VIRY.CZ

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:41:43, on 15.4.2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10586.0020)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe
C:\Windows\AsScrPro.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Users\Lada\Downloads\hijackthis(1).exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yoursites123.com/?type=hp&ts ... M1384M1384
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkID= ... 0AFF3178D3
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yoursites123.com/?type=hp&ts ... M1384M1384
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://yoursites123.com/web?type=ds&ts= ... earchTerms}
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://yoursites123.com/web?type=ds&ts= ... earchTerms}
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkID= ... 0AFF3178D3
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigURL = http://un-stop.com/wpad.dat?74c5a5368f8 ... eb27064475
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = :
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - Default URLSearchHook is missing
F2 - REG:system.ini: UserInit=
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_65\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_65\bin\jp2ssv.dll
O2 - BHO: Ukazatel S-Rank - {EA837F48-5AD1-443E-AE34-FFE03CBF3099} - C:\Program Files (x86)\Seznam.cz\bin\listicka.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O3 - Toolbar: SweetPacks Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O3 - Toolbar: Nástroje Lištičky - {1EA00BE1-6E54-4E2A-8099-680300BF23E1} - C:\Program Files (x86)\Seznam.cz\bin\toolbar\toolbar.dll
O4 - HKLM\..\Run: [Nuance PDF Reader-reminder] "C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini"
O4 - HKLM\..\Run: [ASUSPRP] "C:\Program Files (x86)\ASUS\APRP\APRP.EXE"
O4 - HKLM\..\Run: [ASUSWebStorage] C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe /S
O4 - HKLM\..\Run: [SonicMasterTray] C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
O4 - HKLM\..\Run: [UpdateLBPShortCut] "C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
O4 - HKLM\..\Run: [UpdateP2GoShortCut] "C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
O4 - HKLM\..\Run: [SweetIM] C:\Program Files (x86)\SweetIM\Messenger\SweetIM.exe
O4 - HKLM\..\Run: [Sweetpacks Communicator] C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: [AllShareAgent] C:\Program Files (x86)\Samsung\AllShare\AllShareAgent.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [PlaysTV] "C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv_launcher.exe" --startup
O4 - HKLM\..\Run: [Raptr] "C:\Program Files (x86)\Raptr Inc\Raptr\raptrstub.exe" --startup
O4 - HKCU\..\Run: [] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
O4 - HKCU\..\Run: [NextLive] C:\Windows\SysWOW64\rundll32.exe "C:\Users\Lada\AppData\Roaming\newnext.me\nengine.dll",EntryPoint -m l
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Lada\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O9 - Extra button: Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\Program Files (x86)\Seznam.cz\bin\listicka.dll
O9 - Extra 'Tools' menuitem: Nastavení Lištičky ... - {0E46D7B6-887D-4F81-B4CA-FCC92AF73610} - C:\Program Files (x86)\Seznam.cz\bin\listicka.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files (x86)\Seznam.cz\bin\listicka.dll
O9 - Extra 'Tools' menuitem: Zvýrazňovač slov Lištičky - {4E6D6F90-31CA-4878-A7A3-1CD50F115A69} - C:\Program Files (x86)\Seznam.cz\bin\listicka.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: DeskTop DispalyName (DeskTop_F) - DeskTopService - C:\ProgramData\desktopfind\desktop293.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Plays.tv Update Service (PlaysService) - Plays.tv, LLC - C:\Program Files (x86)\Raptr Inc\PlaysTV\plays_service.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Samsung AllShare PC (SamsungAllShareV2.0) - Samsung Electronics Co., Ltd. - C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AllShareDMS.exe
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: SimpleSlideShowServer - Samsung Electronics Co., Ltd. - C:\Program Files (x86)\Samsung\AllShare\AllShareSlideShowService.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: TomTomHOMEService - TomTom - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 15396 bytes

Zdravím!
Dejte log FRST: http://forum.viry.cz/viewtopic.php?f=13&t=133100 . HijackThis je už za zenitem.

Additional scan result of Farbar Recovery Scan Tool (x64) Version:13-04-2016
Ran by Lada (2016-04-16 00:14:08)
Running from C:\Users\Lada\Desktop
Windows 10 Home Version 1511 (X64) (2016-03-15 06:00:41)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1691599488-178746545-566213100-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-1691599488-178746545-566213100-503 - Limited - Disabled)
Guest (S-1-5-21-1691599488-178746545-566213100-501 - Limited - Disabled)
Lada (S-1-5-21-1691599488-178746545-566213100-1001 - Administrator - Enabled) => C:\Users\Lada

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

„Windows Live Essentials“ (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
„Windows Live Mail“ (x32 Version: 15.4.3502.0922 - „Microsoft Corporation“) Hidden
„Windows Live Messenger“ (x32 Version: 15.4.3502.0922 - „Microsoft Corporation“) Hidden
„Windows Live“ fotogalerija (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 15.010.20060 - Adobe Systems Incorporated)
Adobe Flash Player 21 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 21.0.0.213 - Adobe Systems Incorporated)
AMD Catalyst Control Center (HKLM-x32\...\WUCCCApp) (Version: 1.00.0000 - AMD)
AMD Install Manager (HKLM\...\AMD Catalyst Install Manager) (Version: 9.0.000.4 - Advanced Micro Devices, Inc.)
ASUS AI Recovery (HKLM-x32\...\{D39F0676-163E-4595-A917-E28F99BBD4D2}) (Version: 1.0.19 - ASUS)
ASUS FancyStart (HKLM-x32\...\{2B81872B-A054-48DA-BE3B-FA5C164C303A}) (Version: 1.1.0 - ASUSTeK Computer Inc.)
ASUS LifeFrame3 (HKLM-x32\...\{1DBD1F12-ED93-49C0-A7CC-56CBDE488158}) (Version: 3.0.27 - ASUS)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.0.8 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 1.1.50 - ASUS)
ASUS SmartLogon (HKLM-x32\...\{64452561-169F-4A36-A2FF-B5E118EC65F5}) (Version: 1.0.0011 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 1.02.0036 - ASUS)
ASUS Virtual Camera (HKLM-x32\...\{EC8BD21F-0CA0-4BBF-97D9-4A52B30041A1}) (Version: 1.0.21 - asus)
ASUS WebStorage (HKLM-x32\...\ASUS WebStorage) (Version: 3.0.84.161 - eCareme Technologies, Inc.)
ASUS_Screensaver (HKLM-x32\...\ASUS_Screensaver) (Version: - )
AsusVibe2.0 (HKLM-x32\...\Asus Vibe2.0) (Version: 2.0.12.309 - ASUSTEK)
Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 9.0 - Atheros)
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0010 - ASUS)
Bing Bar (HKLM-x32\...\{1E03DB52-D5CB-4338-A338-E526DD4D4DB1}) (Version: 7.0.610.0 - Microsoft Corporation)
Bookworm Deluxe (HKLM-x32\...\Bookworm Deluxe) (Version: - Oberon Media Inc.)
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM-x32\...\CANONIJPLM100) (Version: - )
Canon MP Navigator EX 3.0 (HKLM-x32\...\MP Navigator EX 3.0) (Version: - )
Canon MP250 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MP250_series) (Version: - )
Canon Utilities Easy-PhotoPrint EX (HKLM-x32\...\Easy-PhotoPrint EX) (Version: - )
Canon Utilities My Printer (HKLM-x32\...\CanonMyPrinter) (Version: - )
Canon Utilities Solution Menu (HKLM-x32\...\CanonSolutionMenu) (Version: - )
CELOT-W USB Modem Driver (HKLM\...\{B277E30A-B7BC-4f34-9098-BF906D602F23}) (Version: 1.2.3.0 - CELOT-Wireless Co., Ltd )
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.)
Control ActiveX Windows Live Mesh pentru conexiuni la distanță (HKLM-x32\...\{260E3D78-94E6-47EC-8E29-46301572BB1E}) (Version: 15.4.5722.2 - Microsoft Corporation)
Cooking Dash (HKLM-x32\...\Cooking Dash) (Version: - Oberon Media Inc.)
CyberLink LabelPrint (HKLM-x32\...\InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}) (Version: 2.5.1908 - CyberLink Corp.)
CyberLink Power2Go (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.1.3602c - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DiRT (HKLM-x32\...\{57B89E30-0BBA-4F20-9F2C-8E8CDE1CEDB6}) (Version: 1.00.0000 - Codemasters)
DriverNavigator 3.5.8 (HKLM\...\DriverNavigator_is1) (Version: 3.5.8.0 - Easeware)
ELAN Touchpad 11.15.0.18_X64 (HKLM\...\Elantech) (Version: 11.15.0.18 - ELAN Microelectronic Corp.)
Envisioneer 4.5c2 Express (HKLM-x32\...\InstallShield_{AA531FBD-E130-4F3B-A856-507190DBE11D}) (Version: 4.5 - Cadsoft Corporation)
Envisioneer 4.5c2 Express (x32 Version: 4.5 - Cadsoft Corporation) Hidden
Fast Boot (HKLM\...\{13F4A7F3-EABC-4261-AF6B-1317777F0755}) (Version: 1.0.9 - ASUS)
Formant ActiveX programu Windows Live Mesh odpowiedzialny za obsługę połączeń zdalnych (HKLM-x32\...\{B04A0E2F-1E4C-4E61-B18E-3B2BD6779CA7}) (Version: 15.4.5722.2 - Microsoft Corporation)
Fotogalerija Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galeria fotografii usługi Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Galerie foto Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Game Park Console (HKLM-x32\...\{E71E60C1-533E-45A5-8D80-E475E88D2B17}_is1) (Version: 6.2.1.1 - Oberon Media, Inc.)
Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 49.0.2623.87 - Google Inc.)
Google Toolbar for Internet Explorer (HKLM-x32\...\{2318C2B1-4965-11d4-9B18-009027A5CD4F}) (Version: - Google Inc.)
Google Toolbar for Internet Explorer (x32 Version: 1.0.0 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.29.5 - Google Inc.) Hidden
Governor of Poker (HKLM-x32\...\Governor of Poker) (Version: - Oberon Media Inc.)
Hide Your IP Address (HKLM-x32\...\Hide Your IP Address_is1) (Version: - )
Hotel Dash Suite Success (HKLM-x32\...\Hotel Dash Suite Success) (Version: - Oberon Media Inc.)
Internet Explorer Toolbar 4.6 by SweetPacks (HKLM-x32\...\{774C0434-9948-4DEE-A14E-69CDD316E36C}) (Version: 4.6.0003 - SweetIM Technologies Ltd.) <==== ATTENTION
Java 8 Update 65 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418065F0}) (Version: 8.0.650.17 - Oracle Corporation)
Java 8 Update 65 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218065F0}) (Version: 8.0.650.17 - Oracle Corporation)
Jewel Quest 3 (HKLM-x32\...\Jewel Quest 3) (Version: - Oberon Media Inc.)
Junk Mail filter update (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Klavaro-1.9.4 (HKLM-x32\...\Klavaro_is1) (Version: - )
Kontrola Windows Live Mesh ActiveX za daljinske veze (HKLM-x32\...\{19CBDE24-2761-49A5-816B-D2BA65D0CA8D}) (Version: 15.4.5722.2 - Microsoft Corporation)
Kontrolnik Windows Live Mesh ActiveX za oddaljene povezave (HKLM-x32\...\{CA227A9D-09BE-4BFB-9764-48FED2DA5454}) (Version: 15.4.5722.2 - Microsoft Corporation)
Luxor 3 (HKLM-x32\...\Luxor 3) (Version: - Oberon Media Inc.)
manual (HKLM-x32\...\{E620AFF3-5F66-4EFE-87B3-003018B92BE6}) (Version: 1.0 - )
Mesh Runtime (x32 Version: 15.4.5722.2 - Microsoft Corporation) Hidden
Microsoft Office 2010 pro podnikatele (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Office Klikni a spusť 2010 (HKLM-x32\...\Office14.Click2Run) (Version: 14.0.4763.1011 - Microsoft Corporation)
Microsoft PowerPoint Viewer (HKLM-x32\...\{95140000-00AF-0405-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM-x32\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{071c9b48-7c32-4621-a0ac-3f809523288f}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727 (HKLM-x32\...\{15134cb0-b767-4960-a911-f2d16ae54797}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.50727 (HKLM-x32\...\{22154f09-719a-4619-bb71-5b3356999fbf}) (Version: 11.0.50727.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 45.0.2 (x86 cs) (HKLM-x32\...\Mozilla Firefox 45.0.2 (x86 cs)) (Version: 45.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 45.0.2.5941 - Mozilla)
MyFreeCodec (HKU\S-1-5-21-1691599488-178746545-566213100-1001\...\MyFreeCodec) (Version: - )
Nuance PDF Reader (HKLM-x32\...\{B480904D-F73F-4673-B034-8A5F492C9184}) (Version: 6.00.0041 - Nuance Communications, Inc.)
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
Ovládací prvek ActiveX platformy Windows Live Mesh pro vzdálená připojení (HKLM-x32\...\{B6190387-0036-4BEB-8D74-A0AFC5F14706}) (Version: 15.4.5722.2 - Microsoft Corporation)
Ovládací prvok ActiveX programu Windows Live Mesh pre vzdialené pripojenia (HKLM-x32\...\{C2FD7DB5-FE30-49B6-8A2F-C5652E053C31}) (Version: 15.4.5722.2 - Microsoft Corporation)
Plants vs Zombies (HKLM-x32\...\Plants vs Zombies) (Version: - Oberon Media Inc.)
PlaysTV (HKLM-x32\...\PlaysTV) (Version: 1.9.1-r111300-release - Plays.tv, LLC)
Poczta usługi Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Podstawowe programy Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Poklady starověké sluje 1.0 (HKLM-x32\...\{Poklady starověké sluje}_is1) (Version: - Špidla Data Processing, s.r.o.)
Pošta Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden
Raptr (HKLM-x32\...\Raptr) (Version: 5.1.1-r111306-release - Raptr, Inc)
Realtek Ethernet Controller Driver (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.42.304.2011 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6418 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM-x32\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30127 - Realtek Semiconductor Corp.)
Registrace uživatele zařízení Canon MP250 series (HKLM-x32\...\Registrace uživatele zařízení Canon MP250 series) (Version: - )
Samsung AllShare (HKLM-x32\...\InstallShield_{DF47ACA3-7C78-4C08-8007-AC682563C9F1}) (Version: 2.1.0.12031_10 - Samsung Electronics Co., Ltd.)
Samsung AllShare (x32 Version: 2.1.0.12031_10 - Samsung Electronics Co., Ltd.) Hidden
Samsung Kies (HKLM-x32\...\InstallShield_{758C8301-2696-4855-AF45-534B1200980A}) (Version: 2.6.0.13091_9 - Samsung Electronics Co., Ltd.)
Samsung Kies (x32 Version: 2.6.0.13091_9 - Samsung Electronics Co., Ltd.) Hidden
SAMSUNG USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.27.0 - SAMSUNG Electronics Co., Ltd.)
Service Pack 2 for Microsoft Office 2010 (KB2687455) 32-Bit Edition (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{DE28B448-32E8-4E8F-84F0-A52B21A49B5B}) (Version: - Microsoft)
Seznam Lištička (Všichni uživatelé tohoto počítače.) (HKLM-x32\...\szn-software-listicka) (Version: - )
Seznam Software (HKU\S-1-5-21-1691599488-178746545-566213100-1001\...\SeznamInstall) (Version: - Seznam.cz)
Sonic Focus (HKLM-x32\...\{09BCB9CE-964B-4BDA-AE46-B5A0ABEF1D3F}) (Version: 1.0.0.4 - Synopsys )
Sony Mobile Update Engine (HKLM-x32\...\Update Engine) (Version: 2.14.2.201402071544 - Sony Mobile Communications AB)
Sony PC Companion 2.10.297 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.297 - Sony)
Světový pohár v mahjongu (HKU\S-1-5-21-1691599488-178746545-566213100-1001\...\Světový pohár v mahjongu) (Version: 1.0.0.0 - Alawar Entertainment Inc.)
SweetIM for Messenger 3.7 (HKLM-x32\...\{7683B745-6060-41FD-AA75-0BBB383FEAD4}) (Version: 3.7.0005 - SweetIM Technologies Ltd.) <==== ATTENTION
syncables desktop SE (HKLM-x32\...\{341697D8-9923-445E-B42A-529E5A99CB7A}) (Version: 5.5.746.11492 - syncables)
TeamViewer 8 (HKLM-x32\...\TeamViewer 8) (Version: 8.0.16642 - TeamViewer)
TomTom HOME (HKLM-x32\...\{0E09BE17-EDEA-42CA-8974-42A587F51510}) (Version: 2.9.8 - Název společnosti:)
TomTom HOME (HKLM-x32\...\{5DCB2EB3-87AD-426E-8D74-8B92C9D731C4}) (Version: 2.9.8 - Název společnosti:)
TomTom HOME (HKLM-x32\...\{7A2BB1C8-903D-4585-9F3B-CADD67D07D37}) (Version: 2.9.8 - Název společnosti:)
TomTom HOME Visual Studio Merge Modules (HKLM-x32\...\{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}) (Version: 1.0.2 - TomTom International B.V.)
Unity Web Player (HKU\S-1-5-21-1691599488-178746545-566213100-1001\...\UnityWebPlayer) (Version: 4.5.0f6 - Unity Technologies ApS)
Update Manager for SweetPacks 1.0 (HKLM-x32\...\{FB697452-8CA4-46B4-98B1-165C922A2EF3}) (Version: 1.0.0005 - SweetIM Technologies Ltd.) <==== ATTENTION
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 15.4.3508.1109 - Microsoft Corporation)
Windows Live Mesh ActiveX Control for Remote Connections (HKLM-x32\...\{2902F983-B4C1-44BA-B85D-5C6D52E2C441}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX kontrola za daljinske veze (HKLM-x32\...\{8985AE5E-622A-4980-8BF8-0A1830643220}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX vadīkla attālajiem savienojumiem (HKLM-x32\...\{A3A775C9-5A63-4C55-8FDD-427A5B8F5D2B}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX-i juhtelement kaugühendustele (HKLM-x32\...\{216ACEC1-4556-4717-A8DE-3F7F5F9C6F63}) (Version: 15.4.5722.2 - Microsoft Corporation)
Windows Live Mesh ActiveX-vezérlő távoli kapcsolatokhoz (HKLM-x32\...\{6E29C4F7-C2C2-4B18-A15C-E09B92065F15}) (Version: 15.4.5722.2 - Microsoft Corporation)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.31.1 - ASUS)
WinRAR 4.01 (32-bit) (HKLM-x32\...\WinRAR archiver) (Version: 4.01.0 - win.rar GmbH)
Wireless Console 3 (HKLM-x32\...\{8150221C-8F7E-4997-AD4E-AFDEE7F4B410}) (Version: 3.0.21 - ASUS)
Wondershare PDF to Word (Build 3.5.0) (HKLM-x32\...\{DE718DF0-3874-4873-9BC3-3A94944C916E}_is1) (Version: 3.5.0 - Wondershare Software)
World of Goo (HKLM-x32\...\World of Goo) (Version: - Oberon Media Inc.)
Zune (HKLM\...\Zune) (Version: 04.08.2345.00 - Microsoft Corporation)
Фотогалерия на Windows Live (x32 Version: 15.4.3502.0922 - Microsoft Corporation) Hidden

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1691599488-178746545-566213100-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Lada\AppData\Local\Microsoft\OneDrive\17.3.6302.0225\FileCoAuth.exe (Microsoft Corporation)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {01C995FF-D178-4E7B-AC4A-9E950006A207} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {05FDC039-A763-4175-A4D9-B33E0C2F746B} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {06C4BF3B-D684-4CD2-A9D7-A7E5BBD7CB78} - System32\Tasks\{C3764C34-A475-4F7B-A6AA-2FB4C7E05669} => pcalua.exe -a C:\Users\Lada\Downloads\emilka_setup.exe -d C:\Users\Lada\Downloads
Task: {0837D897-84CB-4E30-A8DD-807937A81DFC} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\Windows\ehome\mcupdate.exe
Task: {0960A4B9-892B-4D74-A518-7B93B8096A38} - System32\Tasks\ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2011-11-22] (ASUS)
Task: {0AFADCC2-935E-45D1-8B8F-1E9A14617975} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {0F1FC558-90E6-41AA-8D37-4FBE69053762} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\Windows\ehome\MCUpdate.exe
Task: {148318FC-5974-4508-A415-B3AFD16E5DDB} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\Windows\ehome\ehPrivJob.exe
Task: {14DC424B-FB03-4C5D-B417-813501C13FDB} - System32\Tasks\GoforFilesUpdate => C:\Program Files (x86)\GoforFiles\GFFUpdater.exe <==== ATTENTION
Task: {18022D58-427C-4ED1-9C51-0A48ABD56CB6} - System32\Tasks\SidebarExecute => C:\Program Files\Windows Sidebar\sidebar.exe
Task: {23B893DA-F0F5-46D5-8252-B66B69F00CBF} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {24F2EDCB-194A-4E83-A482-716F9216AA85} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {29308477-8F7E-4D4F-92D5-F1534E61B6F5} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {2FF2DDFF-B409-464E-A030-2327C2800C9F} - System32\Tasks\AMD Updater => C:\Program Files\AMD\CIM\\Bin64\InstallManagerApp.exe [2016-03-21] (Advanced Micro Devices, Inc.)
Task: {342F2EBC-FEE9-4F94-94F3-93A47955D29B} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {36013540-5DA3-43EA-8542-8412C6795DF6} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe [2011-11-15] (ASUS)
Task: {3BD4160C-EC54-4D55-8C0B-E9A71637EAAA} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {3C9616B2-742C-4820-AFAE-F3D2459E9677} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {3D966D87-5FE5-4FBC-8E90-DB0F48E454DB} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\Windows\ehome\ehPrivJob.exe
Task: {3E3E65EA-6693-4ACC-947D-206853F50D65} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\Windows\ehome\ehPrivJob.exe
Task: {42145BE5-4059-431F-919A-1A381C5966DE} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {4C9E3902-C08E-4BD2-AAFE-F17ED5CDB66B} - System32\Tasks\ASUS SmartLogon Console Sensor => C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe [2010-11-15] (ASUS)
Task: {4EA4F7AF-5B35-4E4D-89DC-10229D980F91} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-12-14] (Adobe Systems Incorporated)
Task: {55728CDF-D106-44EA-A05F-3981556F080F} - System32\Tasks\AsusVibeSchedule => C:\Program Files (x86)\Asus\AsusVibe\AsusVibeLauncher.exe [2012-09-27] ()
Task: {67A8E9CA-6119-4197-933F-4A22F07DE929} - System32\Tasks\{10A2BB6E-ABF0-434D-9984-12E455ADF24C} => pcalua.exe -a "F:\Need For Speed Hot Pursuit 2_uninst.exe" -d F:\ -c "C:\Users\Lada\Desktop\Cars – zástupce.lnk"
Task: {6E1D9B6E-033C-4FE2-B115-482B4ABB7CB9} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {6FECF9BE-AED8-4627-80ED-91FF5361960F} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\Windows\ehome\ehPrivJob.exe
Task: {773492A6-4F08-4DAF-9C1B-778BC17ACAED} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\Windows\ehome\ehPrivJob.exe
Task: {78588675-6CF3-4E50-B5B1-1EC34EAA2F6B} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\Windows\ehome\ehPrivJob.exe
Task: {7DDF9673-8D0B-4652-B795-1BEAD1206B65} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\Windows\ehome\ehPrivJob.exe
Task: {80829A56-3580-4DA6-B154-7AACA5835B3A} - System32\Tasks\Microsoft\Microsoft Antimalware\Microsoft Antimalware Scheduled Scan => C:\Program Files\Microsoft Security Client\MpCmdRun.exe
Task: {895561F7-1209-41F7-B03A-D6D1450566F2} - System32\Tasks\DriverNavigator Scheduled Scan => C:\Program Files\Easeware\DriverNavigator\DriverNavigator.exe [2014-10-08] (Easeware)
Task: {89D18096-9530-4AE3-9AF2-49C75A77F8D9} - System32\Tasks\CreateChoiceProcessTask => C:\Windows\System32\browserchoice.exe
Task: {8F2C6F5D-69B5-4030-A4FA-23BEEAAE4411} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {91E91309-A6CC-4A5C-80A8-373345A5F0E7} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-04-09] (Adobe Systems Incorporated)
Task: {922BF2E2-8107-4785-B2A7-E13898D798F7} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {971682C4-90F7-484C-81D6-1694D96868B2} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\Windows\ehome\ehrec.exe
Task: {AA921623-B84A-4EC8-A6DA-5D46323FC6D9} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\Windows\ehome\ehPrivJob.exe
Task: {B237209E-B5BA-40FF-9E2B-AF2802FF51C9} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {B4CB676F-B691-4DCD-B40C-ABB6896D18AA} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {B55C4AA3-1C05-4FE5-B116-D37D47C7DA45} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {C773E96E-5265-4977-A700-BC5BD768781D} - System32\Tasks\{324F81E7-E25C-4440-8C34-97E589CC0BF0} => pcalua.exe -a E:\Setup.Now.exe -d E:\
Task: {C778374C-94FE-41B0-B705-5FC952201AC0} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\Windows\ehome\mcupdate.exe
Task: {CC23DB00-9BF8-477B-A6B8-64DE9D1C5998} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {D10D2AC4-3B0A-4C82-898E-1AD021F52778} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\Windows\ehome\mcupdate.exe
Task: {D343BB73-04CA-4DB0-B207-CC29AF78DFB4} - System32\Tasks\ASUS Live Update => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2011-11-17] (ASUSTeK Computer Inc.)
Task: {D72A80A4-8CB6-4968-AA94-3875ACC558A5} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {DB1C1E1C-CE1F-41F4-B53A-0A7A647D0033} - System32\Tasks\LaunchPreSignup => C:\Program Files (x86)\OLBPre\OLBPre.exe <==== ATTENTION
Task: {DD548504-31EE-43FF-A573-1E9BCB56DC76} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\Windows\ehome\ehrec.exe
Task: {DDC4AA6D-FAE8-4B9E-9C6D-84F972ECE290} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-31] (Google Inc.)
Task: {E6658892-F8E6-4D81-831D-4A2C862D1090} - System32\Tasks\{703F8768-FFCA-4F2D-86C6-AB425D18248D} => pcalua.exe -a "D:\Místní disk\Notes\BS.Player Pro 2.57 Build 1051\bsplayer_pro257.1051.exe"
Task: {E959E007-A71C-4952-8EA8-22DE146D6227} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\Windows\ehome\ehPrivJob.exe
Task: {ED00DA65-32AF-4267-9B8A-57BC81528004} - System32\Tasks\ATKOSD2 => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2010-08-17] (ASUS)
Task: {F0496437-71B1-4E96-9E9C-3BC2F52CDE46} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {FACB8164-0888-403B-B4E6-7F59329EA90F} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\Windows\ehome\ehPrivJob.exe
Task: {FBC8485F-A585-489F-8E2C-C65FEABC1BEF} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\Windows\ehome\mcupdate.exe
Task: {FFEE4F98-789F-4BC5-9EBF-91D4AC658C46} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\Windows\ehome\ehPrivJob.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\DriverNavigator Scheduled Scan.job => C:\Program Files\Easeware\DriverNavigator\DriverNavigator.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\Lada\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.so-v.com/?type=ll&uid=956aec92-29bd ... f65978451e
ShortcutWithArgument: C:\Users\Lada\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.so-v.com/?type=ll&uid=956aec92-29bd ... f65978451e
ShortcutWithArgument: C:\Users\Lada\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://www.so-v.com/?type=ll&uid=956aec92-29bd ... f65978451e
ShortcutWithArgument: C:\Users\Lada\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.so-v.com/?type=ll&uid=956aec92-29bd ... f65978451e
ShortcutWithArgument: C:\Users\Lada\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://www.so-v.com/?type=ll&uid=956aec92-29bd ... f65978451e
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.so-v.com/?type=ll&uid=956aec92-29bd ... f65978451e
ShortcutWithArgument: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://www.so-v.com/?type=ll&uid=956aec92-29bd ... f65978451e
ShortcutWithArgument: C:\Users\Public\Desktop\Google Chrome.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> hxxp://www.so-v.com/?type=ll&uid=956aec92-29bd ... f65978451e
ShortcutWithArgument: C:\Users\Public\Desktop\Mozilla Firefox.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://www.so-v.com/?type=ll&uid=956aec92-29bd ... f65978451e

==================== Loaded Modules (Whitelisted) ==============

2015-10-30 09:18 - 2015-10-30 09:18 - 00185856 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2015-08-21 23:09 - 2015-08-21 23:09 - 00127488 _____ () C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Container.Wlan.dll
2016-04-03 23:30 - 2009-02-10 18:01 - 00116104 ____C () C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
2016-04-13 04:32 - 2016-03-29 12:20 - 02656952 ____C () C:\WINDOWS\system32\CoreUIComponents.dll
2010-07-14 17:11 - 2010-07-14 17:11 - 00031360 _____ () C:\Program Files\ASUS\P4G\DevMng.dll
2016-03-15 09:37 - 2016-03-15 09:37 - 00144384 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe
2016-04-13 04:32 - 2016-03-29 12:20 - 02656952 ____C () C:\WINDOWS\System32\CoreUIComponents.dll
2012-02-05 13:54 - 2011-05-28 23:05 - 00164864 _____ () C:\Program Files (x86)\WinRAR\rarext64.dll
2016-03-15 11:19 - 2015-12-07 06:14 - 00093696 ____C () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\Windows.UI.Shell.SharedUtilities.dll
2016-04-13 04:27 - 2016-04-02 05:25 - 00472064 ____C () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2016-04-13 04:30 - 2016-04-02 05:03 - 07992832 ____C () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-04-13 04:29 - 2016-04-02 04:58 - 00591360 ____C () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-04-13 04:31 - 2016-04-02 04:59 - 02483200 ____C () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-04-13 04:31 - 2016-04-02 05:02 - 04089856 ____C () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-03-29 14:24 - 2016-03-29 14:25 - 00016896 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.325.12390.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
2016-03-29 14:24 - 2016-03-29 14:25 - 17535488 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.325.12390.0_x64__8wekyb3d8bbwe\Microsoft.Photos.dll
2016-03-15 09:37 - 2016-03-15 09:38 - 00291328 _____ () C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.325.12390.0_x64__8wekyb3d8bbwe\StoreRatingPromotion.dll
2015-11-24 22:48 - 2015-11-24 22:48 - 00028160 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\servicemanager.pyd
2015-11-24 22:46 - 2015-11-24 22:46 - 00110592 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\pywintypes26.dll
2015-11-24 22:48 - 2015-11-24 22:48 - 00041472 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\win32service.pyd
2015-11-24 22:48 - 2015-11-24 22:48 - 00096256 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\win32api.pyd
2015-11-24 22:43 - 2015-11-24 22:43 - 00356864 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\_hashlib.pyd
2015-11-24 22:48 - 2015-11-24 22:48 - 00017920 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\win32event.pyd
2015-11-24 22:48 - 2015-11-24 22:48 - 00019968 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\win32evtlog.pyd
2015-11-24 22:48 - 2015-11-24 22:48 - 00036352 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\win32process.pyd
2015-11-24 22:43 - 2015-11-24 22:43 - 00043008 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\_socket.pyd
2015-11-24 22:43 - 2015-11-24 22:43 - 00805376 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\_ssl.pyd
2015-11-24 22:43 - 2015-11-24 22:43 - 00087040 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\_ctypes.pyd
2015-11-24 22:46 - 2015-11-24 22:46 - 00354304 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\pythoncom26.dll
2015-11-24 22:48 - 2015-11-24 22:48 - 00167936 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\win32gui.pyd
2015-11-24 22:47 - 2015-11-24 22:47 - 01980928 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\PyQt5.QtGui.pyd
2015-12-07 22:57 - 2015-12-07 22:57 - 00077824 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\sip.pyd
2015-11-24 22:47 - 2015-11-24 22:47 - 01862144 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\PyQt5.QtCore.pyd
2015-11-24 22:47 - 2015-11-24 22:47 - 00516608 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\PyQt5.QtNetwork.pyd
2015-11-24 22:47 - 2015-11-24 22:47 - 04060160 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\PyQt5.QtWidgets.pyd
2015-11-24 22:43 - 2015-11-24 22:43 - 00010240 _____ () C:\Program Files (x86)\Raptr Inc\PlaysTV\select.pyd
2011-11-22 16:09 - 2011-11-22 16:09 - 00009216 _____ () C:\Program Files (x86)\ASUS\Splendid\GLCDdll.dll
2011-11-17 12:33 - 2011-11-17 12:33 - 00209920 _____ () C:\Program Files (x86)\ASUS\ASUS Live Update\alvupdt.dll
2016-03-15 09:37 - 2016-03-15 09:37 - 00141312 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeBackgroundTasks.dll
2016-03-15 09:37 - 2016-03-15 09:37 - 22330368 _____ () C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkyWrap.dll
2009-11-02 23:20 - 2009-11-02 23:20 - 00619816 ____N () C:\Program Files (x86)\CyberLink\Power2Go\CLMediaLibrary.dll
2009-11-02 23:23 - 2009-11-02 23:23 - 00013096 ____N () C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll
2012-02-22 17:46 - 2012-02-22 17:46 - 01135616 ____C () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AllShareDMSWrap.dll
2012-02-22 17:46 - 2012-02-22 17:46 - 00105472 ____C () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\DCMCDP.dll
2012-02-22 17:46 - 2012-02-22 17:46 - 00656896 ____C () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\ContentDirectoryPresenter.dll
2012-02-22 17:46 - 2012-02-22 17:46 - 00098816 ____C () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\FolderCDP.dll
2012-02-22 17:46 - 2012-02-22 17:46 - 00031232 ____C () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\Autobackup.dll
2012-02-22 17:46 - 2012-02-22 17:46 - 00054784 ____C () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\RosettaAllShare.dll
2012-02-22 17:46 - 2012-02-22 17:46 - 00077312 ____C () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\MetadataFramework.dll
2012-01-05 23:40 - 2012-01-05 23:40 - 00520234 ____C () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\sqlite3.dll
2012-01-05 23:40 - 2012-01-05 23:40 - 05717504 ____C () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\DCMImgExtractor.dll
2012-01-05 23:40 - 2012-01-05 23:40 - 00450560 ____C () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\MoodExtractor.dll
2012-02-22 17:46 - 2012-02-22 17:46 - 00029184 ____C () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AutoChaptering.dll
2012-02-22 17:46 - 2012-02-22 17:46 - 00027648 ____C () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AudioExtractor.dll
2012-02-22 17:46 - 2012-02-22 17:46 - 00017920 ____C () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\VideoExtractor.dll
2012-02-22 17:46 - 2012-02-22 17:46 - 00012288 ____C () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\ImageExtractor.dll
2012-01-05 23:40 - 2012-01-05 23:40 - 00147456 ____C () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\libexpat.dll
2012-02-22 17:46 - 2012-02-22 17:46 - 00013824 ____C () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\TextExtractor.dll
2012-02-22 17:46 - 2012-02-22 17:46 - 00012288 ____C () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\VideoThumb.dll
2012-02-22 17:46 - 2012-02-22 17:46 - 00063488 ____C () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\ID3Driver.dll
2012-02-22 17:46 - 2012-02-22 17:46 - 00023040 ____C () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\RichInfoDriver.dll
2012-02-22 17:46 - 2012-02-22 17:46 - 00017920 ____C () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\ThumbnailMaker.dll
2012-02-22 17:46 - 2012-02-22 17:46 - 00133120 ____C () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\VideoMetadataDriver.dll
2012-02-22 17:46 - 2012-02-22 17:46 - 00024064 ____C () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\SECMetaDriver.dll
2012-02-22 17:46 - 2012-02-22 17:46 - 00024064 ____C () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\photoDriver.dll
2012-01-05 23:40 - 2012-01-05 23:40 - 04671488 ____C () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\avcodec-52.dll
2012-01-05 23:40 - 2012-01-05 23:40 - 00686080 ____C () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\avformat-52.dll
2012-01-05 23:40 - 2012-01-05 23:40 - 00070656 ____C () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\avutil-50.dll
2012-01-05 23:40 - 2012-01-05 23:40 - 00152064 ____C () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\swscale-0.dll
2012-02-22 17:46 - 2012-02-22 17:46 - 00289792 ____C () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\libThumbnail.dll
2012-01-05 23:40 - 2012-01-05 23:40 - 00366592 ____C () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\tag.dll
2012-01-05 23:40 - 2012-01-05 23:40 - 00399826 ____C () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\libexif-12.dll.dll
2012-02-22 17:46 - 2012-02-22 17:46 - 00290304 ____C () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\libKeyFrame.dll
2012-01-05 23:40 - 2012-01-05 23:40 - 00044032 ____C () C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\us.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\Temp:81F83028 [146]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2016-03-15 08:47 - 00000830 ____A C:\WINDOWS\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1691599488-178746545-566213100-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Lada\AppData\Local\Microsoft\Windows\Themes\img3.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^FancyStart daemon.lnk => C:\Windows\pss\FancyStart daemon.lnk.CommonStartup
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => C:\Windows\pss\McAfee Security Scan Plus.lnk.CommonStartup
MSCONFIG\startupreg: ASUS Screen Saver Protector => C:\Windows\AsScrPro.exe
MSCONFIG\startupreg: CLMLServer => "C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe"
MSCONFIG\startupreg: mobilegeni daemon => C:\Program Files (x86)\Mobogenie\DaemonProcess.exe
MSCONFIG\startupreg: RtHDVCpl => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-64bit] => (Allow) LPort=808
FirewallRules: [{828EAFE2-8BCB-4973-8996-5638BFBFAFC3}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{C9AB0DFB-5F73-4C2F-B54D-5F23954DAF2F}] => (Allow) C:\Program Files (x86)\SimpleFiles\downloader.exe
FirewallRules: [{732B0E72-2D80-4AD4-B286-2A1C23BDAC10}] => (Allow) C:\Program Files (x86)\SimpleFiles\downloader.exe
FirewallRules: [{F432F0D2-E5C7-412A-8329-25A1BFA3AD76}] => (Allow) C:\Program Files (x86)\SimpleFiles\SimpleDownloads.exe
FirewallRules: [{3FA7B5D6-FA6C-4782-B5FD-C498994660CB}] => (Allow) C:\Program Files (x86)\SimpleFiles\SimpleDownloads.exe
FirewallRules: [{8812ADBD-43E5-489F-9274-4FFB70307EEF}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{52910055-9533-4D69-AE7D-696752E0C230}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [UDP Query User{91B97A43-B2F6-463C-8E76-3E951880431E}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [TCP Query User{0A93A160-0FCA-4A4E-8DB0-18CB8562A9C8}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{10B14929-38CE-4273-8648-DF2071351042}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{A80973E0-8CA6-419D-AD7C-7CA45F5524C2}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{7F681E1E-AAAE-4A39-B290-02E3C34B0228}] => (Allow) %ProgramFiles%\Zune\ZuneNSS.exe
FirewallRules: [{BA5E7FB9-A186-45DD-9351-21D2DFB7945A}] => (Allow) %ProgramFiles%\Zune\ZuneNSS.exe
FirewallRules: [{1A610130-6F6D-4CA0-A752-C900EA07DF12}] => (Allow) %ProgramFiles%\Zune\ZuneNSS.exe
FirewallRules: [{5062CA30-35B0-490B-8010-F0E9CD7FBFD0}] => (Allow) %ProgramFiles%\Zune\ZuneNSS.exe
FirewallRules: [{BB27DC0E-C9C1-41FB-BE89-CD7A526CF970}] => (Allow) %ProgramFiles%\Zune\ZuneNSS.exe
FirewallRules: [{BFFB06D5-2E45-404E-906D-8A9B2B943CF5}] => (Allow) %ProgramFiles%\Zune\ZuneNSS.exe
FirewallRules: [{2DBC7E94-6399-4698-833E-256BB8F62D09}] => (Allow) %ProgramFiles%\Zune\ZuneNSS.exe
FirewallRules: [{23D0E3F8-F934-4C4F-A2AD-0E09E5C04282}] => (Allow) %ProgramFiles%\Zune\ZuneNSS.exe
FirewallRules: [{40F26276-D6DE-4001-8738-D72233FEFE3C}] => (Allow) %ProgramFiles%\Zune\Zune.exe
FirewallRules: [{792A6224-7CA1-4A07-A572-11FCB196E321}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe
FirewallRules: [{12F4A2B6-EE54-477A-A8D5-0A55B00FF989}] => (Allow) C:\Program Files (x86)\Sony Mobile\Update Engine\Sony Mobile Update Engine.exe
FirewallRules: [{8792C468-F4DF-44A0-BB40-219DC8A59277}] => (Allow) C:\Program Files (x86)\GoforFiles\GoforFiles.exe
FirewallRules: [{97D5A32F-B395-4001-BF96-11F39B64A511}] => (Allow) C:\Program Files (x86)\GoforFiles\GoforFiles.exe
FirewallRules: [{590BC9EF-A0C8-4CFD-8076-D741174EBD80}] => (Allow) C:\Program Files (x86)\GoforFiles\goforfilesdl.exe
FirewallRules: [{ED9DFC28-16E7-404D-BEA4-FBCA8711CA74}] => (Allow) C:\Program Files (x86)\GoforFiles\goforfilesdl.exe
FirewallRules: [{79F0B92A-E07B-4288-9251-66673A8704F4}] => (Allow) C:\Program Files (x86)\Samsung\AllShare\AllShareAgent.exe
FirewallRules: [{4AE4EC49-662C-4594-B15C-AA67F3404481}] => (Allow) C:\Program Files (x86)\Samsung\AllShare\AllShare.exe
FirewallRules: [{C7E01636-FB46-44CF-8208-76EB09FB3A1C}] => (Allow) C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AllShareDMS.exe
FirewallRules: [UDP Query User{194ED04C-2B19-48FD-95AB-7ED656C05C2D}C:\program files (x86)\codemasters\dirt\dirt.exe] => (Allow) C:\program files (x86)\codemasters\dirt\dirt.exe
FirewallRules: [TCP Query User{92CECF2E-F024-4BA1-BD86-CB4EF544F2B8}C:\program files (x86)\codemasters\dirt\dirt.exe] => (Allow) C:\program files (x86)\codemasters\dirt\dirt.exe
FirewallRules: [{D266CE21-6724-4930-8BA1-979595196A58}] => (Allow) C:\Program Files (x86)\GameSpy Arcade\Aphex.exe
FirewallRules: [{7AFD147E-F58F-49B1-AE86-7C73C530D37B}] => (Allow) C:\Program Files (x86)\GameSpy Arcade\Aphex.exe
FirewallRules: [{B532ACDC-6842-4CF1-90B6-57CD40C33C1B}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
FirewallRules: [{49C16685-9CEB-44E5-8FA2-6D00B21AE34D}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
FirewallRules: [{56F619DA-6C6D-4DC6-AB09-7617D85048C5}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
FirewallRules: [{3236F623-3F02-4816-A8E9-689723805DD4}] => (Allow) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe
FirewallRules: [{6F3F00C0-4AA4-4E3F-872A-53B87E955BE9}] => (Allow) C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe
FirewallRules: [{C6AD93CF-D0C9-47AA-BE00-A5A86DA53241}] => (Allow) C:\Program Files (x86)\SweetIM\Communicator\SweetPacksUpdateManager.exe
FirewallRules: [{8569A8CE-C2B5-46FB-9D9E-BAA156BDE0BD}] => (Allow) C:\Windows\SysWOW64\msiexec.exe
FirewallRules: [{002E1902-5F6B-4680-9EC7-E22B89867644}] => (Allow) C:\Windows\SysWOW64\msiexec.exe
FirewallRules: [{4664F37F-1F3E-4729-9525-81A1AED2C27C}] => (Allow) LPort=8182
FirewallRules: [{FF0E14E4-C858-4882-BB0F-5B5456352724}] => (Allow) LPort=5353
FirewallRules: [{91E76949-866F-4FFA-A05B-B0085FDC8DA9}] => (Allow) C:\Program Files (x86)\Windows Live\Mesh\MOE.exe
FirewallRules: [{5B3CF587-354A-4C45-9A75-28C42D5E9E63}] => (Allow) C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
FirewallRules: [{8B6F2C2C-8018-43A7-B7AC-26177AFB6846}] => (Allow) LPort=1900
FirewallRules: [{B36B7768-F50C-44E2-99F3-8D7CF8C97D7E}] => (Allow) LPort=2869
FirewallRules: [{4C5C55D3-6471-46B0-8C69-F90DE933EB3F}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{FD37722C-F0BE-4ECC-B620-C4FDAB945B82}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
FirewallRules: [{2C4DEE20-A78A-47D9-9728-8B91F31827E0}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr.exe
FirewallRules: [{71BB389B-986B-4EC5-A3B3-8751A44FB613}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
FirewallRules: [{DE11CDC8-B143-4A81-8FC8-910819F48F57}] => (Allow) C:\Program Files (x86)\Raptr Inc\Raptr\raptr_im.exe
FirewallRules: [{8EE12E76-1E09-4040-BB41-CCF2881B54E1}] => (Allow) C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv.exe
FirewallRules: [{64872738-EEC2-4CBD-8BA2-EA305C26FC7F}] => (Allow) C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv.exe

==================== Restore Points =========================

30-03-2016 19:53:42 Naplánovaný kontrolní bod
03-04-2016 21:11:42 Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.50727
11-04-2016 11:50:10 Naplánovaný kontrolní bod

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (04/15/2016 08:36:49 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Lada-PC)
Description: Aplikaci Microsoft.LockApp_cw5n1h2txyewy!WindowsDefaultLockScreen se nepovedlo aktivovat, protože došlo k chybě: -2144927142. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (04/15/2016 08:36:48 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program LockApp.exe verze 0.0.0.0 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Zabezpečení a údržba.

ID procesu: 1500

Čas spuštění: 01d19733fab05475

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe

ID hlášení: 00f530a4-0339-11e6-9186-14dae9e71062

Úplný název balíčku s chybou: Microsoft.LockApp_10.0.10586.0_neutral__cw5n1h2txyewy

ID aplikace související s balíčkem s chybou: WindowsDefaultLockScreen

Error: (04/15/2016 08:35:41 PM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 2486) (User: Lada-PC)
Description: Aplikace Microsoft.LockApp_10.0.10586.0_neutral__cw5n1h2txyewy+WindowsDefaultLockScreen se nespustila ve stanovenou dobu.

Error: (04/15/2016 03:39:36 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: Lada-PC)
Description: Aplikaci Microsoft.LockApp_cw5n1h2txyewy!WindowsDefaultLockScreen se nepovedlo aktivovat, protože došlo k chybě: -2144927142. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (04/15/2016 03:39:36 AM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program LockApp.exe verze 0.0.0.0 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Zabezpečení a údržba.

ID procesu: 14f8

Čas spuštění: 01d1969e523d1ab5

Čas ukončení: 4294967295

Cesta k aplikaci: C:\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe

ID hlášení: e7036cdd-02aa-11e6-9186-14dae9e71062

Úplný název balíčku s chybou: Microsoft.LockApp_10.0.10586.0_neutral__cw5n1h2txyewy

ID aplikace související s balíčkem s chybou: WindowsDefaultLockScreen

Error: (04/15/2016 12:18:13 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: explorer.exe, verze: 10.0.10586.104, časové razítko: 0x56aaffa0
Název chybujícího modulu: ntdll.dll, verze: 10.0.10586.122, časové razítko: 0x56cbf9dd
Kód výjimky: 0xc0000374
Posun chyby: 0x00000000000ee6dc
ID chybujícího procesu: 0x142c
Čas spuštění chybující aplikace: 0xexplorer.exe0
Cesta k chybující aplikaci: explorer.exe1
Cesta k chybujícímu modulu: explorer.exe2
ID zprávy: explorer.exe3
Úplný název chybujícího balíčku: explorer.exe4
ID aplikace související s chybujícím balíčkem: explorer.exe5

Error: (04/15/2016 12:18:07 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: explorer.exe, verze: 10.0.10586.104, časové razítko: 0x56aaffa0
Název chybujícího modulu: ntdll.dll, verze: 10.0.10586.122, časové razítko: 0x56cbf9dd
Kód výjimky: 0xc0000374
Posun chyby: 0x00000000000ee6dc
ID chybujícího procesu: 0xf24
Čas spuštění chybující aplikace: 0xexplorer.exe0
Cesta k chybující aplikaci: explorer.exe1
Cesta k chybujícímu modulu: explorer.exe2
ID zprávy: explorer.exe3
Úplný název chybujícího balíčku: explorer.exe4
ID aplikace související s chybujícím balíčkem: explorer.exe5

Error: (04/15/2016 12:18:04 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: explorer.exe, verze: 10.0.10586.104, časové razítko: 0x56aaffa0
Název chybujícího modulu: ntdll.dll, verze: 10.0.10586.122, časové razítko: 0x56cbf9dd
Kód výjimky: 0xc0000374
Posun chyby: 0x00000000000ee6dc
ID chybujícího procesu: 0x1abc
Čas spuštění chybující aplikace: 0xexplorer.exe0
Cesta k chybující aplikaci: explorer.exe1
Cesta k chybujícímu modulu: explorer.exe2
ID zprávy: explorer.exe3
Úplný název chybujícího balíčku: explorer.exe4
ID aplikace související s chybujícím balíčkem: explorer.exe5

Error: (04/15/2016 12:18:02 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: ShellExperienceHost.exe, verze: 10.0.10586.218, časové razítko: 0x56ff3cf7
Název chybujícího modulu: Windows.UI.Xaml.dll, verze: 10.0.10586.212, časové razítko: 0x56fa191c
Kód výjimky: 0xc000027b
Posun chyby: 0x00000000006fd4eb
ID chybujícího procesu: 0xdd0
Čas spuštění chybující aplikace: 0xShellExperienceHost.exe0
Cesta k chybující aplikaci: ShellExperienceHost.exe1
Cesta k chybujícímu modulu: ShellExperienceHost.exe2
ID zprávy: ShellExperienceHost.exe3
Úplný název chybujícího balíčku: ShellExperienceHost.exe4
ID aplikace související s chybujícím balíčkem: ShellExperienceHost.exe5

Error: (04/15/2016 12:18:01 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: explorer.exe, verze: 10.0.10586.104, časové razítko: 0x56aaffa0
Název chybujícího modulu: ntdll.dll, verze: 10.0.10586.122, časové razítko: 0x56cbf9dd
Kód výjimky: 0xc0000374
Posun chyby: 0x00000000000ee6dc
ID chybujícího procesu: 0x1728
Čas spuštění chybující aplikace: 0xexplorer.exe0
Cesta k chybující aplikaci: explorer.exe1
Cesta k chybujícímu modulu: explorer.exe2
ID zprávy: explorer.exe3
Úplný název chybujícího balíčku: explorer.exe4
ID aplikace související s chybujícím balíčkem: explorer.exe5


System errors:
=============
Error: (04/15/2016 10:38:43 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4

Error: (04/15/2016 09:48:29 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4

Error: (04/15/2016 06:29:28 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4

Error: (04/15/2016 03:01:22 PM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4

Error: (04/15/2016 12:38:12 AM) (Source: Microsoft-Windows-Kernel-Power) (EventID: 137) (User: )
Description: 4

Error: (04/15/2016 12:03:37 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: specifické pro aplikaciMístníAktivace{3185A766-B338-11E4-A71E-12E3F512A338}{7006698D-2974-4091-A424-85DD0B909E23}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici

Error: (04/14/2016 11:50:51 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Google Update Service (gupdate) neuspěla při spuštění v důsledku následující chyby:
%%1053

Error: (04/14/2016 11:50:51 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Google Update Service (gupdate) bylo dosaženo časového limitu (30000 ms).

Error: (04/14/2016 11:49:56 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba DeskTop DispalyName byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (04/14/2016 11:49:34 PM) (Source: DCOM) (EventID: 10010) (User: Lada-PC)
Description: CortanaUI


CodeIntegrity:
===================================
Date: 2016-04-16 00:16:39.503
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-04-16 00:16:39.464
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-04-16 00:16:39.389
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-04-15 14:48:17.681
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume2\Program Files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2016-04-14 19:17:28.286
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\System32\efswrt.dll because the set of per-page image hashes could not be found on the system.

Date: 2016-04-14 05:24:44.944
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements.

Date: 2016-04-14 05:24:44.839
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.

Date: 2016-04-14 05:24:44.737
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\MSDATASRC\7.0.3300.0__b03f5f7f11d50a3a\MSDATASRC.dll that did not meet the Microsoft signing level requirements.

Date: 2016-04-14 05:24:44.513
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\Microsoft.StdFormat\7.0.3300.0__b03f5f7f11d50a3a\Microsoft.StdFormat.dll that did not meet the Microsoft signing level requirements.

Date: 2016-04-14 05:24:44.447
Description: Code Integrity determined that a process (\Device\HarddiskVolume2\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe) attempted to load \Device\HarddiskVolume2\Windows\assembly\GAC\ADODB\7.0.3300.0__b03f5f7f11d50a3a\ADODB.dll that did not meet the Microsoft signing level requirements.


==================== Memory info ===========================

Processor: AMD E-450 APU with Radeon(tm) HD Graphics
Percentage of memory in use: 55%
Total physical RAM: 3691.65 MB
Available physical RAM: 1649.79 MB
Total Virtual: 7403.65 MB
Available Virtual: 5061.96 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:199.84 GB) (Free:54.36 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (DATA) (Fixed) (Total:240.48 GB) (Free:120.87 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: B2A0A341)
Partition 1: (Not Active) - (Size=25 GB) - (Type=1C)
Partition 2: (Active) - (Size=199.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)
Partition 4: (Not Active) - (Size=240.5 GB) - (Type=OF Extended)

==================== End of Addition.txt ============================

Teď spusťte tuto utilitu:

Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.

Začala mi po restartu po tom čištění pořád blikat obrazovka a nešlo s tim nic, tak se omlouvám za zpoždění..

[-] Složka smazáno : C:\WINDOWS\Installer\{7683B745-6060-41FD-AA75-0BBB383FEAD4}

***** [ Soubory ] *****

[-] Soubor smazáno : C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\dosearches.xml
[-] Soubor smazáno : C:\Users\Lada\daemonprocess.txt
[-] Soubor smazáno : C:\Users\Lada\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_cdncache-a.akamaihd.net_0.localstorage
[-] Soubor smazáno : C:\Users\Lada\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_cdncache-a.akamaihd.net_0.localstorage-journal
[-] Soubor smazáno : C:\Users\Lada\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_foxi69.tlscdn.com_0.localstorage
[-] Soubor smazáno : C:\Users\Lada\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxps_foxi69.tlscdn.com_0.localstorage-journal
[-] Soubor smazáno : C:\Users\Lada\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_d20uppiij3wegg.cloudfront.net_0.localstorage
[-] Soubor smazáno : C:\Users\Lada\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_d20uppiij3wegg.cloudfront.net_0.localstorage-journal
[-] Soubor smazáno : C:\Users\Lada\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_pl.ask.com_0.localstorage
[-] Soubor smazáno : C:\Users\Lada\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_v9.com_0.localstorage
[-] Soubor smazáno : C:\Users\Lada\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_v9.com_0.localstorage-journal
[-] Soubor smazáno : C:\Users\Lada\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_wlogin.icq.com_0.localstorage
[-] Soubor smazáno : C:\Users\Lada\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_wlogin.icq.com_0.localstorage-journal
[-] Soubor smazáno : C:\Users\Lada\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.portaldosites.com_0.localstorage
[-] Soubor smazáno : C:\Users\Lada\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.portaldosites.com_0.localstorage-journal
[-] Soubor smazáno : C:\Users\Lada\AppData\Local\Google\Chrome\User Data\Default\Local Storage\hxxp_www.v9.com_0.localstorage-journal
[-] Soubor smazáno : C:\Users\Lada\Desktop\sweetpcfix.url
[-] Soubor smazáno : C:\Users\Public\Desktop\DriverNavigator.lnk

***** [ DLLs ] *****


***** [ Zástupci ] *****


***** [ Naplánované úkoly ] *****

[-] Úkol smazáno : GoforFilesUpdate
[-] Úkol smazáno : LaunchPreSignup
[-] Úkol smazáno : DriverNavigator Scheduled Scan

***** [ Registr ] *****

[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\AppID\escort.DLL
[-] Klávesa smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
[-] Klávesa smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\SweetIM.exe
[-] Hodnota smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs [C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgHelperApp.exe]
[-] Hodnota smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs [C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\mgToolbarProxy.dll]
[-] Hodnota smazáno : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [default_newtabff@gmail.com]
[-] Hodnota smazáno : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [deskCutv2@gmail.com]
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\bbylntlbr.bbylntlbrHlpr.1
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\MgMediaPlayer.GifAnimator.1
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\Prod.cap
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\protector_dll.Protector
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\protector_dll.Protector.1
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\protector_dll.ProtectorBho
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\protector_dll.ProtectorBho.1
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\protector_dll.ProtectorLib.1
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\sim-packages
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\SWEETIE.IEToolbar.1
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\SweetIM_URLSearchHook.ToolbarURLSearchHook
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\SweetIM_URLSearchHook.ToolbarURLSearchHook.1
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\Toolbar3.SWEETIE
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\Toolbar3.SWEETIE.1
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\AppID\{85198F55-85AC-498A-BFE4-BBC33840F4AB}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\CLSID\{2EECD738-5844-4A99-B4B6-146BF802613B}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\CLSID\{82AC53B4-164C-4B07-A016-437A8388B81A}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\CLSID\{A4A0CB15-8465-4F58-A7E5-73084EA2A064}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\CLSID\{E46C8196-B634-44A1-AF6E-957C64278AB1}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\CLSID\{EEE6C35B-6118-11DC-9C72-001320C79847}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\CLSID\{EEE6C35C-6118-11DC-9C72-001320C79847}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\CLSID\{EEE6C35D-6118-11DC-9C72-001320C79847}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\CLSID\{5C3B5DAA-0AFF-4808-90FB-0F2F2D760E36}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\Interface\{A439801C-961D-452C-AB42-7848E9CBD289}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\Interface\{EEE6C358-6118-11DC-9C72-001320C79847}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\Interface\{EEE6C359-6118-11DC-9C72-001320C79847}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\Interface\{EEE6C35A-6118-11DC-9C72-001320C79847}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\Interface\{F4EBB1E2-21F3-4786-8CF4-16EC5925867F}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\TypeLib\{4D3B167E-5FD8-4276-8FD7-9DF19C1E4D19}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847}
[-] Klávesa smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}
[-] Klávesa smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}
[-] Klávesa smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35B-6118-11DC-9C72-001320C79847}
[-] Klávesa smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EEE6C35C-6118-11DC-9C72-001320C79847}
[-] Klávesa smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B}
[-] Klávesa smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{97F2FF5B-260C-4CCF-834A-2DDA4E29E39E}
[-] Klávesa smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35B-6118-11DC-9C72-001320C79847}
[-] Klávesa smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EEE6C35C-6118-11DC-9C72-001320C79847}
[-] Hodnota smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{EEE6C35B-6118-11DC-9C72-001320C79847}]
[-] Klávesa smazáno : HKCU\Software\Mozilla\Extends
[-] Klávesa smazáno : HKCU\Software\Myfree Codec
[-] Klávesa smazáno : HKCU\Software\PRODUCTSETUP
[-] Klávesa smazáno : HKCU\Software\SimpleFiles
[-] Klávesa smazáno : HKCU\Software\SweetIM
[-] Klávesa smazáno : HKLM\SOFTWARE\ihpmserver
[-] Klávesa smazáno : HKLM\SOFTWARE\Myfree Codec
[-] Klávesa smazáno : HKLM\SOFTWARE\RayDld
[-] Klávesa smazáno : HKLM\SOFTWARE\SimpleFiles
[-] Klávesa smazáno : HKLM\SOFTWARE\SweetIM
[-] Klávesa smazáno : HKLM\SOFTWARE\TData
[-] Klávesa smazáno : HKLM\SOFTWARE\TSv
[-] Klávesa smazáno : HKLM\SOFTWARE\yoursearchingSoftware
[-] Klávesa smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\MyFreeCodec
[-] Klávesa smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{7683B745-6060-41FD-AA75-0BBB383FEAD4}
[-] Klávesa smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{774C0434-9948-4DEE-A14E-69CDD316E36C}
[-] Klávesa smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{FB697452-8CA4-46B4-98B1-165C922A2EF3}
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DriverNavigator_is1
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\Installer\Features\254796BF4AC84B64891B61C529A2E23F
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\Installer\Features\4340C4778499EED41AE496DC3D613EC6
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\Installer\Features\547B38670606DF14AA57B0BB83F3AE4D
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\Installer\Products\254796BF4AC84B64891B61C529A2E23F
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\Installer\Products\4340C4778499EED41AE496DC3D613EC6
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\Installer\Products\547B38670606DF14AA57B0BB83F3AE4D
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\789034A89BAC50E4782F0A7BDBF75632
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\A97CEC23332751B47BA4B95BAA50C9D0
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\02F47BF73B948514FAACADD8CBBDF37D
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\07D5290CDBDAE4242926B8E6CA650501
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\080D9F5E1E95FEE4794CE438E635239E
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\08E33F7B61DEFF24BB9673ED7D467636
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E3D8A5B48622A445A7DF73FEFF32C3F
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\12BF94BD06C95F343A77631402B9556A
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1E264E0A5959A1C46BA9175A878B12EA
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2124D8A8CF720FD44866190AF560228E
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\27A325ACED8CA4743A30127638591ADB
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2E6768B6932D112438F047C54D180635
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\34EDDB1BFB3A2D448845F3EFD0F15A43
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\350D17402BD84234EAF7D32F08172D7C
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\351716A953E21214898904032EAE2E81
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\397C771A7BCAC904697C3EC629ED33ED
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\3EE8C5F419057E1478A654868CEE60B5
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\427EA997C413D1D47907CBFC7B2DB432
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4318DF19719275242801CBE292063A4C
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\45FC115D1FEAEF849A4E1610D6EC8BF0
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\46A5861A389ADB844AF89E31BC9DF0A1
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4735D908D66E1BA46B6C2D7185A12B2B
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49B0E1A6FF50BBE4289E4E23DE6EA0C7
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\4CCCAC049F34D0540AAC13011398BEDB
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5C4389D0BFB302C479DE4178BD5D9EBA
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\5D2B09BDEF4FE54418E6F3373CDBC7AC
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\61B65D3397A1FBF4CB1571B5E4F6B5B0
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\68E8A05C60DD9254591DBD16C94EDDBF
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\697E782CF574CC34CBB9566440BA12BC
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\69D6A6B2ED56AF24EA6335EAD6E91CA4
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AE27A8613CF7EA4782F2886F67295E5
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\75D5168E5E176C24981B4E5DBD991078
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\76D8378E2DDAED3428720A631F6E3BF0
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7CE172051F585E04187BCB97570BFA74
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7FFA128C2B0FF414D805FC5627883401
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86A901BA5265452499DCBF719C378EE3
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\86EDC790504E1834DBC20C9A04328FD2
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\8724E58E6C7D00C48A0D4F3345EB2C26
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\88ABD1CD5C40EC84789A7F6EF86DAC5E
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\97C3D0F82E712E241A2F969F45E3351C
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\980289C22F80A7C4BB9323DC61255E4E
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\98CC8BF5A4A6E6C4ABF7051DDAB8B058
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A001B259DB7D694E818BE29B973992C
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9A4B7EF3789F871419D9302583B20C15
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9E7F556BF224D804D96A96F0F6344789
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A189D17A469616C4688D23E192996267
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A6C53B0F76C44004A8F36716213017DB
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\AB676B0E1B9EFA049B9F7DDDA9645734
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B31BBB0B825EDEF45AB0FE7099C68C81
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B471D8D7319336B4CA89374ED0D7B806
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B59F2D8189784CC46A4597F2842480B0
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BAE2EC163C6A68A48921573E0E7E199D
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BC30043663AA2CA4DA1DAA9CA5FDCC75
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BD746FB95FB8E5B45BF66BE54D5FD91F
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BF4F885EDEE45644EB1E0C99E0162399
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\C06C6662FA5B04646829E4A460857770
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CCF399FCD6D2D3F46BF02A1378654FC9
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CE21F3FD57B244142880EF15A165A156
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\CEEB3E14ABE8270419B0FD762E18F7C6
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D149C1355C98DE24E82CEFBD996FE06A
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D15DAF33C220F91468A1D7D57C31ACD7
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D3BA76A44C779424889063D5098ED2D6
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D6D0EB9FDBD90C04D92A7E729058F10D
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB59FDB786388EA4D897F3EE715683AC
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DB8DAD19CFBCC2049A4477183787E8C5
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E1C820A74ED67374BA048B52CB3C3804
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E4748F9A4181FCE46A23C13B517B9420
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EC65F200D112357449C8B1BC3CFA03D0
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\ED1B5E9A3BDB51349BF96E842C062D98
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F327D0C73C0973644A21E8CC852267A0
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\F754C503375A13344B22388E18DFE87E
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FA96423FE2B98E248A3B23548D1E22D9
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FDC83385E6C239F4C876A77A37DF581D
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\FECBC2BC14DA6CD459BD59A041709836
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\254796BF4AC84B64891B61C529A2E23F
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\4340C4778499EED41AE496DC3D613EC6
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\547B38670606DF14AA57B0BB83F3AE4D
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\789034A89BAC50E4782F0A7BDBF75632
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\A97CEC23332751B47BA4B95BAA50C9D0
[-] Data Obnoveno : HKCU\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
[-] Data Obnoveno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
[-] Data Obnoveno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
[-] Data Obnoveno : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
[-] Data Obnoveno : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Search_URL]
[-] Data Obnoveno : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Default_Page_URL]
[-] Data Obnoveno : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Search Page]
[-] Data Obnoveno : HKU\S-1-5-21-1691599488-178746545-566213100-1001\Software\Microsoft\Internet Explorer\Main [Default_Page_URL]
[-] Hodnota smazáno : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [{C9AB0DFB-5F73-4C2F-B54D-5F23954DAF2F}]
[-] Hodnota smazáno : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [{732B0E72-2D80-4AD4-B286-2A1C23BDAC10}]
[-] Hodnota smazáno : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [{F432F0D2-E5C7-412A-8329-25A1BFA3AD76}]
[-] Hodnota smazáno : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [{3FA7B5D6-FA6C-4782-B5FD-C498994660CB}]
[-] Hodnota smazáno : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [{6F3F00C0-4AA4-4E3F-872A-53B87E955BE9}]
[-] Hodnota smazáno : HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules [{C6AD93CF-D0C9-47AA-BE00-A5A86DA53241}]
[-] Klávesa smazáno : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847}
[-] Data Obnoveno : HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command []
[-] Klávesa smazáno : [x64] HKLM\SOFTWARE\Microsoft\Shared Tools\MsConfig\StartupReg\mobilegeni daemon
[-] Hodnota smazáno : HKCU\Software\Microsoft\Windows\CurrentVersion\Run [NextLive]
[#] Hodnota smazáno : HKU\S-1-5-21-1691599488-178746545-566213100-1001\Software\Microsoft\Windows\CurrentVersion\Run [NextLive]
[-] Hodnota smazáno : HKU\S-1-5-21-1691599488-178746545-566213100-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [NextLive]
[-] Hodnota smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [SweetIM]
[-] Hodnota smazáno : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Sweetpacks Communicator]

***** [ Webové prohlížeče ] *****

[-] [C:\Users\Lada\AppData\Roaming\Mozilla\Firefox\Profiles\nihisk6t.default-1457467314724\prefs.js] smazáno : user_pref("browser.newtab.url", "hxxp://www.yoursites123.com/newtab/?type=nt&ts ... M1384M1384");

*************************

:: "Tracing" odstraněných kláves
:: Nastavení Winsock odstraněno

*************************

C:\AdwCleaner\AdwCleaner[C1].txt - [25854 bytes] - [16/04/2016 11:43:20]
C:\AdwCleaner\AdwCleaner[S1].txt - [27804 bytes] - [16/04/2016 11:39:07]

Dejte nový log FRST.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:13-04-2016
Ran by Lada (administrator) on LADA-PC (16-04-2016 17:04:00)
Running from C:\Users\Lada\Desktop
Loaded Profiles: Lada (Available Profiles: Lada)
Platform: Windows 10 Home Version 1511 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(ASUSTeK Computer Inc.) C:\Windows\System32\FBAgent.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(ASUS) C:\Windows\AsScrPro.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
(Advanced Micro Devices, Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Microsoft Corporation) C:\Windows\System32\mqsvc.exe
(TomTom) C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE
(Plays.tv, LLC) C:\Program Files (x86)\Raptr Inc\PlaysTV\plays_service.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(Microsoft Corporation) C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
() C:\Program Files\WindowsApps\Microsoft.Messaging_2.13.20000.0_x86__8wekyb3d8bbwe\SkypeHost.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(ASUSTeK) C:\Windows\SysWOW64\ACEngSvr.exe
(Samsung Electronics Co., Ltd.) C:\Program Files (x86)\Samsung\AllShare\AllShareDMS\AllShareDMS.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
() C:\Program Files\WindowsApps\Microsoft.Windows.Photos_16.325.12390.0_x64__8wekyb3d8bbwe\Microsoft.Photos.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3242696 2015-10-07] (ELAN Microelectronics Corp.)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2264168 2011-07-28] (Realtek Semiconductor)
HKLM\...\Run: [Zune Launcher] => C:\Program Files\Zune\ZuneLauncher.exe [163552 2011-08-05] (Microsoft Corporation)
HKLM\...\Run: [CanonMyPrinter] => C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2184520 2009-07-27] (CANON INC.)
HKLM\...\Run: [CanonSolutionMenu] => C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe [767312 2009-03-18] (CANON INC.)
HKLM-x32\...\Run: [Nuance PDF Reader-reminder] => "C:\Program Files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" -r "C:\ProgramData\Nuance\PDF Reader\Ereg\Ereg.ini"
HKLM-x32\...\Run: [ASUSPRP] => C:\Program Files (x86)\ASUS\APRP\APRP.EXE [2018032 2011-04-01] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [ASUSWebStorage] => C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe [731472 2011-02-23] (ecareme)
HKLM-x32\...\Run: [SonicMasterTray] => C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe [984400 2010-07-10] (Virage Logic Corporation / Sonic Focus)
HKLM-x32\...\Run: [ATKOSD2] => C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [5732992 2010-08-17] (ASUS)
HKLM-x32\...\Run: [ATKMEDIA] => C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [170624 2010-10-07] (ASUS)
HKLM-x32\...\Run: [HControlUser] => C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [105016 2009-06-19] (ASUS)
HKLM-x32\...\Run: [Wireless Console 3] => C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2255360 2011-06-10] (ASUS)
HKLM-x32\...\Run: [UpdateLBPShortCut] => C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [222504 2009-05-20] (CyberLink Corp.)
HKLM-x32\...\Run: [UpdateP2GoShortCut] => C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2009-05-20] (CyberLink Corp.)
HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [311152 2013-09-04] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [AllShareAgent] => C:\Program Files (x86)\Samsung\AllShare\AllShareAgent.exe [285072 2012-03-02] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597040 2015-10-06] (Oracle Corporation)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [767176 2015-08-21] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [PlaysTV] => C:\Program Files (x86)\Raptr Inc\PlaysTV\playstv_launcher.exe [71440 2016-04-01] (Plays.tv, LLC)
HKLM-x32\...\Run: [Raptr] => C:\Program Files (x86)\Raptr Inc\Raptr\raptrstub.exe [58640 2016-04-01] (Raptr, Inc)
HKU\S-1-5-21-1691599488-178746545-566213100-1001\...\Run: [] => C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [844656 2013-09-04] (Samsung)
ShellIconOverlayIdentifiers: [AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7190} => C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\ASUSWSShellExt64.dll [2010-09-02] (eCareme Technologies, Inc.)
ShellIconOverlayIdentifiers: [AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D808} => C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\ASUSWSShellExt64.dll [2010-09-02] (eCareme Technologies, Inc.)
GroupPolicy: Restriction - Chrome <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyServer: [S-1-5-21-1691599488-178746545-566213100-1001] => :
AutoConfigURL: [S-1-5-21-1691599488-178746545-566213100-1001] => hxxp://un-stop.com/wpad.dat?74c5a5368f8c4de087567570f4449eb27064475
Winsock: Catalog5 01 C:\WINDOWS\SysWOW64\NLAapi.dll [65024 2015-10-30] (Microsoft Corporation)ATTENTION: LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Winsock: Catalog5 02 C:\WINDOWS\SysWOW64\napinsp.dll [55808 2015-10-30] (Microsoft Corporation)ATTENTION: LibraryPath should be "%SystemRoot%\system32\napinsp.dll"
Winsock: Catalog5 03 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70656 2015-10-30] (Microsoft Corporation)ATTENTION: LibraryPath should be "%SystemRoot%\system32\pnrpnsp.dll"
Winsock: Catalog5 04 C:\WINDOWS\SysWOW64\pnrpnsp.dll [70656 2015-10-30] (Microsoft Corporation)ATTENTION: LibraryPath should be "%SystemRoot%\system32\pnrpnsp.dll"
Winsock: Catalog5 05 C:\WINDOWS\SysWOW64\mswsock.dll [312160 2015-10-30] (Microsoft Corporation)ATTENTION: LibraryPath should be "%SystemRoot%\System32\mswsock.dll"
Winsock: Catalog5 06 C:\WINDOWS\SysWOW64\winrnr.dll [23552 2015-10-30] (Microsoft Corporation)ATTENTION: LibraryPath should be "%SystemRoot%\System32\winrnr.dll"
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{153be4d6-b290-46d6-bb7e-9538aad6f89f}: [DhcpNameServer] 10.0.0.138
ManualProxies: 0hxxp://un-stop.com/wpad.dat?74c5a5368f8c4de087567570f4449eb27064475

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131032879753048623&GUID=E1FF96E4-FF41-46BC-89B3-A40AFF3178D3
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131032879753223217&GUID=E1FF96E4-FF41-46BC-89B3-A40AFF3178D3
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKU\S-1-5-21-1691599488-178746545-566213100-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131032879753244195&GUID=E1FF96E4-FF41-46BC-89B3-A40AFF3178D3
URLSearchHook: [S-1-5-21-1691599488-178746545-566213100-1001] ATTENTION => Default URLSearchHook is missing
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = hxxp://www.google.com/search?sourceid=ie7&q={s ... lz=1I7ASUT
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_65\bin\ssv.dll [2015-10-22] (Oracle Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2011-04-01] (Google Inc.)
BHO: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg64.dll [2011-04-01] (Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-10-22] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\ssv.dll [2015-10-22] (Oracle Corporation)
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2011-04-01] (Google Inc.)
BHO-x32: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll [2011-04-01] (Google Inc.)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Google Dictionary Compression sdch -> {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} -> C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll [2011-04-01] (Google Inc.)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-03-02] (Microsoft Corporation.)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\jp2ssv.dll [2015-10-22] (Oracle Corporation)
BHO-x32: Lištička -> {EA837F48-5AD1-443E-AE34-FFE03CBF3099} -> C:\Program Files (x86)\Seznam.cz\bin\listicka.dll [2012-04-16] ()
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2011-04-01] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2011-04-01] (Google Inc.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-03-02] (Microsoft Corporation.)
Toolbar: HKLM-x32 - Nástroje Lištičky - {1EA00BE1-6E54-4E2A-8099-680300BF23E1} - C:\Program Files (x86)\Seznam.cz\bin\toolbar\toolbar.dll [2012-04-16] ()

Edge:
======
Edge HomeButtonPage: HKU\S-1-5-21-1691599488-178746545-566213100-1001 -> hxxp://www.yoursites123.com/?type=hp&ts=145881 ... M1384M1384

FireFox:
========
FF ProfilePath: C:\Users\Lada\AppData\Roaming\Mozilla\Firefox\Profiles\nihisk6t.default-1457467314724
FF Homepage: about:home
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_21_0_0_213.dll [2016-04-09] ()
FF Plugin: @java.com/DTPlugin,version=11.65.2 -> C:\Program Files\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll [2015-10-22] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.65.2 -> C:\Program Files\Java\jre1.8.0_65\bin\plugin2\npjp2.dll [2015-10-22] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_21_0_0_213.dll [2016-04-09] ()
FF Plugin-x32: @canon.com/EPPEX -> C:\Program Files (x86)\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL [2009-09-07] (CANON INC.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin-x32: @java.com/DTPlugin,version=11.65.2 -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\dtplugin\npDeployJava1.dll [2015-10-22] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.65.2 -> C:\Program Files (x86)\Java\jre1.8.0_65\bin\plugin2\npjp2.dll [2015-10-22] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.29.5\npGoogleUpdate3.dll [2016-02-02] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2015-12-18] (Adobe Systems Inc.)
FF Plugin-x32: ZEON/PDF,version=2.0 -> C:\Program Files (x86)\Nuance\PDF Reader\bin\nppdf.dll [2010-01-23] (Zeon Corporation)
FF Plugin HKU\S-1-5-21-1691599488-178746545-566213100-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Lada\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-06-11] (Unity Technologies ApS)
FF SearchPlugin: C:\Users\Lada\AppData\Roaming\Mozilla\Firefox\Profiles\nihisk6t.default-1457467314724\searchplugins\so-v.xml [2016-03-29]
FF SearchPlugin: C:\Users\Lada\AppData\Roaming\Mozilla\Firefox\Profiles\nihisk6t.default-1457467314724\searchplugins\yoursites123.xml [2016-03-24]
FF Extension: Adblock Plus - C:\Users\Lada\AppData\Roaming\Mozilla\Firefox\Profiles\nihisk6t.default-1457467314724\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-03-16]

Chrome:
=======
CHR HomePage: Default -> hxxp://www.yoursearching.com/?type=hp&ts=14570 ... m1384m1384
CHR StartupUrls: Default -> "hxxp://www.yoursearching.com/?type=hp&ts=14570 ... m1384m1384"
CHR DefaultSearchURL: Default -> hxxp://search.so-v.com/web?type=ds&x=fqvsjzvxkk-b260cb90&uid=956aec92-29bd-432a-8d6d-3ef65978451e&q={searchTerms}
CHR DefaultSearchKeyword: Default -> so-v
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\49.0.2623.87\ppGoogleNaClPluginChrome.dll => No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\49.0.2623.87\pdf.dll => No File
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\49.0.2623.87\gcswf32.dll => No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll => No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll => No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll => No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll => No File
CHR Plugin: (Zeon Plus) - C:\Program Files (x86)\Nuance\PDF Reader\bin\nppdf.dll (Zeon Corporation)
CHR Plugin: (Windows Live™ Photo Gallery) - C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
CHR Profile: C:\Users\Lada\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Seznam Lištička - Email) - C:\Users\Lada\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2015-03-02]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Lada\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2016-02-29]
CHR Extension: (YouTube) - C:\Users\Lada\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-06]
CHR Extension: (Vyhledávání Google) - C:\Users\Lada\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-10]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Lada\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-08-14]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Lada\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2015-11-10]
CHR Extension: (Gmail) - C:\Users\Lada\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-28]
StartMenuInternet: Google Chrome - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe hxxp://www.so-v.com/?type=ll&uid=956aec92-29bd ... f65978451e

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [344064 2015-08-21] (Advanced Micro Devices, Inc.) [File not signed]
S2 DeskTop_F; C:\ProgramData\desktopfind\desktop293.exe [236728 2016-03-16] (DeskTopService)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [144072 2015-10-07] (ELAN Microelectronics Corp.)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [116104 2009-02-10] ()
R2 PlaysService; C:\Program Files (x86)\Raptr Inc\PlaysTV\plays_service.exe [32528 2016-04-01] (Plays.tv, LLC)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [364464 2015-10-30] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-10-30] (Microsoft Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R0 amdkmpfd; C:\Windows\System32\drivers\amdkmpfd.sys [82664 2015-12-16] (Advanced Micro Devices, Inc.)
R3 athr; C:\Windows\System32\drivers\athwnx.sys [4207104 2015-10-30] (Qualcomm Atheros Communications, Inc.)
R3 AtiHDAudioService; C:\Windows\system32\drivers\AtihdWT6.sys [111120 2016-03-01] (Advanced Micro Devices)
S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2016-01-20] ()
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [15416 2009-07-20] ( )
R3 rt640x64; C:\Windows\System32\drivers\rt640x64.sys [589824 2015-10-30] (Realtek )
S0 WdBoot; C:\Windows\System32\drivers\WdBoot.sys [44568 2015-10-30] (Microsoft Corporation)
R0 WdFilter; C:\Windows\System32\drivers\WdFilter.sys [293216 2015-10-30] (Microsoft Corporation)
R3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [118112 2015-10-30] (Microsoft Corporation)
U3 idsvc; no ImagePath
U3 wpcsvc; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-04-16 17:04 - 2016-04-16 17:04 - 00023006 ____C C:\Users\Lada\Desktop\FRST.txt
2016-04-16 11:35 - 2016-04-16 11:43 - 00000000 ___DC C:\AdwCleaner
2016-04-16 11:34 - 2016-04-16 11:35 - 03668992 _____ C:\Users\Lada\Desktop\adwcleaner_5.111.exe
2016-04-16 00:14 - 2016-04-16 00:16 - 00060394 ____C C:\Users\Lada\Desktop\Addition.txt
2016-04-16 00:14 - 2016-04-16 00:14 - 00074235 ____C C:\Users\Lada\Desktop\FRST3.txt
2016-04-15 22:13 - 2016-04-15 22:13 - 00112640 _____ (forum.viry.cz) C:\Users\Lada\Desktop\FRSTLauncher.exe
2016-04-15 22:11 - 2016-04-16 17:03 - 00000000 ___DC C:\FRST
2016-04-15 22:09 - 2016-04-15 22:09 - 02375168 _____ (Farbar) C:\Users\Lada\Desktop\FRST64.exe
2016-04-15 20:39 - 2016-04-15 20:39 - 00388608 _____ (Trend Micro Inc.) C:\Users\Lada\Downloads\hijackthis(1).exe
2016-04-15 14:33 - 2016-04-15 14:33 - 00388608 _____ (Trend Micro Inc.) C:\Users\Lada\Downloads\hijackthis.exe
2016-04-14 19:33 - 2016-04-16 11:47 - 00000000 ___DC C:\Program Files (x86)\Mozilla Firefox
2016-04-13 04:33 - 2016-03-29 12:20 - 07474016 ____C (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-04-13 04:33 - 2016-03-29 12:18 - 02152280 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-04-13 04:33 - 2016-03-29 11:37 - 01862008 ____C C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2016-04-13 04:33 - 2016-03-29 10:41 - 00630632 ____C (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-04-13 04:33 - 2016-03-29 10:06 - 00045568 ____C (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-04-13 04:33 - 2016-03-29 10:01 - 00541304 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2016-04-13 04:33 - 2016-03-29 09:58 - 00069632 ____C (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll
2016-04-13 04:33 - 2016-03-29 09:58 - 00052224 ____C (Microsoft Corporation) C:\WINDOWS\system32\jsproxy.dll
2016-04-13 04:33 - 2016-03-29 09:46 - 00365568 ____C (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-04-13 04:33 - 2016-03-29 09:36 - 00209408 ____C (Microsoft Corporation) C:\WINDOWS\system32\storewuauth.dll
2016-04-13 04:33 - 2016-03-29 09:19 - 00037376 ____C (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2016-04-13 04:33 - 2016-03-29 09:15 - 00970752 ____C (Microsoft Corporation) C:\WINDOWS\system32\kerberos.dll
2016-04-13 04:33 - 2016-03-29 09:12 - 00065536 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininetlui.dll
2016-04-13 04:33 - 2016-03-29 09:12 - 00045568 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\jsproxy.dll
2016-04-13 04:33 - 2016-03-29 09:07 - 01213440 ____C (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-04-13 04:33 - 2016-03-29 09:02 - 00303104 ____C (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2016-04-13 04:33 - 2016-03-29 08:42 - 03592704 ____C (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-04-13 04:33 - 2016-03-29 08:37 - 00792064 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\kerberos.dll
2016-04-13 04:33 - 2016-03-29 08:32 - 01731584 ____C (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-04-13 04:33 - 2016-03-29 08:31 - 02275328 ____C (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2016-04-13 04:33 - 2016-03-29 08:26 - 02755584 ____C (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-04-13 04:33 - 2016-03-29 08:05 - 01500672 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\urlmon.dll
2016-04-13 04:33 - 2016-03-29 08:02 - 02229760 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\wininet.dll
2016-04-13 04:33 - 2016-03-29 07:51 - 22378496 ____C (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-04-13 04:33 - 2016-03-29 07:41 - 12125184 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2016-04-13 04:33 - 2016-03-29 07:39 - 13382656 ____C (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-04-13 04:33 - 2016-03-29 07:38 - 18673664 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2016-04-13 04:33 - 2016-03-29 07:37 - 19340800 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2016-04-13 04:32 - 2016-03-29 12:20 - 02656952 ____C C:\WINDOWS\system32\CoreUIComponents.dll
2016-04-13 04:32 - 2016-03-29 09:15 - 01714688 ____C (Microsoft Corporation) C:\WINDOWS\system32\SRHInproc.dll
2016-04-13 04:32 - 2016-03-29 09:14 - 00965632 ____C (Microsoft Corporation) C:\WINDOWS\system32\SRH.dll
2016-04-13 04:32 - 2016-03-29 09:10 - 01388544 ____C (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-04-13 04:32 - 2016-03-29 08:37 - 01444352 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRHInproc.dll
2016-04-13 04:32 - 2016-03-29 08:37 - 00799744 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\SRH.dll
2016-04-13 04:32 - 2016-03-29 08:05 - 01388032 ____C (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-04-13 04:32 - 2016-03-29 07:56 - 16985600 ____C (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-04-13 04:32 - 2016-03-29 07:41 - 24602112 ____C (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-04-13 04:31 - 2016-04-02 05:14 - 03994624 ____C (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-04-13 04:31 - 2016-03-29 11:11 - 00605440 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\cng.sys
2016-04-13 04:31 - 2016-03-29 10:02 - 00118272 ____C (Microsoft Corporation) C:\WINDOWS\system32\fontsub.dll
2016-04-13 04:31 - 2016-03-29 09:20 - 00948736 ____C (Microsoft Corporation) C:\WINDOWS\system32\XblAuthManager.dll
2016-04-13 04:31 - 2016-03-29 09:02 - 02624512 ____C (Microsoft Corporation) C:\WINDOWS\system32\InputService.dll
2016-04-13 04:31 - 2016-03-29 09:00 - 00345600 ____C (Microsoft Corporation) C:\WINDOWS\system32\TextInputFramework.dll
2016-04-13 04:31 - 2016-03-29 08:28 - 01944576 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputService.dll
2016-04-13 04:31 - 2016-03-29 08:27 - 00245760 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\TextInputFramework.dll
2016-04-13 04:31 - 2016-03-29 08:19 - 02635776 ____C (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-04-13 04:31 - 2016-03-29 08:01 - 13018624 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Xaml.dll
2016-04-13 04:31 - 2016-03-29 07:58 - 01799680 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Logon.dll
2016-04-13 04:31 - 2016-03-29 07:52 - 11545600 ____C (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-04-13 04:31 - 2016-03-29 07:51 - 09918976 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\twinui.dll
2016-04-13 04:31 - 2016-03-29 07:49 - 05202944 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\BingMaps.dll
2016-04-13 04:31 - 2016-03-29 07:43 - 03428864 ____C (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-04-13 04:31 - 2016-03-29 07:38 - 02798080 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.dll
2016-04-13 04:31 - 2016-03-29 07:27 - 07836160 ____C (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-04-13 04:31 - 2016-03-29 07:27 - 05662208 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\Chakra.dll
2016-04-13 04:30 - 2016-04-02 06:13 - 00369912 ____C (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2016-04-13 04:30 - 2016-04-02 05:26 - 00630272 ____C (Microsoft Corporation) C:\WINDOWS\system32\PhoneProviders.dll
2016-04-13 04:30 - 2016-04-02 05:21 - 00498688 ____C (Microsoft Corporation) C:\WINDOWS\system32\tileobjserver.dll
2016-04-13 04:30 - 2016-04-02 05:19 - 01054208 ____C (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-04-13 04:30 - 2016-04-02 05:18 - 00988160 ____C (Microsoft Corporation) C:\WINDOWS\system32\SharedStartModel.dll
2016-04-13 04:30 - 2016-04-02 05:15 - 01090048 ____C (Microsoft Corporation) C:\WINDOWS\system32\RDXService.dll
2016-04-13 04:30 - 2016-04-02 05:09 - 01832448 ____C (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2016-04-13 04:30 - 2016-04-02 05:07 - 03575296 ____C (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsThresholdAdminFlowUI.dll
2016-04-13 04:30 - 2016-04-02 05:07 - 02158592 ____C (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-04-13 04:30 - 2016-04-02 05:00 - 01390080 ____C (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Shell.dll
2016-04-13 04:30 - 2016-03-29 12:22 - 01030416 ____C (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-04-13 04:30 - 2016-03-29 12:22 - 00874968 ____C (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-04-13 04:30 - 2016-03-29 12:20 - 01317640 ____C (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-04-13 04:30 - 2016-03-29 12:20 - 01141504 ____C (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-04-13 04:30 - 2016-03-29 12:02 - 00989536 ____C (Microsoft Corporation) C:\WINDOWS\system32\SecConfig.efi
2016-04-13 04:30 - 2016-03-29 11:56 - 01297752 ____C (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2016-04-13 04:30 - 2016-03-29 11:28 - 00696664 ____C (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-04-13 04:30 - 2016-03-29 11:17 - 00300104 ____C (Microsoft Corporation) C:\WINDOWS\system32\LockAppHost.exe
2016-04-13 04:30 - 2016-03-29 11:13 - 00986976 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2016-04-13 04:30 - 2016-03-29 10:44 - 00502104 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupEngine.dll
2016-04-13 04:30 - 2016-03-29 10:26 - 01089888 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2016-04-13 04:30 - 2016-03-29 09:39 - 00550912 ____C (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-04-13 04:30 - 2016-03-29 09:38 - 00207360 ____C (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-04-13 04:30 - 2016-03-29 09:37 - 00617984 ____C (Microsoft Corporation) C:\WINDOWS\system32\StorSvc.dll
2016-04-13 04:30 - 2016-03-29 09:34 - 00641536 ____C (Microsoft Corporation) C:\WINDOWS\system32\enterprisecsps.dll
2016-04-13 04:30 - 2016-03-29 09:28 - 00460288 ____C (Microsoft Corporation) C:\WINDOWS\system32\MapConfiguration.dll
2016-04-13 04:30 - 2016-03-29 09:27 - 00339968 ____C (Microsoft Corporation) C:\WINDOWS\system32\SensorService.dll
2016-04-13 04:30 - 2016-03-29 09:22 - 00438784 ____C (Microsoft Corporation) C:\WINDOWS\system32\AccountsRt.dll
2016-04-13 04:30 - 2016-03-29 09:19 - 00556032 ____C (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-04-13 04:30 - 2016-03-29 09:16 - 00852480 ____C (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-04-13 04:30 - 2016-03-29 09:16 - 00093696 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontsub.dll
2016-04-13 04:30 - 2016-03-29 09:14 - 00859136 ____C (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-04-13 04:30 - 2016-03-29 09:13 - 00587776 ____C (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-04-13 04:30 - 2016-03-29 09:12 - 00471552 ____C (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2016-04-13 04:30 - 2016-03-29 09:11 - 00988160 ____C (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-04-13 04:30 - 2016-03-29 09:10 - 00938496 ____C (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-04-13 04:30 - 2016-03-29 09:06 - 01575936 ____C (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-04-13 04:30 - 2016-03-29 09:05 - 01395712 ____C (Microsoft Corporation) C:\WINDOWS\system32\UIAutomationCore.dll
2016-04-13 04:30 - 2016-03-29 09:02 - 01211904 ____C (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-04-13 04:30 - 2016-03-29 09:00 - 00175616 ____C (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Core.TextInput.dll
2016-04-13 04:30 - 2016-03-29 08:59 - 00108544 ____C (Microsoft Corporation) C:\WINDOWS\system32\InputLocaleManager.dll
2016-04-13 04:30 - 2016-03-29 08:56 - 00821760 ____C (Microsoft Corporation) C:\WINDOWS\system32\TokenBroker.dll
2016-04-13 04:30 - 2016-03-29 08:56 - 00415232 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\StoreAgent.dll
2016-04-13 04:30 - 2016-03-29 08:48 - 00346624 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapConfiguration.dll
2016-04-13 04:30 - 2016-03-29 08:44 - 00498176 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\MessagingDataModel2.dll
2016-04-13 04:30 - 2016-03-29 08:43 - 00358400 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\AccountsRt.dll
2016-04-13 04:30 - 2016-03-29 08:36 - 00649728 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.dll
2016-04-13 04:30 - 2016-03-29 08:35 - 00354304 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2016-04-13 04:30 - 2016-03-29 08:34 - 00711680 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapControlCore.dll
2016-04-13 04:30 - 2016-03-29 08:34 - 00418304 ____C (Microsoft Corporation) C:\WINDOWS\system32\dmenrollengine.dll
2016-04-13 04:30 - 2016-03-29 08:32 - 01098240 ____C (Microsoft Corporation) C:\WINDOWS\system32\dosvc.dll
2016-04-13 04:30 - 2016-03-29 08:31 - 01946112 ____C (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-04-13 04:30 - 2016-03-29 08:30 - 01139712 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\UIAutomationCore.dll
2016-04-13 04:30 - 2016-03-29 08:27 - 00133632 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Core.TextInput.dll
2016-04-13 04:30 - 2016-03-29 08:17 - 00765952 ____C (Microsoft Corporation) C:\WINDOWS\system32\fveapi.dll
2016-04-13 04:30 - 2016-03-29 08:14 - 01072128 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.Http.dll
2016-04-13 04:30 - 2016-03-29 08:05 - 07199232 ____C (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-04-13 04:30 - 2016-03-29 08:05 - 01626624 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2016-04-13 04:30 - 2016-03-29 07:45 - 03078144 ____C (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2016-04-13 04:30 - 2016-03-29 07:36 - 02722816 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\esent.dll
2016-04-13 04:30 - 2016-03-29 07:26 - 00958976 ____C (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2016-04-13 04:29 - 2016-04-02 06:10 - 00770640 ____C (Microsoft Corporation) C:\WINDOWS\system32\iuilp.dll
2016-04-13 04:29 - 2016-04-02 06:10 - 00730344 ____C (Microsoft Corporation) C:\WINDOWS\system32\Windows.Internal.Shell.Broker.dll
2016-04-13 04:29 - 2016-04-02 06:10 - 00374008 ____C (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-04-13 04:29 - 2016-04-02 05:29 - 00127488 ____C (Microsoft Corporation) C:\WINDOWS\system32\VEDataLayerHelpers.dll
2016-04-13 04:29 - 2016-04-02 05:29 - 00083968 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEDataLayerHelpers.dll
2016-04-13 04:29 - 2016-03-29 12:23 - 00277856 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-04-13 04:29 - 2016-03-29 12:15 - 00100232 ____C (Microsoft Corporation) C:\WINDOWS\system32\omadmapi.dll
2016-04-13 04:29 - 2016-03-29 12:11 - 00686976 ____C (Microsoft Corporation) C:\WINDOWS\system32\dnsapi.dll
2016-04-13 04:29 - 2016-03-29 12:05 - 01152864 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2016-04-13 04:29 - 2016-03-29 12:02 - 00334736 ____C (Microsoft Corporation) C:\WINDOWS\system32\policymanager.dll
2016-04-13 04:29 - 2016-03-29 11:28 - 00535080 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\dnsapi.dll
2016-04-13 04:29 - 2016-03-29 11:28 - 00115040 ____C (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-04-13 04:29 - 2016-03-29 11:25 - 00258912 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ufx01000.sys
2016-04-13 04:29 - 2016-03-29 11:19 - 00296488 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\policymanager.dll
2016-04-13 04:29 - 2016-03-29 11:10 - 00110584 ____C (Microsoft Corporation) C:\WINDOWS\system32\srvcli.dll
2016-04-13 04:29 - 2016-03-29 11:09 - 00078040 ____C (Microsoft Corporation) C:\WINDOWS\system32\wkscli.dll
2016-04-13 04:29 - 2016-03-29 11:08 - 00358752 ____C (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-04-13 04:29 - 2016-03-29 11:08 - 00261376 ____C (Microsoft Corporation) C:\WINDOWS\system32\LsaIso.exe
2016-04-13 04:29 - 2016-03-29 11:07 - 00081144 ____C (Microsoft Corporation) C:\WINDOWS\system32\netapi32.dll
2016-04-13 04:29 - 2016-03-29 10:44 - 00084832 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupApi.dll
2016-04-13 04:29 - 2016-03-29 10:32 - 00253088 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\LockAppHost.exe
2016-04-13 04:29 - 2016-03-29 10:26 - 02403680 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-04-13 04:29 - 2016-03-29 10:26 - 00073872 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\srvcli.dll
2016-04-13 04:29 - 2016-03-29 10:25 - 00056320 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\wkscli.dll
2016-04-13 04:29 - 2016-03-29 10:24 - 00294752 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\msv1_0.dll
2016-04-13 04:29 - 2016-03-29 10:23 - 00069744 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\netapi32.dll
2016-04-13 04:29 - 2016-03-29 10:21 - 00378208 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2016-04-13 04:29 - 2016-03-29 10:16 - 00026112 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xinputhid.sys
2016-04-13 04:29 - 2016-03-29 10:07 - 00092160 ____C (Microsoft Corporation) C:\WINDOWS\system32\policymanagerprecheck.dll
2016-04-13 04:29 - 2016-03-29 09:57 - 00074752 ____C (Microsoft Corporation) C:\WINDOWS\system32\MosStorage.dll
2016-04-13 04:29 - 2016-03-29 09:51 - 00167936 ____C (Microsoft Corporation) C:\WINDOWS\system32\dafBth.dll
2016-04-13 04:29 - 2016-03-29 09:50 - 00088576 ____C (Microsoft Corporation) C:\WINDOWS\system32\AppxSysprep.dll
2016-04-13 04:29 - 2016-03-29 09:48 - 00144896 ____C (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Devices.dll
2016-04-13 04:29 - 2016-03-29 09:42 - 00269824 ____C (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-04-13 04:29 - 2016-03-29 09:36 - 00530432 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\nwifi.sys
2016-04-13 04:29 - 2016-03-29 09:30 - 00328192 ____C (Microsoft Corporation) C:\WINDOWS\system32\profsvc.dll
2016-04-13 04:29 - 2016-03-29 09:30 - 00161792 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\msorcl32.dll
2016-04-13 04:29 - 2016-03-29 09:26 - 00169472 ____C (Microsoft Corporation) C:\WINDOWS\system32\mdmmigrator.dll
2016-04-13 04:29 - 2016-03-29 09:23 - 00628736 ____C (Microsoft Corporation) C:\WINDOWS\system32\MessagingDataModel2.dll
2016-04-13 04:29 - 2016-03-29 09:23 - 00324608 ____C (Microsoft Corporation) C:\WINDOWS\system32\RDXTaskFactory.dll
2016-04-13 04:29 - 2016-03-29 09:20 - 00166400 ____C (Microsoft Corporation) C:\WINDOWS\system32\AboveLockAppHost.dll
2016-04-13 04:29 - 2016-03-29 09:17 - 01056256 ____C (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-04-13 04:29 - 2016-03-29 09:17 - 00708608 ____C (Microsoft Corporation) C:\WINDOWS\system32\Windows.Security.Authentication.Web.Core.dll
2016-04-13 04:29 - 2016-03-29 09:17 - 00440320 ____C (Microsoft Corporation) C:\WINDOWS\system32\CredProvDataModel.dll
2016-04-13 04:29 - 2016-03-29 09:11 - 00881664 ____C (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Input.Inking.dll
2016-04-13 04:29 - 2016-03-29 09:11 - 00059904 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\MosStorage.dll
2016-04-13 04:29 - 2016-03-29 09:09 - 01239552 ____C (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Bluetooth.dll
2016-04-13 04:29 - 2016-03-29 09:08 - 00888320 ____C (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2016-04-13 04:29 - 2016-03-29 09:07 - 01902592 ____C (Microsoft Corporation) C:\WINDOWS\system32\msxml3.dll
2016-04-13 04:29 - 2016-03-29 09:06 - 00848896 ____C (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2016-04-13 04:29 - 2016-03-29 09:04 - 00103936 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Devices.dll
2016-04-13 04:29 - 2016-03-29 09:03 - 00148480 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2016-04-13 04:29 - 2016-03-29 08:59 - 00119808 ____C (Microsoft Corporation) C:\WINDOWS\system32\BitLockerDeviceEncryption.exe
2016-04-13 04:29 - 2016-03-29 08:55 - 01052160 ____C (Microsoft Corporation) C:\WINDOWS\system32\MsSpellCheckingFacility.dll
2016-04-13 04:29 - 2016-03-29 08:49 - 00288256 ____C (Microsoft Corporation) C:\WINDOWS\system32\fveui.dll
2016-04-13 04:29 - 2016-03-29 08:42 - 01410560 ____C (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2016-04-13 04:29 - 2016-03-29 08:41 - 00129024 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\AboveLockAppHost.dll
2016-04-13 04:29 - 2016-03-29 08:40 - 00787456 ____C (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2016-04-13 04:29 - 2016-03-29 08:39 - 00350720 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\CredProvDataModel.dll
2016-04-13 04:29 - 2016-03-29 08:38 - 00800768 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\JpMapControl.dll
2016-04-13 04:29 - 2016-03-29 08:36 - 03351040 ____C (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-04-13 04:29 - 2016-03-29 08:34 - 00682496 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Input.Inking.dll
2016-04-13 04:29 - 2016-03-29 08:32 - 01588224 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\msxml3.dll
2016-04-13 04:29 - 2016-03-29 08:32 - 00854528 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Devices.Bluetooth.dll
2016-04-13 04:29 - 2016-03-29 08:32 - 00176640 ____C (Microsoft Corporation) C:\WINDOWS\system32\mdmregistration.dll
2016-04-13 04:29 - 2016-03-29 08:32 - 00162816 ____C (Microsoft Corporation) C:\WINDOWS\system32\enrollmentapi.dll
2016-04-13 04:29 - 2016-03-29 08:31 - 01117184 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Media.Speech.dll
2016-04-13 04:29 - 2016-03-29 08:31 - 00705536 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\wuapi.dll
2016-04-13 04:29 - 2016-03-29 08:29 - 00555520 ____C (Microsoft Corporation) C:\WINDOWS\system32\SyncController.dll
2016-04-13 04:29 - 2016-03-29 08:29 - 00256000 ____C (Microsoft Corporation) C:\WINDOWS\system32\accountaccessor.dll
2016-04-13 04:29 - 2016-03-29 08:28 - 00764928 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Cred.dll
2016-04-13 04:29 - 2016-03-29 08:27 - 00083456 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\InputLocaleManager.dll
2016-04-13 04:29 - 2016-03-29 08:23 - 00777728 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\MsSpellCheckingFacility.dll
2016-04-13 04:29 - 2016-03-29 08:22 - 00638464 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBroker.dll
2016-04-13 04:29 - 2016-03-29 08:13 - 00592384 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Web.dll
2016-04-13 04:29 - 2016-03-29 08:10 - 03671040 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\msi.dll
2016-04-13 04:29 - 2016-03-29 08:06 - 00151040 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\mdmregistration.dll
2016-04-13 04:29 - 2016-03-29 08:05 - 00361472 ____C (Microsoft Corporation) C:\WINDOWS\system32\bdesvc.dll
2016-04-13 04:29 - 2016-03-29 08:04 - 00848896 ____C (Microsoft Corporation) C:\WINDOWS\system32\samsrv.dll
2016-04-13 04:29 - 2016-03-29 08:04 - 00688640 ____C (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2016-04-13 04:29 - 2016-03-29 07:45 - 00338432 ____C (Microsoft Corporation) C:\WINDOWS\system32\ncbservice.dll
2016-04-13 04:29 - 2016-03-29 07:43 - 00521728 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.Connectivity.dll
2016-04-13 04:29 - 2016-03-29 07:25 - 00712704 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\RemoteNaturalLanguage.dll
2016-04-13 04:28 - 2016-04-02 05:30 - 00151040 ____C (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll
2016-04-13 04:28 - 2016-04-02 05:25 - 00278528 ____C (Microsoft Corporation) C:\WINDOWS\system32\NotificationObjFactory.dll
2016-04-13 04:28 - 2016-04-02 05:25 - 00239104 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\NotificationObjFactory.dll
2016-04-13 04:28 - 2016-04-02 05:23 - 00285696 ____C (Microsoft Corporation) C:\WINDOWS\system32\VEEventDispatcher.dll
2016-04-13 04:28 - 2016-04-02 05:23 - 00219648 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\VEEventDispatcher.dll
2016-04-13 04:28 - 2016-04-02 05:08 - 02193408 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\actxprxy.dll
2016-04-13 04:28 - 2016-04-02 05:03 - 04774912 ____C (Microsoft Corporation) C:\WINDOWS\system32\actxprxy.dll
2016-04-13 04:28 - 2016-03-29 11:25 - 00058400 ____C (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.dll
2016-04-13 04:28 - 2016-03-29 11:18 - 00185184 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2016-04-13 04:28 - 2016-03-29 11:11 - 00074424 ____C (Microsoft Corporation) C:\WINDOWS\system32\easinvoker.exe
2016-04-13 04:28 - 2016-03-29 10:41 - 00051128 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.dll
2016-04-13 04:28 - 2016-03-29 10:17 - 00089088 ____C (Microsoft Corporation) C:\WINDOWS\system32\MapsCSP.dll
2016-04-13 04:28 - 2016-03-29 10:07 - 00092160 ____C (Microsoft Corporation) C:\WINDOWS\system32\SensorsNativeApi.V2.dll
2016-04-13 04:28 - 2016-03-29 10:07 - 00048128 ____C (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2016-04-13 04:28 - 2016-03-29 10:07 - 00034816 ____C (Microsoft Corporation) C:\WINDOWS\system32\dmenterprisediagnostics.dll
2016-04-13 04:28 - 2016-03-29 10:07 - 00031232 ____C (Microsoft Corporation) C:\WINDOWS\system32\wsdchngr.dll
2016-04-13 04:28 - 2016-03-29 10:06 - 00012800 ____C (Microsoft Corporation) C:\WINDOWS\system32\oleacchooks.dll
2016-04-13 04:28 - 2016-03-29 10:00 - 00076800 ____C (Microsoft Corporation) C:\WINDOWS\system32\NetCfgNotifyObjectHost.exe
2016-04-13 04:28 - 2016-03-29 10:00 - 00069632 ____C (Microsoft Corporation) C:\WINDOWS\system32\fveskybackup.dll
2016-04-13 04:28 - 2016-03-29 10:00 - 00028672 ____C (Microsoft Corporation) C:\WINDOWS\system32\mapsupdatetask.dll
2016-04-13 04:28 - 2016-03-29 09:59 - 00027648 ____C (Microsoft Corporation) C:\WINDOWS\system32\LicenseManagerShellext.exe
2016-04-13 04:28 - 2016-03-29 09:57 - 00095744 ____C (Microsoft Corporation) C:\WINDOWS\system32\samlib.dll
2016-04-13 04:28 - 2016-03-29 09:57 - 00058368 ____C (Microsoft Corporation) C:\WINDOWS\system32\browcli.dll
2016-04-13 04:28 - 2016-03-29 09:55 - 00120320 ____C (Microsoft Corporation) C:\WINDOWS\system32\MapsBtSvc.dll
2016-04-13 04:28 - 2016-03-29 09:55 - 00083968 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\serial.sys
2016-04-13 04:28 - 2016-03-29 09:55 - 00036352 ____C (Microsoft Corporation) C:\WINDOWS\system32\tbauth.dll
2016-04-13 04:28 - 2016-03-29 09:54 - 00147456 ____C (Microsoft Corporation) C:\WINDOWS\system32\mtxoci.dll
2016-04-13 04:28 - 2016-03-29 09:53 - 00116224 ____C (Microsoft Corporation) C:\WINDOWS\system32\FontProvider.dll
2016-04-13 04:28 - 2016-03-29 09:52 - 00026112 ____C (Microsoft Corporation) C:\WINDOWS\system32\TokenBrokerCookies.exe
2016-04-13 04:28 - 2016-03-29 09:51 - 00087040 ____C (Microsoft Corporation) C:\WINDOWS\system32\tzautoupdate.dll
2016-04-13 04:28 - 2016-03-29 09:50 - 00107520 ____C (Microsoft Corporation) C:\WINDOWS\system32\BdeHdCfgLib.dll
2016-04-13 04:28 - 2016-03-29 09:50 - 00066560 ____C (Microsoft Corporation) C:\WINDOWS\system32\moshost.dll
2016-04-13 04:28 - 2016-03-29 09:50 - 00066048 ____C (Microsoft Corporation) C:\WINDOWS\system32\OnDemandConnRouteHelper.dll
2016-04-13 04:28 - 2016-03-29 09:50 - 00033280 ____C (Microsoft Corporation) C:\WINDOWS\system32\wuautoappupdate.dll
2016-04-13 04:28 - 2016-03-29 09:49 - 00091136 ____C (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-04-13 04:28 - 2016-03-29 09:46 - 00134656 ____C (Microsoft Corporation) C:\WINDOWS\system32\browser.dll
2016-04-13 04:28 - 2016-03-29 09:44 - 00230400 ____C (Microsoft Corporation) C:\WINDOWS\system32\DAFWSD.dll
2016-04-13 04:28 - 2016-03-29 09:35 - 00411648 ____C (Microsoft Corporation) C:\WINDOWS\system32\oleacc.dll
2016-04-13 04:28 - 2016-03-29 09:35 - 00239616 ____C (Microsoft Corporation) C:\WINDOWS\system32\credprovhost.dll
2016-04-13 04:28 - 2016-03-29 09:34 - 00686592 ____C (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2016-04-13 04:28 - 2016-03-29 09:34 - 00333824 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2016-04-13 04:28 - 2016-03-29 09:34 - 00284672 ____C (Microsoft Corporation) C:\WINDOWS\system32\dnsrslvr.dll
2016-04-13 04:28 - 2016-03-29 09:33 - 00174592 ____C (Microsoft Corporation) C:\WINDOWS\system32\easwrt.dll
2016-04-13 04:28 - 2016-03-29 09:23 - 00694784 ____C (Microsoft Corporation) C:\WINDOWS\system32\Drivers\WdiWiFi.sys
2016-04-13 04:28 - 2016-03-29 09:21 - 00330240 ____C (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2016-04-13 04:28 - 2016-03-29 09:20 - 00080384 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\SensorsNativeApi.V2.dll
2016-04-13 04:28 - 2016-03-29 09:20 - 00026112 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\wsdchngr.dll
2016-04-13 04:28 - 2016-03-29 09:19 - 00010240 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacchooks.dll
2016-04-13 04:28 - 2016-03-29 09:18 - 00676352 ____C (Microsoft Corporation) C:\WINDOWS\system32\WSDApi.dll
2016-04-13 04:28 - 2016-03-29 09:11 - 00061440 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\samlib.dll
2016-04-13 04:28 - 2016-03-29 09:11 - 00043520 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\browcli.dll
2016-04-13 04:28 - 2016-03-29 09:09 - 00030208 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\tbauth.dll
2016-04-13 04:28 - 2016-03-29 09:08 - 00841216 ____C (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-04-13 04:28 - 2016-03-29 09:08 - 00118272 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\mtxoci.dll
2016-04-13 04:28 - 2016-03-29 09:06 - 00022528 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\TokenBrokerCookies.exe
2016-04-13 04:28 - 2016-03-29 09:05 - 00052736 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\OnDemandConnRouteHelper.dll
2016-04-13 04:28 - 2016-03-29 09:00 - 00176128 ____C (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.DeviceEncryptionHandlers.dll
2016-04-13 04:28 - 2016-03-29 08:59 - 00223232 ____C (Microsoft Corporation) C:\WINDOWS\system32\fveapibase.dll
2016-04-13 04:28 - 2016-03-29 08:53 - 00323072 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\oleacc.dll
2016-04-13 04:28 - 2016-03-29 08:53 - 00193024 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\credprovhost.dll
2016-04-13 04:28 - 2016-03-29 08:52 - 00306176 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieproxy.dll
2016-04-13 04:28 - 2016-03-29 08:52 - 00141824 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\easwrt.dll
2016-04-13 04:28 - 2016-03-29 08:42 - 00250880 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.ApplicationModel.Store.TestingFramework.dll
2016-04-13 04:28 - 2016-03-29 08:39 - 00564224 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\WSDApi.dll
2016-04-13 04:28 - 2016-03-29 08:39 - 00496128 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Security.Authentication.Web.Core.dll
2016-04-13 04:28 - 2016-03-29 08:34 - 00784896 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\NMAA.dll
2016-04-13 04:28 - 2016-03-29 08:32 - 00638464 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.Networking.dll
2016-04-13 04:28 - 2016-03-29 08:32 - 00128512 ____C (Microsoft Corporation) C:\WINDOWS\system32\dmcsps.dll
2016-04-13 04:28 - 2016-03-29 08:27 - 07979008 ____C (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-04-13 04:28 - 2016-03-29 08:05 - 00450560 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\SyncController.dll
2016-04-13 04:28 - 2016-03-29 08:01 - 00957952 ____C (Microsoft Corporation) C:\WINDOWS\system32\IKEEXT.DLL
2016-04-13 04:28 - 2016-03-29 08:00 - 06297088 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\mos.dll
2016-04-13 04:28 - 2016-03-29 07:35 - 00821248 ____C (Microsoft Corporation) C:\WINDOWS\system32\fvewiz.dll
2016-04-13 04:28 - 2016-03-29 07:28 - 00324608 ____C (Microsoft Corporation) C:\WINDOWS\system32\fvecpl.dll
2016-04-13 04:28 - 2016-03-29 07:27 - 00794112 ____C (Microsoft Corporation) C:\WINDOWS\system32\BFE.DLL
2016-04-13 04:28 - 2016-03-29 07:26 - 00402432 ____C (Microsoft Corporation) C:\WINDOWS\system32\FWPUCLNT.DLL
2016-04-13 04:28 - 2016-03-29 07:25 - 00269824 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\FWPUCLNT.DLL
2016-04-13 04:28 - 2016-03-29 07:21 - 00065536 ____C (Microsoft Corporation) C:\WINDOWS\system32\basesrv.dll
2016-04-13 04:27 - 2016-03-29 09:57 - 00199168 ____C (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-04-13 04:27 - 2016-03-29 09:48 - 00086528 ____C (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-04-13 04:27 - 2016-03-29 09:32 - 00764928 ____C (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-04-13 04:27 - 2016-03-29 09:32 - 00414720 ____C (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-04-13 04:27 - 2016-03-29 09:11 - 00161280 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\InstallAgent.exe
2016-04-13 04:27 - 2016-03-29 09:09 - 00087040 ____C (Microsoft Corporation) C:\WINDOWS\SysWOW64\MapsBtSvc.dll
2016-04-13 04:27 - 2016-03-29 09:00 - 00235008 ____C C:\WINDOWS\system32\MTF.dll
2016-04-13 04:27 - 2016-03-29 08:27 - 00162816 ____C C:\WINDOWS\SysWOW64\MTF.dll
2016-04-09 04:10 - 2016-04-09 04:10 - 05934784 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerInstaller.exe
2016-04-08 20:34 - 2016-04-08 20:34 - 00000001 _____ C:\WINDOWS\SysWOW64\en.html
2016-04-04 00:37 - 2016-04-04 00:37 - 00000000 ___HD C:\ProgramData\CanonIJSolutionMenu
2016-04-03 23:32 - 2016-04-03 23:32 - 00000000 ____D C:\ProgramData\CanonIJ
2016-04-03 23:30 - 2016-04-14 04:01 - 00000000 ____D C:\ProgramData\CanonIJPLM
2016-04-03 23:30 - 2016-04-03 23:30 - 00000000 ___HD C:\ProgramData\CanonIJMyPrinter
2016-04-03 23:26 - 2016-04-03 23:26 - 00002133 ____C C:\Users\Public\Desktop\Registrace uživatele zařízení Canon MP250 series.LNK
2016-04-03 23:26 - 2016-04-03 23:26 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Registrace uživatele zařízení Canon MP250 series
2016-04-03 23:26 - 2009-02-26 19:32 - 00038224 ____N (CANON INC.) C:\WINDOWS\SysWOW64\IJRMF.exe
2016-04-03 22:23 - 2016-04-03 22:23 - 00002168 ____C C:\Users\Public\Desktop\Canon Easy-PhotoPrint EX.lnk
2016-04-03 22:23 - 2016-04-03 22:23 - 00002114 ____C C:\Users\Public\Desktop\Canon Solution Menu.lnk
2016-04-03 22:22 - 2016-04-03 22:22 - 00002170 ____C C:\Users\Public\Desktop\Canon MP Navigator EX 3.0.lnk
2016-04-03 22:21 - 2016-04-03 22:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon Utilities
2016-04-03 22:21 - 2016-04-03 22:21 - 00001851 ____C C:\Users\Public\Desktop\Canon My Printer.lnk
2016-04-03 22:20 - 2016-04-03 22:20 - 00000000 ____D C:\Program Files\Canon
2016-04-03 22:19 - 2016-04-03 22:19 - 00002429 ____C C:\Users\Public\Desktop\Canon MP250 series Příručka online.lnk
2016-04-03 22:11 - 2016-04-03 22:11 - 00000000 ___HD C:\WINDOWS\system32\CanonIJ Uninstaller Information
2016-04-03 22:11 - 2016-04-03 22:11 - 00000000 ___HD C:\ProgramData\CanonBJ
2016-04-03 22:11 - 2016-04-03 22:11 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon MP250 series
2016-04-03 22:11 - 2009-04-03 16:01 - 01321984 _____ (CANON INC.) C:\WINDOWS\system32\CNC250C.dll
2016-04-03 22:11 - 2009-04-03 16:00 - 00092672 _____ (CANON INC.) C:\WINDOWS\system32\CNC250I.dll
2016-04-03 22:11 - 2009-04-03 15:57 - 00106496 _____ (CANON INC.) C:\WINDOWS\SysWOW64\CNC250U.dll
2016-04-03 22:11 - 2009-03-11 11:36 - 00328192 _____ (CANON INC.) C:\WINDOWS\system32\CNC250L.dll
2016-04-03 22:11 - 2009-03-11 11:34 - 00303104 _____ (CANON INC.) C:\WINDOWS\SysWOW64\CNC250L.dll
2016-04-03 22:10 - 2016-04-03 22:10 - 00000000 ___HD C:\Program Files\CanonBJ
2016-04-03 22:10 - 2009-03-18 11:10 - 00244736 _____ (CANON INC.) C:\WINDOWS\system32\CNMIU9W.DLL
2016-04-03 22:10 - 2009-03-17 05:00 - 00336896 _____ (CANON INC.) C:\WINDOWS\system32\CNMLM9W.DLL
2016-04-03 22:10 - 2009-02-04 15:18 - 00104960 _____ (Canon Inc.) C:\WINDOWS\system32\CNC250O.dll
2016-04-03 21:58 - 2016-04-03 21:58 - 00000000 ___DC C:\Users\Lada\AppData\LocalLow\Temp
2016-04-03 21:18 - 2016-04-03 21:18 - 00004296 _____ C:\WINDOWS\System32\Tasks\AMD Updater
2016-04-03 21:18 - 2016-04-03 21:18 - 00002094 ____C C:\Users\Public\Desktop\Raptr.lnk
2016-04-03 21:18 - 2016-04-03 21:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Raptr
2016-04-03 21:17 - 2016-04-14 04:00 - 00000000 ____D C:\Users\Lada\AppData\Roaming\PlaysTV
2016-04-03 21:17 - 2016-04-03 21:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AMD Gaming Evolved
2016-04-03 21:15 - 2016-04-03 21:15 - 00000000 ____D C:\Users\Lada\AppData\Roaming\library_dir
2016-04-03 21:14 - 2016-04-03 21:15 - 00000000 ____D C:\Program Files (x86)\Raptr Inc
2016-04-03 21:13 - 2016-04-14 04:00 - 00000000 ____D C:\Users\Lada\AppData\Roaming\Raptr
2016-04-03 21:13 - 2016-04-03 21:15 - 00000000 ____D C:\Program Files (x86)\Raptr
2016-04-03 19:42 - 2016-04-07 18:00 - 00000000 ___DC C:\Users\Lada\Desktop\plot
2016-03-29 20:21 - 2016-03-29 20:21 - 00000000 ____D C:\ProgramData\desktopfind
2016-03-29 20:20 - 2016-03-29 20:20 - 00000270 __RSH C:\ProgramData\ntuser.pol
2016-03-27 18:20 - 2016-03-27 18:21 - 00000000 ___DC C:\Users\Lada\Desktop\zmrzlina
2016-03-24 12:11 - 2016-03-24 12:11 - 00000384 _____ C:\WINDOWS\SysWOW64\data.bin
2016-03-24 12:10 - 2016-03-24 12:12 - 00000072 _____ C:\WINDOWS\SysWOW64\123.html
2016-03-20 17:21 - 2016-03-20 17:21 - 00000000 ___RD C:\Users\Lada\3D Objects

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-04-16 16:10 - 2012-07-16 23:13 - 00000914 ____C C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-04-16 14:30 - 2011-04-01 10:58 - 00000952 ____C C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2016-04-16 12:03 - 2015-10-30 09:24 - 00000000 ___HD C:\Program Files\WindowsApps
2016-04-16 12:03 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-04-16 11:58 - 2016-03-15 03:16 - 02041222 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-04-16 11:58 - 2015-10-30 20:31 - 00845390 _____ C:\WINDOWS\system32\perfh005.dat
2016-04-16 11:58 - 2015-10-30 20:31 - 00193110 _____ C:\WINDOWS\system32\perfc005.dat
2016-04-16 11:58 - 2015-10-30 09:21 - 00000000 ____D C:\WINDOWS\INF
2016-04-16 11:49 - 2011-04-01 10:58 - 00000948 ____C C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2016-04-16 11:48 - 2016-03-15 03:46 - 00000006 ___HC C:\WINDOWS\Tasks\SA.DAT
2016-04-16 11:47 - 2012-07-24 18:22 - 00000000 ___DC C:\Program Files (x86)\Mozilla Maintenance Service
2016-04-16 11:46 - 2016-03-15 03:17 - 00000000 ____D C:\Users\Lada
2016-04-16 11:46 - 2015-10-30 08:28 - 00524288 ___SH C:\WINDOWS\system32\config\BBI
2016-04-15 18:03 - 2015-08-02 21:23 - 00000000 ___DC C:\Users\Lada\Desktop\Vaneska
2016-04-14 23:13 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\rescache
2016-04-14 19:24 - 2015-10-30 09:11 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-04-14 04:12 - 2011-10-29 01:30 - 00001436 ____C C:\WINDOWS\system32\ServiceFilter.ini
2016-04-14 04:08 - 2016-03-15 03:06 - 00339856 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-04-14 04:04 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-04-14 04:04 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-04-14 04:04 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\PolicyDefinitions
2016-04-14 04:04 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-04-14 01:45 - 2012-02-19 18:11 - 00453280 ____C (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2016-04-13 10:36 - 2013-08-14 03:05 - 00000000 ___DC C:\WINDOWS\system32\MRT
2016-04-13 05:15 - 2012-01-25 14:52 - 135176864 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-04-13 03:52 - 2016-03-15 08:02 - 00000000 ____D C:\Users\Lada\AppData\Local\Packages
2016-04-06 20:32 - 2015-10-30 09:26 - 00829944 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2016-04-06 20:32 - 2015-10-30 09:26 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2016-04-05 11:00 - 2016-03-15 08:19 - 00000000 ___DC C:\AMD
2016-04-04 00:36 - 2013-03-30 07:45 - 00000000 __HDC C:\ProgramData\CanonIJScan
2016-04-04 00:36 - 2013-02-12 14:49 - 00000000 ___DC C:\Users\Lada\AppData\Roaming\Canon
2016-04-03 23:30 - 2013-02-12 14:34 - 00000000 ___DC C:\Program Files (x86)\Canon
2016-04-03 22:15 - 2011-10-29 01:30 - 00002396 ____C C:\WINDOWS\system32\AutoRunFilter.ini
2016-04-03 21:20 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\system32\FxsTmp
2016-04-03 21:13 - 2016-03-15 08:19 - 00000000 ____D C:\Program Files\AMD
2016-04-03 21:12 - 2016-03-15 08:20 - 00000000 ____D C:\ProgramData\Package Cache
2016-03-29 20:21 - 2013-02-19 01:23 - 00002325 ____C C:\Users\Public\Desktop\Google Chrome.lnk
2016-03-29 20:21 - 2012-07-24 18:22 - 00001284 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-03-29 20:21 - 2012-07-24 18:22 - 00001272 ____C C:\Users\Public\Desktop\Mozilla Firefox.lnk
2016-03-29 20:21 - 2011-04-01 10:58 - 00002414 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-03-29 20:20 - 2015-10-30 09:24 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2016-03-29 20:20 - 2009-07-14 05:20 - 00000000 __HDC C:\WINDOWS\system32\GroupPolicy
2016-03-29 12:07 - 2009-07-29 08:03 - 00400302 __RSH C:\bootmgr
2016-03-24 13:10 - 2012-07-16 23:13 - 00003888 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater

==================== Files in the root of some directories =======

2014-06-24 04:24 - 2015-11-30 06:28 - 0005120 ____C () C:\Users\Lada\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2013-06-29 16:03 - 2013-06-29 16:03 - 0007601 ____C () C:\Users\Lada\AppData\Local\Resmon.ResmonCfg
2011-04-01 11:21 - 2010-07-07 01:10 - 0131472 ____C () C:\ProgramData\FullRemove.exe
2011-10-29 01:37 - 2011-10-29 01:39 - 0000105 ____C () C:\ProgramData\{40BF1E83-20EB-11D8-97C5-0009C5020658}.log
2011-10-29 01:36 - 2011-10-29 01:36 - 0000107 ____C () C:\ProgramData\{C59C179C-668D-49A9-B6EA-0121CCFC1243}.log

Some files in TEMP:
====================
C:\Users\Lada\AppData\Local\Temp\libeay32.dll
C:\Users\Lada\AppData\Local\Temp\MSETUP4.EXE
C:\Users\Lada\AppData\Local\Temp\msvcr120.dll
C:\Users\Lada\AppData\Local\Temp\playstv_patch.exe
C:\Users\Lada\AppData\Local\Temp\raptrpatch.exe
C:\Users\Lada\AppData\Local\Temp\raptr_stub.exe
C:\Users\Lada\AppData\Local\Temp\sqlite3.dll
C:\Users\Lada\AppData\Local\Temp\tmp3A6B.exe


==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-04-09 10:08

==================== End of FRST.txt ============================

Otevřte poznámkový blok a zkopírujte do něj:

Start
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [597040 2015-10-06] (Oracle Corporation)
GroupPolicy: Restriction - Chrome <======= ATTENTION
URLSearchHook: [S-1-5-21-1691599488-178746545-566213100-1001] ATTENTION => Default URLSearchHook is missing
SearchScopes: HKLM -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = hxxp://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSE1
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2011-04-01] (Google Inc.)
BHO: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg64.dll [2011-04-01] (Google Inc.)
C:\Program Files\Google\GoogleToolbarNotifier
C:\Program Files (x86)\Google\Google Toolbar
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2011-04-01] (Google Inc.)
BHO-x32: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll [2011-04-01] (Google Inc.)
BHO-x32: Google Dictionary Compression sdch -> {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} -> C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll [2011-04-01] (Google Inc.)
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-03-02] (Microsoft Corporation.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2011-04-01] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2011-04-01] (Google Inc.)
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-03-02] (Microsoft Corporation.)
Edge HomeButtonPage: HKU\S-1-5-21-1691599488-178746545-566213100-1001 -> hxxp://www.yoursites123.com/?type=hp&ts ... M1384M1384
CHR HomePage: Default -> hxxp://www.yoursearching.com/?type=hp&t ... m1384m1384
CHR StartupUrls: Default -> "hxxp://www.yoursearching.com/?type=hp&ts=14570 ... m1384m1384"
CHR DefaultSearchURL: Default -> hxxp://search.so-v.com/web?type=ds&x=fq ... 978451e&q={searchTerms}
CHR DefaultSearchKeyword: Default -> so-v
CHR Plugin: (Native Client) - C:\Program Files (x86)\Google\Chrome\Application\49.0.2623.87\ppGoogleNaClPluginChrome.dll => No File
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files (x86)\Google\Chrome\Application\49.0.2623.87\pdf.dll => No File
CHR Plugin: (Shockwave Flash) - C:\Program Files (x86)\Google\Chrome\Application\49.0.2623.87\gcswf32.dll => No File
CHR Plugin: (Shockwave Flash) - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll => No File
CHR Plugin: (Adobe Acrobat) - C:\Program Files (x86)\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll => No File
CHR Plugin: (Microsoft Office 2010) - C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL (Microsoft Corporation)
CHR Plugin: (Google Update) - C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll => No File
CHR Plugin: (Silverlight Plug-In) - C:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll => No File
U3 idsvc; no ImagePath
U3 wpcsvc; no ImagePath
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
C:\Users\Lada\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
C:\Users\Lada\AppData\Local\Temp
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Tak když otevřu pozn. blok, vložím to tam a chci uložit, tak mi vyskočí okno, že poznámkový blok přestal pracovat. Problém způsobil, že pozn. blok přestal správně fungovat a můžu ho jen ukončit...

Zkuste to v nouz. režimu.

Tak bohužel v nouzovém režimu mi jen bliká obrazovka a poznámkový blok ani nejde pustit. Tak děkuji za snahu, ale zítra ho radši odnesu do servisu...

Tak spusťte kompletní sken MBAM: http://www.malwarebytes.org/mbam.php . Dejte log, předem nic nemažte.