VIRY.CZ

Dobrý den, nefunguje mi hlavní panel a počítač je hrozně pomalý.
Tady je log

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:07-01-2015
Ran by Kosikovi (administrator) on KOSIKPC (07-01-2016 20:59:44)
Running from C:\Users\Kosikovi\Desktop
Loaded Profiles: Kosikovi (Available Profiles: Kosikovi)
Platform: Windows 10 Pro (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
() C:\Windows\SysWOW64\ASGT.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(The Privoxy team - www.privoxy.org) C:\Program Files (x86)\SmartComp Safe Network\privoxy.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(AVG Secure Search) C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.2.4\ToolbarUpdater.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
() C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.2.4\loggingserver.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Akamai Technologies, Inc.) C:\Users\Kosikovi\AppData\Local\Akamai\netsession_win.exe
(© 2015 Microsoft Corporation) C:\Users\Kosikovi\AppData\Local\Microsoft\BingSvc\BingSvc.exe
(Akamai Technologies, Inc.) C:\Users\Kosikovi\AppData\Local\Akamai\netsession_win.exe
() C:\Users\Kosikovi\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
() C:\Users\Kosikovi\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
() C:\Program Files (x86)\AVG Web TuneUp\vprot.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\Taskmgr.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCui.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MpCmdRun.exe
(forum.viry.cz) C:\Users\Kosikovi\Desktop\FRSTLauncher.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8492800 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2585744 2015-10-13] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [vProt] => C:\Program Files (x86)\AVG Web TuneUp\vprot.exe [2814864 2015-12-16] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596528 2015-11-09] (Oracle Corporation)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguix.exe [1139112 2015-12-08] (AVG Technologies CZ, s.r.o.)
HKU\S-1-5-21-1160693568-430831602-594197804-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2899136 2015-08-19] (Valve Corporation)
HKU\S-1-5-21-1160693568-430831602-594197804-1001\...\Run: [Akamai NetSession Interface] => C:\Users\Kosikovi\AppData\Local\Akamai\netsession_win.exe [4691384 2015-09-10] (Akamai Technologies, Inc.)
HKU\S-1-5-21-1160693568-430831602-594197804-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [28785792 2015-06-02] (Skype Technologies S.A.)
HKU\S-1-5-21-1160693568-430831602-594197804-1001\...\Run: [BingSvc] => C:\Users\Kosikovi\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-12] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-1160693568-430831602-594197804-1001\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Kosikovi\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-1160693568-430831602-594197804-1001\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Kosikovi\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [103080 2015-05-26] ()
HKU\S-1-5-21-1160693568-430831602-594197804-1001\...\Run: [uTorrent] => C:\Users\Kosikovi\AppData\Roaming\uTorrent\utorrent.exe [416168 2015-02-22] (BitTorrent, Inc.)
HKU\S-1-5-21-1160693568-430831602-594197804-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3639280 2015-12-20] (Electronic Arts)
HKU\S-1-5-21-1160693568-430831602-594197804-1001\...\MountPoints2: {7e02a91d-b538-11e4-be65-806e6f6e6963} - "G:\Start.exe"
IFEO\excel.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\groove.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\infopath.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\msaccess.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\msoxmled.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\mspub.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\mstore.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\offdiag.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\ois.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\onenote.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\outlook.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\powerpnt.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\winword.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk [2015-07-29]
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\3.11.149\SSScheduler.exe (McAfee, Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyServer: [S-1-5-21-1160693568-430831602-594197804-1001] => 127.0.0.1:8118
Hosts: 0.0.0.1 mssplus.mcafee.com
Tcpip\Parameters: [DhcpNameServer] 192.168.30.254 192.168.0.1
Tcpip\..\Interfaces\{6102f29c-d495-463b-bbc3-804687a425c9}: [DhcpNameServer] 192.168.30.254 192.168.0.1

Internet Explorer:
==================
HKU\S-1-5-21-1160693568-430831602-594197804-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://mysearch.avg.com/?cid={E0292357-0B10-4A5D-B8DB-E55F03FCCDE3}&mid=d5948c4f18e247cd9dc0c1f60e99b4f4-3e1724757f7bf6a441a70eb1e8bcc952a4b63c1f&lang=cs&ds=AVG&coid=avgtbavg&cmpid=0615pit&pr=fr&d=2015-07-10 12:27:35&v=4.1.8.599&pid=wtu&sg=&sap=hp
SearchScopes: HKU\S-1-5-21-1160693568-430831602-594197804-1001 -> DefaultScope {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={E0292357-0B10-4A5D-B8DB-E55F03FCCDE3}&mid=d5948c4f18e247cd9dc0c1f60e99b4f4-3e1724757f7bf6a441a70eb1e8bcc952a4b63c1f&lang=cs&ds=AVG&coid=avgtbavg&cmpid=0915tb&pr=fr&d=2015-07-10 12:27:35&v=4.1.8.599&pid=wtu&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1160693568-430831602-594197804-1001 -> {2FFFE402-A1E6-48B6-A1C8-EA5C56E21979} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-1160693568-430831602-594197804-1001 -> {3CAE9799-589F-4D40-B6A9-D35DAD07AB8F} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-1160693568-430831602-594197804-1001 -> {626D2295-3D53-49C5-B55D-4ABBA35B9BDE} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_12454
SearchScopes: HKU\S-1-5-21-1160693568-430831602-594197804-1001 -> {8E4C22EE-0509-4BF9-B86B-7D24309295E1} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-1160693568-430831602-594197804-1001 -> {95B7759C-8C7F-4BF1-B163-73684A933233} URL = hxxps://mysearch.avg.com/search?cid={E0292357-0B10-4A5D-B8DB-E55F03FCCDE3}&mid=d5948c4f18e247cd9dc0c1f60e99b4f4-3e1724757f7bf6a441a70eb1e8bcc952a4b63c1f&lang=cs&ds=AVG&coid=avgtbavg&cmpid=0915tb&pr=fr&d=2015-07-10 12:27:35&v=4.1.8.599&pid=wtu&sg=&sap=dsp&q={searchTerms}
SearchScopes: HKU\S-1-5-21-1160693568-430831602-594197804-1001 -> {D6D4167A-D138-48FE-8E99-A1B4453F0C42} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_12454
SearchScopes: HKU\S-1-5-21-1160693568-430831602-594197804-1001 -> {DB9FBAD3-FDC1-4AE3-B3C9-2130522ECCD0} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-1160693568-430831602-594197804-1001 -> {ED869DEE-154D-4B85-BA90-EE6D7634B1E6} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-1160693568-430831602-594197804-1001 -> {F471DC54-3683-42EB-8292-B890CADAF945} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_12454
SearchScopes: HKU\S-1-5-21-1160693568-430831602-594197804-1001 -> {FDC6571C-31F5-4C91-A912-E6C4C0E19A9E} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_12454
BHO: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files\AVG Web TuneUp\4.2.4.155\AVG Web TuneUp.dll [2015-12-16] (AVG)
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll => No File
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll [2015-12-12] (Oracle Corporation)
BHO-x32: AVG Web TuneUp -> {95B7759C-8C7F-4BF1-B163-73684A933233} -> C:\Program Files (x86)\AVG Web TuneUp\4.2.4.155\AVG Web TuneUp.dll [2015-12-16] (AVG)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-12-12] (Oracle Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Kosikovi\AppData\Roaming\Mozilla\Firefox\Profiles\131f8hrx.default
FF Homepage: hxxps://mysearch.avg.com/?cid={E0292357-0B10-4A5D-B8DB-E55F03FCCDE3}&mid=d5948c4f18e247cd9dc0c1f60e99b4f4-3e1724757f7bf6a441a70eb1e8bcc952a4b63c1f&lang=cs&ds=AVG&coid=avgtbavg&cmpid=0615pit&pr=fr&d=2015-07-10 12:27:35&v=4.1.8.599&pid=wtu&sg=&sap=hp
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_20_0_0_267.dll [2015-12-29] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll [2015-12-29] ()
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\40.2.4\\npsitesafety.dll [No File]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-12-12] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-12-12] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @ngm.nexoneu.com/NxGame -> C:\ProgramData\NexonEU\NGM\npNxGameEU.dll [2015-06-14] (Nexon)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2015-10-13] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2015-10-13] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-04] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-04] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-11-18] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1160693568-430831602-594197804-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Kosikovi\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2009-11-30] (Unity Technologies ApS)
FF SearchPlugin: C:\Users\Kosikovi\AppData\Roaming\Mozilla\Firefox\Profiles\131f8hrx.default\searchplugins\avg-secure-search.xml [2015-12-09]
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\wtu-secure-search.xml [2015-12-16]
FF Extension: AVG Web TuneUp - C:\Users\Kosikovi\AppData\Roaming\Mozilla\Firefox\Profiles\131f8hrx.default\Extensions\avg@toolbar.xpi [2015-12-16]
FF Extension: Seznam lištička - C:\Users\Kosikovi\AppData\Roaming\Mozilla\Firefox\Profiles\131f8hrx.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2015-11-24]

Chrome:
=======
CHR HomePage: Default -> mysearch.avg.com/?rvt=1
CHR NewTab: Default -> "chrome-extension://olfeabkoenfaoljndfecamgilllcpiak/core/chrome/content/speedDial/speedDial.html","chrome-extension://oppjbdkgpfhhllancffaoaemplhkngoc/newtab/newtab-hp.html"
CHR DefaultSearchURL: Default -> hxxps://mysearch.avg.com/search?rvt=1&sap=dsp&q={searchTerms}
CHR DefaultSearchKeyword: Default -> https://mysearch.avg.com
CHR DefaultSuggestURL: Default -> hxxps://toolbar.avg.com/acp?q={searchTerms}&o=1
CHR Profile: C:\Users\Kosikovi\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\Kosikovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-16]
CHR Extension: (Dokumenty Google) - C:\Users\Kosikovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-16]
CHR Extension: (Disk Google) - C:\Users\Kosikovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-27]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Kosikovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2015-06-17]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Kosikovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2015-06-17]
CHR Extension: (YouTube) - C:\Users\Kosikovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-01]
CHR Extension: (AVG Secure Search) - C:\Users\Kosikovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn [2015-12-29]
CHR Extension: (Vyhledávání Google) - C:\Users\Kosikovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Tabulky Google) - C:\Users\Kosikovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-16]
CHR Extension: (Dokumenty Google offline) - C:\Users\Kosikovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-26]
CHR Extension: (Skype) - C:\Users\Kosikovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-12-21]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Kosikovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-28]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Kosikovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2015-10-27]
CHR Extension: (Free Games Zone) - C:\Users\Kosikovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\oppjbdkgpfhhllancffaoaemplhkngoc [2015-08-17]
CHR Extension: (Gmail) - C:\Users\Kosikovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-28]
CHR HKU\S-1-5-21-1160693568-430831602-594197804-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-10-12]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ASGT; C:\Windows\SysWOW64\ASGT.exe [48640 2015-05-28] () [File not signed]
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1049000 2015-12-08] (AVG Technologies CZ, s.r.o.)
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2015-10-12] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2015-10-12] (Microsoft Corporation)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1148560 2015-10-13] (NVIDIA Corporation)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
S3 McComponentHostService; C:\Program Files\McAfee Security Scan\3.11.149\McCHSvc.exe [289256 2015-06-26] (McAfee, Inc.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1706128 2015-10-13] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [21833360 2015-10-13] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2015-12-20] (Electronic Arts)
R2 PrivoxyService; C:\Program Files (x86)\SmartComp Safe Network\privoxy.exe [371200 2015-08-25] (The Privoxy team - www.privoxy.org) [File not signed] <==== ATTENTION
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [4377000 2015-12-11] (AVG Technologies CZ, s.r.o.)
R2 UxTuneUp; C:\Windows\System32\uxtuneup.dll [48552 2015-12-11] (AVG Technologies CZ, s.r.o.)
R2 UxTuneUp; C:\WINDOWS\SysWOW64\uxtuneup.dll [42408 2015-12-11] (AVG Technologies CZ, s.r.o.)
R2 vToolbarUpdater40.2.4; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.2.4\ToolbarUpdater.exe [1923984 2015-12-16] (AVG Secure Search)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 athur; C:\Windows\System32\drivers\athuwbx.sys [2702336 2013-11-20] (Qualcomm Atheros Communications, Inc.)
R3 atkdisplf; C:\Windows\system32\drivers\ATKDispLowFilter.sys [39424 2009-02-17] (ASUSTeK Computer Inc.)
S2 EIO_XP; C:\WINDOWS\system32\drivers\EIO64_XP.sys [16384 2009-07-30] (ASUSTeK Computer Inc.) [File not signed]
R4 IOMap; C:\WINDOWS\system32\drivers\IOMap64.sys [24824 2014-10-23] (ASUSTeK Computer Inc.)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [19600 2015-10-13] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38032 2015-10-13] (NVIDIA Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-07-10] (Realtek )
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [31144 2015-09-15] (TuneUp Software)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S3 EagleX64; \??\C:\WINDOWS\system32\drivers\EagleX64.sys [X]
S1 EIO64; \SystemRoot\System32\drivers\EIO64.sys [X]
S3 Video3D; \SystemRoot\System32\Drivers\Video3D64.sys [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-01-07 20:59 - 2016-01-07 21:00 - 00026131 _____ C:\Users\Kosikovi\Desktop\FRST.txt
2016-01-07 20:59 - 2016-01-07 20:59 - 00000000 ____D C:\FRST
2016-01-07 20:59 - 2016-01-07 20:07 - 01749504 _____ C:\Users\Kosikovi\Desktop\adwcleaner_5.028.exe
2016-01-07 20:59 - 2016-01-07 19:39 - 00112640 _____ (forum.viry.cz) C:\Users\Kosikovi\Desktop\FRSTLauncher.exe
2016-01-07 20:59 - 2016-01-07 19:34 - 02370560 _____ (Farbar) C:\Users\Kosikovi\Desktop\FRST64.exe
2016-01-07 20:54 - 2016-01-07 20:54 - 00003822 _____ C:\WINDOWS\System32\Tasks\Open Chrome
2016-01-07 20:52 - 2016-01-07 20:52 - 02370560 _____ (Farbar) C:\Users\Kosikovi\Downloads\FRST64.exe
2016-01-07 19:55 - 2016-01-07 19:55 - 00016148 _____ C:\WINDOWS\system32\KOSIKPC_Kosikovi_HistoryPrediction.bin
2016-01-07 14:06 - 2016-01-07 15:37 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-01-06 18:02 - 2016-01-06 18:02 - 00757248 _____ C:\Users\Kosikovi\Desktop\Media Load Converter (Youtube, Dailymotion, Vimeo, Vevo and more...).exe
2016-01-06 18:02 - 2016-01-06 18:02 - 00000000 _____ C:\Users\Kosikovi\AppData\Roaming\mediaload.io.lock
2016-01-05 14:01 - 2016-01-05 14:01 - 01647104 _____ C:\Users\Kosikovi\Downloads\VY_32_INOVACE_ZEM.2.07 (3).ppt
2016-01-05 13:53 - 2016-01-05 13:53 - 01824256 _____ C:\Users\Kosikovi\Downloads\V-2_BC_46-Cer_Z7_Obyvatelstvo_Ameriky.ppt
2016-01-05 13:53 - 2016-01-05 13:53 - 01274368 _____ C:\Users\Kosikovi\Downloads\ze_2_amerika_obyvatelstvo_sidla.ppt
2016-01-05 13:49 - 2016-01-05 13:49 - 02990592 _____ C:\Users\Kosikovi\Downloads\z_081_svtadly_jinamerika-obyvatelstvo1.ppt
2016-01-05 13:48 - 2016-01-05 13:48 - 03361792 _____ C:\Users\Kosikovi\Downloads\Latinska_Amerika_-_obyvatelstvo.ppt
2016-01-05 13:44 - 2016-01-05 13:44 - 00834048 _____ C:\Users\Kosikovi\Downloads\324obyvatelstvo Ameriky(1).ppt
2016-01-05 13:30 - 2016-01-05 13:30 - 01000448 _____ C:\Users\Kosikovi\Downloads\4._Obyvatelstvo_Ameriky.ppt
2016-01-04 14:04 - 2016-01-04 14:04 - 01647104 _____ C:\Users\Kosikovi\Downloads\VY_32_INOVACE_ZEM.2.07 (2).ppt
2016-01-01 12:51 - 2016-01-01 12:51 - 00000000 ____D C:\Users\Kosikovi\AppData\LocalLow\Adobe
2016-01-01 12:48 - 2016-01-01 13:04 - 00003972 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2016-01-01 12:47 - 2016-01-01 13:04 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-01-01 12:47 - 2016-01-01 12:47 - 00002124 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2016-01-01 12:47 - 2016-01-01 12:47 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-01-01 12:43 - 2015-10-07 08:20 - 00645154 _____ C:\Users\Kosikovi\Desktop\Testy 5-6 Marian.pdf
2016-01-01 12:43 - 2013-12-09 00:09 - 01558613 _____ C:\Users\Kosikovi\Desktop\Testy 3-4 Marian.pdf
2016-01-01 12:42 - 2015-01-19 17:35 - 00936141 _____ C:\Users\Kosikovi\Desktop\Testy 1-2 Marian.pdf
2015-12-31 18:04 - 2015-12-31 18:04 - 00756736 _____ C:\Users\Kosikovi\Desktop\Online Media Converter (Youtube, Dailymotion, Vimeo, Vevo and more...).exe
2015-12-31 18:04 - 2015-12-31 18:04 - 00000000 _____ C:\Users\Kosikovi\AppData\Roaming\mediaconverter.io.lock
2015-12-30 19:28 - 2015-12-30 19:31 - 47387689 ____R C:\Users\Kosikovi\Desktop\Barcelona Defender JORDI ALBA vs. SkillTwins - Amazing Skills! ★.mp4
2015-12-30 19:28 - 2015-12-30 19:30 - 39116899 ____R C:\Users\Kosikovi\Desktop\SkillTwins 6 Amazing Futsal Skill Goals In Same Game! ★.mp4
2015-12-30 19:27 - 2015-12-30 19:29 - 34195512 ____R C:\Users\Kosikovi\Desktop\Learn Amazing FUTSAL_STREET Football Skills Tutorial! ★.mp4
2015-12-28 18:21 - 2015-12-28 18:21 - 02875392 _____ C:\Users\Kosikovi\Downloads\Severni_Amerika_I.ppt
2015-12-24 21:41 - 2015-12-29 12:58 - 00000000 ____D C:\WINDOWS\Minidump
2015-12-24 17:41 - 2015-12-24 17:41 - 00001926 _____ C:\Users\Public\Desktop\GTA San Andreas.lnk
2015-12-21 12:14 - 2015-12-21 12:14 - 00000000 ____D C:\Users\Kosikovi\AppData\Roaming\Sony Creative Software Inc
2015-12-20 22:45 - 2015-12-20 22:45 - 00000000 ____D C:\Users\Kosikovi\AppData\Roaming\java
2015-12-20 21:54 - 2015-12-21 09:03 - 00001954 _____ C:\Users\Kosikovi\Desktop\Play GTA San Andreas.lnk
2015-12-20 16:44 - 2015-12-20 16:45 - 00000000 ____D C:\Users\Kosikovi\Documents\GTA San Andreas User Files
2015-12-20 14:05 - 2015-12-20 14:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2015-12-20 14:05 - 2015-12-20 14:05 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2015-12-20 14:05 - 2005-06-07 16:59 - 14383616 ____R C:\Users\Kosikovi\Desktop\gta_sa.exe
2015-12-20 14:04 - 2015-12-20 14:04 - 00000000 ____D C:\Users\Kosikovi\AppData\Local\NVIDIA Corporation
2015-12-20 14:03 - 2015-12-20 14:03 - 00000000 ____D C:\Users\Kosikovi\AppData\Local\NVIDIA
2015-12-20 13:58 - 2015-12-20 13:58 - 00002206 _____ C:\Users\Public\Desktop\3D Vision Photo Viewer.lnk
2015-12-20 13:58 - 2015-12-20 13:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2015-12-20 13:58 - 2015-12-20 13:58 - 00000000 ____D C:\Program Files (x86)\AGEIA Technologies
2015-12-20 13:58 - 2015-10-13 20:00 - 01756424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2015-12-20 13:58 - 2015-10-13 20:00 - 01514528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2015-12-20 13:58 - 2015-10-13 20:00 - 01316184 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2015-12-20 13:58 - 2015-10-13 20:00 - 01278920 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2015-12-20 13:58 - 2015-10-13 16:26 - 00608048 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2015-12-20 13:56 - 2015-10-13 20:00 - 31514288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2015-12-20 13:56 - 2015-10-13 20:00 - 24199344 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2015-12-20 13:56 - 2015-10-13 20:00 - 22993200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2015-12-20 13:56 - 2015-10-13 20:00 - 18634072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2015-12-20 13:56 - 2015-10-13 20:00 - 16128576 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2015-12-20 13:56 - 2015-10-13 20:00 - 15293104 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2015-12-20 13:56 - 2015-10-13 20:00 - 14497568 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2015-12-20 13:56 - 2015-10-13 20:00 - 13916600 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2015-12-20 13:56 - 2015-10-13 20:00 - 13828224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2015-12-20 13:56 - 2015-10-13 20:00 - 11272048 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2015-12-20 13:56 - 2015-10-13 20:00 - 11209376 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2015-12-20 13:56 - 2015-10-13 20:00 - 04245624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2015-12-20 13:56 - 2015-10-13 20:00 - 03986608 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2015-12-20 13:56 - 2015-10-13 20:00 - 02823992 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2015-12-20 13:56 - 2015-10-13 20:00 - 00944304 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2015-12-20 13:56 - 2015-10-13 20:00 - 00907440 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2015-12-20 13:56 - 2015-10-13 20:00 - 00903472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2015-12-20 13:56 - 2015-10-13 20:00 - 00869040 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2015-12-20 13:10 - 2015-12-20 13:10 - 00000782 _____ C:\Users\Kosikovi\Documents\Hudba – zástupce.lnk
2015-12-17 19:36 - 2015-12-17 19:38 - 123310264 ____R C:\Users\Kosikovi\Desktop\Extreme STREET SOCCER skills _ SÉAN GARNIER feat LISA _ @seanfreestyle.mp4
2015-12-14 11:53 - 2015-12-14 11:53 - 00002904 _____ C:\WINDOWS\System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance
2015-12-13 21:03 - 2015-12-11 15:33 - 00048552 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\uxt83A2.tmp
2015-12-13 21:02 - 2015-12-13 21:02 - 00000000 ____D C:\Users\Default\AppData\Roaming\AVG
2015-12-13 21:02 - 2015-12-13 21:02 - 00000000 ____D C:\Users\Default\AppData\Local\AVG
2015-12-13 21:02 - 2015-12-13 21:02 - 00000000 ____D C:\Users\Default User\AppData\Roaming\AVG
2015-12-13 21:02 - 2015-12-13 21:02 - 00000000 ____D C:\Users\Default User\AppData\Local\AVG
2015-12-13 08:52 - 2015-12-13 08:52 - 00002922 _____ C:\WINDOWS\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013
2015-12-12 12:24 - 2015-12-12 12:24 - 00000000 ___HD C:\$WINDOWS.~BT
2015-12-12 12:05 - 2010-04-19 18:15 - 01354240 _____ (ASUSTeK Computer Inc.) C:\WINDOWS\system32\atklumdispx.dll
2015-12-12 12:05 - 2010-04-19 18:15 - 01336320 _____ (ASUSTeK Computer Inc.) C:\WINDOWS\SysWOW64\ATKLUMDISP.dll
2015-12-12 12:05 - 2010-04-15 19:33 - 00151040 _____ (ASUSTeK Computer Inc.) C:\WINDOWS\system32\atkdx11dispx.dll
2015-12-12 12:05 - 2010-04-15 19:33 - 00150528 _____ (ASUSTeK Computer Inc.) C:\WINDOWS\system32\atkdx10dispx.dll
2015-12-12 12:05 - 2010-04-15 19:33 - 00135168 _____ (ASUSTeK Computer Inc.) C:\WINDOWS\SysWOW64\atkdx11disp.dll
2015-12-12 12:05 - 2010-04-15 19:33 - 00135168 _____ (ASUSTeK Computer Inc.) C:\WINDOWS\SysWOW64\atkdx10disp.dll
2015-12-12 12:05 - 2010-04-06 14:35 - 05473280 _____ (ASUSTeK COMPUTER INC.) C:\WINDOWS\system32\ATKOSDX64.dll
2015-12-12 12:05 - 2010-01-22 21:14 - 00016896 _____ (ASUSTeK COMPUTER INC.) C:\WINDOWS\system32\ATKOGL64.dll
2015-12-12 12:05 - 2009-12-01 14:22 - 00063488 _____ (ASUSTeK COMPUTER INC.) C:\WINDOWS\system32\ATKFUSService.exe
2015-12-12 12:05 - 2009-05-25 16:31 - 00053248 _____ C:\WINDOWS\SysWOW64\asrussian.dll
2015-12-12 12:05 - 2009-05-25 16:31 - 00053248 _____ C:\WINDOWS\SysWOW64\askorean.dll
2015-12-12 12:05 - 2009-05-25 16:31 - 00053248 _____ C:\WINDOWS\SysWOW64\asjapan.dll
2015-12-12 12:05 - 2009-05-25 16:31 - 00053248 _____ C:\WINDOWS\SysWOW64\ASCHT.dll
2015-12-12 12:05 - 2009-05-25 16:31 - 00053248 _____ C:\WINDOWS\SysWOW64\aschs.dll
2015-12-12 12:05 - 2009-05-25 16:31 - 00053248 _____ C:\WINDOWS\SysWOW64\asgerman.dll
2015-12-12 12:05 - 2009-05-25 16:31 - 00053248 _____ C:\WINDOWS\SysWOW64\asfrench.dll
2015-12-12 12:05 - 2009-05-25 16:31 - 00053248 _____ C:\WINDOWS\SysWOW64\aseng.dll
2015-12-12 12:05 - 2009-02-17 18:22 - 00930272 _____ (Microsoft Corporation) C:\WINDOWS\system32\DPInst.exe
2015-12-12 12:05 - 2009-02-17 18:22 - 00102400 _____ (ASMedia Techonology) C:\WINDOWS\ASMT_CE.dll
2015-12-12 12:05 - 2009-02-17 18:22 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\devcon.exe
2015-12-12 12:05 - 2009-02-17 18:22 - 00071680 _____ (ASMedia Technology) C:\WINDOWS\i2c.dll
2015-12-12 12:05 - 2009-02-17 18:22 - 00069632 _____ (ASMedia Technology) C:\WINDOWS\i2c_i.dll
2015-12-12 12:05 - 2009-02-17 18:22 - 00068608 _____ (ASMedia Technology) C:\WINDOWS\nVGA_i2c.dll
2015-12-12 12:05 - 2009-02-17 18:22 - 00039424 _____ (ASUSTeK Computer Inc.) C:\WINDOWS\system32\Drivers\ATKDispLowFilter.sys
2015-12-12 12:05 - 2009-02-17 18:22 - 00039424 _____ (ASUSTeK Computer Inc.) C:\WINDOWS\system32\ATKDispLowFilter.sys
2015-12-12 12:05 - 2009-02-17 18:22 - 00017792 _____ (ASUSTeK Computer Inc.) C:\WINDOWS\system32\asusgsb.sys
2015-12-12 12:05 - 2009-02-17 18:22 - 00010766 _____ C:\WINDOWS\system32\asusgsb.cat
2015-12-12 12:05 - 2009-02-17 18:22 - 00010733 _____ C:\WINDOWS\system32\ATKDispLowFilter.cat
2015-12-12 12:04 - 2015-12-12 12:04 - 20476715 _____ C:\Users\Kosikovi\Downloads\GamerOSD3070419_Win7Vista3264.zip
2015-12-12 11:54 - 2015-12-12 11:54 - 00003798 _____ C:\WINDOWS\System32\Tasks\Java Platform SE Auto Updater
2015-12-12 11:44 - 2015-12-20 13:46 - 00000000 ____D C:\Program Files (x86)\GameFace Messenger
2015-12-12 11:44 - 2015-12-12 11:44 - 00737280 _____ (Indigo Rose Corporation) C:\WINDOWS\iun6002.exe
2015-12-12 11:44 - 2015-12-12 11:44 - 00000000 ____D C:\Program Files (x86)\My Company Name
2015-12-12 11:43 - 2005-10-20 16:26 - 00018048 _____ (ASUSTeK Computer Inc.) C:\WINDOWS\system32\Drivers\asusgsb64.sys
2015-12-12 11:41 - 2015-12-12 11:41 - 00000000 ____D C:\Users\Kosikovi\AppData\Roaming\AVG
2015-12-12 11:40 - 2016-01-07 21:00 - 00000000 ____D C:\ProgramData\Avg
2015-12-12 11:39 - 2016-01-07 21:00 - 00000000 ____D C:\Users\Kosikovi\AppData\Local\AvgSetupLog
2015-12-12 11:38 - 2015-12-12 11:38 - 00040404 _____ C:\Users\Kosikovi\Downloads\[CzT]Saints_Row_The_Third_2011_CZ_.torrent
2015-12-12 11:34 - 2015-12-12 11:34 - 00017658 _____ C:\Users\Kosikovi\Downloads\[CzT]AVG_PC_TuneUp_2016_v_707_EN_CZ_SK_.torrent
2015-12-12 11:14 - 2015-12-12 12:22 - 00000000 ____D C:\WINDOWS\LastGood
2015-12-12 11:14 - 2012-05-15 11:48 - 01738048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco64.dll
2015-12-12 11:14 - 2012-05-15 11:48 - 01468224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvgenco64.dll
2015-12-12 11:08 - 2009-07-30 11:16 - 00016384 _____ (ASUSTeK Computer Inc.) C:\WINDOWS\system32\Drivers\EIO64_XP.sys
2015-12-12 11:02 - 2014-10-23 08:57 - 00024824 ____N (ASUSTeK Computer Inc.) C:\WINDOWS\system32\Drivers\IOMap64.sys
2015-12-12 10:58 - 2015-12-12 11:14 - 00000000 ____D C:\Users\Kosikovi\AppData\Local\ElevatedDiagnostics
2015-12-12 10:56 - 2015-12-20 13:38 - 00000000 ____D C:\Program Files (x86)\ASUS
2015-12-12 10:56 - 2015-12-20 13:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2015-12-12 10:56 - 2015-12-12 10:56 - 00001140 _____ C:\Users\Public\Desktop\ASUS GPU TweakII.lnk
2015-12-12 10:56 - 2015-12-12 10:56 - 00000000 ____D C:\Users\Kosikovi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASUS
2015-12-12 10:55 - 2015-12-12 10:55 - 00000000 ____D C:\WINDOWS\Downloaded Installations
2015-12-12 10:55 - 2015-06-26 08:23 - 36782720 _____ (ASUSTek COMPUTER INC. ) C:\Users\Kosikovi\Desktop\setup.exe
2015-12-12 10:55 - 2010-04-07 13:53 - 00000000 ____D C:\Users\Kosikovi\Desktop\SmartDoc557
2015-12-12 10:42 - 2015-10-13 20:00 - 12898992 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2015-12-12 10:42 - 2015-10-13 20:00 - 03209920 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2015-12-12 10:42 - 2015-10-13 20:00 - 00038032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2015-12-12 10:42 - 2015-10-13 20:00 - 00035472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2015-12-12 10:42 - 2015-10-13 20:00 - 00032400 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2015-12-12 10:41 - 2015-12-12 10:41 - 00000000 ____D C:\NVIDIA
2015-12-12 10:22 - 2015-12-20 22:45 - 00000000 ____D C:\Users\Kosikovi\.oracle_jre_usage
2015-12-12 10:22 - 2015-12-12 10:23 - 00000000 ____D C:\ProgramData\Oracle
2015-12-12 10:22 - 2015-12-12 10:22 - 00097888 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2015-12-12 10:22 - 2015-12-12 10:22 - 00000000 ____D C:\Users\Kosikovi\AppData\Roaming\Sun
2015-12-12 10:22 - 2015-12-12 10:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-12-12 10:22 - 2015-12-12 10:22 - 00000000 ____D C:\Program Files (x86)\Java
2015-12-12 10:21 - 2015-12-12 10:21 - 00584288 _____ (Oracle Corporation) C:\Users\Kosikovi\Downloads\JavaSetup8u66.exe
2015-12-12 10:21 - 2015-12-12 10:21 - 00000000 ____D C:\Users\Kosikovi\AppData\LocalLow\Oracle
2015-12-12 10:19 - 2015-12-12 10:19 - 04947168 _____ (Advanced Micro Devices, Inc.) C:\Users\Kosikovi\Downloads\autodetectutility.exe
2015-12-10 20:17 - 2015-12-12 10:44 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2015-12-10 20:16 - 2015-10-13 20:00 - 01908528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6434192.dll
2015-12-10 20:16 - 2015-10-13 20:00 - 01556656 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6434192.dll
2015-12-10 17:20 - 2015-12-10 17:20 - 00000000 ____D C:\Program Files\Common Files\AVG Secure Search

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-01-07 20:59 - 2015-07-10 10:05 - 00000000 ____D C:\Windows
2016-01-07 20:57 - 2015-10-30 10:50 - 00001803 _____ C:\Users\Kosikovi\Desktop\Edge.lnk
2016-01-07 20:52 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-01-07 20:19 - 2015-06-18 20:24 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-01-07 20:07 - 2015-02-16 11:32 - 00000976 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-01-07 19:52 - 2015-03-21 11:05 - 00004198 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{7F8234D7-B768-4863-8517-942F48001613}
2016-01-07 19:07 - 2015-02-16 11:32 - 00000972 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-01-07 16:50 - 2015-07-11 14:46 - 00000000 ____D C:\ProgramData\Origin
2016-01-07 16:31 - 2015-07-11 17:31 - 00000000 ____D C:\Users\Kosikovi\Documents\FIFA 14
2016-01-07 15:37 - 2015-06-24 18:48 - 00000000 ____D C:\Users\Kosikovi\AppData\Roaming\uTorrent
2016-01-07 15:37 - 2015-06-16 13:36 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-01-07 15:35 - 2015-08-03 13:08 - 00000000 ____D C:\ProgramData\NVIDIA
2016-01-07 15:35 - 2015-07-10 13:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-01-06 15:56 - 2015-07-10 12:02 - 00000000 ____D C:\WINDOWS\INF
2016-01-05 13:23 - 2015-08-03 13:10 - 00000000 ____D C:\Users\Kosikovi
2016-01-01 12:52 - 2015-07-05 15:03 - 00000000 ____D C:\ProgramData\Adobe
2016-01-01 12:51 - 2015-06-18 20:23 - 00000000 ____D C:\Users\Kosikovi\AppData\Local\Adobe
2016-01-01 12:51 - 2015-02-15 19:58 - 00000000 ____D C:\Users\Kosikovi\AppData\Roaming\Adobe
2016-01-01 12:44 - 2015-08-03 13:23 - 01762290 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-01-01 12:44 - 2015-07-10 17:02 - 00745406 _____ C:\WINDOWS\system32\perfh005.dat
2016-01-01 12:44 - 2015-07-10 17:02 - 00149344 _____ C:\WINDOWS\system32\perfc005.dat
2015-12-22 11:56 - 2015-11-14 18:10 - 00000000 ___RD C:\Users\Kosikovi\Desktop\ 
2015-12-21 13:02 - 2015-09-23 12:44 - 00090808 _____ C:\Users\Kosikovi\AppData\Local\GDIPFONTCACHEV1.DAT
2015-12-21 12:15 - 2015-11-01 11:41 - 00002041 _____ C:\Users\Kosikovi\Desktop\Exµs ™.lnk
2015-12-21 12:15 - 2015-05-13 15:14 - 00001038 _____ C:\Users\Kosikovi\Desktop\Vegas Pro 13.0 (64-bit).lnk
2015-12-21 12:15 - 2015-05-13 14:58 - 00001026 _____ C:\Users\Kosikovi\AppData\Roaming\Microsoft\Windows\Start Menu\Vegas Pro 13.0 (64-bit).lnk
2015-12-21 12:15 - 2015-05-13 14:57 - 00000000 ____D C:\Program Files\Sony
2015-12-20 22:48 - 2015-03-20 17:24 - 00000000 ____D C:\Users\Kosikovi\AppData\Roaming\.minecraft
2015-12-20 14:05 - 2015-02-15 22:50 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-12-20 14:04 - 2015-08-03 13:08 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-12-20 13:58 - 2015-08-03 13:07 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2015-12-20 13:58 - 2015-02-28 09:38 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2015-12-20 13:48 - 2015-08-31 18:59 - 00000000 ____D C:\ProgramData\Apple
2015-12-20 13:46 - 2015-08-17 11:29 - 00000000 ____D C:\Program Files (x86)\Origin
2015-12-20 13:42 - 2015-07-10 09:48 - 00000000 ____D C:\ProgramData\AVG2015
2015-12-20 13:42 - 2015-07-10 09:41 - 00000000 ____D C:\ProgramData\MFAData
2015-12-20 13:41 - 2015-07-10 10:05 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2015-12-20 13:39 - 2015-07-10 12:04 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2015-12-20 13:37 - 2015-06-10 18:51 - 00000000 __RHD C:\Users\Public\AccountPictures
2015-12-20 13:36 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\Help
2015-12-20 13:33 - 2015-07-10 10:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-12-20 13:13 - 2015-07-10 12:04 - 00000000 __RHD C:\Users\Public\Libraries
2015-12-17 15:09 - 2015-02-16 11:33 - 00002260 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2015-12-16 16:22 - 2015-07-10 11:27 - 00000000 ____D C:\Program Files\AVG Web TuneUp
2015-12-16 16:22 - 2015-07-10 11:27 - 00000000 ____D C:\Program Files (x86)\AVG Web TuneUp
2015-12-12 12:39 - 2015-07-10 10:05 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2015-12-12 12:39 - 2015-04-22 17:11 - 00000000 ____D C:\Users\Kosikovi\AppData\Roaming\Skype
2015-12-12 12:39 - 2015-03-21 09:13 - 00000000 ____D C:\Program Files (x86)\Steam
2015-12-12 12:05 - 2015-02-16 10:57 - 00000000 ____D C:\Program Files\ASUS
2015-12-12 12:00 - 2015-02-15 19:57 - 00000000 ____D C:\Users\Kosikovi\AppData\Local\VirtualStore
2015-12-12 11:59 - 2015-07-10 13:20 - 00345808 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-12-12 11:41 - 2015-07-15 17:10 - 00000000 ____D C:\Users\Kosikovi\AppData\Local\Avg
2015-12-12 11:41 - 2015-07-10 09:47 - 00000000 ____D C:\Program Files (x86)\AVG
2015-12-11 19:11 - 2015-05-07 10:34 - 00000000 ____D C:\Users\Kosikovi\Desktop\Beník
2015-12-11 19:07 - 2015-05-11 18:55 - 00000000 ____D C:\Users\Kosikovi\AppData\Local\Paint.NET
2015-12-10 14:35 - 2015-08-25 11:30 - 00003954 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1440498617
2015-12-10 14:35 - 2015-08-25 11:30 - 00001120 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2015-12-10 14:35 - 2015-08-25 11:29 - 00000000 ____D C:\Program Files (x86)\Opera
2015-12-09 15:32 - 2015-08-03 13:31 - 00002433 _____ C:\Users\Kosikovi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-12-09 15:32 - 2015-08-03 13:31 - 00000000 ___RD C:\Users\Kosikovi\OneDrive
2015-12-09 04:39 - 2015-02-22 11:58 - 00301728 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe

==================== Files in the root of some directories =======

2015-06-04 16:33 - 2013-12-24 11:16 - 2589228 _____ () C:\Users\Kosikovi\AppData\Roaming\CTL11.exe
2015-06-04 16:33 - 2014-12-14 18:41 - 2439248 _____ () C:\Users\Kosikovi\AppData\Roaming\ctl8.exe
2015-12-31 18:04 - 2015-12-31 18:04 - 0000000 _____ () C:\Users\Kosikovi\AppData\Roaming\mediaconverter.io.lock
2016-01-06 18:02 - 2016-01-06 18:02 - 0000000 _____ () C:\Users\Kosikovi\AppData\Roaming\mediaload.io.lock
2015-07-21 18:03 - 2015-07-21 18:03 - 0003584 _____ () C:\Users\Kosikovi\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-08-03 13:07 - 2015-08-03 13:07 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some files in TEMP:
====================
C:\Users\Kosikovi\AppData\Local\Temp\avguirn_08188711664.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-12-29 12:04

==================== End of FRST.txt ============================



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: () (Fixed) (Total:78.12 GB) (Free:7.29 GB) NTFS
Drive d: (Filmy a Seriály) (Fixed) (Total:214.84 GB) (Free:7.36 GB) NTFS
Drive e: (Hry) (Fixed) (Total:117.19 GB) (Free:2.39 GB) NTFS
Drive f: () (Removable) (Total:3.8 GB) (Free:1.21 GB) FAT32
Drive g: (LANGMaster) (CDROM) (Total:0.46 GB) (Free:0 GB) CDFS
Drive i: (Záloha) (Fixed) (Total:55.5 GB) (Free:7.79 GB) NTFS

Available physical RAM: 2147.85 MB
Total physical RAM: 4063.14 MB
Percentage of memory in use: 47%

==================== MBR and Partition Table ==================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 2F112F10)
Partition 1: (Not Active) - (Size=993 KB) - (Type=42)
Partition 2: (Active) - (Size=100 MB) - (Type=42)
Partition 3: (Not Active) - (Size=78.1 GB) - (Type=42)
Partition 4: (Not Active) - (Size=387.5 GB) - (Type=42)
Disk: 1 (Size: 3.8 GB) (Disk ID: 00000000)

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Alternate Data Streams (whitelisted) ==================


==================== Security Center ==================

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Kosikovi\Desktop" je 3537 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]


==================== End Of Log ==============================

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

# AdwCleaner v5.028 - Logfile created 07/01/2016 at 21:28:10
# Updated 04/01/2016 by Xplode
# Database : 2016-01-04.2 [Server]
# Operating system : Windows 10 Pro (x64)
# Username : Kosikovi - KOSIKPC
# Running from : C:\Users\Kosikovi\Desktop\adwcleaner_5.028.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****

[-] Service Deleted : PrivoxyService
[-] Service Deleted : vToolbarUpdater40.2.4

***** [ Folders ] *****

[-] Folder Deleted : C:\Program Files (x86)\SmartComp Safe Network
[-] Folder Deleted : C:\Program Files (x86)\Common Files\AVG Secure Search
[-] Folder Deleted : C:\Program Files\Common Files\AVG Secure Search
[-] Folder Deleted : C:\ProgramData\AVG Secure Search
[-] Folder Deleted : C:\ProgramData\AVG Security Toolbar
[-] Folder Deleted : C:\Users\Kosikovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\chfdnecihphmhljaaejmgoiahnihplgn
[-] Folder Deleted : C:\Users\Kosikovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\oppjbdkgpfhhllancffaoaemplhkngoc
[-] Folder Deleted : C:\Users\Kosikovi\AppData\Roaming\Mozilla\Firefox\Profiles\131f8hrx.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}

***** [ Files ] *****

[-] File Deleted : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wtu-secure-search.xml
[-] File Deleted : C:\Users\Kosikovi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_chfdnecihphmhljaaejmgoiahnihplgn_0.localstorage
[-] File Deleted : C:\Users\Kosikovi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_chfdnecihphmhljaaejmgoiahnihplgn_0.localstorage-journal
[-] File Deleted : C:\Users\Kosikovi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_oppjbdkgpfhhllancffaoaemplhkngoc_0.localstorage
[-] File Deleted : C:\Users\Kosikovi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_oppjbdkgpfhhllancffaoaemplhkngoc_0.localstorage-journal
[-] File Deleted : C:\Users\Kosikovi\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_toolbar.avg.com_0.localstorage-journal
[-] File Deleted : C:\Users\Kosikovi\AppData\Roaming\Mozilla\Firefox\Profiles\131f8hrx.default\Extensions\Avg@toolbar.xpi
[-] File Deleted : C:\Users\Kosikovi\AppData\Roaming\Mozilla\Firefox\Profiles\131f8hrx.default\searchplugins\avg-secure-search.xml

***** [ DLLs ] *****


***** [ Shortcuts ] *****


***** [ Scheduled tasks ] *****

[-] Task Deleted : amiupdaterExd
[-] Task Deleted : amiupdaterExi

***** [ Registry ] *****

[-] Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
[-] Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
[-] Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin
[-] Key Deleted : HKLM\SOFTWARE\Google\Chrome\NativeMessagingHosts\avgsh
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CA3A5461-96B5-46DD-9341-5350D3C94615}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Key Deleted : HKLM\SOFTWARE\SecureWebChannel
[-] Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}
[-] Data Restored : HKCU\Software\Microsoft\Internet Explorer\SearchScopes [DefaultScope]

***** [ Web browsers ] *****

[-] [C:\Users\Kosikovi\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Deleted : search.ask.com
[-] [C:\Users\Kosikovi\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : chfdnecihphmhljaaejmgoiahnihplgn
[-] [C:\Users\Kosikovi\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : fcfenmboojpjinhpgggodefccipikbpd
[-] [C:\Users\Kosikovi\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : oppjbdkgpfhhllancffaoaemplhkngoc

*************************

:: "Tracing" keys removed
:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [5660 bytes] ##########

Dejte nový log FRST.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:07-01-2015
Ran by Kosikovi (administrator) on KOSIKPC (07-01-2016 22:31:05)
Running from C:\Users\Kosikovi\Desktop
Loaded Profiles: Kosikovi (Available Profiles: Kosikovi)
Platform: Windows 10 Pro (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe
() C:\Windows\SysWOW64\ASGT.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe
(Microsoft Corporation) C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Akamai Technologies, Inc.) C:\Users\Kosikovi\AppData\Local\Akamai\netsession_win.exe
(© 2015 Microsoft Corporation) C:\Users\Kosikovi\AppData\Local\Microsoft\BingSvc\BingSvc.exe
(Akamai Technologies, Inc.) C:\Users\Kosikovi\AppData\Local\Akamai\netsession_win.exe
() C:\Users\Kosikovi\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
() C:\Users\Kosikovi\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCui.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Corporation) C:\Windows\System32\wbengine.exe
(Microsoft Corporation) C:\Windows\System32\vds.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(NVIDIA Corporation) C:\Users\Kosikovi\AppData\Local\Microsoft\Windows\INetCache\IE\MK5X9CE2\341.92-desktop-win10-64bit-international.exe
(NVIDIA Corporation) C:\NVIDIA\DisplayDriver\341.92\Win8_WinVista_Win7_64\International\setup.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(forum.viry.cz) C:\Users\Kosikovi\Desktop\FRSTLauncher.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Installer2\Display.Driver.{33AFEC67-4E54-4ED4-8888-6FA706FD3F9D}\NvCplSetupInt.exe
(NVIDIA Corporation) C:\temp\NVIDIA\ControlPanelInstallerTemp\setup.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [8492800 2015-06-24] (Realtek Semiconductor)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596528 2015-11-09] (Oracle Corporation)
HKU\S-1-5-21-1160693568-430831602-594197804-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2899136 2015-08-19] (Valve Corporation)
HKU\S-1-5-21-1160693568-430831602-594197804-1001\...\Run: [Akamai NetSession Interface] => C:\Users\Kosikovi\AppData\Local\Akamai\netsession_win.exe [4691384 2015-09-10] (Akamai Technologies, Inc.)
HKU\S-1-5-21-1160693568-430831602-594197804-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [28785792 2015-06-02] (Skype Technologies S.A.)
HKU\S-1-5-21-1160693568-430831602-594197804-1001\...\Run: [BingSvc] => C:\Users\Kosikovi\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-12] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-1160693568-430831602-594197804-1001\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Kosikovi\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-1160693568-430831602-594197804-1001\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Kosikovi\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [103080 2015-05-26] ()
HKU\S-1-5-21-1160693568-430831602-594197804-1001\...\Run: [uTorrent] => C:\Users\Kosikovi\AppData\Roaming\uTorrent\utorrent.exe [416168 2015-02-22] (BitTorrent, Inc.)
HKU\S-1-5-21-1160693568-430831602-594197804-1001\...\Run: [EADM] => C:\Program Files (x86)\Origin\Origin.exe [3639280 2015-12-20] (Electronic Arts)
HKU\S-1-5-21-1160693568-430831602-594197804-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8590760 2015-12-08] (Piriform Ltd)
GroupPolicyScripts: Restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyServer: [S-1-5-21-1160693568-430831602-594197804-1001] => 127.0.0.1:8118
Tcpip\Parameters: [DhcpNameServer] 192.168.30.254 192.168.0.1
Tcpip\..\Interfaces\{6102f29c-d495-463b-bbc3-804687a425c9}: [DhcpNameServer] 192.168.30.254 192.168.0.1

Internet Explorer:
==================
HKU\S-1-5-21-1160693568-430831602-594197804-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://mysearch.avg.com/?cid={E0292357-0B10-4A5D-B8DB-E55F03FCCDE3}&mid=d5948c4f18e247cd9dc0c1f60e99b4f4-3e1724757f7bf6a441a70eb1e8bcc952a4b63c1f&lang=cs&ds=AVG&coid=avgtbavg&cmpid=0615pit&pr=fr&d=2015-07-10 12:27:35&v=4.1.8.599&pid=wtu&sg=&sap=hp
SearchScopes: HKU\S-1-5-21-1160693568-430831602-594197804-1001 -> {2FFFE402-A1E6-48B6-A1C8-EA5C56E21979} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-1160693568-430831602-594197804-1001 -> {3CAE9799-589F-4D40-B6A9-D35DAD07AB8F} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-1160693568-430831602-594197804-1001 -> {626D2295-3D53-49C5-B55D-4ABBA35B9BDE} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_12454
SearchScopes: HKU\S-1-5-21-1160693568-430831602-594197804-1001 -> {8E4C22EE-0509-4BF9-B86B-7D24309295E1} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-1160693568-430831602-594197804-1001 -> {D6D4167A-D138-48FE-8E99-A1B4453F0C42} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_12454
SearchScopes: HKU\S-1-5-21-1160693568-430831602-594197804-1001 -> {DB9FBAD3-FDC1-4AE3-B3C9-2130522ECCD0} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-1160693568-430831602-594197804-1001 -> {ED869DEE-154D-4B85-BA90-EE6D7634B1E6} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12454
SearchScopes: HKU\S-1-5-21-1160693568-430831602-594197804-1001 -> {F471DC54-3683-42EB-8292-B890CADAF945} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_12454
SearchScopes: HKU\S-1-5-21-1160693568-430831602-594197804-1001 -> {FDC6571C-31F5-4C91-A912-E6C4C0E19A9E} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_12454
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
BHO: No Name -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> No File
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\ssv.dll [2015-12-12] (Oracle Corporation)
BHO-x32: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\jp2ssv.dll [2015-12-12] (Oracle Corporation)
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Kosikovi\AppData\Roaming\Mozilla\Firefox\Profiles\131f8hrx.default
FF Homepage: hxxps://mysearch.avg.com/?cid={E0292357-0B10-4A5D-B8DB-E55F03FCCDE3}&mid=d5948c4f18e247cd9dc0c1f60e99b4f4-3e1724757f7bf6a441a70eb1e8bcc952a4b63c1f&lang=cs&ds=AVG&coid=avgtbavg&cmpid=0615pit&pr=fr&d=2015-07-10 12:27:35&v=4.1.8.599&pid=wtu&sg=&sap=hp
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_20_0_0_267.dll [2015-12-29] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_20_0_0_267.dll [2015-12-29] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\dtplugin\npDeployJava1.dll [2015-12-12] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.66.2 -> C:\Program Files (x86)\Java\jre1.8.0_66\bin\plugin2\npjp2.dll [2015-12-12] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @ngm.nexoneu.com/NxGame -> C:\ProgramData\NexonEU\NGM\npNxGameEU.dll [2015-06-14] (Nexon)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-04] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.1\npGoogleUpdate3.dll [2015-12-04] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-11-18] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1160693568-430831602-594197804-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Kosikovi\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2009-11-30] (Unity Technologies ApS)

Chrome:
=======
CHR HomePage: Default -> msn.com/?pc=__PARAM__&ocid=__PARAM__DHP&osmkt=en-us
CHR NewTab: Default -> "chrome-extension://olfeabkoenfaoljndfecamgilllcpiak/core/chrome/content/speedDial/speedDial.html","chrome-extension://oppjbdkgpfhhllancffaoaemplhkngoc/newtab/newtab-hp.html"
CHR DefaultSearchURL: Default -> hxxp://www.bing.com/search?FORM=__PARAM__DF&PC ... earchTerms}
CHR DefaultSearchKeyword: Default -> bing.com
CHR Profile: C:\Users\Kosikovi\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\Kosikovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-02-16]
CHR Extension: (Dokumenty Google) - C:\Users\Kosikovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-16]
CHR Extension: (Disk Google) - C:\Users\Kosikovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-27]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Kosikovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2015-06-17]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Kosikovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2015-06-17]
CHR Extension: (YouTube) - C:\Users\Kosikovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-01]
CHR Extension: (Vyhledávání Google) - C:\Users\Kosikovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-27]
CHR Extension: (Bing) - C:\Users\Kosikovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfenmboojpjinhpgggodefccipikbpd [2016-01-07]
CHR Extension: (Tabulky Google) - C:\Users\Kosikovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-02-16]
CHR Extension: (Dokumenty Google offline) - C:\Users\Kosikovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-11-26]
CHR Extension: (Skype) - C:\Users\Kosikovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2015-12-21]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Kosikovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-07-28]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Kosikovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2015-10-27]
CHR Extension: (Gmail) - C:\Users\Kosikovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-28]
CHR HKU\S-1-5-21-1160693568-430831602-594197804-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-10-12]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ASGT; C:\Windows\SysWOW64\ASGT.exe [48640 2015-05-28] () [File not signed]
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2015-10-12] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2015-10-12] (Microsoft Corporation)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1706128 2015-10-13] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2015-12-20] (Electronic Arts)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
R2 WtuSystemSupport; C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe [1164688 2015-12-16] ()

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 athur; C:\Windows\System32\drivers\athuwbx.sys [2702336 2013-11-20] (Qualcomm Atheros Communications, Inc.)
R3 atkdisplf; C:\Windows\system32\drivers\ATKDispLowFilter.sys [39424 2009-02-17] (ASUSTeK Computer Inc.)
S2 EIO_XP; C:\WINDOWS\system32\drivers\EIO64_XP.sys [16384 2009-07-30] (ASUSTeK Computer Inc.) [File not signed]
S3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38032 2015-10-13] (NVIDIA Corporation)
S1 rglpaoaf; C:\WINDOWS\system32\drivers\rglpaoaf.sys [55168 2016-01-07] (Microsoft Corporation)
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [587264 2015-07-10] (Realtek )
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S3 xhunter1; C:\WINDOWS\xhunter1.sys [35880 2015-11-17] (Wellbia.com Co., Ltd.)
S3 EagleX64; \??\C:\WINDOWS\system32\drivers\EagleX64.sys [X]
S1 EIO64; \SystemRoot\System32\drivers\EIO64.sys [X]
S3 Video3D; \SystemRoot\System32\Drivers\Video3D64.sys [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-01-07 22:32 - 2015-10-13 20:00 - 01756424 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspbridge64.dll
2016-01-07 22:32 - 2015-10-13 20:00 - 01514528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvspcap64.dll
2016-01-07 22:32 - 2015-10-13 20:00 - 01316184 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspbridge.dll
2016-01-07 22:32 - 2015-10-13 20:00 - 01278920 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvspcap.dll
2016-01-07 22:31 - 2016-01-07 22:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NVIDIA Corporation
2016-01-07 22:31 - 2016-01-07 22:31 - 00002206 _____ C:\Users\Public\Desktop\3D Vision Photo Viewer.lnk
2016-01-07 22:31 - 2016-01-07 22:31 - 00000000 ____D C:\Program Files (x86)\AGEIA Technologies
2016-01-07 22:31 - 2015-10-13 16:26 - 00608048 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvStreaming.exe
2016-01-07 22:29 - 2015-10-13 20:00 - 31514288 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvoglv64.dll
2016-01-07 22:29 - 2015-10-13 20:00 - 24199344 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvoglv32.dll
2016-01-07 22:29 - 2015-10-13 20:00 - 22993200 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcompiler.dll
2016-01-07 22:29 - 2015-10-13 20:00 - 17559432 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvd3dumx.dll
2016-01-07 22:29 - 2015-10-13 20:00 - 15293104 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcompiler.dll
2016-01-07 22:29 - 2015-10-13 20:00 - 14497568 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvd3dum.dll
2016-01-07 22:29 - 2015-10-13 20:00 - 13916600 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopencl.dll
2016-01-07 22:29 - 2015-10-13 20:00 - 13828224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuda.dll
2016-01-07 22:29 - 2015-10-13 20:00 - 11272048 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvopencl.dll
2016-01-07 22:29 - 2015-10-13 20:00 - 11209376 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuda.dll
2016-01-07 22:29 - 2015-10-13 20:00 - 04245624 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcuvid.dll
2016-01-07 22:29 - 2015-10-13 20:00 - 03986608 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvcuvid.dll
2016-01-07 22:29 - 2015-10-13 20:00 - 02823992 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvapi.dll
2016-01-07 22:29 - 2015-10-13 20:00 - 00944304 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvIFR64.dll
2016-01-07 22:29 - 2015-10-13 20:00 - 00907440 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvIFR.dll
2016-01-07 22:29 - 2015-10-13 20:00 - 00903472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NvFBC64.dll
2016-01-07 22:29 - 2015-10-13 20:00 - 00869040 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\NvFBC.dll
2016-01-07 22:26 - 2016-01-07 22:26 - 00000000 ____D C:\$SysReset
2016-01-07 22:17 - 2016-01-07 22:17 - 00000882 _____ C:\Users\Public\Desktop\FIFA 15.lnk
2016-01-07 22:10 - 2016-01-07 22:10 - 00055168 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rglpaoaf.sys
2016-01-07 22:02 - 2015-10-13 18:26 - 06783280 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvcpl.dll
2016-01-07 22:02 - 2015-10-13 18:26 - 03522168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc64.dll
2016-01-07 22:02 - 2015-10-13 18:26 - 02557616 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvsvcr.dll
2016-01-07 22:02 - 2015-10-13 18:26 - 00933168 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvvsvc.exe
2016-01-07 22:02 - 2015-10-13 18:26 - 00384176 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvmctray.dll
2016-01-07 22:02 - 2015-10-13 18:26 - 00062584 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvshext.dll
2016-01-07 22:02 - 2015-10-13 17:19 - 05972783 _____ C:\WINDOWS\system32\nvcoproc.bin
2016-01-07 22:01 - 2016-01-07 22:01 - 00016148 _____ C:\WINDOWS\system32\KOSIKPC_Kosikovi_HistoryPrediction.bin
2016-01-07 21:51 - 2016-01-07 21:51 - 00291244 _____ C:\Users\Kosikovi\Desktop\cc_20160107_215151.reg
2016-01-07 21:48 - 2016-01-07 21:48 - 00000017 _____ C:\Users\Kosikovi\AppData\Local\resmon.resmoncfg
2016-01-07 21:45 - 2016-01-07 21:45 - 00002860 _____ C:\WINDOWS\System32\Tasks\CCleanerSkipUAC
2016-01-07 21:45 - 2016-01-07 21:45 - 00000863 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-01-07 21:45 - 2016-01-07 21:45 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-01-07 21:45 - 2016-01-07 21:45 - 00000000 ____D C:\Program Files\CCleaner
2016-01-07 21:44 - 2016-01-07 21:45 - 06805328 _____ (Piriform Ltd) C:\Users\Kosikovi\Downloads\ccsetup513.exe
2016-01-07 21:32 - 2016-01-07 21:32 - 00005755 _____ C:\Users\Kosikovi\Desktop\AdwCleaner[C1].txt
2016-01-07 21:27 - 2016-01-07 21:40 - 00000000 ___RD C:\Users\Kosikovi\Desktop\Ostatní
2016-01-07 21:25 - 2016-01-07 21:27 - 00000000 ___RD C:\Users\Kosikovi\Desktop\Programy
2016-01-07 21:25 - 2016-01-07 21:25 - 00000000 ____D C:\Users\Kosikovi\Desktop\Nová složka (2)
2016-01-07 21:24 - 2016-01-07 21:28 - 00000000 ____D C:\AdwCleaner
2016-01-07 20:59 - 2016-01-07 22:31 - 00019912 _____ C:\Users\Kosikovi\Desktop\FRST.txt
2016-01-07 20:59 - 2016-01-07 22:31 - 00000000 ____D C:\FRST
2016-01-07 20:59 - 2016-01-07 20:07 - 01749504 _____ C:\Users\Kosikovi\Desktop\adwcleaner_5.028.exe
2016-01-07 20:59 - 2016-01-07 19:39 - 00112640 _____ (forum.viry.cz) C:\Users\Kosikovi\Desktop\FRSTLauncher.exe
2016-01-07 20:59 - 2016-01-07 19:34 - 02370560 _____ (Farbar) C:\Users\Kosikovi\Desktop\FRST64.exe
2016-01-07 20:54 - 2016-01-07 20:54 - 00003822 _____ C:\WINDOWS\System32\Tasks\Open Chrome
2016-01-07 20:52 - 2016-01-07 20:52 - 02370560 _____ (Farbar) C:\Users\Kosikovi\Downloads\FRST64.exe
2016-01-07 14:06 - 2016-01-07 21:29 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-01-06 18:02 - 2016-01-06 18:02 - 00000000 _____ C:\Users\Kosikovi\AppData\Roaming\mediaload.io.lock
2016-01-05 14:01 - 2016-01-05 14:01 - 01647104 _____ C:\Users\Kosikovi\Downloads\VY_32_INOVACE_ZEM.2.07 (3).ppt
2016-01-05 13:53 - 2016-01-05 13:53 - 01824256 _____ C:\Users\Kosikovi\Downloads\V-2_BC_46-Cer_Z7_Obyvatelstvo_Ameriky.ppt
2016-01-05 13:53 - 2016-01-05 13:53 - 01274368 _____ C:\Users\Kosikovi\Downloads\ze_2_amerika_obyvatelstvo_sidla.ppt
2016-01-05 13:49 - 2016-01-05 13:49 - 02990592 _____ C:\Users\Kosikovi\Downloads\z_081_svtadly_jinamerika-obyvatelstvo1.ppt
2016-01-05 13:48 - 2016-01-05 13:48 - 03361792 _____ C:\Users\Kosikovi\Downloads\Latinska_Amerika_-_obyvatelstvo.ppt
2016-01-05 13:44 - 2016-01-05 13:44 - 00834048 _____ C:\Users\Kosikovi\Downloads\324obyvatelstvo Ameriky(1).ppt
2016-01-05 13:30 - 2016-01-05 13:30 - 01000448 _____ C:\Users\Kosikovi\Downloads\4._Obyvatelstvo_Ameriky.ppt
2016-01-04 14:04 - 2016-01-04 14:04 - 01647104 _____ C:\Users\Kosikovi\Downloads\VY_32_INOVACE_ZEM.2.07 (2).ppt
2016-01-01 12:51 - 2016-01-01 12:51 - 00000000 ____D C:\Users\Kosikovi\AppData\LocalLow\Adobe
2016-01-01 12:48 - 2016-01-01 13:04 - 00003972 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2016-01-01 12:47 - 2016-01-01 13:04 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-01-01 12:47 - 2016-01-01 12:47 - 00000000 ____D C:\Program Files (x86)\Adobe
2016-01-01 12:43 - 2015-10-07 08:20 - 00645154 _____ C:\Users\Kosikovi\Desktop\Testy 5-6 Marian.pdf
2016-01-01 12:43 - 2013-12-09 00:09 - 01558613 _____ C:\Users\Kosikovi\Desktop\Testy 3-4 Marian.pdf
2016-01-01 12:42 - 2015-01-19 17:35 - 00936141 _____ C:\Users\Kosikovi\Desktop\Testy 1-2 Marian.pdf
2015-12-31 18:04 - 2015-12-31 18:04 - 00000000 _____ C:\Users\Kosikovi\AppData\Roaming\mediaconverter.io.lock
2015-12-30 19:28 - 2015-12-30 19:31 - 47387689 ____R C:\Users\Kosikovi\Desktop\Barcelona Defender JORDI ALBA vs. SkillTwins - Amazing Skills! ★.mp4
2015-12-30 19:28 - 2015-12-30 19:30 - 39116899 ____R C:\Users\Kosikovi\Desktop\SkillTwins 6 Amazing Futsal Skill Goals In Same Game! ★.mp4
2015-12-30 19:27 - 2015-12-30 19:29 - 34195512 ____R C:\Users\Kosikovi\Desktop\Learn Amazing FUTSAL_STREET Football Skills Tutorial! ★.mp4
2015-12-28 18:21 - 2015-12-28 18:21 - 02875392 _____ C:\Users\Kosikovi\Downloads\Severni_Amerika_I.ppt
2015-12-24 21:41 - 2015-12-29 12:58 - 00000000 ____D C:\WINDOWS\Minidump
2015-12-21 12:14 - 2015-12-21 12:14 - 00000000 ____D C:\Users\Kosikovi\AppData\Roaming\Sony Creative Software Inc
2015-12-20 22:45 - 2015-12-20 22:45 - 00000000 ____D C:\Users\Kosikovi\AppData\Roaming\java
2015-12-20 16:44 - 2015-12-20 16:45 - 00000000 ____D C:\Users\Kosikovi\Documents\GTA San Andreas User Files
2015-12-20 14:05 - 2015-12-20 14:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Rockstar Games
2015-12-20 14:05 - 2015-12-20 14:05 - 00000000 ____D C:\Program Files (x86)\Rockstar Games
2015-12-20 13:10 - 2015-12-20 13:10 - 00000782 _____ C:\Users\Kosikovi\Documents\Hudba – zástupce.lnk
2015-12-14 11:53 - 2015-12-14 11:53 - 00002904 _____ C:\WINDOWS\System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance
2015-12-13 21:02 - 2015-12-13 21:02 - 00000000 ____D C:\Users\Default\AppData\Roaming\AVG
2015-12-13 21:02 - 2015-12-13 21:02 - 00000000 ____D C:\Users\Default\AppData\Local\AVG
2015-12-13 21:02 - 2015-12-13 21:02 - 00000000 ____D C:\Users\Default User\AppData\Roaming\AVG
2015-12-13 21:02 - 2015-12-13 21:02 - 00000000 ____D C:\Users\Default User\AppData\Local\AVG
2015-12-13 08:52 - 2015-12-13 08:52 - 00002922 _____ C:\WINDOWS\System32\Tasks\TuneUpUtilities_Task_BkGndMaintenance2013
2015-12-12 12:24 - 2015-12-12 12:24 - 00000000 ___HD C:\$WINDOWS.~BT
2015-12-12 12:05 - 2010-04-19 18:15 - 01354240 _____ (ASUSTeK Computer Inc.) C:\WINDOWS\system32\atklumdispx.dll
2015-12-12 12:05 - 2010-04-19 18:15 - 01336320 _____ (ASUSTeK Computer Inc.) C:\WINDOWS\SysWOW64\ATKLUMDISP.dll
2015-12-12 12:05 - 2010-04-15 19:33 - 00151040 _____ (ASUSTeK Computer Inc.) C:\WINDOWS\system32\atkdx11dispx.dll
2015-12-12 12:05 - 2010-04-15 19:33 - 00150528 _____ (ASUSTeK Computer Inc.) C:\WINDOWS\system32\atkdx10dispx.dll
2015-12-12 12:05 - 2010-04-15 19:33 - 00135168 _____ (ASUSTeK Computer Inc.) C:\WINDOWS\SysWOW64\atkdx11disp.dll
2015-12-12 12:05 - 2010-04-15 19:33 - 00135168 _____ (ASUSTeK Computer Inc.) C:\WINDOWS\SysWOW64\atkdx10disp.dll
2015-12-12 12:05 - 2010-04-06 14:35 - 05473280 _____ (ASUSTeK COMPUTER INC.) C:\WINDOWS\system32\ATKOSDX64.dll
2015-12-12 12:05 - 2010-01-22 21:14 - 00016896 _____ (ASUSTeK COMPUTER INC.) C:\WINDOWS\system32\ATKOGL64.dll
2015-12-12 12:05 - 2009-12-01 14:22 - 00063488 _____ (ASUSTeK COMPUTER INC.) C:\WINDOWS\system32\ATKFUSService.exe
2015-12-12 12:05 - 2009-05-25 16:31 - 00053248 _____ C:\WINDOWS\SysWOW64\asrussian.dll
2015-12-12 12:05 - 2009-05-25 16:31 - 00053248 _____ C:\WINDOWS\SysWOW64\askorean.dll
2015-12-12 12:05 - 2009-05-25 16:31 - 00053248 _____ C:\WINDOWS\SysWOW64\asjapan.dll
2015-12-12 12:05 - 2009-05-25 16:31 - 00053248 _____ C:\WINDOWS\SysWOW64\ASCHT.dll
2015-12-12 12:05 - 2009-05-25 16:31 - 00053248 _____ C:\WINDOWS\SysWOW64\aschs.dll
2015-12-12 12:05 - 2009-05-25 16:31 - 00053248 _____ C:\WINDOWS\SysWOW64\asgerman.dll
2015-12-12 12:05 - 2009-05-25 16:31 - 00053248 _____ C:\WINDOWS\SysWOW64\asfrench.dll
2015-12-12 12:05 - 2009-05-25 16:31 - 00053248 _____ C:\WINDOWS\SysWOW64\aseng.dll
2015-12-12 12:05 - 2009-02-17 18:22 - 00930272 _____ (Microsoft Corporation) C:\WINDOWS\system32\DPInst.exe
2015-12-12 12:05 - 2009-02-17 18:22 - 00102400 _____ (ASMedia Techonology) C:\WINDOWS\ASMT_CE.dll
2015-12-12 12:05 - 2009-02-17 18:22 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\devcon.exe
2015-12-12 12:05 - 2009-02-17 18:22 - 00071680 _____ (ASMedia Technology) C:\WINDOWS\i2c.dll
2015-12-12 12:05 - 2009-02-17 18:22 - 00069632 _____ (ASMedia Technology) C:\WINDOWS\i2c_i.dll
2015-12-12 12:05 - 2009-02-17 18:22 - 00068608 _____ (ASMedia Technology) C:\WINDOWS\nVGA_i2c.dll
2015-12-12 12:05 - 2009-02-17 18:22 - 00039424 _____ (ASUSTeK Computer Inc.) C:\WINDOWS\system32\Drivers\ATKDispLowFilter.sys
2015-12-12 12:05 - 2009-02-17 18:22 - 00039424 _____ (ASUSTeK Computer Inc.) C:\WINDOWS\system32\ATKDispLowFilter.sys
2015-12-12 12:05 - 2009-02-17 18:22 - 00017792 _____ (ASUSTeK Computer Inc.) C:\WINDOWS\system32\asusgsb.sys
2015-12-12 12:05 - 2009-02-17 18:22 - 00010766 _____ C:\WINDOWS\system32\asusgsb.cat
2015-12-12 12:05 - 2009-02-17 18:22 - 00010733 _____ C:\WINDOWS\system32\ATKDispLowFilter.cat
2015-12-12 12:04 - 2015-12-12 12:04 - 20476715 _____ C:\Users\Kosikovi\Downloads\GamerOSD3070419_Win7Vista3264.zip
2015-12-12 11:54 - 2015-12-12 11:54 - 00003798 _____ C:\WINDOWS\System32\Tasks\Java Platform SE Auto Updater
2015-12-12 11:44 - 2015-12-20 13:46 - 00000000 ____D C:\Program Files (x86)\GameFace Messenger
2015-12-12 11:44 - 2015-12-12 11:44 - 00737280 _____ (Indigo Rose Corporation) C:\WINDOWS\iun6002.exe
2015-12-12 11:44 - 2015-12-12 11:44 - 00000000 ____D C:\Program Files (x86)\My Company Name
2015-12-12 11:43 - 2005-10-20 16:26 - 00018048 _____ (ASUSTeK Computer Inc.) C:\WINDOWS\system32\Drivers\asusgsb64.sys
2015-12-12 11:41 - 2015-12-12 11:41 - 00000000 ____D C:\Users\Kosikovi\AppData\Roaming\AVG
2015-12-12 11:40 - 2016-01-07 21:04 - 00000000 ____D C:\ProgramData\Avg
2015-12-12 11:39 - 2016-01-07 21:00 - 00000000 ____D C:\Users\Kosikovi\AppData\Local\AvgSetupLog
2015-12-12 11:38 - 2015-12-12 11:38 - 00040404 _____ C:\Users\Kosikovi\Downloads\[CzT]Saints_Row_The_Third_2011_CZ_.torrent
2015-12-12 11:34 - 2015-12-12 11:34 - 00017658 _____ C:\Users\Kosikovi\Downloads\[CzT]AVG_PC_TuneUp_2016_v_707_EN_CZ_SK_.torrent
2015-12-12 11:14 - 2016-01-07 22:30 - 00000000 ____D C:\WINDOWS\LastGood
2015-12-12 11:14 - 2012-05-15 11:48 - 01738048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco64.dll
2015-12-12 11:14 - 2012-05-15 11:48 - 01468224 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvgenco64.dll
2015-12-12 11:08 - 2009-07-30 11:16 - 00016384 _____ (ASUSTeK Computer Inc.) C:\WINDOWS\system32\Drivers\EIO64_XP.sys
2015-12-12 11:02 - 2014-10-23 08:57 - 00024824 ____N (ASUSTeK Computer Inc.) C:\WINDOWS\system32\Drivers\IOMap64.sys
2015-12-12 10:58 - 2016-01-07 21:33 - 00000000 ____D C:\Users\Kosikovi\AppData\Local\ElevatedDiagnostics
2015-12-12 10:56 - 2015-12-20 13:38 - 00000000 ____D C:\Program Files (x86)\ASUS
2015-12-12 10:56 - 2015-12-20 13:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2015-12-12 10:56 - 2015-12-12 10:56 - 00000000 ____D C:\Users\Kosikovi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\ASUS
2015-12-12 10:55 - 2015-12-12 10:55 - 00000000 ____D C:\WINDOWS\Downloaded Installations
2015-12-12 10:42 - 2015-10-13 20:00 - 00038032 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2015-12-12 10:42 - 2015-10-13 20:00 - 00035472 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2015-12-12 10:42 - 2015-10-13 20:00 - 00032400 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2015-12-12 10:41 - 2015-12-12 10:41 - 00000000 ____D C:\NVIDIA
2015-12-12 10:22 - 2015-12-20 22:45 - 00000000 ____D C:\Users\Kosikovi\.oracle_jre_usage
2015-12-12 10:22 - 2015-12-12 10:23 - 00000000 ____D C:\ProgramData\Oracle
2015-12-12 10:22 - 2015-12-12 10:22 - 00097888 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2015-12-12 10:22 - 2015-12-12 10:22 - 00000000 ____D C:\Users\Kosikovi\AppData\Roaming\Sun
2015-12-12 10:22 - 2015-12-12 10:22 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2015-12-12 10:22 - 2015-12-12 10:22 - 00000000 ____D C:\Program Files (x86)\Java
2015-12-12 10:21 - 2015-12-12 10:21 - 00584288 _____ (Oracle Corporation) C:\Users\Kosikovi\Downloads\JavaSetup8u66.exe
2015-12-12 10:21 - 2015-12-12 10:21 - 00000000 ____D C:\Users\Kosikovi\AppData\LocalLow\Oracle
2015-12-12 10:19 - 2015-12-12 10:19 - 04947168 _____ (Advanced Micro Devices, Inc.) C:\Users\Kosikovi\Downloads\autodetectutility.exe
2015-12-10 20:17 - 2015-12-12 10:44 - 00000000 ____D C:\WINDOWS\LastGood.Tmp
2015-12-10 20:16 - 2015-12-10 20:16 - 18805920 _____ (NVIDIA Corporation) C:\WINDOWS\system32\SETADD7.tmp
2015-12-10 20:16 - 2015-12-10 20:16 - 16278496 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\SETBF47.tmp
2015-12-10 20:16 - 2015-12-10 20:16 - 12907704 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\SET9773.tmp
2015-12-10 20:16 - 2015-12-10 20:16 - 03246848 _____ (NVIDIA Corporation) C:\WINDOWS\system32\SET9890.tmp
2015-12-10 20:16 - 2015-12-10 20:16 - 01917240 _____ (NVIDIA Corporation) C:\WINDOWS\system32\SETBFC6.tmp
2015-12-10 20:16 - 2015-12-10 20:16 - 01565368 _____ (NVIDIA Corporation) C:\WINDOWS\system32\SETC14E.tmp
2015-12-10 20:16 - 2015-10-13 20:00 - 18634072 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvwgf2umx.dll
2015-12-10 20:16 - 2015-10-13 20:00 - 16128576 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvwgf2um.dll
2015-12-10 20:16 - 2015-10-13 20:00 - 12898992 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvlddmkm.sys
2015-12-10 20:16 - 2015-10-13 20:00 - 03209920 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvapi64.dll
2015-12-10 20:16 - 2015-10-13 20:00 - 01908528 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6434192.dll
2015-12-10 20:16 - 2015-10-13 20:00 - 01556656 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6434192.dll
2015-12-10 20:16 - 2015-10-13 20:00 - 00026155 _____ C:\WINDOWS\system32\nvinfo.pb

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-01-07 22:32 - 2015-08-03 13:08 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2016-01-07 22:32 - 2015-08-03 13:07 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2016-01-07 22:32 - 2015-07-10 12:02 - 00000000 ____D C:\WINDOWS\INF
2016-01-07 22:32 - 2015-02-28 09:38 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2016-01-07 22:31 - 2015-08-03 13:08 - 00000000 ____D C:\ProgramData\NVIDIA
2016-01-07 22:21 - 2015-07-11 14:49 - 00000000 ____D C:\ProgramData\Electronic Arts
2016-01-07 22:19 - 2015-06-18 20:24 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-01-07 22:11 - 2015-02-16 11:32 - 00000976 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-01-07 22:06 - 2015-07-11 14:46 - 00000000 ____D C:\ProgramData\Origin
2016-01-07 22:03 - 2015-07-11 17:10 - 00000000 ____D C:\hry
2016-01-07 22:03 - 2015-06-24 18:48 - 00000000 ____D C:\Users\Kosikovi\AppData\Roaming\uTorrent
2016-01-07 22:02 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\Help
2016-01-07 22:02 - 2015-07-10 10:05 - 00000000 ____D C:\Windows
2016-01-07 22:01 - 2015-02-16 11:32 - 00000972 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-01-07 22:00 - 2015-07-10 13:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-01-07 21:52 - 2015-07-10 10:05 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-01-07 21:51 - 2015-03-21 09:13 - 00000000 ____D C:\Program Files (x86)\Steam
2016-01-07 21:49 - 2015-06-26 18:57 - 00000000 ____D C:\Users\Kosikovi\AppData\Local\CrashDumps
2016-01-07 21:48 - 2013-08-22 16:36 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2016-01-07 21:29 - 2015-06-16 13:36 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-01-07 21:27 - 2015-09-08 18:03 - 00000000 ___RD C:\Users\Kosikovi\Desktop\Hry
2016-01-07 21:23 - 2015-03-21 09:33 - 00000000 ____D C:\Users\Kosikovi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2016-01-07 21:21 - 2015-04-18 15:35 - 00000000 ____D C:\Nexon
2016-01-07 21:20 - 2015-04-18 15:38 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nexon
2016-01-07 21:04 - 2015-07-10 09:47 - 00000000 ____D C:\Program Files (x86)\AVG
2016-01-07 21:02 - 2015-08-03 13:23 - 01762290 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-01-07 21:02 - 2015-07-10 17:02 - 00745406 _____ C:\WINDOWS\system32\perfh005.dat
2016-01-07 21:02 - 2015-07-10 17:02 - 00149344 _____ C:\WINDOWS\system32\perfc005.dat
2016-01-07 20:52 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\system32\NDF
2016-01-07 19:52 - 2015-03-21 11:05 - 00004198 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{7F8234D7-B768-4863-8517-942F48001613}
2016-01-07 16:31 - 2015-07-11 17:31 - 00000000 ____D C:\Users\Kosikovi\Documents\FIFA 14
2016-01-05 13:23 - 2015-08-03 13:10 - 00000000 ____D C:\Users\Kosikovi
2016-01-01 12:52 - 2015-07-05 15:03 - 00000000 ____D C:\ProgramData\Adobe
2016-01-01 12:51 - 2015-06-18 20:23 - 00000000 ____D C:\Users\Kosikovi\AppData\Local\Adobe
2016-01-01 12:51 - 2015-02-15 19:58 - 00000000 ____D C:\Users\Kosikovi\AppData\Roaming\Adobe
2015-12-22 11:56 - 2015-11-14 18:10 - 00000000 ___RD C:\Users\Kosikovi\Desktop\ 
2015-12-21 13:02 - 2015-09-23 12:44 - 00090808 _____ C:\Users\Kosikovi\AppData\Local\GDIPFONTCACHEV1.DAT
2015-12-20 22:48 - 2015-03-20 17:24 - 00000000 ____D C:\Users\Kosikovi\AppData\Roaming\.minecraft
2015-12-20 14:05 - 2015-02-15 22:50 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-12-20 13:48 - 2015-08-31 18:59 - 00000000 ____D C:\ProgramData\Apple
2015-12-20 13:46 - 2015-08-17 11:29 - 00000000 ____D C:\Program Files (x86)\Origin
2015-12-20 13:42 - 2015-07-10 09:48 - 00000000 ____D C:\ProgramData\AVG2015
2015-12-20 13:42 - 2015-07-10 09:41 - 00000000 ____D C:\ProgramData\MFAData
2015-12-20 13:39 - 2015-07-10 12:04 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2015-12-20 13:37 - 2015-06-10 18:51 - 00000000 __RHD C:\Users\Public\AccountPictures
2015-12-20 13:33 - 2015-07-10 10:05 - 00032768 ___SH C:\WINDOWS\system32\config\ELAM
2015-12-20 13:13 - 2015-07-10 12:04 - 00000000 __RHD C:\Users\Public\Libraries
2015-12-16 16:22 - 2015-07-10 11:27 - 00000000 ____D C:\Program Files\AVG Web TuneUp
2015-12-16 16:22 - 2015-07-10 11:27 - 00000000 ____D C:\Program Files (x86)\AVG Web TuneUp
2015-12-12 12:39 - 2015-07-10 10:05 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2015-12-12 12:39 - 2015-04-22 17:11 - 00000000 ____D C:\Users\Kosikovi\AppData\Roaming\Skype
2015-12-12 12:05 - 2015-02-16 10:57 - 00000000 ____D C:\Program Files\ASUS
2015-12-12 12:00 - 2015-02-15 19:57 - 00000000 ____D C:\Users\Kosikovi\AppData\Local\VirtualStore
2015-12-12 11:59 - 2015-07-10 13:20 - 00345808 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-12-12 11:41 - 2015-07-15 17:10 - 00000000 ____D C:\Users\Kosikovi\AppData\Local\Avg
2015-12-11 19:07 - 2015-05-11 18:55 - 00000000 ____D C:\Users\Kosikovi\AppData\Local\Paint.NET
2015-12-10 14:35 - 2015-08-25 11:30 - 00003954 _____ C:\WINDOWS\System32\Tasks\Opera scheduled Autoupdate 1440498617
2015-12-10 14:35 - 2015-08-25 11:30 - 00001120 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Opera.lnk
2015-12-10 14:35 - 2015-08-25 11:29 - 00000000 ____D C:\Program Files (x86)\Opera
2015-12-09 15:32 - 2015-08-03 13:31 - 00002433 _____ C:\Users\Kosikovi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-12-09 15:32 - 2015-08-03 13:31 - 00000000 ___RD C:\Users\Kosikovi\OneDrive
2015-12-09 04:39 - 2015-02-22 11:58 - 00301728 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe

==================== Files in the root of some directories =======

2015-06-04 16:33 - 2013-12-24 11:16 - 2589228 _____ () C:\Users\Kosikovi\AppData\Roaming\CTL11.exe
2015-06-04 16:33 - 2014-12-14 18:41 - 2439248 _____ () C:\Users\Kosikovi\AppData\Roaming\ctl8.exe
2015-12-31 18:04 - 2015-12-31 18:04 - 0000000 _____ () C:\Users\Kosikovi\AppData\Roaming\mediaconverter.io.lock
2016-01-06 18:02 - 2016-01-06 18:02 - 0000000 _____ () C:\Users\Kosikovi\AppData\Roaming\mediaload.io.lock
2015-07-21 18:03 - 2015-07-21 18:03 - 0003584 _____ () C:\Users\Kosikovi\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2016-01-07 21:48 - 2016-01-07 21:48 - 0000017 _____ () C:\Users\Kosikovi\AppData\Local\resmon.resmoncfg
2015-08-03 13:07 - 2015-08-03 13:07 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Some files in TEMP:
====================
C:\Users\Kosikovi\AppData\Local\Temp\nvStInst.exe
C:\Users\Kosikovi\AppData\Local\Temp\sqlite3.dll
C:\Users\Kosikovi\AppData\Local\Temp\Uninstall.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2015-12-29 12:04

==================== End of FRST.txt ============================



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: () (Fixed) (Total:78.12 GB) (Free:20.75 GB) NTFS
Drive d: (Filmy a Seriály) (Fixed) (Total:214.84 GB) (Free:7.36 GB) NTFS
Drive e: (Hry) (Fixed) (Total:117.19 GB) (Free:11.33 GB) NTFS
Drive f: () (Removable) (Total:3.8 GB) (Free:1.21 GB) FAT32
Drive g: (Disk pro opravu Windows 10 64bit) (CDROM) (Total:0.33 GB) (Free:0 GB) UDF
Drive i: (Záloha) (Fixed) (Total:55.5 GB) (Free:7.79 GB) NTFS

Available physical RAM: 2438.75 MB
Total physical RAM: 4063.14 MB
Percentage of memory in use: 39%

==================== MBR and Partition Table ==================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 2F112F10)
Partition 1: (Not Active) - (Size=993 KB) - (Type=42)
Partition 2: (Active) - (Size=100 MB) - (Type=42)
Partition 3: (Not Active) - (Size=78.1 GB) - (Type=42)
Partition 4: (Not Active) - (Size=387.5 GB) - (Type=42)
Disk: 1 (Size: 3.8 GB) (Disk ID: 00000000)

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Alternate Data Streams (whitelisted) ==================

AlternateDataStreams: C:\WINDOWS\system32\Drivers\rglpaoaf.sys:changelist

==================== Security Center ==================

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Kosikovi\Desktop" je 3174 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]


==================== End Of Log ==============================

Otevřte poznámkový blok a zkopírujte do něj:

Start
c:\Users\Kosikovi\AppData\Local\Akamai
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596528 2015-11-09] (Oracle Corporation)
HKU\S-1-5-21-1160693568-430831602-594197804-1001\...\Run: [Akamai NetSession Interface] => C:\Users\Kosikovi\AppData\Local\Akamai\netsession_win.exe [4691384 2015-09-10] (Akamai Technologies, Inc.)
HKU\S-1-5-21-1160693568-430831602-594197804-1001\...\Run: [BingSvc] => C:\Users\Kosikovi\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-12] (© 2015 Microsoft Corporation)
C:\Users\Kosikovi\AppData\Local\Microsoft\BingSvc
GroupPolicyScripts: Restriction <======= ATTENTION
HKU\S-1-5-21-1160693568-430831602-594197804-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://mysearch.avg.com/?cid={E0292357-0B10-4A5D-B8DB-E55F03FCCDE3}&mid=d5948c4f18e247cd9dc0c1f60e99b4f4-3e1724757f7bf6a441a70eb1e8bcc952a4b63c1f&lang=cs&ds=AVG&coid=avgtbavg&cmpid=0615pit&pr=fr&d=2015-07-10 12:27:35&v=4.1.8.599&pid=wtu&sg=&sap=hp
BHO: Skype Click to Call for Internet Explorer -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
C:\Program Files (x86)\Skype\Toolbars
Handler: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll [2015-10-12] (Microsoft Corporation)
Handler-x32: skypec2c - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll [2015-10-12] (Microsoft Corporation)
FF Homepage: hxxps://mysearch.avg.com/?cid={E0292357-0B10-4A5D-B8DB-E55F03FCCDE3}&mid=d5948c4f18e247cd9dc0c1f60e99b4f4-3e1724757f7bf6a441a70eb1e8bcc952a4b63c1f&lang=cs&ds=AVG&coid=avgtbavg&cmpid=0615pit&pr=fr&d=2015-07-10 12:27:35&v=4.1.8.599&pid=wtu&sg=&sap=hp
CHR DefaultSearchURL: Default -> hxxp://www.bing.com/search?FORM=__PARAM ... PARAM__&q={searchTerms}
CHR DefaultSearchKeyword: Default -> bing.com
CHR Extension: (Bing) - C:\Users\Kosikovi\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfenmboojpjinhpgggodefccipikbpd [2016-01-07]
R2 c2cautoupdatesvc; C:\Program Files (x86)\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [1433216 2015-10-12] (Microsoft Corporation)
R2 c2cpnrsvc; C:\Program Files (x86)\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [1773696 2015-10-12] (Microsoft Corporation)
S1 rglpaoaf; C:\WINDOWS\system32\drivers\rglpaoaf.sys [55168 2016-01-07] (Microsoft Corporation)
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\ProgramData\DP45977C.lfl
C:\Users\Kosikovi\AppData\Local\Temp
AlternateDataStreams: C:\WINDOWS\system32\Drivers\rglpaoaf.sys:changelist
Task: {06188599-CAE0-4E3E-BE25-24549B77EBEF} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {0F3A202E-249A-4E1A-90FB-C3E0D6E256E8} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {1E8059DE-E0BB-46BE-A3B7-185AFB177336} - System32\Tasks\Opera scheduled Autoupdate 1440498617 => C:\Program Files (x86)\Opera\launcher.exe [2015-12-04] (Opera Software)
Task: {29732658-79BC-4813-B64E-7A32B2308F06} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {39B8C12E-E3BF-4F0B-A931-24ADF12E530D} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {61397AEF-B961-4663-AA64-BB8E323D1A7D} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {621D0ECD-F33E-4912-AE0C-F17A3E336C79} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {943B820B-D0B1-4B04-8B51-0B3373D3B886} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {9BB52002-E20D-4ADC-9D2E-1E11B0AB657E} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {9F89CC30-CADD-4426-8CAD-D1145C61C4E5} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {A20B2CAE-96B0-4388-B8C9-A8AC43E1FEAA} - System32\Tasks\Microsoft\Windows\UPnP\UPnPHostConfig => config upnphost start= auto
Task: {B42B9551-E478-48F7-9B98-0CC180A2BBB1} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {F0542BA0-A37E-450A-AF8D-164596527F53} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.