VIRY.CZ

Dobrý den, zlobí mě počítač, místo prohlížeče google chrome mi naskakuje Tavanero.

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 16-11-2016
Ran by Uživatel (18-11-2016 08:47:29)
Running from C:\Users\Uživatel\Downloads
Windows 7 Professional Service Pack 1 (X64) (2016-05-03 12:42:25)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-615357842-2284800797-379588410-500 - Administrator - Disabled)
Guest (S-1-5-21-615357842-2284800797-379588410-501 - Limited - Disabled)
Uživatel (S-1-5-21-615357842-2284800797-379588410-1000 - Administrator - Enabled) => C:\Users\Uživatel

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Bitdefender Antivirus Free Edition (Disabled - Up to date) {3FB17364-4FCC-0FA7-6BBF-973897395371}
AS: Bitdefender Antivirus Free Edition (Disabled - Up to date) {84D09280-69F6-0029-510F-AC4AECBE19CC}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 15.14 (x64) (HKLM\...\7-Zip) (Version: 15.14 - Igor Pavlov)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 15.020.20042 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 21.0.0.198 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.4.194 - Adobe Systems, Inc.)
Aktualizace NVIDIA 2.11.3.5 (Version: 2.11.3.5 - NVIDIA Corporation) Hidden
Bitdefender Antivirus Free Edition (HKLM\...\BitDefender Gonzales) (Version: 1.0.21.1109 - Bitdefender)
Bullzip PDF Printer 10.23.0.2529 (HKLM\...\Bullzip PDF Printer_is1) (Version: 10.23.0.2529 - Bullzip)
CDBurnerXP (HKLM\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.6.6059 - CDBurnerXP)
Counter-Strike 1.6 (HKLM-x32\...\{13B792AA-C078-43A4-8A3A-8B12D629940D}) (Version: 1.00.0000 - )
Counter-Strike 1.6 (HKU\S-1-5-21-615357842-2284800797-379588410-1000\...\Counter-Strike 1.6) (Version: - )
Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve)
Drakensang Online (HKLM-x32\...\Drakensang Online) (Version: - )
FastStone Image Viewer 5.5 (HKLM-x32\...\FastStone Image Viewer) (Version: 5.5 - FastStone Soft)
Gameforge Live 2.0.12 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.12 - Gameforge)
Geeks3D FurMark 1.17.0.0 (HKLM-x32\...\{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1) (Version: - Geeks3D)
Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google)
Google Chrome (HKLM-x32\...\{84F46B98-8E48-33EB-BCE1-796B52E45B68}) (Version: 50.0.2661.94 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
Intel(R) Network Connections 19.1.51.0 (HKLM\...\PROSetDX) (Version: 19.1.51.0 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.4229 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.7.0.1013 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Java 8 Update 91 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418091F0}) (Version: 8.0.910.14 - Oracle Corporation)
Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.14 - Oracle Corporation)
K-Lite Codec Pack 12.1.0 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 12.1.0 - KLCP)
LibreOffice 5.1.2.2 (HKLM\...\{7A6851F9-0867-4CB4-9017-35ECA0CBA162}) (Version: 5.1.2.2 - The Document Foundation)
Lightshot-5.4.0.1 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.4.0.1 - Skillbrains)
Malwarebytes Anti-Malware verze 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft .NET Framework 4.6.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Mozilla Firefox 46.0.1 (x86 cs) (HKLM-x32\...\Mozilla Firefox 46.0.1 (x86 cs)) (Version: 46.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 46.0.1 - Mozilla)
NVIDIA GeForce Experience 2.11.3.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.3.5 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 368.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 368.22 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.34.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.14 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 364.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 364.44 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 368.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 368.22 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
Opera Stable 41.0.2353.56 (HKLM-x32\...\Opera 41.0.2353.56) (Version: 41.0.2353.56 - Opera Software)
Origin (HKLM-x32\...\Origin) (Version: 10.1.1.35466 - Electronic Arts, Inc.)
Ovládací panel NVIDIA 368.22 (Version: 368.22 - NVIDIA Corporation) Hidden
Paladins (HKLM\...\Steam App 444090) (Version: - Hi-Rez Studios)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7240 - Realtek Semiconductor Corp.)
Robocraft (HKLM\...\Steam App 301520) (Version: - Freejam)
Robocraft Launcher version 0.4 (HKU\S-1-5-21-615357842-2284800797-379588410-1000\...\{9F101691-69D3-422E-BB5C-8CAD7110781B}_is1) (Version: 0.4 - Freejam Games)
S.K.I.L.L. - Special Force 2 (HKLM-x32\...\Special Force 2 Beta_is1) (Version: - )
SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.11.3.5 - NVIDIA Corporation) Hidden
Skype™ 7.28 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.28.101 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Team Fortress 2 (HKLM\...\Steam App 440) (Version: - Valve)
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.59131 - TeamViewer)
Unity Web Player (HKU\S-1-5-21-615357842-2284800797-379588410-1000\...\UnityWebPlayer) (Version: 5.3.5f1 - Unity Technologies ApS)
Unity Web Player (x64) (All users) (HKLM\...\UnityWebPlayer) (Version: 4.6.6f2 - Unity Technologies ApS)
Unturned (HKLM\...\Steam App 304930) (Version: - Smartly Dressed Games)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.3 - VideoLAN)
Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1) (Version: 1.0.11.1 - LunarG, Inc.)
War Thunder Launcher 1.0.1.652 (HKLM-x32\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Entertainment)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {16FA120D-E7C8-4A9C-A1D2-BE44D5A81CAC} - System32\Tasks\{657DFCCF-B080-44B1-9AEA-61676011A1AE} => C:\Users\Uživatel\Downloads\LeagueofLegends_EUNE_Installer_2016_05_13.exe
Task: {53C6E6F8-46E2-4239-B799-AE23CC55FE15} - System32\Tasks\update-S-1-5-21-615357842-2284800797-379588410-1000 => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2016-07-11] ()
Task: {68AD1F62-0FA7-4A8E-BEEA-117495E95267} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2016-04-18] ()
Task: {8B8AA72A-8F37-496C-A839-34E0AD5BC95F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-05-05] (Google Inc.)
Task: {9142A082-AD2F-4009-B40C-9F330F889849} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-05-05] (Google Inc.)
Task: {A52A27D5-68FF-4364-B66D-55D63E039403} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-10-21] (Adobe Systems Incorporated)
Task: {D6017237-EB34-4F2B-A720-1A26B8977A49} - System32\Tasks\Opera scheduled Autoupdate 1462446162 => C:\Program Files (x86)\Opera\launcher.exe [2016-11-07] (Opera Software)
Task: {E4ADB447-B8B5-462F-8CA8-11FAC4C1CE11} - System32\Tasks\update-sys => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe [2016-07-11] ()

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\update-S-1-5-21-615357842-2284800797-379588410-1000.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\Windows\Tasks\update-sys.job => C:\Program Files (x86)\Skillbrains\Updater\Updater.exe
Task: C:\Windows\Tasks\{657DFCCF-B080-44B1-9AEA-61676011A1AE}.job => C:\Users\Uživatel\Downloads\LeagueofLegends_EUNE_Installer_2016_05_13.exe΄/i C:\Users\Uživatel\AppData\Local\Temp\AIE5418.tmp AI_RESUME=1 ADDLOCAL=D2BCE474_49DC_4169_8EFD_7CAB0921B614,BAEAC99E_37AC_4DB1_8AA2_D0B4B5C09ED_1,F477261_82C3_4613_8028_BC4B6AA8AD37,LoLStartMenuShortcut,LeagueofLegends_GameClient,LeagueofLegends,LoLDesktopShortcut PRIMARYFOLDER=APPDIR ROOTDRIVE=E:\ TRANSFORMS=:1029 AI_PREREQDIRS=C:\Users\Uživatel\AppData\Roaming\Riot Games\League of Legends\prerequisites AI_MISSING_PREREQS=DirectX 9 SDK Setup|Visual C++ 2005 SP1 Redistributable (x64)|Visual C++ 2005 SP1 Redistributable (x86) AI_SETUPEXEPATH=C:\Users\Uživatel\Downloads\LeagueofLegends_EUNE_Installer_2016_05_13.exe SETUPEXEDIR=C:\Users\Uživatel\Downloads\ TARGETDIR=E:\ AI_DIRECTX_9_PREREQSEARCH_PROP=4.09.00.0904 APPDIR=C:\Riot Games\League of Legends\ AI_SETUPEXEPATH_ORIGINAL=C:\Users\Uživatel\Downloads\LeagueofLegends_EUNE_Installer_2016_05_13.exe <==== ATTENTION

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2016-05-05 13:18 - 2013-03-19 10:07 - 00712288 _____ () C:\Program Files\Bitdefender\Antivirus Free Edition\sqlite3.dll
2016-05-05 13:18 - 2013-09-03 12:29 - 00111832 _____ () C:\Program Files\Bitdefender\Antivirus Free Edition\BDMetrics.dll
2016-05-03 14:33 - 2015-06-01 20:00 - 00102912 _____ () C:\Windows\System32\IccLibDll_x64.dll
2016-11-09 12:12 - 2016-11-18 08:10 - 00150016 _____ () C:\Users\Uživatel\AppData\Local\Temp\update flash player.exe
2016-05-30 10:03 - 2016-05-02 06:54 - 00369208 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll
2016-05-30 10:03 - 2016-05-02 06:54 - 01148984 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll
2016-05-30 10:03 - 2016-05-02 06:55 - 03613240 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll
2016-05-30 10:03 - 2016-05-02 06:55 - 00289848 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2016-05-30 10:03 - 2016-05-02 06:55 - 01990200 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll
2016-05-30 10:03 - 2016-05-02 06:55 - 01842232 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll
2016-05-30 10:03 - 2016-05-02 06:55 - 00208952 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll
2016-05-30 10:03 - 2016-05-02 06:55 - 02667576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll
2016-05-30 10:03 - 2016-05-02 06:54 - 00035896 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll
2016-05-30 10:03 - 2016-05-02 06:54 - 00921656 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll
2016-11-16 14:06 - 2016-11-08 22:03 - 02367080 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\libglesv2.dll
2016-11-16 14:06 - 2016-11-08 22:03 - 00107112 _____ () C:\Program Files (x86)\Google\Chrome\Application\54.0.2840.99\libegl.dll
2016-05-30 10:03 - 2016-05-02 07:02 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-08-06 20:05 - 2016-09-08 04:14 - 00784672 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2016-08-06 20:05 - 2016-09-01 02:02 - 04969248 _____ () C:\Program Files (x86)\Steam\v8.dll
2016-08-06 20:05 - 2016-09-01 02:02 - 01563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2016-08-06 20:05 - 2016-09-01 02:02 - 01195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2016-08-06 20:05 - 2016-10-13 02:58 - 02321696 _____ () C:\Program Files (x86)\Steam\video.dll
2016-08-06 20:05 - 2016-01-27 08:49 - 02549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2016-08-06 20:05 - 2016-01-27 08:49 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2016-08-06 20:05 - 2016-01-27 08:49 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2016-08-06 20:05 - 2016-01-27 08:49 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2016-08-06 20:05 - 2016-01-27 08:49 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2016-08-06 20:05 - 2016-10-13 02:58 - 00836896 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2016-08-06 20:05 - 2016-07-04 23:17 - 00266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
2016-10-14 18:29 - 2016-08-04 21:56 - 49825056 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.winxp\libcef.dll
2016-09-21 12:42 - 2016-10-04 17:30 - 02493440 _____ () C:\Program Files (x86)\Origin\libGLESv2.dll
2016-07-15 11:56 - 2016-07-15 11:56 - 00016384 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_32\PSIClient\a20a39d761f8ba0db2523f4d21c40431\PSIClient.ni.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Uživatel\Downloads\368.22-desktop-win8-win7-winvista-64bit-international-whql.exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\CoD_1.5_Patch.exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\counter-strike-source_SCIFI3-Hardwired3.02final.exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\CS-GO-Wallhack-2.0.exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\CS16_install (1).exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\CS16_install (2).exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\CS16_install.exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\dro_setup.3fb66143d44410198cf27bfddad626cc (1).exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\dro_setup.3fb66143d44410198cf27bfddad626cc.exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\FRST64.exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\FurMark_1.17.0.0_Setup.exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\LoLInstaller.exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\Nepotvrzeno 679332.crdownload:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\Nepotvrzeno 788523.crdownload:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\Nepotvrzeno 954502.crdownload:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\readerdc_cz_xa_install.exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\RobocraftSetup (1).exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\RobocraftSetup (2).exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\RobocraftSetup (3).exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\RobocraftSetup (4).exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\RobocraftSetup (5).exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\RobocraftSetup (6).exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\RobocraftSetup.exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\setup-lightshot.exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\SKILL_GameforgeLiveSetup.exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\SkypeSetup.exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\SteamSetup.exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\UnityWebPlayer(1).exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\UnityWebPlayer(2).exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\UnityWebPlayer.exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\UnityWebPlayer64 (1).exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\UnityWebPlayer64.exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\vcredist_x64 (1).exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\vcredist_x64.exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\wt_launcher_1.0.1.652.exe:BDU [0]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-615357842-2284800797-379588410-1000\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{4BAD6058-3098-48DB-9C77-959C72535061}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{7531AB02-A4BF-4884-9974-0CBE1AE2D022}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{5104149B-3D27-4974-8C69-54948E92AE56}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{DCC92BC9-F075-4B6A-928D-A3B7A39C5813}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{BF18A659-37AA-4354-A092-64B6FF47061B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{BD593AE2-52F0-418B-A797-4985344FA72C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{C625BB80-0FD1-4AA9-9FD5-ACED80C93E20}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{1FF94B04-0057-4C4B-93D8-156083AEACF9}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{CF1B59D2-3920-4A2B-86C3-42C1C499DB40}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{778613ED-64DF-43C1-A497-63004BF6AAB5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{F89CEA45-6A7D-4324-9F8E-758A3E04986F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{053BE348-2EA2-492D-9BD2-376BCBA05FA7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{010ACD88-B92A-4EB9-86E9-453CF01EF9F5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{96B69169-01A9-487C-ACBB-94FD936463AB}C:\users\uživatel\counter-strike 1.6\hl.exe] => (Allow) C:\users\uživatel\counter-strike 1.6\hl.exe
FirewallRules: [UDP Query User{F1734316-445A-458F-9D04-6320D532C75B}C:\users\uživatel\counter-strike 1.6\hl.exe] => (Allow) C:\users\uživatel\counter-strike 1.6\hl.exe
FirewallRules: [{A4179338-4294-46B6-BE12-14ED36F5BFFD}] => (Allow) C:\WarThunder\launcher.exe
FirewallRules: [{B4E1C743-2FD1-40DD-B256-A965DA512CB1}] => (Allow) C:\WarThunder\launcher.exe
FirewallRules: [{292FBF0D-0BDE-4022-8590-5F63DD3B93BB}] => (Allow) LPort=80
FirewallRules: [{7635B70E-1DA8-4621-9810-288BC46633DB}] => (Allow) LPort=443
FirewallRules: [{5E9C4299-F092-472A-AA1E-EE8909C4852F}] => (Allow) LPort=20010
FirewallRules: [{0C85BF43-0B6A-4084-9C47-EC8A1CF9CED6}] => (Allow) LPort=3478
FirewallRules: [{7D8C8673-7971-43DF-B6E1-2E95E848BFBB}] => (Allow) LPort=7850
FirewallRules: [{FA9D810E-F554-4A3E-84EF-7BC3F0063BD0}] => (Allow) LPort=7852
FirewallRules: [{87505870-8FC7-4987-895D-A063F562F9CA}] => (Allow) LPort=7853
FirewallRules: [{8EAFCAD6-41CA-4F49-B93D-DDF36FFE79CB}] => (Allow) LPort=27022
FirewallRules: [{39DF0E91-05C5-478F-A487-650A8AD67118}] => (Allow) LPort=6881
FirewallRules: [{3E56009D-AE5F-4C0E-8435-F73B07006A3D}] => (Allow) LPort=33333
FirewallRules: [{105F7DFC-5809-4004-85E3-8900FAE90843}] => (Allow) LPort=20443
FirewallRules: [{157DBA83-E4F1-4995-881C-2796B6C08E87}] => (Allow) LPort=8090
FirewallRules: [TCP Query User{39BE9D75-0686-4274-8362-3D0940B13724}C:\warthunder\win64\aces.exe] => (Allow) C:\warthunder\win64\aces.exe
FirewallRules: [UDP Query User{97B7F8DF-A587-4E94-AAD5-CFBA98CA7C4D}C:\warthunder\win64\aces.exe] => (Allow) C:\warthunder\win64\aces.exe
FirewallRules: [{158ADEBD-BC93-40A4-AC8C-13456EC82021}] => (Block) C:\warthunder\win64\aces.exe
FirewallRules: [{D0B4C612-7EDD-48DE-94C3-931C4FE18C99}] => (Block) C:\warthunder\win64\aces.exe
FirewallRules: [{C3986069-1156-46D4-98F3-F5C2BC1E99B3}] => (Allow) C:\Program Files (x86)\GameforgeLive\gfl_client.exe
FirewallRules: [{1C7EBF17-08C5-47F9-8B03-098975B827E6}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{057C54E5-2931-40FE-955F-475D6C4921BA}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{8AF30E59-D469-4B0F-8541-B335838C94A4}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{FE59AAFE-D3DA-4AA8-B8D3-AD12B8FFF733}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{BC2B4F6F-210F-472B-9049-2824CA1BF249}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Robocraft\Robocraft.exe
FirewallRules: [{856E17A8-C7EB-4513-8A3C-8C816891710F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Robocraft\Robocraft.exe
FirewallRules: [{ED213D68-6C8F-4C37-9BCB-A27675F9AD79}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe
FirewallRules: [{DD76107C-04C9-475C-91C8-C7D4350160B4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe
FirewallRules: [{9471BF93-6C6B-4501-8801-34A41CE8EB9B}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{DF347F19-3889-4D21-83A3-DE31F73B3EB4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{7AADC653-1A0F-4BB5-877C-0C921B12B113}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{4182D215-2F53-458D-87FB-AD1823579D0D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [{C5CA5B99-6462-4EDF-A64C-397DD3D75AAD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [TCP Query User{16092A62-ACBF-461E-86C5-514D7C3E5C56}C:\users\uživatel\downloads\lolinstaller.exe] => (Allow) C:\users\uživatel\downloads\lolinstaller.exe
FirewallRules: [UDP Query User{87DADAD6-2181-4220-A68C-561B7214112C}C:\users\uživatel\downloads\lolinstaller.exe] => (Allow) C:\users\uživatel\downloads\lolinstaller.exe
FirewallRules: [{2484BF17-9B86-4DD4-96B4-20B8AB2C6B4D}] => (Allow) C:\Program Files\7-Zip\7zFM.exe
FirewallRules: [{54DD22F2-753B-4DC3-A17A-2B0B3A60523F}] => (Allow) C:\Program Files\7-Zip\7zFM.exe
FirewallRules: [{5C2F819C-6C72-41C3-B67E-DE976FD43CFC}] => (Allow) C:\Program Files\7-Zip\7zFM.exe
FirewallRules: [{3C9465BA-131E-4AA4-B3D0-DFF33D999C46}] => (Allow) C:\Program Files\7-Zip\7zFM.exe
FirewallRules: [{27EF7617-ED5C-461C-AE04-5480E3829524}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe
FirewallRules: [{21FE4A5E-2D5C-4CE5-8EA9-CEF1B98E5562}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe
FirewallRules: [TCP Query User{FB020A1A-6369-4C19-82D2-CA3DECE0D913}C:\program files (x86)\steam\steamapps\common\paladins\binaries\win32\paladins.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\paladins\binaries\win32\paladins.exe
FirewallRules: [UDP Query User{22FC646D-89C9-4E60-988A-598D1F90CCE2}C:\program files (x86)\steam\steamapps\common\paladins\binaries\win32\paladins.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\paladins\binaries\win32\paladins.exe
FirewallRules: [{65EF712D-06FB-4604-846E-819168F9C432}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned_BE.exe
FirewallRules: [{9F39FAF2-D758-4820-962A-72570EE7B4D5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned_BE.exe
FirewallRules: [{49721C10-DCBE-4A10-8E5D-7294DDEE6193}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

29-10-2016 19:20:00 Naplánovaný kontrolní bod
06-11-2016 14:19:28 Naplánovaný kontrolní bod
09-11-2016 14:02:16 Windows Update

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
==================
Error: (11/18/2016 08:11:29 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (11/17/2016 11:49:03 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (11/16/2016 06:13:48 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (11/16/2016 01:51:11 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (11/15/2016 07:08:44 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (11/14/2016 06:25:38 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (11/13/2016 12:23:33 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (11/12/2016 06:38:12 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (11/12/2016 01:40:44 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (11/12/2016 12:05:55 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

System errors:
=============
Error: (11/18/2016 08:11:20 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Origin Web Helper Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (11/18/2016 08:11:20 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Origin Web Helper Service bylo dosaženo časového limitu (30000 ms).

Error: (11/18/2016 08:09:57 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Adobe Acrobat Update Service bylo dosaženo časového limitu (30000 ms).

Error: (11/17/2016 01:22:17 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {F9717507-6651-4EDB-BFF7-AE615179BCCF} se v daném časovém limitu neregistroval u služby DCOM.

Error: (11/17/2016 11:48:32 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Origin Web Helper Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (11/17/2016 11:48:32 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Origin Web Helper Service bylo dosaženo časového limitu (30000 ms).

Error: (11/17/2016 11:47:54 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Hi-Rez Studios Authenticate and Update Service bylo dosaženo časového limitu (30000 ms).

Error: (11/16/2016 11:15:05 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {F9717507-6651-4EDB-BFF7-AE615179BCCF} se v daném časovém limitu neregistroval u služby DCOM.

Error: (11/16/2016 06:13:13 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Origin Web Helper Service neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.

Error: (11/16/2016 06:13:13 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Origin Web Helper Service bylo dosaženo časového limitu (30000 ms).

==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5-2400 CPU @ 3.10GHz
Percentage of memory in use: 40%
Total physical RAM: 8076.56 MB
Available physical RAM: 4844.29 MB
Total Virtual: 16151.31 MB
Available Virtual: 12310.29 MB

==================== Drives ================================

Drive c: (SYSTEM) (Fixed) (Total:465.76 GB) (Free:359.64 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive e: (DATA) (Fixed) (Total:465.75 GB) (Free:465.65 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 44FDFE06)
Partition 1: (Active) - (Size=465.8 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

ahoj
citat:
. Junkware removal tool: http://thisisudax.org/downloads/JRT.exe
•Ulozte nejlepe na plochu
•Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
•Probehne vytvoreni zalohy a nasledne prohledavani
•Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.0.9 (09.30.2016)
Operating System: Windows 7 Professional x64
Ran by U§ivatel (Administrator) on p 18.11.2016 at 10:43:10,20
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

File System: 31

Failed to delete: C:\Users\U§ivatel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2Y802LLC (Temporary Internet Files Folder)
Successfully deleted: C:\ProgramData\1462450650.bdinstall.bin (File)
Successfully deleted: C:\ProgramData\1479456851.bdinstall.bin (File)
Successfully deleted: C:\ProgramData\1479456852.6348.bin (File)
Successfully deleted: C:\Windows\system32\Tasks\update-S-1-5-21-615357842-2284800797-379588410-1000 (Task)
Successfully deleted: C:\Windows\system32\Tasks\update-sys (Task)
Successfully deleted: C:\Windows\Tasks\update-S-1-5-21-615357842-2284800797-379588410-1000.job (Task)
Successfully deleted: C:\Windows\Tasks\update-sys.job (Task)
Successfully deleted: C:\Users\U§ivatel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0PS72R2M (Temporary Internet Files Folder)
Successfully deleted: C:\Users\U§ivatel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\62AXOPQ5 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\U§ivatel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\852FTS7T (Temporary Internet Files Folder)
Successfully deleted: C:\Users\U§ivatel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZG8CKJ5 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\U§ivatel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\I7EN2TV5 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\U§ivatel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LIXMVQOA (Temporary Internet Files Folder)
Successfully deleted: C:\Users\U§ivatel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MEDCDR63 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\U§ivatel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\N0M90BG3 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\U§ivatel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OX0CEMRS (Temporary Internet Files Folder)
Successfully deleted: C:\Users\U§ivatel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PCGR04FY (Temporary Internet Files Folder)
Successfully deleted: C:\Users\U§ivatel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VT0CM3BZ (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\0PS72R2M (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2Y802LLC (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\62AXOPQ5 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\852FTS7T (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FZG8CKJ5 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\I7EN2TV5 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LIXMVQOA (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\MEDCDR63 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\N0M90BG3 (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\OX0CEMRS (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PCGR04FY (Temporary Internet Files Folder)
Successfully deleted: C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VT0CM3BZ (Temporary Internet Files Folder)

Registry: 0

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on p 18.11.2016 at 10:46:26,74
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

este vycisti PC s ADWCleanerom

projela jsem a posílám log. Při spuštění Chrome mi stále přeskakuje na tento prohlížeč: https://tavanero.com/tavanero/tavanero.php

LOG

# AdwCleaner v6.030 - Log soubor vytvořen 22/11/2016 na 06:49:04
# Aktualizováno dne 19/10/2016 z Malwarebytes
# Databáze : 2016-11-21.2 [Server]
# Operační systém : Windows 7 Professional Service Pack 1 (X64)
# Uživatelské jméno : Uživatel - WEBCAT
# Beží od : C:\Users\Uživatel\Downloads\AdwCleaner.exe
# Mod: Skenování
# Podpora : https://www.malwarebytes.com/support

***** [ Služby ] *****

Nebyly nalezeny žádné škodlivé služby.

***** [ Adresáře ] *****

Nebyly nalezeny žádné škodlivé složky.

***** [ Soubory ] *****

Nebyly nalezeny žádné škodlivé soubory.

***** [ DLL ] *****

Nebyly nalezeny žádné škodlivé DLL soubory.

***** [ WMI ] *****

Nebyly nalezeny žádné škodlivé klíče.

***** [ Zástupce ] *****

Žádné infikovaný zástupce nenalezen.

***** [ Plánovač úloh ] *****

Úkol nalezen: Script name

***** [ Registry ] *****

Klíč nalezen: HKCU\Software\ce784204f4a43f3b0ad145b3e7043f7e
Klíč nalezen: HKCU\Software\e5d4c691a655ec768eae8c4902325770
Klíč nalezen: HKCU\Software\Google\Chrome\Extensions\fcfenmboojpjinhpgggodefccipikbpd
Klíč nalezen: [x64] HKCU\Software\Google\Chrome\Extensions\fcfenmboojpjinhpgggodefccipikbpd

***** [ Internetové prohlížeče ] *****

Nebyly nalezeny žádné škodlivé položky prohlížeče Firefox báze.
Chromium nastavení nalezeno: [C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Web data] - counter-strike-source.en.softonic.com
Chromium nastavení nalezeno: [C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Web data] - robocraft.en.softonic.com
Chromium nastavení nalezeno: [C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Web data] - war-thunder.en.softonic.com
Chromium nastavení nalezeno: [C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences ] - elmbellnejnajbokkjokedldcgnmiean
Chromium nastavení nalezeno: [C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences ] - fcfenmboojpjinhpgggodefccipikbpd
Chromium nastavení nalezeno: [C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences ] - mallpejgeafdahhflmliiahjdpgbegpk

*************************

C:\AdwCleaner\AdwCleaner[S0].txt - [2298 Bajtů] - [22/11/2016 06:49:04]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [2372 Bajtů] ##########

v ADWC bolo treba spustit aj cistenie, ak problemy zotrvaju po cisteni,
tak pouzi zoek podla http://forum.viry.cz/viewtopic.php?f=13 ... k#p1465977

projela jsem i zoek a problém stále zůstává, stále tavanero

Pouzi navod pre konkretny prehliadac https://www.pcrisk.com/removal-guides/1 ... o-redirect
Vloz aktualny log FRST
Zajtra pozriem

zkusila jsem všechno, ale tavanero se stále drží

aktuálně:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 20-11-2016 01
Ran by Uživatel (22-11-2016 17:38:21)
Running from C:\Users\Uživatel\Downloads
Windows 7 Professional Service Pack 1 (X64) (2016-05-03 12:42:25)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-615357842-2284800797-379588410-500 - Administrator - Disabled)
Guest (S-1-5-21-615357842-2284800797-379588410-501 - Limited - Disabled)
Uživatel (S-1-5-21-615357842-2284800797-379588410-1000 - Administrator - Enabled) => C:\Users\Uživatel

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Avast Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

7-Zip 15.14 (x64) (HKLM\...\7-Zip) (Version: 15.14 - Igor Pavlov)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 15.020.20042 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 21.0.0.198 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.4.194 - Adobe Systems, Inc.)
Aktualizace NVIDIA 2.11.3.5 (Version: 2.11.3.5 - NVIDIA Corporation) Hidden
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 12.3.2280 - AVAST Software)
Bullzip PDF Printer 10.23.0.2529 (HKLM\...\Bullzip PDF Printer_is1) (Version: 10.23.0.2529 - Bullzip)
CCleaner (HKLM\...\CCleaner) (Version: 5.24 - Piriform)
CDBurnerXP (HKLM\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.6.6059 - CDBurnerXP)
Counter-Strike 1.6 (HKLM-x32\...\{13B792AA-C078-43A4-8A3A-8B12D629940D}) (Version: 1.00.0000 - )
Counter-Strike 1.6 (HKU\S-1-5-21-615357842-2284800797-379588410-1000\...\Counter-Strike 1.6) (Version: - )
Counter-Strike: Global Offensive (HKLM\...\Steam App 730) (Version: - Valve)
Drakensang Online (HKLM-x32\...\Drakensang Online) (Version: - )
FastStone Image Viewer 5.5 (HKLM-x32\...\FastStone Image Viewer) (Version: 5.5 - FastStone Soft)
Gameforge Live 2.0.12 (HKLM-x32\...\{9C98989A-3A15-42DA-A3B9-D20331437D67}}_is1) (Version: 2.0.12 - Gameforge)
Geeks3D FurMark 1.17.0.0 (HKLM-x32\...\{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1) (Version: - Geeks3D)
Google Earth (HKLM-x32\...\{817750FA-EC6A-485D-9901-0683AE6FFDF1}) (Version: 7.1.5.1557 - Google)
Google Chrome (HKLM-x32\...\{84F46B98-8E48-33EB-BCE1-796B52E45B68}) (Version: 50.0.2661.94 - Google, Inc.)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
ImgBurn (HKLM-x32\...\ImgBurn) (Version: 2.5.8.0 - LIGHTNING UK!)
Intel(R) Network Connections 19.1.51.0 (HKLM\...\PROSetDX) (Version: 19.1.51.0 - Intel)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.4229 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.7.0.1013 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Java 8 Update 91 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418091F0}) (Version: 8.0.910.14 - Oracle Corporation)
Java 8 Update 91 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218091F0}) (Version: 8.0.910.14 - Oracle Corporation)
K-Lite Codec Pack 12.1.0 Full (HKLM-x32\...\KLiteCodecPack_is1) (Version: 12.1.0 - KLCP)
LibreOffice 5.1.2.2 (HKLM\...\{7A6851F9-0867-4CB4-9017-35ECA0CBA162}) (Version: 5.1.2.2 - The Document Foundation)
Lightshot-5.4.0.1 (HKLM-x32\...\{30A5B3C9-2084-4063-A32A-628A98DE512B}_is1) (Version: 5.4.0.1 - Skillbrains)
Malwarebytes Anti-Malware verze 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft .NET Framework 4.6.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.41212.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Minecraft (HKLM-x32\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
Mozilla Firefox 46.0.1 (x86 cs) (HKLM-x32\...\Mozilla Firefox 46.0.1 (x86 cs)) (Version: 46.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 46.0.1 - Mozilla)
NVIDIA GeForce Experience 2.11.3.5 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 2.11.3.5 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 368.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 368.22 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.34.14 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.34.14 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 364.44 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 364.44 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 368.22 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 368.22 - NVIDIA Corporation)
NVIDIA Systémový software PhysX 9.16.0318 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.16.0318 - NVIDIA Corporation)
Opera Stable 41.0.2353.56 (HKLM-x32\...\Opera 41.0.2353.56) (Version: 41.0.2353.56 - Opera Software)
Ovládací panel NVIDIA 368.22 (Version: 368.22 - NVIDIA Corporation) Hidden
Paladins (HKLM\...\Steam App 444090) (Version: - Hi-Rez Studios)
Plumbytes Anti-Malware 2016 (HKLM\...\Plumbytes Anti-Malware 2016) (Version: - Plumbytes Software)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7240 - Realtek Semiconductor Corp.)
Robocraft (HKLM\...\Steam App 301520) (Version: - Freejam)
Robocraft Launcher version 0.4 (HKU\S-1-5-21-615357842-2284800797-379588410-1000\...\{9F101691-69D3-422E-BB5C-8CAD7110781B}_is1) (Version: 0.4 - Freejam Games)
S.K.I.L.L. - Special Force 2 (HKLM-x32\...\Special Force 2 Beta_is1) (Version: - )
SafeZone Stable 1.51.2220.62 (x32 Version: 1.51.2220.62 - Avast Software) Hidden
SHIELD Streaming (Version: 7.1.0280 - NVIDIA Corporation) Hidden
SHIELD Wireless Controller Driver (Version: 2.11.3.5 - NVIDIA Corporation) Hidden
Skype™ 7.29 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.29.102 - Skype Technologies S.A.)
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Team Fortress 2 (HKLM\...\Steam App 440) (Version: - Valve)
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.59131 - TeamViewer)
Unity Web Player (HKU\S-1-5-21-615357842-2284800797-379588410-1000\...\UnityWebPlayer) (Version: 5.3.5f1 - Unity Technologies ApS)
Unity Web Player (x64) (All users) (HKLM\...\UnityWebPlayer) (Version: 4.6.6f2 - Unity Technologies ApS)
Unturned (HKLM\...\Steam App 304930) (Version: - Smartly Dressed Games)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.3 - VideoLAN)
Vulkan Run Time Libraries 1.0.11.1 (HKLM\...\VulkanRT1.0.11.1) (Version: 1.0.11.1 - LunarG, Inc.)
War Thunder Launcher 1.0.1.652 (HKLM-x32\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Entertainment)
WiperSoft 1.1.1113.64 (HKLM\...\{AB1C8C91-4D8E-4C28-80E7-FD135FB90515}}_is1) (Version: 1.1.1113.64 - WiperSoft)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {02C0A6D6-013D-4AB3-944E-3DBCDC79D932} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-11-18] (AVAST Software)
Task: {16FA120D-E7C8-4A9C-A1D2-BE44D5A81CAC} - System32\Tasks\{657DFCCF-B080-44B1-9AEA-61676011A1AE} => C:\Users\Uživatel\Downloads\LeagueofLegends_EUNE_Installer_2016_05_13.exe
Task: {4C2B83D8-DD86-4650-81D5-3DA8AEEA53CD} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-11-18] (AVAST Software)
Task: {68AD1F62-0FA7-4A8E-BEEA-117495E95267} - System32\Tasks\klcp_update => C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe [2016-04-18] ()
Task: {7A499BDD-4B01-4C06-BAEF-109B9F729D0E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-11-15] (Piriform Ltd)
Task: {8373A13C-DE68-49EB-B411-EC3DC0BF7D1B} - System32\Tasks\SafeZone scheduled Autoupdate 1479456046 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-09-06] (Avast Software)
Task: {8B8AA72A-8F37-496C-A839-34E0AD5BC95F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-05-05] (Google Inc.)
Task: {9142A082-AD2F-4009-B40C-9F330F889849} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-05-05] (Google Inc.)
Task: {A52A27D5-68FF-4364-B66D-55D63E039403} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-10-21] (Adobe Systems Incorporated)
Task: {D6017237-EB34-4F2B-A720-1A26B8977A49} - System32\Tasks\Opera scheduled Autoupdate 1462446162 => C:\Program Files (x86)\Opera\launcher.exe [2016-11-07] (Opera Software)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\{657DFCCF-B080-44B1-9AEA-61676011A1AE}.job => C:\Users\Uživatel\Downloads\LeagueofLegends_EUNE_Installer_2016_05_13.exe΄/i C:\Users\Uživatel\AppData\Local\Temp\AIE5418.tmp AI_RESUME=1 ADDLOCAL=D2BCE474_49DC_4169_8EFD_7CAB0921B614,BAEAC99E_37AC_4DB1_8AA2_D0B4B5C09ED_1,F477261_82C3_4613_8028_BC4B6AA8AD37,LoLStartMenuShortcut,LeagueofLegends_GameClient,LeagueofLegends,LoLDesktopShortcut PRIMARYFOLDER=APPDIR ROOTDRIVE=E:\ TRANSFORMS=:1029 AI_PREREQDIRS=C:\Users\Uživatel\AppData\Roaming\Riot Games\League of Legends\prerequisites AI_MISSING_PREREQS=DirectX 9 SDK Setup|Visual C++ 2005 SP1 Redistributable (x64)|Visual C++ 2005 SP1 Redistributable (x86) AI_SETUPEXEPATH=C:\Users\Uživatel\Downloads\LeagueofLegends_EUNE_Installer_2016_05_13.exe SETUPEXEDIR=C:\Users\Uživatel\Downloads\ TARGETDIR=E:\ AI_DIRECTX_9_PREREQSEARCH_PROP=4.09.00.0904 APPDIR=C:\Riot Games\League of Legends\ AI_SETUPEXEPATH_ORIGINAL=C:\Users\Uživatel\Downloads\LeagueofLegends_EUNE_Installer_2016_05_13.exe <==== ATTENTION

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2016-05-30 10:01 - 2016-05-20 03:11 - 00133056 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2016-05-03 14:33 - 2015-06-01 20:00 - 00102912 _____ () C:\Windows\System32\IccLibDll_x64.dll
2016-05-30 10:03 - 2016-05-02 06:54 - 00369208 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\MessageBus.dll
2016-05-30 10:03 - 2016-05-02 06:54 - 01148984 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\libprotobuf.dll
2016-05-30 10:03 - 2016-05-02 06:55 - 03613240 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Poco.dll
2016-05-30 10:03 - 2016-05-02 06:55 - 00289848 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamBase.dll
2016-05-30 10:03 - 2016-05-02 06:55 - 02667576 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvMdnsPlugin.dll
2016-05-30 10:03 - 2016-05-02 06:55 - 01990200 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\NvPortForwardPlugin.dll
2016-05-30 10:03 - 2016-05-02 06:55 - 01842232 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\Plugins\NSS\RtspPlugin.dll
2016-05-30 10:03 - 2016-05-02 06:55 - 00208952 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\RtspServer.dll
2016-05-30 10:03 - 2016-05-02 06:54 - 00035896 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_system-vc120-mt-1_58.dll
2016-05-30 10:03 - 2016-05-02 06:54 - 00921656 _____ () C:\Program Files\NVIDIA Corporation\NvStreamSrv\boost_regex-vc120-mt-1_58.dll
2016-11-18 08:58 - 2016-11-18 08:58 - 00169064 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-11-22 15:17 - 2016-11-22 15:17 - 03129808 _____ () C:\Program Files\AVAST Software\Avast\defs\16112200\algo.dll
2016-11-18 08:58 - 2016-11-18 08:58 - 00482928 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-05-30 10:03 - 2016-05-02 07:02 - 00020536 _____ () C:\Program Files (x86)\NVIDIA Corporation\Update Core\detoured.dll
2016-08-06 20:05 - 2016-09-08 04:14 - 00784672 _____ () C:\Program Files (x86)\Steam\SDL2.dll
2016-08-06 20:05 - 2016-09-01 02:02 - 04969248 _____ () C:\Program Files (x86)\Steam\v8.dll
2016-08-06 20:05 - 2016-09-01 02:02 - 01563936 _____ () C:\Program Files (x86)\Steam\icui18n.dll
2016-08-06 20:05 - 2016-09-01 02:02 - 01195296 _____ () C:\Program Files (x86)\Steam\icuuc.dll
2016-08-06 20:05 - 2016-10-13 02:58 - 02321696 _____ () C:\Program Files (x86)\Steam\video.dll
2016-08-06 20:05 - 2016-01-27 08:49 - 02549760 _____ () C:\Program Files (x86)\Steam\libavcodec-56.dll
2016-08-06 20:05 - 2016-01-27 08:49 - 00442880 _____ () C:\Program Files (x86)\Steam\libavutil-54.dll
2016-08-06 20:05 - 2016-01-27 08:49 - 00491008 _____ () C:\Program Files (x86)\Steam\libavformat-56.dll
2016-08-06 20:05 - 2016-01-27 08:49 - 00332800 _____ () C:\Program Files (x86)\Steam\libavresample-2.dll
2016-08-06 20:05 - 2016-01-27 08:49 - 00485888 _____ () C:\Program Files (x86)\Steam\libswscale-3.dll
2016-08-06 20:05 - 2016-10-13 02:58 - 00836896 _____ () C:\Program Files (x86)\Steam\bin\chromehtml.DLL
2016-08-06 20:05 - 2016-07-04 23:17 - 00266560 _____ () C:\Program Files (x86)\Steam\openvr_api.dll
2016-10-14 18:29 - 2016-08-04 21:56 - 49825056 _____ () C:\Program Files (x86)\Steam\bin\cef\cef.winxp\libcef.dll
2016-11-18 08:58 - 2016-11-18 08:58 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2016-07-15 11:56 - 2016-07-15 11:56 - 00016384 _____ () C:\Windows\assembly\NativeImages_v4.0.30319_32\PSIClient\a20a39d761f8ba0db2523f4d21c40431\PSIClient.ni.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Uživatel\Downloads\368.22-desktop-win8-win7-winvista-64bit-international-whql.exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\ccsetup524.exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\CoD_1.5_Patch.exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\counter-strike-source_SCIFI3-Hardwired3.02final.exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\CS-GO-Wallhack-2.0.exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\CS16_install (1).exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\CS16_install (2).exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\CS16_install.exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\dro_setup.3fb66143d44410198cf27bfddad626cc (1).exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\dro_setup.3fb66143d44410198cf27bfddad626cc.exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\FurMark_1.17.0.0_Setup.exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\JRT.exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\LoLInstaller.exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\Nepotvrzeno 679332.crdownload:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\Nepotvrzeno 788523.crdownload:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\Nepotvrzeno 954502.crdownload:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\readerdc_cz_xa_install.exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\RobocraftSetup (1).exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\RobocraftSetup (2).exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\RobocraftSetup (3).exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\RobocraftSetup (4).exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\RobocraftSetup (5).exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\RobocraftSetup (6).exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\RobocraftSetup.exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\setup-lightshot.exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\SKILL_GameforgeLiveSetup.exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\SkypeSetup.exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\SteamSetup.exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\UnityWebPlayer(1).exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\UnityWebPlayer(2).exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\UnityWebPlayer.exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\UnityWebPlayer64 (1).exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\UnityWebPlayer64.exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\vcredist_x64 (1).exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\vcredist_x64.exe:BDU [0]
AlternateDataStreams: C:\Users\Uživatel\Downloads\wt_launcher_1.0.1.652.exe:BDU [0]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2009-06-10 22:00 - 00000824 ____A C:\Windows\system32\Drivers\etc\hosts

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-615357842-2284800797-379588410-1000\Control Panel\Desktop\\Wallpaper ->
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{4BAD6058-3098-48DB-9C77-959C72535061}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{7531AB02-A4BF-4884-9974-0CBE1AE2D022}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{5104149B-3D27-4974-8C69-54948E92AE56}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{DCC92BC9-F075-4B6A-928D-A3B7A39C5813}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{BF18A659-37AA-4354-A092-64B6FF47061B}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{BD593AE2-52F0-418B-A797-4985344FA72C}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{C625BB80-0FD1-4AA9-9FD5-ACED80C93E20}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{1FF94B04-0057-4C4B-93D8-156083AEACF9}] => (Allow) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{CF1B59D2-3920-4A2B-86C3-42C1C499DB40}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{778613ED-64DF-43C1-A497-63004BF6AAB5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
FirewallRules: [{F89CEA45-6A7D-4324-9F8E-758A3E04986F}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
FirewallRules: [{053BE348-2EA2-492D-9BD2-376BCBA05FA7}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{010ACD88-B92A-4EB9-86E9-453CF01EF9F5}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{96B69169-01A9-487C-ACBB-94FD936463AB}C:\users\uživatel\counter-strike 1.6\hl.exe] => (Allow) C:\users\uživatel\counter-strike 1.6\hl.exe
FirewallRules: [UDP Query User{F1734316-445A-458F-9D04-6320D532C75B}C:\users\uživatel\counter-strike 1.6\hl.exe] => (Allow) C:\users\uživatel\counter-strike 1.6\hl.exe
FirewallRules: [{A4179338-4294-46B6-BE12-14ED36F5BFFD}] => (Allow) C:\WarThunder\launcher.exe
FirewallRules: [{B4E1C743-2FD1-40DD-B256-A965DA512CB1}] => (Allow) C:\WarThunder\launcher.exe
FirewallRules: [{292FBF0D-0BDE-4022-8590-5F63DD3B93BB}] => (Allow) LPort=80
FirewallRules: [{7635B70E-1DA8-4621-9810-288BC46633DB}] => (Allow) LPort=443
FirewallRules: [{5E9C4299-F092-472A-AA1E-EE8909C4852F}] => (Allow) LPort=20010
FirewallRules: [{0C85BF43-0B6A-4084-9C47-EC8A1CF9CED6}] => (Allow) LPort=3478
FirewallRules: [{7D8C8673-7971-43DF-B6E1-2E95E848BFBB}] => (Allow) LPort=7850
FirewallRules: [{FA9D810E-F554-4A3E-84EF-7BC3F0063BD0}] => (Allow) LPort=7852
FirewallRules: [{87505870-8FC7-4987-895D-A063F562F9CA}] => (Allow) LPort=7853
FirewallRules: [{8EAFCAD6-41CA-4F49-B93D-DDF36FFE79CB}] => (Allow) LPort=27022
FirewallRules: [{39DF0E91-05C5-478F-A487-650A8AD67118}] => (Allow) LPort=6881
FirewallRules: [{3E56009D-AE5F-4C0E-8435-F73B07006A3D}] => (Allow) LPort=33333
FirewallRules: [{105F7DFC-5809-4004-85E3-8900FAE90843}] => (Allow) LPort=20443
FirewallRules: [{157DBA83-E4F1-4995-881C-2796B6C08E87}] => (Allow) LPort=8090
FirewallRules: [TCP Query User{39BE9D75-0686-4274-8362-3D0940B13724}C:\warthunder\win64\aces.exe] => (Allow) C:\warthunder\win64\aces.exe
FirewallRules: [UDP Query User{97B7F8DF-A587-4E94-AAD5-CFBA98CA7C4D}C:\warthunder\win64\aces.exe] => (Allow) C:\warthunder\win64\aces.exe
FirewallRules: [{158ADEBD-BC93-40A4-AC8C-13456EC82021}] => (Block) C:\warthunder\win64\aces.exe
FirewallRules: [{D0B4C612-7EDD-48DE-94C3-931C4FE18C99}] => (Block) C:\warthunder\win64\aces.exe
FirewallRules: [{C3986069-1156-46D4-98F3-F5C2BC1E99B3}] => (Allow) C:\Program Files (x86)\GameforgeLive\gfl_client.exe
FirewallRules: [{1C7EBF17-08C5-47F9-8B03-098975B827E6}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{057C54E5-2931-40FE-955F-475D6C4921BA}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{8AF30E59-D469-4B0F-8541-B335838C94A4}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{FE59AAFE-D3DA-4AA8-B8D3-AD12B8FFF733}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{BC2B4F6F-210F-472B-9049-2824CA1BF249}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Robocraft\Robocraft.exe
FirewallRules: [{856E17A8-C7EB-4513-8A3C-8C816891710F}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Robocraft\Robocraft.exe
FirewallRules: [{ED213D68-6C8F-4C37-9BCB-A27675F9AD79}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe
FirewallRules: [{DD76107C-04C9-475C-91C8-C7D4350160B4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe
FirewallRules: [{9471BF93-6C6B-4501-8801-34A41CE8EB9B}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{DF347F19-3889-4D21-83A3-DE31F73B3EB4}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{7AADC653-1A0F-4BB5-877C-0C921B12B113}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Counter-Strike Global Offensive\csgo.exe
FirewallRules: [{4182D215-2F53-458D-87FB-AD1823579D0D}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [{C5CA5B99-6462-4EDF-A64C-397DD3D75AAD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [TCP Query User{16092A62-ACBF-461E-86C5-514D7C3E5C56}C:\users\uživatel\downloads\lolinstaller.exe] => (Allow) C:\users\uživatel\downloads\lolinstaller.exe
FirewallRules: [UDP Query User{87DADAD6-2181-4220-A68C-561B7214112C}C:\users\uživatel\downloads\lolinstaller.exe] => (Allow) C:\users\uživatel\downloads\lolinstaller.exe
FirewallRules: [{2484BF17-9B86-4DD4-96B4-20B8AB2C6B4D}] => (Allow) C:\Program Files\7-Zip\7zFM.exe
FirewallRules: [{54DD22F2-753B-4DC3-A17A-2B0B3A60523F}] => (Allow) C:\Program Files\7-Zip\7zFM.exe
FirewallRules: [{5C2F819C-6C72-41C3-B67E-DE976FD43CFC}] => (Allow) C:\Program Files\7-Zip\7zFM.exe
FirewallRules: [{3C9465BA-131E-4AA4-B3D0-DFF33D999C46}] => (Allow) C:\Program Files\7-Zip\7zFM.exe
FirewallRules: [{27EF7617-ED5C-461C-AE04-5480E3829524}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe
FirewallRules: [{21FE4A5E-2D5C-4CE5-8EA9-CEF1B98E5562}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe
FirewallRules: [TCP Query User{FB020A1A-6369-4C19-82D2-CA3DECE0D913}C:\program files (x86)\steam\steamapps\common\paladins\binaries\win32\paladins.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\paladins\binaries\win32\paladins.exe
FirewallRules: [UDP Query User{22FC646D-89C9-4E60-988A-598D1F90CCE2}C:\program files (x86)\steam\steamapps\common\paladins\binaries\win32\paladins.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\paladins\binaries\win32\paladins.exe
FirewallRules: [{65EF712D-06FB-4604-846E-819168F9C432}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned_BE.exe
FirewallRules: [{9F39FAF2-D758-4820-962A-72570EE7B4D5}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned_BE.exe
FirewallRules: [{AD4A676B-143E-4805-AD31-D2FBE1D0B294}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

29-10-2016 19:20:00 Naplánovaný kontrolní bod
06-11-2016 14:19:28 Naplánovaný kontrolní bod
09-11-2016 14:02:16 Windows Update
18-11-2016 09:06:06 ASU_MSI_TRAN
18-11-2016 10:43:12 JRT Pre-Junkware Removal
22-11-2016 13:32:46 zoek.exe restore point

==================== Faulty Device Manager Devices =============

==================== Event log errors: =========================

Application errors:
==================
Error: (11/22/2016 05:34:15 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (11/22/2016 05:18:50 PM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (11/22/2016 06:56:40 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (11/22/2016 06:31:10 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (11/18/2016 10:56:22 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (11/18/2016 10:32:46 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (11/18/2016 09:18:52 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (11/18/2016 08:59:38 AM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro C:\Program Files\AVAST Software\Avast\setup\iplugins\IStats.dll se nezdařilo.
Závislé sestavení Avast.VC110.CRT,processorArchitecture="x86",publicKeyToken="2036b14a11e83e4a",type="win32",version="11.0.60610.1" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (11/18/2016 08:11:29 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (11/17/2016 11:49:03 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

System errors:
=============
Error: (11/22/2016 05:33:41 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekání na připojení služby Hi-Rez Studios Authenticate and Update Service bylo dosaženo časového limitu (30000 ms).

Error: (11/22/2016 05:32:19 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba zařazování tisku neuspěla při spuštění v důsledku následující chyby:
Služba nebyla zahájena, protože se nepodařilo přihlásit.

Error: (11/22/2016 05:32:19 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Služba Spooler se nemohla přihlásit jako NT AUTHORITY\SYSTEM s aktuálně konfigurovaným heslem z důvodu následující chyby:
Požadavek není podporován.

Chcete-li zajistit správnou konfiguraci služby, použijte modul snap-in Služby konzoly Microsoft Management Console (MMC).

Error: (11/22/2016 05:31:50 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Správce služeb se pokusil o opravnou akci (Restartovat službu) po nečekaném ukončení služby Windows Search, ale tato akce selhala kvůli následující chybě:
Instance této služby je již spuštěna.

Error: (11/22/2016 05:31:21 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba AMW Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (11/22/2016 05:31:21 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Instalační služba modulů systému Windows byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 120000 milisekund: Restartovat službu.

Error: (11/22/2016 05:31:21 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Úložná technologie Intel® Rapid byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (11/22/2016 05:31:20 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Steam Client Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (11/22/2016 05:31:20 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Search byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.

Error: (11/22/2016 05:31:19 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba NVIDIA Streamer Network Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5-2400 CPU @ 3.10GHz
Percentage of memory in use: 23%
Total physical RAM: 8076.56 MB
Available physical RAM: 6183.51 MB
Total Virtual: 16151.31 MB
Available Virtual: 14071.82 MB

==================== Drives ================================

Drive c: (SYSTEM) (Fixed) (Total:465.76 GB) (Free:360.92 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive e: (DATA) (Fixed) (Total:465.75 GB) (Free:465.65 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 44FDFE06)
Partition 1: (Active) - (Size=465.8 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================

Potrebujem ten druhy log, nie additional ,,,

sorry, přehlédla jsem se. Posílám log

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 20-11-2016 01
Ran by Uživatel (administrator) on WEBCAT (23-11-2016 16:10:52)
Running from C:\Users\Uživatel\Downloads
Loaded Profiles: Uživatel (Available Profiles: Uživatel)
Platform: Windows 7 Professional Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvscpapisvr.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe
(Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(Intel Corporation) C:\Windows\System32\IPROSetMonitor.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
(© 2015 Microsoft Corporation) C:\Users\Uživatel\AppData\Local\Microsoft\BingSvc\BingSvc.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(PLUMBYTES) C:\Program Files\Plumbytes Software\Plumbytes Anti-Malware\AmwService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Skillbrains) C:\Program Files (x86)\Skillbrains\lightshot\5.4.0.1\Lightshot.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Intel(R) Corporation) C:\Program Files\Intel\NCS2\WMIProv\ncs2prov.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.winxp\steamwebhelper.exe
(Valve Corporation) C:\Program Files (x86)\Common Files\Steam\SteamService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13671640 2014-04-10] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2398776 2016-05-02] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => "C:\Windows\system32\rundll32.exe" C:\Windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM-x32\...\Run: [IAStorIcon] => C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [285240 2012-11-19] (Intel Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [225944 2016-07-11] ()
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9080768 2016-11-18] (AVAST Software)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-615357842-2284800797-379588410-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2860832 2016-10-13] (Valve Corporation)
HKU\S-1-5-21-615357842-2284800797-379588410-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27011712 2016-10-17] (Skype Technologies S.A.)
HKU\S-1-5-21-615357842-2284800797-379588410-1000\...\Run: [BingSvc] => C:\Users\Uživatel\AppData\Local\Microsoft\BingSvc\BingSvc.exe [144008 2015-11-05] (© 2015 Microsoft Corporation)
HKU\S-1-5-21-615357842-2284800797-379588410-1000\...\Run: [GSplay.exe] => C:\Users\U%c5%beivatel\AppData\Local\Temp\7zO015F3D00\GSplay.exe <===== ATTENTION
HKU\S-1-5-21-615357842-2284800797-379588410-1000\...\Run: [{657DFCCF-B080-44B1-9AEA-61676011A1AE}] => "C:\Users\Uživatel\Downloads\LeagueofLegends_EUNE_Installer_2016_05_13.exe" /cmdloc "HKCU\Software\Riot Games AiTemp\{657DFCCF-B080-44B1-9AEA-61676011A1AE}"
HKU\S-1-5-21-615357842-2284800797-379588410-1000\...\Run: [Sys55] => C:\Users\Uživatel\Downloads\CS-GO-Wallhack-2.0.exe [16384 2016-11-09] (Intel(R) Common User Interface)
HKU\S-1-5-21-615357842-2284800797-379588410-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9105112 2016-11-15] (Piriform Ltd)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-11-18] (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{CDCC7829-8AA4-4D91-9AFB-97E5CDF2726E}: [DhcpNameServer] 10.0.0.138

Internet Explorer:
==================
HKU\S-1-5-21-615357842-2284800797-379588410-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.webcat.cz/
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_91\bin\ssv.dll [2016-05-05] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-11-18] (AVAST Software)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-05-05] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-05-05] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-11-18] (AVAST Software)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-05-05] (Oracle Corporation)

FireFox:
========
FF DefaultProfile: lq0sihv1.default
FF ProfilePath: C:\Users\Uživatel\AppData\Roaming\Mozilla\Firefox\Profiles\lq0sihv1.default [2016-11-22]
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\lq0sihv1.default -> Bing
FF SearchEngineOrder.3: Mozilla\Firefox\Profiles\lq0sihv1.default -> Bing
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\lq0sihv1.default -> Bing
FF Homepage: Mozilla\Firefox\Profiles\lq0sihv1.default -> hxxp://www.msn.com/?pc=SK216&ocid=SK216DHP&osmkt=en-ww
hxxp://www.webcat.cz/
FF Keyword.URL: Mozilla\Firefox\Profiles\lq0sihv1.default -> hxxp://www.bing.com/search?FORM=SK216DF&PC=SK216&q=
FF Extension: (Bing Search) - C:\Users\Uživatel\AppData\Roaming\Mozilla\Firefox\Profiles\lq0sihv1.default\Extensions\bingsearch.full@microsoft.com.xpi [2016-08-22]
FF SearchPlugin: C:\Users\Uživatel\AppData\Roaming\Mozilla\Firefox\Profiles\lq0sihv1.default\searchplugins\bing-.xml [2016-08-22]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-11-18]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-11-18]
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Plugin: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-05-05] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-05-05] (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin: @unity3d.com/UnityPlayer64,version=1.0 -> C:\Program Files\Unity\WebPlayer64\loader-x64\npUnity3D64.dll [2015-06-08] (Unity Technologies ApS)
FF Plugin: @videolan.org/vlc,version=2.2.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-04-26] (VideoLAN)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1224194.dll [2016-02-19] (Adobe Systems, Inc.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2015-05-20] (Google)
FF Plugin-x32: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-05-05] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-05-05] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-11] ( Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-05-20] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-05-20] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-28] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-615357842-2284800797-379588410-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Uživatel\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2016-05-08] (Unity Technologies ApS)

Chrome:
=======
CHR HomePage: Default -> hxxp://webcat.cz/
CHR StartupUrls: Default -> "hxxp://webcat.cz/"
CHR DefaultSearchURL: Default -> hxxp://musix.searchalgo.com/search/?category=web&s=wmds&q={searchTerms}
CHR DefaultSearchKeyword: Default -> WowMusix
CHR DefaultSuggestURL: Default -> hxxp://sug.searchalgo.com/search/index_sg.php?q={searchTerms}
CHR Profile: C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default [2016-11-22]
CHR Extension: (Prezentace Google) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-05-05]
CHR Extension: (Dokumenty Google) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-05-05]
CHR Extension: (Disk Google) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-05-05]
CHR Extension: (YouTube) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-05-05]
CHR Extension: (Jiitri) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\edddjmmiihbnhdfankjdmecbpgpielig [2016-11-16]
CHR Extension: (WowMusix) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\elmbellnejnajbokkjokedldcgnmiean [2016-11-22]
CHR Extension: (Tabulky Google) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-05-05]
CHR Extension: (Dokumenty Google offline) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-05-05]
CHR Extension: (FromDocToPDF) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\mallpejgeafdahhflmliiahjdpgbegpk [2016-11-22]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-05-05]
CHR Extension: (Gmail) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-05-05]
CHR Extension: (Chrome Media Router) - C:\Users\Uživatel\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-10-26]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx

Opera:
=======
OPR StartupUrls: "hxxp://www.webcat.cz/"

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-11-18] (AVAST Software)
S3 EasyAntiCheat; C:\Windows\SysWOW64\EasyAntiCheat.exe [245544 2016-08-05] (EasyAntiCheat Ltd)
R2 GfExperienceService; C:\Program Files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [1165368 2016-05-02] (NVIDIA Corporation)
U2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [9728 2016-09-23] (Hi-Rez Studios) [File not signed]
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1881144 2016-05-02] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3634232 2016-05-02] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2522680 2016-05-02] (NVIDIA Corporation)
R2 pbamw_service; C:\Program Files\Plumbytes Software\Plumbytes Anti-Malware\AmwService.exe [125712 2016-08-17] (PLUMBYTES)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7031056 2016-05-02] (TeamViewer GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-11-18] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-11-18] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [108816 2016-11-18] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-11-18] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-11-18] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [969184 2016-11-18] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [513632 2016-11-18] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [163416 2016-11-18] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [293352 2016-11-18] (AVAST Software)
R0 iaStorF; C:\Windows\System32\DRIVERS\iaStorF.sys [28216 2012-11-19] (Intel Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28216 2016-05-02] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad64v.sys [56384 2016-04-14] (NVIDIA Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-11-22 17:37 - 2016-11-22 17:37 - 00000000 ____D C:\Users\Uživatel\Downloads\FRST-OlderVersion
2016-11-22 17:24 - 2016-11-22 17:24 - 00001126 _____ C:\Users\Uživatel\Desktop\Plumbytes Anti-Malware.lnk
2016-11-22 17:24 - 2016-11-22 17:24 - 00000000 ____D C:\Users\Uživatel\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Plumbytes Anti-Malware
2016-11-22 17:24 - 2016-11-22 17:24 - 00000000 ____D C:\Program Files\Plumbytes Software
2016-11-22 17:23 - 2016-11-22 17:23 - 00582416 _____ (Plumbytes Software) C:\Users\Uživatel\Downloads\pb-remover.exe
2016-11-22 15:54 - 2016-11-22 15:54 - 03516080 _____ (Enigma Software Group USA, LLC.) C:\Users\Uživatel\Downloads\SpyHunter-Installer (1)
2016-11-22 15:52 - 2016-11-22 15:52 - 03516080 _____ (Enigma Software Group USA, LLC.) C:\Users\Uživatel\Downloads\SpyHunter-Installer
2016-11-22 15:32 - 2016-11-22 17:02 - 00000000 ____D C:\Users\Uživatel\AppData\Roaming\WiperSoft
2016-11-22 15:32 - 2016-11-22 15:56 - 00000780 _____ C:\Users\Uživatel\Desktop\WiperSoft.lnk
2016-11-22 15:32 - 2016-11-22 15:32 - 00022008 _____ C:\Windows\system32\wiperrm.exe
2016-11-22 15:32 - 2016-11-22 15:32 - 00000000 ____D C:\Users\Uživatel\AppData\Local\CrashRpt
2016-11-22 15:32 - 2016-11-22 15:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WiperSoft
2016-11-22 15:32 - 2016-11-22 15:32 - 00000000 ____D C:\Program Files\WiperSoft
2016-11-22 15:31 - 2016-11-22 15:31 - 01944616 _____ (WiperSoft) C:\Users\Uživatel\Downloads\WiperSoft-installer.exe
2016-11-22 15:24 - 2016-11-22 15:24 - 01309184 _____ C:\Users\Uživatel\Downloads\zoek (1).exe
2016-11-22 13:32 - 2016-11-22 13:32 - 00000472 _____ C:\runcheck.txt
2016-11-22 13:31 - 2016-11-22 13:31 - 01309184 _____ C:\Users\Uživatel\Downloads\zoek.exe
2016-11-22 13:31 - 2016-11-22 13:31 - 00000000 ____D C:\zoek_backup
2016-11-22 07:14 - 2016-11-22 07:14 - 00002285 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-11-22 07:14 - 2016-11-22 07:14 - 00002273 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2016-11-22 06:47 - 2016-11-22 17:31 - 00000000 ____D C:\AdwCleaner
2016-11-22 06:47 - 2016-11-22 06:47 - 03910208 _____ C:\Users\Uživatel\Downloads\AdwCleaner.exe
2016-11-18 10:53 - 2016-11-18 10:53 - 00097861 _____ C:\ProgramData\1479462666.bdinstall.bin
2016-11-18 10:51 - 2016-11-18 10:51 - 00037824 _____ C:\ProgramData\1479462665.bdinstall.bin
2016-11-18 10:46 - 2016-11-18 10:46 - 00005082 _____ C:\Users\Uživatel\Desktop\JRT.txt
2016-11-18 10:42 - 2016-11-18 10:42 - 01631928 _____ (Malwarebytes) C:\Users\Uživatel\Downloads\JRT.exe
2016-11-18 09:00 - 2016-11-18 09:23 - 00003886 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1479456046
2016-11-18 09:00 - 2016-11-18 09:00 - 00037144 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2016-11-18 09:00 - 2016-11-18 09:00 - 00001053 _____ C:\Users\Public\Desktop\Avast SafeZone Browser.lnk
2016-11-18 09:00 - 2016-11-18 09:00 - 00001053 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2016-11-18 08:59 - 2016-11-22 07:09 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-11-18 08:59 - 2016-11-18 08:59 - 00513632 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsp.sys
2016-11-18 08:59 - 2016-11-18 08:59 - 00293352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys
2016-11-18 08:59 - 2016-11-18 08:59 - 00003922 _____ C:\Windows\System32\Tasks\avast! Emergency Update
2016-11-18 08:59 - 2016-11-18 08:59 - 00001932 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2016-11-18 08:59 - 2016-11-18 08:59 - 00000000 ____D C:\Windows\System32\Tasks\AVAST Software
2016-11-18 08:59 - 2016-11-18 08:59 - 00000000 ____D C:\Users\Uživatel\AppData\Roaming\AVAST Software
2016-11-18 08:59 - 2016-11-18 08:59 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVAST Software
2016-11-18 08:59 - 2016-11-18 08:59 - 00000000 ____D C:\Program Files\Common Files\AV
2016-11-18 08:59 - 2016-11-18 08:58 - 00163416 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2016-11-18 08:59 - 2016-11-18 08:58 - 00108816 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2016-11-18 08:59 - 2016-11-18 08:58 - 00074544 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2016-11-18 08:59 - 2016-11-18 08:58 - 00037656 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2016-11-18 08:58 - 2016-11-18 08:59 - 00969184 _____ (AVAST Software) C:\Windows\system32\Drivers\aswsnx.sys
2016-11-18 08:58 - 2016-11-18 08:58 - 00391496 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2016-11-18 08:58 - 2016-11-18 08:58 - 00103064 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2016-11-18 08:58 - 2016-11-18 08:58 - 00053208 _____ (AVAST Software) C:\Windows\avastSS.scr
2016-11-18 08:57 - 2016-11-18 09:00 - 00000000 ____D C:\ProgramData\AVAST Software
2016-11-18 08:57 - 2016-11-18 09:00 - 00000000 ____D C:\Program Files\AVAST Software
2016-11-18 08:53 - 2016-11-18 08:53 - 08576448 _____ (Piriform Ltd) C:\Users\Uživatel\Downloads\ccsetup524.exe
2016-11-18 08:53 - 2016-11-18 08:53 - 00002792 _____ C:\Windows\System32\Tasks\CCleanerSkipUAC
2016-11-18 08:53 - 2016-11-18 08:53 - 00000832 _____ C:\Users\Public\Desktop\CCleaner.lnk
2016-11-18 08:53 - 2016-11-18 08:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2016-11-18 08:53 - 2016-11-18 08:53 - 00000000 ____D C:\Program Files\CCleaner
2016-11-18 08:47 - 2016-11-22 17:38 - 00037188 _____ C:\Users\Uživatel\Downloads\Addition.txt
2016-11-18 08:46 - 2016-11-23 16:10 - 00017151 _____ C:\Users\Uživatel\Downloads\FRST.txt
2016-11-18 08:46 - 2016-11-23 16:10 - 00000000 ____D C:\FRST
2016-11-18 08:42 - 2016-11-22 17:37 - 02412544 _____ (Farbar) C:\Users\Uživatel\Downloads\FRST64.exe
2016-11-18 08:41 - 2016-11-18 08:41 - 00112640 _____ (forum.viry.cz) C:\Users\Uživatel\Downloads\Nepotvrzeno 679332.crdownload
2016-11-11 14:10 - 2016-11-18 08:54 - 00000000 ____D C:\Windows\Minidump
2016-11-09 12:11 - 2016-11-09 12:11 - 00016384 ____H (Intel(R) Common User Interface) C:\Users\Uživatel\Downloads\CS-GO-Wallhack-2.0.exe
2016-11-09 12:06 - 2016-11-02 16:36 - 00382696 _____ (Adobe Systems Incorporated) C:\Windows\system32\atmfd.dll
2016-11-09 12:06 - 2016-11-02 16:32 - 00100864 _____ (Microsoft Corporation) C:\Windows\system32\fontsub.dll
2016-11-09 12:06 - 2016-11-02 16:32 - 00046080 _____ (Adobe Systems) C:\Windows\system32\atmlib.dll
2016-11-09 12:06 - 2016-11-02 16:32 - 00041472 _____ (Microsoft Corporation) C:\Windows\system32\lpk.dll
2016-11-09 12:06 - 2016-11-02 16:32 - 00014336 _____ (Microsoft Corporation) C:\Windows\system32\dciman32.dll
2016-11-09 12:06 - 2016-11-02 16:22 - 00308456 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\atmfd.dll
2016-11-09 12:06 - 2016-11-02 16:16 - 00070656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\fontsub.dll
2016-11-09 12:06 - 2016-11-02 16:16 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\lpk.dll
2016-11-09 12:06 - 2016-11-02 16:16 - 00010240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dciman32.dll
2016-11-09 12:06 - 2016-11-02 15:53 - 00034304 _____ (Adobe Systems) C:\Windows\SysWOW64\atmlib.dll
2016-11-09 12:06 - 2016-10-28 04:59 - 00394440 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2016-11-09 12:06 - 2016-10-28 04:14 - 00346320 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2016-11-09 12:06 - 2016-10-27 20:13 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2016-11-09 12:06 - 2016-10-27 20:13 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2016-11-09 12:06 - 2016-10-27 19:55 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2016-11-09 12:06 - 2016-10-27 19:54 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2016-11-09 12:06 - 2016-10-27 19:54 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2016-11-09 12:06 - 2016-10-27 19:53 - 00576000 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2016-11-09 12:06 - 2016-10-27 19:53 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2016-11-09 12:06 - 2016-10-27 19:51 - 02896384 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2016-11-09 12:06 - 2016-10-27 19:44 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2016-11-09 12:06 - 2016-10-27 19:43 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2016-11-09 12:06 - 2016-10-27 19:38 - 00615936 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2016-11-09 12:06 - 2016-10-27 19:37 - 00817664 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2016-11-09 12:06 - 2016-10-27 19:37 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2016-11-09 12:06 - 2016-10-27 19:37 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2016-11-09 12:06 - 2016-10-27 19:37 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2016-11-09 12:06 - 2016-10-27 19:28 - 25763328 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2016-11-09 12:06 - 2016-10-27 19:28 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2016-11-09 12:06 - 2016-10-27 19:24 - 00489984 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2016-11-09 12:06 - 2016-10-27 19:19 - 06047744 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2016-11-09 12:06 - 2016-10-27 19:15 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2016-11-09 12:06 - 2016-10-27 19:13 - 00107520 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2016-11-09 12:06 - 2016-10-27 19:09 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2016-11-09 12:06 - 2016-10-27 19:08 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2016-11-09 12:06 - 2016-10-27 19:05 - 00315392 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2016-11-09 12:06 - 2016-10-27 19:02 - 00152064 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2016-11-09 12:06 - 2016-10-27 18:49 - 00262144 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2016-11-09 12:06 - 2016-10-27 18:46 - 00806912 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2016-11-09 12:06 - 2016-10-27 18:46 - 00725504 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2016-11-09 12:06 - 2016-10-27 18:44 - 02131456 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2016-11-09 12:06 - 2016-10-27 18:44 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2016-11-09 12:06 - 2016-10-27 18:17 - 15257088 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2016-11-09 12:06 - 2016-10-27 18:16 - 02920448 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2016-11-09 12:06 - 2016-10-27 18:03 - 01543680 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2016-11-09 12:06 - 2016-10-27 17:54 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2016-11-09 12:06 - 2016-10-27 16:05 - 20304896 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2016-11-09 12:06 - 2016-10-25 16:02 - 03219456 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2016-11-09 12:06 - 2016-10-22 18:54 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2016-11-09 12:06 - 2016-10-22 18:36 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2016-11-09 12:06 - 2016-10-22 18:36 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2016-11-09 12:06 - 2016-10-22 18:35 - 00498688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2016-11-09 12:06 - 2016-10-22 18:35 - 00341504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\html.iec
2016-11-09 12:06 - 2016-10-22 18:34 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2016-11-09 12:06 - 2016-10-22 18:27 - 02287616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2016-11-09 12:06 - 2016-10-22 18:27 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2016-11-09 12:06 - 2016-10-22 18:26 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2016-11-09 12:06 - 2016-10-22 18:22 - 00476160 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2016-11-09 12:06 - 2016-10-22 18:21 - 00663552 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll
2016-11-09 12:06 - 2016-10-22 18:21 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2016-11-09 12:06 - 2016-10-22 18:20 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2016-11-09 12:06 - 2016-10-22 18:09 - 00416256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2016-11-09 12:06 - 2016-10-22 18:04 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2016-11-09 12:06 - 2016-10-22 18:03 - 00091136 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inseng.dll
2016-11-09 12:06 - 2016-10-22 17:59 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2016-11-09 12:06 - 2016-10-22 17:58 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2016-11-09 12:06 - 2016-10-22 17:56 - 00279040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2016-11-09 12:06 - 2016-10-22 17:54 - 00130048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\occache.dll
2016-11-09 12:06 - 2016-10-22 17:46 - 00230400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\webcheck.dll
2016-11-09 12:06 - 2016-10-22 17:45 - 00693248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2016-11-09 12:06 - 2016-10-22 17:44 - 04608000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2016-11-09 12:06 - 2016-10-22 17:43 - 02055680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2016-11-09 12:06 - 2016-10-22 17:43 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2016-11-09 12:06 - 2016-10-22 17:30 - 13654016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2016-11-09 12:06 - 2016-10-22 17:12 - 02444800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2016-11-09 12:06 - 2016-10-22 17:09 - 01312256 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2016-11-09 12:06 - 2016-10-22 17:09 - 00710144 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2016-11-09 12:06 - 2016-10-15 16:31 - 00976896 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2016-11-09 12:06 - 2016-10-15 16:31 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\INETRES.dll
2016-11-09 12:06 - 2016-10-15 16:13 - 00741888 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcomm.dll
2016-11-09 12:06 - 2016-10-15 16:13 - 00084480 _____ (Microsoft Corporation) C:\Windows\SysWOW64\INETRES.dll
2016-11-09 12:06 - 2016-10-11 16:37 - 00370920 _____ (Microsoft Corporation) C:\Windows\system32\clfs.sys
2016-11-09 12:06 - 2016-10-11 16:31 - 01148416 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10.IME
2016-11-09 12:06 - 2016-10-11 16:31 - 01068544 _____ (Microsoft Corporation) C:\Windows\system32\msctf.dll
2016-11-09 12:06 - 2016-10-11 16:31 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2016-11-09 12:06 - 2016-10-11 16:31 - 00457216 _____ (Microsoft Corporation) C:\Windows\system32\imkr80.ime
2016-11-09 12:06 - 2016-10-11 16:31 - 00246784 _____ (Microsoft Corporation) C:\Windows\system32\input.dll
2016-11-09 12:06 - 2016-10-11 16:31 - 00176128 _____ (Microsoft Corporation) C:\Windows\system32\tintlgnt.ime
2016-11-09 12:06 - 2016-10-11 16:31 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\quick.ime
2016-11-09 12:06 - 2016-10-11 16:31 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\qintlgnt.ime
2016-11-09 12:06 - 2016-10-11 16:31 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\phon.ime
2016-11-09 12:06 - 2016-10-11 16:31 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\chajei.ime
2016-11-09 12:06 - 2016-10-11 16:31 - 00175104 _____ (Microsoft Corporation) C:\Windows\system32\cintlgnt.ime
2016-11-09 12:06 - 2016-10-11 16:31 - 00132608 _____ (Microsoft Corporation) C:\Windows\system32\pintlgnt.ime
2016-11-09 12:06 - 2016-10-11 16:18 - 01027584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10.IME
2016-11-09 12:06 - 2016-10-11 16:18 - 00829952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msctf.dll
2016-11-09 12:06 - 2016-10-11 16:18 - 00701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10K.DLL
2016-11-09 12:06 - 2016-10-11 16:18 - 00430080 _____ (Microsoft Corporation) C:\Windows\SysWOW64\imkr80.ime
2016-11-09 12:06 - 2016-10-11 16:18 - 00202240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\input.dll
2016-11-09 12:06 - 2016-10-11 16:18 - 00126976 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tintlgnt.ime
2016-11-09 12:06 - 2016-10-11 16:18 - 00125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\quick.ime
2016-11-09 12:06 - 2016-10-11 16:18 - 00125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qintlgnt.ime
2016-11-09 12:06 - 2016-10-11 16:18 - 00125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\phon.ime
2016-11-09 12:06 - 2016-10-11 16:18 - 00125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\chajei.ime
2016-11-09 12:06 - 2016-10-11 16:18 - 00125952 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cintlgnt.ime
2016-11-09 12:06 - 2016-10-11 16:18 - 00090112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\pintlgnt.ime
2016-11-09 12:06 - 2016-10-11 14:33 - 00187392 _____ (Microsoft Corporation) C:\Windows\SysWOW64\UIAnimation.dll
2016-11-09 12:06 - 2016-10-11 14:06 - 00221184 _____ (Microsoft Corporation) C:\Windows\system32\UIAnimation.dll
2016-11-09 12:06 - 2016-10-10 16:38 - 00154856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2016-11-09 12:06 - 2016-10-10 16:38 - 00095464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2016-11-09 12:06 - 2016-10-10 16:34 - 00210432 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2016-11-09 12:06 - 2016-10-10 16:34 - 00135680 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2016-11-09 12:06 - 2016-10-10 16:34 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2016-11-09 12:06 - 2016-10-10 16:34 - 00028672 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2016-11-09 12:06 - 2016-10-10 16:33 - 01462272 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2016-11-09 12:06 - 2016-10-10 16:33 - 01212928 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2016-11-09 12:06 - 2016-10-10 16:33 - 00730624 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2016-11-09 12:06 - 2016-10-10 16:33 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2016-11-09 12:06 - 2016-10-10 16:33 - 00463872 _____ (Microsoft Corporation) C:\Windows\system32\certcli.dll
2016-11-09 12:06 - 2016-10-10 16:33 - 00345600 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2016-11-09 12:06 - 2016-10-10 16:33 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2016-11-09 12:06 - 2016-10-10 16:33 - 00312320 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2016-11-09 12:06 - 2016-10-10 16:33 - 00190464 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2016-11-09 12:06 - 2016-10-10 16:33 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2016-11-09 12:06 - 2016-10-10 16:33 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2016-11-09 12:06 - 2016-10-10 16:33 - 00043520 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2016-11-09 12:06 - 2016-10-10 16:33 - 00028160 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2016-11-09 12:06 - 2016-10-10 16:33 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2016-11-09 12:06 - 2016-10-10 16:16 - 00690688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2016-11-09 12:06 - 2016-10-10 16:16 - 00666112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpcrt4.dll
2016-11-09 12:06 - 2016-10-10 16:16 - 00553472 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2016-11-09 12:06 - 2016-10-10 16:16 - 00342528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\certcli.dll
2016-11-09 12:06 - 2016-10-10 16:16 - 00261120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2016-11-09 12:06 - 2016-10-10 16:16 - 00254464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2016-11-09 12:06 - 2016-10-10 16:16 - 00223232 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2016-11-09 12:06 - 2016-10-10 16:16 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2016-11-09 12:06 - 2016-10-10 16:16 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2016-11-09 12:06 - 2016-10-10 16:16 - 00141312 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rpchttp.dll
2016-11-09 12:06 - 2016-10-10 16:16 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2016-11-09 12:06 - 2016-10-10 16:16 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2016-11-09 12:06 - 2016-10-10 16:16 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msobjs.dll
2016-11-09 12:06 - 2016-10-10 16:16 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2016-11-09 12:06 - 2016-10-10 16:16 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2016-11-09 12:06 - 2016-10-10 16:02 - 00064000 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2016-11-09 12:06 - 2016-10-10 15:56 - 00159744 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2016-11-09 12:06 - 2016-10-10 15:55 - 00291328 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2016-11-09 12:06 - 2016-10-10 15:55 - 00129536 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2016-11-09 12:06 - 2016-10-10 15:55 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2016-11-09 12:06 - 2016-10-10 15:54 - 00050176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\auditpol.exe
2016-11-09 12:06 - 2016-10-10 15:50 - 00036352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\cryptbase.dll
2016-11-09 12:06 - 2016-10-07 16:40 - 00631176 _____ (Microsoft Corporation) C:\Windows\system32\winresume.efi
2016-11-09 12:06 - 2016-10-07 16:37 - 05547752 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2016-11-09 12:06 - 2016-10-07 16:37 - 00706792 _____ (Microsoft Corporation) C:\Windows\system32\winload.efi
2016-11-09 12:06 - 2016-10-07 16:35 - 01732864 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2016-11-09 12:06 - 2016-10-07 16:32 - 03649536 _____ (Microsoft Corporation) C:\Windows\system32\MSVidCtl.dll
2016-11-09 12:06 - 2016-10-07 16:32 - 01163264 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2016-11-09 12:06 - 2016-10-07 16:32 - 00880640 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2016-11-09 12:06 - 2016-10-07 16:32 - 00877056 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2016-11-09 12:06 - 2016-10-07 16:32 - 00503808 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2016-11-09 12:06 - 2016-10-07 16:32 - 00419840 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2016-11-09 12:06 - 2016-10-07 16:32 - 00362496 _____ (Microsoft Corporation) C:\Windows\system32\wow64win.dll
2016-11-09 12:06 - 2016-10-07 16:32 - 00243712 _____ (Microsoft Corporation) C:\Windows\system32\wow64.dll
2016-11-09 12:06 - 2016-10-07 16:32 - 00215552 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2016-11-09 12:06 - 2016-10-07 16:32 - 00084992 _____ (Microsoft Corporation) C:\Windows\system32\asycfilt.dll
2016-11-09 12:06 - 2016-10-07 16:32 - 00063488 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2016-11-09 12:06 - 2016-10-07 16:32 - 00059904 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2016-11-09 12:06 - 2016-10-07 16:32 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2016-11-09 12:06 - 2016-10-07 16:32 - 00044032 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2016-11-09 12:06 - 2016-10-07 16:32 - 00034816 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2016-11-09 12:06 - 2016-10-07 16:32 - 00016384 _____ (Microsoft Corporation) C:\Windows\system32\ntvdm64.dll
2016-11-09 12:06 - 2016-10-07 16:32 - 00013312 _____ (Microsoft Corporation) C:\Windows\system32\wow64cpu.dll
2016-11-09 12:06 - 2016-10-07 16:32 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2016-11-09 12:06 - 2016-10-07 16:32 - 00006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:32 - 00005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:32 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:32 - 00004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:32 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:32 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:32 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:32 - 00004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:32 - 00003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:32 - 00003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:18 - 04000488 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe
2016-11-09 12:06 - 2016-10-07 16:18 - 03944680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe
2016-11-09 12:06 - 2016-10-07 16:15 - 01314112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2016-11-09 12:06 - 2016-10-07 16:12 - 02291712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MSVidCtl.dll
2016-11-09 12:06 - 2016-10-07 16:12 - 01114112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kernel32.dll
2016-11-09 12:06 - 2016-10-07 16:12 - 00644096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\advapi32.dll
2016-11-09 12:06 - 2016-10-07 16:12 - 00581632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2016-11-09 12:06 - 2016-10-07 16:12 - 00275456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\KernelBase.dll
2016-11-09 12:06 - 2016-10-07 16:12 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\asycfilt.dll
2016-11-09 12:06 - 2016-10-07 16:12 - 00050688 _____ (Microsoft Corporation) C:\Windows\SysWOW64\appidapi.dll
2016-11-09 12:06 - 2016-10-07 16:12 - 00043008 _____ (Microsoft Corporation) C:\Windows\SysWOW64\srclient.dll
2016-11-09 12:06 - 2016-10-07 16:12 - 00006656 _____ (Microsoft Corporation) C:\Windows\SysWOW64\apisetschema.dll
2016-11-09 12:06 - 2016-10-07 16:12 - 00005120 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-file-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:12 - 00005120 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll
2016-11-09 12:06 - 2016-10-07 16:12 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-synch-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:12 - 00004096 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-localization-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-memory-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:12 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-heap-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-string-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-profile-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-io-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-handle-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-fibers-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-delayload-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-debug-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-datetime-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:12 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-console-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 16:04 - 00148480 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2016-11-09 12:06 - 2016-10-07 16:04 - 00062464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2016-11-09 12:06 - 2016-10-07 16:04 - 00017920 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2016-11-09 12:06 - 2016-10-07 16:01 - 00338432 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2016-11-09 12:06 - 2016-10-07 16:00 - 00296960 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2016-11-09 12:06 - 2016-10-07 15:56 - 00112640 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2016-11-09 12:06 - 2016-10-07 15:50 - 00025600 _____ (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe
2016-11-09 12:06 - 2016-10-07 15:50 - 00014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll
2016-11-09 12:06 - 2016-10-07 15:50 - 00007680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe
2016-11-09 12:06 - 2016-10-07 15:50 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\user.exe
2016-11-09 12:06 - 2016-10-07 15:49 - 00006144 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-security-base-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 15:49 - 00004608 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 15:49 - 00003584 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-xstate-l1-1-0.dll
2016-11-09 12:06 - 2016-10-07 15:49 - 00003072 ____H (Microsoft Corporation) C:\Windows\SysWOW64\api-ms-win-core-util-l1-1-0.dll
2016-11-09 12:06 - 2016-10-05 15:54 - 00090112 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\bowser.sys
2016-11-09 12:06 - 2016-09-15 15:56 - 00041984 _____ (Microsoft Corporation) C:\Windows\system32\UtcResources.dll
2016-11-09 12:06 - 2016-09-13 16:37 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2016-11-09 12:06 - 2016-09-13 16:11 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2016-11-09 12:06 - 2016-09-09 19:20 - 00756736 _____ (Microsoft Corporation) C:\Windows\system32\win32spl.dll
2016-11-09 12:06 - 2016-09-09 19:00 - 00497152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\win32spl.dll
2016-11-09 12:06 - 2016-08-22 17:19 - 01386496 _____ (Microsoft Corporation) C:\Windows\system32\diagtrack.dll
2016-11-06 12:45 - 2016-11-06 12:45 - 00171320 _____ C:\Users\Uživatel\Downloads\William Adams.odt
2016-11-06 12:44 - 2016-11-06 12:44 - 00171320 _____ C:\Users\Uživatel\Documents\William Adams.odt
2016-10-25 19:07 - 2016-11-22 06:34 - 00003974 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{E61A3C61-27B9-4506-A1CE-13A1788EF815}
2016-10-24 14:56 - 2016-10-24 14:56 - 37853246 _____ C:\Users\Uživatel\Downloads\CoD_1.5_Patch.exe
2016-10-24 14:53 - 2016-10-24 14:57 - 97720744 _____ C:\Users\Uživatel\Downloads\Nepotvrzeno 954502.crdownload

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-11-23 16:09 - 2016-08-22 15:58 - 00000000 ____D C:\Users\Uživatel\AppData\Roaming\Skype
2016-11-23 16:07 - 2016-10-08 12:28 - 00000000 ____D C:\Program Files (x86)\Hi-Rez Studios
2016-11-23 16:07 - 2016-09-22 15:59 - 00002108 ____H C:\Windows\Tasks\{657DFCCF-B080-44B1-9AEA-61676011A1AE}.job
2016-11-23 16:07 - 2016-08-06 20:04 - 00000000 ____D C:\Program Files (x86)\Steam
2016-11-23 16:07 - 2016-05-05 12:03 - 00000948 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-11-23 16:06 - 2016-05-30 10:03 - 00000000 ____D C:\ProgramData\NVIDIA
2016-11-23 16:06 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2016-11-22 19:21 - 2009-07-14 05:45 - 00022096 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2016-11-22 19:21 - 2009-07-14 05:45 - 00022096 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2016-11-22 17:05 - 2016-05-05 12:03 - 00000952 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-11-22 07:40 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2016-11-18 11:03 - 2016-06-09 13:06 - 00000000 ____D C:\ProgramData\Origin
2016-11-18 10:59 - 2016-06-09 13:06 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Origin
2016-11-18 09:24 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2016-11-18 09:16 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\Help
2016-11-18 09:08 - 2016-08-22 15:58 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-11-18 09:08 - 2016-08-22 15:58 - 00000000 ____D C:\ProgramData\Skype
2016-11-18 08:54 - 2016-07-19 09:45 - 00000000 ____D C:\Users\Uživatel\AppData\Local\CrashDumps
2016-11-18 08:54 - 2016-05-03 14:31 - 00000000 ____D C:\Windows\Panther
2016-11-14 18:31 - 2011-04-12 09:34 - 00669176 _____ C:\Windows\system32\perfh005.dat
2016-11-14 18:31 - 2011-04-12 09:34 - 00141334 _____ C:\Windows\system32\perfc005.dat
2016-11-14 18:31 - 2009-07-14 06:13 - 01585684 _____ C:\Windows\system32\PerfStringBackup.INI
2016-11-14 18:25 - 2016-05-05 12:06 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2016-11-10 11:58 - 2016-05-05 12:02 - 00003842 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1462446162
2016-11-10 11:58 - 2016-05-05 12:02 - 00000000 ____D C:\Program Files (x86)\Opera
2016-11-10 09:44 - 2016-06-12 11:34 - 00000000 ____D C:\Users\Uživatel\Counter-Strike 1.6
2016-11-09 19:42 - 2016-05-30 11:04 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2016-11-09 19:26 - 2009-07-14 05:45 - 00329056 _____ C:\Windows\system32\FNTCACHE.DAT
2016-11-09 14:06 - 2016-05-04 17:34 - 00000000 ____D C:\Windows\system32\MRT
2016-11-09 14:03 - 2016-05-04 17:34 - 141011376 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2016-11-06 11:43 - 2016-10-08 21:30 - 00000000 ____D C:\Users\Uživatel\Desktop\ZBRANĚ
2016-11-03 13:19 - 2016-05-30 11:04 - 00002471 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2016-10-30 19:40 - 2016-05-05 13:20 - 00000000 ____D C:\Users\Uživatel\AppData\Local\Google
2016-10-25 18:17 - 2009-07-14 06:08 - 00032556 _____ C:\Windows\Tasks\SCHEDLGU.TXT

==================== Files in the root of some directories =======

2016-09-01 11:39 - 2016-09-01 11:39 - 0097983 _____ () C:\Users\Uživatel\AppData\Roaming\Script name.vbs
2016-08-30 06:27 - 2016-08-30 06:27 - 0000003 _____ () C:\Users\Uživatel\AppData\Local\updater.log
2016-08-30 06:27 - 2016-08-30 06:27 - 0000424 _____ () C:\Users\Uživatel\AppData\Local\UserProducts.xml
2016-07-24 16:33 - 2016-07-24 16:34 - 0000000 _____ () C:\Users\Uživatel\AppData\Local\{3FB7F64B-ABB1-4FBC-BE83-6141D5084F76}
2016-11-18 10:51 - 2016-11-18 10:51 - 0037824 _____ () C:\ProgramData\1479462665.bdinstall.bin
2016-11-18 10:53 - 2016-11-18 10:53 - 0097861 _____ () C:\ProgramData\1479462666.bdinstall.bin
2016-05-03 14:35 - 2016-05-03 14:35 - 0000000 ____H () C:\ProgramData\DP45977C.lfl

Files to move or delete:
====================
C:\Windows\Tasks\{657DFCCF-B080-44B1-9AEA-61676011A1AE}.job

Some files in TEMP:
====================
C:\Users\Uživatel\AppData\Local\Temp\7za.exe
C:\Users\Uživatel\AppData\Local\Temp\DaS_21.exe
C:\Users\Uživatel\AppData\Local\Temp\hijackthis.exe
C:\Users\Uživatel\AppData\Local\Temp\libeay32.dll
C:\Users\Uživatel\AppData\Local\Temp\msvcr120.dll
C:\Users\Uživatel\AppData\Local\Temp\NirCmd.exe
C:\Users\Uživatel\AppData\Local\Temp\PEVZ.EXE
C:\Users\Uživatel\AppData\Local\Temp\remove.exe
C:\Users\Uživatel\AppData\Local\Temp\sed.exe
C:\Users\Uživatel\AppData\Local\Temp\shortcut.exe
C:\Users\Uživatel\AppData\Local\Temp\sqlite3.dll
C:\Users\Uživatel\AppData\Local\Temp\swreg.exe
C:\Users\Uživatel\AppData\Local\Temp\swxcacls.exe
C:\Users\Uživatel\AppData\Local\Temp\wget.exe
C:\Users\Uživatel\AppData\Local\Temp\zoek-delete.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2016-11-22 07:32

==================== End of FRST.txt ============================

Mas tam Msie, Firefox, Operu a Chrome
Problem je vo vsetkych, alebo len v Chrome?

problém je jen v Chrome. už jsem zkusila ho odinstalovat a znovu nainstalovat, ale problém je stejný.

zopakuj zoek - chcem vidiet log

VIRY.CZ

závada

závada

Re: závada

Re: závada

Re: závada

Re: závada

Re: závada

Re: závada

Re: závada

Re: závada

Re: závada

Re: závada

Re: závada

Re: závada

Re: závada