe
[-] Key Deleted : HKLM\SOFTWARE\Classes\Directory\shellex\ContextMenuHandlers\WinZipper
[-] Key Deleted : HKLM\SOFTWARE\Classes\Folder\shellex\ContextMenuHandlers\WinZipper
[-] Key Deleted : HKLM\SOFTWARE\Classes\lnkfile\shellex\ContextMenuHandlers\WinZipper
[-] Key Deleted : HKLM\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\WinZipper
[-] Key Deleted : HKLM\SYSTEM\CurrentControlSet\Services\Eventlog\Application\WdsManPro
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.001
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.7z
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.arj
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.bz2
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.bzip2
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.cab
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.cpio
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.deb
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.dmg
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.fat
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.gz
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.gzip
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.hfs
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.iso
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.lha
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.lzh
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.lzma
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.ntfs
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.rar
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.rpm
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.squashfs
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.swm
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.tar
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.taz
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.tbz
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.tbz2
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.tgz
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.tpz
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.txz
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.vhd
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.wim
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.xar
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.xz
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.z
[-] Key Deleted : HKLM\SOFTWARE\Classes\WinZipper.zip
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4F622628-7632-4B28-B184-D7BA0CA3273B}
[-] Key Deleted : HKLM\SOFTWARE\hdcode
[-] Key Deleted : HKLM\SOFTWARE\V9
[-] Key Deleted : HKLM\SOFTWARE\winzipersvc
[-] Key Deleted : HKLM\SOFTWARE\TSv
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\FLV and Media Player
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\v9.com
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\LowRegistry\DOMStorage\www.v9.com
[-] Key Deleted : HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\delta-homes.com
[-] Key Deleted : HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\www.delta-homes.com
[-] Key Deleted : HKCU\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\delta-homes.com
[-] Key Deleted : HKCU\SOFTWARE\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\www.delta-homes.com

***** [ Web browsers ] *****

[-] [C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : pdf-redirect.en.softonic.com
[-] [C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : correios.com.br
[-] [C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : omniboxes
[-] [C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Default_Search_Provider] Deleted : hxxp://www.omniboxes.com/webfavicon.ico
[-] [C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Homepage] Deleted : hxxp://www.omniboxes.com/?type=hp&ts=144835041 ... R4936R4936

*************************

:: "Tracing" keys removed
:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [5964 bytes] ##########

Dejte nový log FRST.

tady je výsledek znovu provedeného scanu. (Jinak, systém už zase běhá jak za starých časů a disk se přitom nenadře jako včera).

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:25-11-2015 02
Ran by Petr (administrator) on ACER-ASPIRE (26-11-2015 00:13:05)
Running from C:\Install\FRST
Loaded Profiles: Petr & MSSQL$CSH2012 (Available Profiles: Petr & MSSQL$CSH2012)
Platform: Microsoft Windows 10 Pro (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Software602 a.s.) C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
(ABBYY Production LLC) C:\Program Files\ABBYY FineReader 12\NetworkLicenseServer.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Broadcom Corporation.) C:\Windows\System32\BtwRSupportService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL11.CSH2012\MSSQL\Binn\sqlservr.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX86\officeclicktorun.exe
(CANON INC.) C:\Windows\System32\CAP3RSK.EXE
(CANON INC.) C:\Windows\System32\spool\drivers\w32x86\3\CAP3SWK.EXE
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Siliten) C:\Program Files\SilverCrest STMS 2219 A1 Driver\KbClient_FD2.exe
(Siliten) C:\Program Files\SilverCrest STMS 2219 A1 Driver\MouClient_FD2.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(CANON INC.) C:\Program Files\Canon\Canon MF Network Scan Utility\CNMFSUT.EXE
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(CANON INC.) C:\Windows\System32\spool\drivers\w32x86\3\CAP3LAK.EXE
(CANON INC.) C:\Windows\System32\spool\drivers\w32x86\3\CAP3SWK.EXE
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\csisyncclient.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\csisyncclient.exe
(Microsoft Corporation) C:\Windows\System32\wbem\unsecapp.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [12214528 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [Launch SilverCrest STMS 2219 A1-K] => C:\Program Files\SilverCrest STMS 2219 A1 Driver\KbClient_FD2.exe [3403256 2013-07-16] (Siliten)
HKLM\...\Run: [Launch SilverCrest STMS 2219 A1-M] => C:\Program Files\SilverCrest STMS 2219 A1 Driver\MouClient_FD2.exe [2841592 2013-07-16] (Siliten)
HKLM\...\Run: [IgfxTray] => C:\Windows\system32\igfxtray.exe
HKLM\...\Run: [HotKeysCmds] => C:\Windows\system32\hkcmd.exe
HKLM\...\Run: [Persistence] => C:\Windows\system32\igfxpers.exe
HKLM\...\Run: [CAP3ON] => C:\WINDOWS\system32\spool\drivers\w32x86\3\CAP3ONN.EXE [28288 2007-01-19] (CANON INC.)
HKLM\...\Run: [Bonus.SSR.FR12] => C:\Program Files\ABBYY FineReader 12\Bonus.ScreenshotReader.exe [1517088 2014-07-14] (ABBYY Production LLC.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6133520 2015-11-07] (AVAST Software)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3531952 2015-09-06] (Synaptics Incorporated)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [597040 2015-10-06] (Oracle Corporation)
HKLM\...\Run: [MFNetworkScanUtility] => C:\Program Files\Canon\Canon MF Network Scan Utility\CNMFSUT.EXE [484760 2009-12-15] (CANON INC.)
HKU\S-1-5-21-4151063491-2367327077-1708916229-1000\...\Run: [Sidebar] => C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
HKU\S-1-5-21-4151063491-2367327077-1708916229-1000\...\Run: [CSOB Business Connector] => "C:\Users\Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ČSOB\ČSOB Business Connector.appref-ms"
HKU\S-1-5-21-4151063491-2367327077-1708916229-1000\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [48138880 2015-10-14] (Skype Technologies S.A.)
HKU\S-1-5-21-4151063491-2367327077-1708916229-1000\...\Run: [332300980E2D344CE9FF911C649296933E942748._service_run] => C:\Program Files\Google\Chrome\Application\chrome.exe [811848 2015-11-07] (Google Inc.)
HKU\S-1-5-80-1045472278-1000938657-3572430047-3478307810-2150795864\...\Run: [Sidebar] => %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun
HKU\S-1-5-80-1045472278-1000938657-3572430047-3478307810-2150795864\...\RunOnce: [WAB Migrate] => C:\Program Files\Windows Mail\wab.exe [515072 2015-07-10] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive1] -> {F241C880-6982-4CE5-8CF7-7085BA96DA5A} => C:\Users\Petr\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\FileSyncShell.dll [2015-11-03] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive2] -> {A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E} => C:\Users\Petr\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\FileSyncShell.dll [2015-11-03] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [ SkyDrive3] -> {BBACC218-34EA-4666-9D7A-C78F2274A524} => C:\Users\Petr\AppData\Local\Microsoft\OneDrive\17.3.6201.1019\FileSyncShell.dll [2015-11-03] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll [2015-09-29] (AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Canon LASER SHOT LBP-1120 Status Window.LNK [2015-11-24]
ShortcutTarget: Canon LASER SHOT LBP-1120 Status Window.LNK -> C:\Windows\System32\spool\drivers\w32x86\3\CAP3LAK.EXE (CANON INC.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodecPackUpdateChecker.lnk [2015-11-24]
ShortcutTarget: CodecPackUpdateChecker.lnk -> C:\Windows\System32\C2MP\UpdateChecker.exe (No File)
Startup: C:\Users\Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Odeslat do OneNote.lnk [2015-11-24]
ShortcutTarget: Odeslat do OneNote.lnk -> C:\Program Files\Microsoft Office 15\root\office15\onenotem.exe (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 08 C:\Program Files\Bonjour\mdnsNSP.dll [122128 2015-08-12] (Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 10.10.10.200 8.8.8.8
Tcpip\..\Interfaces\{20ada6e7-ca33-4f04-a2ef-f6fea7bb38b2}: [DhcpNameServer] 10.10.10.200 8.8.8.8
Tcpip\..\Interfaces\{3d955ffb-8405-406e-8001-930940a7e28f}: [DhcpNameServer] 10.10.10.200 8.8.8.8

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com
SearchScopes: HKLM -> DefaultScope {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL =
SearchScopes: HKU\S-1-5-21-4151063491-2367327077-1708916229-1000 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKU\S-1-5-21-4151063491-2367327077-1708916229-1000 -> {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL =
SearchScopes: HKU\S-1-5-21-4151063491-2367327077-1708916229-1000 -> {ADE95AE3-F013-4A10-864A-70371746AF96} URL =
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_65\bin\ssv.dll [2015-10-26] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-08-25] (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-10-26] (Oracle Corporation)
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-02-03] (Microsoft Corporation)
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

Edge:
======
Edge HomeButtonPage: HKU\S-1-5-21-4151063491-2367327077-1708916229-1000 -> hxxp://www.omniboxes.com/?type=hp&ts=144835041 ... R4936R4936

FireFox:
========
FF Plugin: @java.com/DTPlugin,version=11.65.2 -> C:\Program Files\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll [2015-10-26] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.65.2 -> C:\Program Files\Java\jre1.8.0_65\bin\plugin2\npjp2.dll [2015-10-26] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-02-25] (Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin: @software602.cz/602XML Filler -> C:\Program Files\Software602\602XML\Filler\npfiller.dll [2012-08-06] (Software602 a.s.)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-14] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-14] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-09-29] [not signed]

Chrome:
=======
CHR NewTab: Default -> "chrome-extension://llaficoajjainaijghjlofdfmbjpebpa/newtab.html"
CHR Profile: C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-04-21]
CHR Extension: (Dokumenty Google) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-04-22]
CHR Extension: (Disk Google) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-21]
CHR Extension: (YouTube) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-24]
CHR Extension: (Vyhledávání Google) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Avast SafePrice) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2015-10-30]
CHR Extension: (Tabulky Google) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-04-21]
CHR Extension: (Dokumenty Google offline) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-18]
CHR Extension: (Avast Online Security) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-11-03]
CHR Extension: (Google Keep – poznámky a seznamy) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2015-11-24]
CHR Extension: (Speed Dial [FVD] - New Tab Page, 3D, Sync...) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\llaficoajjainaijghjlofdfmbjpebpa [2015-11-14]
CHR Extension: (Rozšíření Odběry RSS (od Googlu)) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\nlbjncdgjeocebhnmkbbbdekmmmcbfjd [2015-11-19]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-25]
CHR Extension: (Gmail) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-22]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2015-08-25]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-08-25]
StartMenuInternet: Google Chrome - Chrome.exe

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 602XML Updater; C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s.)
R2 ABBYY.Licensing.FineReader.Professional.12.0; C:\Program Files\ABBYY FineReader 12\NetworkLicenseServer.exe [961744 2014-07-13] (ABBYY Production LLC)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-09-29] (AVAST Software)
R2 BcmBtRSupport; C:\WINDOWS\system32\BtwRSupportService.exe [1680088 2015-09-01] (Broadcom Corporation.)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX86\OfficeClickToRun.exe [1895096 2015-10-13] (Microsoft Corporation)
R2 MSSQL$CSH2012; c:\Program Files\Microsoft SQL Server\MSSQL11.CSH2012\MSSQL\Binn\sqlservr.exe [163008 2015-05-05] (Microsoft Corporation)
S2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [45568 2014-11-17] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [55808 2014-11-17] (Hewlett-Packard) [File not signed]
S4 SQLAgent$CSH2012; c:\Program Files\Microsoft SQL Server\MSSQL11.CSH2012\MSSQL\Binn\SQLAGENT.EXE [448704 2015-05-05] (Microsoft Corporation)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [218784 2015-09-06] (Synaptics Incorporated)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [277760 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23264 2015-07-10] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AF15BDA; C:\WINDOWS\system32\DRIVERS\AF15BDA.sys [483200 2015-10-06] (ITETech )
R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [24016 2015-09-29] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [26096 2015-09-29] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [76000 2015-09-29] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [81728 2015-09-29] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49776 2015-09-29] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [794952 2015-11-07] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [435464 2015-11-07] (AVAST Software)
R2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [115640 2015-09-29] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [208664 2015-09-29] (AVAST Software)
S3 bcbtums; C:\WINDOWS\system32\drivers\bcbtums.sys [175320 2015-09-01] (Broadcom Corporation.)
S3 BthA2DP; C:\WINDOWS\system32\drivers\BthA2DP.sys [125440 2015-07-10] (Microsoft Corporation)
S3 btwampfl; C:\WINDOWS\system32\DRIVERS\btwampfl.sys [144600 2015-09-01] (Broadcom Corporation.)
S3 dot4; C:\WINDOWS\system32\DRIVERS\Dot4.sys [137632 2015-08-27] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\WINDOWS\System32\drivers\Dot4Prt.sys [22432 2015-08-27] (Windows (R) Win 7 DDK provider)
S3 DroidCam; C:\WINDOWS\system32\DRIVERS\droidcam.sys [29496 2015-10-23] (Dev47Apps)
S3 DroidCamVideo; C:\WINDOWS\system32\DRIVERS\droidcamvideo.sys [225592 2015-10-23] (Windows (R) Win 7 DDK provider)
S3 GemCCID; C:\WINDOWS\system32\DRIVERS\GemCCID.sys [108656 2015-08-24] (Gemalto)
R3 InputFilter_Hid_FlexDef2b; C:\WINDOWS\System32\drivers\InputFilter_FlexDef2b.sys [14848 2010-06-19] (Siliten)
R3 MouFilter_Mou_FlexDef4; C:\WINDOWS\System32\drivers\MouFilter_FlexDef4.sys [11776 2010-10-20] (Siliten)
S1 MpKslf82bd25e; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\Default\MpKslf82bd25e.sys [39464 2015-08-08] () [File not signed]
S4 RsFx0200; C:\WINDOWS\System32\DRIVERS\RsFx0200.sys [268888 2012-02-11] (Microsoft Corporation)
S4 RsFx0201; C:\WINDOWS\System32\DRIVERS\RsFx0201.sys [271040 2014-05-15] (Microsoft Corporation)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [37024 2015-09-06] (Synaptics Incorporated)
S3 UdeCx; C:\WINDOWS\System32\drivers\udecx.sys [31744 2015-07-10] ()
R3 VmtkmHid_0; C:\WINDOWS\System32\drivers\VmtkmHid_0.sys [8704 2012-02-20] (0)
R3 VmtkmHid_MouFiltr_0; C:\WINDOWS\System32\drivers\VmtkmMouFiltr_0.sys [5632 2012-02-20] (0)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [37400 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [245600 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [97632 2015-07-10] (Microsoft Corporation)
R3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [161792 2015-07-10] (Microsoft Corporation)
R3 yukonw8; C:\WINDOWS\System32\drivers\yk63x86.sys [249288 2015-07-10] (Marvell)
U3 idsvc; no ImagePath
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]
U3 wpcsvc; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-11-25 20:30 - 2015-11-25 20:30 - 00016148 _____ C:\WINDOWS\system32\ACER-ASPIRE_Petr_HistoryPrediction.bin
2015-11-25 19:51 - 2015-11-25 19:57 - 00044974 _____ C:\Users\Petr\Desktop\hlasování_648-50.xlsx
2015-11-25 11:11 - 2015-11-25 11:11 - 00003774 _____ C:\Users\Petr\AppData\Local\recently-used.xbel
2015-11-25 08:57 - 2015-11-25 08:57 - 00000000 ___HD C:\OneDriveTemp
2015-11-25 08:18 - 2015-11-25 08:24 - 00000000 ____D C:\AdwCleaner
2015-11-24 15:30 - 2015-11-24 15:30 - 00000000 __SHD C:\found.002
2015-11-24 15:30 - 2015-11-24 15:30 - 00000000 __SHD C:\found.001
2015-11-24 15:30 - 2015-11-24 15:30 - 00000000 __SHD C:\found.000
2015-11-24 14:33 - 2015-11-26 00:13 - 00000000 ____D C:\FRST
2015-11-24 08:49 - 2015-11-24 08:49 - 00000000 ___HD C:\WINDOWS\system32\CanonMF Uninstaller Information
2015-11-24 08:48 - 2015-11-24 08:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon
2015-11-24 08:48 - 2015-11-24 08:55 - 00000000 ____D C:\Program Files\Canon
2015-11-24 08:47 - 2011-05-10 10:29 - 00139264 _____ (CANON INC.) C:\WINDOWS\system32\CNCENPM.dll
2015-11-24 08:47 - 2011-05-10 10:29 - 00110592 _____ (CANON INC.) C:\WINDOWS\system32\CNCENPU.dll
2015-11-24 08:47 - 2009-06-18 18:43 - 00204800 _____ (CANON INC.) C:\WINDOWS\system32\CNCENPR.dll
2015-11-24 08:47 - 2009-06-11 22:47 - 00017861 _____ C:\WINDOWS\system32\CNCENPMK.chm
2015-11-24 08:34 - 2015-11-24 11:10 - 00000001 _____ C:\WINDOWS\system32\en.html
2015-11-23 23:56 - 2015-11-23 23:56 - 00000000 ____D C:\ProgramData\redistpart
2015-11-23 23:51 - 2015-11-23 23:51 - 00000000 ____D C:\ProgramData\formatpart
2015-11-23 23:50 - 2015-11-23 23:50 - 00000000 ____D C:\ProgramData\launcher
2015-11-23 23:50 - 2015-11-23 23:50 - 00000000 ____D C:\ProgramData\explauncher
2015-11-23 23:48 - 2015-11-23 23:48 - 00000000 ____D C:\Program Files\Paragon Software
2015-11-23 23:46 - 2015-11-23 23:46 - 00000000 ____D C:\Users\Petr\AppData\Local\Downloaded Installations
2015-11-23 22:47 - 2015-11-23 22:47 - 00000000 _____ C:\Users\Petr\AppData\Local\{93322ED8-80CF-47E3-A555-65B81268858D}
2015-11-22 18:12 - 2015-11-22 21:48 - 00000000 ____D C:\Users\Petr\Downloads\fonty
2015-11-20 17:18 - 2015-11-20 17:18 - 00047607 _____ C:\Users\Petr\Desktop\Pohyb_1152617941_na_uctu_2600074061-soud Gaborovi.pdf
2015-11-16 07:43 - 2015-11-16 07:43 - 00636472 _____ C:\WINDOWS\Minidump\111615-20218-01.dmp
2015-11-12 13:53 - 2015-11-12 13:53 - 00591680 _____ C:\Users\Petr\Documents\sb43-2015 novela k PENB a k 67-2013.pdf
2015-11-11 20:06 - 2015-11-11 20:06 - 00290847 _____ C:\Users\Petr\Desktop\sraz_2016.pdf
2015-11-11 15:32 - 2015-11-11 15:47 - 00000000 ____D C:\4b92338d810618b67346fbb1
2015-11-11 15:07 - 2015-11-11 15:07 - 00359953 _____ C:\Users\Petr\Downloads\620-1.pdf
2015-11-11 14:10 - 2015-11-05 05:34 - 00558944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mcupdate_GenuineIntel.dll
2015-11-11 14:10 - 2015-11-05 05:32 - 00479072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2015-11-11 14:10 - 2015-11-05 05:13 - 00095072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdx.sys
2015-11-11 14:10 - 2015-11-05 04:47 - 19326464 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-11-11 14:10 - 2015-11-05 04:35 - 18803712 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-11-11 14:10 - 2015-11-05 04:23 - 00441344 _____ (Microsoft Corporation) C:\WINDOWS\system32\dlnashext.dll
2015-11-11 14:09 - 2015-11-05 05:34 - 06265696 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-11-11 14:09 - 2015-11-05 05:34 - 00337752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\netio.sys
2015-11-11 14:09 - 2015-11-05 05:30 - 00961376 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-11-11 14:09 - 2015-11-05 05:24 - 02878512 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-11-11 14:09 - 2015-11-05 05:23 - 00762888 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.appcore.dll
2015-11-11 14:09 - 2015-11-05 05:18 - 00539728 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-11-11 14:09 - 2015-11-05 05:14 - 00923840 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2015-11-11 14:09 - 2015-11-05 05:14 - 00024256 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2015-11-11 14:09 - 2015-11-05 04:49 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2015-11-11 14:09 - 2015-11-05 04:42 - 02647040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2015-11-11 14:09 - 2015-11-05 04:40 - 01918976 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2015-11-11 14:09 - 2015-11-05 04:40 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\internetmail.dll
2015-11-11 14:09 - 2015-11-05 04:39 - 00260608 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2015-11-11 14:09 - 2015-11-05 04:35 - 02639872 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2015-11-11 14:09 - 2015-11-05 04:35 - 00821760 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2015-11-11 14:09 - 2015-11-05 04:34 - 00311296 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Usb.dll
2015-11-11 14:09 - 2015-11-05 04:33 - 01380864 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-11-11 14:09 - 2015-11-05 04:33 - 00650240 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-11-11 14:09 - 2015-11-05 04:32 - 00738304 _____ (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2015-11-11 14:09 - 2015-11-05 04:30 - 01918976 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-11-11 14:09 - 2015-11-05 04:30 - 00767488 _____ (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2015-11-11 14:09 - 2015-11-05 04:30 - 00546816 _____ (Microsoft Corporation) C:\WINDOWS\system32\usermgr.dll
2015-11-11 14:09 - 2015-11-05 04:29 - 00491008 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-11-11 14:09 - 2015-11-05 04:28 - 11262976 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-11-11 14:09 - 2015-11-05 04:27 - 02985472 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-11-11 14:09 - 2015-11-05 04:27 - 02049536 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2015-11-11 14:09 - 2015-11-05 04:27 - 01135104 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-11-11 14:09 - 2015-11-05 04:27 - 00464896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.dll
2015-11-11 14:09 - 2015-11-05 04:24 - 01499136 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-11-11 14:09 - 2015-11-05 04:24 - 00115712 _____ (Microsoft Corporation) C:\WINDOWS\system32\dssvc.dll
2015-11-08 15:13 - 2015-11-08 15:13 - 00321605 _____ C:\Users\Petr\Downloads\zamer-2015-25.pdf
2015-11-07 11:17 - 2015-11-07 11:17 - 00000000 ____D C:\Users\Petr\AppData\Local\CEF
2015-11-07 11:04 - 2015-11-24 12:53 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2015-11-07 11:04 - 2015-11-07 11:04 - 00000000 ____D C:\Program Files\Adobe
2015-11-06 14:08 - 2015-11-06 14:08 - 02900152 _____ C:\Users\Petr\Downloads\zpravodaj-2015-2.pdf
2015-11-04 17:47 - 2015-11-12 21:20 - 00000000 ____D C:\Users\Petr\Downloads\moje
2015-11-04 13:50 - 2015-11-04 13:50 - 00060171 _____ C:\Users\Petr\Downloads\podani.pdf
2015-11-03 22:51 - 2015-11-03 22:51 - 00013797 _____ C:\Users\Petr\Documents\návrh na změnu příspěvků - SVJ 790-2.xlsx
2015-11-03 13:37 - 2015-11-03 13:37 - 00000852 _____ C:\Users\Petr\Downloads\Group-Office_email.reg
2015-10-30 15:59 - 2015-10-30 15:59 - 00103897 _____ C:\Users\Petr\Downloads\os-omm-0261-2015.pdf
2015-10-27 20:21 - 2015-10-27 20:34 - 00000000 ____D C:\Users\Petr\AppData\Roaming\vlc
2015-10-27 20:19 - 2015-10-27 20:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\VideoLAN
2015-10-27 20:18 - 2015-10-27 20:18 - 00000000 ____D C:\Program Files\VideoLAN
2015-10-27 20:16 - 2015-10-27 20:31 - 28849904 _____ C:\Users\Petr\Downloads\vlc-2.2.1-win32.exe
2015-10-27 20:12 - 2015-10-27 20:12 - 00000000 ____D C:\Users\Petr\Tracing
2015-10-27 20:11 - 2015-10-29 06:59 - 00000000 ____D C:\Users\Petr\AppData\Roaming\Skype
2015-10-27 20:11 - 2015-10-27 20:11 - 00000000 ___RD C:\Program Files\Skype
2015-10-27 20:11 - 2015-10-27 20:11 - 00000000 ____D C:\Users\Petr\AppData\Local\Skype
2015-10-27 20:11 - 2015-10-27 20:11 - 00000000 ____D C:\ProgramData\Skype
2015-10-27 20:11 - 2015-10-27 20:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
2015-10-27 20:11 - 2015-10-27 20:11 - 00000000 ____D C:\Program Files\Common Files\Skype
2015-10-27 16:48 - 2015-10-27 16:48 - 00002430 _____ C:\Users\Petr\Desktop\125.XLS

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-11-26 00:10 - 2015-02-25 19:04 - 00000000 ____D C:\Users\Petr\Documents\Soubory aplikace Outlook
2015-11-25 23:19 - 2015-04-21 21:50 - 00000960 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-11-25 21:19 - 2015-04-21 21:50 - 00000956 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-11-25 20:22 - 2015-06-22 18:40 - 00000000 ____D C:\Users\Petr\Documents\Mototrip-moje
2015-11-25 11:45 - 2015-08-08 16:34 - 00000000 ____D C:\Users\Petr\AppData\Local\Packages
2015-11-25 08:58 - 2015-08-08 16:44 - 00000000 ____D C:\Users\Petr\AppData\Local\Deployment
2015-11-25 08:58 - 2015-07-10 09:28 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2015-11-25 08:57 - 2015-02-25 15:20 - 00000000 ___RD C:\Users\Petr\OneDrive
2015-11-25 08:55 - 2015-07-10 09:27 - 00000000 ____D C:\WINDOWS\INF
2015-11-25 08:55 - 2015-02-25 14:59 - 00000000 ____D C:\Program Files\Microsoft Office 15
2015-11-25 08:54 - 2015-07-10 10:55 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-11-25 08:53 - 2015-07-10 07:59 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2015-11-25 08:24 - 2015-08-08 14:53 - 00000000 ____D C:\Users\Petr
2015-11-25 08:17 - 2015-08-08 14:51 - 02479614 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-11-25 08:17 - 2015-07-10 14:19 - 00999066 _____ C:\WINDOWS\system32\perfh005.dat
2015-11-25 08:17 - 2015-07-10 14:19 - 00252608 _____ C:\WINDOWS\system32\perfc005.dat
2015-11-25 08:15 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-11-25 08:14 - 2015-02-19 14:25 - 00000000 ____D C:\Install
2015-11-24 14:41 - 2015-07-10 07:59 - 00000000 ____D C:\Windows
2015-11-24 14:30 - 2015-10-11 20:34 - 00000000 ____D C:\Users\Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome
2015-11-24 14:30 - 2015-03-06 11:17 - 00007599 _____ C:\Users\Petr\AppData\Local\Resmon.ResmonCfg
2015-11-24 12:53 - 2015-10-25 19:22 - 00002535 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Apple Software Update.lnk
2015-11-24 12:53 - 2015-08-08 16:47 - 00002400 _____ C:\Users\Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-11-24 12:53 - 2015-08-08 16:40 - 00001051 _____ C:\Users\Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Volitelné funkce.lnk
2015-11-24 12:53 - 2015-08-08 15:33 - 00001520 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2015-11-24 12:53 - 2015-03-22 16:01 - 00001251 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Movie Maker.lnk
2015-11-24 12:53 - 2015-03-22 16:00 - 00001320 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Photo Gallery.lnk
2015-11-24 12:53 - 2015-03-11 16:18 - 00001075 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Software602 Form Filler.lnk
2015-11-24 12:53 - 2015-03-04 08:35 - 00002034 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Toolbox 4.9.lnk
2015-11-24 12:51 - 2015-10-11 20:34 - 00002292 _____ C:\Users\Petr\Desktop\Spouštěč aplikací Chrome.lnk
2015-11-24 12:51 - 2015-08-25 17:15 - 00002182 _____ C:\Users\Public\Desktop\Avast SafeZone.lnk
2015-11-24 12:24 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\AppCompat
2015-11-24 09:30 - 2015-10-26 17:41 - 00170200 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-11-24 08:34 - 2015-08-27 18:58 - 00000098 _____ C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
2015-11-24 08:33 - 2015-10-12 07:28 - 00000382 _____ C:\WINDOWS\system32\data.bin
2015-11-24 07:50 - 2015-07-10 09:28 - 00000000 ___HD C:\Program Files\WindowsApps
2015-11-24 01:07 - 2015-02-19 21:04 - 00002332 ____H C:\Users\Petr\Documents\Default.rdp
2015-11-23 22:41 - 2015-07-10 10:53 - 00299208 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-11-23 09:28 - 2015-02-26 18:56 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lexmark
2015-11-23 09:10 - 2015-02-20 07:04 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-11-20 21:35 - 2015-02-19 15:10 - 00000000 ____D C:\Users\Petr\Documents\moje
2015-11-20 14:13 - 2015-02-21 16:41 - 00000000 ____D C:\Users\Petr\Documents\Správa
2015-11-17 18:40 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\rescache
2015-11-16 16:13 - 2015-02-23 16:30 - 00000000 ____D C:\Users\Petr\.ica
2015-11-16 08:49 - 2015-03-02 08:59 - 00000000 ____D C:\Users\Petr\Downloads\Tichý2009- BN
2015-11-16 08:48 - 2015-03-02 08:59 - 00000000 ____D C:\Users\Petr\Downloads\Tichý
2015-11-16 07:43 - 2015-08-08 19:02 - 00000000 ____D C:\WINDOWS\Minidump
2015-11-16 07:43 - 2015-02-22 16:47 - 301934087 _____ C:\WINDOWS\MEMORY.DMP
2015-11-15 10:54 - 2015-07-10 09:28 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-11-15 00:47 - 2015-03-19 22:46 - 00000000 ____D C:\Users\Petr\Documents\NT700v
2015-11-14 23:30 - 2015-03-04 11:23 - 00000000 ____D C:\csh-záloha
2015-11-11 15:53 - 2015-07-10 09:20 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-11-11 15:47 - 2015-02-19 20:10 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-11-11 15:32 - 2015-02-19 20:10 - 143250520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-11-07 20:39 - 2015-08-25 17:14 - 00794952 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsnx.sys
2015-11-07 20:39 - 2015-08-25 17:14 - 00435464 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys
2015-11-07 11:17 - 2015-02-19 22:23 - 00000000 ____D C:\Users\Petr\AppData\Local\Adobe
2015-11-07 11:04 - 2015-02-19 22:26 - 00000000 ____D C:\ProgramData\Adobe
2015-11-07 11:04 - 2015-02-19 22:26 - 00000000 ____D C:\Program Files\Common Files\Adobe
2015-11-03 19:20 - 2015-10-05 10:44 - 00810488 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-11-03 19:20 - 2015-10-05 10:44 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2015-11-02 15:52 - 2015-03-02 09:02 - 00000000 ____D C:\Users\Petr\Downloads\Profit Real -Bonorum
2015-11-02 08:54 - 2015-08-08 14:53 - 00000000 ____D C:\Users\MSSQL$CSH2012
2015-11-02 08:20 - 2015-08-07 10:17 - 00000000 ____D C:\Users\Petr\Downloads\ČSOB
2015-10-27 08:53 - 2015-08-28 13:35 - 00000227 _____ C:\Users\Petr\Desktop\Impuls.url
2015-10-27 08:53 - 2015-06-30 06:39 - 00000197 _____ C:\Users\Petr\Desktop\roční Inflace.url

==================== Files in the root of some directories =======

2015-11-25 11:11 - 2015-11-25 11:11 - 0003774 _____ () C:\Users\Petr\AppData\Local\recently-used.xbel
2015-03-06 11:17 - 2015-11-24 14:30 - 0007599 _____ () C:\Users\Petr\AppData\Local\Resmon.ResmonCfg
2015-11-23 22:47 - 2015-11-23 22:47 - 0000000 _____ () C:\Users\Petr\AppData\Local\{93322ED8-80CF-47E3-A555-65B81268858D}
2015-08-08 14:46 - 2015-08-08 14:46 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2015-10-23 19:07 - 2015-10-23 19:22 - 0000033 _____ () C:\ProgramData\droidcam-settings
2015-08-27 18:58 - 2015-11-24 08:34 - 0000098 _____ () C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat

Files to move or delete:
====================
C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat

Some files in TEMP:
====================
C:\Users\Petr\AppData\Local\Temp\cct.dll
C:\Users\Petr\AppData\Local\Temp\JavaIC.dll
C:\Users\Petr\AppData\Local\Temp\jre-8u65-windows-au.exe
C:\Users\Petr\AppData\Local\Temp\msscct32.dll
C:\Users\Petr\AppData\Local\Temp\SetupDomovnikInt.exe
C:\Users\Petr\AppData\Local\Temp\SetupSyselSyslikInt.exe
C:\Users\Petr\AppData\Local\Temp\sqlite3.dll
C:\Users\Petr\AppData\Local\Temp\YSearchUtil.dll

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-11-20 07:58

==================== End of FRST.txt ============================

Additional scan result of Farbar Recovery Scan Tool (x86) Version:25-11-2015 02
Ran by Petr (2015-11-26 00:13:57)
Running from C:\Install\FRST
Microsoft Windows 10 Pro (X86) (2015-08-08 15:34:24)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-4151063491-2367327077-1708916229-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-4151063491-2367327077-1708916229-503 - Limited - Disabled)
Guest (S-1-5-21-4151063491-2367327077-1708916229-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-4151063491-2367327077-1708916229-1002 - Limited - Enabled)
Petr (S-1-5-21-4151063491-2367327077-1708916229-1000 - Administrator - Enabled) => C:\Users\Petr

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

32 Bit HP CIO Components Installer (Version: 18.1.4 - Hewlett-Packard) Hidden
ABBYY FineReader 12 Professional (HKLM\...\{F12000FE-0001-0000-0000-074957833700}) (Version: 12.1.426 - ABBYY Production LLC)
Adobe Acrobat Reader DC - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 15.009.20077 - Adobe Systems Incorporated)
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
Apple Mobile Device Support (HKLM\...\{9A629DCB-415D-4A50-85B9-5C2E4F8F74A8}) (Version: 9.1.0.6 - Apple Inc.)
Apple Software Update (HKLM\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
Avast Pro Antivirus (HKLM\...\Avast) (Version: 10.4.2233 - AVAST Software)
Balíček ovladače systému Windows - Lexmark International Printer (05/01/2013 2.8.0.0) (HKLM\...\D08FD8AD548FE2F2F6AE15C34F59D3F388D690EE) (Version: 05/01/2013 2.8.0.0 - Lexmark International)
Bonjour (HKLM\...\{D168AAD0-6686-47C1-B599-CDD4888B9D1A}) (Version: 3.1.0.1 - Apple Inc.)
Canon LASER SHOT LBP-1120 (HKLM\...\Canon LASER SHOT LBP-1120) (Version: - )
Canon MF Toolbox 4.9.1.1.mf17 (HKLM\...\{6767DFEE-8909-453A-B553-C7693912B2EB}) (Version: 4.9.1.1.mf17 - CANON INC.)
Canon MF8000 Series (HKLM\...\{5BE226B3-1722-4fd0-9E39-997712B68F67}) (Version: - )
Crypta 2.2.0 (HKLM\...\5139-7455-1198-4436) (Version: 2.2.0 - Česká pošta, s.p.)
ČSOB Business Connector (HKU\S-1-5-21-4151063491-2367327077-1708916229-1000\...\f360eb138a7c1f89) (Version: 1.3.0.2 - ČSOB)
D3DX10 (Version: 15.4.2368.0902 - Microsoft) Hidden
Domovník klient pro Windows 2000/XP/Vista/7/8 (HKLM\...\Domovník CS klient_is1) (Version: 2.2.8 - CSH spol. s r.o.)
DS komunikátor (HKLM\...\DS komunikátor_is1) (Version: 2.00 - CSH spol. s r.o.)
Fotogalerie (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Freez FLV to AVI/MPEG/WMV Converter (HKLM\...\Freez FLV to AVI/MPEG/WMV Converter v1.6_is1) (Version: 1.6 - http://www.smallvideosoft.com)
GDR 5343 for SQL Server 2012 (KB3045321) (HKLM\...\KB3045321) (Version: 11.2.5343.0 - Microsoft Corporation)
GemPcCCID (HKLM\...\{8BD3AFAF-636E-4516-A7E8-D57CCDBE28B8}) (Version: 2.0.3 - Gemalto)
Google Chrome (HKLM\...\Google Chrome) (Version: 46.0.2490.86 - Google Inc.)
Google Update Helper (Version: 1.3.28.15 - Google Inc.) Hidden
HID OMNIKEY 4040 PC/SC Driver (HKLM\...\{28F7D5D1-9639-41AB-9B22-E9B5FDFC58A4}) (Version: 3.0.0.2 - HID Global Corporation)
I.CA SecureStore 2.29.4 (HKLM\...\{313FF7F5-9193-4C71-A874-75B1A7673E69}) (Version: 2.29.4 - První certifikační autorita, a.s.)
Image Composite Editor (HKLM\...\{B29E2C62-496A-4F4F-9ED0-239FA15E1CB8}) (Version: 2.0.3 - Microsoft Corporation)
Inkscape 0.91 (HKLM\...\{81922150-317E-4BB0-A31D-FF1C14F707C5}) (Version: 0.91 - inkscape.org)
Java 8 Update 51 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218051F0}) (Version: 8.0.510 - Oracle Corporation)
Java 8 Update 65 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218065F0}) (Version: 8.0.650.17 - Oracle Corporation)
Lexmark Printer Driver Configuration Utility (HKLM\...\{3AC4D205-4CFA-6581-4EAA-48294CCCEA79}) (Version: 3.0.0.0 - Lexmark International, Inc.)
Lexmark Universal v2 Print Driver (HKLM\...\{72C6F541-7F46-4E67-9489-A9FB7CDDD2D5}) (Version: 2.8.0.0 - Lexmark International, Inc.)
Malwarebytes Anti-Malware verze 2.2.0.1024 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.0.1024 - Malwarebytes)
Microsoft Office 2013 pro podnikatele - cs-cz (HKLM\...\HomeBusinessRetail - cs-cz) (Version: 15.0.4771.1004 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server 2008 Setup Support Files (HKLM\...\{D441BD04-E548-4F8E-97A4-1B66135BAAA8}) (Version: 10.1.2731.0 - Microsoft Corporation)
Microsoft SQL Server 2012 (HKLM\...\Microsoft SQL Server SQLServer2012) (Version: - Microsoft Corporation)
Microsoft SQL Server 2012 Native Client (HKLM\...\{EDBA1369-52F2-4BBD-B740-C58FF9518356}) (Version: 11.2.5058.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Setup (English) (HKLM\...\{11778632-197C-4D05-8AF3-4C4626019712}) (Version: 11.2.5343.0 - Microsoft Corporation)
Microsoft SQL Server 2012 Transact-SQL ScriptDom (HKLM\...\{F872269C-E25C-48D2-AFE5-516EBDC78121}) (Version: 11.2.5058.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft VSS Writer for SQL Server 2012 (HKLM\...\{2EB88B38-A700-411C-B45E-33A5EB81B936}) (Version: 11.2.5058.0 - Microsoft Corporation)
Movie Maker (Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
MPVaK - verze pro zpracovatele (HKLM\...\{AD06B94D-FC9C-4256-98DA-D32D1E257424}) (Version: - )
MSXML 4.0 SP3 Parser (KB2758694) (HKLM\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
Nero Info (HKLM\...\{B791E0AB-87A9-41A4-8D98-D13C2E37D928}) (Version: 16.0.1003 - Nero AG)
Nero WaveEditor (HKLM\...\{EE430B59-A026-4C96-8906-E4C05B7FCC37}) (Version: 12.5.01500 - Nero AG)
Office 15 Click-to-Run Extensibility Component (Version: 15.0.4763.1003 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4771.1004 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (Version: 15.0.4771.1004 - Microsoft Corporation) Hidden
PDF reDirect (remove only) (HKLM\...\PDF reDirect) (Version: v2.5.2 - EXP Systems LLC)
Podpora aplikací Apple (32bitová) (HKLM\...\{649A1FD9-5892-46AD-8DF0-C4A43FF61CB7}) (Version: 4.1 - Apple Inc.)
Prerequisite installer (Version: 12.0.0005 - Nero AG) Hidden
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
Recuva (HKLM\...\Recuva) (Version: 1.51 - Piriform)
Service Pack 2 for SQL Server 2012 (KB2958429) (HKLM\...\KB2958429) (Version: 11.2.5058.0 - Microsoft Corporation)
SilverCrest STMS 2219 A1 Driver (HKLM\...\{1E494817-D81E-4B0E-B379-F34DF4DCDA58}) (Version: 1.2 - SilverCrest)
Skype™ 7.13 (HKLM\...\{6A0549A9-1B96-498C-ACBC-3943001FEB19}) (Version: 7.13.101 - Skype Technologies S.A.)
Software602 Form Filler (HKLM\...\{F8F79FE0-64EA-439C-A6AE-B1946A178F24}) (Version: 4.55 - Software602 a.s.)
SQL Server 2012 Common Files (Version: 11.2.5058.0 - Microsoft Corporation) Hidden
SQL Server 2012 Database Engine Services (Version: 11.0.2100.60 - Microsoft Corporation) Hidden
SQL Server 2012 Database Engine Services (Version: 11.2.5058.0 - Microsoft Corporation) Hidden
SQL Server 2012 Database Engine Shared (Version: 11.2.5058.0 - Microsoft Corporation) Hidden
SQL Server Browser for SQL Server 2012 (HKLM\...\{4B9E6EB0-0EED-4E74-9479-F982C3254F71}) (Version: 11.2.5058.0 - Microsoft Corporation)
Sql Server Customer Experience Improvement Program (Version: 11.2.5058.0 - Microsoft Corporation) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.19.1 - Synaptics Incorporated)
Sysel/Syslík klient pro Windows 2000/XP/Vista/7/8 (HKLM\...\Sysel/Syslík CS klient_is1) (Version: 5.3.4 - CSH spol. s r.o.)
Tabulka pro Windows 98/ME/NT/2000/XP/Vista (HKLM\...\Tabulka_is1) (Version: 3.5.5 - CSH)
upgrade Domovník pro Windows XP/Vista/7/8/10 (HKLM\...\Domovník CS_is1) (Version: 2.2.9 - CSH spol. s r.o.)
upgrade Sysel/Syslík pro Windows XP/Vista/7/8/10 (HKLM\...\Sysel/Syslík CS_is1) (Version: 5.3.5 - CSH spol. s r.o.)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Windows 7 Codec Pack 4.1.0 (HKLM\...\Windows 7 - Codec Pack) (Version: 4.1.0 - Windows 7 Codec Pack)
Windows Live Essentials (HKLM\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.20 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.20.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== Restore Points =========================

20-11-2015 08:00:32 Windows Zálohování
20-11-2015 08:22:18 Windows Zálohování
23-11-2015 09:26:07 Removed Lexmark Universal v2 Print Driver
23-11-2015 09:27:24 Removed Zákaznická podpora
23-11-2015 23:47:26 Installed Paragon Partition Manager™ 14 Free.
24-11-2015 08:40:59 Removed Paragon Partition Manager™ 14 Free.

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:04 - 2009-06-10 22:39 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0894FD44-AD26-4D12-A157-A17E60159CBE} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {13144846-8113-483A-A09F-95D0B620C3D5} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {2247D311-FD71-4F8A-A777-3097D83EFAA8} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {225B934B-9D33-4AA1-8753-C46DC8976826} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {273640B4-DE59-4083-AE04-5B267863CE70} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {2DD11AA8-DA7A-49FE-B831-DC2E4C5E086C} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {3760EE3D-2893-42D6-B07C-4DF170D9440F} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {3AC97B70-5E7A-4A52-BC92-E04F04EB5F45} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {443AFFF3-DCD4-4BE0-A418-2A9CD9474447} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-04-21] (Google Inc.)
Task: {51F9E7F7-56E6-4AE6-8CF8-D1548A3FD59A} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {585F79DA-84C1-4E8A-BDCF-B2A705B9CDAF} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {5A190A33-4970-4240-9048-6E5B5BEDD3ED} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-04-21] (Google Inc.)
Task: {5A50FBBF-12E9-40E4-89E4-14EDCFF9879B} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {5F7A1BB9-C34D-487D-AE51-0918E00A49F0} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {67B2C89B-E504-4F72-9592-CEC639CF8E87} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {6FEC5B19-5BE3-4725-A428-6C6431C1D760} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {72ACF8B6-F5FE-4D68-8A7F-6AAFA1BF8D95} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-09-29] (AVAST Software)
Task: {72AD7B4A-5ABC-4DC8-92CF-49C2913562C0} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX86\OfficeC2RClient.exe [2015-10-13] (Microsoft Corporation)
Task: {75E54862-738F-4024-9364-D432F65CD81D} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {7986BE83-56AE-4CA9-AF41-B4D5ED94FAD2} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {7F726B61-0D88-4D48-8E38-0C5548FDB8B3} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {846B47E4-D22E-45B7-878A-E5789AA38533} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {87A0CF4F-0186-405A-94A4-482B4866A50E} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX86\OfficeC2RClient.exe [2015-10-13] (Microsoft Corporation)
Task: {881732DB-2A22-470A-8004-1D67BF0EEC00} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {8A947E50-C199-4961-A676-AF457ED55FB2} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-10-28] (Adobe Systems Incorporated)
Task: {991C9A96-B649-44BC-BBC8-2318F61405E2} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {A2609817-A4B4-4A51-B202-6588FE903FCF} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {A7C7AB71-093F-40AE-A0EB-F8EB51FA8E54} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {AB254A60-86EE-44EA-A128-6722673439B0} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B31D5C4F-3230-4067-838C-801C6CC1FFBD} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {C0CE3CE1-3EDA-4E07-BFAB-7E6A7920D6EF} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {C5D6134D-8889-401E-B9A0-D4979BD12AC5} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {CC39F27F-8DFF-4C6C-AC0E-5938DA6A8FEB} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {D945BFD4-F1DA-472C-8E54-B7324FC3A24D} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-11-11] (Microsoft Corporation)
Task: {DB834779-B63B-4405-B06F-A88D8737A106} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {DD5A42A2-5BAD-453C-BFA7-BCB2A5644C86} - System32\Tasks\Nero\Nero Info => C:\Program Files\Common Files\Nero\Nero Info\NeroInfo.exe [2014-07-21] (Nero AG)
Task: {E272AFB9-5CDF-4A4E-83F7-DCA691746AB3} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2015-08-27] (Apple Inc.)
Task: {E775094B-1EF8-4A48-8913-AF4BC5A35FB3} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {EAAB82D5-28C0-449B-A776-2944B6B6F46F} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {EB1783C2-9F68-46B2-860F-15CD1500AE9D} - System32\Tasks\{7943D906-9689-49C2-97BE-B0DCCAE897C4} => pcalua.exe -a "C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" -c /uninstall ENTERPRISE /dll OSETUP.DLL
Task: {EF43D1FE-B455-486A-92BC-5B7D230E7657} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {EF66EAFA-91EE-4E68-A0A7-7C327A0783E0} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {F372796B-7EDB-4288-B74C-3E6FD8A61E23} - \Microsoft\Windows\File Classification Infrastructure\Property Definition Sync -> No File <==== ATTENTION
Task: {F7598A78-CED0-4143-91DF-21BADDC3FCF6} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {FD04D092-A7CA-432B-A5EA-BBAE81F2BACB} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2015-08-08 15:32 - 2015-08-08 15:32 - 00025088 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2015-09-29 08:38 - 2015-09-29 08:38 - 00103376 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-09-29 08:38 - 2015-09-29 08:38 - 00123976 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-11-25 08:14 - 2015-11-25 08:14 - 02994688 _____ () C:\Program Files\AVAST Software\Avast\defs\15112402\algo.dll
2015-11-25 19:51 - 2015-11-25 19:51 - 02995712 _____ () C:\Program Files\AVAST Software\Avast\defs\15112501\algo.dll
2010-06-06 15:20 - 2010-06-06 15:20 - 00065344 _____ () C:\WINDOWS\System32\PDFreDirectMonNT.dll
2015-10-13 05:46 - 2015-10-13 05:46 - 00073512 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-10-13 05:46 - 2015-10-13 05:46 - 01040144 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2015-08-20 08:04 - 2015-08-11 09:53 - 00301056 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2015-10-02 08:56 - 2015-09-17 07:27 - 01766952 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-10-02 08:56 - 2015-09-17 07:27 - 01766952 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-02-25 14:59 - 2015-10-13 02:43 - 00080040 _____ () C:\Program Files\Microsoft Office 15\ClientX86\ApiClient.dll
2015-09-29 08:38 - 2015-09-29 08:38 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-02-25 15:10 - 2015-02-25 15:10 - 00316576 _____ () C:\Program Files\Microsoft Office 15\Root\VFS\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\AppVIsvStream32.dll
2015-10-02 08:56 - 2015-09-17 06:28 - 04317696 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-10-02 08:53 - 2015-09-17 06:25 - 00377856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-10-02 08:53 - 2015-09-17 06:25 - 01183232 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-10-02 08:56 - 2015-09-17 06:26 - 01425920 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-07-10 09:25 - 2015-07-10 14:22 - 00107520 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll
2015-07-10 09:24 - 2015-07-10 09:24 - 00288768 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-07-10 09:24 - 2015-07-10 09:24 - 00111104 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\XamlTileRendering.dll
2015-11-11 20:22 - 2015-11-07 05:36 - 01532744 _____ () C:\Program Files\Google\Chrome\Application\46.0.2490.86\libglesv2.dll
2015-11-11 20:22 - 2015-11-07 05:36 - 00081224 _____ () C:\Program Files\Google\Chrome\Application\46.0.2490.86\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\TEMP:1CE11B51

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-4151063491-2367327077-1708916229-1000\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
HKU\S-1-5-80-1045472278-1000938657-3572430047-3478307810-2150795864\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 10.10.10.200 - 8.8.8.8
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-4151063491-2367327077-1708916229-1000\...\StartupApproved\Run: => "Skype"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-32bit] => (Allow) LPort=808
FirewallRules: [{0DC62BD8-A190-4F13-BE7B-7C657D0920AB}] => (Allow) C:\Users\Petr\AppData\Local\Temp\nsoE218.tmpMoboInstall\mobogenieP2sp.exe
FirewallRules: [{39F1A4A9-7F9F-4952-AB2B-5207E889FC30}] => (Allow) C:\Users\Petr\AppData\Local\Temp\nsoE218.tmpMoboInstall\mobogenieP2sp.exe
FirewallRules: [{8AAFCC57-49CC-4136-B3A7-6AEDEF9B51AC}] => (Allow) LPort=1900
FirewallRules: [{0A83D3D3-58B9-43E5-AF33-966988AA37B9}] => (Allow) LPort=2869
FirewallRules: [{C2E0663F-1B3B-4731-BE4E-FFF7425F7EC5}] => (Allow) C:\Program Files\Windows Live\Contacts\wlcomm.exe
FirewallRules: [UDP Query User{D7ED9E2D-DAF4-4CFE-AF9C-979C11A520DE}C:\program files\windows sidebar\sidebar.exe] => (Allow) C:\program files\windows sidebar\sidebar.exe
FirewallRules: [TCP Query User{BC349DFC-3FE8-4ECC-8403-73FA4C982B09}C:\program files\windows sidebar\sidebar.exe] => (Allow) C:\program files\windows sidebar\sidebar.exe
FirewallRules: [{A389095A-B86A-49AB-8049-99240FA94B92}] => (Allow) C:\Program Files\Common Files\soft602\langserv.exe
FirewallRules: [{5726EC11-3248-4C0F-8416-28FC0A6F9758}] => (Allow) C:\Program Files\Common Files\soft602\langserv.exe
FirewallRules: [{24FF2863-104F-4727-A8A3-23B71D0CDCF5}] => (Allow) C:\Users\Petr\AppData\Local\Temp\RarSFX0\InstallationPackage\install\x86\installgui.exe
FirewallRules: [{53A5A464-EA86-4EE4-93EC-02D50EF7C965}] => (Allow) C:\Users\Petr\AppData\Local\Temp\RarSFX0\InstallationPackage\install\x86\installgui.exe
FirewallRules: [{C623B939-AF97-4A22-8444-A7D1F2268C1E}] => (Allow) C:\Users\Petr\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe
FirewallRules: [{95C07000-4A4A-4EF0-824A-C95C7AAA9D43}] => (Allow) C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
FirewallRules: [{DBD36B55-1102-4514-9054-35714AB00D2D}] => (Allow) LPort=25322
FirewallRules: [{39232AD7-1C4F-4CC3-97A1-734FF8856865}] => (Allow) LPort=25322
FirewallRules: [{1AD1EC7D-0004-48D6-B5EF-1230CFC22442}] => (Allow) c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{03A18481-B4DC-40A4-85A4-C4805DBCADED}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{4730675B-FDF3-402B-9D83-BF1DB17FD840}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{79EF59D4-9E9C-406F-8DF3-2B4C6ED55BB2}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{A1DD0DAC-9FDE-4E24-A567-2917C52F9EA0}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============

Name: MediaTek DA USB VCOM Port (COM5)
Description: MediaTek DA USB VCOM Port
Class Guid: {4d36e978-e325-11ce-bfc1-08002be10318}
Manufacturer: MediaTek Inc.
Service: usbser
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.

==================== Event log errors: =========================

Application errors:
==================
Error: (11/25/2015 05:52:49 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 147781

Error: (11/25/2015 05:52:49 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 147781

Error: (11/25/2015 05:52:49 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (11/25/2015 05:52:34 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 132156

Error: (11/25/2015 05:52:34 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 132156

Error: (11/25/2015 05:52:34 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (11/25/2015 05:52:18 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 116531

Error: (11/25/2015 05:52:18 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 116531

Error: (11/25/2015 05:52:18 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: Continuously busy for more than a second

Error: (11/25/2015 05:52:03 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 100891

System errors:
=============
Error: (11/25/2015 10:14:16 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.

Error: (11/25/2015 10:14:14 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.

Error: (11/25/2015 10:14:12 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.

Error: (11/25/2015 10:14:10 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.

Error: (11/25/2015 10:14:08 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.

Error: (11/25/2015 08:05:37 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.

Error: (11/25/2015 08:05:35 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.

Error: (11/25/2015 08:05:33 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.

Error: (11/25/2015 08:05:31 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.

Error: (11/25/2015 08:05:29 PM) (Source: disk) (EventID: 7) (User: )
Description: Zařízení \Device\Harddisk0\DR0 má chybný blok.

CodeIntegrity:
===================================
Date: 2015-11-24 14:30:05.377
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-11-24 14:30:05.308
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-11-24 14:29:59.870
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-11-24 14:29:59.797
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-11-24 14:29:59.534
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-11-24 14:24:34.331
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-11-24 14:24:34.244
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-11-24 14:24:33.611
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-11-24 14:24:33.499
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-11-24 14:24:22.808
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

==================== Memory info ===========================

Processor: Intel(R) Pentium(R) Dual CPU T3200 @ 2.00GHz
Percentage of memory in use: 54%
Total physical RAM: 3000.86 MB
Available physical RAM: 1380.04 MB
Total Virtual: 6072.86 MB
Available Virtual: 4016.54 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:297.55 GB) (Free:228.19 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 298.1 GB) (Disk ID: 3EF09505)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=297.6 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)

==================== End of Addition.txt ============================

Otevřte poznámkový blok a zkopírujte do něj:

Start
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [597040 2015-10-06] (Oracle Corporation)
ShortcutTarget: CodecPackUpdateChecker.lnk -> C:\Windows\System32\C2MP\UpdateChecker.exe (No File)
SearchScopes: HKLM -> DefaultScope {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL =
SearchScopes: HKU\S-1-5-21-4151063491-2367327077-1708916229-1000 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL =
SearchScopes: HKU\S-1-5-21-4151063491-2367327077-1708916229-1000 -> {425ED333-6083-428a-92C9-0CFC28B9D1BF} URL =
SearchScopes: HKU\S-1-5-21-4151063491-2367327077-1708916229-1000 -> {ADE95AE3-F013-4A10-864A-70371746AF96} URL =
Edge HomeButtonPage: HKU\S-1-5-21-4151063491-2367327077-1708916229-1000 -> hxxp://www.omniboxes.com/?type=hp&ts=14 ... R4936R4936
U3 idsvc; no ImagePath
U3 wpcsvc; no ImagePath
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\ProgramData\{262E20B8-6E20-4CEF-B1FD-D022AB1085F5}.dat
C:\ProgramData\DP45977C.lfl
C:\Users\Petr\AppData\Local\Temp
Task: {13144846-8113-483A-A09F-95D0B620C3D5} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {225B934B-9D33-4AA1-8753-C46DC8976826} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {273640B4-DE59-4083-AE04-5B267863CE70} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {2DD11AA8-DA7A-49FE-B831-DC2E4C5E086C} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {51F9E7F7-56E6-4AE6-8CF8-D1548A3FD59A} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {585F79DA-84C1-4E8A-BDCF-B2A705B9CDAF} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {6FEC5B19-5BE3-4725-A428-6C6431C1D760} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {881732DB-2A22-470A-8004-1D67BF0EEC00} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {991C9A96-B649-44BC-BBC8-2318F61405E2} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {CC39F27F-8DFF-4C6C-AC0E-5938DA6A8FEB} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {EF66EAFA-91EE-4E68-A0A7-7C327A0783E0} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {F372796B-7EDB-4288-B74C-3E6FD8A61E23} - \Microsoft\Windows\File Classification Infrastructure\Property Definition Sync -> No File <==== ATTENTION
End

Uložte do C:\Install\FRST jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

VIRY.CZ

Disk vytížený na 100% (WINpro10)

Disk vytížený na 100% (WINpro10)

Re: Disk vytížený na 100% (WINpro10)

Re: Disk vytížený na 100% (WINpro10)

Re: Disk vytížený na 100% (WINpro10)

Re: Disk vytížený na 100% (WINpro10)

Re: Disk vytížený na 100% (WINpro10)