Vysoké zatížení paměti a procesoru
Napsal: 06 dub 2016 20:17
Dobrý večer, po výměně HDD je problém se stahováním aktualizací a je extrémně zatížen procesor až na 40% a paměť až na 70%. Log se ale nevejde celý
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:05-03-2016 01
Ran by Michal (administrator) on MICHAL-PC (06-04-2016 20:45:46)
Running from C:\Users\Michal\Desktop
Loaded Profiles: Michal (Available Profiles: Michal)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 8 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Acer) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
() C:\OEM\USBDECTION\USBS3S4Detection.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
() C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(Opera Software) C:\Program Files (x86)\Opera\36.0.2130.46\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\36.0.2130.46\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\36.0.2130.46\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\36.0.2130.46\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\36.0.2130.46\opera.exe
(forum.viry.cz) C:\Users\Michal\Desktop\FRSTLauncher.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [mwlDaemon] => C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe [349480 2009-09-10] (Egis Technology Inc.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [8312352 2009-10-28] (Realtek Semiconductor)
HKLM\...\Run: [OOTag] => C:\windows\oobeoffer\oobeoffer\ootag.exe [23072 2009-09-28] (Microsoft)
HKLM-x32\...\Run: [JMB36X IDE Setup] => C:\Windows\RaidTool\xInsIDE.exe
HKLM-x32\...\Run: [Hotkey Utility] => C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe [629280 2009-08-18] ()
HKLM-x32\...\Run: [EgisTecLiveUpdate] => C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe [199464 2009-08-04] (Egis Technology Inc.)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [35696 2009-02-28] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7139256 2016-04-04] (AVAST Software)
HKU\S-1-5-21-717758605-1106027559-3896876889-1000\...\MountPoints2: {47051b59-fa9b-11e5-86e5-806e6f6e6963} - E:\SETUP.EXE
HKU\S-1-5-21-717758605-1106027559-3896876889-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\System32\Acer.scr [425984 2009-08-05] ()
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2016-04-04] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-04-04] (AVAST Software)
ShellIconOverlayIdentifiers: [egisPSDP] -> {30A0A3F6-38AC-4C53-BB8B-0D95238E25BA} => C:\Program Files (x86)\EgisTec\MyWinLocker 3\x64\psdprotect.dll [2009-09-10] (Egis Technology Inc.)
ShellIconOverlayIdentifiers-x32: [egisPSDP] -> {30A0A3F6-38AC-4C53-BB8B-0D95238E25BA} => C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\psdprotect.dll [2009-09-10] (Egis Technology Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 88.83.169.2 195.113.144.194
Tcpip\..\Interfaces\{1311EEBF-3D32-4CC0-AFB4-F75D58CB1316}: [DhcpNameServer] 88.83.169.2 195.113.144.194
Tcpip\..\Interfaces\{4E05B988-A467-4A3C-A54A-EB389AEACD2E}: [DhcpNameServer] 88.83.169.2 195.113.144.194
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0405&m=aspire_m5811&r=17360416m505pe426v1k5w4481u571
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0405&m=aspire_m5811&r=17360416m505pe426v1k5w4481u571
HKU\S-1-5-21-717758605-1106027559-3896876889-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.cz/aclk?sa=l&ai=CWPLJTc4CV_q ... device%3Dc
HKU\S-1-5-21-717758605-1106027559-3896876889-1000\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://windows.microsoft.com/cs-cz/windows/antivirus-partners#AVtabs=win7
SearchScopes: HKLM-x32 -> DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={s ... lz=1I7ACAW
SearchScopes: HKLM-x32 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={s ... lz=1I7ACAW
SearchScopes: HKU\S-1-5-21-717758605-1106027559-3896876889-1000 -> DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={s ... AW_csCZ687
SearchScopes: HKU\S-1-5-21-717758605-1106027559-3896876889-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-717758605-1106027559-3896876889-1000 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={s ... AW_csCZ687
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-04-04] (AVAST Software)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27] (Adobe Systems Incorporated)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-04-04] (AVAST Software)
BHO-x32: Pomocník pro přihlášení ke službě Windows Live -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22] (Microsoft Corporation)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-20] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-20] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-20] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-20] (Microsoft Corporation)
FireFox:
========
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8081.0709 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2009-07-10] (Microsoft Corporation)
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-04-04]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-04-04]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [237096 2016-04-04] (AVAST Software)
R2 LMS; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [262144 2009-09-30] (Intel Corporation) [File not signed]
S3 MWLService; C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe [305448 2009-09-10] (Egis Technology Inc.)
R2 UNS; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2314240 2009-09-30] (Intel Corporation) [File not signed]
R2 USBS3S4Detection; C:\OEM\USBDECTION\USBS3S4Detection.exe [76320 2009-12-09] ()
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-04-04] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-04-05] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [107792 2016-04-04] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-04-04] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-04-04] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1070904 2016-04-04] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [463744 2016-04-04] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [165344 2016-04-04] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [287016 2016-04-04] (AVAST Software)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-04-06 20:45 - 2016-04-06 20:45 - 00011288 _____ C:\Users\Michal\Desktop\FRST.txt
2016-04-06 20:21 - 2016-04-06 20:45 - 00000000 ____D C:\FRST
2016-04-06 20:20 - 2016-04-06 20:20 - 00112640 _____ (forum.viry.cz) C:\Users\Michal\Desktop\FRSTLauncher.exe
2016-04-06 20:15 - 2016-04-06 20:15 - 02374144 _____ (Farbar) C:\Users\Michal\Desktop\FRST64.exe
2016-04-06 17:33 - 2016-04-06 17:33 - 00000000 ____D C:\Users\Michal\AppData\Local\Adobe
2016-04-06 17:33 - 2016-04-06 17:33 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2016-04-06 17:33 - 2016-04-06 17:33 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2016-04-06 17:28 - 2016-04-06 17:28 - 00026624 _____ C:\Windows\SysWOW64\Drivers\fsbts.sys
2016-04-06 17:27 - 2016-04-06 17:28 - 00000000 ____D C:\Users\Michal\Downloads\F-Secure_ConfickerRemover
2016-04-06 00:20 - 2016-04-06 00:20 - 00985600 _____ C:\Users\Michal\Downloads\MicrosoftFixit50123.msi
2016-04-05 23:57 - 2016-04-05 23:26 - 00024064 _____ C:\Windows\zoek-delete.exe
2016-04-05 23:36 - 2016-04-05 23:39 - 01557208 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2016-04-05 23:34 - 2015-04-13 05:28 - 00328704 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2016-04-05 23:29 - 2016-04-05 23:29 - 01003440 _____ (Microsoft Corporation) C:\Users\Michal\Downloads\dotnetfx45_full_setup.exe
2016-04-05 23:24 - 2016-04-05 23:24 - 00000000 ____D C:\zoek_backup
2016-04-05 23:23 - 2016-04-05 23:23 - 01610352 _____ (Malwarebytes) C:\Users\Michal\Downloads\JRT.exe
2016-04-05 23:22 - 2016-04-05 23:23 - 01309184 _____ C:\Users\Michal\Downloads\zoek.exe
2016-04-05 23:02 - 2016-04-05 23:02 - 00002794 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2016-04-05 23:02 - 2016-04-05 23:02 - 00000826 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-04-05 23:02 - 2016-04-05 23:02 - 00000000 ____D C:\Program Files\CCleaner
2016-04-05 23:01 - 2016-04-05 23:01 - 06868672 _____ (Piriform Ltd) C:\Users\Michal\Downloads\ccsetup516.exe
2016-04-05 22:54 - 2013-06-26 00:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2016-04-05 22:54 - 2012-11-29 00:56 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2016-04-05 22:54 - 2012-11-29 00:56 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2016-04-05 22:54 - 2012-11-29 00:56 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2016-04-05 22:43 - 2016-04-05 22:46 - 00000000 ____D C:\AdwCleaner
2016-04-05 22:43 - 2016-04-05 22:43 - 03119168 _____ C:\Users\Michal\Downloads\adwcleaner_5.109.exe
2016-04-05 22:43 - 2011-05-03 07:29 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2016-04-05 22:43 - 2011-05-03 06:30 - 00741376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2016-04-05 22:42 - 2016-04-05 22:42 - 05658312 _____ (Swearware) C:\Users\Michal\Downloads\ComboFix.exe
2016-04-05 22:41 - 2011-02-12 13:34 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2016-04-05 22:27 - 2016-04-05 22:27 - 00000000 ____D C:\Users\Michal\Downloads\processexplorer
2016-04-05 18:32 - 2014-05-14 18:23 - 02477536 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-04-05 18:32 - 2014-05-14 18:23 - 00058336 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-04-05 18:32 - 2014-05-14 18:23 - 00044512 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-04-05 18:32 - 2014-05-14 18:21 - 02620928 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2016-04-05 18:32 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2016-04-05 18:32 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2016-04-05 18:32 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2016-04-05 18:32 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2016-04-05 18:17 - 2016-04-05 23:17 - 00003050 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1459873042
2016-04-05 18:17 - 2016-04-05 18:17 - 00037144 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2016-04-05 18:17 - 2016-04-05 18:17 - 00001041 _____ C:\Users\Public\Desktop\Avast SafeZone Browser.lnk
2016-04-05 18:17 - 2016-04-05 18:17 - 00001041 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2016-04-05 17:27 - 2016-04-05 16:16 - 00002741 _____ C:\Users\Michal\Desktop\Microsoft Office Word 2007.lnk
2016-04-05 17:27 - 2016-04-05 16:16 - 00002659 _____ C:\Users\Michal\Desktop\Microsoft Office Excel 2007.lnk
2016-04-05 17:27 - 2016-04-05 16:16 - 00002643 _____ C:\Users\Michal\Desktop\Microsoft Office PowerPoint 2007.lnk
2016-04-05 16:16 - 2016-04-05 16:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2016-04-05 16:15 - 2016-04-05 16:15 - 00000000 ____D C:\Windows\PCHEALTH
2016-04-05 16:15 - 2016-04-05 16:15 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio
2016-04-05 16:13 - 2016-04-05 16:13 - 00000000 ____D C:\Program Files\Microsoft Office
2016-04-05 16:12 - 2016-04-05 16:12 - 00000000 __RHD C:\MSOCache
2016-04-05 07:24 - 2016-04-06 14:28 - 00668138 _____ C:\Windows\system32\perfh005.dat
2016-04-05 07:24 - 2016-04-06 14:28 - 00140798 _____ C:\Windows\system32\perfc005.dat
2016-04-05 07:24 - 2016-04-05 07:24 - 00292004 _____ C:\Windows\system32\perfi005.dat
2016-04-05 07:24 - 2016-04-05 07:24 - 00036232 _____ C:\Windows\system32\perfd005.dat
2016-04-05 07:24 - 2016-04-05 07:24 - 00000000 ____D C:\Windows\SysWOW64\XPSViewer
2016-04-05 07:24 - 2016-04-04 23:40 - 00000000 ____D C:\Windows\SysWOW64\cs
2016-04-05 07:24 - 2016-04-04 23:40 - 00000000 ____D C:\Windows\system32\cs
2016-04-05 07:20 - 2016-04-05 07:20 - 00000000 ____D C:\Windows\NAPP_Dism_Log
2016-04-04 23:46 - 2016-04-05 20:42 - 00007605 _____ C:\Users\Michal\AppData\Local\Resmon.ResmonCfg
2016-04-04 23:32 - 2016-04-04 23:32 - 00000000 ____D C:\Windows\system32\SPReview
2016-04-04 23:32 - 2016-04-04 23:32 - 00000000 ____D C:\Windows\system32\EventProviders
2016-04-04 23:31 - 2010-11-20 15:39 - 05066752 _____ (Microsoft Corporation) C:\Windows\system32\AuthFWSnapin.dll
2016-04-04 23:31 - 2010-11-20 15:33 - 01924480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2016-04-04 23:31 - 2010-11-20 15:33 - 01659776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2016-04-04 23:31 - 2010-11-20 15:33 - 00951680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2016-04-04 23:31 - 2010-11-20 15:33 - 00299392 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_GenuineIntel.dll
2016-04-04 23:31 - 2010-11-20 15:33 - 00273792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2016-04-04 23:31 - 2010-11-20 15:28 - 01731936 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 14633472 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 14174208 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 08988160 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 03860992 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbon.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 03715584 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 03650560 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 03027968 _____ (Microsoft Corporation) C:\Windows\system32\WMVCORE.DLL
2016-04-04 23:31 - 2010-11-20 15:27 - 03008000 _____ (Microsoft Corporation) C:\Windows\system32\xpsservices.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 02314752 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 02223616 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 02086912 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 02018304 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 02004480 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 01888256 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2016-04-04 23:31 - 2010-11-20 15:27 - 01881088 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 01753088 _____ (Microsoft Corporation) C:\Windows\system32\vssapi.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 01743360 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 01646080 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 01556992 _____ (Microsoft Corporation) C:\Windows\system32\RacEngn.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 01490944 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 01465344 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 01326080 _____ (Microsoft Corporation) C:\Windows\system32\NaturalLanguage6.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 01219584 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 01197056 _____ (Microsoft Corporation) C:\Windows\system32\taskschd.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 01188864 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 01110016 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 01026560 _____ (Microsoft Corporation) C:\Windows\system32\mstime.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 00960512 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 00867840 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 00263168 _____ (Microsoft Corporation) C:\Windows\system32\spwizui.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:05-03-2016 01
Ran by Michal (administrator) on MICHAL-PC (06-04-2016 20:45:46)
Running from C:\Users\Michal\Desktop
Loaded Profiles: Michal (Available Profiles: Michal)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 8 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Acer) C:\Program Files\Acer\Acer Updater\UpdaterService.exe
() C:\OEM\USBDECTION\USBS3S4Detection.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
() C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe
(Egis Technology Inc.) C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\System32\taskmgr.exe
(Opera Software) C:\Program Files (x86)\Opera\36.0.2130.46\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\36.0.2130.46\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\36.0.2130.46\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\36.0.2130.46\opera.exe
(Opera Software) C:\Program Files (x86)\Opera\36.0.2130.46\opera.exe
(forum.viry.cz) C:\Users\Michal\Desktop\FRSTLauncher.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [mwlDaemon] => C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe [349480 2009-09-10] (Egis Technology Inc.)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [8312352 2009-10-28] (Realtek Semiconductor)
HKLM\...\Run: [OOTag] => C:\windows\oobeoffer\oobeoffer\ootag.exe [23072 2009-09-28] (Microsoft)
HKLM-x32\...\Run: [JMB36X IDE Setup] => C:\Windows\RaidTool\xInsIDE.exe
HKLM-x32\...\Run: [Hotkey Utility] => C:\Program Files (x86)\Acer\Hotkey Utility\HotkeyUtility.exe [629280 2009-08-18] ()
HKLM-x32\...\Run: [EgisTecLiveUpdate] => C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe [199464 2009-08-04] (Egis Technology Inc.)
HKLM-x32\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [35696 2009-02-28] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7139256 2016-04-04] (AVAST Software)
HKU\S-1-5-21-717758605-1106027559-3896876889-1000\...\MountPoints2: {47051b59-fa9b-11e5-86e5-806e6f6e6963} - E:\SETUP.EXE
HKU\S-1-5-21-717758605-1106027559-3896876889-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\System32\Acer.scr [425984 2009-08-05] ()
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2016-04-04] (Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-04-04] (AVAST Software)
ShellIconOverlayIdentifiers: [egisPSDP] -> {30A0A3F6-38AC-4C53-BB8B-0D95238E25BA} => C:\Program Files (x86)\EgisTec\MyWinLocker 3\x64\psdprotect.dll [2009-09-10] (Egis Technology Inc.)
ShellIconOverlayIdentifiers-x32: [egisPSDP] -> {30A0A3F6-38AC-4C53-BB8B-0D95238E25BA} => C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\psdprotect.dll [2009-09-10] (Egis Technology Inc.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 88.83.169.2 195.113.144.194
Tcpip\..\Interfaces\{1311EEBF-3D32-4CC0-AFB4-F75D58CB1316}: [DhcpNameServer] 88.83.169.2 195.113.144.194
Tcpip\..\Interfaces\{4E05B988-A467-4A3C-A54A-EB389AEACD2E}: [DhcpNameServer] 88.83.169.2 195.113.144.194
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0405&m=aspire_m5811&r=17360416m505pe426v1k5w4481u571
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0405&m=aspire_m5811&r=17360416m505pe426v1k5w4481u571
HKU\S-1-5-21-717758605-1106027559-3896876889-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.cz/aclk?sa=l&ai=CWPLJTc4CV_q ... device%3Dc
HKU\S-1-5-21-717758605-1106027559-3896876889-1000\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://windows.microsoft.com/cs-cz/windows/antivirus-partners#AVtabs=win7
SearchScopes: HKLM-x32 -> DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={s ... lz=1I7ACAW
SearchScopes: HKLM-x32 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={s ... lz=1I7ACAW
SearchScopes: HKU\S-1-5-21-717758605-1106027559-3896876889-1000 -> DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={s ... AW_csCZ687
SearchScopes: HKU\S-1-5-21-717758605-1106027559-3896876889-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-717758605-1106027559-3896876889-1000 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={s ... AW_csCZ687
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-04-04] (AVAST Software)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27] (Adobe Systems Incorporated)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-04-04] (AVAST Software)
BHO-x32: Pomocník pro přihlášení ke službě Windows Live -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22] (Microsoft Corporation)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-20] (Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-20] (Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-11-20] (Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-11-20] (Microsoft Corporation)
FireFox:
========
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/WLPG,version=14.0.8081.0709 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2009-07-10] (Microsoft Corporation)
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-04-04]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
Chrome:
=======
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-04-04]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [237096 2016-04-04] (AVAST Software)
R2 LMS; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [262144 2009-09-30] (Intel Corporation) [File not signed]
S3 MWLService; C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe [305448 2009-09-10] (Egis Technology Inc.)
R2 UNS; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2314240 2009-09-30] (Intel Corporation) [File not signed]
R2 USBS3S4Detection; C:\OEM\USBDECTION\USBS3S4Detection.exe [76320 2009-12-09] ()
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Corporation)
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-04-04] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-04-05] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [107792 2016-04-04] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-04-04] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-04-04] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1070904 2016-04-04] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [463744 2016-04-04] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [165344 2016-04-04] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [287016 2016-04-04] (AVAST Software)
S3 ebdrv; C:\Windows\system32\DRIVERS\evbda.sys [3286016 2009-06-10] (Broadcom Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-04-06 20:45 - 2016-04-06 20:45 - 00011288 _____ C:\Users\Michal\Desktop\FRST.txt
2016-04-06 20:21 - 2016-04-06 20:45 - 00000000 ____D C:\FRST
2016-04-06 20:20 - 2016-04-06 20:20 - 00112640 _____ (forum.viry.cz) C:\Users\Michal\Desktop\FRSTLauncher.exe
2016-04-06 20:15 - 2016-04-06 20:15 - 02374144 _____ (Farbar) C:\Users\Michal\Desktop\FRST64.exe
2016-04-06 17:33 - 2016-04-06 17:33 - 00000000 ____D C:\Users\Michal\AppData\Local\Adobe
2016-04-06 17:33 - 2016-04-06 17:33 - 00000000 ____D C:\Users\Default\AppData\Roaming\Macromedia
2016-04-06 17:33 - 2016-04-06 17:33 - 00000000 ____D C:\Users\Default User\AppData\Roaming\Macromedia
2016-04-06 17:28 - 2016-04-06 17:28 - 00026624 _____ C:\Windows\SysWOW64\Drivers\fsbts.sys
2016-04-06 17:27 - 2016-04-06 17:28 - 00000000 ____D C:\Users\Michal\Downloads\F-Secure_ConfickerRemover
2016-04-06 00:20 - 2016-04-06 00:20 - 00985600 _____ C:\Users\Michal\Downloads\MicrosoftFixit50123.msi
2016-04-05 23:57 - 2016-04-05 23:26 - 00024064 _____ C:\Windows\zoek-delete.exe
2016-04-05 23:36 - 2016-04-05 23:39 - 01557208 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2016-04-05 23:34 - 2015-04-13 05:28 - 00328704 _____ (Microsoft Corporation) C:\Windows\system32\services.exe
2016-04-05 23:29 - 2016-04-05 23:29 - 01003440 _____ (Microsoft Corporation) C:\Users\Michal\Downloads\dotnetfx45_full_setup.exe
2016-04-05 23:24 - 2016-04-05 23:24 - 00000000 ____D C:\zoek_backup
2016-04-05 23:23 - 2016-04-05 23:23 - 01610352 _____ (Malwarebytes) C:\Users\Michal\Downloads\JRT.exe
2016-04-05 23:22 - 2016-04-05 23:23 - 01309184 _____ C:\Users\Michal\Downloads\zoek.exe
2016-04-05 23:02 - 2016-04-05 23:02 - 00002794 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2016-04-05 23:02 - 2016-04-05 23:02 - 00000826 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-04-05 23:02 - 2016-04-05 23:02 - 00000000 ____D C:\Program Files\CCleaner
2016-04-05 23:01 - 2016-04-05 23:01 - 06868672 _____ (Piriform Ltd) C:\Users\Michal\Downloads\ccsetup516.exe
2016-04-05 22:54 - 2013-06-26 00:55 - 00785624 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\Wdf01000.sys
2016-04-05 22:54 - 2012-11-29 00:56 - 00054376 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\WdfLdr.sys
2016-04-05 22:54 - 2012-11-29 00:56 - 00009728 _____ (Microsoft Corporation) C:\Windows\system32\Wdfres.dll
2016-04-05 22:54 - 2012-11-29 00:56 - 00000003 _____ C:\Windows\system32\Drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
2016-04-05 22:43 - 2016-04-05 22:46 - 00000000 ____D C:\AdwCleaner
2016-04-05 22:43 - 2016-04-05 22:43 - 03119168 _____ C:\Users\Michal\Downloads\adwcleaner_5.109.exe
2016-04-05 22:43 - 2011-05-03 07:29 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2016-04-05 22:43 - 2011-05-03 06:30 - 00741376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2016-04-05 22:42 - 2016-04-05 22:42 - 05658312 _____ (Swearware) C:\Users\Michal\Downloads\ComboFix.exe
2016-04-05 22:41 - 2011-02-12 13:34 - 00267776 _____ (Microsoft Corporation) C:\Windows\system32\FXSCOVER.exe
2016-04-05 22:27 - 2016-04-05 22:27 - 00000000 ____D C:\Users\Michal\Downloads\processexplorer
2016-04-05 18:32 - 2014-05-14 18:23 - 02477536 _____ (Microsoft Corporation) C:\Windows\system32\wuaueng.dll
2016-04-05 18:32 - 2014-05-14 18:23 - 00058336 _____ (Microsoft Corporation) C:\Windows\system32\wuauclt.exe
2016-04-05 18:32 - 2014-05-14 18:23 - 00044512 _____ (Microsoft Corporation) C:\Windows\system32\wups2.dll
2016-04-05 18:32 - 2014-05-14 18:21 - 02620928 _____ (Microsoft Corporation) C:\Windows\system32\wucltux.dll
2016-04-05 18:32 - 2014-05-14 09:23 - 00198600 _____ (Microsoft Corporation) C:\Windows\system32\wuwebv.dll
2016-04-05 18:32 - 2014-05-14 09:23 - 00179656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuwebv.dll
2016-04-05 18:32 - 2014-05-14 09:20 - 00036864 _____ (Microsoft Corporation) C:\Windows\system32\wuapp.exe
2016-04-05 18:32 - 2014-05-14 09:17 - 00033792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wuapp.exe
2016-04-05 18:17 - 2016-04-05 23:17 - 00003050 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1459873042
2016-04-05 18:17 - 2016-04-05 18:17 - 00037144 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2016-04-05 18:17 - 2016-04-05 18:17 - 00001041 _____ C:\Users\Public\Desktop\Avast SafeZone Browser.lnk
2016-04-05 18:17 - 2016-04-05 18:17 - 00001041 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2016-04-05 17:27 - 2016-04-05 16:16 - 00002741 _____ C:\Users\Michal\Desktop\Microsoft Office Word 2007.lnk
2016-04-05 17:27 - 2016-04-05 16:16 - 00002659 _____ C:\Users\Michal\Desktop\Microsoft Office Excel 2007.lnk
2016-04-05 17:27 - 2016-04-05 16:16 - 00002643 _____ C:\Users\Michal\Desktop\Microsoft Office PowerPoint 2007.lnk
2016-04-05 16:16 - 2016-04-05 16:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2016-04-05 16:15 - 2016-04-05 16:15 - 00000000 ____D C:\Windows\PCHEALTH
2016-04-05 16:15 - 2016-04-05 16:15 - 00000000 ____D C:\Program Files (x86)\Microsoft Visual Studio
2016-04-05 16:13 - 2016-04-05 16:13 - 00000000 ____D C:\Program Files\Microsoft Office
2016-04-05 16:12 - 2016-04-05 16:12 - 00000000 __RHD C:\MSOCache
2016-04-05 07:24 - 2016-04-06 14:28 - 00668138 _____ C:\Windows\system32\perfh005.dat
2016-04-05 07:24 - 2016-04-06 14:28 - 00140798 _____ C:\Windows\system32\perfc005.dat
2016-04-05 07:24 - 2016-04-05 07:24 - 00292004 _____ C:\Windows\system32\perfi005.dat
2016-04-05 07:24 - 2016-04-05 07:24 - 00036232 _____ C:\Windows\system32\perfd005.dat
2016-04-05 07:24 - 2016-04-05 07:24 - 00000000 ____D C:\Windows\SysWOW64\XPSViewer
2016-04-05 07:24 - 2016-04-04 23:40 - 00000000 ____D C:\Windows\SysWOW64\cs
2016-04-05 07:24 - 2016-04-04 23:40 - 00000000 ____D C:\Windows\system32\cs
2016-04-05 07:20 - 2016-04-05 07:20 - 00000000 ____D C:\Windows\NAPP_Dism_Log
2016-04-04 23:46 - 2016-04-05 20:42 - 00007605 _____ C:\Users\Michal\AppData\Local\Resmon.ResmonCfg
2016-04-04 23:32 - 2016-04-04 23:32 - 00000000 ____D C:\Windows\system32\SPReview
2016-04-04 23:32 - 2016-04-04 23:32 - 00000000 ____D C:\Windows\system32\EventProviders
2016-04-04 23:31 - 2010-11-20 15:39 - 05066752 _____ (Microsoft Corporation) C:\Windows\system32\AuthFWSnapin.dll
2016-04-04 23:31 - 2010-11-20 15:33 - 01924480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tcpip.sys
2016-04-04 23:31 - 2010-11-20 15:33 - 01659776 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2016-04-04 23:31 - 2010-11-20 15:33 - 00951680 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndis.sys
2016-04-04 23:31 - 2010-11-20 15:33 - 00299392 _____ (Microsoft Corporation) C:\Windows\system32\mcupdate_GenuineIntel.dll
2016-04-04 23:31 - 2010-11-20 15:33 - 00273792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\msiscsi.sys
2016-04-04 23:31 - 2010-11-20 15:28 - 01731936 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 14633472 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 14174208 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 08988160 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 03860992 _____ (Microsoft Corporation) C:\Windows\system32\UIRibbon.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 03715584 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 03650560 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 03027968 _____ (Microsoft Corporation) C:\Windows\system32\WMVCORE.DLL
2016-04-04 23:31 - 2010-11-20 15:27 - 03008000 _____ (Microsoft Corporation) C:\Windows\system32\xpsservices.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 02314752 _____ (Microsoft Corporation) C:\Windows\system32\tquery.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 02223616 _____ (Microsoft Corporation) C:\Windows\system32\mssrch.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 02086912 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 02018304 _____ (Microsoft Corporation) C:\Windows\system32\WsmSvc.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 02004480 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 01888256 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2016-04-04 23:31 - 2010-11-20 15:27 - 01881088 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 01753088 _____ (Microsoft Corporation) C:\Windows\system32\vssapi.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 01743360 _____ (Microsoft Corporation) C:\Windows\system32\sysmain.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 01646080 _____ (Microsoft Corporation) C:\Windows\system32\wevtsvc.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 01556992 _____ (Microsoft Corporation) C:\Windows\system32\RacEngn.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 01490944 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 01465344 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 01326080 _____ (Microsoft Corporation) C:\Windows\system32\NaturalLanguage6.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 01219584 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 01197056 _____ (Microsoft Corporation) C:\Windows\system32\taskschd.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 01188864 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 01110016 _____ (Microsoft Corporation) C:\Windows\system32\schedsvc.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 01026560 _____ (Microsoft Corporation) C:\Windows\system32\mstime.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 00960512 _____ (Microsoft Corporation) C:\Windows\system32\CPFilters.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 00867840 _____ (Microsoft Corporation) C:\Windows\system32\SearchFolder.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 00488448 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 00485888 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 00263168 _____ (Microsoft Corporation) C:\Windows\system32\spwizui.dll
2016-04-04 23:31 - 2010-11-20 15:27 - 00012288 _____ (Microsoft Corporation) C:\Windows\system32\TsUsbRedirectionGroupPolicyExtension.dll
Pokud je Vas log dlouhy a nevejde se do jednoho prispevku (je delsi nez 10.000 znaku), pridejte do nazvu tematu informaci o tom, ze je log dlouhy a je rozdelen do vice casti (napr. "virus, 3 posty"). Primarne resime temata bez odpovedi, takze ve Vasem pripade to vypada, ze se Vam jiz nektery z kolegu venuje a tema snadno zapadne.