viry+malware
Napsal: 05 led 2018 11:30
Vazeni,
obracim se k vam o pomoc. Coby asi total trull jsem si rekl, ze udelam cosi pro PC. Tudiz jsem vyhledal+navstivil stranky tykajici update ovladacu - ruzne. Nemel jsem to delat!! Po docasnem vypnuti Avastu sice nabehly vselike updaty ovladacu, ale prakticky spadl cely OS.
Nyni nelze ani kopirovat v prostredi Windows explorer skoro zadny soubor. Kopirovani zustava viset na 5 - 10 sec do ukonceni.
To ale neni nejhorsi. Pri otevreni prohlizece naskakuji nevyzadane PU (prestoze bylo jejich otevirani zakazano) jako napr:
http://vulcan24mania.com?ref=fap_w11807p113_24test
https://www.traffic-media.co/mg15068.html
http://distero.com/rs/?wsa=5a2790eabf3b ... pp.cz&r=js
checking visitor Opera
Puvodni prohlizec, nastaveny jako "Default" byla Opera. Nyni odinstalovana.
Zkouseje spustit napr. mbam-chameleon-3.1.33.0, nebo mb3-setup-consumer-3.3.1.2183-1.0.262-1.0.3374 se nikam nedostanu -
hlasi chybu hned po startu pri update a nepokracuji.
Vim, ze jsem udelal obrovskou chybu, lec presto prosim, muzete-li poradte.
Predem dekuji
Jelikoz nemohu(??) prilozit zadny soubor, uvadim zde:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 02.01.2018
Ran by Karel (administrator) on TRETI-40CAE45CA (05-01-2018 09:55:08)
Running from C:\Documents and Settings\Karel\Dokumenty\Downloads
Loaded Profiles: Karel (Available Profiles: Karel)
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) Language: Čeština
Internet Explorer Version 8 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Digital Care Solutions) C:\Program Files\BDServices\BitDefenderCOM.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(CANON INC.) C:\WINDOWS\system32\spool\drivers\w32x86\3\CNAP3LAK.EXE
(CANON INC.) C:\WINDOWS\system32\spool\drivers\w32x86\3\CNACESWK.EXE
(CANON INC.) C:\WINDOWS\system32\spool\drivers\w32x86\3\CNACESWK.EXE
(CANON INC.) C:\WINDOWS\system32\spool\drivers\w32x86\3\CNACESWK.EXE
(Realtek Semiconductor Corp.) C:\WINDOWS\soundman.exe
(Microsoft Corporation) C:\Program Files\Messenger\msmsgs.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\Program Files\Windows Desktop Search\WindowsSearch.exe
() C:\Documents and Settings\Karel\Data aplikací\Seznam.cz\bin\szndesktop.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [DWPersistentQueuedReporting] => C:\Program Files\Common Files\Microsoft Shared\DW\DWTRIG20.EXE [39264 2007-03-13] (Microsoft Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [246120 2017-12-27] (AVAST Software)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
HKLM\...\Run: [CNAP3 Launcher] => C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\CNAP3LAK.EXE [228520 2012-06-14] (CANON INC.)
HKLM\...\Run: [seznam-listicka-distribuce] => C:\Program Files\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM\...\Run: [NVMixerTray] => C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe [131072 2004-12-20] (NVIDIA Corporation)
HKLM\...\Run: [SoundMan] => C:\WINDOWS\SOUNDMAN.EXE [577536 2000-01-01] (Realtek Semiconductor Corp.)
Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll [2006-03-22] (ATI Technologies Inc.)
HKU\S-1-5-19\...\RunOnce: [_nltide_2] => regsvr32 /s /n /i:U shell32
HKU\S-1-5-20\...\RunOnce: [_nltide_2] => regsvr32 /s /n /i:U shell32
HKU\S-1-5-21-682003330-2000478354-1417001333-1003\...\Run: [MSMSGS] => C:\Program Files\Messenger\msmsgs.exe [1695232 2008-04-14] (Microsoft Corporation)
HKU\S-1-5-21-682003330-2000478354-1417001333-1003\...\Run: [cz.seznam.software.autoupdate] => C:\Documents and Settings\Karel\Data aplikací\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-682003330-2000478354-1417001333-1003\...\Run: [cz.seznam.software.szndesktop] => C:\Documents and Settings\Karel\Data aplikací\Seznam.cz\bin\wszndesktop.exe [103080 2015-05-26] ()
HKU\S-1-5-18\...\RunOnce: [_nltide_2] => regsvr32 /s /n /i:U shell32
HKLM\...\Providers\NetWare or Compatible Network: C:\WINDOWS\system32\nwprovau.dll [141824 2008-04-14] (Microsoft Corporation)
Lsa: [Authentication Packages] msv1_0 nwprovau
ShellExecuteHooks: Windows Desktop Search Namespace Manager - {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [304128 2009-05-24] (Microsoft Corporation)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Windows Search.lnk [2017-12-18]
ShortcutTarget: Windows Search.lnk -> C:\Program Files\Windows Desktop Search\WindowsSearch.exe (Microsoft Corporation)
GroupPolicy: Restriction ? <==== ATTENTION
GroupPolicy\User: Restriction ? <==== ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{F900A330-7169-4B45-ABA1-846E3C577833}: [DhcpNameServer] 10.0.0.138
Internet Explorer:
==================
HKU\S-1-5-21-682003330-2000478354-1417001333-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/
SearchScopes: HKU\S-1-5-21-682003330-2000478354-1417001333-1003 -> {13D86B7F-E42B-45B6-A234-3527960669CF} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_29530
SearchScopes: HKU\S-1-5-21-682003330-2000478354-1417001333-1003 -> {3A038EBF-82B4-4B37-8612-7EB6D4719D2B} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_29530
SearchScopes: HKU\S-1-5-21-682003330-2000478354-1417001333-1003 -> {54B11636-3187-44CA-91DA-9DB8BB316E41} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-682003330-2000478354-1417001333-1003 -> {56D3E4C7-585D-4C3F-A9DB-D9C3CEC8FEB3} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-682003330-2000478354-1417001333-1003 -> {933CD139-6DCE-435D-857E-24B5D2B94C5F} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-682003330-2000478354-1417001333-1003 -> {93FB4665-73F7-467D-B0C1-64C50A04F3BB} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-682003330-2000478354-1417001333-1003 -> {9960FE2E-ACA0-4888-92C2-DF68C329C9A8} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-682003330-2000478354-1417001333-1003 -> {A6FE56D4-B0C6-4DD4-959A-B31F98B3540E} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_29530
SearchScopes: HKU\S-1-5-21-682003330-2000478354-1417001333-1003 -> {BCA606F7-09C4-4851-BEB7-63129D72EB7E} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_29530
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-11-17] (AVAST Software)
Handler: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files\Belarc\BelarcAdvisor\System\BAVoilaX.dll [2016-01-04] (Belarc, Inc.)
FireFox:
========
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: (Microsoft .NET Framework Assistant) - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2017-03-18] [Legacy] [not signed]
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2018-01-04] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2018-01-04] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Documents and Settings\Karel\Local Settings\Data aplikací\Google\Chrome\User Data\Default [2018-01-05]
CHR Extension: (Prezentace) - C:\Documents and Settings\Karel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-01-04]
CHR Extension: (Dokumenty) - C:\Documents and Settings\Karel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-01-04]
CHR Extension: (Disk Google) - C:\Documents and Settings\Karel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-01-04]
CHR Extension: (YouTube) - C:\Documents and Settings\Karel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-01-04]
CHR Extension: (Avast SafePrice) - C:\Documents and Settings\Karel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2018-01-04]
CHR Extension: (Tabulky) - C:\Documents and Settings\Karel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-01-04]
CHR Extension: (Dokumenty Google offline) - C:\Documents and Settings\Karel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-01-04]
CHR Extension: (Avast Online Security) - C:\Documents and Settings\Karel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-01-04]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Documents and Settings\Karel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-01-04]
CHR Extension: (Gmail) - C:\Documents and Settings\Karel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-01-04]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 6to4; C:\WINDOWS\System32\6to4svc.dll [100864 2013-08-22] (Microsoft Corporation)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5906816 2017-12-27] (AVAST Software)
S2 ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [520192 2006-03-17] () [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [301168 2017-12-27] (AVAST Software)
R2 BitDefenderCOM; C:\Program Files\BDServices\BitDefenderCom.exe [776192 2017-04-13] (Digital Care Solutions) [File not signed]
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2000856 2016-06-10] (ESET)
R2 NWCWorkstation; C:\WINDOWS\System32\nwwks.dll [65536 2008-04-14] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 AIRPLUS; C:\WINDOWS\System32\DRIVERS\airplus.sys [255360 2006-08-15] (D-Link)
R3 ALCXWDM; C:\WINDOWS\System32\drivers\ALCXWDM.SYS [4122368 2000-01-01] (Realtek Semiconductor Corp.)
R1 AmdPPM; C:\WINDOWS\System32\DRIVERS\AmdPPM.sys [33792 2007-04-16] (Advanced Micro Devices)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [158224 2017-12-27] (AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriverx.sys [255584 2017-12-27] (AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidshx.sys [157376 2017-12-27] (AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswblogx.sys [276696 2017-12-27] (AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbunivx.sys [50344 2017-12-27] (AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [118144 2017-12-27] (AVAST Software)
S3 aswHwid; C:\WINDOWS\System32\drivers\aswHwid.sys [42824 2017-12-27] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [39784 2017-09-01] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [124408 2017-12-27] (AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr.sys [70208 2017-12-27] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [70832 2017-12-27] (AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [783104 2017-12-27] (AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [390272 2017-12-27] (AVAST Software)
R3 aswStmXP; C:\WINDOWS\System32\drivers\aswStmXP.sys [205360 2017-12-27] (AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [294680 2017-12-27] (AVAST Software)
R1 BANTExt; C:\WINDOWS\System32\Drivers\BANTExt.sys [3840 2015-11-19] () [File not signed]
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [206496 2016-06-28] (ESET)
R1 ehdrv; C:\WINDOWS\System32\DRIVERS\ehdrv.sys [156320 2016-06-28] (ESET)
R2 ekbdflt; C:\WINDOWS\System32\DRIVERS\ekbdflt.sys [121504 2016-06-28] (ESET)
R1 epfw; C:\WINDOWS\System32\DRIVERS\epfw.sys [162472 2016-06-28] (ESET)
R3 Epfwndis; C:\WINDOWS\System32\DRIVERS\Epfwndis.sys [55968 2016-06-28] (ESET)
R1 epfwtdi; C:\WINDOWS\System32\DRIVERS\epfwtdi.sys [77992 2016-06-28] (ESET)
R0 FTTXR5_O; C:\WINDOWS\System32\DRIVERS\fttxr5_O.sys [177152 2008-01-16] (Promise Technology, Inc.)
R0 mv61xxmm; C:\WINDOWS\system32\Drivers\mv61xxmm.sys [14184 2013-08-22] (Marvell Semiconductor Inc.)
R0 mv64xxmm; C:\WINDOWS\system32\Drivers\mv64xxmm.sys [5632 2013-08-22] (Marvell Semiconductor Inc.) [File not signed]
R0 mvxxmm; C:\WINDOWS\system32\Drivers\mvxxmm.sys [14184 2013-08-22] (Marvell Semiconductor Inc.)
R0 nvatabus; C:\WINDOWS\System32\DRIVERS\nvatabus.sys [89856 2006-02-26] (NVIDIA Corporation)
S3 nvax; C:\WINDOWS\System32\drivers\nvax.sys [53376 2000-01-01] (NVIDIA Corporation)
R0 nvcchflt; C:\WINDOWS\System32\DRIVERS\nvcchflt.sys [16640 2006-02-26] (NVIDIA Corporation)
R3 NVENETFD; C:\WINDOWS\System32\DRIVERS\NVENETFD.sys [54784 2000-01-01] (NVIDIA Corporation)
R0 nvgts; C:\WINDOWS\System32\DRIVERS\nvgts.sys [145952 2000-01-01] (NVIDIA Corporation)
R3 nvnetbus; C:\WINDOWS\System32\DRIVERS\nvnetbus.sys [22016 2000-01-01] (NVIDIA Corporation)
S3 nvnforce; C:\WINDOWS\System32\drivers\nvapu.sys [414464 2000-01-01] (NVIDIA Corporation)
R0 nvraid; C:\WINDOWS\system32\Drivers\nvraid.sys [89344 2013-08-22] (NVIDIA Corporation) [File not signed]
R2 NwlnkIpx; C:\WINDOWS\System32\DRIVERS\nwlnkipx.sys [88320 2008-04-13] (Microsoft Corporation)
R2 NwlnkNb; C:\WINDOWS\System32\DRIVERS\nwlnknb.sys [63232 2001-10-25] (Microsoft Corporation)
R2 NwlnkSpx; C:\WINDOWS\System32\DRIVERS\nwlnkspx.sys [55936 2001-10-25] (Microsoft Corporation)
R3 NWRDR; C:\WINDOWS\System32\DRIVERS\nwrdr.sys [163584 2008-04-13] (Microsoft Corporation)
R1 Tcpip6; C:\WINDOWS\System32\DRIVERS\tcpip6.sys [226880 2013-08-22] (Microsoft Corporation)
S3 Trufos; C:\WINDOWS\System32\DRIVERS\Trufos.sys [378336 2017-04-13] (BitDefender S.R.L.)
S4 IntelIde; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-01-05 09:54 - 2018-01-05 09:55 - 000000000 ____D C:\FRST
2018-01-05 09:13 - 2018-01-05 09:25 - 000000000 ____D C:\Documents and Settings\Karel\Dokumenty\Viry-komunikace
2018-01-04 22:37 - 2018-01-05 09:07 - 000000000 ____D C:\rsit
2018-01-04 22:37 - 2018-01-05 09:06 - 000000000 ____D C:\Program Files\trend micro
2018-01-04 21:15 - 2018-01-04 22:57 - 000001136 _____ C:\Documents and Settings\Karel\Dokumenty\problem-pomoc.txt
2018-01-04 21:03 - 2018-01-04 21:03 - 000000419 _____ C:\Documents and Settings\Karel\Dokumenty\problem.txt
2018-01-04 19:40 - 2018-01-04 19:40 - 000000000 ____D C:\Documents and Settings\All Users\Data aplikací\MB2Migration
2018-01-04 16:01 - 2018-01-04 16:01 - 000000778 _____ C:\Documents and Settings\All Users\Plocha\Malwarebytes Anti-Malware.lnk
2018-01-04 16:01 - 2018-01-04 16:01 - 000000000 ____D C:\Program Files\Malwarebytes Anti-Malware
2018-01-04 16:01 - 2018-01-04 16:01 - 000000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Malwarebytes Anti-Malware
2018-01-04 16:01 - 2018-01-04 16:01 - 000000000 ____D C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2018-01-04 16:01 - 2016-03-10 14:08 - 000024448 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2018-01-04 16:00 - 2016-03-10 14:09 - 000123264 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2018-01-04 15:55 - 2018-01-04 15:55 - 000000000 ____D C:\Program Files\mbam-chameleon-3.1.33.0
2018-01-04 15:19 - 2018-01-04 15:19 - 000000000 ____D C:\Documents and Settings\Karel\Local Settings\Data aplikací\Google
2018-01-04 14:33 - 2018-01-04 14:33 - 000106496 _____ C:\WINDOWS\Minidump\Mini010418-02.dmp
2018-01-04 14:24 - 2018-01-04 14:24 - 000001820 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\Google Chrome.lnk
2018-01-04 14:24 - 2018-01-04 14:24 - 000001814 _____ C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
2018-01-04 14:22 - 2018-01-05 09:27 - 000000938 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2018-01-04 14:22 - 2018-01-05 08:20 - 000000934 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2018-01-04 14:22 - 2018-01-04 14:24 - 000000000 ____D C:\Program Files\Google
2018-01-04 14:20 - 2018-01-04 14:21 - 000000000 ____D C:\Documents and Settings\Karel\Local Settings\Data aplikací\Deployment
2018-01-04 14:12 - 2018-01-04 14:12 - 000172657 _____ C:\Documents and Settings\Karel\Dokumenty\188_(671_3)T-a.pdf
2018-01-04 14:07 - 2018-01-04 14:07 - 040546584 _____ (Opera Software) C:\Documents and Settings\Karel\Dokumenty\Opera_40.0.2308.90_Setup.exe
2018-01-04 13:26 - 2018-01-04 13:26 - 000106496 _____ C:\WINDOWS\Minidump\Mini010418-01.dmp
2018-01-04 13:09 - 2018-01-04 13:14 - 000000000 ____D C:\Documents and Settings\Karel\Local Settings\Data aplikací\Seznam.cz
2018-01-04 13:09 - 2018-01-04 13:09 - 000000869 _____ C:\Documents and Settings\Karel\Plocha\Seznam.cz.lnk
2018-01-04 13:09 - 2018-01-04 13:09 - 000000869 _____ C:\Documents and Settings\Karel\Nabídka Start\Seznam.cz.lnk
2018-01-04 13:09 - 2018-01-04 13:09 - 000000000 ____D C:\Documents and Settings\Karel\Local Settings\Data aplikací\Crashpad
2018-01-04 13:06 - 2018-01-04 13:09 - 000000000 ____D C:\Documents and Settings\Karel\Data aplikací\Seznam Browser
2018-01-04 13:02 - 2018-01-04 13:02 - 000000000 ____D C:\Documents and Settings\All Users\Data aplikací\SWCUTemp
2018-01-04 12:57 - 2018-01-04 12:57 - 000000000 ____D C:\Documents and Settings\Karel\Opera Installer
2018-01-04 12:36 - 2018-01-04 12:36 - 003269840 _____ (Seznam.cz) C:\Documents and Settings\Karel\Dokumenty\Seznam.cz__120001.exe
2018-01-04 12:23 - 2017-03-09 16:47 - 000000804 _____ C:\Documents and Settings\Karel\Plocha\Internet Explorer.lnk
2018-01-04 12:11 - 2018-01-04 12:11 - 000734976 _____ (Opera Software) C:\Documents and Settings\Karel\Dokumenty\OperaSetupWinxpvista.exe
2018-01-04 11:54 - 2018-01-04 11:54 - 000000790 _____ C:\Documents and Settings\Karel\Dokumenty\upozornění Express.txt
2018-01-04 09:09 - 2018-01-04 09:09 - 000001152 _____ C:\Documents and Settings\Karel\Dokumenty\ping.seznam+centrum.txt
2018-01-04 08:21 - 2018-01-04 08:21 - 000001147 _____ C:\Documents and Settings\Karel\Dokumenty\Avast detected a collision with another program.txt
2018-01-04 08:04 - 2018-01-04 08:11 - 000002997 _____ C:\Documents and Settings\Karel\Dokumenty\aplikace bránící správné funkci produktů ESET.txt
2018-01-03 21:11 - 2018-01-04 15:48 - 000000000 ____D C:\AdwCleaner
2018-01-03 20:50 - 2018-01-03 20:50 - 003712064 _____ C:\Documents and Settings\Karel\Dokumenty\adwcleaner_5.201.exe
2018-01-03 20:49 - 2018-01-03 20:49 - 004031440 _____ C:\Documents and Settings\Karel\Dokumenty\adwcleaner_6.044.exe
2018-01-03 20:45 - 2018-01-03 20:46 - 003910208 _____ C:\Documents and Settings\Karel\Dokumenty\adwcleaner.exe
2018-01-03 20:08 - 2018-01-03 20:08 - 000000000 ____D C:\Documents and Settings\Karel\Data aplikací\ESET
2018-01-03 19:52 - 2018-01-03 19:52 - 000013376 _____ C:\Documents and Settings\Karel\Dokumenty\Eset.txt
2018-01-03 18:19 - 2018-01-03 18:19 - 000000000 ____D C:\Documents and Settings\LocalService\Local Settings\Data aplikací\ESET
2018-01-03 18:16 - 2018-01-03 18:16 - 000001795 _____ C:\Documents and Settings\All Users\Plocha\ESET Ochrana bankovnictví a online plateb.lnk
2018-01-03 18:16 - 2018-01-03 18:16 - 000000000 ____D C:\Program Files\ESET
2018-01-03 18:16 - 2018-01-03 18:16 - 000000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\ESET
2018-01-03 18:16 - 2018-01-03 18:16 - 000000000 ____D C:\Documents and Settings\All Users\Data aplikací\ESET
2018-01-03 18:09 - 2018-01-03 18:09 - 003137664 _____ (ESET) C:\Documents and Settings\Karel\Dokumenty\eset_smart_security_live_installer.exe
2018-01-03 18:02 - 2018-01-03 18:26 - 000000000 ____D C:\Documents and Settings\Karel\Local Settings\Data aplikací\ESET
2018-01-03 17:59 - 2018-01-03 18:02 - 006967928 _____ (ESET spol. s r.o.) C:\Documents and Settings\Karel\Dokumenty\esetonlinescanner_csy.exe
2018-01-02 07:12 - 2018-01-02 07:12 - 000134163 _____ C:\Documents and Settings\Karel\Dokumenty\993_(400_121)Z.pdf
2018-01-02 07:11 - 2018-01-02 07:11 - 000133487 _____ C:\Documents and Settings\Karel\Dokumenty\991_(713_102)T.pdf
2018-01-02 07:10 - 2018-01-02 07:10 - 000172897 _____ C:\Documents and Settings\Karel\Dokumenty\188_(671_4)Z (1).pdf
2018-01-02 07:08 - 2018-01-02 07:08 - 000178665 _____ C:\Documents and Settings\Karel\Dokumenty\154_(671_4)Z.pdf
2018-01-01 19:19 - 2018-01-01 19:22 - 000003354 _____ C:\Documents and Settings\Karel\Dokumenty\Blue-view.txt
2018-01-01 19:19 - 2018-01-01 19:19 - 000001206 _____ C:\Documents and Settings\Karel\Dokumenty\Blue-view-1.txt
2018-01-01 19:07 - 2018-01-01 19:07 - 000106496 _____ C:\WINDOWS\Minidump\Mini010118-01.dmp
2018-01-01 10:41 - 2018-01-01 10:42 - 000000000 ____D C:\Documents and Settings\Karel\Dokumenty\Kontrola_e-mailu
2018-01-01 09:50 - 2018-01-01 09:51 - 000000000 ____D C:\Documents and Settings\Karel\Dokumenty\DHCP server pro Windows
2018-01-01 09:16 - 2018-01-01 09:16 - 000000955 _____ C:\Documents and Settings\Karel\Dokumenty\Missing Security Updates.txt
2018-01-01 09:13 - 2018-01-01 09:13 - 000001884 _____ C:\Documents and Settings\Karel\Dokumenty\Poznámky k síti.txt
2018-01-01 08:59 - 2018-01-01 08:59 - 000054586 _____ C:\Documents and Settings\Karel\Dokumenty\Belarc Advisor Computer Profile_leden-2018.htm
2018-01-01 08:59 - 2018-01-01 08:59 - 000000000 ____D C:\Documents and Settings\Karel\Dokumenty\Belarc Advisor Computer Profile_leden-2018_files
2018-01-01 08:23 - 2018-01-01 08:24 - 000000000 ____D C:\Documents and Settings\Karel\Dokumenty\Doporuceni_pro_Outlook-Express
2017-12-31 09:08 - 2017-12-31 09:15 - 000001043 _____ C:\Documents and Settings\Karel\Dokumenty\Výpis událostí.txt
2017-12-31 08:51 - 2017-12-31 08:52 - 000004534 _____ C:\Documents and Settings\Karel\Dokumenty\znova.txt
2017-12-31 08:48 - 2017-12-31 08:48 - 000106496 _____ C:\WINDOWS\Minidump\Mini123117-02.dmp
2017-12-31 08:47 - 2017-12-31 08:47 - 000654920 _____ C:\Documents and Settings\Karel\Dokumenty\mtinst.exe
2017-12-31 07:48 - 2017-12-31 07:48 - 000008454 _____ C:\Documents and Settings\Karel\Dokumenty\View-3.txt
2017-12-31 07:47 - 2017-12-31 07:47 - 000002154 _____ C:\Documents and Settings\Karel\Dokumenty\View.txt
2017-12-31 07:45 - 2017-12-31 07:54 - 000003362 _____ C:\Documents and Settings\Karel\Dokumenty\zaznam_Blue-Screen-View.txt
2017-12-31 07:37 - 2017-12-31 07:41 - 000000000 ____D C:\Documents and Settings\Karel\Nová složka (1)
2017-12-31 07:32 - 2017-12-31 07:32 - 000106496 _____ C:\WINDOWS\Minidump\Mini123117-01.dmp
2017-12-31 07:08 - 2017-12-31 07:08 - 000000000 _____ C:\Documents and Settings\Karel\last.dump
2017-12-30 21:31 - 2017-12-31 13:49 - 000001280 _____ C:\Documents and Settings\Karel\Dokumenty\odečty_2017-12.txt
2017-12-30 20:36 - 2017-12-30 20:37 - 000000000 ____D C:\Program Files\Realtek AC97
2017-12-30 20:28 - 2017-12-30 20:28 - 000000000 ____D C:\Program Files\Common Files\NVIDIA Shared
2017-12-30 20:28 - 2017-12-30 20:28 - 000000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\NVIDIA Corporation
2017-12-30 20:27 - 2005-09-28 11:08 - 000176128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvuaudio.exe
2017-12-30 20:27 - 2000-01-01 01:00 - 000004624 _____ C:\WINDOWS\system32\nvaudio.nvu
2017-12-30 20:24 - 2000-01-01 01:00 - 000937984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvmcp.sys
2017-12-30 20:24 - 2000-01-01 01:00 - 000414464 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvapu.sys
2017-12-30 20:24 - 2000-01-01 01:00 - 000066688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvarm.sys
2017-12-30 20:24 - 2000-01-01 01:00 - 000054272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopenal.dll
2017-12-30 20:24 - 2000-01-01 01:00 - 000053376 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvax.sys
2017-12-30 20:24 - 2000-01-01 01:00 - 000032256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NVCOAD.DLL
2017-12-30 20:24 - 2000-01-01 01:00 - 000030208 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvasio.dll
2017-12-30 20:24 - 2000-01-01 01:00 - 000021504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\OpenAL32.dll
2017-12-30 20:24 - 2000-01-01 01:00 - 000007680 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvack.dll
2017-12-30 20:24 - 2000-01-01 01:00 - 000005120 _____ (NVIDIA Corporation) C:\WINDOWS\system32\ALut.dll
2017-12-30 18:57 - 2000-01-01 01:00 - 000006045 _____ C:\WINDOWS\system32\nvnrm.nvu
2017-12-30 17:35 - 2000-01-01 01:00 - 000955520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvnrm.sys
2017-12-30 17:35 - 2000-01-01 01:00 - 000215656 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NVCOSMB.DLL
2017-12-30 17:35 - 2000-01-01 01:00 - 000200704 _____ (NVIDIA Corporation) C:\WINDOWS\system32\fdco1.dll
2017-12-30 17:35 - 2000-01-01 01:00 - 000122880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvconrm.dll
2017-12-30 17:35 - 2000-01-01 01:00 - 000054784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\NVENETFD.sys
2017-12-30 17:35 - 2000-01-01 01:00 - 000022016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvnetbus.sys
2017-12-30 17:35 - 2000-01-01 01:00 - 000009216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\bdco1.dll
2017-12-30 17:26 - 2017-12-30 17:26 - 000000000 ____D C:\Documents and Settings\Karel\Local Settings\Data aplikací\Downloaded Installers
2017-12-30 17:25 - 2017-12-30 18:53 - 000000000 ____D C:\Documents and Settings\Karel\Local Settings\Data aplikací\SlimWare Utilities Inc
2017-12-30 17:13 - 2017-12-30 17:13 - 000005335 _____ C:\Documents and Settings\Karel\Dokumenty\S ovladači si nelámejte hlavu.txt
2017-12-30 16:58 - 2017-12-30 17:59 - 000000000 ____D C:\Documents and Settings\Karel\Local Settings\Data aplikací\indexer
2017-12-30 16:58 - 2017-12-30 16:58 - 000000000 ____D C:\Documents and Settings\Karel\Local Settings\Data aplikací\NetBoxLogs
2017-12-30 16:57 - 2017-12-30 16:58 - 000000000 ____D C:\Documents and Settings\Karel\Local Settings\Data aplikací\Kometa
2017-12-30 16:54 - 2017-12-30 16:54 - 000000000 __SHD C:\Documents and Settings\LocalService\IETldCache
2017-12-30 16:54 - 2017-12-30 16:54 - 000000000 ____D C:\Documents and Settings\Karel\Local Settings\Data aplikací\Mail.Ru
2017-12-30 16:46 - 2017-12-30 16:46 - 000000000 ____D C:\Program Files\Seznam.cz
2017-12-30 16:45 - 2018-01-05 08:26 - 000000000 ____D C:\Documents and Settings\Karel\Data aplikací\Seznam.cz
2017-12-30 16:35 - 2017-12-30 16:35 - 009120153 _____ C:\Documents and Settings\Karel\Dokumenty\slimdrivers-free_2.2.32705.52095 (1).exe
2017-12-30 16:34 - 2017-12-30 16:35 - 009120153 _____ C:\Documents and Settings\Karel\Dokumenty\slimdrivers-free_2.2.32705.52095.exe
2017-12-30 16:26 - 2017-12-31 07:52 - 000004360 _____ C:\Documents and Settings\Karel\Dokumenty\polozky_Blue-Screen-View_1.txt
2017-12-30 16:20 - 2017-12-30 16:21 - 000000000 ____D C:\Documents and Settings\Karel\Nabídka Start\Programy\NirSoft BlueScreenView
2017-12-30 16:20 - 2017-12-30 16:20 - 000000000 ____D C:\Program Files\NirSoft
2017-12-30 15:50 - 2017-12-30 15:50 - 000141864 _____ C:\Documents and Settings\Karel\Dokumenty\bluescreenview_setup.exe
2017-12-30 15:50 - 2017-12-30 15:50 - 000067310 _____ C:\Documents and Settings\Karel\Dokumenty\bluescreenview.zip
2017-12-30 14:14 - 2017-12-30 14:15 - 000000000 ____D C:\Documents and Settings\Karel\Nová složka (2)
2017-12-30 14:00 - 2017-12-30 14:00 - 000106496 _____ C:\WINDOWS\Minidump\Mini123017-01.dmp
2017-12-30 13:24 - 2017-12-30 13:24 - 000092993 _____ C:\Documents and Settings\Karel\Dokumenty\o15-ctrremove.diagcab
2017-12-30 11:04 - 2017-12-30 11:06 - 000000000 ____D C:\WINDOWS\system32\NtmsData
2017-12-29 15:34 - 2017-12-29 15:34 - 000090112 _____ C:\WINDOWS\Minidump\Mini122917-01.dmp
2017-12-29 09:23 - 2017-12-29 09:33 - 000004823 _____ C:\Documents and Settings\Karel\Dokumenty\Hard disk clone.txt
2017-12-29 08:25 - 2017-12-29 08:25 - 000000177 _____ C:\Documents and Settings\Karel\Dokumenty\Microsoft Office 2016 Professional.txt
2017-12-28 10:51 - 2017-12-28 10:51 - 000106496 _____ C:\WINDOWS\Minidump\Mini122817-01.dmp
2017-12-27 13:18 - 2018-01-03 22:08 - 000000783 _____ C:\Documents and Settings\Karel\Dokumenty\voličský průkaz.txt
2017-12-27 09:02 - 2017-12-27 09:01 - 000305840 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2017-12-27 09:02 - 2017-12-27 09:01 - 000118144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys
2017-12-25 07:38 - 2017-12-25 07:38 - 000106496 _____ C:\WINDOWS\Minidump\Mini122517-01.dmp
2017-12-24 18:46 - 2017-12-24 18:46 - 000000260 _____ C:\Documents and Settings\Karel\Dokumenty\Toman.txt
2017-12-24 14:46 - 2017-12-25 23:33 - 000077098 _____ C:\Documents and Settings\Karel\Dokumenty\mlete.txt
2017-12-24 12:52 - 2017-12-24 12:51 - 000106496 _____ C:\WINDOWS\Minidump\Mini122417-02.dmp
2017-12-24 12:05 - 2017-12-24 12:06 - 000001530 _____ C:\Documents and Settings\Karel\Dokumenty\prohlizec-udalosti-Treti.txt
2017-12-24 09:30 - 2017-12-24 09:30 - 000106496 _____ C:\WINDOWS\Minidump\Mini122417-01.dmp
2017-12-24 08:15 - 2018-01-01 08:26 - 000000000 ____D C:\Documents and Settings\Karel\Dokumenty\DIO 570 Tloušťkoměry_files
2017-12-24 08:15 - 2017-12-24 08:15 - 000017845 _____ C:\Documents and Settings\Karel\Dokumenty\DIO 570 Tloušťkoměry.html
2017-12-24 08:14 - 2017-12-24 08:14 - 000515731 _____ C:\Documents and Settings\Karel\Dokumenty\27.pdf
2017-12-22 11:20 - 2017-12-22 11:20 - 000280479 _____ C:\Documents and Settings\Karel\Dokumenty\KYA.pdf
2017-12-22 11:16 - 2017-12-22 11:16 - 000010781 _____ C:\Documents and Settings\Karel\Dokumenty\Kde sehnat dobré kondíky.txt
2017-12-21 21:53 - 2017-12-21 21:53 - 000003036 _____ C:\Documents and Settings\Karel\Dokumenty\Nastavení pro stahování pošty z Centrum.txt
2017-12-21 16:41 - 2017-12-21 16:41 - 000009897 _____ C:\Documents and Settings\Karel\Dokumenty\Zjednodušený výpočet usměrňovače.html
2017-12-21 16:41 - 2017-12-21 16:41 - 000000000 ____D C:\Documents and Settings\Karel\Dokumenty\Zjednodušený výpočet usměrňovače_files
2017-12-21 11:04 - 2017-12-21 11:04 - 000006968 _____ C:\Documents and Settings\Karel\Dokumenty\Jak zakázat protokol IPv6 nebo jeho součásti v sytému Windows.txt
2017-12-21 10:58 - 2017-12-21 10:58 - 000000000 ____D C:\Documents and Settings\Karel\Dokumenty\Znovupovolení protokolu IPv6 u rozhraní bez tunelového propojení a protokolu IPv6 u rozhraní tunelového propojení
2017-12-21 10:57 - 2017-12-21 10:57 - 000000000 ____D C:\Documents and Settings\Karel\Dokumenty\Znovupovolení protokolu IPv6 u všech rozhraní tunelového propojení
2017-12-21 10:56 - 2017-12-21 10:57 - 000000000 ____D C:\Documents and Settings\Karel\Dokumenty\Znovupovolení protokolu IPv6 u všech rozhraní bez tunelového propojení
2017-12-21 10:55 - 2017-12-21 10:56 - 000000000 ____D C:\Documents and Settings\Karel\Dokumenty\Upřednostnit protokol IPv6 před protokolem IPv4 v zásadách předpon
2017-12-21 10:54 - 2017-12-21 10:54 - 000000000 ____D C:\Documents and Settings\Karel\Dokumenty\Zakázání protokolu IPv6 na rozhraní bez tunelového propojení a na protokolu IPV6 rozhraní tunelového propojení
2017-12-21 10:51 - 2017-12-21 10:52 - 000000000 ____D C:\Documents and Settings\Karel\Dokumenty\Zákaz protokolu IPv6 u všech rozhraní tunelového propojení
2017-12-21 10:50 - 2017-12-21 10:51 - 000000000 ____D C:\Documents and Settings\Karel\Dokumenty\Zákaz protokolu IPv6 u všech rozhraní bez tunelového propojení
2017-12-21 10:50 - 2017-12-21 10:50 - 000000000 ____D C:\Documents and Settings\Karel\Dokumenty\Upřednostňování protokolu IPv4 před protokolem IPv6 v zásadách předpon
2017-12-21 10:19 - 2017-12-21 12:24 - 000004105 _____ C:\Documents and Settings\Karel\Dokumenty\Test vašeho IPv6 připojení.txt
2017-12-21 09:41 - 2017-12-21 09:52 - 000005618 _____ C:\Documents and Settings\Karel\Dokumenty\Protokoly IPv4+Protokoly IPv6.txt
2017-12-20 08:09 - 2017-12-20 08:08 - 000106496 _____ C:\WINDOWS\Minidump\Mini122017-01.dmp
2017-12-19 10:28 - 2017-12-19 10:28 - 000106496 _____ C:\WINDOWS\Minidump\Mini121917-01.dmp
2017-12-19 08:54 - 2017-12-20 08:11 - 000000000 ____D C:\Documents and Settings\Karel\Local Settings\Data aplikací\ApplicationHistory
2017-12-19 08:54 - 2017-12-19 08:54 - 000000125 _____ C:\Documents and Settings\Karel\Local Settings\Data aplikací\fusioncache.dat
2017-12-19 08:54 - 2017-12-19 08:54 - 000000000 __HDC C:\WINDOWS\$NtUninstallKB963093$
2017-12-18 21:03 - 2017-12-24 08:14 - 000000000 ____D C:\Documents and Settings\LocalService\Local Settings\Data aplikací\Adobe
2017-12-18 21:01 - 2018-01-05 09:01 - 000000328 ____H C:\WINDOWS\Tasks\CCleaner Update.job
2017-12-18 20:59 - 2017-12-18 20:59 - 011201632 _____ (Piriform Ltd) C:\Documents and Settings\Karel\Dokumenty\ccsetup538 (1).exe
2017-12-18 20:10 - 2017-12-18 20:10 - 000000000 __HDC C:\WINDOWS\$NtUninstallKB2808679$
2017-12-18 19:47 - 2017-12-18 19:47 - 000000000 __HDC C:\WINDOWS\$NtUninstallKB2492386$
2017-12-18 19:47 - 2017-12-18 19:47 - 000000000 __HDC C:\WINDOWS\$NtUninstallbasecsp$
2017-12-18 19:47 - 2017-12-18 19:47 - 000000000 ____D C:\Documents and Settings\Karel\Data aplikací\Windows Desktop Search
2017-12-18 19:46 - 2017-12-19 09:03 - 000000000 ____D C:\Program Files\Windows Desktop Search
2017-12-18 19:46 - 2017-12-18 19:46 - 000001796 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\Windows Search.lnk
2017-12-18 19:46 - 2017-12-18 19:46 - 000000000 __HDC C:\WINDOWS\$NtUninstallKB940157$
2017-12-18 19:46 - 2017-12-18 19:46 - 000000000 __HDC C:\WINDOWS\$NtUninstallKB915800-v4$
2017-12-18 19:43 - 2017-12-18 19:43 - 000000000 ____D C:\WINDOWS\system32\URTTEMP
2017-12-18 19:42 - 2011-08-16 11:45 - 000006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iecompat.dll
2017-12-18 19:03 - 2017-12-18 19:03 - 000106496 _____ C:\WINDOWS\Minidump\Mini121817-02.dmp
2017-12-18 19:00 - 2017-12-18 19:00 - 000000000 ____D C:\fc77d4fa06e65db7ebd242df31
2017-12-18 17:03 - 2017-12-18 17:03 - 000106496 _____ C:\WINDOWS\Minidump\Mini121817-01.dmp
2017-12-18 17:02 - 2017-12-18 17:02 - 000000000 ____D C:\b975259e00b0b5c0444d
2017-12-18 16:24 - 2017-12-18 16:24 - 000000000 ____D C:\WINDOWS\system32\appmgmt
2017-12-18 15:54 - 2017-12-18 15:54 - 000000000 ____D C:\Documents and Settings\Karel\Nabídka Start\Programy\ErrorFix Kit
2017-12-18 15:46 - 2018-01-03 19:48 - 000000000 ____D C:\Program Files\ErrorFixKIT
2017-12-18 07:48 - 2018-01-04 08:44 - 000000066 _____ C:\Documents and Settings\Karel\intlname.ols
2017-12-17 17:20 - 2017-12-17 17:20 - 000000000 ____D C:\Program Files\MSECache
2017-12-17 13:20 - 2017-12-17 13:20 - 000000000 ____D C:\Documents and Settings\Karel\Dokumenty\prilohy_6045
2017-12-17 13:17 - 2017-12-17 13:17 - 000000557 _____ C:\Documents and Settings\All Users\Plocha\DocX Viewer.lnk
2017-12-17 13:17 - 2017-12-17 13:17 - 000000000 ____D C:\epingsoft
2017-12-17 13:17 - 2017-12-17 13:17 - 000000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Epingsoft
2017-12-17 12:03 - 2017-12-17 12:03 - 000851077 _____ C:\Documents and Settings\Karel\Dokumenty\prilohy_6045.zip
2017-12-17 11:35 - 2017-12-17 11:35 - 000127847 _____ C:\Documents and Settings\Karel\Dokumenty\T139008.RTF.zip
2017-12-14 14:23 - 2017-12-14 14:23 - 000016232 _____ C:\Documents and Settings\Karel\Dokumenty\poptvka-projekt-vodovodn-ppojky.eml
2017-12-14 11:09 - 2017-12-14 15:10 - 000000243 _____ C:\Documents and Settings\Karel\Dokumenty\chlazeni_chipsetu.txt
2017-12-13 11:14 - 2017-12-13 11:14 - 000000542 _____ C:\Documents and Settings\Karel\Dokumenty\HDClone 7.txt
2017-12-13 07:46 - 2017-12-13 07:46 - 000106496 _____ C:\WINDOWS\Minidump\Mini121317-01.dmp
2017-12-12 19:59 - 2017-12-12 19:59 - 000075830 _____ C:\Documents and Settings\Karel\Dokumenty\CSP_CCR_11_34_0011032189_20171211.PDF.zip
2017-12-12 11:17 - 2017-12-12 11:17 - 000000111 _____ C:\Documents and Settings\Karel\Dokumenty\ASUS-Mamka.txt
2017-12-12 10:05 - 2017-12-12 10:05 - 004229022 _____ C:\Documents and Settings\Karel\Dokumenty\p4b266 (Ger).pdf
2017-12-12 10:03 - 2017-12-12 10:03 - 004173187 _____ C:\Documents and Settings\Karel\Dokumenty\p4b266.pdf
2017-12-10 08:48 - 2017-12-10 08:48 - 000191494 _____ C:\Documents and Settings\Karel\Dokumenty\jak_zabudovat_vanu.pdf
2017-12-09 17:19 - 2017-12-09 20:13 - 000007294 _____ C:\Documents and Settings\Karel\Dokumenty\Naklonujte si harddisk.txt
2017-12-09 15:53 - 2017-12-09 15:53 - 000106496 _____ C:\WINDOWS\Minidump\Mini120917-01.dmp
2017-12-09 13:33 - 2017-12-09 13:33 - 000005791 _____ C:\Documents and Settings\Karel\Dokumenty\Ruční plnička a odsávačka.txt
2017-12-09 13:32 - 2017-12-09 13:32 - 000182292 _____ C:\Documents and Settings\Karel\Dokumenty\669_(1460_1)Tc.pdf
2017-12-09 12:45 - 2017-12-09 12:45 - 000189088 _____ C:\Documents and Settings\Karel\Dokumenty\375_(1924_1)T.pdf
2017-12-08 16:33 - 2017-12-08 16:33 - 000171338 _____ C:\Documents and Settings\Karel\Dokumenty\188_(671_4)Z.pdf
2017-12-08 16:32 - 2017-12-08 16:33 - 000171634 _____ C:\Documents and Settings\Karel\Dokumenty\188_(671_3)T (1).pdf
2017-12-08 16:31 - 2017-12-08 16:32 - 000169835 _____ C:\Documents and Settings\Karel\Dokumenty\188_(671_3)T.pdf
2017-12-08 11:37 - 2017-12-08 11:37 - 000002490 _____ C:\Documents and Settings\Karel\Dokumenty\vnější elektronika Hdd.txt
2017-12-08 10:14 - 2017-12-08 10:14 - 000780429 _____ C:\Documents and Settings\Karel\Dokumenty\Záchrana souborů svépomocí.pdf
2017-12-07 00:22 - 2017-12-07 00:22 - 000000614 _____ C:\Documents and Settings\Karel\Dokumenty\Mail-Honzik.txt
2017-12-06 15:06 - 2017-12-06 15:32 - 000001115 _____ C:\Documents and Settings\Karel\Dokumenty\elyt+konektor.txt
2017-12-06 14:37 - 2017-12-06 14:37 - 000986578 _____ C:\Documents and Settings\Karel\Dokumenty\dsh.806-017.1.pdf
2017-12-06 13:12 - 2017-12-06 13:11 - 000547365 _____ C:\Documents and Settings\Karel\Dokumenty\dsh.123-578.1.pdf
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-01-05 09:55 - 2017-03-09 16:46 - 000000000 ____D C:\Documents and Settings\Karel\Local Settings\Temp
2018-01-05 09:23 - 2017-03-14 19:57 - 000000470 _____ C:\WINDOWS\Tasks\SafeZone scheduled Autoupdate 1489517841.job
2018-01-05 09:14 - 2017-03-09 16:46 - 000000000 ___RD C:\Documents and Settings\Karel\Dokumenty
2018-01-05 09:02 - 2017-03-14 19:52 - 000000358 ____H C:\WINDOWS\Tasks\Avast Emergency Update.job
2018-01-05 09:00 - 2017-03-15 00:14 - 000001568 _____ C:\WINDOWS\Tasks\356g517g407P786.job
2018-01-05 08:21 - 2001-10-25 12:00 - 000002206 _____ C:\WINDOWS\system32\wpa.dbl
2018-01-05 08:16 - 2017-03-09 16:44 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-01-04 20:30 - 2017-03-14 22:30 - 000000000 _____ C:\WINDOWS\system32\last.dump
2018-01-04 19:40 - 2017-03-09 16:59 - 000000000 __RHD C:\Documents and Settings\All Users\Data aplikací
2018-01-04 16:01 - 2017-03-09 16:59 - 000000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy
2018-01-04 16:01 - 2017-03-09 16:59 - 000000000 ____D C:\Documents and Settings\All Users\Plocha
2018-01-04 15:19 - 2017-03-09 16:46 - 000000000 ___HD C:\Documents and Settings\Karel\Local Settings\Data aplikací
2018-01-04 14:33 - 2017-03-18 12:11 - 000000000 ____D C:\WINDOWS\Minidump
2018-01-04 14:13 - 2017-03-09 16:46 - 000000000 ___RD C:\Documents and Settings\Karel\Oblíbené položky
2018-01-04 13:23 - 2017-03-09 16:46 - 000000000 ____D C:\Documents and Settings\Karel\Plocha
2018-01-04 13:09 - 2017-03-09 16:46 - 000000000 ___RD C:\Documents and Settings\Karel\Nabídka Start
2018-01-04 13:06 - 2017-03-09 16:46 - 000000000 __RHD C:\Documents and Settings\Karel\Data aplikací
2018-01-04 13:02 - 2017-03-09 16:44 - 000032558 _____ C:\WINDOWS\SchedLgU.Txt
2018-01-04 13:00 - 2017-03-09 16:46 - 000000272 ___SH C:\Documents and Settings\Karel\ntuser.ini
2018-01-04 13:00 - 2017-03-09 16:46 - 000000000 ____D C:\Documents and Settings\Karel
2018-01-04 12:42 - 2017-03-14 15:39 - 000000000 ____D C:\Program Files\Opera
2018-01-04 12:04 - 2017-03-09 16:55 - 000000000 ____D C:\WINDOWS\Network Diagnostic
2018-01-03 18:19 - 2017-03-09 16:55 - 000000000 ___HD C:\WINDOWS\inf
2018-01-03 18:19 - 2017-03-09 16:44 - 000000000 ___HD C:\Documents and Settings\LocalService\Local Settings\Data aplikací
2018-01-01 08:57 - 2017-03-09 16:55 - 000000000 ____D C:\WINDOWS\security
2018-01-01 08:27 - 2017-03-18 15:15 - 000000000 ____D C:\Documents and Settings\Karel\Dokumenty\Belarc Advisor Computer Profile_PRED-SITI_files
2017-12-31 15:42 - 2017-03-09 16:55 - 000000000 RSHDC C:\WINDOWS\system32\dllcache
2017-12-30 21:02 - 2017-03-15 18:11 - 000000000 ____D C:\Documents and Settings\Karel\Nová složka
2017-12-30 20:48 - 2017-03-15 14:50 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2017-12-30 20:48 - 2017-03-15 14:48 - 000000000 ____D C:\WINDOWS\system32\ReinstallBackups
2017-12-30 20:29 - 2001-10-25 12:00 - 000597390 _____ C:\WINDOWS\system32\perfh005.dat
2017-12-30 20:29 - 2001-10-25 12:00 - 000133102 _____ C:\WINDOWS\system32\perfc005.dat
2017-12-30 20:28 - 2017-03-09 19:43 - 000000000 ___HD C:\Program Files\InstallShield Installation Information
2017-12-30 20:28 - 2017-03-09 17:00 - 001442866 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-12-30 17:25 - 2017-03-09 16:59 - 000000000 ___RD C:\Documents and Settings\All Users\Dokumenty
2017-12-30 16:54 - 2017-03-09 16:59 - 000000000 ____D C:\Documents and Settings\All Users\Oblíbené položky
2017-12-30 16:54 - 2017-03-09 16:44 - 000000000 __SHD C:\Documents and Settings\LocalService
2017-12-30 16:54 - 2017-03-09 16:37 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2017-12-30 16:20 - 2017-03-09 16:46 - 000000000 ___RD C:\Documents and Settings\Karel\Nabídka Start\Programy
2017-12-29 12:12 - 2017-03-15 18:11 - 000000000 ____D C:\Documents and Settings\Karel\CC_Zaloha
2017-12-27 09:02 - 2017-11-17 07:57 - 000158224 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2017-12-27 09:02 - 2017-03-15 15:46 - 000390272 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2017-12-27 09:02 - 2017-03-15 15:46 - 000294680 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2017-12-27 09:02 - 2017-03-15 15:46 - 000205360 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStmXP.sys
2017-12-27 09:02 - 2017-03-15 15:46 - 000124408 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2017-12-27 09:02 - 2017-03-15 15:46 - 000070832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2017-12-27 09:02 - 2017-03-15 15:46 - 000070208 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr.sys
2017-12-27 09:02 - 2017-03-15 15:46 - 000042824 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2017-12-27 09:01 - 2017-03-15 15:46 - 000783104 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2017-12-27 09:01 - 2017-03-15 15:46 - 000276696 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswblogx.sys
2017-12-27 09:01 - 2017-03-15 15:46 - 000255584 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriverx.sys
2017-12-27 09:01 - 2017-03-15 15:46 - 000157376 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidshx.sys
2017-12-27 09:01 - 2017-03-15 15:46 - 000050344 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbunivx.sys
2017-12-19 08:54 - 2017-03-09 17:00 - 000001393 _____ C:\WINDOWS\imsins.BAK
2017-12-19 08:54 - 2017-03-09 16:32 - 000000000 ____D C:\WINDOWS\Registration
2017-12-18 21:01 - 2017-03-15 18:07 - 000000683 _____ C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
2017-12-18 21:01 - 2017-03-15 18:07 - 000000000 ____D C:\Program Files\CCleaner
2017-12-18 20:06 - 2017-03-14 20:13 - 000000000 ____D C:\WINDOWS\ie8updates
2017-12-18 20:06 - 2017-03-09 16:37 - 000000000 ___HD C:\WINDOWS\$hf_mig$
2017-12-18 19:46 - 2017-03-09 16:59 - 000000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
2017-12-18 19:45 - 2017-03-09 16:55 - 000000000 ____D C:\WINDOWS\system32\mui
2017-12-18 19:45 - 2017-03-09 16:32 - 000000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy\Nástroje pro správu
2017-12-18 10:54 - 2017-03-09 20:50 - 000021744 _____ C:\Documents and Settings\Karel\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
2017-12-18 07:20 - 2017-03-09 16:58 - 000136464 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-12-17 17:20 - 2017-03-09 19:35 - 000000000 ____D C:\Program Files\Microsoft Office
2017-12-17 17:20 - 2017-03-09 17:00 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared
2017-12-12 20:17 - 2017-03-10 12:49 - 004026590 _____ C:\WINDOWS\pfirewall.log.old
2017-12-06 15:25 - 2017-12-05 18:24 - 000000857 _____ C:\Documents and Settings\Karel\Dokumenty\Plast-nyty.txt
==================== Files in the root of some directories =======
2017-04-30 12:05 - 2017-04-30 13:03 - 000000115 _____ () C:\Documents and Settings\Karel\Data aplikací\LogFile.txt
2017-12-19 08:54 - 2017-12-19 08:54 - 000000125 _____ () C:\Documents and Settings\Karel\Local Settings\Data aplikací\fusioncache.dat
Some files in TEMP:
====================
2017-12-30 16:58 - 2017-12-30 16:58 - 001651791 _____ () C:\Documents and Settings\Karel\Local Settings\Temp\26EciYfKuW2I.exe
2017-12-30 16:57 - 2017-12-30 16:57 - 001646159 _____ () C:\Documents and Settings\Karel\Local Settings\Temp\32oJG7lgprqw.exe
2017-12-30 17:00 - 2017-12-30 17:00 - 001437695 _____ () C:\Documents and Settings\Karel\Local Settings\Temp\B376B91dDKlm.exe
2017-12-30 17:01 - 2017-12-30 17:01 - 000199247 _____ () C:\Documents and Settings\Karel\Local Settings\Temp\cV0ez6L2qZ7I.exe
2017-12-30 16:59 - 2017-12-30 16:59 - 002220031 _____ () C:\Documents and Settings\Karel\Local Settings\Temp\dDLFPMvkG25m.exe
2017-12-30 16:54 - 2017-12-30 16:54 - 000985599 _____ () C:\Documents and Settings\Karel\Local Settings\Temp\hEyxbth38iUs.exe
2018-01-04 19:42 - 2018-01-04 19:42 - 083316440 _____ (Malwarebytes ) C:\Documents and Settings\Karel\Local Settings\Temp\mb3-setup-consumer-3.3.1.2183-1.0.262-1.0.3374.exe
2017-12-30 16:59 - 2017-12-30 16:59 - 002769919 _____ () C:\Documents and Settings\Karel\Local Settings\Temp\ONchelSrDYGL.exe
2017-12-30 16:58 - 2017-12-30 16:58 - 001515007 _____ () C:\Documents and Settings\Karel\Local Settings\Temp\PLfTZjknTzDZ.exe
2017-12-30 16:55 - 2017-12-30 16:55 - 000985599 _____ () C:\Documents and Settings\Karel\Local Settings\Temp\S8NvIugB5Z5g.exe
2017-12-30 17:25 - 2017-12-30 17:25 - 000225472 _____ (SlimWare Utilities, Inc.) C:\Documents and Settings\Karel\Local Settings\Temp\scp3AC.tmp.exe
2017-12-30 17:02 - 2017-12-30 17:02 - 000203263 _____ () C:\Documents and Settings\Karel\Local Settings\Temp\TTk4JacEg0Yv.exe
2017-12-30 17:00 - 2017-12-30 17:00 - 001651791 _____ () C:\Documents and Settings\Karel\Local Settings\Temp\VonDwU0B9v68.exe
2017-12-30 16:56 - 2017-12-30 16:56 - 001646159 _____ () C:\Documents and Settings\Karel\Local Settings\Temp\yQq4fs3GuVg6.exe
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
==================== End of FRST.txt ============================
Logfile of random's system information tool 1.10 (written by random/random)
Run by Karel at 2018-01-05 09:06:07
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 19 GB (50%) free of 38 GB
Total RAM: 1023 MB (5% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:06:28, on 5.1.2018
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\BDServices\BitDefenderCom.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\AVAST Software\Avast\aswidsagent.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\CNAP3LAK.EXE
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\CNACESWK.EXE
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\CNACESWK.EXE
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\CNACESWK.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Documents and Settings\Karel\Data aplikací\Seznam.cz\bin\szndesktop.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Documents and Settings\Karel\Dokumenty\Downloads\RSIT (5).exe
C:\Program Files\trend micro\Karel.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [DWPersistentQueuedReporting] C:\Program Files\Common Files\Microsoft Shared\DW\DWTRIG20.EXE -a
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [CNAP3 Launcher] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\CNAP3LAK.EXE
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [NVMixerTray] "C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe"
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Documents and Settings\Karel\Data aplikací\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Documents and Settings\Karel\Data aplikací\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [_nltide_2] regsvr32 /s /n /i:U shell32 (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [_nltide_2] regsvr32 /s /n /i:U shell32 (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [_nltide_2] regsvr32 /s /n /i:U shell32 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [_nltide_2] regsvr32 /s /n /i:U shell32 (User 'Default user')
O4 - Global Startup: Windows Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\aswidsagent.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: BitDefenderCOM - Digital Care Solutions - C:\Program Files\BDServices\BitDefenderCom.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
--
End of file - 6985 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\356g517g407P786.job - C:\WINDOWS\system32\rundll32.exe "C:\Documents and Settings\All Users\Data aplikací\356g517g407P786\356g517g407P786.dll",gPZSpiuut
C:\WINDOWS\tasks\Avast Emergency Update.job - C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
C:\WINDOWS\tasks\CCleaner Update.job - C:\Program Files\CCleaner\CCUpdate.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe
C:\WINDOWS\tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe -c
C:\WINDOWS\tasks\SafeZone scheduled Autoupdate 1489517841.job - C:\Program Files\AVAST Software\SZBrowser\launcher.exe --scheduledautoupdate $(Arg0)
C:\WINDOWS\tasks\TweakBit Driver Updater Start Driver Updater automatic scanning.job - C:\Program Files\TweakBit\Driver Updater\DriverUpdater.exe -UseTray -autoscan
C:\WINDOWS\tasks\TweakBit Driver Updater Start Driver Updater оn logon.job - C:\Program Files\TweakBit\Driver Updater\DriverUpdater.exe -UseTray
C:\WINDOWS\tasks\TweakBit Driver Updater Time for deal.job - C:\Program Files\TweakBit\Driver Updater\DriverUpdater.exe -UseTray -timefordeal
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-11-17 820672]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"DWPersistentQueuedReporting"=C:\Program Files\Common Files\Microsoft Shared\DW\DWTRIG20.EXE [2007-03-13 39264]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2017-12-27 246120]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]
"CNAP3 Launcher"=C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\CNAP3LAK.EXE [2012-06-14 228520]
"seznam-listicka-distribuce"=C:\Program Files\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"NVMixerTray"=C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe [2004-12-20 131072]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2000-01-01 577536]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
"cz.seznam.software.autoupdate"=C:\Documents and Settings\Karel\Data aplikací\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Documents and Settings\Karel\Data aplikací\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner.exe [2017-12-13 7972528]
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Windows Search.lnk - C:\Program Files\Windows Desktop Search\WindowsSearch.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2006-03-22 61440]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\wpdshserviceobj.dll [2013-08-22 133632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-24 304128]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"authentication packages"=msv1_0
nwprovau
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Google\Chrome\Application\chrome.exe"="C:\Program Files\Google\Chrome\Application\chrome.exe:*:Enabled:Google Chrome"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
======List of files/folders created in the last 1 month======
2018-01-04 22:37:07 ----D---- C:\Program Files\trend micro
2018-01-04 22:37:04 ----D---- C:\rsit
2018-01-04 19:40:29 ----D---- C:\Documents and Settings\All Users\Data aplikací\MB2Migration
2018-01-04 16:01:04 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2018-01-04 16:01:03 ----D---- C:\Program Files\Malwarebytes Anti-Malware
2018-01-04 16:01:03 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2018-01-04 16:00:14 ----A---- C:\WINDOWS\system32\drivers\mbamchameleon.sys
2018-01-04 15:55:29 ----D---- C:\Program Files\mbam-chameleon-3.1.33.0
2018-01-04 14:22:02 ----D---- C:\Program Files\Google
2018-01-04 13:06:05 ----D---- C:\Documents and Settings\Karel\Data aplikací\Seznam Browser
2018-01-04 13:02:39 ----D---- C:\Documents and Settings\All Users\Data aplikací\SWCUTemp
2018-01-03 21:11:30 ----D---- C:\AdwCleaner
2018-01-03 20:08:50 ----D---- C:\Documents and Settings\Karel\Data aplikací\ESET
2018-01-03 18:16:24 ----D---- C:\Program Files\ESET
2018-01-03 18:16:24 ----D---- C:\Documents and Settings\All Users\Data aplikací\ESET
2017-12-30 20:36:58 ----D---- C:\Program Files\Realtek AC97
2017-12-30 20:28:38 ----D---- C:\Program Files\Common Files\NVIDIA Shared
2017-12-30 20:27:39 ----A---- C:\WINDOWS\system32\nvuaudio.exe
2017-12-30 20:24:45 ----A---- C:\WINDOWS\system32\OpenAL32.dll
2017-12-30 20:24:45 ----A---- C:\WINDOWS\system32\drivers\nvmcp.sys
2017-12-30 20:24:45 ----A---- C:\WINDOWS\system32\drivers\nvax.sys
2017-12-30 20:24:45 ----A---- C:\WINDOWS\system32\drivers\nvarm.sys
2017-12-30 20:24:45 ----A---- C:\WINDOWS\system32\drivers\nvapu.sys
2017-12-30 20:24:41 ----A---- C:\WINDOWS\system32\nvopenal.dll
2017-12-30 20:24:41 ----A---- C:\WINDOWS\system32\NVCOAD.DLL
2017-12-30 20:24:41 ----A---- C:\WINDOWS\system32\nvasio.dll
2017-12-30 20:24:41 ----A---- C:\WINDOWS\system32\nvack.dll
2017-12-30 20:24:41 ----A---- C:\WINDOWS\system32\ALut.dll
2017-12-30 17:35:12 ----A---- C:\WINDOWS\system32\drivers\nvnrm.sys
2017-12-30 17:35:12 ----A---- C:\WINDOWS\system32\drivers\nvnetbus.sys
2017-12-30 17:35:12 ----A---- C:\WINDOWS\system32\drivers\NVENETFD.sys
2017-12-30 17:35:04 ----A---- C:\WINDOWS\system32\NVCOSMB.DLL
2017-12-30 17:35:03 ----A---- C:\WINDOWS\system32\nvconrm.dll
2017-12-30 17:35:03 ----A---- C:\WINDOWS\system32\fdco1.dll
2017-12-30 17:35:03 ----A---- C:\WINDOWS\system32\bdco1.dll
2017-12-30 16:46:03 ----D---- C:\Program Files\Seznam.cz
2017-12-30 16:45:22 ----D---- C:\Documents and Settings\Karel\Data aplikací\Seznam.cz
2017-12-30 16:20:59 ----D---- C:\Program Files\NirSoft
2017-12-30 11:04:49 ----D---- C:\WINDOWS\system32\NtmsData
2017-12-27 09:02:37 ----A---- C:\WINDOWS\system32\drivers\aswHdsKe.sys
2017-12-27 09:02:18 ----A---- C:\WINDOWS\system32\aswBoot.exe
2017-12-19 08:54:39 ----HDC---- C:\WINDOWS\$NtUninstallKB963093$
2017-12-18 20:10:46 ----HDC---- C:\WINDOWS\$NtUninstallKB2808679$
2017-12-18 19:47:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2492386$
2017-12-18 19:47:19 ----HDC---- C:\WINDOWS\$NtUninstallbasecsp$
2017-12-18 19:47:02 ----D---- C:\Documents and Settings\Karel\Data aplikací\Windows Desktop Search
2017-12-18 19:46:25 ----D---- C:\Program Files\Windows Desktop Search
2017-12-18 19:46:17 ----HDC---- C:\WINDOWS\$NtUninstallKB940157$
2017-12-18 19:46:06 ----HDC---- C:\WINDOWS\$NtUninstallKB915800-v4$
2017-12-18 19:43:56 ----D---- C:\WINDOWS\system32\URTTEMP
2017-12-18 19:00:24 ----D---- C:\fc77d4fa06e65db7ebd242df31
2017-12-18 17:02:11 ----D---- C:\b975259e00b0b5c0444d
2017-12-18 16:24:01 ----D---- C:\WINDOWS\system32\appmgmt
2017-12-18 15:46:02 ----D---- C:\Program Files\ErrorFixKIT
2017-12-17 17:20:33 ----D---- C:\Program Files\MSECache
2017-12-17 13:17:11 ----D---- C:\epingsoft
======List of files/folders modified in the last 1 month======
2018-01-05 09:06:00 ----D---- C:\WINDOWS\Prefetch
2018-01-05 09:05:47 ----D---- C:\WINDOWS\Temp
2018-01-05 08:38:41 ----D---- C:\WINDOWS\system32\CatRoot2
2018-01-04 22:37:07 ----RD---- C:\Program Files
2018-01-04 16:01:04 ----D---- C:\WINDOWS\system32\drivers
2018-01-04 14:33:10 ----D---- C:\WINDOWS
2018-01-04 14:33:08 ----D---- C:\WINDOWS\Minidump
2018-01-04 14:27:06 ----SHD---- C:\WINDOWS\Installer
2018-01-04 14:22:07 ----SD---- C:\WINDOWS\Tasks
2018-01-04 13:02:02 ----A---- C:\WINDOWS\SchedLgU.Txt
2018-01-04 12:42:42 ----D---- C:\Program Files\Opera
2018-01-04 12:04:00 ----D---- C:\WINDOWS\Network Diagnostic
2018-01-03 21:26:42 ----D---- C:\Program Files\Common Files
2018-01-03 18:19:58 ----HD---- C:\WINDOWS\inf
2018-01-03 18:18:35 ----D---- C:\Config.Msi
2018-01-01 08:57:52 ----D---- C:\WINDOWS\security
2017-12-31 15:42:25 ----RSHDC---- C:\WINDOWS\system32\dllcache
2017-12-30 20:48:54 ----D---- C:\WINDOWS\system32\ReinstallBackups
2017-12-30 20:48:54 ----D---- C:\WINDOWS\system32
2017-12-30 20:48:54 ----D---- C:\Program Files\NVIDIA Corporation
2017-12-30 20:28:59 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2017-12-30 20:28:37 ----HD---- C:\Program Files\InstallShield Installation Information
2017-12-30 18:58:29 ----D---- C:\WINDOWS\system32\CatRoot
2017-12-30 16:54:32 ----HD---- C:\WINDOWS\system32\GroupPolicy
2017-12-30 11:04:48 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2017-12-19 08:54:46 ----A---- C:\WINDOWS\imsins.BAK
2017-12-19 08:54:01 ----D---- C:\WINDOWS\Registration
2017-12-18 21:01:29 ----D---- C:\Program Files\CCleaner
2017-12-18 20:51:46 ----D---- C:\WINDOWS\AppPatch
2017-12-18 20:21:25 ----RSD---- C:\WINDOWS\assembly
2017-12-18 20:21:25 ----D---- C:\WINDOWS\Microsoft.NET
2017-12-18 20:09:18 ----D---- C:\WINDOWS\WinSxS
2017-12-18 20:06:37 ----D---- C:\WINDOWS\ie8updates
2017-12-18 20:06:36 ----HD---- C:\WINDOWS\$hf_mig$
2017-12-18 20:06:28 ----D---- C:\Program Files\Internet Explorer
2017-12-18 19:46:26 ----D---- C:\WINDOWS\system32\cs-cz
2017-12-18 19:46:24 ----D---- C:\WINDOWS\system32\wbem
2017-12-18 19:45:14 ----D---- C:\WINDOWS\system32\mui
2017-12-18 16:25:05 ----D---- C:\WINDOWS\SoftwareDistribution
2017-12-18 15:48:44 ----D---- C:\WINDOWS\system32\en-US
2017-12-18 15:48:18 ----D---- C:\Program Files\Microsoft.NET
2017-12-17 17:21:36 ----SD---- C:\Documents and Settings\Karel\Data aplikací\Microsoft
2017-12-17 17:20:57 ----RSD---- C:\WINDOWS\Fonts
2017-12-17 17:20:51 ----D---- C:\Program Files\Microsoft Office
2017-12-17 17:20:50 ----D---- C:\Program Files\Common Files\Microsoft Shared
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidshx.sys [2017-12-27 157376]
R0 aswblog;aswblog; C:\WINDOWS\system32\drivers\aswblogx.sys [2017-12-27 276696]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbunivx.sys [2017-12-27 50344]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2017-12-27 70832]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2017-12-27 294680]
R0 FTTXR5_O;FTTXR5_O; C:\WINDOWS\system32\DRIVERS\fttxr5_O.sys [2008-01-16 177152]
R0 mv61xxmm;mv61xxmm; C:\WINDOWS\system32\drivers\mv61xxmm.sys [2013-08-22 14184]
R0 mv64xxmm;mv64xxmm; C:\WINDOWS\system32\drivers\mv64xxmm.sys [2013-08-22 5632]
R0 mvxxmm;mvxxmm; C:\WINDOWS\system32\drivers\mvxxmm.sys [2013-08-22 14184]
R0 nvatabus;nvatabus; C:\WINDOWS\system32\DRIVERS\nvatabus.sys [2006-02-26 89856]
R0 nvcchflt;NVIDIA Disk Cache Filter Driver; C:\WINDOWS\system32\DRIVERS\nvcchflt.sys [2006-02-26 16640]
R0 nvgts;nvgts; C:\WINDOWS\system32\DRIVERS\nvgts.sys [2000-01-01 145952]
R0 nvraid;nvraid; C:\WINDOWS\system32\drivers\nvraid.sys [2013-08-22 89344]
R0 nvrd32;NVIDIA nForce RAID Driver; C:\WINDOWS\system32\DRIVERS\nvrd32.sys [2010-04-09 139368]
R1 AmdPPM;Ovladač procesoru HwPState AMD; C:\WINDOWS\system32\DRIVERS\AmdPPM.sys [2007-04-16 33792]
R1 aswArPot;aswArPot; C:\WINDOWS\system32\drivers\aswArPot.sys [2017-12-27 158224]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdriverx.sys [2017-12-27 255584]
R1 aswHdsKe;aswHdsKe; C:\WINDOWS\system32\drivers\aswHdsKe.sys [2017-12-27 118144]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2017-09-01 39784]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2017-12-27 70208]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2017-12-27 783104]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2017-12-27 390272]
R1 BANTExt;Belarc SMBios Access; C:\WINDOWS\System32\Drivers\BANTExt.sys [2015-11-19 3840]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2016-06-28 206496]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2016-06-28 156320]
R1 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2016-06-28 162472]
R1 epfwtdi;epfwtdi; C:\WINDOWS\system32\DRIVERS\epfwtdi.sys [2016-06-28 77992]
R1 Tcpip6;Ovladač protokolu Microsoft IPv6; C:\WINDOWS\system32\DRIVERS\tcpip6.sys [2013-08-22 226880]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2017-12-27 124408]
R2 ekbdflt;ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [2016-06-28 121504]
R2 NwlnkIpx;Transportní protokol kompatibilní s NWLink IPX/SPX/NetBIOS; C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys [2008-04-13 88320]
R2 NwlnkNb;Služba NWLink pro rozhraní NetBIOS; C:\WINDOWS\system32\DRIVERS\nwlnknb.sys [2001-10-25 63232]
R2 NwlnkSpx;Protokol NWLink SPX/SPXII; C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys [2001-10-25 55936]
R3 AIRPLUS;D-Link AirPlus Wireless Adapter; C:\WINDOWS\system32\DRIVERS\airplus.sys [2006-08-15 255360]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2000-01-01 4122368]
R3 aswStmXP;aswStmXP; C:\WINDOWS\system32\drivers\aswStmXP.sys [2017-12-27 205360]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2006-03-22 1522688]
R3 Epfwndis;Eset Personal Firewall; C:\WINDOWS\system32\DRIVERS\Epfwndis.sys [2016-06-28 55968]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2013-08-22 12160]
R3 NVENETFD;NVIDIA nForce 10/100/1000 Mbps Ethernet ; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2000-01-01 54784]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2000-01-01 22016]
R3 NWRDR;NetWare Rdr; C:\WINDOWS\system32\DRIVERS\nwrdr.sys [2008-04-13 163584]
R3 tunmp;Microsoft Tun Miniport Adapter Driver; C:\WINDOWS\system32\DRIVERS\tunmp.sys [2013-08-22 12288]
R3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2009-07-14 444136]
S3 aswHwid;aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [2017-12-27 42824]
S3 nvax;Service for NVIDIA(R) nForce(TM) Audio Enumerator; C:\WINDOWS\system32\drivers\nvax.sys [2000-01-01 53376]
S3 nvnforce;Service for NVIDIA(R) nForce(TM) Audio; C:\WINDOWS\system32\drivers\nvapu.sys [2000-01-01 414464]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 Trufos;Trufos; C:\WINDOWS\system32\DRIVERS\Trufos.sys [2017-04-13 378336]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2013-08-22 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2013-08-22 82944]
S4 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-10-25 12032]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 6to4;Pomocná služba protokolu IPv6; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2006-03-22 405504]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2017-12-27 301168]
R2 BitDefenderCOM;BitDefenderCOM; C:\Program Files\BDServices\BitDefenderCom.exe [2017-04-13 776192]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2016-06-10 2000856]
R2 NWCWorkstation;Klient systému NetWare; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2008-05-26 439808]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [2017-12-27 5906816]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2006-03-17 520192]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2018-01-04 153168]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2018-01-04 153168]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2011-10-27 718384]
S3 WinRM;Windows Remote Management (WS-Management); C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2009-02-04 913920]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-07-20 754856]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
obracim se k vam o pomoc. Coby asi total trull jsem si rekl, ze udelam cosi pro PC. Tudiz jsem vyhledal+navstivil stranky tykajici update ovladacu - ruzne. Nemel jsem to delat!! Po docasnem vypnuti Avastu sice nabehly vselike updaty ovladacu, ale prakticky spadl cely OS.
Nyni nelze ani kopirovat v prostredi Windows explorer skoro zadny soubor. Kopirovani zustava viset na 5 - 10 sec do ukonceni.
To ale neni nejhorsi. Pri otevreni prohlizece naskakuji nevyzadane PU (prestoze bylo jejich otevirani zakazano) jako napr:
http://vulcan24mania.com?ref=fap_w11807p113_24test
https://www.traffic-media.co/mg15068.html
http://distero.com/rs/?wsa=5a2790eabf3b ... pp.cz&r=js
checking visitor Opera
Puvodni prohlizec, nastaveny jako "Default" byla Opera. Nyni odinstalovana.
Zkouseje spustit napr. mbam-chameleon-3.1.33.0, nebo mb3-setup-consumer-3.3.1.2183-1.0.262-1.0.3374 se nikam nedostanu -
hlasi chybu hned po startu pri update a nepokracuji.
Vim, ze jsem udelal obrovskou chybu, lec presto prosim, muzete-li poradte.
Predem dekuji
Jelikoz nemohu(??) prilozit zadny soubor, uvadim zde:
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 02.01.2018
Ran by Karel (administrator) on TRETI-40CAE45CA (05-01-2018 09:55:08)
Running from C:\Documents and Settings\Karel\Dokumenty\Downloads
Loaded Profiles: Karel (Available Profiles: Karel)
Platform: Systém Microsoft Windows XP Professional Service Pack 3 (X86) Language: Čeština
Internet Explorer Version 8 (Default browser: Opera)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Digital Care Solutions) C:\Program Files\BDServices\BitDefenderCOM.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\aswidsagent.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(CANON INC.) C:\WINDOWS\system32\spool\drivers\w32x86\3\CNAP3LAK.EXE
(CANON INC.) C:\WINDOWS\system32\spool\drivers\w32x86\3\CNACESWK.EXE
(CANON INC.) C:\WINDOWS\system32\spool\drivers\w32x86\3\CNACESWK.EXE
(CANON INC.) C:\WINDOWS\system32\spool\drivers\w32x86\3\CNACESWK.EXE
(Realtek Semiconductor Corp.) C:\WINDOWS\soundman.exe
(Microsoft Corporation) C:\Program Files\Messenger\msmsgs.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Microsoft Corporation) C:\Program Files\Windows Desktop Search\WindowsSearch.exe
() C:\Documents and Settings\Karel\Data aplikací\Seznam.cz\bin\szndesktop.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [DWPersistentQueuedReporting] => C:\Program Files\Common Files\Microsoft Shared\DW\DWTRIG20.EXE [39264 2007-03-13] (Microsoft Corporation)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [246120 2017-12-27] (AVAST Software)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems Incorporated)
HKLM\...\Run: [CNAP3 Launcher] => C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\CNAP3LAK.EXE [228520 2012-06-14] (CANON INC.)
HKLM\...\Run: [seznam-listicka-distribuce] => C:\Program Files\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM\...\Run: [NVMixerTray] => C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe [131072 2004-12-20] (NVIDIA Corporation)
HKLM\...\Run: [SoundMan] => C:\WINDOWS\SOUNDMAN.EXE [577536 2000-01-01] (Realtek Semiconductor Corp.)
Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll [2006-03-22] (ATI Technologies Inc.)
HKU\S-1-5-19\...\RunOnce: [_nltide_2] => regsvr32 /s /n /i:U shell32
HKU\S-1-5-20\...\RunOnce: [_nltide_2] => regsvr32 /s /n /i:U shell32
HKU\S-1-5-21-682003330-2000478354-1417001333-1003\...\Run: [MSMSGS] => C:\Program Files\Messenger\msmsgs.exe [1695232 2008-04-14] (Microsoft Corporation)
HKU\S-1-5-21-682003330-2000478354-1417001333-1003\...\Run: [cz.seznam.software.autoupdate] => C:\Documents and Settings\Karel\Data aplikací\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-682003330-2000478354-1417001333-1003\...\Run: [cz.seznam.software.szndesktop] => C:\Documents and Settings\Karel\Data aplikací\Seznam.cz\bin\wszndesktop.exe [103080 2015-05-26] ()
HKU\S-1-5-18\...\RunOnce: [_nltide_2] => regsvr32 /s /n /i:U shell32
HKLM\...\Providers\NetWare or Compatible Network: C:\WINDOWS\system32\nwprovau.dll [141824 2008-04-14] (Microsoft Corporation)
Lsa: [Authentication Packages] msv1_0 nwprovau
ShellExecuteHooks: Windows Desktop Search Namespace Manager - {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [304128 2009-05-24] (Microsoft Corporation)
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Windows Search.lnk [2017-12-18]
ShortcutTarget: Windows Search.lnk -> C:\Program Files\Windows Desktop Search\WindowsSearch.exe (Microsoft Corporation)
GroupPolicy: Restriction ? <==== ATTENTION
GroupPolicy\User: Restriction ? <==== ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{F900A330-7169-4B45-ABA1-846E3C577833}: [DhcpNameServer] 10.0.0.138
Internet Explorer:
==================
HKU\S-1-5-21-682003330-2000478354-1417001333-1003\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/
SearchScopes: HKU\S-1-5-21-682003330-2000478354-1417001333-1003 -> {13D86B7F-E42B-45B6-A234-3527960669CF} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_29530
SearchScopes: HKU\S-1-5-21-682003330-2000478354-1417001333-1003 -> {3A038EBF-82B4-4B37-8612-7EB6D4719D2B} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_29530
SearchScopes: HKU\S-1-5-21-682003330-2000478354-1417001333-1003 -> {54B11636-3187-44CA-91DA-9DB8BB316E41} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-682003330-2000478354-1417001333-1003 -> {56D3E4C7-585D-4C3F-A9DB-D9C3CEC8FEB3} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-682003330-2000478354-1417001333-1003 -> {933CD139-6DCE-435D-857E-24B5D2B94C5F} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-682003330-2000478354-1417001333-1003 -> {93FB4665-73F7-467D-B0C1-64C50A04F3BB} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-682003330-2000478354-1417001333-1003 -> {9960FE2E-ACA0-4888-92C2-DF68C329C9A8} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-682003330-2000478354-1417001333-1003 -> {A6FE56D4-B0C6-4DD4-959A-B31F98B3540E} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_29530
SearchScopes: HKU\S-1-5-21-682003330-2000478354-1417001333-1003 -> {BCA606F7-09C4-4851-BEB7-63129D72EB7E} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_29530
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-11-17] (AVAST Software)
Handler: belarc - {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files\Belarc\BelarcAdvisor\System\BAVoilaX.dll [2016-01-04] (Belarc, Inc.)
FireFox:
========
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: (Microsoft .NET Framework Assistant) - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2017-03-18] [Legacy] [not signed]
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2018-01-04] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.7\npGoogleUpdate3.dll [2018-01-04] (Google Inc.)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
Chrome:
=======
CHR Profile: C:\Documents and Settings\Karel\Local Settings\Data aplikací\Google\Chrome\User Data\Default [2018-01-05]
CHR Extension: (Prezentace) - C:\Documents and Settings\Karel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2018-01-04]
CHR Extension: (Dokumenty) - C:\Documents and Settings\Karel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2018-01-04]
CHR Extension: (Disk Google) - C:\Documents and Settings\Karel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2018-01-04]
CHR Extension: (YouTube) - C:\Documents and Settings\Karel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2018-01-04]
CHR Extension: (Avast SafePrice) - C:\Documents and Settings\Karel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2018-01-04]
CHR Extension: (Tabulky) - C:\Documents and Settings\Karel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2018-01-04]
CHR Extension: (Dokumenty Google offline) - C:\Documents and Settings\Karel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-01-04]
CHR Extension: (Avast Online Security) - C:\Documents and Settings\Karel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-01-04]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Documents and Settings\Karel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-01-04]
CHR Extension: (Gmail) - C:\Documents and Settings\Karel\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2018-01-04]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 6to4; C:\WINDOWS\System32\6to4svc.dll [100864 2013-08-22] (Microsoft Corporation)
R3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [5906816 2017-12-27] (AVAST Software)
S2 ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [520192 2006-03-17] () [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [301168 2017-12-27] (AVAST Software)
R2 BitDefenderCOM; C:\Program Files\BDServices\BitDefenderCom.exe [776192 2017-04-13] (Digital Care Solutions) [File not signed]
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2000856 2016-06-10] (ESET)
R2 NWCWorkstation; C:\WINDOWS\System32\nwwks.dll [65536 2008-04-14] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 AIRPLUS; C:\WINDOWS\System32\DRIVERS\airplus.sys [255360 2006-08-15] (D-Link)
R3 ALCXWDM; C:\WINDOWS\System32\drivers\ALCXWDM.SYS [4122368 2000-01-01] (Realtek Semiconductor Corp.)
R1 AmdPPM; C:\WINDOWS\System32\DRIVERS\AmdPPM.sys [33792 2007-04-16] (Advanced Micro Devices)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [158224 2017-12-27] (AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriverx.sys [255584 2017-12-27] (AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidshx.sys [157376 2017-12-27] (AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswblogx.sys [276696 2017-12-27] (AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbunivx.sys [50344 2017-12-27] (AVAST Software)
R1 aswHdsKe; C:\WINDOWS\System32\drivers\aswHdsKe.sys [118144 2017-12-27] (AVAST Software)
S3 aswHwid; C:\WINDOWS\System32\drivers\aswHwid.sys [42824 2017-12-27] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [39784 2017-09-01] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [124408 2017-12-27] (AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr.sys [70208 2017-12-27] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [70832 2017-12-27] (AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [783104 2017-12-27] (AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [390272 2017-12-27] (AVAST Software)
R3 aswStmXP; C:\WINDOWS\System32\drivers\aswStmXP.sys [205360 2017-12-27] (AVAST Software)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [294680 2017-12-27] (AVAST Software)
R1 BANTExt; C:\WINDOWS\System32\Drivers\BANTExt.sys [3840 2015-11-19] () [File not signed]
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [206496 2016-06-28] (ESET)
R1 ehdrv; C:\WINDOWS\System32\DRIVERS\ehdrv.sys [156320 2016-06-28] (ESET)
R2 ekbdflt; C:\WINDOWS\System32\DRIVERS\ekbdflt.sys [121504 2016-06-28] (ESET)
R1 epfw; C:\WINDOWS\System32\DRIVERS\epfw.sys [162472 2016-06-28] (ESET)
R3 Epfwndis; C:\WINDOWS\System32\DRIVERS\Epfwndis.sys [55968 2016-06-28] (ESET)
R1 epfwtdi; C:\WINDOWS\System32\DRIVERS\epfwtdi.sys [77992 2016-06-28] (ESET)
R0 FTTXR5_O; C:\WINDOWS\System32\DRIVERS\fttxr5_O.sys [177152 2008-01-16] (Promise Technology, Inc.)
R0 mv61xxmm; C:\WINDOWS\system32\Drivers\mv61xxmm.sys [14184 2013-08-22] (Marvell Semiconductor Inc.)
R0 mv64xxmm; C:\WINDOWS\system32\Drivers\mv64xxmm.sys [5632 2013-08-22] (Marvell Semiconductor Inc.) [File not signed]
R0 mvxxmm; C:\WINDOWS\system32\Drivers\mvxxmm.sys [14184 2013-08-22] (Marvell Semiconductor Inc.)
R0 nvatabus; C:\WINDOWS\System32\DRIVERS\nvatabus.sys [89856 2006-02-26] (NVIDIA Corporation)
S3 nvax; C:\WINDOWS\System32\drivers\nvax.sys [53376 2000-01-01] (NVIDIA Corporation)
R0 nvcchflt; C:\WINDOWS\System32\DRIVERS\nvcchflt.sys [16640 2006-02-26] (NVIDIA Corporation)
R3 NVENETFD; C:\WINDOWS\System32\DRIVERS\NVENETFD.sys [54784 2000-01-01] (NVIDIA Corporation)
R0 nvgts; C:\WINDOWS\System32\DRIVERS\nvgts.sys [145952 2000-01-01] (NVIDIA Corporation)
R3 nvnetbus; C:\WINDOWS\System32\DRIVERS\nvnetbus.sys [22016 2000-01-01] (NVIDIA Corporation)
S3 nvnforce; C:\WINDOWS\System32\drivers\nvapu.sys [414464 2000-01-01] (NVIDIA Corporation)
R0 nvraid; C:\WINDOWS\system32\Drivers\nvraid.sys [89344 2013-08-22] (NVIDIA Corporation) [File not signed]
R2 NwlnkIpx; C:\WINDOWS\System32\DRIVERS\nwlnkipx.sys [88320 2008-04-13] (Microsoft Corporation)
R2 NwlnkNb; C:\WINDOWS\System32\DRIVERS\nwlnknb.sys [63232 2001-10-25] (Microsoft Corporation)
R2 NwlnkSpx; C:\WINDOWS\System32\DRIVERS\nwlnkspx.sys [55936 2001-10-25] (Microsoft Corporation)
R3 NWRDR; C:\WINDOWS\System32\DRIVERS\nwrdr.sys [163584 2008-04-13] (Microsoft Corporation)
R1 Tcpip6; C:\WINDOWS\System32\DRIVERS\tcpip6.sys [226880 2013-08-22] (Microsoft Corporation)
S3 Trufos; C:\WINDOWS\System32\DRIVERS\Trufos.sys [378336 2017-04-13] (BitDefender S.R.L.)
S4 IntelIde; no ImagePath
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-01-05 09:54 - 2018-01-05 09:55 - 000000000 ____D C:\FRST
2018-01-05 09:13 - 2018-01-05 09:25 - 000000000 ____D C:\Documents and Settings\Karel\Dokumenty\Viry-komunikace
2018-01-04 22:37 - 2018-01-05 09:07 - 000000000 ____D C:\rsit
2018-01-04 22:37 - 2018-01-05 09:06 - 000000000 ____D C:\Program Files\trend micro
2018-01-04 21:15 - 2018-01-04 22:57 - 000001136 _____ C:\Documents and Settings\Karel\Dokumenty\problem-pomoc.txt
2018-01-04 21:03 - 2018-01-04 21:03 - 000000419 _____ C:\Documents and Settings\Karel\Dokumenty\problem.txt
2018-01-04 19:40 - 2018-01-04 19:40 - 000000000 ____D C:\Documents and Settings\All Users\Data aplikací\MB2Migration
2018-01-04 16:01 - 2018-01-04 16:01 - 000000778 _____ C:\Documents and Settings\All Users\Plocha\Malwarebytes Anti-Malware.lnk
2018-01-04 16:01 - 2018-01-04 16:01 - 000000000 ____D C:\Program Files\Malwarebytes Anti-Malware
2018-01-04 16:01 - 2018-01-04 16:01 - 000000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Malwarebytes Anti-Malware
2018-01-04 16:01 - 2018-01-04 16:01 - 000000000 ____D C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2018-01-04 16:01 - 2016-03-10 14:08 - 000024448 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2018-01-04 16:00 - 2016-03-10 14:09 - 000123264 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2018-01-04 15:55 - 2018-01-04 15:55 - 000000000 ____D C:\Program Files\mbam-chameleon-3.1.33.0
2018-01-04 15:19 - 2018-01-04 15:19 - 000000000 ____D C:\Documents and Settings\Karel\Local Settings\Data aplikací\Google
2018-01-04 14:33 - 2018-01-04 14:33 - 000106496 _____ C:\WINDOWS\Minidump\Mini010418-02.dmp
2018-01-04 14:24 - 2018-01-04 14:24 - 000001820 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\Google Chrome.lnk
2018-01-04 14:24 - 2018-01-04 14:24 - 000001814 _____ C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk
2018-01-04 14:22 - 2018-01-05 09:27 - 000000938 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2018-01-04 14:22 - 2018-01-05 08:20 - 000000934 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2018-01-04 14:22 - 2018-01-04 14:24 - 000000000 ____D C:\Program Files\Google
2018-01-04 14:20 - 2018-01-04 14:21 - 000000000 ____D C:\Documents and Settings\Karel\Local Settings\Data aplikací\Deployment
2018-01-04 14:12 - 2018-01-04 14:12 - 000172657 _____ C:\Documents and Settings\Karel\Dokumenty\188_(671_3)T-a.pdf
2018-01-04 14:07 - 2018-01-04 14:07 - 040546584 _____ (Opera Software) C:\Documents and Settings\Karel\Dokumenty\Opera_40.0.2308.90_Setup.exe
2018-01-04 13:26 - 2018-01-04 13:26 - 000106496 _____ C:\WINDOWS\Minidump\Mini010418-01.dmp
2018-01-04 13:09 - 2018-01-04 13:14 - 000000000 ____D C:\Documents and Settings\Karel\Local Settings\Data aplikací\Seznam.cz
2018-01-04 13:09 - 2018-01-04 13:09 - 000000869 _____ C:\Documents and Settings\Karel\Plocha\Seznam.cz.lnk
2018-01-04 13:09 - 2018-01-04 13:09 - 000000869 _____ C:\Documents and Settings\Karel\Nabídka Start\Seznam.cz.lnk
2018-01-04 13:09 - 2018-01-04 13:09 - 000000000 ____D C:\Documents and Settings\Karel\Local Settings\Data aplikací\Crashpad
2018-01-04 13:06 - 2018-01-04 13:09 - 000000000 ____D C:\Documents and Settings\Karel\Data aplikací\Seznam Browser
2018-01-04 13:02 - 2018-01-04 13:02 - 000000000 ____D C:\Documents and Settings\All Users\Data aplikací\SWCUTemp
2018-01-04 12:57 - 2018-01-04 12:57 - 000000000 ____D C:\Documents and Settings\Karel\Opera Installer
2018-01-04 12:36 - 2018-01-04 12:36 - 003269840 _____ (Seznam.cz) C:\Documents and Settings\Karel\Dokumenty\Seznam.cz__120001.exe
2018-01-04 12:23 - 2017-03-09 16:47 - 000000804 _____ C:\Documents and Settings\Karel\Plocha\Internet Explorer.lnk
2018-01-04 12:11 - 2018-01-04 12:11 - 000734976 _____ (Opera Software) C:\Documents and Settings\Karel\Dokumenty\OperaSetupWinxpvista.exe
2018-01-04 11:54 - 2018-01-04 11:54 - 000000790 _____ C:\Documents and Settings\Karel\Dokumenty\upozornění Express.txt
2018-01-04 09:09 - 2018-01-04 09:09 - 000001152 _____ C:\Documents and Settings\Karel\Dokumenty\ping.seznam+centrum.txt
2018-01-04 08:21 - 2018-01-04 08:21 - 000001147 _____ C:\Documents and Settings\Karel\Dokumenty\Avast detected a collision with another program.txt
2018-01-04 08:04 - 2018-01-04 08:11 - 000002997 _____ C:\Documents and Settings\Karel\Dokumenty\aplikace bránící správné funkci produktů ESET.txt
2018-01-03 21:11 - 2018-01-04 15:48 - 000000000 ____D C:\AdwCleaner
2018-01-03 20:50 - 2018-01-03 20:50 - 003712064 _____ C:\Documents and Settings\Karel\Dokumenty\adwcleaner_5.201.exe
2018-01-03 20:49 - 2018-01-03 20:49 - 004031440 _____ C:\Documents and Settings\Karel\Dokumenty\adwcleaner_6.044.exe
2018-01-03 20:45 - 2018-01-03 20:46 - 003910208 _____ C:\Documents and Settings\Karel\Dokumenty\adwcleaner.exe
2018-01-03 20:08 - 2018-01-03 20:08 - 000000000 ____D C:\Documents and Settings\Karel\Data aplikací\ESET
2018-01-03 19:52 - 2018-01-03 19:52 - 000013376 _____ C:\Documents and Settings\Karel\Dokumenty\Eset.txt
2018-01-03 18:19 - 2018-01-03 18:19 - 000000000 ____D C:\Documents and Settings\LocalService\Local Settings\Data aplikací\ESET
2018-01-03 18:16 - 2018-01-03 18:16 - 000001795 _____ C:\Documents and Settings\All Users\Plocha\ESET Ochrana bankovnictví a online plateb.lnk
2018-01-03 18:16 - 2018-01-03 18:16 - 000000000 ____D C:\Program Files\ESET
2018-01-03 18:16 - 2018-01-03 18:16 - 000000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\ESET
2018-01-03 18:16 - 2018-01-03 18:16 - 000000000 ____D C:\Documents and Settings\All Users\Data aplikací\ESET
2018-01-03 18:09 - 2018-01-03 18:09 - 003137664 _____ (ESET) C:\Documents and Settings\Karel\Dokumenty\eset_smart_security_live_installer.exe
2018-01-03 18:02 - 2018-01-03 18:26 - 000000000 ____D C:\Documents and Settings\Karel\Local Settings\Data aplikací\ESET
2018-01-03 17:59 - 2018-01-03 18:02 - 006967928 _____ (ESET spol. s r.o.) C:\Documents and Settings\Karel\Dokumenty\esetonlinescanner_csy.exe
2018-01-02 07:12 - 2018-01-02 07:12 - 000134163 _____ C:\Documents and Settings\Karel\Dokumenty\993_(400_121)Z.pdf
2018-01-02 07:11 - 2018-01-02 07:11 - 000133487 _____ C:\Documents and Settings\Karel\Dokumenty\991_(713_102)T.pdf
2018-01-02 07:10 - 2018-01-02 07:10 - 000172897 _____ C:\Documents and Settings\Karel\Dokumenty\188_(671_4)Z (1).pdf
2018-01-02 07:08 - 2018-01-02 07:08 - 000178665 _____ C:\Documents and Settings\Karel\Dokumenty\154_(671_4)Z.pdf
2018-01-01 19:19 - 2018-01-01 19:22 - 000003354 _____ C:\Documents and Settings\Karel\Dokumenty\Blue-view.txt
2018-01-01 19:19 - 2018-01-01 19:19 - 000001206 _____ C:\Documents and Settings\Karel\Dokumenty\Blue-view-1.txt
2018-01-01 19:07 - 2018-01-01 19:07 - 000106496 _____ C:\WINDOWS\Minidump\Mini010118-01.dmp
2018-01-01 10:41 - 2018-01-01 10:42 - 000000000 ____D C:\Documents and Settings\Karel\Dokumenty\Kontrola_e-mailu
2018-01-01 09:50 - 2018-01-01 09:51 - 000000000 ____D C:\Documents and Settings\Karel\Dokumenty\DHCP server pro Windows
2018-01-01 09:16 - 2018-01-01 09:16 - 000000955 _____ C:\Documents and Settings\Karel\Dokumenty\Missing Security Updates.txt
2018-01-01 09:13 - 2018-01-01 09:13 - 000001884 _____ C:\Documents and Settings\Karel\Dokumenty\Poznámky k síti.txt
2018-01-01 08:59 - 2018-01-01 08:59 - 000054586 _____ C:\Documents and Settings\Karel\Dokumenty\Belarc Advisor Computer Profile_leden-2018.htm
2018-01-01 08:59 - 2018-01-01 08:59 - 000000000 ____D C:\Documents and Settings\Karel\Dokumenty\Belarc Advisor Computer Profile_leden-2018_files
2018-01-01 08:23 - 2018-01-01 08:24 - 000000000 ____D C:\Documents and Settings\Karel\Dokumenty\Doporuceni_pro_Outlook-Express
2017-12-31 09:08 - 2017-12-31 09:15 - 000001043 _____ C:\Documents and Settings\Karel\Dokumenty\Výpis událostí.txt
2017-12-31 08:51 - 2017-12-31 08:52 - 000004534 _____ C:\Documents and Settings\Karel\Dokumenty\znova.txt
2017-12-31 08:48 - 2017-12-31 08:48 - 000106496 _____ C:\WINDOWS\Minidump\Mini123117-02.dmp
2017-12-31 08:47 - 2017-12-31 08:47 - 000654920 _____ C:\Documents and Settings\Karel\Dokumenty\mtinst.exe
2017-12-31 07:48 - 2017-12-31 07:48 - 000008454 _____ C:\Documents and Settings\Karel\Dokumenty\View-3.txt
2017-12-31 07:47 - 2017-12-31 07:47 - 000002154 _____ C:\Documents and Settings\Karel\Dokumenty\View.txt
2017-12-31 07:45 - 2017-12-31 07:54 - 000003362 _____ C:\Documents and Settings\Karel\Dokumenty\zaznam_Blue-Screen-View.txt
2017-12-31 07:37 - 2017-12-31 07:41 - 000000000 ____D C:\Documents and Settings\Karel\Nová složka (1)
2017-12-31 07:32 - 2017-12-31 07:32 - 000106496 _____ C:\WINDOWS\Minidump\Mini123117-01.dmp
2017-12-31 07:08 - 2017-12-31 07:08 - 000000000 _____ C:\Documents and Settings\Karel\last.dump
2017-12-30 21:31 - 2017-12-31 13:49 - 000001280 _____ C:\Documents and Settings\Karel\Dokumenty\odečty_2017-12.txt
2017-12-30 20:36 - 2017-12-30 20:37 - 000000000 ____D C:\Program Files\Realtek AC97
2017-12-30 20:28 - 2017-12-30 20:28 - 000000000 ____D C:\Program Files\Common Files\NVIDIA Shared
2017-12-30 20:28 - 2017-12-30 20:28 - 000000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\NVIDIA Corporation
2017-12-30 20:27 - 2005-09-28 11:08 - 000176128 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvuaudio.exe
2017-12-30 20:27 - 2000-01-01 01:00 - 000004624 _____ C:\WINDOWS\system32\nvaudio.nvu
2017-12-30 20:24 - 2000-01-01 01:00 - 000937984 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvmcp.sys
2017-12-30 20:24 - 2000-01-01 01:00 - 000414464 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvapu.sys
2017-12-30 20:24 - 2000-01-01 01:00 - 000066688 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvarm.sys
2017-12-30 20:24 - 2000-01-01 01:00 - 000054272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvopenal.dll
2017-12-30 20:24 - 2000-01-01 01:00 - 000053376 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvax.sys
2017-12-30 20:24 - 2000-01-01 01:00 - 000032256 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NVCOAD.DLL
2017-12-30 20:24 - 2000-01-01 01:00 - 000030208 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvasio.dll
2017-12-30 20:24 - 2000-01-01 01:00 - 000021504 _____ (NVIDIA Corporation) C:\WINDOWS\system32\OpenAL32.dll
2017-12-30 20:24 - 2000-01-01 01:00 - 000007680 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvack.dll
2017-12-30 20:24 - 2000-01-01 01:00 - 000005120 _____ (NVIDIA Corporation) C:\WINDOWS\system32\ALut.dll
2017-12-30 18:57 - 2000-01-01 01:00 - 000006045 _____ C:\WINDOWS\system32\nvnrm.nvu
2017-12-30 17:35 - 2000-01-01 01:00 - 000955520 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvnrm.sys
2017-12-30 17:35 - 2000-01-01 01:00 - 000215656 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NVCOSMB.DLL
2017-12-30 17:35 - 2000-01-01 01:00 - 000200704 _____ (NVIDIA Corporation) C:\WINDOWS\system32\fdco1.dll
2017-12-30 17:35 - 2000-01-01 01:00 - 000122880 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvconrm.dll
2017-12-30 17:35 - 2000-01-01 01:00 - 000054784 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\NVENETFD.sys
2017-12-30 17:35 - 2000-01-01 01:00 - 000022016 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvnetbus.sys
2017-12-30 17:35 - 2000-01-01 01:00 - 000009216 _____ (NVIDIA Corporation) C:\WINDOWS\system32\bdco1.dll
2017-12-30 17:26 - 2017-12-30 17:26 - 000000000 ____D C:\Documents and Settings\Karel\Local Settings\Data aplikací\Downloaded Installers
2017-12-30 17:25 - 2017-12-30 18:53 - 000000000 ____D C:\Documents and Settings\Karel\Local Settings\Data aplikací\SlimWare Utilities Inc
2017-12-30 17:13 - 2017-12-30 17:13 - 000005335 _____ C:\Documents and Settings\Karel\Dokumenty\S ovladači si nelámejte hlavu.txt
2017-12-30 16:58 - 2017-12-30 17:59 - 000000000 ____D C:\Documents and Settings\Karel\Local Settings\Data aplikací\indexer
2017-12-30 16:58 - 2017-12-30 16:58 - 000000000 ____D C:\Documents and Settings\Karel\Local Settings\Data aplikací\NetBoxLogs
2017-12-30 16:57 - 2017-12-30 16:58 - 000000000 ____D C:\Documents and Settings\Karel\Local Settings\Data aplikací\Kometa
2017-12-30 16:54 - 2017-12-30 16:54 - 000000000 __SHD C:\Documents and Settings\LocalService\IETldCache
2017-12-30 16:54 - 2017-12-30 16:54 - 000000000 ____D C:\Documents and Settings\Karel\Local Settings\Data aplikací\Mail.Ru
2017-12-30 16:46 - 2017-12-30 16:46 - 000000000 ____D C:\Program Files\Seznam.cz
2017-12-30 16:45 - 2018-01-05 08:26 - 000000000 ____D C:\Documents and Settings\Karel\Data aplikací\Seznam.cz
2017-12-30 16:35 - 2017-12-30 16:35 - 009120153 _____ C:\Documents and Settings\Karel\Dokumenty\slimdrivers-free_2.2.32705.52095 (1).exe
2017-12-30 16:34 - 2017-12-30 16:35 - 009120153 _____ C:\Documents and Settings\Karel\Dokumenty\slimdrivers-free_2.2.32705.52095.exe
2017-12-30 16:26 - 2017-12-31 07:52 - 000004360 _____ C:\Documents and Settings\Karel\Dokumenty\polozky_Blue-Screen-View_1.txt
2017-12-30 16:20 - 2017-12-30 16:21 - 000000000 ____D C:\Documents and Settings\Karel\Nabídka Start\Programy\NirSoft BlueScreenView
2017-12-30 16:20 - 2017-12-30 16:20 - 000000000 ____D C:\Program Files\NirSoft
2017-12-30 15:50 - 2017-12-30 15:50 - 000141864 _____ C:\Documents and Settings\Karel\Dokumenty\bluescreenview_setup.exe
2017-12-30 15:50 - 2017-12-30 15:50 - 000067310 _____ C:\Documents and Settings\Karel\Dokumenty\bluescreenview.zip
2017-12-30 14:14 - 2017-12-30 14:15 - 000000000 ____D C:\Documents and Settings\Karel\Nová složka (2)
2017-12-30 14:00 - 2017-12-30 14:00 - 000106496 _____ C:\WINDOWS\Minidump\Mini123017-01.dmp
2017-12-30 13:24 - 2017-12-30 13:24 - 000092993 _____ C:\Documents and Settings\Karel\Dokumenty\o15-ctrremove.diagcab
2017-12-30 11:04 - 2017-12-30 11:06 - 000000000 ____D C:\WINDOWS\system32\NtmsData
2017-12-29 15:34 - 2017-12-29 15:34 - 000090112 _____ C:\WINDOWS\Minidump\Mini122917-01.dmp
2017-12-29 09:23 - 2017-12-29 09:33 - 000004823 _____ C:\Documents and Settings\Karel\Dokumenty\Hard disk clone.txt
2017-12-29 08:25 - 2017-12-29 08:25 - 000000177 _____ C:\Documents and Settings\Karel\Dokumenty\Microsoft Office 2016 Professional.txt
2017-12-28 10:51 - 2017-12-28 10:51 - 000106496 _____ C:\WINDOWS\Minidump\Mini122817-01.dmp
2017-12-27 13:18 - 2018-01-03 22:08 - 000000783 _____ C:\Documents and Settings\Karel\Dokumenty\voličský průkaz.txt
2017-12-27 09:02 - 2017-12-27 09:01 - 000305840 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2017-12-27 09:02 - 2017-12-27 09:01 - 000118144 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHdsKe.sys
2017-12-25 07:38 - 2017-12-25 07:38 - 000106496 _____ C:\WINDOWS\Minidump\Mini122517-01.dmp
2017-12-24 18:46 - 2017-12-24 18:46 - 000000260 _____ C:\Documents and Settings\Karel\Dokumenty\Toman.txt
2017-12-24 14:46 - 2017-12-25 23:33 - 000077098 _____ C:\Documents and Settings\Karel\Dokumenty\mlete.txt
2017-12-24 12:52 - 2017-12-24 12:51 - 000106496 _____ C:\WINDOWS\Minidump\Mini122417-02.dmp
2017-12-24 12:05 - 2017-12-24 12:06 - 000001530 _____ C:\Documents and Settings\Karel\Dokumenty\prohlizec-udalosti-Treti.txt
2017-12-24 09:30 - 2017-12-24 09:30 - 000106496 _____ C:\WINDOWS\Minidump\Mini122417-01.dmp
2017-12-24 08:15 - 2018-01-01 08:26 - 000000000 ____D C:\Documents and Settings\Karel\Dokumenty\DIO 570 Tloušťkoměry_files
2017-12-24 08:15 - 2017-12-24 08:15 - 000017845 _____ C:\Documents and Settings\Karel\Dokumenty\DIO 570 Tloušťkoměry.html
2017-12-24 08:14 - 2017-12-24 08:14 - 000515731 _____ C:\Documents and Settings\Karel\Dokumenty\27.pdf
2017-12-22 11:20 - 2017-12-22 11:20 - 000280479 _____ C:\Documents and Settings\Karel\Dokumenty\KYA.pdf
2017-12-22 11:16 - 2017-12-22 11:16 - 000010781 _____ C:\Documents and Settings\Karel\Dokumenty\Kde sehnat dobré kondíky.txt
2017-12-21 21:53 - 2017-12-21 21:53 - 000003036 _____ C:\Documents and Settings\Karel\Dokumenty\Nastavení pro stahování pošty z Centrum.txt
2017-12-21 16:41 - 2017-12-21 16:41 - 000009897 _____ C:\Documents and Settings\Karel\Dokumenty\Zjednodušený výpočet usměrňovače.html
2017-12-21 16:41 - 2017-12-21 16:41 - 000000000 ____D C:\Documents and Settings\Karel\Dokumenty\Zjednodušený výpočet usměrňovače_files
2017-12-21 11:04 - 2017-12-21 11:04 - 000006968 _____ C:\Documents and Settings\Karel\Dokumenty\Jak zakázat protokol IPv6 nebo jeho součásti v sytému Windows.txt
2017-12-21 10:58 - 2017-12-21 10:58 - 000000000 ____D C:\Documents and Settings\Karel\Dokumenty\Znovupovolení protokolu IPv6 u rozhraní bez tunelového propojení a protokolu IPv6 u rozhraní tunelového propojení
2017-12-21 10:57 - 2017-12-21 10:57 - 000000000 ____D C:\Documents and Settings\Karel\Dokumenty\Znovupovolení protokolu IPv6 u všech rozhraní tunelového propojení
2017-12-21 10:56 - 2017-12-21 10:57 - 000000000 ____D C:\Documents and Settings\Karel\Dokumenty\Znovupovolení protokolu IPv6 u všech rozhraní bez tunelového propojení
2017-12-21 10:55 - 2017-12-21 10:56 - 000000000 ____D C:\Documents and Settings\Karel\Dokumenty\Upřednostnit protokol IPv6 před protokolem IPv4 v zásadách předpon
2017-12-21 10:54 - 2017-12-21 10:54 - 000000000 ____D C:\Documents and Settings\Karel\Dokumenty\Zakázání protokolu IPv6 na rozhraní bez tunelového propojení a na protokolu IPV6 rozhraní tunelového propojení
2017-12-21 10:51 - 2017-12-21 10:52 - 000000000 ____D C:\Documents and Settings\Karel\Dokumenty\Zákaz protokolu IPv6 u všech rozhraní tunelového propojení
2017-12-21 10:50 - 2017-12-21 10:51 - 000000000 ____D C:\Documents and Settings\Karel\Dokumenty\Zákaz protokolu IPv6 u všech rozhraní bez tunelového propojení
2017-12-21 10:50 - 2017-12-21 10:50 - 000000000 ____D C:\Documents and Settings\Karel\Dokumenty\Upřednostňování protokolu IPv4 před protokolem IPv6 v zásadách předpon
2017-12-21 10:19 - 2017-12-21 12:24 - 000004105 _____ C:\Documents and Settings\Karel\Dokumenty\Test vašeho IPv6 připojení.txt
2017-12-21 09:41 - 2017-12-21 09:52 - 000005618 _____ C:\Documents and Settings\Karel\Dokumenty\Protokoly IPv4+Protokoly IPv6.txt
2017-12-20 08:09 - 2017-12-20 08:08 - 000106496 _____ C:\WINDOWS\Minidump\Mini122017-01.dmp
2017-12-19 10:28 - 2017-12-19 10:28 - 000106496 _____ C:\WINDOWS\Minidump\Mini121917-01.dmp
2017-12-19 08:54 - 2017-12-20 08:11 - 000000000 ____D C:\Documents and Settings\Karel\Local Settings\Data aplikací\ApplicationHistory
2017-12-19 08:54 - 2017-12-19 08:54 - 000000125 _____ C:\Documents and Settings\Karel\Local Settings\Data aplikací\fusioncache.dat
2017-12-19 08:54 - 2017-12-19 08:54 - 000000000 __HDC C:\WINDOWS\$NtUninstallKB963093$
2017-12-18 21:03 - 2017-12-24 08:14 - 000000000 ____D C:\Documents and Settings\LocalService\Local Settings\Data aplikací\Adobe
2017-12-18 21:01 - 2018-01-05 09:01 - 000000328 ____H C:\WINDOWS\Tasks\CCleaner Update.job
2017-12-18 20:59 - 2017-12-18 20:59 - 011201632 _____ (Piriform Ltd) C:\Documents and Settings\Karel\Dokumenty\ccsetup538 (1).exe
2017-12-18 20:10 - 2017-12-18 20:10 - 000000000 __HDC C:\WINDOWS\$NtUninstallKB2808679$
2017-12-18 19:47 - 2017-12-18 19:47 - 000000000 __HDC C:\WINDOWS\$NtUninstallKB2492386$
2017-12-18 19:47 - 2017-12-18 19:47 - 000000000 __HDC C:\WINDOWS\$NtUninstallbasecsp$
2017-12-18 19:47 - 2017-12-18 19:47 - 000000000 ____D C:\Documents and Settings\Karel\Data aplikací\Windows Desktop Search
2017-12-18 19:46 - 2017-12-19 09:03 - 000000000 ____D C:\Program Files\Windows Desktop Search
2017-12-18 19:46 - 2017-12-18 19:46 - 000001796 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\Windows Search.lnk
2017-12-18 19:46 - 2017-12-18 19:46 - 000000000 __HDC C:\WINDOWS\$NtUninstallKB940157$
2017-12-18 19:46 - 2017-12-18 19:46 - 000000000 __HDC C:\WINDOWS\$NtUninstallKB915800-v4$
2017-12-18 19:43 - 2017-12-18 19:43 - 000000000 ____D C:\WINDOWS\system32\URTTEMP
2017-12-18 19:42 - 2011-08-16 11:45 - 000006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iecompat.dll
2017-12-18 19:03 - 2017-12-18 19:03 - 000106496 _____ C:\WINDOWS\Minidump\Mini121817-02.dmp
2017-12-18 19:00 - 2017-12-18 19:00 - 000000000 ____D C:\fc77d4fa06e65db7ebd242df31
2017-12-18 17:03 - 2017-12-18 17:03 - 000106496 _____ C:\WINDOWS\Minidump\Mini121817-01.dmp
2017-12-18 17:02 - 2017-12-18 17:02 - 000000000 ____D C:\b975259e00b0b5c0444d
2017-12-18 16:24 - 2017-12-18 16:24 - 000000000 ____D C:\WINDOWS\system32\appmgmt
2017-12-18 15:54 - 2017-12-18 15:54 - 000000000 ____D C:\Documents and Settings\Karel\Nabídka Start\Programy\ErrorFix Kit
2017-12-18 15:46 - 2018-01-03 19:48 - 000000000 ____D C:\Program Files\ErrorFixKIT
2017-12-18 07:48 - 2018-01-04 08:44 - 000000066 _____ C:\Documents and Settings\Karel\intlname.ols
2017-12-17 17:20 - 2017-12-17 17:20 - 000000000 ____D C:\Program Files\MSECache
2017-12-17 13:20 - 2017-12-17 13:20 - 000000000 ____D C:\Documents and Settings\Karel\Dokumenty\prilohy_6045
2017-12-17 13:17 - 2017-12-17 13:17 - 000000557 _____ C:\Documents and Settings\All Users\Plocha\DocX Viewer.lnk
2017-12-17 13:17 - 2017-12-17 13:17 - 000000000 ____D C:\epingsoft
2017-12-17 13:17 - 2017-12-17 13:17 - 000000000 ____D C:\Documents and Settings\All Users\Nabídka Start\Programy\Epingsoft
2017-12-17 12:03 - 2017-12-17 12:03 - 000851077 _____ C:\Documents and Settings\Karel\Dokumenty\prilohy_6045.zip
2017-12-17 11:35 - 2017-12-17 11:35 - 000127847 _____ C:\Documents and Settings\Karel\Dokumenty\T139008.RTF.zip
2017-12-14 14:23 - 2017-12-14 14:23 - 000016232 _____ C:\Documents and Settings\Karel\Dokumenty\poptvka-projekt-vodovodn-ppojky.eml
2017-12-14 11:09 - 2017-12-14 15:10 - 000000243 _____ C:\Documents and Settings\Karel\Dokumenty\chlazeni_chipsetu.txt
2017-12-13 11:14 - 2017-12-13 11:14 - 000000542 _____ C:\Documents and Settings\Karel\Dokumenty\HDClone 7.txt
2017-12-13 07:46 - 2017-12-13 07:46 - 000106496 _____ C:\WINDOWS\Minidump\Mini121317-01.dmp
2017-12-12 19:59 - 2017-12-12 19:59 - 000075830 _____ C:\Documents and Settings\Karel\Dokumenty\CSP_CCR_11_34_0011032189_20171211.PDF.zip
2017-12-12 11:17 - 2017-12-12 11:17 - 000000111 _____ C:\Documents and Settings\Karel\Dokumenty\ASUS-Mamka.txt
2017-12-12 10:05 - 2017-12-12 10:05 - 004229022 _____ C:\Documents and Settings\Karel\Dokumenty\p4b266 (Ger).pdf
2017-12-12 10:03 - 2017-12-12 10:03 - 004173187 _____ C:\Documents and Settings\Karel\Dokumenty\p4b266.pdf
2017-12-10 08:48 - 2017-12-10 08:48 - 000191494 _____ C:\Documents and Settings\Karel\Dokumenty\jak_zabudovat_vanu.pdf
2017-12-09 17:19 - 2017-12-09 20:13 - 000007294 _____ C:\Documents and Settings\Karel\Dokumenty\Naklonujte si harddisk.txt
2017-12-09 15:53 - 2017-12-09 15:53 - 000106496 _____ C:\WINDOWS\Minidump\Mini120917-01.dmp
2017-12-09 13:33 - 2017-12-09 13:33 - 000005791 _____ C:\Documents and Settings\Karel\Dokumenty\Ruční plnička a odsávačka.txt
2017-12-09 13:32 - 2017-12-09 13:32 - 000182292 _____ C:\Documents and Settings\Karel\Dokumenty\669_(1460_1)Tc.pdf
2017-12-09 12:45 - 2017-12-09 12:45 - 000189088 _____ C:\Documents and Settings\Karel\Dokumenty\375_(1924_1)T.pdf
2017-12-08 16:33 - 2017-12-08 16:33 - 000171338 _____ C:\Documents and Settings\Karel\Dokumenty\188_(671_4)Z.pdf
2017-12-08 16:32 - 2017-12-08 16:33 - 000171634 _____ C:\Documents and Settings\Karel\Dokumenty\188_(671_3)T (1).pdf
2017-12-08 16:31 - 2017-12-08 16:32 - 000169835 _____ C:\Documents and Settings\Karel\Dokumenty\188_(671_3)T.pdf
2017-12-08 11:37 - 2017-12-08 11:37 - 000002490 _____ C:\Documents and Settings\Karel\Dokumenty\vnější elektronika Hdd.txt
2017-12-08 10:14 - 2017-12-08 10:14 - 000780429 _____ C:\Documents and Settings\Karel\Dokumenty\Záchrana souborů svépomocí.pdf
2017-12-07 00:22 - 2017-12-07 00:22 - 000000614 _____ C:\Documents and Settings\Karel\Dokumenty\Mail-Honzik.txt
2017-12-06 15:06 - 2017-12-06 15:32 - 000001115 _____ C:\Documents and Settings\Karel\Dokumenty\elyt+konektor.txt
2017-12-06 14:37 - 2017-12-06 14:37 - 000986578 _____ C:\Documents and Settings\Karel\Dokumenty\dsh.806-017.1.pdf
2017-12-06 13:12 - 2017-12-06 13:11 - 000547365 _____ C:\Documents and Settings\Karel\Dokumenty\dsh.123-578.1.pdf
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2018-01-05 09:55 - 2017-03-09 16:46 - 000000000 ____D C:\Documents and Settings\Karel\Local Settings\Temp
2018-01-05 09:23 - 2017-03-14 19:57 - 000000470 _____ C:\WINDOWS\Tasks\SafeZone scheduled Autoupdate 1489517841.job
2018-01-05 09:14 - 2017-03-09 16:46 - 000000000 ___RD C:\Documents and Settings\Karel\Dokumenty
2018-01-05 09:02 - 2017-03-14 19:52 - 000000358 ____H C:\WINDOWS\Tasks\Avast Emergency Update.job
2018-01-05 09:00 - 2017-03-15 00:14 - 000001568 _____ C:\WINDOWS\Tasks\356g517g407P786.job
2018-01-05 08:21 - 2001-10-25 12:00 - 000002206 _____ C:\WINDOWS\system32\wpa.dbl
2018-01-05 08:16 - 2017-03-09 16:44 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2018-01-04 20:30 - 2017-03-14 22:30 - 000000000 _____ C:\WINDOWS\system32\last.dump
2018-01-04 19:40 - 2017-03-09 16:59 - 000000000 __RHD C:\Documents and Settings\All Users\Data aplikací
2018-01-04 16:01 - 2017-03-09 16:59 - 000000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy
2018-01-04 16:01 - 2017-03-09 16:59 - 000000000 ____D C:\Documents and Settings\All Users\Plocha
2018-01-04 15:19 - 2017-03-09 16:46 - 000000000 ___HD C:\Documents and Settings\Karel\Local Settings\Data aplikací
2018-01-04 14:33 - 2017-03-18 12:11 - 000000000 ____D C:\WINDOWS\Minidump
2018-01-04 14:13 - 2017-03-09 16:46 - 000000000 ___RD C:\Documents and Settings\Karel\Oblíbené položky
2018-01-04 13:23 - 2017-03-09 16:46 - 000000000 ____D C:\Documents and Settings\Karel\Plocha
2018-01-04 13:09 - 2017-03-09 16:46 - 000000000 ___RD C:\Documents and Settings\Karel\Nabídka Start
2018-01-04 13:06 - 2017-03-09 16:46 - 000000000 __RHD C:\Documents and Settings\Karel\Data aplikací
2018-01-04 13:02 - 2017-03-09 16:44 - 000032558 _____ C:\WINDOWS\SchedLgU.Txt
2018-01-04 13:00 - 2017-03-09 16:46 - 000000272 ___SH C:\Documents and Settings\Karel\ntuser.ini
2018-01-04 13:00 - 2017-03-09 16:46 - 000000000 ____D C:\Documents and Settings\Karel
2018-01-04 12:42 - 2017-03-14 15:39 - 000000000 ____D C:\Program Files\Opera
2018-01-04 12:04 - 2017-03-09 16:55 - 000000000 ____D C:\WINDOWS\Network Diagnostic
2018-01-03 18:19 - 2017-03-09 16:55 - 000000000 ___HD C:\WINDOWS\inf
2018-01-03 18:19 - 2017-03-09 16:44 - 000000000 ___HD C:\Documents and Settings\LocalService\Local Settings\Data aplikací
2018-01-01 08:57 - 2017-03-09 16:55 - 000000000 ____D C:\WINDOWS\security
2018-01-01 08:27 - 2017-03-18 15:15 - 000000000 ____D C:\Documents and Settings\Karel\Dokumenty\Belarc Advisor Computer Profile_PRED-SITI_files
2017-12-31 15:42 - 2017-03-09 16:55 - 000000000 RSHDC C:\WINDOWS\system32\dllcache
2017-12-30 21:02 - 2017-03-15 18:11 - 000000000 ____D C:\Documents and Settings\Karel\Nová složka
2017-12-30 20:48 - 2017-03-15 14:50 - 000000000 ____D C:\Program Files\NVIDIA Corporation
2017-12-30 20:48 - 2017-03-15 14:48 - 000000000 ____D C:\WINDOWS\system32\ReinstallBackups
2017-12-30 20:29 - 2001-10-25 12:00 - 000597390 _____ C:\WINDOWS\system32\perfh005.dat
2017-12-30 20:29 - 2001-10-25 12:00 - 000133102 _____ C:\WINDOWS\system32\perfc005.dat
2017-12-30 20:28 - 2017-03-09 19:43 - 000000000 ___HD C:\Program Files\InstallShield Installation Information
2017-12-30 20:28 - 2017-03-09 17:00 - 001442866 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-12-30 17:25 - 2017-03-09 16:59 - 000000000 ___RD C:\Documents and Settings\All Users\Dokumenty
2017-12-30 16:54 - 2017-03-09 16:59 - 000000000 ____D C:\Documents and Settings\All Users\Oblíbené položky
2017-12-30 16:54 - 2017-03-09 16:44 - 000000000 __SHD C:\Documents and Settings\LocalService
2017-12-30 16:54 - 2017-03-09 16:37 - 000000000 ___HD C:\WINDOWS\system32\GroupPolicy
2017-12-30 16:20 - 2017-03-09 16:46 - 000000000 ___RD C:\Documents and Settings\Karel\Nabídka Start\Programy
2017-12-29 12:12 - 2017-03-15 18:11 - 000000000 ____D C:\Documents and Settings\Karel\CC_Zaloha
2017-12-27 09:02 - 2017-11-17 07:57 - 000158224 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswArPot.sys
2017-12-27 09:02 - 2017-03-15 15:46 - 000390272 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2017-12-27 09:02 - 2017-03-15 15:46 - 000294680 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2017-12-27 09:02 - 2017-03-15 15:46 - 000205360 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStmXP.sys
2017-12-27 09:02 - 2017-03-15 15:46 - 000124408 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2017-12-27 09:02 - 2017-03-15 15:46 - 000070832 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2017-12-27 09:02 - 2017-03-15 15:46 - 000070208 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr.sys
2017-12-27 09:02 - 2017-03-15 15:46 - 000042824 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2017-12-27 09:01 - 2017-03-15 15:46 - 000783104 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2017-12-27 09:01 - 2017-03-15 15:46 - 000276696 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswblogx.sys
2017-12-27 09:01 - 2017-03-15 15:46 - 000255584 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidsdriverx.sys
2017-12-27 09:01 - 2017-03-15 15:46 - 000157376 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbidshx.sys
2017-12-27 09:01 - 2017-03-15 15:46 - 000050344 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswbunivx.sys
2017-12-19 08:54 - 2017-03-09 17:00 - 000001393 _____ C:\WINDOWS\imsins.BAK
2017-12-19 08:54 - 2017-03-09 16:32 - 000000000 ____D C:\WINDOWS\Registration
2017-12-18 21:01 - 2017-03-15 18:07 - 000000683 _____ C:\Documents and Settings\All Users\Plocha\CCleaner.lnk
2017-12-18 21:01 - 2017-03-15 18:07 - 000000000 ____D C:\Program Files\CCleaner
2017-12-18 20:06 - 2017-03-14 20:13 - 000000000 ____D C:\WINDOWS\ie8updates
2017-12-18 20:06 - 2017-03-09 16:37 - 000000000 ___HD C:\WINDOWS\$hf_mig$
2017-12-18 19:46 - 2017-03-09 16:59 - 000000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
2017-12-18 19:45 - 2017-03-09 16:55 - 000000000 ____D C:\WINDOWS\system32\mui
2017-12-18 19:45 - 2017-03-09 16:32 - 000000000 ___RD C:\Documents and Settings\All Users\Nabídka Start\Programy\Nástroje pro správu
2017-12-18 10:54 - 2017-03-09 20:50 - 000021744 _____ C:\Documents and Settings\Karel\Local Settings\Data aplikací\GDIPFONTCACHEV1.DAT
2017-12-18 07:20 - 2017-03-09 16:58 - 000136464 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2017-12-17 17:20 - 2017-03-09 19:35 - 000000000 ____D C:\Program Files\Microsoft Office
2017-12-17 17:20 - 2017-03-09 17:00 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared
2017-12-12 20:17 - 2017-03-10 12:49 - 004026590 _____ C:\WINDOWS\pfirewall.log.old
2017-12-06 15:25 - 2017-12-05 18:24 - 000000857 _____ C:\Documents and Settings\Karel\Dokumenty\Plast-nyty.txt
==================== Files in the root of some directories =======
2017-04-30 12:05 - 2017-04-30 13:03 - 000000115 _____ () C:\Documents and Settings\Karel\Data aplikací\LogFile.txt
2017-12-19 08:54 - 2017-12-19 08:54 - 000000125 _____ () C:\Documents and Settings\Karel\Local Settings\Data aplikací\fusioncache.dat
Some files in TEMP:
====================
2017-12-30 16:58 - 2017-12-30 16:58 - 001651791 _____ () C:\Documents and Settings\Karel\Local Settings\Temp\26EciYfKuW2I.exe
2017-12-30 16:57 - 2017-12-30 16:57 - 001646159 _____ () C:\Documents and Settings\Karel\Local Settings\Temp\32oJG7lgprqw.exe
2017-12-30 17:00 - 2017-12-30 17:00 - 001437695 _____ () C:\Documents and Settings\Karel\Local Settings\Temp\B376B91dDKlm.exe
2017-12-30 17:01 - 2017-12-30 17:01 - 000199247 _____ () C:\Documents and Settings\Karel\Local Settings\Temp\cV0ez6L2qZ7I.exe
2017-12-30 16:59 - 2017-12-30 16:59 - 002220031 _____ () C:\Documents and Settings\Karel\Local Settings\Temp\dDLFPMvkG25m.exe
2017-12-30 16:54 - 2017-12-30 16:54 - 000985599 _____ () C:\Documents and Settings\Karel\Local Settings\Temp\hEyxbth38iUs.exe
2018-01-04 19:42 - 2018-01-04 19:42 - 083316440 _____ (Malwarebytes ) C:\Documents and Settings\Karel\Local Settings\Temp\mb3-setup-consumer-3.3.1.2183-1.0.262-1.0.3374.exe
2017-12-30 16:59 - 2017-12-30 16:59 - 002769919 _____ () C:\Documents and Settings\Karel\Local Settings\Temp\ONchelSrDYGL.exe
2017-12-30 16:58 - 2017-12-30 16:58 - 001515007 _____ () C:\Documents and Settings\Karel\Local Settings\Temp\PLfTZjknTzDZ.exe
2017-12-30 16:55 - 2017-12-30 16:55 - 000985599 _____ () C:\Documents and Settings\Karel\Local Settings\Temp\S8NvIugB5Z5g.exe
2017-12-30 17:25 - 2017-12-30 17:25 - 000225472 _____ (SlimWare Utilities, Inc.) C:\Documents and Settings\Karel\Local Settings\Temp\scp3AC.tmp.exe
2017-12-30 17:02 - 2017-12-30 17:02 - 000203263 _____ () C:\Documents and Settings\Karel\Local Settings\Temp\TTk4JacEg0Yv.exe
2017-12-30 17:00 - 2017-12-30 17:00 - 001651791 _____ () C:\Documents and Settings\Karel\Local Settings\Temp\VonDwU0B9v68.exe
2017-12-30 16:56 - 2017-12-30 16:56 - 001646159 _____ () C:\Documents and Settings\Karel\Local Settings\Temp\yQq4fs3GuVg6.exe
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
==================== End of FRST.txt ============================
Logfile of random's system information tool 1.10 (written by random/random)
Run by Karel at 2018-01-05 09:06:07
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 19 GB (50%) free of 38 GB
Total RAM: 1023 MB (5% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:06:28, on 5.1.2018
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\BDServices\BitDefenderCom.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\AVAST Software\Avast\aswidsagent.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\CNAP3LAK.EXE
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\CNACESWK.EXE
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\CNACESWK.EXE
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\CNACESWK.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Documents and Settings\Karel\Data aplikací\Seznam.cz\bin\szndesktop.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Documents and Settings\Karel\Dokumenty\Downloads\RSIT (5).exe
C:\Program Files\trend micro\Karel.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [DWPersistentQueuedReporting] C:\Program Files\Common Files\Microsoft Shared\DW\DWTRIG20.EXE -a
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [CNAP3 Launcher] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\CNAP3LAK.EXE
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [NVMixerTray] "C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe"
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Documents and Settings\Karel\Data aplikací\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Documents and Settings\Karel\Data aplikací\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [_nltide_2] regsvr32 /s /n /i:U shell32 (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [_nltide_2] regsvr32 /s /n /i:U shell32 (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [_nltide_2] regsvr32 /s /n /i:U shell32 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [_nltide_2] regsvr32 /s /n /i:U shell32 (User 'Default user')
O4 - Global Startup: Windows Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\AVAST Software\Avast\aswidsagent.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: BitDefenderCOM - Digital Care Solutions - C:\Program Files\BDServices\BitDefenderCom.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Služba Aktualizace Google (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Aktualizace Google (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
--
End of file - 6985 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\356g517g407P786.job - C:\WINDOWS\system32\rundll32.exe "C:\Documents and Settings\All Users\Data aplikací\356g517g407P786\356g517g407P786.dll",gPZSpiuut
C:\WINDOWS\tasks\Avast Emergency Update.job - C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe
C:\WINDOWS\tasks\CCleaner Update.job - C:\Program Files\CCleaner\CCUpdate.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe
C:\WINDOWS\tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job - C:\WINDOWS\system32\xp_eos.exe -c
C:\WINDOWS\tasks\SafeZone scheduled Autoupdate 1489517841.job - C:\Program Files\AVAST Software\SZBrowser\launcher.exe --scheduledautoupdate $(Arg0)
C:\WINDOWS\tasks\TweakBit Driver Updater Start Driver Updater automatic scanning.job - C:\Program Files\TweakBit\Driver Updater\DriverUpdater.exe -UseTray -autoscan
C:\WINDOWS\tasks\TweakBit Driver Updater Start Driver Updater оn logon.job - C:\Program Files\TweakBit\Driver Updater\DriverUpdater.exe -UseTray
C:\WINDOWS\tasks\TweakBit Driver Updater Time for deal.job - C:\Program Files\TweakBit\Driver Updater\DriverUpdater.exe -UseTray -timefordeal
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-11-17 820672]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"DWPersistentQueuedReporting"=C:\Program Files\Common Files\Microsoft Shared\DW\DWTRIG20.EXE [2007-03-13 39264]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2017-12-27 246120]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]
"CNAP3 Launcher"=C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\CNAP3LAK.EXE [2012-06-14 228520]
"seznam-listicka-distribuce"=C:\Program Files\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"NVMixerTray"=C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe [2004-12-20 131072]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2000-01-01 577536]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
"cz.seznam.software.autoupdate"=C:\Documents and Settings\Karel\Data aplikací\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Documents and Settings\Karel\Data aplikací\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner.exe [2017-12-13 7972528]
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Windows Search.lnk - C:\Program Files\Windows Desktop Search\WindowsSearch.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2006-03-22 61440]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\wpdshserviceobj.dll [2013-08-22 133632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-24 304128]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"authentication packages"=msv1_0
nwprovau
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Google\Chrome\Application\chrome.exe"="C:\Program Files\Google\Chrome\Application\chrome.exe:*:Enabled:Google Chrome"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
======List of files/folders created in the last 1 month======
2018-01-04 22:37:07 ----D---- C:\Program Files\trend micro
2018-01-04 22:37:04 ----D---- C:\rsit
2018-01-04 19:40:29 ----D---- C:\Documents and Settings\All Users\Data aplikací\MB2Migration
2018-01-04 16:01:04 ----A---- C:\WINDOWS\system32\drivers\mbam.sys
2018-01-04 16:01:03 ----D---- C:\Program Files\Malwarebytes Anti-Malware
2018-01-04 16:01:03 ----D---- C:\Documents and Settings\All Users\Data aplikací\Malwarebytes
2018-01-04 16:00:14 ----A---- C:\WINDOWS\system32\drivers\mbamchameleon.sys
2018-01-04 15:55:29 ----D---- C:\Program Files\mbam-chameleon-3.1.33.0
2018-01-04 14:22:02 ----D---- C:\Program Files\Google
2018-01-04 13:06:05 ----D---- C:\Documents and Settings\Karel\Data aplikací\Seznam Browser
2018-01-04 13:02:39 ----D---- C:\Documents and Settings\All Users\Data aplikací\SWCUTemp
2018-01-03 21:11:30 ----D---- C:\AdwCleaner
2018-01-03 20:08:50 ----D---- C:\Documents and Settings\Karel\Data aplikací\ESET
2018-01-03 18:16:24 ----D---- C:\Program Files\ESET
2018-01-03 18:16:24 ----D---- C:\Documents and Settings\All Users\Data aplikací\ESET
2017-12-30 20:36:58 ----D---- C:\Program Files\Realtek AC97
2017-12-30 20:28:38 ----D---- C:\Program Files\Common Files\NVIDIA Shared
2017-12-30 20:27:39 ----A---- C:\WINDOWS\system32\nvuaudio.exe
2017-12-30 20:24:45 ----A---- C:\WINDOWS\system32\OpenAL32.dll
2017-12-30 20:24:45 ----A---- C:\WINDOWS\system32\drivers\nvmcp.sys
2017-12-30 20:24:45 ----A---- C:\WINDOWS\system32\drivers\nvax.sys
2017-12-30 20:24:45 ----A---- C:\WINDOWS\system32\drivers\nvarm.sys
2017-12-30 20:24:45 ----A---- C:\WINDOWS\system32\drivers\nvapu.sys
2017-12-30 20:24:41 ----A---- C:\WINDOWS\system32\nvopenal.dll
2017-12-30 20:24:41 ----A---- C:\WINDOWS\system32\NVCOAD.DLL
2017-12-30 20:24:41 ----A---- C:\WINDOWS\system32\nvasio.dll
2017-12-30 20:24:41 ----A---- C:\WINDOWS\system32\nvack.dll
2017-12-30 20:24:41 ----A---- C:\WINDOWS\system32\ALut.dll
2017-12-30 17:35:12 ----A---- C:\WINDOWS\system32\drivers\nvnrm.sys
2017-12-30 17:35:12 ----A---- C:\WINDOWS\system32\drivers\nvnetbus.sys
2017-12-30 17:35:12 ----A---- C:\WINDOWS\system32\drivers\NVENETFD.sys
2017-12-30 17:35:04 ----A---- C:\WINDOWS\system32\NVCOSMB.DLL
2017-12-30 17:35:03 ----A---- C:\WINDOWS\system32\nvconrm.dll
2017-12-30 17:35:03 ----A---- C:\WINDOWS\system32\fdco1.dll
2017-12-30 17:35:03 ----A---- C:\WINDOWS\system32\bdco1.dll
2017-12-30 16:46:03 ----D---- C:\Program Files\Seznam.cz
2017-12-30 16:45:22 ----D---- C:\Documents and Settings\Karel\Data aplikací\Seznam.cz
2017-12-30 16:20:59 ----D---- C:\Program Files\NirSoft
2017-12-30 11:04:49 ----D---- C:\WINDOWS\system32\NtmsData
2017-12-27 09:02:37 ----A---- C:\WINDOWS\system32\drivers\aswHdsKe.sys
2017-12-27 09:02:18 ----A---- C:\WINDOWS\system32\aswBoot.exe
2017-12-19 08:54:39 ----HDC---- C:\WINDOWS\$NtUninstallKB963093$
2017-12-18 20:10:46 ----HDC---- C:\WINDOWS\$NtUninstallKB2808679$
2017-12-18 19:47:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2492386$
2017-12-18 19:47:19 ----HDC---- C:\WINDOWS\$NtUninstallbasecsp$
2017-12-18 19:47:02 ----D---- C:\Documents and Settings\Karel\Data aplikací\Windows Desktop Search
2017-12-18 19:46:25 ----D---- C:\Program Files\Windows Desktop Search
2017-12-18 19:46:17 ----HDC---- C:\WINDOWS\$NtUninstallKB940157$
2017-12-18 19:46:06 ----HDC---- C:\WINDOWS\$NtUninstallKB915800-v4$
2017-12-18 19:43:56 ----D---- C:\WINDOWS\system32\URTTEMP
2017-12-18 19:00:24 ----D---- C:\fc77d4fa06e65db7ebd242df31
2017-12-18 17:02:11 ----D---- C:\b975259e00b0b5c0444d
2017-12-18 16:24:01 ----D---- C:\WINDOWS\system32\appmgmt
2017-12-18 15:46:02 ----D---- C:\Program Files\ErrorFixKIT
2017-12-17 17:20:33 ----D---- C:\Program Files\MSECache
2017-12-17 13:17:11 ----D---- C:\epingsoft
======List of files/folders modified in the last 1 month======
2018-01-05 09:06:00 ----D---- C:\WINDOWS\Prefetch
2018-01-05 09:05:47 ----D---- C:\WINDOWS\Temp
2018-01-05 08:38:41 ----D---- C:\WINDOWS\system32\CatRoot2
2018-01-04 22:37:07 ----RD---- C:\Program Files
2018-01-04 16:01:04 ----D---- C:\WINDOWS\system32\drivers
2018-01-04 14:33:10 ----D---- C:\WINDOWS
2018-01-04 14:33:08 ----D---- C:\WINDOWS\Minidump
2018-01-04 14:27:06 ----SHD---- C:\WINDOWS\Installer
2018-01-04 14:22:07 ----SD---- C:\WINDOWS\Tasks
2018-01-04 13:02:02 ----A---- C:\WINDOWS\SchedLgU.Txt
2018-01-04 12:42:42 ----D---- C:\Program Files\Opera
2018-01-04 12:04:00 ----D---- C:\WINDOWS\Network Diagnostic
2018-01-03 21:26:42 ----D---- C:\Program Files\Common Files
2018-01-03 18:19:58 ----HD---- C:\WINDOWS\inf
2018-01-03 18:18:35 ----D---- C:\Config.Msi
2018-01-01 08:57:52 ----D---- C:\WINDOWS\security
2017-12-31 15:42:25 ----RSHDC---- C:\WINDOWS\system32\dllcache
2017-12-30 20:48:54 ----D---- C:\WINDOWS\system32\ReinstallBackups
2017-12-30 20:48:54 ----D---- C:\WINDOWS\system32
2017-12-30 20:48:54 ----D---- C:\Program Files\NVIDIA Corporation
2017-12-30 20:28:59 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2017-12-30 20:28:37 ----HD---- C:\Program Files\InstallShield Installation Information
2017-12-30 18:58:29 ----D---- C:\WINDOWS\system32\CatRoot
2017-12-30 16:54:32 ----HD---- C:\WINDOWS\system32\GroupPolicy
2017-12-30 11:04:48 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2017-12-19 08:54:46 ----A---- C:\WINDOWS\imsins.BAK
2017-12-19 08:54:01 ----D---- C:\WINDOWS\Registration
2017-12-18 21:01:29 ----D---- C:\Program Files\CCleaner
2017-12-18 20:51:46 ----D---- C:\WINDOWS\AppPatch
2017-12-18 20:21:25 ----RSD---- C:\WINDOWS\assembly
2017-12-18 20:21:25 ----D---- C:\WINDOWS\Microsoft.NET
2017-12-18 20:09:18 ----D---- C:\WINDOWS\WinSxS
2017-12-18 20:06:37 ----D---- C:\WINDOWS\ie8updates
2017-12-18 20:06:36 ----HD---- C:\WINDOWS\$hf_mig$
2017-12-18 20:06:28 ----D---- C:\Program Files\Internet Explorer
2017-12-18 19:46:26 ----D---- C:\WINDOWS\system32\cs-cz
2017-12-18 19:46:24 ----D---- C:\WINDOWS\system32\wbem
2017-12-18 19:45:14 ----D---- C:\WINDOWS\system32\mui
2017-12-18 16:25:05 ----D---- C:\WINDOWS\SoftwareDistribution
2017-12-18 15:48:44 ----D---- C:\WINDOWS\system32\en-US
2017-12-18 15:48:18 ----D---- C:\Program Files\Microsoft.NET
2017-12-17 17:21:36 ----SD---- C:\Documents and Settings\Karel\Data aplikací\Microsoft
2017-12-17 17:20:57 ----RSD---- C:\WINDOWS\Fonts
2017-12-17 17:20:51 ----D---- C:\Program Files\Microsoft Office
2017-12-17 17:20:50 ----D---- C:\Program Files\Common Files\Microsoft Shared
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidshx.sys [2017-12-27 157376]
R0 aswblog;aswblog; C:\WINDOWS\system32\drivers\aswblogx.sys [2017-12-27 276696]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbunivx.sys [2017-12-27 50344]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2017-12-27 70832]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2017-12-27 294680]
R0 FTTXR5_O;FTTXR5_O; C:\WINDOWS\system32\DRIVERS\fttxr5_O.sys [2008-01-16 177152]
R0 mv61xxmm;mv61xxmm; C:\WINDOWS\system32\drivers\mv61xxmm.sys [2013-08-22 14184]
R0 mv64xxmm;mv64xxmm; C:\WINDOWS\system32\drivers\mv64xxmm.sys [2013-08-22 5632]
R0 mvxxmm;mvxxmm; C:\WINDOWS\system32\drivers\mvxxmm.sys [2013-08-22 14184]
R0 nvatabus;nvatabus; C:\WINDOWS\system32\DRIVERS\nvatabus.sys [2006-02-26 89856]
R0 nvcchflt;NVIDIA Disk Cache Filter Driver; C:\WINDOWS\system32\DRIVERS\nvcchflt.sys [2006-02-26 16640]
R0 nvgts;nvgts; C:\WINDOWS\system32\DRIVERS\nvgts.sys [2000-01-01 145952]
R0 nvraid;nvraid; C:\WINDOWS\system32\drivers\nvraid.sys [2013-08-22 89344]
R0 nvrd32;NVIDIA nForce RAID Driver; C:\WINDOWS\system32\DRIVERS\nvrd32.sys [2010-04-09 139368]
R1 AmdPPM;Ovladač procesoru HwPState AMD; C:\WINDOWS\system32\DRIVERS\AmdPPM.sys [2007-04-16 33792]
R1 aswArPot;aswArPot; C:\WINDOWS\system32\drivers\aswArPot.sys [2017-12-27 158224]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdriverx.sys [2017-12-27 255584]
R1 aswHdsKe;aswHdsKe; C:\WINDOWS\system32\drivers\aswHdsKe.sys [2017-12-27 118144]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2017-09-01 39784]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2017-12-27 70208]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2017-12-27 783104]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2017-12-27 390272]
R1 BANTExt;Belarc SMBios Access; C:\WINDOWS\System32\Drivers\BANTExt.sys [2015-11-19 3840]
R1 eamonm;eamonm; C:\WINDOWS\system32\DRIVERS\eamonm.sys [2016-06-28 206496]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2016-06-28 156320]
R1 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2016-06-28 162472]
R1 epfwtdi;epfwtdi; C:\WINDOWS\system32\DRIVERS\epfwtdi.sys [2016-06-28 77992]
R1 Tcpip6;Ovladač protokolu Microsoft IPv6; C:\WINDOWS\system32\DRIVERS\tcpip6.sys [2013-08-22 226880]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2017-12-27 124408]
R2 ekbdflt;ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [2016-06-28 121504]
R2 NwlnkIpx;Transportní protokol kompatibilní s NWLink IPX/SPX/NetBIOS; C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys [2008-04-13 88320]
R2 NwlnkNb;Služba NWLink pro rozhraní NetBIOS; C:\WINDOWS\system32\DRIVERS\nwlnknb.sys [2001-10-25 63232]
R2 NwlnkSpx;Protokol NWLink SPX/SPXII; C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys [2001-10-25 55936]
R3 AIRPLUS;D-Link AirPlus Wireless Adapter; C:\WINDOWS\system32\DRIVERS\airplus.sys [2006-08-15 255360]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2000-01-01 4122368]
R3 aswStmXP;aswStmXP; C:\WINDOWS\system32\drivers\aswStmXP.sys [2017-12-27 205360]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2006-03-22 1522688]
R3 Epfwndis;Eset Personal Firewall; C:\WINDOWS\system32\DRIVERS\Epfwndis.sys [2016-06-28 55968]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2013-08-22 12160]
R3 NVENETFD;NVIDIA nForce 10/100/1000 Mbps Ethernet ; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2000-01-01 54784]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2000-01-01 22016]
R3 NWRDR;NetWare Rdr; C:\WINDOWS\system32\DRIVERS\nwrdr.sys [2008-04-13 163584]
R3 tunmp;Microsoft Tun Miniport Adapter Driver; C:\WINDOWS\system32\DRIVERS\tunmp.sys [2013-08-22 12288]
R3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2009-07-14 444136]
S3 aswHwid;aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [2017-12-27 42824]
S3 nvax;Service for NVIDIA(R) nForce(TM) Audio Enumerator; C:\WINDOWS\system32\drivers\nvax.sys [2000-01-01 53376]
S3 nvnforce;Service for NVIDIA(R) nForce(TM) Audio; C:\WINDOWS\system32\drivers\nvapu.sys [2000-01-01 414464]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 Trufos;Trufos; C:\WINDOWS\system32\DRIVERS\Trufos.sys [2017-04-13 378336]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2013-08-22 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2013-08-22 82944]
S4 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-10-25 12032]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 6to4;Pomocná služba protokolu IPv6; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2006-03-22 405504]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2017-12-27 301168]
R2 BitDefenderCOM;BitDefenderCOM; C:\Program Files\BDServices\BitDefenderCom.exe [2017-04-13 776192]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2016-06-10 2000856]
R2 NWCWorkstation;Klient systému NetWare; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2008-05-26 439808]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\aswidsagent.exe [2017-12-27 5906816]
S2 ATI Smart;ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [2006-03-17 520192]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Aktualizace Google (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2018-01-04 153168]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Aktualizace Google (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2018-01-04 153168]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2011-10-27 718384]
S3 WinRM;Windows Remote Management (WS-Management); C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2009-02-04 913920]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-07-20 754856]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------