Kontrola logu - nefungovaly win update
Napsal: 01 led 2016 19:20
Dobrý večer,
poprosil bych o kontrolu logu, zda tam " něco " není ...
Win update - poslední aktualizace proběhla 29.11. Dnes bylo staženo 38 aktualizací. Nevím proč, ještě včera to hlásilo chybu - kod z hlavy nevím. Nebylo se možné přihlásit na stránky Microsoftu,
Adobe flash player - nezobrazovaly se fotky na webu, videa. Nešlo se přihlásit na stránky Adobe ...
Dnes stažena aktualizace flash playeru, win ...
Kontrola SuperAntispyware - nic
Kontrola Adwarecleaner -
# AdwCleaner v5.027 - Logfile created 30/12/2015 at 19:34:44
# Updated 30/12/2015 by Xplode
# Database : 2015-12-30.1 [Server]
# Operating system : Windows 8.1 (x64)
# Username : Adéla - NOTE-ADEL
# Running from : C:\Users\Adéla\Downloads\AdwCleaner.exe
# Option : Cleaning
# Support : http://toolslib.net/forum
***** [ Services ] *****
***** [ Folders ] *****
[-] Folder Deleted : C:\Users\Adéla\AppData\Local\Google\Chrome\User Data\Default\Extensions\iphahelpmejkbidhiecfeicblienleon
***** [ Files ] *****
***** [ DLLs ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
***** [ Registry ] *****
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A2159D33-3CE2-401B-8967-1B270628A311}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A2159D33-3CE2-401B-8967-1B270628A311}
***** [ Web browsers ] *****
[-] [C:\Users\Adéla\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : iphahelpmejkbidhiecfeicblienleon
*************************
:: "Tracing" keys removed
:: Winsock settings cleared
########## EOF - C:\AdwCleaner\AdwCleaner[C9].txt - [1181 bytes] ##########
# AdwCleaner v5.027 - Logfile created 01/01/2016 at 19:00:21
# Updated 30/12/2015 by Xplode
# Database : 2015-12-30.1 [Server]
# Operating system : Windows 8.1 (x64)
# Username : Adéla - NOTE-ADEL
# Running from : C:\Users\Adéla\Downloads\AdwCleaner.exe
# Option : Cleaning
# Support : http://toolslib.net/forum
***** [ Services ] *****
***** [ Folders ] *****
***** [ Files ] *****
***** [ DLLs ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
***** [ Registry ] *****
***** [ Web browsers ] *****
[-] [C:\Users\Adéla\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : mystartsearch
[-] [C:\Users\Adéla\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://www.mystartsearch.com/?type=hp&ts=14299 ... D0687D0687
[-] [C:\Users\Adéla\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : iphahelpmejkbidhiecfeicblienleon
*************************
:: "Tracing" keys removed
:: Winsock settings cleared
########## EOF - C:\AdwCleaner\AdwCleaner[C9].txt - [2403 bytes] ##########
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:31-12-2015
Ran by Adéla (administrator) on NOTE-ADEL (01-01-2016 19:03:26)
Running from C:\Users\Adéla\Desktop
Loaded Profiles: Adéla (Available Profiles: Adéla)
Platform: Windows 8.1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Intel Corporation) C:\WINDOWS\System32\igfxCUIService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\WINDOWS\System32\lpksetup.exe
(AVAST Software) C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe
(Broadcom Corp.) C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Dritek System INC.) C:\WINDOWS\RfBtnSvc64.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.1\GoogleCrashHandler.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\livecomm.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.1\GoogleCrashHandler64.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Microsoft Corporation) C:\WINDOWS\System32\dllhost.exe
(Microsoft Corporation) C:\WINDOWS\System32\GWX\GWX.exe
(Intel Corporation) C:\WINDOWS\System32\igfxEM.exe
(Intel Corporation) C:\WINDOWS\System32\igfxHK.exe
(Intel Corporation) C:\WINDOWS\System32\igfxTray.exe
(Intel Corporation) C:\WINDOWS\System32\igfxext.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(Microsoft Corporation) C:\WINDOWS\System32\SkyDrive.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
() C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\WINDOWS\System32\lpksetup.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Microsoft Corporation) C:\WINDOWS\System32\dllhost.exe
(Microsoft Corporation) C:\WINDOWS\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17709_none_fa7932f59afc2e40\TiWorker.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [108144 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [RtsCM] => C:\WINDOWS\RTSCM64.EXE [155864 2000-01-01] (Realtek Semiconductor Corp.)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161728 2015-08-09] (IvoSoft)
HKLM-x32\...\Run: [LManager] => [X]
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7021880 2016-01-01] (AVAST Software)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [132736 2013-01-28] (Qualcomm Atheros Commnucations)
HKU\S-1-5-21-1026615323-3005428012-3648901958-1001\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [7806232 2015-04-25] (SUPERAntiSpyware)
HKU\S-1-5-21-1026615323-3005428012-3648901958-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\scrnsave.scr [11776 2014-10-29] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-01-01] (AVAST Software)
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-08-09] (IvoSoft)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-08-09] (IvoSoft)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: 0.0.0.1 mssplus.mcafee.com
Tcpip\Parameters: [DhcpNameServer] 10.108.156.57 77.48.254.254
Tcpip\..\Interfaces\{7F8E81BE-0B46-4D74-8492-0F6E68263CF1}: [DhcpNameServer] 10.108.156.57 77.48.254.254
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKU\S-1-5-21-1026615323-3005428012-3648901958-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1026615323-3005428012-3648901958-1001 -> {D6173BC3-FFF7-437A-83EB-5AC8A8453459} URL =
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-08-09] (IvoSoft)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\IEPlugIn.dll [2013-01-28] (Qualcomm Atheros Commnucations)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-01-01] (AVAST Software)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2015-08-09] (IvoSoft)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-08-09] (IvoSoft)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-01-01] (AVAST Software)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2015-08-09] (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-08-09] (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-08-09] (IvoSoft)
FireFox:
========
FF ProfilePath: C:\Users\Adéla\AppData\Roaming\Mozilla\Firefox\Profiles\634o6ffm.default-1429986979351
FF Homepage: hxxps://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_20_0_0_267.dll [2016-01-01] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll [2016-01-01] ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-20] (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-31] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-31] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2015-12-22] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Adéla\AppData\Roaming\mozilla\plugins\np-mswmp.dll [2009-09-25] (Microsoft Corporation)
FF Extension: Adblock Plus - C:\Users\Adéla\AppData\Roaming\Mozilla\Firefox\Profiles\634o6ffm.default-1429986979351\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-07-28]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-01-01]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Endpoint Security\Mozilla Thunderbird => not found
Chrome:
=======
CHR HomePage: Default -> hxxps://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.google.com/","hxxps://www.seznam.cz/"
CHR Plugin: (Widevine Content Decryption Module) - C:\Users\Adéla\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.8.866\_platform_specific\win_x86\widevinecdmadapter.dll (Google Inc.)
CHR Plugin: (Shockwave Flash) - C:\Users\Adéla\AppData\Local\Google\Chrome\User Data\PepperFlash\20.0.0.267\pepflashplayer.dll => No File
CHR Profile: C:\Users\Adéla\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (YouTube) - C:\Users\Adéla\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-31]
CHR Extension: (Adblock Plus) - C:\Users\Adéla\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-11-24]
CHR Extension: (Avast Online Security) - C:\Users\Adéla\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-11-04]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Adéla\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-14]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-01-01]
CHR HKLM-x32\...\Chrome\Extension: [iphahelpmejkbidhiecfeicblienleon] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S4 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [172344 2014-07-23] (SUPERAntiSpyware.com)
R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [227456 2013-01-28] (Qualcomm Atheros Commnucations) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [226440 2016-01-01] (AVAST Software)
R2 BrcmCardReader; C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe [176640 2012-08-21] (Broadcom Corp.) [File not signed]
R2 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2435728 2012-08-24] (Acer Incorporated)
S3 DeviceFastLaneService; C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [468624 2012-08-23] (Acer Incorporated)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [658576 2012-08-23] (Acer Incorporated)
S2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [349728 2015-12-22] (WildTangent)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [319376 2014-10-01] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-18] (Intel Corporation)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.149\McCHSvc.exe [289256 2015-06-26] (McAfee, Inc.)
R2 RfButtonDriverService; C:\Windows\RfBtnSvc64.exe [93296 2012-09-20] (Dritek System INC.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
S3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [X]
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2016-01-01] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [97648 2016-01-01] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2016-01-01] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2016-01-01] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1055560 2016-01-01] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [451040 2016-01-01] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [155304 2016-01-01] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [273784 2016-01-01] (AVAST Software)
S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-01-28] (Qualcomm Atheros)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R3 Ps2Kb2Hid; C:\Windows\System32\drivers\aPs2Kb2Hid.sys [26736 2012-09-20] (Dritek System Inc.)
R3 rtsuvc; C:\Windows\system32\DRIVERS\rtsuvc.sys [9101016 2000-01-01] (Realtek Semiconductor Corp.)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
S3 ssudserd; C:\Windows\system32\DRIVERS\ssudserd.sys [206080 2014-01-22] (DEVGURU Co., LTD.(www.devguru.co.kr))
S3 trufos; C:\Windows\System32\drivers\trufos.sys [350160 2015-07-15] (BitDefender S.R.L.)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
S2 VBoxAswDrv; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-01-01 19:03 - 2016-01-01 19:03 - 00017657 _____ C:\Users\Adéla\Desktop\FRST.txt
2016-01-01 18:56 - 2016-01-01 16:43 - 02370560 _____ (Farbar) C:\Users\Adéla\Desktop\FRST64.exe
2016-01-01 18:41 - 2016-01-01 18:41 - 06805328 _____ (Piriform Ltd) C:\Users\Adéla\Downloads\ccsetup513.exe
2016-01-01 18:24 - 2016-01-01 18:44 - 00000000 ____D C:\ProgramData\Skype
2016-01-01 18:24 - 2016-01-01 18:40 - 00000000 ____D C:\Users\Adéla\AppData\Roaming\Skype
2016-01-01 18:24 - 2016-01-01 18:24 - 00000000 ____D C:\Users\Adéla\AppData\Local\Skype
2016-01-01 17:28 - 2016-01-01 17:38 - 00000000 ____D C:\d61b97c2d18ac578c5b77c78c45359
2016-01-01 16:57 - 2016-01-01 16:57 - 00386096 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2016-01-01 16:57 - 2016-01-01 16:57 - 00043112 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2016-01-01 16:53 - 2016-01-01 16:54 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-01-01 16:53 - 2016-01-01 16:53 - 00002071 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2016-01-01 16:47 - 2016-01-01 16:49 - 00032138 _____ C:\Users\Adéla\Downloads\Addition.txt
2016-01-01 16:44 - 2016-01-01 19:03 - 00000000 ____D C:\FRST
2016-01-01 16:44 - 2016-01-01 16:49 - 00032793 _____ C:\Users\Adéla\Downloads\FRST.txt
2016-01-01 16:43 - 2016-01-01 16:43 - 02370560 _____ (Farbar) C:\Users\Adéla\Downloads\FRST64.exe
2016-01-01 16:42 - 2015-10-10 18:20 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2016-01-01 16:40 - 2015-10-08 17:11 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2016-01-01 16:40 - 2015-10-08 16:50 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2016-01-01 16:39 - 2016-01-01 16:39 - 01745920 _____ C:\Users\Adéla\Downloads\AdwCleaner.exe
2016-01-01 16:32 - 2016-01-01 16:32 - 01107968 _____ C:\Users\Adéla\Downloads\RSIT.exe
2016-01-01 16:31 - 2016-01-01 16:31 - 01721856 _____ (Farbar) C:\Users\Adéla\Downloads\FRST.exe
2015-12-31 15:37 - 2015-12-31 15:37 - 00927824 _____ (Google Inc.) C:\Users\Adéla\Downloads\ChromeSetup.exe
2015-12-31 15:33 - 2015-12-31 15:33 - 00001612 _____ C:\Users\Adéla\Desktop\opera – zástupce.lnk
2015-12-31 13:05 - 2015-12-31 13:05 - 00000000 ____D C:\Users\Adéla\AppData\Roaming\ClassicShell
2015-12-10 18:20 - 2015-12-10 18:28 - 143166031 _____ C:\Users\Adéla\Downloads\Gamma-Ray-PowerPlant.rar
2015-12-10 18:13 - 2015-12-10 18:19 - 101662716 _____ C:\Users\Adéla\Downloads\GammaRay-2007---Land-Of-The-Free-II.rar
2015-12-09 16:23 - 2015-10-05 19:28 - 00146432 ____N (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2015-12-09 16:23 - 2015-10-05 19:25 - 00572928 ____N (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-12-09 16:22 - 2015-10-03 20:41 - 01385280 ____N (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2015-12-09 16:22 - 2015-10-03 20:41 - 01124384 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2015-12-09 13:35 - 2015-11-08 23:15 - 02887168 ____N (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-12-09 13:35 - 2015-11-08 21:53 - 02880000 ____N (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-12-09 13:35 - 2015-11-08 21:53 - 02487808 ____N (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-12-09 13:35 - 2015-11-08 21:41 - 01546752 ____N (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-12-09 13:34 - 2015-11-22 07:59 - 01735000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-12-09 13:34 - 2015-11-22 07:58 - 01499920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-12-09 13:34 - 2015-11-09 01:41 - 01540728 ____N (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2015-12-09 13:34 - 2015-11-08 22:23 - 01994752 ____N (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2015-12-09 13:34 - 2015-11-08 22:01 - 01753600 ____N (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2015-12-09 13:34 - 2015-11-08 21:48 - 01376256 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2015-12-09 13:34 - 2015-11-08 21:42 - 01490944 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2015-12-09 13:32 - 2015-10-28 16:49 - 02775552 ____N (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-12-08 18:33 - 2015-12-31 15:17 - 00000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software
2015-12-08 18:33 - 2015-12-08 18:33 - 00000000 ____D C:\Program Files\Common Files\AV
2015-12-08 09:54 - 2015-12-08 09:54 - 00088754 _____ C:\Users\Adéla\Downloads\Doklad SIPO_201512_2089385276.pdf
2015-12-07 16:20 - 2015-12-07 16:08 - 00847468 _____ C:\Users\Adéla\Documents\Kopie - Auta.1111.xlsx
2015-12-07 16:18 - 2015-12-07 17:58 - 04567552 _____ C:\Users\Adéla\Documents\Auta - foto.2.xls
2015-12-07 16:08 - 2015-12-07 16:08 - 01068524 _____ C:\Users\Adéla\Downloads\Auta - foto.2.xlsx
2015-12-07 16:08 - 2015-12-07 16:08 - 00847468 _____ C:\Users\Adéla\Downloads\Kopie - Auta.1111.xlsx
2015-12-06 20:06 - 2015-12-06 20:26 - 01269850 _____ C:\Users\Adéla\Documents\Auta - foto.1.ods
2015-12-06 19:18 - 2015-12-06 19:18 - 00847178 _____ C:\Users\Adéla\Documents\Auta - foto.ods
2015-12-05 18:13 - 2015-12-05 18:13 - 00000000 ____D C:\Users\Adéla\AppData\Local\CEF
2015-12-05 13:15 - 2015-12-05 13:15 - 00846106 _____ C:\Users\Adéla\Downloads\Auta.ods
2015-12-05 12:32 - 2015-12-06 19:14 - 00851368 _____ C:\Users\Adéla\Documents\Auta.ods
2015-12-05 09:49 - 2015-12-05 11:39 - 00812032 _____ C:\Users\Adéla\Documents\KFZ MOSKAU.xls
2015-12-05 09:48 - 2015-12-05 09:48 - 00112478 _____ C:\Users\Adéla\Documents\KFZ MOSKAU.ods
2015-12-04 15:57 - 2015-12-04 15:57 - 00013740 _____ C:\Users\Adéla\Downloads\KFZ MOSKAU (1).ods
2015-12-03 19:38 - 2015-12-03 19:38 - 00013740 _____ C:\Users\Adéla\Downloads\KFZ MOSKAU.ods
2015-12-02 19:15 - 2015-12-02 19:15 - 00175224 _____ C:\Users\Adéla\Downloads\15651127 (1).PDF
2015-12-02 19:14 - 2015-12-02 19:14 - 00175224 _____ C:\Users\Adéla\Downloads\15651127.PDF
2015-12-02 19:12 - 2015-12-02 19:12 - 01163245 _____ C:\Users\Adéla\Downloads\14737292.PDF
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-01-01 19:03 - 2015-08-14 15:29 - 00000976 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-01-01 19:02 - 2015-02-19 15:18 - 00000000 __RHD C:\Users\Adéla\OneDrive
2016-01-01 19:01 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-01-01 19:01 - 2013-08-22 15:44 - 00508320 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-01-01 19:01 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS
2016-01-01 18:50 - 2013-07-25 21:18 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1026615323-3005428012-3648901958-1001
2016-01-01 18:46 - 2015-10-18 14:13 - 00000000 ____D C:\Users\Adéla\AppData\Local\ClassicShell
2016-01-01 18:46 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\Inf
2016-01-01 18:45 - 2013-08-22 16:36 - 00000000 ___HD C:\Program Files\WindowsApps
2016-01-01 18:45 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-01-01 18:42 - 2015-08-31 17:59 - 00000838 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-01-01 18:39 - 2015-08-14 15:29 - 00000980 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-01-01 18:33 - 2015-08-07 09:45 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-01-01 18:33 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-01-01 18:32 - 2013-07-27 08:41 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-01-01 18:31 - 2012-07-26 08:59 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-01-01 18:23 - 2013-07-27 12:32 - 00000000 ____D C:\ProgramData\Microsoft Help
2016-01-01 17:38 - 2013-07-27 11:13 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-01-01 17:28 - 2013-07-27 09:33 - 140158008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-01-01 17:18 - 2015-05-07 20:08 - 00001201 _____ C:\Users\Adéla\AppData\Roaming\Microsoft\Windows\Start Menu\GOM Player.lnk
2016-01-01 17:17 - 2015-07-27 16:39 - 00003838 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1438011531
2016-01-01 17:17 - 2015-07-27 16:38 - 00001155 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2016-01-01 17:17 - 2015-07-27 16:38 - 00000000 ____D C:\Program Files (x86)\Opera
2016-01-01 17:04 - 2013-07-27 14:16 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-01-01 17:04 - 2013-07-27 14:16 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2016-01-01 16:58 - 2014-11-23 18:45 - 00451040 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys
2016-01-01 16:58 - 2014-11-23 18:45 - 00097648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswmonflt.sys
2016-01-01 16:57 - 2014-11-23 18:46 - 00003924 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2016-01-01 16:57 - 2014-11-23 18:45 - 00273784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2016-01-01 16:57 - 2014-11-23 18:45 - 00155304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2016-01-01 16:57 - 2014-11-23 18:45 - 00093528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2016-01-01 16:57 - 2014-11-23 18:45 - 00065224 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2016-01-01 16:57 - 2014-11-23 18:45 - 00028656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2016-01-01 16:56 - 2014-11-23 18:45 - 01055560 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2016-01-01 16:53 - 2015-07-05 13:23 - 00003886 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2016-01-01 16:52 - 2013-07-27 13:10 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-01-01 16:37 - 2013-07-27 08:41 - 00003802 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2016-01-01 16:37 - 2013-07-27 08:40 - 00000000 ____D C:\Users\Adéla\AppData\Local\Adobe
2016-01-01 16:34 - 2013-07-27 14:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-01-01 13:18 - 2014-12-26 22:54 - 00003830 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{2DEC8BC2-C24E-4955-A622-E72F6899D27E}
2015-12-31 15:32 - 2013-08-31 10:23 - 00002224 ____N C:\Users\Public\Desktop\WildTangent Games App - acer.lnk
2015-12-31 15:32 - 2012-09-03 15:27 - 00002466 ____N C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WildTangent Games App - acer.lnk
2015-12-31 15:32 - 2012-09-03 15:27 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-12-31 15:32 - 2012-09-03 15:27 - 00000000 ____D C:\Program Files (x86)\WildTangent Games
2015-12-31 15:18 - 2014-11-23 18:46 - 00001942 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2015-12-31 14:34 - 2015-08-14 15:29 - 00003952 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-12-31 14:34 - 2015-08-14 15:29 - 00003716 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-12-31 14:21 - 2013-08-22 16:36 - 00000000 ___RD C:\WINDOWS\ToastData
2015-12-31 14:19 - 2014-12-26 20:28 - 00000000 ____D C:\Users\Adéla
2015-12-31 14:18 - 2015-11-17 18:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smajlíci
2015-12-31 14:18 - 2015-11-17 18:51 - 00000000 ____D C:\Program Files (x86)\Smajlici
2015-12-31 14:18 - 2015-10-29 17:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ONE TOUCH Upgrade S 2.8.0
2015-12-31 14:18 - 2015-10-29 17:03 - 00000000 ____D C:\WINDOWS\QdAvPlug
2015-12-31 14:18 - 2015-10-29 17:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Alcatel PC Suite
2015-12-31 14:18 - 2015-10-18 14:13 - 00000000 ____D C:\ProgramData\ClassicShell
2015-12-31 14:18 - 2015-08-14 15:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-12-31 14:18 - 2015-07-27 17:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free M4a to MP3 Converter
2015-12-31 14:18 - 2015-05-25 17:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
2015-12-31 14:18 - 2015-05-25 17:34 - 00000000 ____D C:\Program Files\Recuva
2015-12-31 14:18 - 2015-05-07 20:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-12-31 14:18 - 2015-05-07 20:23 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-12-31 14:18 - 2015-04-12 15:10 - 00000000 ___SD C:\WINDOWS\system32\GWX
2015-12-31 14:18 - 2015-02-14 18:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FreeSmartSoft
2015-12-31 14:18 - 2014-11-23 18:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-12-31 14:18 - 2014-11-23 18:39 - 00000000 ____D C:\Program Files\CCleaner
2015-12-31 14:18 - 2013-08-22 16:36 - 00000000 __RSD C:\WINDOWS\Media
2015-12-31 14:18 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SystemResources
2015-12-31 14:18 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WinMetadata
2015-12-31 14:18 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2015-12-31 14:18 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Globalization
2015-12-31 14:18 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-12-31 14:18 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2015-12-31 14:17 - 2015-10-29 17:30 - 00000000 ____D C:\ONE TOUCH Upgrade S 2.8.0
2015-12-31 14:17 - 2015-10-29 17:03 - 00000000 ____D C:\Program Files (x86)\Alcatel PC Suite
2015-12-31 14:17 - 2015-07-27 17:23 - 00000000 ____D C:\Program Files (x86)\Free M4a to MP3 Converter
2015-12-31 14:17 - 2015-02-14 18:13 - 00000000 ____D C:\Program Files (x86)\FreeSmartSoft
2015-12-31 14:02 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\registration
2015-12-31 13:58 - 2014-11-23 18:45 - 00000000 ____D C:\Users\Adéla\AppData\Local\Google
2015-12-31 13:58 - 2013-07-25 21:11 - 00000000 ____D C:\Users\Adéla\AppData\Roaming\Adobe
2015-12-31 13:58 - 2013-07-25 21:10 - 00000000 ____D C:\Users\Adéla\AppData\Local\Packages
2015-12-31 13:57 - 2013-07-27 13:10 - 00000000 ____D C:\ProgramData\Adobe
2015-12-31 13:54 - 2014-11-23 18:45 - 00000000 ____D C:\Program Files (x86)\Google
2015-12-31 13:53 - 2013-07-27 12:32 - 00000000 __RHD C:\MSOCache
2015-12-30 19:34 - 2015-05-07 20:17 - 00000000 ____D C:\AdwCleaner
2015-12-29 17:40 - 2015-02-19 16:11 - 00000000 ____D C:\Users\Adéla\AppData\Local\Deployment
2015-12-26 09:48 - 2015-06-13 19:47 - 00826872 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-12-26 09:48 - 2015-06-13 19:47 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-12-11 20:09 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-12-07 17:53 - 2015-04-16 17:56 - 00879616 ___SH C:\Users\Adéla\Documents\Thumbs.db
==================== Files in the root of some directories =======
2013-09-19 13:48 - 2013-09-19 13:48 - 4456448 _____ () C:\ProgramData\ClassicShellSetup64_3_6_8.msi
Some files in TEMP:
====================
C:\Users\Adéla\AppData\Local\Temp\sqlite3.dll
Some zero byte size files/folders:
==========================
C:\Windows\logo_1.exe
C:\Windows\RUNDL132.EXE
C:\Windows\VDLL.DLL
C:\Windows\SysWOW64\runouce.exe
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-03-04 21:40
==================== End of FRST.txt ============================
Děkuji vám za pomoc.¨
Přeji Vám všem štastný Nový rok 2016
poprosil bych o kontrolu logu, zda tam " něco " není ...
Win update - poslední aktualizace proběhla 29.11. Dnes bylo staženo 38 aktualizací. Nevím proč, ještě včera to hlásilo chybu - kod z hlavy nevím. Nebylo se možné přihlásit na stránky Microsoftu,
Adobe flash player - nezobrazovaly se fotky na webu, videa. Nešlo se přihlásit na stránky Adobe ...
Dnes stažena aktualizace flash playeru, win ...
Kontrola SuperAntispyware - nic
Kontrola Adwarecleaner -
# AdwCleaner v5.027 - Logfile created 30/12/2015 at 19:34:44
# Updated 30/12/2015 by Xplode
# Database : 2015-12-30.1 [Server]
# Operating system : Windows 8.1 (x64)
# Username : Adéla - NOTE-ADEL
# Running from : C:\Users\Adéla\Downloads\AdwCleaner.exe
# Option : Cleaning
# Support : http://toolslib.net/forum
***** [ Services ] *****
***** [ Folders ] *****
[-] Folder Deleted : C:\Users\Adéla\AppData\Local\Google\Chrome\User Data\Default\Extensions\iphahelpmejkbidhiecfeicblienleon
***** [ Files ] *****
***** [ DLLs ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
***** [ Registry ] *****
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A2159D33-3CE2-401B-8967-1B270628A311}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A2159D33-3CE2-401B-8967-1B270628A311}
***** [ Web browsers ] *****
[-] [C:\Users\Adéla\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : iphahelpmejkbidhiecfeicblienleon
*************************
:: "Tracing" keys removed
:: Winsock settings cleared
########## EOF - C:\AdwCleaner\AdwCleaner[C9].txt - [1181 bytes] ##########
# AdwCleaner v5.027 - Logfile created 01/01/2016 at 19:00:21
# Updated 30/12/2015 by Xplode
# Database : 2015-12-30.1 [Server]
# Operating system : Windows 8.1 (x64)
# Username : Adéla - NOTE-ADEL
# Running from : C:\Users\Adéla\Downloads\AdwCleaner.exe
# Option : Cleaning
# Support : http://toolslib.net/forum
***** [ Services ] *****
***** [ Folders ] *****
***** [ Files ] *****
***** [ DLLs ] *****
***** [ Shortcuts ] *****
***** [ Scheduled tasks ] *****
***** [ Registry ] *****
***** [ Web browsers ] *****
[-] [C:\Users\Adéla\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : mystartsearch
[-] [C:\Users\Adéla\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Deleted : hxxp://www.mystartsearch.com/?type=hp&ts=14299 ... D0687D0687
[-] [C:\Users\Adéla\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : iphahelpmejkbidhiecfeicblienleon
*************************
:: "Tracing" keys removed
:: Winsock settings cleared
########## EOF - C:\AdwCleaner\AdwCleaner[C9].txt - [2403 bytes] ##########
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:31-12-2015
Ran by Adéla (administrator) on NOTE-ADEL (01-01-2016 19:03:26)
Running from C:\Users\Adéla\Desktop
Loaded Profiles: Adéla (Available Profiles: Adéla)
Platform: Windows 8.1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Intel Corporation) C:\WINDOWS\System32\igfxCUIService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\WINDOWS\System32\lpksetup.exe
(AVAST Software) C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\AdminService.exe
(Broadcom Corp.) C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe
(Acer Incorporated) C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\dsiwmis.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Dritek System INC.) C:\WINDOWS\RfBtnSvc64.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LMutilps32.exe
(Microsoft Corporation) C:\WINDOWS\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.1\GoogleCrashHandler.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Microsoft Corporation) C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\livecomm.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\LManager.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.29.1\GoogleCrashHandler64.exe
(Dritek System Inc.) C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe
(Microsoft Corporation) C:\WINDOWS\System32\dllhost.exe
(Microsoft Corporation) C:\WINDOWS\System32\GWX\GWX.exe
(Intel Corporation) C:\WINDOWS\System32\igfxEM.exe
(Intel Corporation) C:\WINDOWS\System32\igfxHK.exe
(Intel Corporation) C:\WINDOWS\System32\igfxTray.exe
(Intel Corporation) C:\WINDOWS\System32\igfxext.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(Microsoft Corporation) C:\WINDOWS\System32\SkyDrive.exe
(Qualcomm Atheros Commnucations) C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe
() C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\ActivateDesktop.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\WINDOWS\System32\lpksetup.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Microsoft Corporation) C:\WINDOWS\System32\dllhost.exe
(Microsoft Corporation) C:\WINDOWS\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_6.3.9600.17709_none_fa7932f59afc2e40\TiWorker.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [108144 2012-11-05] (Microsoft Corporation)
HKLM\...\Run: [RtsCM] => C:\WINDOWS\RTSCM64.EXE [155864 2000-01-01] (Realtek Semiconductor Corp.)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [161728 2015-08-09] (IvoSoft)
HKLM-x32\...\Run: [LManager] => [X]
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7021880 2016-01-01] (AVAST Software)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\BtvStack.exe [132736 2013-01-28] (Qualcomm Atheros Commnucations)
HKU\S-1-5-21-1026615323-3005428012-3648901958-1001\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [7806232 2015-04-25] (SUPERAntiSpyware)
HKU\S-1-5-21-1026615323-3005428012-3648901958-1001\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\scrnsave.scr [11776 2014-10-29] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-01-01] (AVAST Software)
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-08-09] (IvoSoft)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-08-09] (IvoSoft)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: 0.0.0.1 mssplus.mcafee.com
Tcpip\Parameters: [DhcpNameServer] 10.108.156.57 77.48.254.254
Tcpip\..\Interfaces\{7F8E81BE-0B46-4D74-8492-0F6E68263CF1}: [DhcpNameServer] 10.108.156.57 77.48.254.254
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKU\S-1-5-21-1026615323-3005428012-3648901958-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1026615323-3005428012-3648901958-1001 -> {D6173BC3-FFF7-437A-83EB-5AC8A8453459} URL =
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-08-09] (IvoSoft)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\IEPlugIn.dll [2013-01-28] (Qualcomm Atheros Commnucations)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-01-01] (AVAST Software)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2015-08-09] (IvoSoft)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-08-09] (IvoSoft)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-01-01] (AVAST Software)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2015-08-09] (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-08-09] (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-08-09] (IvoSoft)
FireFox:
========
FF ProfilePath: C:\Users\Adéla\AppData\Roaming\Mozilla\Firefox\Profiles\634o6ffm.default-1429986979351
FF Homepage: hxxps://www.seznam.cz/
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_20_0_0_267.dll [2016-01-01] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll [2016-01-01] ()
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-20] (Google)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.41105.0\npctrl.dll [2015-11-04] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-31] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-31] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2015-12-22] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-09-30] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Adéla\AppData\Roaming\mozilla\plugins\np-mswmp.dll [2009-09-25] (Microsoft Corporation)
FF Extension: Adblock Plus - C:\Users\Adéla\AppData\Roaming\Mozilla\Firefox\Profiles\634o6ffm.default-1429986979351\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2015-07-28]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-01-01]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Endpoint Security\Mozilla Thunderbird => not found
Chrome:
=======
CHR HomePage: Default -> hxxps://www.seznam.cz/
CHR StartupUrls: Default -> "hxxp://www.google.com/","hxxps://www.seznam.cz/"
CHR Plugin: (Widevine Content Decryption Module) - C:\Users\Adéla\AppData\Local\Google\Chrome\User Data\WidevineCDM\1.4.8.866\_platform_specific\win_x86\widevinecdmadapter.dll (Google Inc.)
CHR Plugin: (Shockwave Flash) - C:\Users\Adéla\AppData\Local\Google\Chrome\User Data\PepperFlash\20.0.0.267\pepflashplayer.dll => No File
CHR Profile: C:\Users\Adéla\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (YouTube) - C:\Users\Adéla\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-31]
CHR Extension: (Adblock Plus) - C:\Users\Adéla\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2015-11-24]
CHR Extension: (Avast Online Security) - C:\Users\Adéla\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-11-04]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Adéla\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-14]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-01-01]
CHR HKLM-x32\...\Chrome\Extension: [iphahelpmejkbidhiecfeicblienleon] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S4 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [172344 2014-07-23] (SUPERAntiSpyware.com)
R2 AtherosSvc; C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [227456 2013-01-28] (Qualcomm Atheros Commnucations) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [226440 2016-01-01] (AVAST Software)
R2 BrcmCardReader; C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe [176640 2012-08-21] (Broadcom Corp.) [File not signed]
R2 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2435728 2012-08-24] (Acer Incorporated)
S3 DeviceFastLaneService; C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [468624 2012-08-23] (Acer Incorporated)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [658576 2012-08-23] (Acer Incorporated)
S2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [349728 2015-12-22] (WildTangent)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [319376 2014-10-01] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-18] (Intel Corporation)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.149\McCHSvc.exe [289256 2015-06-26] (McAfee, Inc.)
R2 RfButtonDriverService; C:\Windows\RfBtnSvc64.exe [93296 2012-09-20] (Dritek System INC.)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
S3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [X]
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2016-01-01] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [97648 2016-01-01] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2016-01-01] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2016-01-01] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1055560 2016-01-01] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [451040 2016-01-01] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [155304 2016-01-01] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [273784 2016-01-01] (AVAST Software)
S3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2013-01-28] (Qualcomm Atheros)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R3 Ps2Kb2Hid; C:\Windows\System32\drivers\aPs2Kb2Hid.sys [26736 2012-09-20] (Dritek System Inc.)
R3 rtsuvc; C:\Windows\system32\DRIVERS\rtsuvc.sys [9101016 2000-01-01] (Realtek Semiconductor Corp.)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
S3 ssudserd; C:\Windows\system32\DRIVERS\ssudserd.sys [206080 2014-01-22] (DEVGURU Co., LTD.(www.devguru.co.kr))
S3 trufos; C:\Windows\System32\drivers\trufos.sys [350160 2015-07-15] (BitDefender S.R.L.)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
S2 VBoxAswDrv; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-01-01 19:03 - 2016-01-01 19:03 - 00017657 _____ C:\Users\Adéla\Desktop\FRST.txt
2016-01-01 18:56 - 2016-01-01 16:43 - 02370560 _____ (Farbar) C:\Users\Adéla\Desktop\FRST64.exe
2016-01-01 18:41 - 2016-01-01 18:41 - 06805328 _____ (Piriform Ltd) C:\Users\Adéla\Downloads\ccsetup513.exe
2016-01-01 18:24 - 2016-01-01 18:44 - 00000000 ____D C:\ProgramData\Skype
2016-01-01 18:24 - 2016-01-01 18:40 - 00000000 ____D C:\Users\Adéla\AppData\Roaming\Skype
2016-01-01 18:24 - 2016-01-01 18:24 - 00000000 ____D C:\Users\Adéla\AppData\Local\Skype
2016-01-01 17:28 - 2016-01-01 17:38 - 00000000 ____D C:\d61b97c2d18ac578c5b77c78c45359
2016-01-01 16:57 - 2016-01-01 16:57 - 00386096 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2016-01-01 16:57 - 2016-01-01 16:57 - 00043112 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2016-01-01 16:53 - 2016-01-01 16:54 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-01-01 16:53 - 2016-01-01 16:53 - 00002071 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2016-01-01 16:47 - 2016-01-01 16:49 - 00032138 _____ C:\Users\Adéla\Downloads\Addition.txt
2016-01-01 16:44 - 2016-01-01 19:03 - 00000000 ____D C:\FRST
2016-01-01 16:44 - 2016-01-01 16:49 - 00032793 _____ C:\Users\Adéla\Downloads\FRST.txt
2016-01-01 16:43 - 2016-01-01 16:43 - 02370560 _____ (Farbar) C:\Users\Adéla\Downloads\FRST64.exe
2016-01-01 16:42 - 2015-10-10 18:20 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dpapisrv.dll
2016-01-01 16:40 - 2015-10-08 17:11 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\PCPKsp.dll
2016-01-01 16:40 - 2015-10-08 16:50 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PCPKsp.dll
2016-01-01 16:39 - 2016-01-01 16:39 - 01745920 _____ C:\Users\Adéla\Downloads\AdwCleaner.exe
2016-01-01 16:32 - 2016-01-01 16:32 - 01107968 _____ C:\Users\Adéla\Downloads\RSIT.exe
2016-01-01 16:31 - 2016-01-01 16:31 - 01721856 _____ (Farbar) C:\Users\Adéla\Downloads\FRST.exe
2015-12-31 15:37 - 2015-12-31 15:37 - 00927824 _____ (Google Inc.) C:\Users\Adéla\Downloads\ChromeSetup.exe
2015-12-31 15:33 - 2015-12-31 15:33 - 00001612 _____ C:\Users\Adéla\Desktop\opera – zástupce.lnk
2015-12-31 13:05 - 2015-12-31 13:05 - 00000000 ____D C:\Users\Adéla\AppData\Roaming\ClassicShell
2015-12-10 18:20 - 2015-12-10 18:28 - 143166031 _____ C:\Users\Adéla\Downloads\Gamma-Ray-PowerPlant.rar
2015-12-10 18:13 - 2015-12-10 18:19 - 101662716 _____ C:\Users\Adéla\Downloads\GammaRay-2007---Land-Of-The-Free-II.rar
2015-12-09 16:23 - 2015-10-05 19:28 - 00146432 ____N (Microsoft Corporation) C:\WINDOWS\system32\wininit.exe
2015-12-09 16:23 - 2015-10-05 19:25 - 00572928 ____N (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-12-09 16:22 - 2015-10-03 20:41 - 01385280 ____N (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2015-12-09 16:22 - 2015-10-03 20:41 - 01124384 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\msctf.dll
2015-12-09 13:35 - 2015-11-08 23:15 - 02887168 ____N (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-12-09 13:35 - 2015-11-08 21:53 - 02880000 ____N (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2015-12-09 13:35 - 2015-11-08 21:53 - 02487808 ____N (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2015-12-09 13:35 - 2015-11-08 21:41 - 01546752 ____N (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2015-12-09 13:34 - 2015-11-22 07:59 - 01735000 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2015-12-09 13:34 - 2015-11-22 07:58 - 01499920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ntdll.dll
2015-12-09 13:34 - 2015-11-09 01:41 - 01540728 ____N (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2015-12-09 13:34 - 2015-11-08 22:23 - 01994752 ____N (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2015-12-09 13:34 - 2015-11-08 22:01 - 01753600 ____N (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2015-12-09 13:34 - 2015-11-08 21:48 - 01376256 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\user32.dll
2015-12-09 13:34 - 2015-11-08 21:42 - 01490944 ____N (Microsoft Corporation) C:\WINDOWS\SysWOW64\GdiPlus.dll
2015-12-09 13:32 - 2015-10-28 16:49 - 02775552 ____N (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-12-08 18:33 - 2015-12-31 15:17 - 00000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software
2015-12-08 18:33 - 2015-12-08 18:33 - 00000000 ____D C:\Program Files\Common Files\AV
2015-12-08 09:54 - 2015-12-08 09:54 - 00088754 _____ C:\Users\Adéla\Downloads\Doklad SIPO_201512_2089385276.pdf
2015-12-07 16:20 - 2015-12-07 16:08 - 00847468 _____ C:\Users\Adéla\Documents\Kopie - Auta.1111.xlsx
2015-12-07 16:18 - 2015-12-07 17:58 - 04567552 _____ C:\Users\Adéla\Documents\Auta - foto.2.xls
2015-12-07 16:08 - 2015-12-07 16:08 - 01068524 _____ C:\Users\Adéla\Downloads\Auta - foto.2.xlsx
2015-12-07 16:08 - 2015-12-07 16:08 - 00847468 _____ C:\Users\Adéla\Downloads\Kopie - Auta.1111.xlsx
2015-12-06 20:06 - 2015-12-06 20:26 - 01269850 _____ C:\Users\Adéla\Documents\Auta - foto.1.ods
2015-12-06 19:18 - 2015-12-06 19:18 - 00847178 _____ C:\Users\Adéla\Documents\Auta - foto.ods
2015-12-05 18:13 - 2015-12-05 18:13 - 00000000 ____D C:\Users\Adéla\AppData\Local\CEF
2015-12-05 13:15 - 2015-12-05 13:15 - 00846106 _____ C:\Users\Adéla\Downloads\Auta.ods
2015-12-05 12:32 - 2015-12-06 19:14 - 00851368 _____ C:\Users\Adéla\Documents\Auta.ods
2015-12-05 09:49 - 2015-12-05 11:39 - 00812032 _____ C:\Users\Adéla\Documents\KFZ MOSKAU.xls
2015-12-05 09:48 - 2015-12-05 09:48 - 00112478 _____ C:\Users\Adéla\Documents\KFZ MOSKAU.ods
2015-12-04 15:57 - 2015-12-04 15:57 - 00013740 _____ C:\Users\Adéla\Downloads\KFZ MOSKAU (1).ods
2015-12-03 19:38 - 2015-12-03 19:38 - 00013740 _____ C:\Users\Adéla\Downloads\KFZ MOSKAU.ods
2015-12-02 19:15 - 2015-12-02 19:15 - 00175224 _____ C:\Users\Adéla\Downloads\15651127 (1).PDF
2015-12-02 19:14 - 2015-12-02 19:14 - 00175224 _____ C:\Users\Adéla\Downloads\15651127.PDF
2015-12-02 19:12 - 2015-12-02 19:12 - 01163245 _____ C:\Users\Adéla\Downloads\14737292.PDF
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-01-01 19:03 - 2015-08-14 15:29 - 00000976 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-01-01 19:02 - 2015-02-19 15:18 - 00000000 __RHD C:\Users\Adéla\OneDrive
2016-01-01 19:01 - 2013-08-22 15:45 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-01-01 19:01 - 2013-08-22 15:44 - 00508320 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-01-01 19:01 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS
2016-01-01 18:50 - 2013-07-25 21:18 - 00003598 _____ C:\WINDOWS\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-1026615323-3005428012-3648901958-1001
2016-01-01 18:46 - 2015-10-18 14:13 - 00000000 ____D C:\Users\Adéla\AppData\Local\ClassicShell
2016-01-01 18:46 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\Inf
2016-01-01 18:45 - 2013-08-22 16:36 - 00000000 ___HD C:\Program Files\WindowsApps
2016-01-01 18:45 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-01-01 18:42 - 2015-08-31 17:59 - 00000838 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-01-01 18:39 - 2015-08-14 15:29 - 00000980 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-01-01 18:33 - 2015-08-07 09:45 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-01-01 18:33 - 2013-08-22 14:25 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2016-01-01 18:32 - 2013-07-27 08:41 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-01-01 18:31 - 2012-07-26 08:59 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-01-01 18:23 - 2013-07-27 12:32 - 00000000 ____D C:\ProgramData\Microsoft Help
2016-01-01 17:38 - 2013-07-27 11:13 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-01-01 17:28 - 2013-07-27 09:33 - 140158008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-01-01 17:18 - 2015-05-07 20:08 - 00001201 _____ C:\Users\Adéla\AppData\Roaming\Microsoft\Windows\Start Menu\GOM Player.lnk
2016-01-01 17:17 - 2015-07-27 16:39 - 00003838 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1438011531
2016-01-01 17:17 - 2015-07-27 16:38 - 00001155 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2016-01-01 17:17 - 2015-07-27 16:38 - 00000000 ____D C:\Program Files (x86)\Opera
2016-01-01 17:04 - 2013-07-27 14:16 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-01-01 17:04 - 2013-07-27 14:16 - 00000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2016-01-01 16:58 - 2014-11-23 18:45 - 00451040 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys
2016-01-01 16:58 - 2014-11-23 18:45 - 00097648 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswmonflt.sys
2016-01-01 16:57 - 2014-11-23 18:46 - 00003924 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2016-01-01 16:57 - 2014-11-23 18:45 - 00273784 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2016-01-01 16:57 - 2014-11-23 18:45 - 00155304 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2016-01-01 16:57 - 2014-11-23 18:45 - 00093528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2016-01-01 16:57 - 2014-11-23 18:45 - 00065224 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2016-01-01 16:57 - 2014-11-23 18:45 - 00028656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2016-01-01 16:56 - 2014-11-23 18:45 - 01055560 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2016-01-01 16:53 - 2015-07-05 13:23 - 00003886 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2016-01-01 16:52 - 2013-07-27 13:10 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-01-01 16:37 - 2013-07-27 08:41 - 00003802 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2016-01-01 16:37 - 2013-07-27 08:40 - 00000000 ____D C:\Users\Adéla\AppData\Local\Adobe
2016-01-01 16:34 - 2013-07-27 14:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-01-01 13:18 - 2014-12-26 22:54 - 00003830 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{2DEC8BC2-C24E-4955-A622-E72F6899D27E}
2015-12-31 15:32 - 2013-08-31 10:23 - 00002224 ____N C:\Users\Public\Desktop\WildTangent Games App - acer.lnk
2015-12-31 15:32 - 2012-09-03 15:27 - 00002466 ____N C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WildTangent Games App - acer.lnk
2015-12-31 15:32 - 2012-09-03 15:27 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2015-12-31 15:32 - 2012-09-03 15:27 - 00000000 ____D C:\Program Files (x86)\WildTangent Games
2015-12-31 15:18 - 2014-11-23 18:46 - 00001942 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2015-12-31 14:34 - 2015-08-14 15:29 - 00003952 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-12-31 14:34 - 2015-08-14 15:29 - 00003716 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-12-31 14:21 - 2013-08-22 16:36 - 00000000 ___RD C:\WINDOWS\ToastData
2015-12-31 14:19 - 2014-12-26 20:28 - 00000000 ____D C:\Users\Adéla
2015-12-31 14:18 - 2015-11-17 18:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Smajlíci
2015-12-31 14:18 - 2015-11-17 18:51 - 00000000 ____D C:\Program Files (x86)\Smajlici
2015-12-31 14:18 - 2015-10-29 17:30 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ONE TOUCH Upgrade S 2.8.0
2015-12-31 14:18 - 2015-10-29 17:03 - 00000000 ____D C:\WINDOWS\QdAvPlug
2015-12-31 14:18 - 2015-10-29 17:03 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Alcatel PC Suite
2015-12-31 14:18 - 2015-10-18 14:13 - 00000000 ____D C:\ProgramData\ClassicShell
2015-12-31 14:18 - 2015-08-14 15:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome
2015-12-31 14:18 - 2015-07-27 17:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Free M4a to MP3 Converter
2015-12-31 14:18 - 2015-05-25 17:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Recuva
2015-12-31 14:18 - 2015-05-25 17:34 - 00000000 ____D C:\Program Files\Recuva
2015-12-31 14:18 - 2015-05-07 20:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2015-12-31 14:18 - 2015-05-07 20:23 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-12-31 14:18 - 2015-04-12 15:10 - 00000000 ___SD C:\WINDOWS\system32\GWX
2015-12-31 14:18 - 2015-02-14 18:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FreeSmartSoft
2015-12-31 14:18 - 2014-11-23 18:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2015-12-31 14:18 - 2014-11-23 18:39 - 00000000 ____D C:\Program Files\CCleaner
2015-12-31 14:18 - 2013-08-22 16:36 - 00000000 __RSD C:\WINDOWS\Media
2015-12-31 14:18 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\SystemResources
2015-12-31 14:18 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\WinMetadata
2015-12-31 14:18 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2015-12-31 14:18 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\Globalization
2015-12-31 14:18 - 2013-08-22 16:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2015-12-31 14:18 - 2013-08-22 14:36 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2015-12-31 14:17 - 2015-10-29 17:30 - 00000000 ____D C:\ONE TOUCH Upgrade S 2.8.0
2015-12-31 14:17 - 2015-10-29 17:03 - 00000000 ____D C:\Program Files (x86)\Alcatel PC Suite
2015-12-31 14:17 - 2015-07-27 17:23 - 00000000 ____D C:\Program Files (x86)\Free M4a to MP3 Converter
2015-12-31 14:17 - 2015-02-14 18:13 - 00000000 ____D C:\Program Files (x86)\FreeSmartSoft
2015-12-31 14:02 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\registration
2015-12-31 13:58 - 2014-11-23 18:45 - 00000000 ____D C:\Users\Adéla\AppData\Local\Google
2015-12-31 13:58 - 2013-07-25 21:11 - 00000000 ____D C:\Users\Adéla\AppData\Roaming\Adobe
2015-12-31 13:58 - 2013-07-25 21:10 - 00000000 ____D C:\Users\Adéla\AppData\Local\Packages
2015-12-31 13:57 - 2013-07-27 13:10 - 00000000 ____D C:\ProgramData\Adobe
2015-12-31 13:54 - 2014-11-23 18:45 - 00000000 ____D C:\Program Files (x86)\Google
2015-12-31 13:53 - 2013-07-27 12:32 - 00000000 __RHD C:\MSOCache
2015-12-30 19:34 - 2015-05-07 20:17 - 00000000 ____D C:\AdwCleaner
2015-12-29 17:40 - 2015-02-19 16:11 - 00000000 ____D C:\Users\Adéla\AppData\Local\Deployment
2015-12-26 09:48 - 2015-06-13 19:47 - 00826872 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2015-12-26 09:48 - 2015-06-13 19:47 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2015-12-11 20:09 - 2013-08-22 16:36 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-12-07 17:53 - 2015-04-16 17:56 - 00879616 ___SH C:\Users\Adéla\Documents\Thumbs.db
==================== Files in the root of some directories =======
2013-09-19 13:48 - 2013-09-19 13:48 - 4456448 _____ () C:\ProgramData\ClassicShellSetup64_3_6_8.msi
Some files in TEMP:
====================
C:\Users\Adéla\AppData\Local\Temp\sqlite3.dll
Some zero byte size files/folders:
==========================
C:\Windows\logo_1.exe
C:\Windows\RUNDL132.EXE
C:\Windows\VDLL.DLL
C:\Windows\SysWOW64\runouce.exe
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2015-03-04 21:40
==================== End of FRST.txt ============================
Děkuji vám za pomoc.¨
Přeji Vám všem štastný Nový rok 2016
