Prosím o kontrolu tohoto logu.
Nevím co jsem do systému nachytal za infekci, Avast, Malware, SecureA a SpyHunter nic nenašli.
Počítač jede normálně, a pak se zasekne. Jen se hýber kurzor, a nic nereaguje. Pomůže jen hard reset.
Děkuji moc!!
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:09-05-2016
Ran by Martin (administrator) on WANTMORE (13-05-2016 19:23:25)
Running from C:\Users\Martin\Desktop
Loaded Profiles: Martin (Available Profiles: Martin & MartinBenda)
Platform: Windows 8.1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Autodesk Inc.) C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe
(ASUS) C:\Program Files\ASUS\ASUS FlipLock\FlipService.exe
(ASUS Cloud Corporation) C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\AsusWSWinService.exe
(Windows (R) Win 7 DDK provider) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
() C:\Program Files\SecureAge\Everything\Everything.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(SafeNet Inc.) C:\Windows\System32\hasplms.exe
(Flexera Software, Inc.) C:\Program Files (x86)\Common Files\Scia\LicenceServer\FlexnetServer\lmadmin.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(Nemetschek SCIA) C:\Program Files (x86)\Common Files\Scia\LicenceServer\FlexnetServer\scia\SCIA.exe
(SecureAge Technology) C:\Program Files\SecureAge\Whitelist\saappsvc.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(WIBU-SYSTEMS AG) C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe
() C:\Program Files\ASUS\ASUS FlipLock\WifiPowerManager.exe
() C:\Program Files\ASUS\ASUS FlipLock\FlipController.exe
(Avast Software) C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
(Flexera Software, Inc.) C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(WildTangent) C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler64.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
() C:\Program Files\ASUS\ASUS FlipLock\FlipController.exe
(ASUSTek Computer INC.) C:\ProgramData\AsTouchPanel\AsPatchTouchPanel64.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusSGPlusBTServer64.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusSmartGestureDetector64.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\vfs\ProgramFilesCommonX86\Microsoft Shared\OFFICE15\CSISYNCCLIENT.EXE
(Qualcomm®Atheros®) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
() C:\Program Files (x86)\Bluetooth Suite\ActivateDesktop.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(WIBU-SYSTEMS AG) C:\Program Files (x86)\WIBUKEY\Server\WkSvMgr.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(SecureAge Technology) C:\Program Files\SecureAge\Whitelist\SecureAPlus.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2787264 2016-01-23] (NVIDIA Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500936 2015-03-30] (Adobe Systems Incorporated)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [163520 2015-04-09] (IvoSoft)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [Everything] => C:\Program Files\SecureAge\Everything\Everything.exe [1441792 2014-08-06] ()
HKLM\...\Run: [SAAppWhitelistingNotifier] => C:\Program Files\SecureAge\Whitelist\sanotifier.exe [10262488 2016-05-06] (SecureAge Technology)
HKLM\...\Run: [SecureAPlus] => C:\Program Files\SecureAge\Whitelist\SecureAPlus.exe [7172024 2016-05-05] (SecureAge Technology)
HKLM-x32\...\Run: [WebStorage] => C:\Program Files (x86)\ASUS\WebStorage\2.2.0.496\ASUSWSLoader.exe [63272 2015-02-13] ()
HKLM-x32\...\Run: [ADSKAppManager] => C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgr.exe [493960 2014-12-05] (Autodesk Inc.)
HKLM-x32\...\Run: [SwitchBoard] => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [ISUSScheduler] => C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe [81920 2004-06-16] (InstallShield Software Corporation)
HKLM-x32\...\Run: [CorelDRAW Graphics Suite 11b] => C:\Program Files (x86)\Corel\Corel Graphics 12\Languages\CZ\Programs\Registration.exe [729088 2004-06-23] (Corel Corporation)
HKLM-x32\...\Run: [APSDaemon] => C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [7391632 2016-05-04] (AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [596504 2016-04-01] (Oracle Corporation)
HKLM-x32\...\Run: [ASUS Sync Loader] => C:\Program Files (x86)\ASUS\ASUS Sync\asusUPCTLoader.exe [638976 2013-03-01] (Futuredial Inc.)
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [134784 2014-09-28] (Qualcomm®Atheros®)
HKU\S-1-5-21-455984208-352483656-2824990186-1001\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1081224 2013-02-05] (Autodesk, Inc.)
HKU\S-1-5-21-455984208-352483656-2824990186-1001\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-455984208-352483656-2824990186-1001\...\Run: [ISUSPM Startup] => C:\Program Files (x86)\Common Files\InstallShield\UpdateService\ISUSPM.exe [221184 2004-06-16] (InstallShield Software Corporation)
HKU\S-1-5-21-455984208-352483656-2824990186-1001\...\Run: [Spotify Web Helper] => C:\Users\Martin\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2355312 2016-02-08] (Spotify Ltd)
HKU\S-1-5-21-455984208-352483656-2824990186-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [5583120 2015-02-27] (Disc Soft Ltd)
HKU\S-1-5-21-455984208-352483656-2824990186-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8698584 2016-04-15] (Piriform Ltd)
HKU\S-1-5-21-455984208-352483656-2824990186-1001\...\Run: [CCleaner] => C:\Program Files\CCleaner\CCleaner64.exe [8698584 2016-04-15] (Piriform Ltd)
HKU\S-1-5-21-455984208-352483656-2824990186-1001\...\Policies\Explorer: []
HKU\S-1-5-21-455984208-352483656-2824990186-1001\...\MountPoints2: {973431e5-03a0-11e5-8266-dc85deeff99e} - "F:\setup.exe"
HKU\S-1-5-18\...\Run: [Autodesk Sync] => C:\Program Files\Autodesk\Autodesk Sync\AdSync.exe [1081224 2013-02-05] (Autodesk, Inc.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7191} => C:\Program Files (x86)\Common Files\AWS\2.2.0.496\ASUSWSShellExt64.dll [2014-11-18] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D809} => C:\Program Files (x86)\Common Files\AWS\2.2.0.496\ASUSWSShellExt64.dll [2014-11-18] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4E} => C:\Program Files (x86)\Common Files\AWS\2.2.0.496\ASUSWSShellExt64.dll [2014-11-18] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-05-04] (AVAST Software)
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2014-02-07] (Autodesk, Inc.)
ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-04-09] (IvoSoft)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-04-19] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-04-19] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-04-19] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-04-09] (IvoSoft)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\CodeMeter Control Center.lnk [2015-05-07]
ShortcutTarget: CodeMeter Control Center.lnk -> C:\Program Files (x86)\CodeMeter\Runtime\bin\CodeMeterCC.exe (WIBU-SYSTEMS AG)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Network Server.lnk [2015-05-07]
ShortcutTarget: Network Server.lnk -> C:\Program Files (x86)\WIBUKEY\Server\WkSvMgr.exe (WIBU-SYSTEMS AG)
Startup: C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\mbam.exe – zástupce.lnk [2016-05-11]
ShortcutTarget: mbam.exe – zástupce.lnk -> C:\Program Files (x86)\Malwarebytes Anti-Malware\mbam.exe (Malwarebytes)
BootExecute: autocheck autochk * sh4native Sh4Removal
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 192.168.1.1
Tcpip\..\Interfaces\{63967283-6A5B-4230-85F8-DB03C04ACB6D}: [DhcpNameServer] 192.168.1.1 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-455984208-352483656-2824990186-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-455984208-352483656-2824990186-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://asus13.msn.com/?pc=ASJB
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2016-03-20] (Microsoft Corporation)
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-04-09] (IvoSoft)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-04-19] (AVAST Software)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2016-04-19] (Microsoft Corporation)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2015-04-09] (IvoSoft)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2016-03-20] (Microsoft Corporation)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-04-09] (IvoSoft)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-05-02] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-04-19] (AVAST Software)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-04-19] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-05-02] (Oracle Corporation)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2015-04-09] (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2015-04-09] (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2015-04-09] (IvoSoft)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2015-05-06] (Microsoft Corporation)
FireFox:
========
FF ProfilePath: C:\Users\Martin\AppData\Roaming\Mozilla\Firefox\Profiles\4gwtgkwj.default
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-03-09] (Adobe Systems)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/pdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-02-12] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.fdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-02-12] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-02-12] (Foxit Corporation)
FF Plugin-x32: @foxitsoftware.com/Foxit PhantomPDF Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit PhantomPDF\plugins\npFoxitPhantomPDFPlugin.dll [2015-02-12] (Foxit Corporation)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-21] (Google)
FF Plugin-x32: @graphisoft.com/GDL Web Plug-in -> C:\Program Files (x86)\GRAPHISOFT\GDLWebControl\npGDLMozilla.dll [2012-09-04] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.56 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2014-09-03] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2014-09-03] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-05-02] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-05-02] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2015-11-03] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-04-30] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-02-09] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-02-09] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.30.3\npGoogleUpdate3.dll [2016-05-11] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VLC\npvlc.dll [2016-04-26] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.3 -> C:\Program Files (x86)\VLC\npvlc.dll [2016-04-26] (VideoLAN)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2013-08-06] ()
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-03-09] (Adobe Systems)
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-05-04]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: Avast SafePrice - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-05-04]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
Chrome:
=======
CHR HomePage: Default -> www.google.com
CHR StartupUrls: Default -> "hxxps://www.facebook.com/?ref=logo","hxxp://mai ... google.com"
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Prezentace Google) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-04-30]
CHR Extension: (Dokumenty Google) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-04-30]
CHR Extension: (Disk Google) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-11-01]
CHR Extension: (YouTube) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-15]
CHR Extension: (Adblock na Youtube™) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\cmedhionkhpnakcndndgjdbohmhepckk [2016-03-13]
CHR Extension: (Vyhledávání Google) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-01]
CHR Extension: (Avast SafePrice) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2016-04-28]
CHR Extension: (Tabulky Google) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-04-30]
CHR Extension: (Dokumenty Google offline) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-18]
CHR Extension: (Avast Online Security) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-05-04]
CHR Extension: (Google Keep – poznámky a seznamy) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmjkmjkepdijhoojdojkdfohbdgmmhki [2016-05-04]
CHR Extension: (Yulia Brodskaya) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\jlgdloilieclkegafohackmhffbmdpko [2015-04-30]
CHR Extension: (Adblock Super) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\knebimhcckndhiglamoabbnifdkijidd [2015-09-16]
CHR Extension: (Stop Autoplay for YouTube.) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\lgdfnbpkmkkdhgidgcpdkgpdlfjcgnnh [2015-04-30]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-18]
CHR Extension: (Gmail) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-30]
CHR Extension: (Enhancer for YouTube™) - C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Extensions\ponfpcnoihfmfllpaingbgckeeldkhle [2016-05-09]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2016-04-19]
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2016-04-19]
==================== Services (Whitelisted) ========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 AdAppMgrSvc; C:\Program Files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe [599944 2014-12-05] (Autodesk Inc.)
R2 ASUS Flip Service; C:\Program Files\ASUS\ASUS FlipLock\FlipService.exe [7680 2014-10-30] (ASUS) [File not signed]
R2 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage\2.1.11.399\AsusWSWinService.exe [71168 2014-08-20] (ASUS Cloud Corporation) [File not signed]
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [322176 2014-09-28] (Windows (R) Win 7 DDK provider) [File not signed]
S2 Autodesk Content Service; C:\Program Files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [31192 2014-02-07] (Autodesk, Inc.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [243296 2016-05-04] (AVAST Software)
R3 AvastVBoxSvc; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [5570272 2016-05-04] (Avast Software)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2829552 2016-03-08] (Microsoft Corporation)
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1272592 2015-02-27] (Disc Soft Ltd)
R2 Everything; C:\Program Files\SecureAge\Everything\Everything.exe [1441792 2014-08-06] () [File not signed]
R2 GamesAppIntegrationService; C:\Program Files (x86)\WildTangent Games\App\GamesAppIntegrationService.exe [227904 2014-04-24] (WildTangent)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1163200 2016-01-23] (NVIDIA Corporation)
R2 hasplms; C:\Windows\system32\hasplms.exe [4683144 2014-07-17] (SafeNet Inc.)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [329104 2014-11-19] (Intel Corporation)
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [887256 2014-05-13] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [154584 2014-09-03] (Intel Corporation)
R2 lmadmin; C:\Program Files (x86)\Common Files\Scia\LicenceServer\FlexnetServer\lmadmin.exe [6587728 2011-08-05] (Flexera Software, Inc.)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1879488 2016-01-23] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [6308288 2016-01-23] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [4812736 2016-01-23] (NVIDIA Corporation)
R2 saappsvc; C:\Program Files\SecureAge\Whitelist\saappsvc.exe [935368 2016-05-05] (SecureAge Technology)
S2 SAEverythingServer; C:\Program Files\SecureAge\Everything\EverythingServer.exe [213320 2016-05-05] (SecureAge Technology)
S2 sascansvc; C:\Program Files\SecureAge\AntiVirus\sascansvc.exe [1052752 2016-05-05] (SecureAge Technology)
S2 SAUAVSvc; C:\Program Files\SecureAge\UniversalAV\UniversalAVService.exe [1193856 2016-05-05] (SecureAge Technology)
S2 SecureAPlusService; C:\Program Files\SecureAge\Whitelist\SecureAPlusService.exe [1022400 2016-05-05] (SecureAge Technology)
S2 SpyHunter 4 Service; C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe [1042304 2016-04-19] (Enigma Software Group USA, LLC.)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2014-09-28] (Atheros) [File not signed]
===================== Drivers (Whitelisted) ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-05-04] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-05-04] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [107792 2016-05-04] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-05-04] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-05-04] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1070904 2016-05-04] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [465792 2016-05-04] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [166432 2016-05-04] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [287528 2016-05-04] (AVAST Software)
R3 athr; C:\Windows\system32\DRIVERS\athwbx.sys [4226560 2014-10-17] (Qualcomm Atheros Communications, Inc.)
R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [73512 2014-11-21] (ASUS Corporation)
R3 BTATH_LWFLT; C:\Windows\system32\DRIVERS\btath_lwflt.sys [77464 2014-09-28] (Qualcomm Atheros)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30352 2015-05-26] (Disc Soft Ltd)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
S3 esgiguard; C:\Program Files\Enigma Software Group\SpyHunter\esgiguard.sys [15920 2016-04-19] (Enigma Software Group USA, LLC.)
S3 EsgScanner; C:\Windows\System32\DRIVERS\EsgScanner.sys [22704 2016-04-19] ()
R2 hardlock; C:\Windows\system32\drivers\hardlock.sys [331608 2014-07-17] (SafeNet Inc.)
R3 iaLPSS_GPIO; C:\Windows\System32\drivers\iaLPSS_GPIO.sys [35832 2014-06-10] (Intel Corporation)
R3 iaLPSS_I2C; C:\Windows\System32\drivers\iaLPSS_I2C.sys [120312 2014-06-10] (Intel Corporation)
R0 IntelHSWPcc; C:\Windows\System32\drivers\IntelPcc.sys [77992 2014-08-04] (Intel Corporation)
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [17280 2012-08-06] ( )
R3 kxspb; C:\Windows\System32\drivers\kxspb.sys [40976 2014-10-21] (Kionix, Inc.)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [126976 2014-09-03] (Intel Corporation)
R0 ngvss; C:\Windows\System32\Drivers\ngvss.sys [161760 2016-04-19] (AVAST Software)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [26560 2016-01-23] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [47760 2015-12-18] (NVIDIA Corporation)
R3 RTSPER; C:\Windows\system32\DRIVERS\RtsPer.sys [508120 2014-08-15] (Realsil Semiconductor Corporation)
R0 SAAppCtl; C:\Windows\System32\DRIVERS\saappctl.sys [273520 2016-05-05] (SecureAge Technology)
R0 sascan; C:\Windows\System32\DRIVERS\sascan.sys [97488 2016-04-25] (SecureAge Technology)
R3 SensorsServiceDriver; C:\Windows\System32\drivers\WUDFRd.sys [226304 2014-10-29] (Microsoft Corporation)
R2 VBoxAswDrv; C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [323392 2016-05-04] (Avast Software)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
R2 WIBUKEY; C:\Windows\System32\DRIVERS\WibuKey64.sys [106760 2013-12-18] (WIBU-SYSTEMS AG)
U0 msahci; system32\drivers\msahci.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-05-13 19:23 - 2016-05-13 19:23 - 00031912 _____ C:\Users\Martin\Desktop\FRST.txt
2016-05-13 19:21 - 2016-05-13 19:23 - 00000000 ____D C:\FRST
2016-05-13 18:56 - 2016-05-13 18:56 - 00307200 _____ (Secure By Design Inc.) C:\Users\Martin\Downloads\Ninite Malwarebytes Installer(2).exe
2016-05-13 18:55 - 2016-05-13 18:56 - 22851472 _____ (Malwarebytes ) C:\Users\Martin\Downloads\mbam-setup-2.2.1.1043.exe
2016-05-13 18:52 - 2016-05-13 18:52 - 02381312 _____ (Farbar) C:\Users\Martin\Downloads\FRST64(1).exe
2016-05-13 18:43 - 2016-05-13 18:43 - 02381312 _____ (Farbar) C:\Users\Martin\Desktop\FRST64.exe
2016-05-13 18:24 - 2016-05-13 18:24 - 00307200 _____ (Secure By Design Inc.) C:\Users\Martin\Downloads\Ninite Malwarebytes Installer(1).exe
2016-05-13 18:21 - 2016-05-13 18:21 - 00307200 _____ (Secure By Design Inc.) C:\Users\Martin\Downloads\Ninite Malwarebytes Installer.exe
2016-05-13 18:18 - 2016-05-13 18:18 - 02870984 _____ (ESET) C:\Users\Martin\Downloads\esetsmartinstaller_csy.exe
2016-05-13 18:18 - 2016-05-13 18:18 - 00000000 ____D C:\Program Files (x86)\ESET
2016-05-13 15:08 - 2016-05-13 15:08 - 00000000 ____H C:\ProgramData\cm-lock
2016-05-13 13:57 - 2016-05-13 13:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Kits
2016-05-13 13:57 - 2016-05-13 13:57 - 00000000 ____D C:\Program Files (x86)\Windows Kits
2016-05-13 12:32 - 2016-05-13 12:32 - 00000000 ____D C:\Users\MartinBenda\AppData\Roaming\ClassicShell
2016-05-13 12:32 - 2016-05-13 12:32 - 00000000 ____D C:\Users\MartinBenda\AppData\Local\ClassicShell
2016-05-13 12:30 - 2016-05-13 12:30 - 00000000 ___RD C:\Users\MartinBenda\OneDrive
2016-05-13 12:30 - 2016-05-13 12:30 - 00000000 ____D C:\Users\MartinBenda\Documents\Bluetooth Folder
2016-05-13 12:30 - 2016-05-13 12:30 - 00000000 ____D C:\Users\MartinBenda\AppData\Local\BMExplorer
2016-05-13 12:29 - 2016-05-13 12:29 - 00002277 _____ C:\Users\MartinBenda\Desktop\Google Chrome.lnk
2016-05-13 12:29 - 2016-05-13 12:29 - 00001539 _____ C:\Users\MartinBenda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AsusSmartGestureDetector.lnk
2016-05-13 12:29 - 2016-05-13 12:29 - 00001424 _____ C:\Users\MartinBenda\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2016-05-13 12:29 - 2016-05-13 12:29 - 00000165 _____ C:\Users\MartinBenda\AppData\Roaming\sp_data.sys
2016-05-13 12:29 - 2016-05-13 12:29 - 00000000 __SHD C:\Users\MartinBenda\IntelGraphicsProfiles
2016-05-13 12:29 - 2016-05-13 12:29 - 00000000 ____D C:\Users\MartinBenda\AppData\Roaming\AVAST Software
2016-05-13 12:29 - 2016-05-13 12:29 - 00000000 ____D C:\Users\MartinBenda\AppData\Roaming\Atheros
2016-05-13 12:29 - 2016-05-13 12:29 - 00000000 ____D C:\Users\MartinBenda\AppData\Roaming\Adobe
2016-05-13 12:29 - 2016-05-13 12:29 - 00000000 ____D C:\Users\MartinBenda\AppData\Local\VirtualStore
2016-05-13 12:29 - 2016-05-13 12:29 - 00000000 ____D C:\Users\MartinBenda\AppData\Local\Packages
2016-05-13 12:29 - 2016-05-13 12:29 - 00000000 ____D C:\Users\MartinBenda\AppData\Local\NVIDIA Corporation
2016-05-13 12:29 - 2016-05-13 12:29 - 00000000 ____D C:\Users\MartinBenda\AppData\Local\NVIDIA
2016-05-13 12:29 - 2016-05-13 12:29 - 00000000 ____D C:\Users\MartinBenda\AppData\Local\Google
2016-05-13 12:25 - 2016-05-13 12:25 - 00000000 ____D C:\Users\Martin\Desktop\Nová složka
2016-05-13 12:09 - 2016-05-13 12:09 - 00000097 ____H C:\Users\Martin\Desktop\.~lock.email.odt#
2016-05-13 00:58 - 2016-05-13 00:59 - 00136008 _____ C:\Users\Martin\Desktop\cc_20160513_005849.reg
2016-05-13 00:56 - 2016-05-13 01:02 - 00000000 ____D C:\Users\Martin\AppData\Local\Mozilla
2016-05-13 00:56 - 2016-05-13 00:56 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Mozilla
2016-05-13 00:55 - 2016-05-13 12:08 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-05-13 00:55 - 2016-05-13 11:52 - 00000000 ____D C:\Program Files\Mozilla Firefox
2016-05-13 00:55 - 2016-05-13 00:55 - 00000950 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2016-05-13 00:54 - 2016-05-13 00:54 - 00002792 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2016-05-13 00:54 - 2016-05-13 00:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-05-13 00:53 - 2016-05-13 01:29 - 00000000 ____D C:\Program Files\CCleaner
2016-05-12 12:42 - 2016-05-12 12:42 - 00138334 _____ C:\Users\Martin\Downloads\pbr_petyrkova_bytovy_dum.pdf
2016-05-12 11:45 - 2016-05-12 11:45 - 00957078 _____ C:\Users\Martin\Downloads\Katalog_2010___Kapitola_13__Sdelovaci_technika.pdf
2016-05-11 09:47 - 2016-04-22 22:54 - 25816576 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-05-11 09:47 - 2016-04-22 22:15 - 00571904 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-05-11 09:47 - 2016-04-22 22:14 - 02893312 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-05-11 09:47 - 2016-04-22 22:08 - 06052864 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-05-11 09:47 - 2016-04-22 22:06 - 20349952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-05-11 09:47 - 2016-04-22 22:00 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-05-11 09:47 - 2016-04-22 21:35 - 00497152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-05-11 09:47 - 2016-04-22 21:29 - 02285568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-05-11 09:47 - 2016-04-22 21:24 - 01032704 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2016-05-11 09:47 - 2016-04-22 21:23 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-05-11 09:47 - 2016-04-22 21:19 - 15414784 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-05-11 09:47 - 2016-04-22 21:17 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-05-11 09:47 - 2016-04-22 21:14 - 00806400 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-05-11 09:47 - 2016-04-22 21:14 - 00725504 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-05-11 09:47 - 2016-04-22 21:14 - 00379392 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-05-11 09:47 - 2016-04-22 21:12 - 02131968 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-05-11 09:47 - 2016-04-22 20:58 - 04611072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-05-11 09:47 - 2016-04-22 20:58 - 00880128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2016-05-11 09:47 - 2016-04-22 20:54 - 13811200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-05-11 09:47 - 2016-04-22 20:53 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-05-11 09:47 - 2016-04-22 20:52 - 02596864 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-05-11 09:47 - 2016-04-22 20:52 - 00693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-05-11 09:47 - 2016-04-22 20:52 - 00330752 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-05-11 09:47 - 2016-04-22 20:51 - 02056192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-05-11 09:47 - 2016-04-22 20:40 - 01547264 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-05-11 09:47 - 2016-04-22 20:29 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-05-11 09:47 - 2016-04-22 20:27 - 02121216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-05-11 09:47 - 2016-04-22 20:24 - 01311744 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-05-11 09:47 - 2016-04-22 20:23 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-05-11 09:47 - 2016-03-31 08:50 - 01307328 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-05-11 09:47 - 2016-03-31 05:40 - 00747520 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-05-11 09:46 - 2016-04-10 06:21 - 01763376 _____ (Microsoft Corporation) C:\Windows\system32\WindowsCodecs.dll
2016-05-11 09:46 - 2016-04-10 06:21 - 01489088 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WindowsCodecs.dll
2016-05-11 09:46 - 2016-04-09 23:58 - 00534016 _____ (Microsoft Corporation) C:\Windows\system32\Windows.UI.dll
2016-05-11 09:46 - 2016-04-09 23:50 - 00375296 _____ (Microsoft Corporation) C:\Windows\SysWOW64\Windows.UI.dll
2016-05-11 09:46 - 2016-04-06 23:13 - 00561960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\cng.sys
2016-05-11 09:46 - 2016-04-06 23:13 - 00137976 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-05-11 09:46 - 2016-04-06 20:20 - 00201728 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-05-11 09:46 - 2016-04-06 20:19 - 00401920 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-05-11 09:46 - 2016-04-06 20:19 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-05-11 09:46 - 2016-04-06 19:49 - 00120384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-05-11 09:46 - 2016-04-06 19:40 - 00445440 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-05-11 09:46 - 2016-04-06 18:57 - 01441792 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-05-11 09:46 - 2016-04-06 18:52 - 00432128 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-05-11 09:46 - 2016-04-06 18:20 - 00324096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-05-11 09:46 - 2016-04-06 17:48 - 00357888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-05-11 09:46 - 2016-03-29 03:42 - 07446368 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-05-11 09:46 - 2016-02-11 22:17 - 01663184 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2016-05-11 09:46 - 2016-02-11 22:17 - 01523208 _____ (Microsoft Corporation) C:\Windows\system32\winload.exe
2016-05-11 09:46 - 2016-02-11 22:17 - 01490120 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2016-05-11 09:46 - 2016-02-11 22:17 - 01358952 _____ (Microsoft Corporation) C:\Windows\system32\winresume.exe
2016-05-11 09:46 - 2016-02-09 20:07 - 00246784 _____ (Microsoft Corporation) C:\Windows\system32\microsoft-windows-system-events.dll
2016-05-11 09:45 - 2016-04-10 09:48 - 00738096 _____ (Microsoft Corporation) C:\Windows\system32\d3d10level9.dll
2016-05-11 09:45 - 2016-04-10 09:48 - 00613624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10level9.dll
2016-05-11 09:45 - 2016-04-10 06:14 - 01380600 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2016-05-11 09:45 - 2016-04-10 01:29 - 04169216 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-05-11 09:45 - 2016-04-10 00:07 - 01097728 _____ (Microsoft Corporation) C:\Windows\SysWOW64\gdi32.dll
2016-05-11 09:45 - 2016-02-11 22:17 - 01737088 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-05-11 09:45 - 2016-02-11 22:16 - 01501488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-05-11 09:44 - 2016-04-11 08:21 - 00074584 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volmgr.sys
2016-05-11 09:44 - 2016-04-10 07:37 - 01549144 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2016-05-10 10:07 - 2016-05-10 10:07 - 00001091 _____ C:\Users\Public\Desktop\ASUS Sync.lnk
2016-05-09 10:50 - 2016-05-09 10:50 - 00000000 ____D C:\Windows\SysWOW64\vbox
2016-05-09 10:50 - 2016-05-09 10:50 - 00000000 ____D C:\Windows\system32\vbox
2016-05-06 14:48 - 2016-05-06 14:48 - 00000000 ____D C:\Users\Martin\AppData\Local\Foxit PhantomPDF
2016-05-05 09:24 - 2016-05-05 09:24 - 00000000 ___HD C:\OneDriveTemp
2016-05-05 04:09 - 2016-05-05 04:09 - 00273520 _____ (SecureAge Technology) C:\Windows\system32\Drivers\saappctl.sys
2016-05-04 16:54 - 2016-05-04 16:55 - 00000000 ____D C:\Users\Martin\Downloads\bikeScott
2016-05-04 16:29 - 2016-05-04 16:29 - 00398152 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2016-05-04 16:29 - 2016-05-04 16:29 - 00052184 _____ (AVAST Software) C:\Windows\avastSS.scr
2016-05-02 13:41 - 2016-05-02 13:41 - 02252908 _____ C:\Users\Martin\Downloads\cs.zip
2016-04-29 12:54 - 2016-03-24 00:10 - 00025984 _____ C:\Windows\SysWOW64\sh4native.exe
2016-04-29 12:52 - 2016-05-11 13:29 - 00200522 _____ C:\spyhunter.fix
2016-04-29 12:52 - 2016-05-04 04:03 - 00000000 ___HD C:\s4CoKiOjn2RqYaMp
2016-04-28 10:13 - 2016-04-28 10:13 - 00000000 ____D C:\Users\Martin\AppData\Roaming\SecureAge Technology
2016-04-28 10:11 - 2016-05-13 19:22 - 07766683 _____ C:\Windows\system32\Drivers\whitelist2.sa
2016-04-26 22:49 - 2016-04-26 22:49 - 00002327 _____ C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive pro firmy.lnk
2016-04-25 09:07 - 2016-04-25 09:07 - 00097488 _____ (SecureAge Technology) C:\Windows\system32\Drivers\sascan.sys
2016-04-22 10:07 - 2016-04-22 12:42 - 00026604 _____ C:\Users\Martin\Desktop\email.odt
2016-04-20 13:57 - 2016-04-20 13:57 - 00115360 _____ C:\Users\Martin\Desktop\RDSmolik_protokol.pdf
2016-04-19 14:34 - 2016-04-19 14:40 - 99486898 _____ C:\Users\Martin\Downloads\SpyHunter421.rar
2016-04-19 14:31 - 2016-04-19 14:31 - 17408375 _____ C:\Windows\system32\scan.db
2016-04-19 14:30 - 2016-05-09 10:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SecureAge
2016-04-19 14:30 - 2016-04-19 14:30 - 00000000 ____D C:\ProgramData\SecureAge Technology
2016-04-19 14:30 - 2016-04-19 14:30 - 00000000 ____D C:\Program Files\SecureAge
2016-04-19 14:27 - 2016-04-19 14:27 - 01919680 _____ (SecureAge Technology) C:\Users\Martin\Downloads\SecureAPlusSetup.exe
2016-04-19 14:19 - 2016-04-19 14:19 - 00000000 _____ C:\autoexec.bat
2016-04-19 14:18 - 2016-04-29 12:54 - 00003272 _____ C:\Windows\System32\Tasks\SpyHunter4Startup
2016-04-19 14:18 - 2016-04-19 14:18 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Enigma Software Group
2016-04-19 14:18 - 2016-04-19 14:18 - 00000000 ____D C:\sh4ldr
2016-04-19 14:17 - 2016-04-19 14:17 - 00022704 _____ C:\Windows\system32\Drivers\EsgScanner.sys
2016-04-19 14:17 - 2016-04-19 14:17 - 00000000 ____D C:\Program Files\Enigma Software Group
2016-04-19 14:12 - 2016-05-09 09:56 - 00003890 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1461067970
2016-04-19 14:12 - 2016-05-09 09:56 - 00001055 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2016-04-19 14:12 - 2016-05-04 16:29 - 00037144 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2016-04-19 14:12 - 2016-04-19 14:12 - 00161760 _____ (AVAST Software) C:\Windows\system32\Drivers\ngvss.sys
2016-04-19 14:09 - 2016-05-13 12:35 - 00004182 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2016-04-19 14:09 - 2016-05-04 16:29 - 01070904 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2016-04-19 14:09 - 2016-05-04 16:29 - 00465792 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2016-04-19 14:09 - 2016-05-04 16:29 - 00287528 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2016-04-19 14:09 - 2016-05-04 16:29 - 00166432 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2016-04-19 14:09 - 2016-05-04 16:29 - 00107792 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2016-04-19 14:09 - 2016-05-04 16:29 - 00103064 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2016-04-19 14:09 - 2016-05-04 16:29 - 00074544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2016-04-19 14:09 - 2016-05-04 16:29 - 00037656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2016-04-19 14:09 - 2016-04-19 14:09 - 00000000 ____D C:\Windows\System32\Tasks\AVAST Software
2016-04-19 14:09 - 2016-04-19 14:09 - 00000000 ____D C:\Users\Martin\AppData\Roaming\AVAST Software
2016-04-19 14:09 - 2016-04-19 14:09 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2016-04-19 14:09 - 2016-04-19 14:09 - 00000000 ____D C:\Program Files\Common Files\AV
2016-04-19 14:07 - 2016-04-19 14:12 - 00000000 ____D C:\ProgramData\AVAST Software
2016-04-19 14:07 - 2016-04-19 14:12 - 00000000 ____D C:\Program Files\AVAST Software
2016-04-19 14:01 - 2016-04-19 14:01 - 05082360 _____ (AVAST Software) C:\Users\Martin\Downloads\avast_free_antivirus_setup_online.exe
2016-04-19 13:41 - 2016-05-11 12:54 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-04-19 13:40 - 2016-04-19 13:42 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2016-04-19 13:40 - 2016-04-19 13:40 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-04-19 13:40 - 2016-03-10 14:09 - 00065408 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2016-04-19 13:40 - 2016-03-10 14:08 - 00140672 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2016-04-19 13:40 - 2016-03-10 14:08 - 00027008 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2016-04-19 13:39 - 2016-04-19 13:39 - 21540440 _____ (Malwarebytes Corporation ) C:\Users\Martin\Downloads\mbam-setup-2.1.4.1018.exe
2016-04-19 13:35 - 2016-04-19 13:35 - 03286400 _____ (Enigma Software Group USA, LLC.) C:\Users\Martin\Downloads\SpyHunter-Installer.exe
2016-04-18 19:04 - 2016-04-18 19:04 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\QuickTime
2016-04-18 19:04 - 2016-04-18 19:04 - 00000000 ____D C:\ProgramData\Apple Computer
2016-04-18 19:04 - 2016-04-18 19:04 - 00000000 ____D C:\Program Files (x86)\QuickTime
2016-04-13 06:00 - 2016-03-31 01:56 - 00145408 _____ (Microsoft Corporation) C:\Windows\system32\iepeers.dll
2016-04-13 06:00 - 2016-03-31 01:56 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-04-13 06:00 - 2016-03-31 01:55 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-04-13 06:00 - 2016-03-31 01:30 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-04-13 06:00 - 2016-03-31 01:30 - 00128000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iepeers.dll
2016-04-13 06:00 - 2016-03-11 16:48 - 00833024 _____ (Microsoft Corporation) C:\Windows\system32\samsrv.dll
2016-04-13 06:00 - 2016-03-10 19:03 - 00111616 _____ (Microsoft Corporation) C:\Windows\system32\samlib.dll
2016-04-13 06:00 - 2016-03-10 18:48 - 00064512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\samlib.dll
2016-04-13 06:00 - 2016-03-03 18:47 - 02345472 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2016-04-13 06:00 - 2016-03-03 18:33 - 01556992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2016-04-13 06:00 - 2016-03-03 18:13 - 00059392 _____ (Microsoft Corporation) C:\Windows\system32\basesrv.dll
2016-04-13 06:00 - 2016-03-03 03:39 - 01661576 _____ (Microsoft Corporation) C:\Windows\system32\ole32.dll
2016-04-13 06:00 - 2016-03-03 03:39 - 01212248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ole32.dll
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2016-05-13 19:18 - 2015-05-21 14:11 - 00000000 ____D C:\Users\Martin\AppData\Local\ClassicShell
2016-05-13 18:56 - 2015-04-30 00:52 - 00003594 _____ C:\Windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-455984208-352483656-2824990186-1001
2016-05-13 18:55 - 2014-10-21 13:24 - 00739924 _____ C:\Windows\system32\perfh005.dat
2016-05-13 18:55 - 2014-10-21 13:24 - 00151610 _____ C:\Windows\system32\perfc005.dat
2016-05-13 18:55 - 2014-03-18 17:26 - 01745984 _____ C:\Windows\system32\PerfStringBackup.INI
2016-05-13 18:55 - 2013-08-22 15:36 - 00000000 ____D C:\Windows\Inf
2016-05-13 18:51 - 2015-04-30 01:49 - 00000974 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-05-13 18:51 - 2015-04-30 00:55 - 00001539 _____ C:\Users\Martin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AsusSmartGestureDetector.lnk
2016-05-13 18:51 - 2015-04-30 00:55 - 00000000 ____D C:\Users\Martin\OneDrive
2016-05-13 18:51 - 2015-04-30 00:47 - 00000165 _____ C:\Users\Martin\AppData\Roaming\sp_data.sys
2016-05-13 18:48 - 2015-04-07 16:20 - 00000000 ____D C:\ProgramData\NVIDIA
2016-05-13 18:48 - 2013-08-22 16:45 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-05-13 18:45 - 2015-04-30 01:49 - 00000978 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-05-13 18:17 - 2015-04-30 01:10 - 00003974 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{9A5EB5AA-FBE8-4866-9411-0420749729A4}
2016-05-13 13:32 - 2015-04-30 11:14 - 00000000 ____D C:\Users\Martin\AppData\Local\CrashDumps
2016-05-13 12:35 - 2015-04-30 00:45 - 00000000 ____D C:\Users\Martin
2016-05-13 12:30 - 2015-05-06 19:54 - 00000000 ____D C:\Users\MartinBenda
2016-05-13 12:30 - 2015-04-07 16:33 - 00000000 ____D C:\ProgramData\Atheros
2016-05-13 12:29 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\AppReadiness
2016-05-13 12:00 - 2015-05-14 01:50 - 00003474 _____ C:\Windows\System32\Tasks\ASUS Live Update1
2016-05-13 12:00 - 2015-05-14 01:50 - 00003464 _____ C:\Windows\System32\Tasks\ASUS Live Update2
2016-05-13 11:00 - 2015-04-30 02:01 - 00000000 ____D C:\Windows\system32\MRT
2016-05-13 10:54 - 2015-04-30 02:01 - 139319312 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-05-13 10:54 - 2013-08-22 17:20 - 00000000 ____D C:\Windows\CbsTemp
2016-05-13 00:55 - 2015-05-26 15:16 - 00000000 ____D C:\Users\Martin\AppData\Roaming\DAEMON Tools Lite
2016-05-13 00:14 - 2015-05-06 09:30 - 00000000 ____D C:\ProgramData\FLEXnet
2016-05-12 13:46 - 2015-05-06 09:33 - 00000000 ____D C:\Users\Martin\AppData\Local\cache
2016-05-11 16:47 - 2013-08-22 16:44 - 05309520 _____ C:\Windows\system32\FNTCACHE.DAT
2016-05-11 09:49 - 2014-03-18 17:10 - 00000000 ____D C:\Program Files\Windows Journal
2016-05-11 01:26 - 2015-04-30 01:49 - 00003950 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA
2016-05-11 01:26 - 2015-04-30 01:49 - 00003714 _____ C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore
2016-05-10 10:07 - 2015-05-28 14:35 - 00000000 ____D C:\Users\Martin\AppData\Local\Downloaded Installations
2016-05-10 10:07 - 2014-10-21 06:29 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ASUS
2016-05-10 00:10 - 2013-08-22 15:25 - 00262144 ___SH C:\Windows\system32\config\BBI
2016-05-09 21:04 - 2015-07-08 15:58 - 00000000 ____D C:\Users\Martin\AppData\Roaming\vlc
2016-05-04 16:44 - 2013-08-22 17:36 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-05-04 16:43 - 2015-04-30 01:11 - 00000000 ____D C:\Program Files\Microsoft Office 15
2016-05-04 04:02 - 2015-05-08 00:32 - 00000000 ____D C:\Users\Martin\AppData\Roaming\Spotify
2016-05-03 23:17 - 2015-05-08 00:33 - 00000000 ____D C:\Users\Martin\AppData\Local\Spotify
2016-05-03 03:15 - 2013-08-22 17:38 - 00829944 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2016-05-03 03:15 - 2013-08-22 17:38 - 00176632 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-05-02 12:56 - 2015-05-07 11:31 - 00000000 ____D C:\ProgramData\Oracle
2016-05-02 12:49 - 2015-05-07 09:51 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2016-05-02 12:49 - 2015-05-06 09:06 - 00000000 ____D C:\Program Files (x86)\Java
2016-05-02 12:48 - 2015-09-01 11:20 - 00000000 ____D C:\Users\Martin\.oracle_jre_usage
2016-05-02 12:48 - 2015-05-07 09:51 - 00097856 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2016-04-29 11:40 - 2015-04-30 01:50 - 00002217 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-04-28 11:56 - 2015-06-19 18:36 - 00000000 ____D C:\Windows\Minidump
2016-04-26 22:49 - 2015-04-30 01:16 - 00003182 _____ C:\Windows\System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-455984208-352483656-2824990186-1001
2016-04-21 14:41 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\rescache
2016-04-19 14:06 - 2015-05-28 14:35 - 00000349 _____ C:\Users\Public\Documents\PCLECHAL.INI
2016-04-19 13:56 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\WinStore
2016-04-18 19:39 - 2016-03-10 18:22 - 00000000 ____D C:\Program Files (x86)\Foxit PhantomPDF
2016-04-14 01:45 - 2015-05-07 11:52 - 00453280 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2016-04-13 10:59 - 2013-08-22 17:36 - 00000000 ____D C:\Windows\system32\NDF
==================== Files in the root of some directories =======
2015-10-25 22:30 - 2015-12-23 05:44 - 0000132 _____ () C:\Users\Martin\AppData\Roaming\Adobe Formát PNG CS6 – předvolby
2015-04-30 00:47 - 2016-05-13 18:51 - 0000165 _____ () C:\Users\Martin\AppData\Roaming\sp_data.sys
2015-05-28 14:43 - 2015-11-18 13:51 - 0000612 _____ () C:\Users\Martin\AppData\Roaming\WANTMORE.MTBF.txt
2015-05-28 14:45 - 2015-05-28 14:45 - 0003584 _____ () C:\Users\Martin\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-05-31 23:44 - 2015-05-31 23:44 - 0000017 _____ () C:\Users\Martin\AppData\Local\resmon.resmoncfg
2016-05-13 15:08 - 2016-05-13 15:08 - 0000000 ____H () C:\ProgramData\cm-lock
2015-04-07 16:28 - 2015-04-07 16:28 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2015-05-06 08:43 - 2015-05-06 08:43 - 0000153 _____ () C:\ProgramData\Microsoft.SqlServer.Compact.351.32.bc
2015-04-07 16:38 - 2014-03-26 03:11 - 0000137 _____ () C:\ProgramData\RefreshReg.vbs
2014-10-21 06:28 - 2014-03-26 22:50 - 0000124 _____ () C:\ProgramData\SetStretch.cmd
2014-10-21 06:28 - 2009-07-22 12:04 - 0024576 _____ () C:\ProgramData\SetStretch.exe
2014-10-21 06:28 - 2012-09-07 13:37 - 0000103 _____ () C:\ProgramData\SetStretch.VBS
Files to move or delete:
====================
C:\ProgramData\RefreshReg.vbs
Some files in TEMP:
====================
C:\Users\Martin\AppData\Local\Temp\AcDeltree.exe
C:\Users\Martin\AppData\Local\Temp\dotnetchk.exe
C:\Users\Martin\AppData\Local\Temp\Foxit PhantomPDF Updater.exe
C:\Users\Martin\AppData\Local\Temp\FoxitUpdater.exe
C:\Users\Martin\AppData\Local\Temp\jre-8u45-windows-au.exe
C:\Users\Martin\AppData\Local\Temp\jre-8u60-windows-au.exe
C:\Users\Martin\AppData\Local\Temp\jre-8u77-windows-au.exe
C:\Users\Martin\AppData\Local\Temp\jre-8u91-windows-au.exe
C:\Users\Martin\AppData\Local\Temp\mccspuninstall.exe
C:\Users\Martin\AppData\Local\Temp\nvStInst.exe
C:\Users\Martin\AppData\Local\Temp\setup_1.0.97.exe
==================== Bamital & volsnap =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2016-05-05 05:48
==================== End of FRST.txt ============================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu logu - ntb zamrzá
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
WANTMORE_DIGITAL
- Návštěvník
- Příspěvky: 2
- Registrován: 13 kvě 2016 18:26
Prosím o kontrolu logu - ntb zamrzá
- Přílohy
-
- Addition.rar
- (15.57 KiB) Staženo 24 x
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu - ntb zamrzá
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan< a pak na >Clean<.
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
WANTMORE_DIGITAL
- Návštěvník
- Příspěvky: 2
- Registrován: 13 kvě 2016 18:26
Re: Prosím o kontrolu logu - ntb zamrzá
Přikládám logy.
_____
# AdwCleaner v5.117 - Log soubor vytvořen 16/05/2016 o 00:30:12
# Aktualizováno 15/05/2016 by Xplode
# Databáze : 2016-05-15.2 [Server]
# Operačnà systém : Windows 8.1 (X64)
# Jméno uživatele : Martin - WANTMORE
# Spuštěno z : C:\Users\Martin\Desktop\AdwCleaner.exe
# Volba : ÄŚištÄ›nĂ
# Podpora : http://toolslib.net/forum
***** [ SluĹľby ] *****
***** [ SloĹľky ] *****
***** [ Soubory ] *****
***** [ DLLs ] *****
***** [ WMI ] *****
***** [ Zástupci ] *****
***** [ Naplánované úkoly ] *****
***** [ Registr ] *****
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\pc-mechanic
***** [ WebovĂ© prohlĂĹľeÄŤe ] *****
[-] [C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] smazáno : search.icq.com
[-] [C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] smazáno : search.icq.com.anonymize-me.de
*************************
:: "Tracing" odstraněných kláves
:: Nastavenà Winsock odstraněno
*************************
C:\AdwCleaner\AdwCleaner[C1].txt - [1081 bytes] - [16/05/2016 00:30:12]
C:\AdwCleaner\AdwCleaner[S1].txt - [1113 bytes] - [16/05/2016 00:28:01]
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [1227 bytes] ##########
____
# AdwCleaner v5.117 - Log soubor vytvořen 16/05/2016 o 00:28:01
# Aktualizováno 15/05/2016 by Xplode
# Databáze : 2016-05-15.2 [Server]
# Operačnà systém : Windows 8.1 (X64)
# Jméno uživatele : Martin - WANTMORE
# Spuštěno z : C:\Users\Martin\Desktop\AdwCleaner.exe
# Volba : Skenovat
# Podpora : http://toolslib.net/forum
***** [ SluĹľby ] *****
***** [ SloĹľky ] *****
***** [ Soubory ] *****
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Zástupci ] *****
***** [ Naplánované úkoly ] *****
***** [ Registr ] *****
Klávesa nalezeno : HKLM\SOFTWARE\Classes\pc-mechanic
***** [ WebovĂ© prohlĂĹľeÄŤe ] *****
[C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] nalezeno : search.icq.com
[C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] nalezeno : search.icq.com.anonymize-me.de
*************************
C:\AdwCleaner\AdwCleaner[S1].txt - [962 bytes] - [16/05/2016 00:28:01]
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1034 bytes] ##########
_____
# AdwCleaner v5.117 - Log soubor vytvořen 16/05/2016 o 00:30:12
# Aktualizováno 15/05/2016 by Xplode
# Databáze : 2016-05-15.2 [Server]
# Operačnà systém : Windows 8.1 (X64)
# Jméno uživatele : Martin - WANTMORE
# Spuštěno z : C:\Users\Martin\Desktop\AdwCleaner.exe
# Volba : ÄŚištÄ›nĂ
# Podpora : http://toolslib.net/forum
***** [ SluĹľby ] *****
***** [ SloĹľky ] *****
***** [ Soubory ] *****
***** [ DLLs ] *****
***** [ WMI ] *****
***** [ Zástupci ] *****
***** [ Naplánované úkoly ] *****
***** [ Registr ] *****
[-] Klávesa smazáno : HKLM\SOFTWARE\Classes\pc-mechanic
***** [ WebovĂ© prohlĂĹľeÄŤe ] *****
[-] [C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] smazáno : search.icq.com
[-] [C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] smazáno : search.icq.com.anonymize-me.de
*************************
:: "Tracing" odstraněných kláves
:: Nastavenà Winsock odstraněno
*************************
C:\AdwCleaner\AdwCleaner[C1].txt - [1081 bytes] - [16/05/2016 00:30:12]
C:\AdwCleaner\AdwCleaner[S1].txt - [1113 bytes] - [16/05/2016 00:28:01]
########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [1227 bytes] ##########
____
# AdwCleaner v5.117 - Log soubor vytvořen 16/05/2016 o 00:28:01
# Aktualizováno 15/05/2016 by Xplode
# Databáze : 2016-05-15.2 [Server]
# Operačnà systém : Windows 8.1 (X64)
# Jméno uživatele : Martin - WANTMORE
# Spuštěno z : C:\Users\Martin\Desktop\AdwCleaner.exe
# Volba : Skenovat
# Podpora : http://toolslib.net/forum
***** [ SluĹľby ] *****
***** [ SloĹľky ] *****
***** [ Soubory ] *****
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Zástupci ] *****
***** [ Naplánované úkoly ] *****
***** [ Registr ] *****
Klávesa nalezeno : HKLM\SOFTWARE\Classes\pc-mechanic
***** [ WebovĂ© prohlĂĹľeÄŤe ] *****
[C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] nalezeno : search.icq.com
[C:\Users\Martin\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] nalezeno : search.icq.com.anonymize-me.de
*************************
C:\AdwCleaner\AdwCleaner[S1].txt - [962 bytes] - [16/05/2016 00:28:01]
########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1034 bytes] ##########
-
Rudy
- Site Admin
- Příspěvky: 119673
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu - ntb zamrzá
Dejte nový log FRST.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?