Prosim o kontrolu

Zpráva

Albrecht · #1 Příspěvek od **Albrecht** » 19 zář 2015 20:07

Prosim o kontrolu NTB v posledni dobe neslape zrovna rychle dekuji.

---------------------------------------------------------------------------------

Logfile of random's system information tool 1.10 (written by random/random)
Run by Petr at 2015-09-19 21:05:38
Microsoft Windows 10 Home
System drive C: has 26 GB (9%) free of 286 GB
Total RAM: 6030 MB (60% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:05:41, on 19.09.2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.10240.16412)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnCfg.exe
C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe
C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
C:\Program Files (x86)\TeamViewer\TeamViewer.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Petr\AppData\Local\Viber\Viber.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Users\Petr\AppData\Local\Microsoft\OneDrive\OneDrive.exe
C:\Users\Petr\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Petr.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll
O4 - HKLM\..\Run: [ASUSPRP] "C:\Program Files (x86)\ASUS\APRP\APRP.EXE"
O4 - HKLM\..\Run: [ASUSWebStorage] C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSPanel.exe /S
O4 - HKLM\..\Run: [ASUS InstantKey] C:\Program Files (x86)\ASUS\ASUS Instant Key\Ikey_start.exe
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKCU\..\Run: [WebcamMaxAutoRun] "C:\Program Files (x86)\WebcamMax\wcmmon.exe" -a
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Google Update] "C:\Users\Petr\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_795A6C1EC44E0A41F3030B5EF87A210A] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
O4 - HKCU\..\Run: [Viber] "C:\Users\Petr\AppData\Local\Viber\Viber.exe" StartMinimized
O4 - HKCU\..\Run: [Dropbox Update] "C:\Users\Petr\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
O4 - HKCU\..\Run: [OneDrive] "C:\Users\Petr\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Startup: Dropbox.lnk = Petr\AppData\Roaming\Dropbox\bin\Dropbox.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: C:\WINDOWS\SysWOW64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUSTek Computer Inc. - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ASUS InstantOn Service (ASUS InstantOn) - ASUS - C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe
O23 - Service: Asus WebStorage Windows Service - Unknown owner - C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - Avast Software s.r.o. - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe
O23 - Service: BitRaider Mini-Support Service Stub Loader (BRSptStub) - BitRaider, LLC - C:\ProgramData\BitRaider\BRSptStub.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: Foxit Cloud Safe Update Service (FoxitCloudUpdateService) - Foxit Software Inc. - C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\WINDOWS\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Wireless Bluetooth(R) 4.0 Radio Management - Intel Corporation - C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\System32\ngcsvc.dll,-100 (NgcSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\WINDOWS\system32\nvvsvc.exe (file missing)
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 10 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 12722 bytes

======Listing Processes======

winlogon.exe

C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
"dwm.exe"
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalService
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-fdc8060a-e317-4e44-be41-72aad62f1394 -SystemEventPortName:HostProcess-bbba9d22-3ea3-499f-821c-9162ae0242e9 -IoCancelEventPortName:HostProcess-f92415d7-d5d4-4667-a0c5-5e80194a0b93 -NonStateChangingEventPortName:HostProcess-57eb47ac-15dd-427d-a56c-d56d4fc51d14 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:38dc9ca3-c29f-443b-a7d7-e6e5772a9444 -DeviceGroupId:WudfDefaultDevicePool
"C:\WINDOWS\system32\nvvsvc.exe"
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
dashost.exe {45cbf0c2-729b-4461-9a43d462bd7832b2}
C:\WINDOWS\System32\svchost.exe -k NetworkService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\WINDOWS\system32\nvvsvc.exe -session -first
C:\WINDOWS\system32\igfxCUIService.exe
"C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe"
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files\Elantech\ETDService.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe"
"C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe"
C:\WINDOWS\system32\svchost.exe -k appmodel
"C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe"
"C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe"
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe"
sihost.exe
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
"C:\Program Files\ASUS\P4G\BatteryLife.exe"
"C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnCfg.exe"
"C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnWMI.exe"
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe"
"C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe"
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\ASUS\Splendid\ACMON.exe"
"C:\Program Files (x86)\TeamViewer\TeamViewer.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
KBFiltr.exe
"C:\Program Files (x86)\TeamViewer\tv_w32.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\TeamViewer10_Logfile.log
"C:\Program Files (x86)\TeamViewer\tv_x64.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\TeamViewer10_Logfile.log
"C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe"
"C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe"
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler64.exe"
"C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe"
"C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca

"C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe"
"C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /MAXX3
"C:\Windows\System32\igfxTray.exe"
"C:\WINDOWS\system32\igfxEM.exe" -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window
"C:\Program Files\CCleaner\CCleaner.exe" /MONITOR /uac
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --on-initialized-event-handle=780 --parent-handle=784
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="5788.0.1240437416\1039079424" --supports-dual-gpus=false --gpu-driver-bug-workarounds=2,20,45 --gpu-vendor-id=0x8086 --gpu-device-id=0x0166 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=10.18.10.4252 --ignored=" --type=renderer " /prefetch:822062411
"C:\Users\Petr\AppData\Local\Viber\Viber.exe" StartMinimized
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group2 pct:10b stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/OmniboxBundledExperimentV1/Postperiod_AnswersInSuggest_A4/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledMin4/*RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/*SdchPersistence/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_90/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-5-Percent/group_05/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --extension-process --enable-webrtc-hw-h264-encoding --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="5788.2.103695574\1721803709" --font-cache-shared-handle=2712 /prefetch:673131151
"C:\Users\Petr\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
"C:\Users\Petr\AppData\Roaming\Dropbox\bin\Dropbox.exe" /systemstartup
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"fontdrvhost.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
C:\WINDOWS\sysWOW64\wbem\wmiprvse.exe -Embedding
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\Windows\System32\InstallAgent.exe -Embedding
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe_S-1-5-21-2019586175-721206791-4067971009-10024_ Global\UsGthrCtrlFltPipeMssGthrPipe_S-1-5-21-2019586175-721206791-4067971009-10024 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon" "1"
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe5_ Global\UsGthrCtrlFltPipeMssGthrPipe5 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
C:\Windows\System32\SystemSettingsBroker.exe -Embedding
C:\WINDOWS\system32\DllHost.exe /Processid:{478B41E6-3257-4519-BDA8-E971F9843849}
"C:\WINDOWS\System32\NetworkUXBroker.exe" -ServerName:Windows.Networking.UX
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtrials="*AffiliationBasedMatching/Enabled/AudioProcessing48kHzSupport/Default/AutofillEnabled/Default/*BrowserBlacklist/Enabled/CaptivePortalInterstitial/Enabled/*ChildAccountDetection/Disabled/ChromeDashboard/Default/*ClientSideDetectionModel/Model0/*DomRel-Enable/enable/*EmbeddedSearch/Group2 pct:10b stable:pp2 prefetch_results:1 reuse_instant_search_base_page:1/EnableSessionCrashedBubbleUI/Disabled/*EnhancedBookmarks/Default/*ExtensionContentVerification/Enforce/ExtensionDeveloperModeWarning/Enabled/*ExtensionInstallVerification/Enforce/*GoogleNow/Enable/*IconNTP/Default/InstanceID/Enabled/*IntelligentSessionRestore/Disabled/*NetworkQualityEstimator/Enabled/*NewProfileManagement/Enabled/NewVideoRendererTrial/Enabled/*OmniboxBundledExperimentV1/Postperiod_AnswersInSuggest_A4/*PasswordGeneration/Disabled/PasswordLinkInSettings/Enabled/*PluginPowerSaver/Enabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/*QUIC/EnabledMin4/*RefreshTokenDeviceId/Enabled/RememberCertificateErrorDecisions/Default/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/*SRTPromptFieldTrial/On/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingSocialEngineeringStrings/Disabled/*SdchPersistence/Default/SessionRestoreBackgroundLoading/Restore/*SettingsEnforcement/enforce_always_with_extensions_and_dse/*SlimmingPaint/EnableSlimmingPaint/*SyncBackingDatabase32K/Enabled/*UMA-Dynamic-Binary-Uniformity-Trial/default/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_90/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/group_02/*UMA-Uniformity-Trial-5-Percent/group_05/*UMA-Uniformity-Trial-50-Percent/default/*UseDelayAgnosticAEC/DefaultEnabled/VoiceTrigger/Install/WebRTC-UDPSocketNonBlockingIO/Default/" --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=2 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --channel="5788.11.1827391508\598195578" --font-cache-shared-handle=7140 /prefetch:673131151
rundll32.exe AppXDeploymentExtensions.dll,ShellRefresh
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 612 616 624 8192 620

"C:\Users\Petr\Desktop\RSITx64.exe"
"C:\WINDOWS\system32\backgroundTaskHost.exe" -ServerName:CortanaUI.AppXy7vb4pc2dr3kc93kfc509b1d0arkfb2x.mca

======Scheduled tasks folder======

C:\WINDOWS\tasks\DropboxUpdateTaskUserS-1-5-21-2019586175-721206791-4067971009-1002Core.job - C:\Users\Petr\AppData\Local\Dropbox\Update\DropboxUpdate.exe /c
C:\WINDOWS\tasks\DropboxUpdateTaskUserS-1-5-21-2019586175-721206791-4067971009-1002UA.job - C:\Users\Petr\AppData\Local\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2019586175-721206791-4067971009-1002Core.job - C:\Users\Petr\AppData\Local\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-2019586175-721206791-4067971009-1002UA.job - C:\Users\Petr\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-06-24 662672]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll [2015-02-01 460712]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-06-24 565304]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-02-01 172968]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{31264A33-A653-46C4-AF49-1232C59A7DA5} -

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2015-06-24 13885696]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2015-06-24 1402624]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2015-07-11 384912]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2015-08-04 3350760]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"WebcamMaxAutoRun"=C:\Program Files (x86)\WebcamMax\wcmmon.exe [2011-07-17 1038848]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2014-12-12 7394584]
"Google Update"=C:\Users\Petr\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
"GoogleChromeAutoLaunch_795A6C1EC44E0A41F3030B5EF87A210A"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2015-09-12 815944]
"Viber"=C:\Users\Petr\AppData\Local\Viber\Viber.exe [2015-08-12 72389840]
"Dropbox Update"=C:\Users\Petr\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-20 134512]
"OneDrive"=C:\Users\Petr\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2015-09-15 405584]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"ASUSPRP"=C:\Program Files (x86)\ASUS\APRP\APRP.EXE [2013-05-01 3187360]
"ASUSWebStorage"=C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSPanel.exe [2012-12-19 3576784]
"ASUS InstantKey"=C:\Program Files (x86)\ASUS\ASUS Instant Key\Ikey_start.exe [2013-04-16 13936]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-06-24 5515496]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]

C:\Users\Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Petr\AppData\Roaming\Dropbox\bin\Dropbox.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\WINDOWS\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"VIDC.FPS1"=frapsv64.dll
"VIDC.XFR1"=xfcodec64.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2015-09-19 21:05:38 ----D---- C:\rsit
2015-09-19 11:33:10 ----D---- C:\WINDOWS\Minidump
2015-09-18 21:49:43 ----D---- C:\WINDOWS\LastGood
2015-09-18 19:55:44 ----D---- C:\Program Files (x86)\AGEIA Technologies
2015-09-18 19:53:51 ----D---- C:\WINDOWS\LastGood.Tmp
2015-09-18 19:52:58 ----A---- C:\WINDOWS\SYSWOW64\nvaudcap32v.dll
2015-09-18 19:52:58 ----A---- C:\WINDOWS\system32\nvaudcap64v.dll
2015-09-18 19:52:58 ----A---- C:\WINDOWS\system32\drivers\nvvad64v.sys
2015-09-18 19:52:57 ----A---- C:\WINDOWS\SYSWOW64\nvumdshim.dll
2015-09-18 19:52:57 ----A---- C:\WINDOWS\SYSWOW64\nvinit.dll
2015-09-18 19:52:57 ----A---- C:\WINDOWS\system32\nvinitx.dll
2015-09-18 19:52:56 ----A---- C:\WINDOWS\system32\nvdispgenco6434448.dll
2015-09-18 19:52:56 ----A---- C:\WINDOWS\system32\nvdispco6434448.dll
2015-09-18 14:36:01 ----A---- C:\WINDOWS\system32\drivers\L1C63x64.sys
2015-09-18 14:28:43 ----D---- C:\Program Files (x86)\DriverToolkit
2015-09-09 21:30:20 ----A---- C:\WINDOWS\system32\mshtml.dll
2015-09-09 21:30:18 ----A---- C:\WINDOWS\system32\edgehtml.dll
2015-09-09 21:30:17 ----A---- C:\WINDOWS\SYSWOW64\edgehtml.dll
2015-09-09 21:30:15 ----A---- C:\WINDOWS\SYSWOW64\mshtml.dll
2015-09-09 21:30:13 ----A---- C:\WINDOWS\system32\ieframe.dll
2015-09-09 21:30:09 ----A---- C:\WINDOWS\SYSWOW64\ieframe.dll
2015-09-09 21:30:08 ----A---- C:\WINDOWS\SYSWOW64\iertutil.dll
2015-09-09 21:30:08 ----A---- C:\WINDOWS\SYSWOW64\authui.dll
2015-09-09 21:30:08 ----A---- C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-09-09 21:30:08 ----A---- C:\WINDOWS\system32\authui.dll
2015-09-09 21:30:07 ----A---- C:\WINDOWS\SYSWOW64\Windows.UI.Immersive.dll
2015-09-09 21:30:07 ----A---- C:\WINDOWS\system32\win32kfull.sys
2015-09-09 21:30:06 ----A---- C:\WINDOWS\system32\SettingSync.dll
2015-09-09 21:30:06 ----A---- C:\WINDOWS\system32\jscript.dll
2015-09-09 21:30:06 ----A---- C:\WINDOWS\system32\iertutil.dll
2015-09-09 21:30:05 ----A---- C:\WINDOWS\SYSWOW64\vbscript.dll
2015-09-09 21:30:05 ----A---- C:\WINDOWS\SYSWOW64\SettingSync.dll
2015-09-09 21:30:05 ----A---- C:\WINDOWS\SYSWOW64\jscript.dll
2015-09-09 21:30:05 ----A---- C:\WINDOWS\SYSWOW64\fontdrvhost.exe
2015-09-09 21:30:05 ----A---- C:\WINDOWS\system32\winlogon.exe
2015-09-09 21:30:05 ----A---- C:\WINDOWS\system32\vbscript.dll
2015-09-09 21:30:05 ----A---- C:\WINDOWS\system32\schedsvc.dll
2015-09-09 21:30:05 ----A---- C:\WINDOWS\system32\fontdrvhost.exe
2015-09-09 21:30:05 ----A---- C:\WINDOWS\system32\acmigration.dll
2015-09-09 21:30:04 ----A---- C:\WINDOWS\SYSWOW64\shacct.dll
2015-09-09 21:30:04 ----A---- C:\WINDOWS\SYSWOW64\atmfd.dll
2015-09-09 21:30:04 ----A---- C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2015-09-09 21:30:04 ----A---- C:\WINDOWS\system32\win32kbase.sys
2015-09-09 21:30:04 ----A---- C:\WINDOWS\system32\shacct.dll
2015-09-09 21:30:04 ----A---- C:\WINDOWS\system32\atmfd.dll
2015-09-09 21:30:03 ----A---- C:\WINDOWS\SYSWOW64\atmlib.dll
2015-09-09 21:30:03 ----A---- C:\WINDOWS\system32\atmlib.dll
2015-08-27 23:45:24 ----A---- C:\WINDOWS\system32\shell32.dll
2015-08-27 23:45:21 ----A---- C:\WINDOWS\SYSWOW64\shell32.dll
2015-08-27 23:45:21 ----A---- C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-27 23:45:20 ----A---- C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-08-27 23:45:20 ----A---- C:\WINDOWS\system32\LicenseManager.dll
2015-08-27 23:45:20 ----A---- C:\WINDOWS\system32\dwmcore.dll
2015-08-27 23:45:19 ----A---- C:\WINDOWS\SYSWOW64\LicenseManager.dll
2015-08-27 23:45:19 ----A---- C:\WINDOWS\SYSWOW64\dwmcore.dll
2015-08-27 23:45:19 ----A---- C:\WINDOWS\SYSWOW64\CoreUIComponents.dll
2015-08-27 23:45:19 ----A---- C:\WINDOWS\system32\wuaueng.dll
2015-08-27 23:45:19 ----A---- C:\WINDOWS\system32\NetSetupShim.dll
2015-08-27 23:45:19 ----A---- C:\WINDOWS\system32\modernexecserver.dll
2015-08-27 23:45:18 ----A---- C:\WINDOWS\SYSWOW64\NetSetupShim.dll
2015-08-27 23:45:18 ----A---- C:\WINDOWS\system32\ntoskrnl.exe
2015-08-27 23:45:18 ----A---- C:\WINDOWS\system32\NetSetupSvc.dll
2015-08-27 23:45:18 ----A---- C:\WINDOWS\system32\facecredentialprovider.dll
2015-08-27 23:45:18 ----A---- C:\WINDOWS\system32\ci.dll
2015-08-27 23:45:17 ----A---- C:\WINDOWS\system32\WlanMediaManager.dll
2015-08-27 23:45:17 ----A---- C:\WINDOWS\system32\wcnwiz.dll
2015-08-27 23:45:17 ----A---- C:\WINDOWS\system32\reseteng.dll
2015-08-27 23:45:17 ----A---- C:\WINDOWS\system32\InstallAgent.exe
2015-08-27 23:45:17 ----A---- C:\WINDOWS\system32\drivers\USBXHCI.SYS
2015-08-27 23:45:17 ----A---- C:\WINDOWS\system32\drivers\bthport.sys
2015-08-27 23:45:17 ----A---- C:\WINDOWS\system32\BthRadioMedia.dll
2015-08-27 23:45:16 ----A---- C:\WINDOWS\SYSWOW64\wfdprov.dll
2015-08-27 23:45:16 ----A---- C:\WINDOWS\SYSWOW64\wcnwiz.dll
2015-08-27 23:45:16 ----A---- C:\WINDOWS\SYSWOW64\WcnApi.dll
2015-08-27 23:45:16 ----A---- C:\WINDOWS\system32\wlansvc.dll
2015-08-27 23:45:16 ----A---- C:\WINDOWS\system32\wfdprov.dll
2015-08-27 23:45:16 ----A---- C:\WINDOWS\system32\WcnNetsh.dll
2015-08-27 23:45:16 ----A---- C:\WINDOWS\system32\WcnApi.dll
2015-08-27 23:45:16 ----A---- C:\WINDOWS\system32\fdWCN.dll
2015-08-27 23:45:16 ----A---- C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-08-27 23:45:16 ----A---- C:\WINDOWS\system32\dafWCN.dll
2015-08-27 23:45:16 ----A---- C:\WINDOWS\system32\aitstatic.exe
2015-08-27 23:45:15 ----A---- C:\WINDOWS\SYSWOW64\PackageStateRoaming.dll
2015-08-27 23:45:15 ----A---- C:\WINDOWS\SYSWOW64\fdWCN.dll
2015-08-27 23:45:15 ----A---- C:\WINDOWS\system32\vaultsvc.dll
2015-08-27 23:45:15 ----A---- C:\WINDOWS\system32\PackageStateRoaming.dll
2015-08-27 23:45:15 ----A---- C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-08-27 23:45:15 ----A---- C:\WINDOWS\system32\AppXDeploymentExtensions.dll

======List of files/folders modified in the last 1 month======

2015-09-19 21:05:40 ----D---- C:\Program Files\trend micro
2015-09-19 21:05:36 ----D---- C:\WINDOWS\Prefetch
2015-09-19 21:05:20 ----D---- C:\WINDOWS\Temp
2015-09-19 21:05:20 ----D---- C:\WINDOWS\AppReadiness
2015-09-19 21:04:32 ----HD---- C:\Program Files\WindowsApps
2015-09-19 21:03:56 ----D---- C:\WINDOWS\System32
2015-09-19 20:59:53 ----D---- C:\WINDOWS\LiveKernelReports
2015-09-19 20:58:47 ----D---- C:\Users\Petr\AppData\Roaming\Dropbox
2015-09-19 20:58:43 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2015-09-19 20:57:03 ----D---- C:\Users\Petr\AppData\Roaming\ViberPC
2015-09-19 20:56:29 ----D---- C:\Windows
2015-09-19 20:55:52 ----D---- C:\ProgramData\ASUS Smart Gesture
2015-09-19 20:50:34 ----D---- C:\Users\Petr\AppData\Roaming\Azureus
2015-09-19 20:50:29 ----DC---- C:\WINDOWS\Panther
2015-09-19 20:50:29 ----D---- C:\WINDOWS\INF
2015-09-19 20:50:28 ----D---- C:\WINDOWS\Logs
2015-09-19 20:50:28 ----D---- C:\WINDOWS\debug
2015-09-19 20:29:35 ----D---- C:\WINDOWS\system32\NDF
2015-09-19 20:27:43 ----D---- C:\WINDOWS\system32\sru
2015-09-19 14:26:12 ----D---- C:\WINDOWS\system32\Tasks
2015-09-19 11:32:51 ----SHD---- C:\Config.Msi
2015-09-19 11:32:51 ----D---- C:\WINDOWS\SysWOW64
2015-09-19 11:32:51 ----D---- C:\WINDOWS\system32\drivers
2015-09-19 10:53:51 ----RSD---- C:\WINDOWS\assembly
2015-09-19 10:49:47 ----D---- C:\Program Files (x86)\TeamViewer
2015-09-18 22:57:16 ----D---- C:\WINDOWS\system32\DriverStore
2015-09-18 22:57:16 ----D---- C:\ProgramData\NVIDIA Corporation
2015-09-18 22:57:16 ----D---- C:\Program Files\NVIDIA Corporation
2015-09-18 22:57:16 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2015-09-18 22:57:05 ----SHD---- C:\WINDOWS\Installer
2015-09-18 22:57:02 ----D---- C:\Program Files (x86)\Google
2015-09-18 22:14:40 ----D---- C:\WINDOWS\system32\config
2015-09-18 21:51:00 ----D---- C:\ProgramData\NVIDIA
2015-09-18 19:55:44 ----RD---- C:\Program Files (x86)
2015-09-18 19:53:05 ----RD---- C:\Users
2015-09-18 14:38:19 ----D---- C:\WINDOWS\system32\CatRoot
2015-09-18 14:37:35 ----SHD---- C:\System Volume Information
2015-09-18 14:36:50 ----D---- C:\WINDOWS\SYSWOW64\Atheros_L1e
2015-09-18 12:14:10 ----D---- C:\WINDOWS\Microsoft.NET
2015-09-18 12:02:28 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2015-09-16 22:11:36 ----D---- C:\Program Files\DIFX
2015-09-16 16:06:08 ----D---- C:\WINDOWS\system32\MRT
2015-09-16 11:15:03 ----D---- C:\WINDOWS\Tasks
2015-09-15 16:18:03 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2015-09-11 03:33:14 ----D---- C:\WINDOWS\WinSxS
2015-09-11 03:30:48 ----D---- C:\WINDOWS\system32\appraiser
2015-09-11 03:30:44 ----D---- C:\WINDOWS\AppPatch
2015-09-11 03:30:44 ----D---- C:\Program Files\Windows Journal
2015-09-10 22:15:03 ----D---- C:\ProgramData\Microsoft Help
2015-09-10 22:14:37 ----D---- C:\WINDOWS\CbsTemp
2015-09-09 21:26:45 ----D---- C:\WINDOWS\system32\catroot2
2015-08-31 11:36:29 ----D---- C:\WINDOWS\rescache
2015-08-30 02:43:55 ----D---- C:\WINDOWS\system32\oobe
2015-08-30 02:43:55 ----D---- C:\WINDOWS\system32\drivers\UMDF
2015-08-28 21:37:23 ----D---- C:\Users\Petr\AppData\Roaming\TS3Client
2015-08-26 18:37:02 ----A---- C:\WINDOWS\system32\MRT.exe
2015-08-21 09:55:13 ----D---- C:\WINDOWS\system32\WinBioPlugIns
2015-08-21 09:55:10 ----RD---- C:\WINDOWS\DevicesFlow

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2015-07-28 65224]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2015-07-28 274808]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-12-07 652344]
R0 nvpciflt;nvpciflt; C:\WINDOWS\system32\DRIVERS\nvpciflt.sys [2015-07-13 31560]
R0 speedfan;speedfan; C:\WINDOWS\SysWOW64\speedfan.sys [2012-12-29 28664]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2015-07-28 93528]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2015-08-13 1048344]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2015-07-28 447944]
R1 ATKWMIACPIIO;ATKWMIACPI Driver; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2011-09-07 17536]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2015-07-10 83968]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2015-07-10 8192]
R1 SCDEmu;SCDEmu; C:\WINDOWS\system32\drivers\SCDEmu.sys [2014-03-11 129944]
R2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-02 15416]
R2 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2015-07-28 28656]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2015-07-28 90968]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2015-07-28 150672]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2015-07-10 48128]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2015-07-10 61952]
R3 Afc;PPdus ASPI Shell; C:\WINDOWS\SysWOW64\drivers\Afc.sys [2006-11-14 22784]
R3 AiCharger;ASUS Charger Driver; C:\WINDOWS\system32\DRIVERS\AiCharger.sys [2012-09-18 17152]
R3 AndnetBus;@oem19.inf,%LGSI.Service.Desc%;LGE Mobile USB Composite Device; C:\WINDOWS\System32\drivers\lgandnetbus64.sys [2014-05-27 20992]
R3 AndNetDiag;@oem40.inf,%Lgsi.Service.Name%;LGE AndroidNet USB Serial Port; C:\WINDOWS\system32\DRIVERS\lgandnetdiag64.sys [2014-05-27 29184]
R3 ANDNetModem;@oem23.inf,%LGSI.Service.Name%;LGE AndroidNet USB Modem; C:\WINDOWS\system32\DRIVERS\lgandnetmodem64.sys [2014-05-27 36352]
R3 ATP;@oem80.inf,%PS2.DeviceDesc%;ASUS Input Device; C:\WINDOWS\System32\drivers\AsusTP.sys [2015-07-14 100776]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2015-07-10 105984]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2015-07-10 237568]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\Drivers\BTHUSB.sys [2015-07-10 84992]
R3 btmhsf;btmhsf; C:\WINDOWS\system32\DRIVERS\btmhsf.sys [2013-10-15 1390904]
R3 ETD;@oem81.inf,%PS2.DeviceDesc%;ELAN Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2015-08-04 477784]
R3 HIDSwitch;@oem71.inf,%ASSW.DisplayName%;ASUS Wireless Radio Control; C:\WINDOWS\System32\drivers\AsHIDSwitch64.sys [2015-05-13 19976]
R3 iBtFltCoex;iBtFltCoex; C:\WINDOWS\system32\DRIVERS\iBtFltCoex.sys [2013-10-15 69088]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2015-07-11 3789240]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2015-06-24 4504320]
R3 IntcDAud;@oem59.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2012-11-15 342528]
R3 iwdbus;@oem67.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-06-26 39480]
R3 kbfiltr;@oem21.inf,%kbfiltr.SvcDesc%;Keyboard Filter; C:\WINDOWS\System32\drivers\kbfiltr.sys [2012-08-02 14992]
R3 MEIx64;@oem18.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-02 62784]
R3 NETwNe64;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 8 - 64 Bit; C:\WINDOWS\System32\drivers\NETwew01.sys [2015-07-10 3354384]
R3 nvlddmkm;nvlddmkm; C:\WINDOWS\system32\DRIVERS\nvlddmkm.sys [2015-07-13 11139216]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2015-07-10 167936]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2015-07-10 104800]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2015-07-10 99168]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2015-07-10 58208]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2015-07-10 58720]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2015-07-10 40288]
S3 AMPPAL;Virtuální adaptér Intel(r) Centrino(r) Wireless Bluetooth(r) + High Speed; C:\WINDOWS\System32\drivers\AMPPAL.sys [2013-04-11 165344]
S3 AmUStor;AM USB Stroage Driver; C:\WINDOWS\system32\drivers\AmUStor.SYS [2012-10-03 95232]
S3 andnetadb;ADB Interface DriverNet; C:\WINDOWS\System32\Drivers\lgandnetadb.sys [2014-05-27 31744]
S3 BRDriver64_1_3_3_E02B25FC;BRDriver64_1_3_3_E02B25FC; \??\C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [2015-02-01 78088]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2015-07-10 128512]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\Drivers\BTHport.sys [2015-08-20 929280]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2015-07-10 32256]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2015-07-10 116736]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2014-01-22 108800]
S3 DrvAgent64;DrvAgent64; \??\C:\WINDOWS\SysWOW64\Drivers\DrvAgent64.SYS [2015-01-06 21712]
S3 fcvsc;fcvsc; C:\WINDOWS\System32\drivers\fcvsc.sys [2015-07-10 31232]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2015-07-10 20992]
S3 hidinterrupt;@hidinterrupt.inf,%HID.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2015-07-10 50016]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2015-07-10 424800]
S3 intaud_WaveExtensible;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2013-08-23 39320]
S3 IoQos;@%SystemRoot%\system32\drivers\ioqos.sys,-100; C:\WINDOWS\system32\drivers\ioqos.sys [2015-07-10 26624]
S3 IT9135BDA;IT9135 BDA Devices; C:\WINDOWS\System32\Drivers\IT9135BDA.sys [2010-02-03 113280]
S3 L1C;@oem33.inf,%L1C.Service.DispName%;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller; C:\WINDOWS\System32\drivers\L1C63x64.sys [2013-07-18 130248]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2015-07-10 705376]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2015-07-10 76128]
S3 nvvad_WaveExtensible;@oem90.inf,%nvvad_WaveExtensible.SvcDesc%;NVIDIA Virtual Audio Device (Wave Extensible) (WDM); C:\WINDOWS\system32\drivers\nvvad64v.sys [2014-10-16 38048]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2015-07-31 934752]
S3 ScreamBAudioSvc;ScreamBee Audio; C:\WINDOWS\system32\drivers\ScreamingBAudio64.sys [2010-07-01 38992]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2014-01-22 206080]
S3 UcmCx0101;USB Connector Manager KMDF Class Extension; C:\WINDOWS\System32\Drivers\UcmCx.sys [2015-07-10 61952]
S3 UcmUcsi;@ucmucsi.inf,%UcmUcsi.ServiceName%;USB Connector Manager UCSI Client; C:\WINDOWS\System32\drivers\UcmUcsi.sys [2015-07-31 46080]
S3 UdeCx;USB Device Emulation Support Library; C:\WINDOWS\system32\drivers\udecx.sys [2015-07-10 44032]
S3 Ufx01000;USB Function Class Extension; C:\WINDOWS\system32\drivers\ufx01000.sys [2015-07-10 245088]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2015-07-07 82128]
R2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2013-01-15 107320]
R2 ASUS InstantOn;ASUS InstantOn Service; C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe [2012-04-13 277120]
R2 Asus WebStorage Windows Service;Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe [2012-12-19 72192]
R2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2011-11-21 96896]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-06-24 343336]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 ETDService;Elan Service; C:\Program Files\Elantech\ETDService.exe [2015-08-04 147688]
R2 FoxitCloudUpdateService;Foxit Cloud Safe Update Service; C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [2015-06-02 244392]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2015-07-11 319888]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2012-06-27 129856]
R2 Intel(R) Wireless Bluetooth(R) 4.0 Radio Management;Intel(R) Wireless Bluetooth(R) 4.0 Radio Management; C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe [2013-09-18 157128]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-06-25 166720]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-17 277824]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvvsvc.exe [2015-07-13 937616]
R2 OneSyncSvc_Session1;Hostitel synchronizace_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [2009-04-17 247152]
R2 TeamViewer;TeamViewer 10; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2015-08-07 5611280]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2015-06-17 43696]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
R3 PimIndexMaintenanceSvc_Session1;Data kontaktů_Session1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2015-06-25 327296]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2015-06-24 4034896]
S3 BRSptStub;BitRaider Mini-Support Service Stub Loader; C:\ProgramData\BitRaider\BRSptStub.exe [2015-02-01 363208]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2015-07-11 281488]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2015-07-10 27136]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28 144200]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\lsass.exe [2015-07-10 56344]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2015-07-10 39856]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2015-07-31 1031680]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2015-07-10 39856]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2014-11-18 833728]

-----------------EOF-----------------

#2 Příspěvek od **altrok** » 20 zář 2015 11:57

Krasny den Vam preju

Pozorujete nejake konkretni problemy ci jde pouze o preventivku?

Odinstalujte

Seznam Software - pokud nepouzivate, protoze velice casto byva instalovan jako adware

V ramci cisteni Vam budou vyprazdneny docasne adresare (vcetne Kose).

Ulozte na plochu AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/ (nebo http://www.bleepingcomputer.com/download/adwcleaner/ )

ukoncete vsechny programy
kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
kliknete na Scan, pote na Cleaning
po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\AdwCleaner[Cx].txt), jehoz obsah mi zkopirujte do pristi odpovedi

Albrecht · #3 Příspěvek od **Albrecht** » 20 zář 2015 14:11

Preventivka a i spomaleni PC se deje. Jinak seznam odinstalovat nejde pise mi to toto:

#4 Příspěvek od **altrok** » 20 zář 2015 15:06

Toho se zbavime pozdeji. Pokracujte AdwCleanerem.

Albrecht · #5 Příspěvek od **Albrecht** » 20 zář 2015 20:31

# AdwCleaner v5.008 - Logfile created 20/09/2015 at 21:25:51
# Updated 18/09/2015 by Xplode
# Database : 2015-09-20.1 [Server]
# Operating system : Windows 10 Home (x64)
# Username : Petr - PETRNTB
# Running from : C:\Users\Petr\Desktop\adwcleaner_5.008.exe
# Option : Cleaning
# Support : http://toolslib.net/forum

***** [ Services ] *****

***** [ Folders ] *****

[-] Folder Deleted : C:\Program Files (x86)\eSupport.com
[-] Folder Deleted : C:\Program Files (x86)\Tbccint
[-] Folder Deleted : C:\Program Files (x86)\DriverToolkit
[!] Folder Not Deleted : C:\Program Files (x86)\Tbccint
[-] Folder Deleted : C:\ProgramData\Tbccint
[!] Folder Not Deleted : C:\ProgramData\Tbccint
[-] Folder Deleted : C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\aaaaaiabcopkplhgaedhbloeejhhankf
[-] Folder Deleted : C:\Users\Petr\AppData\Local\eSupport.com
[-] Folder Deleted : C:\Users\Petr\AppData\Local\Tbccint
[-] Folder Deleted : C:\Users\Petr\AppData\Local\DriverToolkit
[!] Folder Not Deleted : C:\Users\Petr\AppData\Local\Tbccint
[-] Folder Deleted : C:\Users\Petr\AppData\LocalLow\PriceGong
[-] Folder Deleted : C:\Users\Petr\AppData\LocalLow\Tbccint
[!] Folder Not Deleted : C:\Users\Petr\AppData\LocalLow\Tbccint
[-] Folder Deleted : C:\Users\Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FLV Player

***** [ Files ] *****

[-] File Deleted : C:\END
[-] File Deleted : C:\WINDOWS\Sysnative\roboot64.exe

***** [ Shortcuts ] *****

***** [ Scheduled tasks ] *****

[-] Task Deleted : LaunchSignup
[-] Task Deleted : ShopperPro
[-] Task Deleted : ShopperProJSUpd
[-] Task Deleted : SPDriver
[-] Task Deleted : YTAUpdate

***** [ Registry ] *****

[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\ShopperPro.DLL
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
[-] Key Deleted : HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
[-] Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10
[-] Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
[-] Key Deleted : HKLM\SOFTWARE\Classes\SDP
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_BROWSER_EMULATION [Senses-bg.exe]
[-] Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\MAIN\FeatureControl\FEATURE_BROWSER_EMULATION [iWebar-bg.exe]
[-] Key Deleted : HKLM\SOFTWARE\3b97feac-7cdb-477d-b10f-bd46148c67e9
[-] Key Deleted : HKLM\SOFTWARE\48acf95f-e2f3-4357-a81d-d4efa3ca4b29
[-] Key Deleted : HKLM\SOFTWARE\cbcf3053-6d6f-466a-9009-35cab0d7de73
[-] Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT3329621
[-] Key Deleted : HKLM\SOFTWARE\Classes\AppID\{58FDA6AF-67D8-4198-B7CD-94B17532C8D5}
[-] Key Deleted : HKCU\Software\Classes\CLSID\{1BBF13E0-551E-42DD-91F4-1A547443FFDA}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02A96331-0CA6-40E2-A87D-C224601985EB}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
[-] Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{3A1209A4-8568-40F0-9B5E-4A06A2A06417}
[-] Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03C0AC00-86DE-4B55-81BA-2E7CD61C51B1}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{8FB1A663-2820-468B-95C4-5060A4C5F413}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{82351433-9094-11D1-A24B-00A0C932C7DF}
[-] Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{44444444-4444-4444-4444-440644514423}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5E89ACE9-E16B-499A-87B4-0DBF742404C1}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{37a77c67-ed48-4f1e-b907-700d063f31dc}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4be6b4ef-7613-44e2-9051-55a2902874d7}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{54173744-804a-46d5-b35d-cb9c0207e61c}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5559e3c3-173b-4b4b-be7e-5ddcea9759c8}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5e8f9fe6-619d-4e8a-9a86-521789171bb1}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{89b5a982-e13c-4a10-ae24-06b8dd5a39c9}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8e95698f-4326-4ffb-ba64-9a789ba02889}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{a0abcf4f-07e5-4b23-a33a-96b829c79be8}
[-] Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{ab9c01ab-8224-4e6c-9790-77bbf7c230c6}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{3A1209A4-8568-40F0-9B5E-4A06A2A06417}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{31264A33-A653-46C4-AF49-1232C59A7DA5}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{03C0AC00-86DE-4B55-81BA-2E7CD61C51B1}
[-] Value Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{31264A33-A653-46C4-AF49-1232C59A7DA5}]
[-] Key Deleted : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{37a77c67-ed48-4f1e-b907-700d063f31dc}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{4be6b4ef-7613-44e2-9051-55a2902874d7}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{54173744-804a-46d5-b35d-cb9c0207e61c}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5559e3c3-173b-4b4b-be7e-5ddcea9759c8}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5e8f9fe6-619d-4e8a-9a86-521789171bb1}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{89b5a982-e13c-4a10-ae24-06b8dd5a39c9}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8e95698f-4326-4ffb-ba64-9a789ba02889}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{a0abcf4f-07e5-4b23-a33a-96b829c79be8}
[-] Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{ab9c01ab-8224-4e6c-9790-77bbf7c230c6}
[-] Key Deleted : HKU\.DEFAULT\Software\Goobzo
[-] Key Deleted : HKCU\Software\Conduit
[-] Key Deleted : HKCU\Software\eSupport.com
[-] Key Deleted : HKCU\Software\GlobalUpdate
[-] Key Deleted : HKCU\Software\InstalledBrowserExtensions
[-] Key Deleted : HKCU\Software\Tbccint
[-] Key Deleted : HKCU\Software\Tbccint_HKLM
[-] Key Deleted : HKCU\Software\DriverToolkit
[!] Key Not Deleted : HKCU\Software\Tbccint
[-] Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
[-] Key Deleted : HKCU\Software\AppDataLow\Software\iWebar
[-] Key Deleted : HKCU\Software\AppDataLow\Software\PriceGong
[-] Key Deleted : HKCU\Software\AppDataLow\Software\Tbccint
[-] Key Deleted : HKCU\Software\AppDataLow\Software\TbccintSearchScopes
[!] Key Not Deleted : HKCU\Software\AppDataLow\Software\Tbccint
[-] Key Deleted : HKLM\SOFTWARE\Conduit
[-] Key Deleted : HKLM\SOFTWARE\GlobalUpdate
[-] Key Deleted : HKLM\SOFTWARE\InstalledBrowserExtensions
[-] Key Deleted : HKLM\SOFTWARE\iWebar
[-] Key Deleted : HKLM\SOFTWARE\Senses-nv
[-] Key Deleted : HKLM\SOFTWARE\ShopperPro
[!] Key Not Deleted : [x64] HKCU\Software\Conduit
[!] Key Not Deleted : [x64] HKCU\Software\eSupport.com
[!] Key Not Deleted : [x64] HKCU\Software\GlobalUpdate
[!] Key Not Deleted : [x64] HKCU\Software\InstalledBrowserExtensions
[!] Key Not Deleted : [x64] HKCU\Software\Tbccint
[!] Key Not Deleted : [x64] HKCU\Software\Tbccint_HKLM
[!] Key Not Deleted : [x64] HKCU\Software\DriverToolkit
[!] Key Not Deleted : [x64] HKCU\Software\Tbccint
[-] Key Deleted : [x64] HKLM\SOFTWARE\InstalledBrowserExtensions
[-] Key Deleted : [x64] HKLM\SOFTWARE\ShopperPro
[!] Key Not Deleted : HKU\S-1-5-21-2019586175-721206791-4067971009-1002\Software\AppDataLow\Software\Crossrider
[!] Key Not Deleted : HKU\S-1-5-21-2019586175-721206791-4067971009-1002\Software\AppDataLow\Software\iWebar
[!] Key Not Deleted : HKU\S-1-5-21-2019586175-721206791-4067971009-1002\Software\AppDataLow\Software\PriceGong
[!] Key Not Deleted : HKU\S-1-5-21-2019586175-721206791-4067971009-1002\Software\AppDataLow\Software\Tbccint
[!] Key Not Deleted : HKU\S-1-5-21-2019586175-721206791-4067971009-1002\Software\AppDataLow\Software\TbccintSearchScopes
[!] Key Not Deleted : HKU\S-1-5-21-2019586175-721206791-4067971009-1002\Software\AppDataLow\Software\Tbccint

***** [ Web browsers ] *****

[-] [C:\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Deleted : aaaaaiabcopkplhgaedhbloeejhhankf

*************************

:: Winsock settings cleared

########## EOF - C:\AdwCleaner\AdwCleaner[C3].txt - [10167 bytes] ##########

#6 Příspěvek od **altrok** » 22 zář 2015 08:28

Nainstalujte MBAM a udelejte vlastni sken vsech disku - http://forum.viry.cz/viewtopic.php?f=29&t=144868

Upozorneni: tento sken zabere od 30 minut po nekolik hodin

Albrecht · #7 Příspěvek od **Albrecht** » 22 zář 2015 17:27

Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 22.09.2015
Čas skenování: 14:06
Protokol: Log.txt
Správce: Ano

Verze: 2.1.8.1057
Databáze malwaru: v2015.09.22.04
Databáze rootkitů: v2015.09.18.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto

OS: Windows 10
CPU: x64
Souborový systém: NTFS
Uživatel: Petr

Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 902297
Uplynulý čas: 4 hod, 8 min, 37 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Zapnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(Nenalezeny žádné škodlivé položky)

Moduly: 0
(Nenalezeny žádné škodlivé položky)

Klíče registru: 25
PUP.Optional.Conduit, HKU\S-1-5-21-2019586175-721206791-4067971009-1002_Classes\CLSID\{31264A33-A653-46C4-AF49-1232C59A7DA5}, , [eb01171bbccf1e18c7403aabc9399b65],
PUP.Optional.SearchApp, HKLM\SOFTWARE\GOOGLE\CHROME\EXTENSIONS\aaaaaiabcopkplhgaedhbloeejhhankf, , [da120929216a62d41b096058da2a01ff],
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{3B13DE45-9E63-4240-9890-8D64666C2787}, , [b83436fce0ab2313c3fb1084bd47ab55],
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{90215CEA-3133-4D30-BE71-FD8DAD8C403C}, , [29c340f2098271c5fdc0c9cb0ef61ce4],
PUP.Optional.ShopperPro, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\SPBIW_UpdateTask_Time_313438393833383530382d3437415a556c2a3223346c41, , [c329a48e7c0f290ddd14744624e029d7],
PUP.Optional.AppsHat, HKLM\SOFTWARE\WOW6432NODE\Apps Hat, , [6d7f82b04f3cf64034ee3d4a29dbe11f],
PUP.Optional.AppsHat, HKLM\SOFTWARE\WOW6432NODE\Apps Hat-nv, , [7d6f61d16c1ffd39a082127563a1768a],
PUP.Optional.iWebar, HKLM\SOFTWARE\WOW6432NODE\iWebar-nv, , [54983cf6226923130f65287b1be94ab6],
PUP.Optional.SearchApp, HKLM\SOFTWARE\WOW6432NODE\GOOGLE\CHROME\EXTENSIONS\aaaaaiabcopkplhgaedhbloeejhhankf, , [a943042e9dee6dc9ca5a6454ff05837d],
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{3B13DE45-9E63-4240-9890-8D64666C2787}, , [bd2fed45a9e2ba7c29952470a95b5ea2],
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{90215CEA-3133-4D30-BE71-FD8DAD8C403C}, , [ca22b47e69229f978736553fcd3733cd],
PUP.Optional.MoviesToolBar, HKU\S-1-5-21-2019586175-721206791-4067971009-1002\SOFTWARE\somotomoviestoolbar181, , [fdefa0922665b97da6d2802c63a1e41c],
PUP.Optional.ConduitTB.Gen, HKU\S-1-5-21-2019586175-721206791-4067971009-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{000D6FAA-9C05-4028-B18A-79102D14A4AD}, , [f6f6191955366dc92ab61b604db7926e],
PUP.Optional.CrossRider, HKU\S-1-5-21-2019586175-721206791-4067971009-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{37A77C67-ED48-4F1E-B907-700D063F31DC}, , [08e4c171c1ca61d586155242c242a957],
PUP.Optional.CrossRider, HKU\S-1-5-21-2019586175-721206791-4067971009-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{3B13DE45-9E63-4240-9890-8D64666C2787}, , [9a52a68c0685c96d5f3d73213fc56f91],
PUP.Optional.CrossRider, HKU\S-1-5-21-2019586175-721206791-4067971009-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{4A6C7895-9ADC-4310-913D-51CE25BF9F46}, , [df0d9c96533885b1e7b62b6974902dd3],
PUP.Optional.CrossRider, HKU\S-1-5-21-2019586175-721206791-4067971009-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{4BE6B4EF-7613-44E2-9051-55A2902874D7}, , [ce1ec36f9dee280eddc0eca833d1916f],
PUP.Optional.CrossRider, HKU\S-1-5-21-2019586175-721206791-4067971009-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{5559E3C3-173B-4B4B-BE7E-5DDCEA9759C8}, , [33b986ac246748eec0dcdcb87f858c74],
PUP.Optional.CrossRider, HKU\S-1-5-21-2019586175-721206791-4067971009-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{5E8F9FE6-619D-4E8A-9A86-521789171BB1}, , [faf2e052216a0f2796062d6715efdb25],
PUP.Optional.CrossRider, HKU\S-1-5-21-2019586175-721206791-4067971009-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{89B5A982-E13C-4A10-AE24-06B8DD5A39C9}, , [4d9f0d25d3b8e353cfcea2f257adab55],
PUP.Optional.CrossRider, HKU\S-1-5-21-2019586175-721206791-4067971009-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{90215CEA-3133-4D30-BE71-FD8DAD8C403C}, , [f3f9e151f2991f17a3f81e76e81c12ee],
PUP.Optional.CrossRider, HKU\S-1-5-21-2019586175-721206791-4067971009-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{A0ABCF4F-07E5-4B23-A33A-96B829C79BE8}, , [75772e04ccbfc076633a296b9a6a8779],
PUP.Optional.CrossRider, HKU\S-1-5-21-2019586175-721206791-4067971009-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{AB9C01AB-8224-4E6C-9790-77BBF7C230C6}, , [d41850e2e2a936009ffc1d77c53fbf41],
PUP.Optional.CrossRider, HKU\S-1-5-21-2019586175-721206791-4067971009-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{E6D7D030-5FE4-431C-BCA5-66C848222F76}, , [89636dc547442e084d4fc3d135cf8080],
PUP.Optional.ConduitTB.Gen, HKU\S-1-5-21-2019586175-721206791-4067971009-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{F443828A-8821-4D8E-BC4A-8AE663628BAE}, , [db1188aa98f33ef81ec20d6e51b3b947],

Hodnoty registru: 17
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{3b13de45-9e63-4240-9890-8d64666c2787}|AppName, Apps Hat-buttonutil.exe, , [b83436fce0ab2313c3fb1084bd47ab55]
PUP.Optional.CrossRider, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{90215cea-3133-4d30-be71-fd8dad8c403c}|AppName, Apps Hat-bg.exe, , [29c340f2098271c5fdc0c9cb0ef61ce4]
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{3b13de45-9e63-4240-9890-8d64666c2787}|AppName, Apps Hat-buttonutil.exe, , [bd2fed45a9e2ba7c29952470a95b5ea2]
PUP.Optional.CrossRider, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{90215cea-3133-4d30-be71-fd8dad8c403c}|AppName, Apps Hat-bg.exe, , [ca22b47e69229f978736553fcd3733cd]
PUP.Optional.ConduitTB.Gen, HKU\S-1-5-21-2019586175-721206791-4067971009-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{000D6FAA-9C05-4028-B18A-79102D14A4AD}|AppPath, C:\Users\Petr\AppData\Local\Tbccint\CT3329621, , [f6f6191955366dc92ab61b604db7926e]
PUP.Optional.CrossRider, HKU\S-1-5-21-2019586175-721206791-4067971009-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{37a77c67-ed48-4f1e-b907-700d063f31dc}|AppName, Senses-bg.exe, , [08e4c171c1ca61d586155242c242a957]
PUP.Optional.CrossRider, HKU\S-1-5-21-2019586175-721206791-4067971009-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{3b13de45-9e63-4240-9890-8d64666c2787}|AppName, Apps Hat-buttonutil.exe, , [9a52a68c0685c96d5f3d73213fc56f91]
PUP.Optional.CrossRider, HKU\S-1-5-21-2019586175-721206791-4067971009-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{4A6C7895-9ADC-4310-913D-51CE25BF9F46}|AppName, 750c5dcd-6196-41c8-8413-bc3f26858244-2.exe-codedownloader.exe, , [df0d9c96533885b1e7b62b6974902dd3]
PUP.Optional.CrossRider, HKU\S-1-5-21-2019586175-721206791-4067971009-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{4be6b4ef-7613-44e2-9051-55a2902874d7}|AppName, Apps Hat-codedownloader.exe, , [ce1ec36f9dee280eddc0eca833d1916f]
PUP.Optional.CrossRider, HKU\S-1-5-21-2019586175-721206791-4067971009-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{5559e3c3-173b-4b4b-be7e-5ddcea9759c8}|AppName, iWebar-buttonutil.exe, , [33b986ac246748eec0dcdcb87f858c74]
PUP.Optional.CrossRider, HKU\S-1-5-21-2019586175-721206791-4067971009-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{5e8f9fe6-619d-4e8a-9a86-521789171bb1}|AppName, Senses-buttonutil.exe, , [faf2e052216a0f2796062d6715efdb25]
PUP.Optional.CrossRider, HKU\S-1-5-21-2019586175-721206791-4067971009-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{89b5a982-e13c-4a10-ae24-06b8dd5a39c9}|AppName, iWebar-codedownloader.exe, , [4d9f0d25d3b8e353cfcea2f257adab55]
PUP.Optional.CrossRider, HKU\S-1-5-21-2019586175-721206791-4067971009-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{90215cea-3133-4d30-be71-fd8dad8c403c}|AppName, Apps Hat-bg.exe, , [f3f9e151f2991f17a3f81e76e81c12ee]
PUP.Optional.CrossRider, HKU\S-1-5-21-2019586175-721206791-4067971009-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{a0abcf4f-07e5-4b23-a33a-96b829c79be8}|AppName, Senses-codedownloader.exe, , [75772e04ccbfc076633a296b9a6a8779]
PUP.Optional.CrossRider, HKU\S-1-5-21-2019586175-721206791-4067971009-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{ab9c01ab-8224-4e6c-9790-77bbf7c230c6}|AppName, iWebar-bg.exe, , [d41850e2e2a936009ffc1d77c53fbf41]
PUP.Optional.CrossRider, HKU\S-1-5-21-2019586175-721206791-4067971009-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{E6D7D030-5FE4-431C-BCA5-66C848222F76}|AppName, 750c5dcd-6196-41c8-8413-bc3f26858244-2.exe-buttonutil.exe, , [89636dc547442e084d4fc3d135cf8080]
PUP.Optional.ConduitTB.Gen, HKU\S-1-5-21-2019586175-721206791-4067971009-1002\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{F443828A-8821-4D8E-BC4A-8AE663628BAE}|AppPath, C:\Users\Petr\AppData\Local\Tbccint\CT3329621, , [db1188aa98f33ef81ec20d6e51b3b947]

Data registru: 0
(Nenalezeny žádné škodlivé položky)

Složky: 0
(Nenalezeny žádné škodlivé položky)

Soubory: 3
PUP.Optional.ClientConnect, C:\AdwCleaner\Quarantine\C\ProgramData\Tbccint\Multi\CT3329621\UninstallerUI.exe.vir, , [1bd192a0820948eee668c46452afd729],
PUP.Optional.ClientConnect, C:\AdwCleaner\Quarantine\C\Users\Petr\AppData\Local\Tbccint\Community Alerts\Alert.dll.vir, , [e20a7db5197261d51935c36502ff728e],
PUP.Optional.OpenCandy, C:\Users\Petr\AppData\Roaming\PowerISO\Upgrade\PowerISO6-x64.exe, , [e3090e24f39863d31eb12971b64f0df3],

Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)

(end)

#8 Příspěvek od **altrok** » 22 zář 2015 20:21

Vsechny nalezene polozky smazte/presunte do karanteny.

Dejte log FRST.txt, prilozte i Addition.txt - http://forum.viry.cz/viewtopic.php?f=30&t=133101

Albrecht · #9 Příspěvek od **Albrecht** » 23 zář 2015 07:41

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version:15-09-2015
Ran by Petr (administrator) on PETRNTB (23-09-2015 08:38:57)
Running from C:\Users\Petr\Desktop
Loaded Profiles: Petr (Available Profiles: Petr & Kamera & Guest)
Platform: Windows 10 Home (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Edge)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\AsLdrSrv.exe
(ASUS) C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
() C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe
(ASUS) C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Foxit Software Inc.) C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
() C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
(ASUS) C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnWMI.exe
(ASUS) C:\Program Files\ASUS\P4G\BatteryLife.exe
(ASUS) C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnCfg.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(ASUSTeK Computer Inc.) C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
(ASUS) C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
(ASUSTek Computer Inc.) C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.28.15\GoogleCrashHandler64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Dropbox, Inc.) C:\Users\Petr\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
() C:\Users\Petr\AppData\Local\Temp\5.3.0.1884\5.3.0.1884\Viber.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLoader.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPCenter.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(AsusTek) C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPHelper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Users\Petr\Desktop\FRSTLauncher.exe
(Microsoft Corporation) C:\Windows\SysWOW64\cmd.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13885696 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1402624 2015-06-24] (Realtek Semiconductor)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3350760 2015-08-04] (ELAN Microelectronics Corp.)
HKLM-x32\...\Run: [ASUSPRP] => C:\Program Files (x86)\ASUS\APRP\APRP.EXE [3187360 2013-05-01] (ASUSTek Computer Inc.)
HKLM-x32\...\Run: [ASUSWebStorage] => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSPanel.exe [3576784 2012-12-19] (ASUS Cloud Corporation)
HKLM-x32\...\Run: [ASUS InstantKey] => C:\Program Files (x86)\ASUS\ASUS Instant Key\Ikey_start.exe [13936 2013-04-16] (ASUS)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [6134544 2015-09-20] (AVAST Software)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-2019586175-721206791-4067971009-1002\...\Run: [WebcamMaxAutoRun] => C:\Program Files (x86)\WebcamMax\wcmmon.exe [1038848 2011-07-17] ()
HKU\S-1-5-21-2019586175-721206791-4067971009-1002\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7394584 2014-12-12] (Piriform Ltd)
HKU\S-1-5-21-2019586175-721206791-4067971009-1002\...\Run: [Google Update] => C:\Users\Petr\AppData\Local\Google\Update\GoogleUpdate.exe [144200 2015-08-30] (Google Inc.)
HKU\S-1-5-21-2019586175-721206791-4067971009-1002\...\Run: [GoogleChromeAutoLaunch_795A6C1EC44E0A41F3030B5EF87A210A] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [815944 2015-09-19] (Google Inc.)
HKU\S-1-5-21-2019586175-721206791-4067971009-1002\...\Run: [Viber] => C:\Users\Petr\AppData\Local\Temp\5.3.0.1884\5.3.0.1884\Viber.exe [51512528 2015-09-21] () <===== ATTENTION
HKU\S-1-5-21-2019586175-721206791-4067971009-1002\...\Run: [Dropbox Update] => C:\Users\Petr\AppData\Local\Dropbox\Update\DropboxUpdate.exe [134512 2015-06-20] (Dropbox, Inc.)
AppInit_DLLs: C:\WINDOWS\system32\nvinitx.dll => C:\WINDOWS\system32\nvinitx.dll [177088 2015-07-13] (NVIDIA Corporation)
AppInit_DLLs-x32: C:\WINDOWS\SysWOW64\nvinit.dll => C:\WINDOWS\SysWOW64\nvinit.dll [155280 2015-07-13] (NVIDIA Corporation)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_B] -> {6D4133E5-0742-4ADC-8A8C-9303440F7190} => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\ASUSWSShellExt64.dll [2012-09-27] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_O] -> {64174815-8D98-4CE6-8646-4C039977D808} => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\ASUSWSShellExt64.dll [2012-09-27] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: [!AsusWSShellExt_U] -> {1C5AB7B1-0B38-4EC4-9093-7FD277E2AF4D} => C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\ASUSWSShellExt64.dll [2012-09-27] (ASUS Cloud Corporation.)
ShellIconOverlayIdentifiers: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Petr\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Petr\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Petr\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Petr\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Petr\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Petr\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Petr\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Petr\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2015-09-20] (AVAST Software)
ShellIconOverlayIdentifiers-x32: ["DropboxExt1"] -> {FB314ED9-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Petr\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt2"] -> {FB314EDA-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Petr\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt3"] -> {FB314EDD-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Petr\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt4"] -> {FB314EDE-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Petr\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt5"] -> {FB314EDB-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Petr\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt6"] -> {FB314EDF-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Petr\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt7"] -> {FB314EDC-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Petr\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
ShellIconOverlayIdentifiers-x32: ["DropboxExt8"] -> {FB314EE0-A251-47B7-93E1-CDD82E34AF8B} => C:\Users\Petr\AppData\Roaming\Dropbox\bin\DropboxExt.27.dll [2015-08-14] (Dropbox, Inc.)
Startup: C:\Users\Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2015-05-03]
ShortcutTarget: Dropbox.lnk -> C:\Users\Petr\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 213.46.172.37 213.46.172.36
Tcpip\..\Interfaces\{0fa7ffe8-a54c-4ea7-98ea-e4cf77736ab1}: [DhcpNameServer] 213.46.172.37 213.46.172.36

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
SearchScopes: HKU\S-1-5-21-2019586175-721206791-4067971009-1002 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-2019586175-721206791-4067971009-1002 -> {25891553-69BB-4B7C-A66F-F5A50CEA27CF} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-2019586175-721206791-4067971009-1002 -> {92A01B0F-7F2F-410C-9098-8BDD74D35BE6} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_13415
SearchScopes: HKU\S-1-5-21-2019586175-721206791-4067971009-1002 -> {971937DC-8E16-4630-A7C7-8384EB98F00B} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-2019586175-721206791-4067971009-1002 -> {CD14E9C0-03B6-4A7C-B5AD-F12BFF652F08} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_13415
SearchScopes: HKU\S-1-5-21-2019586175-721206791-4067971009-1002 -> {D8F2054A-7EE1-4F8D-9819-6A958E237089} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_13415
SearchScopes: HKU\S-1-5-21-2019586175-721206791-4067971009-1002 -> {E6D6451C-7053-4FC1-ADA8-D01DE3D7C16E} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_13415
SearchScopes: HKU\S-1-5-21-2019586175-721206791-4067971009-1002 -> {FC29F00E-0BB0-4F93-A784-595E59642037} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_13415
SearchScopes: HKU\S-1-5-21-2019586175-721206791-4067971009-1002 -> {FE4D5D25-26F5-43D7-B1E3-42C89BED410E} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_13415
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2015-09-20] (AVAST Software)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll [2015-02-01] (Oracle Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-09-20] (AVAST Software)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-02-01] (Oracle Corporation)

FireFox:
========
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-06] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-02-01] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-02-01] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.40728.0\npctrl.dll [2015-07-28] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3505.0912 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2012-09-12] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-16] (Google Inc.)
FF Plugin-x32: @WildTangent.com/GamesAppPresenceDetector,Version=1.0 -> C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\0\NP_wtapp.dll [2012-10-12] ()
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2015-06-27] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2019586175-721206791-4067971009-1002: @talk.google.com/GoogleTalkPlugin -> C:\Users\Petr\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-2019586175-721206791-4067971009-1002: @talk.google.com/O1DPlugin -> C:\Users\Petr\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-2019586175-721206791-4067971009-1002: @tools.google.com/Google Update;version=3 -> C:\Users\Petr\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.)
FF Plugin HKU\S-1-5-21-2019586175-721206791-4067971009-1002: @tools.google.com/Google Update;version=9 -> C:\Users\Petr\AppData\Local\Google\Update\1.3.28.15\npGoogleUpdate3.dll [2015-09-15] (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Petr\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Petr\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-04-17] (Google)
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-05-14]

Chrome:
=======
CHR HomePage: Profile 1 -> hxxp://www.search.ask.com/?gct=hp
CHR StartupUrls: Profile 1 -> "hxxps://www.seznam.cz/","hxxps://www.facebook.c ... r/render#g"
CHR Profile: C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Profile 1
CHR Extension: (Překladač Google) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapbdbdomjkkjkaonfhkkikfgjllcleb [2015-02-19]
CHR Extension: (Jmeniny) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\acanokghadamaghkbbiclbleblhndfig [2015-02-19]
CHR Extension: (Angry Birds) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj [2015-02-19]
CHR Extension: (Kalendář Google) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn [2015-02-19]
CHR Extension: (Full Screen Weather) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\fkkaebihfmbofclegkcfkkemepfehibg [2015-02-19]
CHR Extension: (Dokumenty Google offline) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2015-09-07]
CHR Extension: (365Scores) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gocaejggjgdmkhmbinicknpbhagkblop [2015-02-19]
CHR Extension: (Avast Online Security) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gomekmidlodglbbmalcneegieacbdmki [2015-02-19]
CHR Extension: (Checker Plus for Google Calendar™) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\hkhggnncdpfibdhinjiegagmopldibha [2015-02-19]
CHR Extension: (Application Launcher for Drive (by Google)) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\lmjegmlicamnimmfhcmpkclmigmmcbeh [2015-02-19]
CHR Extension: (Kontrola e-mailu Google) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\mihcahmgecmbnbcchbopgniflfhgnkff [2015-02-19]
CHR Extension: (Onlive Clock) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\moddbcckaikhdnigidfcmaeelcobchpm [2015-02-19]
CHR Extension: (Wes Craven) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nahooofggegjbnodalhoibemeabkapop [2015-02-19]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2015-02-19]
CHR Extension: (Google Chrome to Phone Extension) - C:\Users\Petr\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\oadboiipflhobonjjffjbfekfjcgkhco [2015-02-19]
CHR HKU\S-1-5-21-2019586175-721206791-4067971009-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [apdfllckaahabafndbhieahigkjlhalf] - C:\Users\Petr\AppData\Local\Google\Drive\user_default\apdfllckaahabafndbhieahigkjlhalf_live.crx <not found>
CHR HKU\S-1-5-21-2019586175-721206791-4067971009-1002\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-06-24]

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 ASUS InstantOn; C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnSrv.exe [277120 2012-04-13] (ASUS)
R2 Asus WebStorage Windows Service; C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe [72192 2012-12-19] () [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [146600 2015-09-20] (AVAST Software)
S3 BRSptStub; C:\ProgramData\BitRaider\BRSptStub.exe [363208 2015-02-01] (BitRaider, LLC)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [147688 2015-08-04] (ELAN Microelectronics Corp.)
R2 FoxitCloudUpdateService; C:\Program Files (x86)\Foxit Software\Foxit Reader\Foxit Cloud\FCUpdateService.exe [244392 2015-06-02] (Foxit Software Inc.)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [319888 2015-07-11] (Intel Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [129856 2012-06-27] (Intel Corporation)
R2 Intel(R) Wireless Bluetooth(R) 4.0 Radio Management; C:\Program Files (x86)\Intel\Bluetooth\ibtrksrv.exe [157128 2013-09-18] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation)
S2 MBAMService; C:\Program Files (x86)\Malwarebytes Anti-Malware\mbamservice.exe [1133880 2015-06-18] (Malwarebytes Corporation)
R2 RichVideo; C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [247152 2009-04-17] ()
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5611280 2015-08-07] (TeamViewer GmbH)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [362928 2015-07-10] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [24864 2015-07-10] (Microsoft Corporation)
S3 AvastVBoxSvc; "C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe" [X]

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 andnetadb; C:\Windows\System32\Drivers\lgandnetadb.sys [31744 2014-05-27] (Google Inc)
S3 AndnetBus; C:\Windows\System32\drivers\lgandnetbus64.sys [20992 2014-05-27] (LG Electronics Inc.)
S3 AndNetDiag; C:\Windows\system32\DRIVERS\lgandnetdiag64.sys [29184 2014-05-27] (LG Electronics Inc.)
S3 ANDNetModem; C:\Windows\system32\DRIVERS\lgandnetmodem64.sys [36352 2014-05-27] (LG Electronics Inc.)
R2 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [28656 2015-09-20] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [90968 2015-09-20] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [93528 2015-09-20] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [65224 2015-09-20] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1049880 2015-09-20] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [448968 2015-09-20] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [153744 2015-09-20] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [274808 2015-09-20] (AVAST Software)
R3 ATP; C:\Windows\System32\drivers\AsusTP.sys [100776 2015-07-14] (ASUS Corporation)
S3 BRDriver64_1_3_3_E02B25FC; C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver64.sys [78088 2015-02-01] (BitRaider)
R3 BthLEEnum; C:\Windows\system32\DRIVERS\BthLEEnum.sys [237568 2015-07-10] (Microsoft Corporation)
R3 btmhsf; C:\Windows\system32\DRIVERS\btmhsf.sys [1390904 2013-10-15] (Motorola Solutions, Inc.)
S3 IT9135BDA; C:\Windows\System32\Drivers\IT9135BDA.sys [113280 2010-02-03] (ITE ) [File not signed]
R3 kbfiltr; C:\Windows\System32\drivers\kbfiltr.sys [14992 2012-08-02] ( )
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [25816 2015-06-18] (Malwarebytes Corporation)
S3 MBAMWebAccessControl; C:\WINDOWS\system32\drivers\mwac.sys [64216 2015-06-18] (Malwarebytes Corporation)
R3 NETwNe64; C:\Windows\System32\drivers\NETwew01.sys [3354384 2015-07-10] (Intel Corporation)
S3 nvvad_WaveExtensible; C:\Windows\system32\drivers\nvvad64v.sys [38048 2014-10-16] (NVIDIA Corporation)
S3 UdeCx; C:\Windows\System32\drivers\udecx.sys [44032 2015-07-10] ()
R3 usb3Hub; C:\Windows\System32\drivers\usb3Hub.sys [47072 2012-11-29] (Windows (R) Win 7 DDK provider)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44568 2015-07-10] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [291680 2015-07-10] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [119648 2015-07-10] (Microsoft Corporation)
S3 XFDriver64; C:\Program Files (x86)\Xfire2\XFDriver64.sys [17160 2013-03-14] (XFire)
R3 XHCIPort; C:\Windows\System32\drivers\XHCIPort.sys [188896 2012-11-29] (Windows (R) Win 7 DDK provider)
S2 VBoxAswDrv; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [X]
S3 wfpcapture; \SystemRoot\System32\drivers\wfpcapture.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-23 08:38 - 2015-09-23 08:39 - 00026384 _____ C:\Users\Petr\Desktop\FRST.txt
2015-09-23 08:38 - 2015-09-23 08:39 - 00000000 ____D C:\FRST
2015-09-23 08:38 - 2015-09-23 08:38 - 00029696 _____ C:\Users\Petr\AppData\Local\MSGBOX.EXE
2015-09-23 08:38 - 2015-09-23 08:38 - 00015327 _____ C:\Users\Petr\Desktop\LM.bat
2015-09-23 08:37 - 2015-09-23 08:38 - 02191360 _____ (Farbar) C:\Users\Petr\Desktop\FRST64.exe
2015-09-23 08:37 - 2015-09-23 08:38 - 00112640 _____ (forum.viry.cz) C:\Users\Petr\Desktop\FRSTLauncher.exe
2015-09-23 08:23 - 2015-09-23 08:23 - 00000000 ____D C:\Users\Petr\.ViberPC
2015-09-23 08:23 - 2015-09-23 08:23 - 00000000 ____D C:\Users\Petr\.QtWebEngineProcess
2015-09-23 08:22 - 2015-09-23 08:23 - 00000000 ____D C:\Users\Petr\AppData\Local\Viber
2015-09-23 08:19 - 2015-09-23 08:19 - 00016148 _____ C:\WINDOWS\system32\PETRNTB_Petr_HistoryPrediction.bin
2015-09-22 18:54 - 2015-09-22 19:10 - 896948224 _____ C:\Users\Petr\Desktop\Ace Ventura - Zvířecí detektiv.avi
2015-09-22 14:05 - 2015-09-22 14:06 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-09-22 14:05 - 2015-09-22 14:05 - 00001173 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2015-09-22 14:05 - 2015-09-22 14:05 - 00000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2015-09-22 14:05 - 2015-06-18 08:42 - 00064216 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2015-09-22 14:05 - 2015-06-18 08:41 - 00109272 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-09-22 14:05 - 2015-06-18 08:41 - 00025816 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2015-09-20 21:24 - 2015-09-20 21:25 - 00000000 ____D C:\AdwCleaner
2015-09-20 21:23 - 2015-09-20 21:24 - 01662976 _____ C:\Users\Petr\Desktop\adwcleaner_5.008.exe
2015-09-20 14:56 - 2015-09-23 08:18 - 00075934 _____ C:\WINDOWS\PFRO.log
2015-09-20 14:54 - 2015-09-20 14:54 - 00378880 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2015-09-20 14:54 - 2015-09-20 14:54 - 00043112 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2015-09-19 21:05 - 2015-09-19 21:05 - 01222144 _____ C:\Users\Petr\Desktop\RSITx64.exe
2015-09-19 21:05 - 2015-09-19 21:05 - 00000000 ____D C:\rsit
2015-09-19 20:56 - 2015-09-23 08:20 - 00000275 _____ C:\WINDOWS\WindowsUpdate.log
2015-09-19 20:31 - 2015-09-19 20:39 - 1699127296 _____ C:\Users\Petr\Desktop\Na hraně zítřka.avi
2015-09-19 11:33 - 2015-09-19 20:50 - 00000000 ____D C:\WINDOWS\Minidump
2015-09-19 09:40 - 2015-09-19 09:40 - 00000165 ____H C:\Users\Petr\Desktop\~$rozvrh-hodin-2kkr-zima (1).xlsx
2015-09-18 21:01 - 2015-09-19 22:31 - 00000000 ____D C:\Users\Petr\Desktop\ortel-komplet-studiova-alba-2002-2014-sten-ok-pres-MultiLoad.cz
2015-09-18 19:56 - 2015-09-18 22:56 - 00000000 ____D C:\Users\Petr\AppData\Local\NVIDIA Corporation
2015-09-18 19:55 - 2015-09-18 19:55 - 00000000 ____D C:\Program Files (x86)\AGEIA Technologies
2015-09-18 19:52 - 2015-07-13 20:45 - 00991336 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvumdshim.dll
2015-09-18 19:52 - 2015-07-13 20:45 - 00177088 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvinitx.dll
2015-09-18 19:52 - 2015-07-13 20:45 - 00155280 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvinit.dll
2015-09-18 19:52 - 2014-10-16 18:54 - 01876296 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco6434448.dll
2015-09-18 19:52 - 2014-10-16 18:54 - 01539272 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco6434448.dll
2015-09-18 19:52 - 2014-10-16 18:54 - 00038048 _____ (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nvvad64v.sys
2015-09-18 19:52 - 2014-10-16 18:54 - 00034976 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvaudcap64v.dll
2015-09-18 19:52 - 2014-10-16 18:54 - 00032416 _____ (NVIDIA Corporation) C:\WINDOWS\SysWOW64\nvaudcap32v.dll
2015-09-18 14:36 - 2013-07-18 07:55 - 00130248 _____ (Qualcomm Atheros Co., Ltd.) C:\WINDOWS\system32\Drivers\L1C63x64.sys
2015-09-16 22:10 - 2014-07-02 06:58 - 03351520 _____ (Intel Corporation) C:\Users\Petr\Desktop\NETwew00.sys
2015-09-16 20:30 - 2015-09-16 21:13 - 00000000 ___RD C:\Users\Petr\3D Objects
2015-09-16 17:00 - 2015-09-16 17:00 - 00013630 _____ C:\Users\Petr\Desktop\rozvrh-hodin-2kkr-zima (1).xlsx
2015-09-15 16:32 - 2015-09-15 16:32 - 00000000 ____D C:\Users\Petr\AppData\Local\Ironclad Games
2015-09-15 16:29 - 2015-09-15 16:30 - 00000000 ____D C:\Users\Petr\Desktop\Sins of a Solar Empire
2015-09-09 21:30 - 2015-09-02 03:20 - 00077400 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2015-09-09 21:30 - 2015-09-02 02:25 - 03586560 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2015-09-09 21:30 - 2015-09-02 02:25 - 01382912 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2015-09-09 21:30 - 2015-08-27 08:36 - 03620736 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2015-09-09 21:30 - 2015-08-27 08:32 - 00608936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2015-09-09 21:30 - 2015-08-27 08:04 - 21874688 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2015-09-09 21:30 - 2015-08-27 07:59 - 02880032 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\iertutil.dll
2015-09-09 21:30 - 2015-08-27 07:55 - 24594944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2015-09-09 21:30 - 2015-08-27 07:54 - 00541248 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fontdrvhost.exe
2015-09-09 21:30 - 2015-08-27 07:54 - 00365568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2015-09-09 21:30 - 2015-08-27 07:51 - 02350592 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2015-09-09 21:30 - 2015-08-27 07:51 - 01774592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2015-09-09 21:30 - 2015-08-27 07:49 - 01008640 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2015-09-09 21:30 - 2015-08-27 07:47 - 12503552 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2015-09-09 21:30 - 2015-08-27 07:43 - 00826880 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript.dll
2015-09-09 21:30 - 2015-08-27 07:43 - 00576000 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2015-09-09 21:30 - 2015-08-27 07:42 - 00596480 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingSync.dll
2015-09-09 21:30 - 2015-08-27 07:42 - 00578560 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2015-09-09 21:30 - 2015-08-27 07:42 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.PicturePassword.dll
2015-09-09 21:30 - 2015-08-27 07:42 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\shacct.dll
2015-09-09 21:30 - 2015-08-27 07:39 - 00045568 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2015-09-09 21:30 - 2015-08-27 07:23 - 19324416 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\mshtml.dll
2015-09-09 21:30 - 2015-08-27 07:23 - 00303104 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\atmfd.dll
2015-09-09 21:30 - 2015-08-27 07:16 - 18806272 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\edgehtml.dll
2015-09-09 21:30 - 2015-08-27 07:16 - 02153472 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\authui.dll
2015-09-09 21:30 - 2015-08-27 07:16 - 01612288 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\Windows.UI.Immersive.dll
2015-09-09 21:30 - 2015-08-27 07:12 - 00650752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\jscript.dll
2015-09-09 21:30 - 2015-08-27 07:12 - 00504320 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\vbscript.dll
2015-09-09 21:30 - 2015-08-27 07:11 - 00484352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\SettingSync.dll
2015-09-09 21:30 - 2015-08-27 07:11 - 00139776 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shacct.dll
2015-09-09 21:30 - 2015-08-27 07:09 - 11262464 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\ieframe.dll
2015-09-09 21:30 - 2015-08-27 07:08 - 00037376 _____ (Adobe Systems) C:\WINDOWS\SysWOW64\atmlib.dll
2015-09-08 15:45 - 2015-09-08 15:57 - 1386805222 _____ C:\Users\Petr\Desktop\Ant-Man.2015.TS.NEW.XviD.AC3-CZ.avi
2015-09-08 15:44 - 2015-09-08 15:57 - 1698926592 _____ C:\Users\Petr\Desktop\Vybijena.2015.BDRip.XviD.CZ.avi
2015-09-05 22:24 - 2015-09-05 22:41 - 1455142912 _____ C:\Users\Petr\Desktop\Hvězdná brána Návrat CZ Dabing (2008).avi
2015-09-04 20:26 - 2015-09-04 20:26 - 00000000 ____D C:\Users\Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2015-09-04 18:50 - 2015-09-04 18:59 - 935653376 _____ C:\Users\Petr\Desktop\Hvezdna.Brana.Archa.pravdy.DVDRip.XviD.CZ.2.0.CZ.5.1-Mla.avi
2015-09-02 21:53 - 2015-09-16 21:26 - 00014261 _____ C:\Users\Petr\Desktop\Dieta.xlsx
2015-08-31 20:28 - 2015-08-31 20:28 - 00000000 ____D C:\Users\Petr\Desktop\Alien Collection [Director’s cut] [720p BRRip] [CZ]
2015-08-31 17:51 - 2015-09-19 21:23 - 00000000 ____D C:\Users\Petr\Desktop\JIZDNI RADY
2015-08-31 16:12 - 2015-08-31 16:39 - 1709756416 _____ C:\Users\Petr\Desktop\Vzpomínka na Titány.avi
2015-08-27 23:45 - 2015-08-20 08:07 - 08019296 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2015-08-27 23:45 - 2015-08-20 08:06 - 00609592 _____ (Microsoft Corporation) C:\WINDOWS\system32\ci.dll
2015-08-27 23:45 - 2015-08-20 08:02 - 22324656 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2015-08-27 23:45 - 2015-08-20 07:26 - 00168960 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2015-08-27 23:45 - 2015-08-20 07:21 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\EnterpriseModernAppMgmtCSP.dll
2015-08-27 23:45 - 2015-08-20 07:16 - 20857848 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\shell32.dll
2015-08-27 23:45 - 2015-08-20 07:13 - 02235904 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2015-08-27 23:45 - 2015-08-20 07:09 - 00929280 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys
2015-08-27 23:45 - 2015-08-18 09:56 - 02498808 _____ C:\WINDOWS\system32\CoreUIComponents.dll
2015-08-27 23:45 - 2015-08-18 09:55 - 00373072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBXHCI.SYS
2015-08-27 23:45 - 2015-08-18 09:54 - 01396064 _____ (Microsoft Corporation) C:\WINDOWS\system32\LicenseManager.dll
2015-08-27 23:45 - 2015-08-18 09:27 - 01771592 _____ C:\WINDOWS\SysWOW64\CoreUIComponents.dll
2015-08-27 23:45 - 2015-08-18 09:24 - 00963920 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\LicenseManager.dll
2015-08-27 23:45 - 2015-08-18 09:13 - 00497664 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2015-08-27 23:45 - 2015-08-18 09:13 - 00387584 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupShim.dll
2015-08-27 23:45 - 2015-08-18 09:12 - 02225664 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkMobileSettings.dll
2015-08-27 23:45 - 2015-08-18 09:07 - 02226688 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlansvc.dll
2015-08-27 23:45 - 2015-08-18 09:04 - 01234944 _____ (Microsoft Corporation) C:\WINDOWS\system32\aitstatic.exe
2015-08-27 23:45 - 2015-08-18 09:04 - 00859136 _____ (Microsoft Corporation) C:\WINDOWS\system32\modernexecserver.dll
2015-08-27 23:45 - 2015-08-18 08:59 - 01294336 _____ (Microsoft Corporation) C:\WINDOWS\system32\wcnwiz.dll
2015-08-27 23:45 - 2015-08-18 08:59 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnApi.dll
2015-08-27 23:45 - 2015-08-18 08:58 - 00187392 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2015-08-27 23:45 - 2015-08-18 08:58 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dafWCN.dll
2015-08-27 23:45 - 2015-08-18 08:58 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\fdWCN.dll
2015-08-27 23:45 - 2015-08-18 08:58 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\WcnNetsh.dll
2015-08-27 23:45 - 2015-08-18 08:57 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wfdprov.dll
2015-08-27 23:45 - 2015-08-18 08:56 - 00079872 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll
2015-08-27 23:45 - 2015-08-18 08:55 - 02178560 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2015-08-27 23:45 - 2015-08-18 08:54 - 00322048 _____ (Microsoft Corporation) C:\WINDOWS\system32\vaultsvc.dll
2015-08-27 23:45 - 2015-08-18 08:54 - 00247296 _____ C:\WINDOWS\system32\facecredentialprovider.dll
2015-08-27 23:45 - 2015-08-18 08:52 - 01888768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2015-08-27 23:45 - 2015-08-18 08:50 - 01795072 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.dll
2015-08-27 23:45 - 2015-08-18 08:49 - 01061888 _____ (Microsoft Corporation) C:\WINDOWS\system32\reseteng.dll
2015-08-27 23:45 - 2015-08-18 08:49 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\NetSetupShim.dll
2015-08-27 23:45 - 2015-08-18 08:49 - 00246272 _____ (Microsoft Corporation) C:\WINDOWS\system32\PackageStateRoaming.dll
2015-08-27 23:45 - 2015-08-18 08:36 - 01226752 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wcnwiz.dll
2015-08-27 23:45 - 2015-08-18 08:35 - 00100352 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\WcnApi.dll
2015-08-27 23:45 - 2015-08-18 08:35 - 00095744 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\fdWCN.dll
2015-08-27 23:45 - 2015-08-18 08:34 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\wfdprov.dll
2015-08-27 23:45 - 2015-08-18 08:29 - 01593344 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\dwmcore.dll
2015-08-27 23:45 - 2015-08-18 08:26 - 00195584 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PackageStateRoaming.dll
2015-08-27 23:45 - 2015-08-18 06:44 - 00008847 _____ C:\WINDOWS\system32\ResPriHMImageList
2015-08-27 11:20 - 2015-08-27 11:20 - 00013630 _____ C:\Users\Petr\Desktop\rozvrh-hodin-2kkr-zima.xlsx

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-09-23 08:31 - 2015-01-05 22:38 - 00000000 ____D C:\Users\Petr\AppData\Roaming\ViberPC
2015-09-23 08:26 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\AppReadiness
2015-09-23 08:23 - 2015-08-10 09:15 - 00000000 ____D C:\ProgramData\ASUS Smart Gesture
2015-09-23 08:23 - 2015-07-31 21:42 - 00000000 ____D C:\Users\Petr
2015-09-23 08:22 - 2015-05-03 22:41 - 00000000 ___RD C:\Users\Petr\Dropbox
2015-09-23 08:22 - 2015-05-03 22:38 - 00000000 ____D C:\Users\Petr\AppData\Roaming\Dropbox
2015-09-23 08:22 - 2014-05-13 17:18 - 00000074 _____ C:\Users\Petr\AppData\Roaming\sp_data.sys
2015-09-23 08:21 - 2014-10-23 10:24 - 00000960 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-09-23 08:20 - 2014-10-23 10:24 - 00000964 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-09-23 08:18 - 2015-07-10 14:21 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2015-09-23 08:18 - 2013-05-01 13:17 - 00000000 ____D C:\WINDOWS\pl
2015-09-23 08:17 - 2015-07-10 11:05 - 00262144 ___SH C:\WINDOWS\system32\config\BBI
2015-09-23 08:14 - 2015-06-20 17:04 - 00000930 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-2019586175-721206791-4067971009-1002UA.job
2015-09-23 07:48 - 2014-10-17 20:10 - 00000974 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2019586175-721206791-4067971009-1002UA.job
2015-09-23 07:15 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\sru
2015-09-23 02:31 - 2014-05-19 11:12 - 00004192 _____ C:\WINDOWS\System32\Tasks\User_Feed_Synchronization-{85B5C20B-5C4C-43E6-B766-7C611F1AF74B}
2015-09-23 00:14 - 2015-06-20 17:04 - 00000878 _____ C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-2019586175-721206791-4067971009-1002Core.job
2015-09-22 21:48 - 2014-10-17 20:10 - 00000922 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2019586175-721206791-4067971009-1002Core.job
2015-09-22 20:07 - 2014-05-22 15:24 - 00000000 ____D C:\Users\Petr\Desktop\ancestry1.0.21.86
2015-09-22 20:06 - 2014-05-22 15:27 - 00000000 ____D C:\Users\Petr\AppData\Roaming\Ancestry
2015-09-22 19:54 - 2014-05-15 06:27 - 00000000 ____D C:\Users\Petr\AppData\Roaming\Azureus
2015-09-22 14:05 - 2015-07-10 12:55 - 00000000 ____D C:\WINDOWS\CbsTemp
2015-09-22 14:05 - 2015-05-17 14:07 - 00003544 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update1
2015-09-22 14:05 - 2015-05-17 14:07 - 00003534 _____ C:\WINDOWS\System32\Tasks\ASUS Live Update2
2015-09-20 15:09 - 2014-05-18 19:17 - 00000000 ____D C:\Users\Petr\AppData\Roaming\Seznam.cz
2015-09-20 14:54 - 2014-05-14 19:21 - 01049880 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2015-09-20 14:54 - 2014-05-14 19:21 - 00448968 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2015-09-20 14:54 - 2014-05-14 19:21 - 00274808 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2015-09-20 14:54 - 2014-05-14 19:21 - 00153744 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2015-09-20 14:54 - 2014-05-14 19:21 - 00093528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2015-09-20 14:54 - 2014-05-14 19:21 - 00090968 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2015-09-20 14:54 - 2014-05-14 19:21 - 00065224 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2015-09-20 14:54 - 2014-05-14 19:21 - 00028656 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2015-09-20 14:54 - 2014-05-14 19:21 - 00004006 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2015-09-19 22:31 - 2015-03-09 12:32 - 00000000 ____D C:\Users\Petr\Desktop\ONLY WAR
2015-09-19 21:05 - 2014-07-01 09:38 - 00000000 ____D C:\Program Files\trend micro
2015-09-19 20:59 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2015-09-19 20:52 - 2014-06-29 21:56 - 00000000 ____D C:\Users\Petr\Desktop\CCregistry
2015-09-19 20:50 - 2015-07-31 22:31 - 00000000 ___DC C:\WINDOWS\Panther
2015-09-19 20:47 - 2014-05-13 21:15 - 00007636 _____ C:\Users\Petr\AppData\Local\resmon.resmoncfg
2015-09-19 20:29 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\NDF
2015-09-19 10:49 - 2014-05-15 12:11 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2015-09-18 22:57 - 2015-07-31 21:38 - 00000000 ____D C:\ProgramData\NVIDIA Corporation
2015-09-18 22:57 - 2015-07-31 21:37 - 00000000 ____D C:\Program Files\NVIDIA Corporation
2015-09-18 22:57 - 2015-07-31 21:37 - 00000000 ____D C:\Program Files (x86)\NVIDIA Corporation
2015-09-18 22:57 - 2014-05-13 17:24 - 00000000 ____D C:\Users\Petr\AppData\Local\Google
2015-09-18 22:57 - 2014-05-13 17:24 - 00000000 ____D C:\Program Files (x86)\Google
2015-09-18 21:51 - 2015-07-31 21:38 - 00000000 ____D C:\ProgramData\NVIDIA
2015-09-18 14:36 - 2015-08-02 19:40 - 00000000 ____D C:\WINDOWS\SysWOW64\Atheros_L1e
2015-09-18 12:02 - 2015-07-31 22:02 - 01762290 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2015-09-18 12:02 - 2015-07-10 18:02 - 00746648 _____ C:\WINDOWS\system32\perfh005.dat
2015-09-18 12:02 - 2015-07-10 18:02 - 00149550 _____ C:\WINDOWS\system32\perfc005.dat
2015-09-17 12:00 - 2014-06-30 23:11 - 00000000 ___RD C:\Users\Petr\Disk Google
2015-09-16 22:11 - 2013-11-25 12:45 - 00000000 ____D C:\Program Files\DIFX
2015-09-16 16:07 - 2014-05-13 17:17 - 00000000 ____D C:\Users\Petr\AppData\Local\Packages
2015-09-16 16:06 - 2014-05-15 07:40 - 00000000 ____D C:\WINDOWS\system32\MRT
2015-09-16 11:17 - 2015-07-10 14:20 - 04919656 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2015-09-16 11:15 - 2014-05-13 17:24 - 00004022 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2015-09-16 11:15 - 2014-05-13 17:24 - 00003790 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2015-09-15 21:43 - 2014-05-24 11:34 - 00004088 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2019586175-721206791-4067971009-1002UA
2015-09-15 21:43 - 2014-05-24 11:34 - 00003712 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2019586175-721206791-4067971009-1002Core
2015-09-15 16:18 - 2013-11-25 12:38 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2015-09-15 16:09 - 2015-07-31 22:20 - 00002396 _____ C:\Users\Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2015-09-15 16:09 - 2014-05-18 21:01 - 00000000 __RDO C:\Users\Petr\OneDrive
2015-09-11 03:30 - 2015-07-10 18:05 - 00000000 ____D C:\Program Files\Windows Journal
2015-09-11 03:30 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\appraiser
2015-09-10 22:15 - 2014-06-15 12:46 - 00000000 ____D C:\ProgramData\Microsoft Help
2015-09-03 22:16 - 2015-07-31 22:13 - 00000000 ____D C:\Users\Petr\AppData\Local\Comms
2015-08-31 11:36 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\rescache
2015-08-30 02:43 - 2015-07-10 13:04 - 00000000 ____D C:\WINDOWS\system32\oobe
2015-08-28 21:37 - 2015-01-18 14:29 - 00000000 ____D C:\Users\Petr\AppData\Roaming\TS3Client
2015-08-26 18:37 - 2014-05-15 07:40 - 134753440 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-08-25 17:41 - 2015-01-05 22:38 - 00001109 _____ C:\Users\Petr\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Viber.lnk
2015-08-25 17:41 - 2015-01-05 22:38 - 00001101 _____ C:\Users\Petr\Desktop\Viber.lnk

==================== Files in the root of some directories =======

2014-09-01 10:18 - 2014-09-01 10:18 - 0002086 _____ () C:\Users\Petr\AppData\Roaming\MFZWJ
2014-05-21 18:07 - 2014-05-21 18:07 - 0000021 _____ () C:\Users\Petr\AppData\Roaming\my_intel.sys
2014-05-13 17:18 - 2015-09-23 08:22 - 0000074 _____ () C:\Users\Petr\AppData\Roaming\sp_data.sys
2014-09-01 10:18 - 2014-09-01 10:18 - 0001248 _____ () C:\Users\Petr\AppData\Roaming\THAGUQRU
2015-01-29 01:43 - 2015-01-29 01:43 - 0003584 _____ () C:\Users\Petr\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-09-23 08:38 - 2015-09-23 08:38 - 0029696 _____ () C:\Users\Petr\AppData\Local\MSGBOX.EXE
2014-05-13 21:15 - 2015-09-19 20:47 - 0007636 _____ () C:\Users\Petr\AppData\Local\resmon.resmoncfg
2015-07-31 21:37 - 2015-07-31 21:37 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2013-05-01 13:15 - 2012-09-07 13:40 - 0000256 _____ () C:\ProgramData\SetStretch.cmd
2013-05-01 13:15 - 2009-07-22 12:04 - 0024576 _____ () C:\ProgramData\SetStretch.exe
2013-11-25 12:59 - 2013-11-25 13:00 - 0000109 _____ () C:\ProgramData\{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}.log
2013-11-25 12:55 - 2013-11-25 12:58 - 0000110 _____ () C:\ProgramData\{CB099890-1D5F-11D5-9EA9-0050BAE317E1}.log
2013-11-25 12:58 - 2013-11-25 12:59 - 0000108 _____ () C:\ProgramData\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}.log
2013-11-25 12:54 - 2013-11-25 12:55 - 0000110 _____ () C:\ProgramData\{E3739848-5329-48E3-8D28-5BBD6E8BE384}.log

Files to move or delete:
====================
C:\Users\Petr\AppData\Local\Temp\5.3.0.1884\5.3.0.1884\Viber.exe

Some files in TEMP:
====================
C:\Users\Petr\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmprmmnj5.dll
C:\Users\Petr\AppData\Local\Temp\i4jdel0.exe
C:\Users\Petr\AppData\Local\Temp\sqlite3.dll

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2015-08-30 13:03

==================== End of FRST.txt ============================

Albrecht · #10 Příspěvek od **Albrecht** » 23 zář 2015 07:41

Additional scan result of Farbar Recovery Scan Tool (x64) Version:15-09-2015
Ran by Petr (2015-09-23 08:40:05)
Running from C:\Users\Petr\Desktop
Windows 10 Home (X64) (2015-07-31 20:12:17)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-2019586175-721206791-4067971009-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-2019586175-721206791-4067971009-503 - Limited - Disabled)
Guest (S-1-5-21-2019586175-721206791-4067971009-501 - Limited - Disabled) => C:\Users\Guest
Kamera (S-1-5-21-2019586175-721206791-4067971009-1005 - Limited - Enabled) => C:\Users\Kamera
Petr (S-1-5-21-2019586175-721206791-4067971009-1002 - Administrator - Enabled) => C:\Users\Petr

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: avast! Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: avast! Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
FW: avast! Antivirus (Disabled) {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 14.0.0.110 - Adobe Systems Incorporated)
Adobe Community Help (HKLM-x32\...\chc.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 3.0.0.400 - Adobe Systems Incorporated)
Adobe Media Player (HKLM-x32\...\com.adobe.amp.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1) (Version: 1.8 - Adobe Systems Incorporated)
Adobe Reader X (10.1.15) MUI (HKLM-x32\...\{AC76BA86-7AD7-FFFF-7B44-AA0000000001}) (Version: 10.1.15 - Adobe Systems Incorporated)
Age of Conan: Unchained (HKLM-x32\...\Age of Conan_is1) (Version: - Funcom)
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
Alcor Micro USB Card Reader (HKLM-x32\...\AmUStor) (Version: 3.9.142.62248 - Alcor Micro Corp.)
Alcor Micro USB Card Reader (x32 Version: 3.9.142.62248 - Alcor Micro Corp.) Hidden
Aplikace Intel® PROSet/Wireless (HKLM-x32\...\{c9967fbd-e3c3-4ed0-992a-5b33260f2944}) (Version: 16.1.5 - Intel Corporation)
ASUS Instant Key (HKLM-x32\...\{D97A1B80-131F-4692-9543-E652956D8B99}) (Version: 1.1.1 - ASUS)
ASUS InstantOn (HKLM-x32\...\{749F674B-2674-47E8-879C-5626A06B2A91}) (Version: 3.0.6 - ASUS)
ASUS Live Update (HKLM-x32\...\{FA540E67-095C-4A1B-97BA-4D547DEC9AF4}) (Version: 3.3.4 - ASUS)
ASUS Power4Gear Hybrid (HKLM\...\{9B6239BF-4E85-4590-8D72-51E30DB1A9AA}) (Version: 2.1.7 - ASUS)
ASUS Screen Saver (HKLM\...\{0FBEEDF8-30FA-4FA3-B31F-C9C7E7E8DFA2}) (Version: 1.0.1 - ASUS)
ASUS Smart Gesture (HKLM-x32\...\{4D3286A6-F6AB-498A-82A4-E4F040529F3D}) (Version: 4.0.5 - ASUS)
ASUS Splendid Video Enhancement Technology (HKLM-x32\...\{0969AF05-4FF6-4C00-9406-43599238DE0D}) (Version: 2.01.0005 - ASUS)
ASUS USB Charger Plus (HKLM-x32\...\{A859E3E5-C62F-4BFA-AF1D-2B95E03166AF}) (Version: 2.1.5 - ASUS)
ASUS Video Magic (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 6.0.5005 - CyberLink Corp.)
ASUS Video Magic (x32 Version: 6.0.5005 - CyberLink Corp.) Hidden
ASUS WebStorage Sync Agent (HKLM-x32\...\ASUS WebStorage) (Version: 1.1.18.159 - ASUS Cloud Corporation)
ASUSDVD (HKLM-x32\...\InstallShield_{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}) (Version: 10.0.4924.52 - CyberLink Corp.)
ASUSDVD (x32 Version: 10.0.4924.52 - CyberLink Corp.) Hidden
ATK Package (HKLM-x32\...\{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}) (Version: 1.0.0028 - ASUS)
aTube Catcher (HKLM-x32\...\aTube Catcher) (Version: 3.8.5187 - DsNET Corp)
aTube Catcher verze 3.8 (HKLM-x32\...\{D43B360E-722D-421B-BC77-20B9E0F8B6CD}_is1) (Version: 3.8 - DsNET Corp)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 10.4.2233 - AVAST Software)
Azteca (x32 Version: 2.2.0.97 - WildTangent) Hidden
Balíček ovladače systému Windows - ASUS (ATP) Mouse (06/17/2015 1.0.0.262) (HKLM\...\14588A15B66655338DBCC021FFA81E31DC281859) (Version: 06/17/2015 1.0.0.262 - ASUS)
Balíček ovladače systému Windows - Intel (NETwNb64) net (07/21/2014 17.1.0.19) (HKLM\...\DFD77BC88FCDAB7756A7118A24652400028114C3) (Version: 07/21/2014 17.1.0.19 - Intel)
Balíček ovladače systému Windows - Intel (NETwNe64) net (08/05/2014 15.14.0.2) (HKLM\...\9D60642D672AB76E4E30B4DD4DFF404F1F41E5C6) (Version: 08/05/2014 15.14.0.2 - Intel)
Balíček ovladače systému Windows - Intel (NETwNs64) net (07/22/2014 15.13.0.2) (HKLM\...\CFFA790B2E30D10D1C999BCAE43FE5F95339385D) (Version: 07/22/2014 15.13.0.2 - Intel)
Balíček ovladače systému Windows - Intel net (07/21/2014 17.1.0.19) (HKLM\...\C036D1587CC33B359A91124A86C4A2799F552A95) (Version: 07/21/2014 17.1.0.19 - Intel)
Balíček ovladače systému Windows - Intel net (07/22/2014 15.13.0.2) (HKLM\...\EDEC77655623290152D5785E99A3C58B8BD2AEAF) (Version: 07/22/2014 15.13.0.2 - Intel)
Balíček ovladače systému Windows - Intel net (08/05/2014 15.14.0.2) (HKLM\...\77A0846FECA67C4F25C7EA350ABDF2C8C9A7DBBE) (Version: 08/05/2014 15.14.0.2 - Intel)
Bejeweled 3 (x32 Version: 2.2.0.97 - WildTangent) Hidden
BitRaider Streaming Client (HKLM-x32\...\BitRaider Streaming Client) (Version: 1.3.3.4098 - BitRaider, LLC)
Borderlands 2 (HKLM-x32\...\Steam App 49520) (Version: - Gearbox Software)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.69.1079 - AB Team, d.o.o.)
CCleaner (HKLM\...\CCleaner) (Version: 5.01 - Piriform)
Cut the Rope (x32 Version: 3.0.2.38 - WildTangent) Hidden
CyberLink MediaEspresso 6.5 (HKLM-x32\...\InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}) (Version: 6.5.3718_45957 - CyberLink Corp.)
CyberLink PowerDirector (HKLM-x32\...\InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}) (Version: 8.0.5817a - CyberLink Corp.)
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
Dropbox (HKU\S-1-5-21-2019586175-721206791-4067971009-1002\...\Dropbox) (Version: 3.8.8 - Dropbox, Inc.)
ELAN Touchpad 15.8.4.3_X64_WHQL (HKLM\...\Elantech) (Version: 15.8.4.3 - ELAN Microelectronic Corp.)
EVEREST Ultimate Edition v5.50 (HKLM-x32\...\EVEREST Ultimate Edition_is1) (Version: 5.50 - Lavalys, Inc.)
Fotogaléria (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Fotogalerie (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Fotótár (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Foxit Cloud (HKLM-x32\...\{41914D8B-9D6E-4764-A1F9-BC43FB6782C1}_is1) (Version: 3.5.116.602 - Foxit Software Inc.)
Foxit Reader (HKLM-x32\...\Foxit Reader_is1) (Version: 7.1.5.425 - Foxit Software Inc.)
Fraps (HKLM-x32\...\Fraps) (Version: - )
Galeria fotografii (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
Glyph (HKLM-x32\...\Glyph) (Version: - Trion Worlds, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 45.0.2454.99 - Google Inc.)
Google Talk Plugin (HKLM-x32\...\{CA3DD97D-1FD7-37A7-BD5C-FC4430C8B8E6}) (Version: 5.41.2.0 - Google)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.28.15 - Google Inc.) Hidden
Heroes of Might and Magic V - Tribes of the East (HKLM-x32\...\{66FF4C48-0083-4E60-8556-B883AB200092}) (Version: - )
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3308 - Intel Corporation)
Intel(R) PROSet/Wireless Software for Bluetooth(R) Technology (HKLM\...\{302600C1-6BDF-4FD1-1309-148929CC1385}) (Version: 3.1.1309.0390 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Intel(R) WiDi (HKLM\...\{23D486D4-FBE0-40F3-A245-E4D56D094764}) (Version: 3.5.41.0 - Intel Corporation)
iSpy (64 bit) (HKLM\...\{1868E19B-0E5C-42C8-A2E8-F4CF58D5C203}) (Version: 6.3.1 - iSpy)
Java 8 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
LG PC Suite (HKLM-x32\...\LG PC Suite) (Version: 5.3.22.20141205 - LG Electronics)
LG United Mobile Drivers (HKLM-x32\...\{15A5D29A-F209-49FD-BA47-5E4C882FF496}) (Version: 3.12.1.0 - LG Electronics)
Malwarebytes Anti-Malware verze 2.1.8.1057 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.8.1057 - Malwarebytes Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.40728.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
MyBitCast 2.0 (HKLM-x32\...\MyBitCast) (Version: 2.0 - ASUS)
Napoleon: Total War (HKLM-x32\...\Steam App 34030) (Version: - The Creative Assembly)
NVIDIA Systémový software PhysX 9.14.0702 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.14.0702 - NVIDIA Corporation)
Open Broadcaster Software (HKLM-x32\...\Open Broadcaster Software) (Version: - )
Ovládací panel NVIDIA 353.54 (Version: 353.54 - NVIDIA Corporation) Hidden
Peggle (x32 Version: 2.2.0.95 - WildTangent) Hidden
Penguins! (x32 Version: 2.2.0.98 - WildTangent) Hidden
Podstawowe programy Windows Live (x32 Version: 16.4.3505.0912 - Microsoft Corporation) Hidden
PowerISO (HKLM-x32\...\PowerISO) (Version: 5.9 - Power Software Ltd)
Qualcomm Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver (HKLM-x32\...\{3108C217-BE83-42E4-AE9E-A56A2A92E549}) (Version: 2.1.0.21 - Qualcomm Atheros Communications Inc.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7535 - Realtek Semiconductor Corp.)
RIFT (HKLM-x32\...\Glyph RIFT) (Version: - Trion Worlds, Inc.)
RoboTask (HKLM-x32\...\{BC45995A-7451-430C-9779-5FF455E710D9}_is1) (Version: 6.1 - NeoWise Software)
Seznam Software (HKU\S-1-5-21-2019586175-721206791-4067971009-1002\...\SeznamInstall) (Version: - Seznam.cz)
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
Skype™ 7.7 (HKLM-x32\...\{24991BA0-F0EE-44AD-9CC8-5EC50AECF6B7}) (Version: 7.7.103 - Skype Technologies S.A.)
SpeedFan (remove only) (HKLM-x32\...\SpeedFan) (Version: - )
Star Wars The Old Republic (HKLM-x32\...\swtor_swtor) (Version: - Bioware/EA)
Star Wars: The Old Republic (HKLM-x32\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.)
Steam (HKLM-x32\...\{048298C9-A4D3-490B-9FF9-AB023A9238F3}) (Version: 1.0.0.0 - Valve)
Tales of Lagoona (x32 Version: 2.2.0.110 - WildTangent) Hidden
TeamSpeak 3 Client (HKU\S-1-5-21-2019586175-721206791-4067971009-1002\...\TeamSpeak 3 Client) (Version: 3.0.16 - TeamSpeak Systems GmbH)
TeamViewer 10 (HKLM-x32\...\TeamViewer) (Version: 10.0.45862 - TeamViewer)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.51a - Ghisler Software GmbH)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
Update Installer for WildTangent Games App (x32 Version: - WildTangent) Hidden
Viber (HKU\S-1-5-21-2019586175-721206791-4067971009-1002\...\Viber) (Version: 5.2.0.2546 - Viber Media Inc)
Vuze (HKLM\...\8461-7759-5462-8226) (Version: 5.6.2.0 - Azureus Software, Inc.)
War Thunder Launcher 1.0.1.420 (HKLM-x32\...\{ed8deea4-29fa-3932-9612-e2122d8a62d9}}_is1) (Version: - Gaijin Entertainment)
WebcamMax (HKLM-x32\...\WebcamMax) (Version: 7.8.2.6.MultiLanguage - )
Widevine Media Optimizer Chrome 6.0.0 (HKLM-x32\...\optimizer_chrome) (Version: 6.0.0.12757 - Widevine Technologies)
Widevine Media Optimizer Chrome 6.0.0 (HKU\S-1-5-21-2019586175-721206791-4067971009-1002\...\optimizer_chrome) (Version: 6.0.0.12757 - Widevine Technologies)
WildTangent Games (HKLM-x32\...\WildTangent wildgames Master Uninstall) (Version: 1.0.0.0 - WildTangent)
WildTangent Games App (x32 Version: 4.0.10.5 - WildTangent) Hidden
Windows Driver Package - ASUS (ATP) Mouse (01/10/2013 1.0.0.170) (HKLM\...\4A9DE1E9EBC800B7F01739D4DE7363EF6751BDF5) (Version: 01/10/2013 1.0.0.170 - ASUS)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3505.0912 - Microsoft Corporation)
WinFlash (HKLM-x32\...\{8F21291E-0444-4B1D-B9F9-4370A73E346D}) (Version: 2.42.0 - ASUS)
WinRAR 5.10 beta 4 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.10.4 - win.rar GmbH)
World of Tanks (HKLM-x32\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812EU}_is1) (Version: - Wargaming.net)
World of Warplanes (HKLM-x32\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C813EU}_is1) (Version: - Wargaming.net)
World of Warships (HKU\S-1-5-21-2019586175-721206791-4067971009-1002\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C814eu}_is1) (Version: - Wargaming.net)
World of Warships (HKU\S-1-5-21-2019586175-721206791-4067971009-1002\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C814na}_is1) (Version: - Wargaming.net)
Xfire 2.0 (HKLM-x32\...\{43ADAE00-A4ED-4379-A76D-A1FF5D9D334A}_is1) (Version: 2.0 - Xfire, Inc.)
Xfire Codec (remove only) (HKLM-x32\...\XfireCodec) (Version: - )
XSplit Broadcaster (HKLM-x32\...\{19F00CA3-338D-497C-BA31-0507101F2BBB}) (Version: 1.3.1403.1202 - SplitmediaLabs)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-2019586175-721206791-4067971009-1002_Classes\CLSID\{005A3A96-BAC4-4B0A-94EA-C0CE100EA736}\localserver32 -> C:\Users\Petr\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2019586175-721206791-4067971009-1002_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-2019586175-721206791-4067971009-1002_Classes\CLSID\{D1EDC4F5-7F4D-4B12-906A-614ECF66DDAF}\InprocServer32 -> C:\Users\Petr\AppData\Local\Google\Update\1.3.28.15\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2019586175-721206791-4067971009-1002_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Petr\AppData\Local\Google\Update\1.3.28.15\psuser_64.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-2019586175-721206791-4067971009-1002_Classes\CLSID\{ECD97DE5-3C8F-4ACB-AEEE-CCAB78F7711C}\InprocServer32 -> C:\Users\Petr\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2019586175-721206791-4067971009-1002_Classes\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Petr\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2019586175-721206791-4067971009-1002_Classes\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Petr\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2019586175-721206791-4067971009-1002_Classes\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Petr\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2019586175-721206791-4067971009-1002_Classes\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Petr\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2019586175-721206791-4067971009-1002_Classes\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Petr\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2019586175-721206791-4067971009-1002_Classes\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Petr\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2019586175-721206791-4067971009-1002_Classes\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Petr\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2019586175-721206791-4067971009-1002_Classes\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}\InprocServer32 -> C:\Users\Petr\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)
CustomCLSID: HKU\S-1-5-21-2019586175-721206791-4067971009-1002_Classes\CLSID\{FBC9D74C-AF55-4309-9FB2-C426E071637F}\InprocServer32 -> C:\Users\Petr\AppData\Roaming\Dropbox\bin\DropboxExt64.27.dll (Dropbox, Inc.)

==================== Restore Points =========================

04-09-2015 20:03:43 Naplánovaný kontrolní bod
10-09-2015 22:07:59 Windows Update
10-09-2015 22:09:25 Windows Update
14-09-2015 00:35:46 Windows Update
15-09-2015 16:17:16 Removed Black & White Creature Isle
18-09-2015 14:37:09 Konfigurováno Qualcomm Atheros Inc.(R) AR81Family Gigabit/Fast E#éďŞ
20-09-2015 14:52:31 avast! antivirus system restore point

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2014-10-03 07:28 - 00000035 ____A C:\WINDOWS\system32\Drivers\etc\hosts

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {03C8A5BB-FDC5-4ED4-8FC6-5129C290A1B1} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {0500E163-E86D-4E85-AA4F-8C2F6C96CBD9} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2015-09-20] (AVAST Software)
Task: {06B877D3-8013-4BA8-8C22-CF00E31B54EF} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2015-07-07] (Adobe Systems Incorporated)
Task: {0C017A8E-D577-4DAC-87BA-7B4D082A23F2} - System32\Tasks\ASUS InstantOn Config => C:\Program Files (x86)\ASUS\ASUS InstantOn\InsOnCfg.exe [2013-01-22] (ASUS)
Task: {0DDEC71F-B729-48CD-887D-CEAAADE44EB0} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {22A6CC00-A280-476A-9D5F-B5A3C0E634EE} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {29D9F38E-8353-4A1B-A524-6CF11067DE79} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {441C2184-54B1-4D04-A55D-C1DCFD63269A} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {4CB8A675-3E2A-482E-B41C-7DD0B0C6BAAE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {4E5551E4-955A-486B-9E36-949C9AE65013} - System32\Tasks\ASUS P4G => C:\Program Files\ASUS\P4G\BatteryLife.exe [2012-08-24] (ASUS)
Task: {601204E0-C3D0-4259-BED8-24BF9C49CF6F} - System32\Tasks\ASUS Live Update1 => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2015-03-23] (ASUSTeK Computer Inc.)
Task: {65BA00D3-227A-485B-93D2-37EDF5B929E1} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2019586175-721206791-4067971009-1002Core => C:\Users\Petr\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {6627E62E-087E-44AC-9931-E67A640C4D92} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-28] (Google Inc.)
Task: {6772F3AF-2C25-4BEC-83E1-1946439C82A6} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2015-08-26] (Microsoft Corporation)
Task: {68D122BD-3FC4-4AEA-A13D-51C68B9D7357} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2019586175-721206791-4067971009-1002Core => C:\Users\Petr\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-20] (Dropbox, Inc.)
Task: {7C4BF66C-5761-4545-BAE6-588D2CE1E966} - System32\Tasks\avastBCLRestartS-1-5-21-2019586175-721206791-4067971009-1002 => Chrome.exe
Task: {8220D0FC-3E6B-412F-B293-C4A2C4815B20} - System32\Tasks\Update Checker => C:\Program Files (x86)\ASUS\ASUS Live Update\UpdateChecker.exe [2015-02-12] ()
Task: {82BBC5E1-E6A8-4CAC-94E9-707CEFFD927B} - System32\Tasks\ASUS Live Update2 => C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe [2015-03-23] (ASUSTeK Computer Inc.)
Task: {8FCD63EF-11CE-4177-B992-181C56552E9E} - System32\Tasks\ASUS Splendid ColorU => C:\Program Files (x86)\ASUS\Splendid\ColorUService.exe [2013-02-26] (ASUSTeK Computer Inc.)
Task: {91AFABE9-D1A6-4F34-A6B9-ECC00806704E} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {9CC3064A-5B11-44B9-8FF4-C3C911996829} - System32\Tasks\ASUS Splendid ACMON => C:\Program Files (x86)\ASUS\Splendid\ACMON.exe [2012-11-28] (ASUS)
Task: {A10B8C2D-2DBF-40B8-A541-03FD862937C3} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {A998F2E1-467F-4041-90C6-85D1C1B97CD1} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {ABD61BD4-D684-44E8-A8D0-B4912E0D5CF5} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {AD7D0BF9-6391-49F6-94CD-49725906EAA9} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
Task: {B20729C1-585F-42FC-B172-68DFB2B985B5} - System32\Tasks\DropboxUpdateTaskUserS-1-5-21-2019586175-721206791-4067971009-1002UA => C:\Users\Petr\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2015-06-20] (Dropbox, Inc.)
Task: {B3931B73-3843-4AAB-A5FD-FEA9A7B1433D} - System32\Tasks\{8926819E-945E-4DE8-B0A3-9CF89B29C233} => pcalua.exe -a "C:\Games\League of Legends\lol.launcher.exe" -d "C:\Games\League of Legends\"
Task: {B4C10A06-4B65-4E2B-B6C6-EB06B92FEA6B} - System32\Tasks\ASUS Smart Gesture Launcher => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2015-07-28] (AsusTek)
Task: {C05EB898-47A0-4B35-AECF-0F3902CF6A9D} - System32\Tasks\ASUS USB Charger Plus => C:\Program Files (x86)\ASUS\USBChargerPlus\USBChargerPlus.exe [2012-09-18] (ASUSTek Computer Inc.)
Task: {CADDC8B4-FCB8-4809-A76F-78B233A68BBC} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {D460F184-EF63-4333-943D-61BB56A700BE} - System32\Tasks\GenericSettingsHandler\Windows-Credentials\RetrySyncTask_for_S-1-5-21-2019586175-721206791-4067971009-1002
Task: {D5C4FB8E-D66A-469B-92F7-5372A0FD00A0} - \SPBIW_UpdateTask_Time_313438393833383530382d3437415a556c2a3223346c41 -> No File <==== ATTENTION
Task: {D7CD42E1-5C54-4E3C-8A7C-4F9E35355FDE} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-12-12] (Piriform Ltd)
Task: {DA7FB328-6D72-4125-B9B0-6F1EA0E2BE05} - System32\Tasks\ASUS Touchpad Launcher (x64) => C:\Program Files (x86)\ASUS\ASUS Smart Gesture\AsTPCenter\x64\AsusTPLauncher.exe [2015-07-28] (AsusTek)
Task: {E84FA415-5630-4189-AC6C-515A4F1CE5A5} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-2019586175-721206791-4067971009-1002UA => C:\Users\Petr\AppData\Local\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-2019586175-721206791-4067971009-1002Core.job => C:\Users\Petr\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\DropboxUpdateTaskUserS-1-5-21-2019586175-721206791-4067971009-1002UA.job => C:\Users\Petr\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2019586175-721206791-4067971009-1002Core.job => C:\Users\Petr\AppData\Local\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-2019586175-721206791-4067971009-1002UA.job => C:\Users\Petr\AppData\Local\Google\Update\GoogleUpdate.exe

==================== Loaded Modules (Whitelisted) ==============

2015-07-31 22:24 - 2015-07-31 22:24 - 00032768 _____ () C:\WINDOWS\SYSTEM32\licensemanagerapi.dll
2015-07-31 21:38 - 2015-07-13 19:37 - 00116552 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax64.dll
2012-12-19 08:10 - 2012-12-19 08:10 - 00072192 _____ () C:\Program Files (x86)\ASUS\WebStorage Sync Agent\1.1.18.159\AsusWSWinService.exe
2015-08-19 21:22 - 2015-08-11 11:14 - 00404480 _____ () C:\WINDOWS\System32\diagtrack_wininternal.dll
2013-11-25 12:58 - 2009-04-17 12:01 - 00247152 ____N () C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
2015-08-27 23:45 - 2015-08-18 09:56 - 02498808 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2012-08-24 19:26 - 2012-08-24 19:26 - 00031360 _____ () C:\Program Files\ASUS\P4G\DevMng.dll
2015-08-27 23:45 - 2015-08-18 09:56 - 02498808 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
2015-07-10 12:59 - 2015-07-10 12:59 - 00429056 _____ () C:\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\QuickActions.dll
2015-08-12 10:08 - 2015-08-03 03:11 - 06569472 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2015-07-10 13:00 - 2015-07-10 18:05 - 00471040 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2015-08-19 21:22 - 2015-08-11 10:58 - 01808384 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2015-08-12 10:08 - 2015-08-03 03:09 - 02274816 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-09-21 21:30 - 2015-09-21 21:30 - 51512528 _____ () C:\Users\Petr\AppData\Local\Temp\5.3.0.1884\5.3.0.1884\Viber.exe
2014-12-13 00:25 - 2014-12-13 00:25 - 00053248 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
2015-09-20 14:54 - 2015-09-20 14:54 - 00103376 _____ () C:\Program Files\AVAST Software\Avast\log.dll
2015-09-20 14:54 - 2015-09-20 14:54 - 00123976 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2015-09-23 01:27 - 2015-09-23 01:27 - 02965504 _____ () C:\Program Files\AVAST Software\Avast\defs\15092201\algo.dll
2015-09-23 08:19 - 2015-09-23 08:19 - 02965504 _____ () C:\Program Files\AVAST Software\Avast\defs\15092300\algo.dll
2014-01-03 13:03 - 2014-01-03 13:03 - 07816192 _____ () C:\Program Files (x86)\SplitmediaLabs\XSplit\avcodec-54.dll
2014-01-03 13:03 - 2014-01-03 13:03 - 01425920 _____ () C:\Program Files (x86)\SplitmediaLabs\XSplit\avformat-54.dll
2014-01-03 13:03 - 2014-01-03 13:03 - 00188416 _____ () C:\Program Files (x86)\SplitmediaLabs\XSplit\avutil-52.dll
2014-01-03 13:03 - 2014-01-03 13:03 - 00336896 _____ () C:\Program Files (x86)\SplitmediaLabs\XSplit\swscale-2.dll
2014-01-03 13:03 - 2014-01-03 13:03 - 00096256 _____ () C:\Program Files (x86)\SplitmediaLabs\XSplit\swresample-0.dll
2015-09-23 08:21 - 2015-09-23 08:21 - 00071168 _____ () c:\users\petr\appdata\local\temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmprmmnj5.dll
2015-09-04 20:26 - 2015-08-05 07:26 - 00012800 _____ () C:\Users\Petr\AppData\Roaming\Dropbox\bin\QtQuick.2\qtquick2plugin.dll
2015-09-04 20:26 - 2015-08-05 07:26 - 00779776 _____ () C:\Users\Petr\AppData\Roaming\Dropbox\bin\QtQuick\Controls\qtquickcontrolsplugin.dll
2015-09-04 20:26 - 2015-08-05 07:26 - 00056320 _____ () C:\Users\Petr\AppData\Roaming\Dropbox\bin\QtQuick\Layouts\qquicklayoutsplugin.dll
2015-09-04 20:26 - 2015-08-05 07:26 - 00012288 _____ () C:\Users\Petr\AppData\Roaming\Dropbox\bin\QtQuick\Window.2\windowplugin.dll
2015-09-22 20:21 - 2015-09-19 00:13 - 01501512 _____ () C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.99\libglesv2.dll
2015-09-22 20:21 - 2015-09-19 00:13 - 00081224 _____ () C:\Program Files (x86)\Google\Chrome\Application\45.0.2454.99\libegl.dll
2015-09-20 14:54 - 2015-09-20 14:54 - 40539648 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-09-21 21:30 - 2015-09-21 21:30 - 00089088 _____ () C:\Users\Petr\AppData\Local\Temp\5.3.0.1884\5.3.0.1884\qfacebook.dll
2015-09-21 21:30 - 2015-09-21 21:30 - 00390656 _____ () C:\Users\Petr\AppData\Local\Temp\5.3.0.1884\5.3.0.1884\imageformats\qsvg.dll
2015-09-21 21:30 - 2015-09-21 21:30 - 00012288 _____ () C:\Users\Petr\AppData\Local\Temp\5.3.0.1884\5.3.0.1884\QtQuick.2\qtquick2plugin.dll
2015-09-21 21:30 - 2015-09-21 21:30 - 00690176 _____ () C:\Users\Petr\AppData\Local\Temp\5.3.0.1884\5.3.0.1884\QtQuick\Controls\qtquickcontrolsplugin.dll
2015-09-21 21:30 - 2015-09-21 21:30 - 00057856 _____ () C:\Users\Petr\AppData\Local\Temp\5.3.0.1884\5.3.0.1884\QtQuick\Layouts\qquicklayoutsplugin.dll
2015-09-21 21:30 - 2015-09-21 21:30 - 00012288 _____ () C:\Users\Petr\AppData\Local\Temp\5.3.0.1884\5.3.0.1884\QtQuick\Window.2\windowplugin.dll
2015-09-21 21:30 - 2015-09-21 21:30 - 00184320 _____ () C:\Users\Petr\AppData\Local\Temp\5.3.0.1884\5.3.0.1884\QtMultimedia\declarative_multimedia.dll
2015-09-21 21:30 - 2015-09-21 21:30 - 00044032 _____ () C:\Users\Petr\AppData\Local\Temp\5.3.0.1884\5.3.0.1884\QtQml\StateMachine\qtqmlstatemachine.dll
2015-09-21 21:30 - 2015-09-21 21:30 - 00425984 _____ () C:\Users\Petr\AppData\Local\Temp\5.3.0.1884\5.3.0.1884\QtLocation\declarative_location.dll
2015-09-21 21:30 - 2015-09-21 21:30 - 00065024 _____ () C:\Users\Petr\AppData\Local\Temp\5.3.0.1884\5.3.0.1884\QtPositioning\declarative_positioning.dll
2013-11-25 12:39 - 2012-06-25 12:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\Users\Petr\OneDrive:ms-properties

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2019586175-721206791-4067971009-1002\Control Panel\Desktop\\Wallpaper -> C:\Users\Petr\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\tapeta programu windows prohlížeč fotografií.jpg
DNS Servers: 213.46.172.37 - 213.46.172.36
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

HKLM\...\StartupApproved\Run32: => "UpdatePSTShortCut"
HKLM\...\StartupApproved\Run32: => "seznam-listicka-distribuce"
HKU\S-1-5-21-2019586175-721206791-4067971009-1002\...\StartupApproved\Run: => "cz.seznam.software.autoupdate"
HKU\S-1-5-21-2019586175-721206791-4067971009-1002\...\StartupApproved\Run: => "cz.seznam.software.szndesktop"
HKU\S-1-5-21-2019586175-721206791-4067971009-1002\...\StartupApproved\Run: => "Steam"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{4CCEBC55-5E11-4320-AC82-A2C3CB47C447}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{8DC9A40C-E06F-462E-A6DA-F8CCC01E4B27}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{FE211175-C4B7-4AEB-9F1E-DD524968B80F}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{AC064874-25ED-45F9-BA2D-976649E33946}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{FAED2FA4-8128-48F6-8A2D-422DEEFA16C2}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{A5DCBC71-2A72-448E-AF41-8E68D5B6486A}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{82844C3D-064A-4ED2-B763-5EBBE8BF5D5A}] => (Allow) C:\Program Files\Vuze\Azureus.exe
FirewallRules: [{9598C246-A140-4571-AB00-B835A93D23BE}] => (Allow) C:\Program Files\Vuze\Azureus.exe
FirewallRules: [UDP Query User{574C2E84-0DD4-4FA0-B0D9-7D8E0EE04A99}C:\users\petr\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\petr\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [TCP Query User{471B806F-A0B8-4E78-8DD4-639CF505CD9F}C:\users\petr\appdata\roaming\dropbox\bin\dropbox.exe] => (Allow) C:\users\petr\appdata\roaming\dropbox\bin\dropbox.exe
FirewallRules: [{15E56EA1-8C21-4C3B-BA4D-81D7A5225F16}] => (Allow) C:\Users\Petr\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [{8752C96B-897C-4FCB-915B-60926D1119F9}] => (Allow) C:\Users\Petr\AppData\Roaming\Dropbox\bin\Dropbox.exe
FirewallRules: [UDP Query User{8A4C4BFD-905A-40EA-B889-0D5EE7D8E859}C:\program files\ispy\ispy (64 bit)\ispy.exe] => (Allow) C:\program files\ispy\ispy (64 bit)\ispy.exe
FirewallRules: [TCP Query User{8BC3AF91-2CCE-4536-BCBB-E87F48250DA9}C:\program files\ispy\ispy (64 bit)\ispy.exe] => (Allow) C:\program files\ispy\ispy (64 bit)\ispy.exe
FirewallRules: [UDP Query User{305FC4CE-7D43-4CD1-BB0A-501920CF5D54}C:\program files\ispy\ispy (64 bit)\ispy.exe] => (Allow) C:\program files\ispy\ispy (64 bit)\ispy.exe
FirewallRules: [TCP Query User{C72203E2-261A-40E8-84B3-DDDA6B4EC5BB}C:\program files\ispy\ispy (64 bit)\ispy.exe] => (Allow) C:\program files\ispy\ispy (64 bit)\ispy.exe
FirewallRules: [{4143DC96-D0C6-402D-9670-52EF1858FF3B}] => (Allow) C:\Games\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{74623121-C712-4AEB-B4F3-8B08D54778AB}] => (Allow) C:\Games\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{59983A43-FFA5-47FD-BADF-9892CA92468C}] => (Allow) C:\Games\Star Wars-The Old Republic\launcher.exe
FirewallRules: [{FED8C720-02A1-4B5B-9417-D4538E61FB44}] => (Allow) C:\Games\Star Wars-The Old Republic\launcher.exe
FirewallRules: [UDP Query User{99BDBD96-6C6C-40FD-9AC1-A91FE494236B}D:\games\heroes v\heroes of might and magic v - tribes of the east\bin\h5_game.exe] => (Allow) D:\games\heroes v\heroes of might and magic v - tribes of the east\bin\h5_game.exe
FirewallRules: [TCP Query User{9799C15D-5CB4-4B32-8827-3F962FED19EA}D:\games\heroes v\heroes of might and magic v - tribes of the east\bin\h5_game.exe] => (Allow) D:\games\heroes v\heroes of might and magic v - tribes of the east\bin\h5_game.exe
FirewallRules: [{4DC08A19-FA76-47BB-A2EE-3953A7679689}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [{C1D3A4B0-3EE6-4999-A809-E83C09CE1AB2}] => (Allow) C:\Windows\SysWOW64\muzapp.exe
FirewallRules: [UDP Query User{BA1F280F-B9B3-419B-A2A2-2DAD8D3615E3}D:\games\heroes v\heroes of might and magic v - tribes of the east\bin\h5_game.exe] => (Allow) D:\games\heroes v\heroes of might and magic v - tribes of the east\bin\h5_game.exe
FirewallRules: [TCP Query User{777E0078-CBF5-47A3-BEA1-DC2508D910D1}D:\games\heroes v\heroes of might and magic v - tribes of the east\bin\h5_game.exe] => (Allow) D:\games\heroes v\heroes of might and magic v - tribes of the east\bin\h5_game.exe
FirewallRules: [{B3C2A4A5-6B39-4EDF-BEC6-E65E765D6BF1}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{938BCBD9-1181-424E-A552-43F7A784C9EC}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [UDP Query User{34ED448D-1FD5-4393-8C47-8723A29E94D8}D:\games\warthunder\aces.exe] => (Allow) D:\games\warthunder\aces.exe
FirewallRules: [TCP Query User{94BCCEC6-125F-4B9C-9059-F6F889BE59DB}D:\games\warthunder\aces.exe] => (Allow) D:\games\warthunder\aces.exe
FirewallRules: [UDP Query User{190CDB19-F7DC-4B57-8594-FC6D645088AA}C:\program files (x86)\xfire2\xfire.exe] => (Allow) C:\program files (x86)\xfire2\xfire.exe
FirewallRules: [TCP Query User{E870F14E-C6B2-4B0C-AB34-7B984D74E59B}C:\program files (x86)\xfire2\xfire.exe] => (Allow) C:\program files (x86)\xfire2\xfire.exe
FirewallRules: [UDP Query User{F0CE489E-FEA0-4C33-BC1E-F156E41C6289}D:\games\warthunder\aces.exe] => (Allow) D:\games\warthunder\aces.exe
FirewallRules: [TCP Query User{3107E0AC-5957-47C8-B15B-4978986B2DCE}D:\games\warthunder\aces.exe] => (Allow) D:\games\warthunder\aces.exe
FirewallRules: [{E89573CD-1116-40F9-8F54-138D9928F1CD}] => (Allow) D:\Games\WarThunder\launcher.exe
FirewallRules: [{EE0F7049-8D0E-4F21-8505-9E56CD826540}] => (Allow) D:\Games\WarThunder\launcher.exe
FirewallRules: [UDP Query User{4C8099A9-F7A0-4B3A-AEEA-497D857E46DF}D:\games\wot\wotlauncher.exe] => (Allow) D:\games\wot\wotlauncher.exe
FirewallRules: [TCP Query User{70A93740-E4A4-411F-BA6D-A45AEFC90E6C}D:\games\wot\wotlauncher.exe] => (Allow) D:\games\wot\wotlauncher.exe
FirewallRules: [UDP Query User{05DEA1A2-28D9-438B-A1C6-EE542FEB8D33}C:\program files (x86)\robotask\robotask.exe] => (Block) C:\program files (x86)\robotask\robotask.exe
FirewallRules: [TCP Query User{858DDED9-EEFE-40DA-9923-4316D40C48E0}C:\program files (x86)\robotask\robotask.exe] => (Block) C:\program files (x86)\robotask\robotask.exe
FirewallRules: [{2F0507BC-B6B9-4445-8228-ECF85CDCC7A4}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [{A2AAF977-A4F6-4AEE-B79B-7C882F220958}] => (Allow) D:\Games\STEAM\SteamApps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{8E323494-59D7-4801-BA7B-9081E8D063D0}] => (Allow) D:\Games\STEAM\SteamApps\common\Borderlands 2\Binaries\Win32\Borderlands2.exe
FirewallRules: [{88954BF3-E7D2-4A2A-88D4-3BA709DA53B5}] => (Allow) D:\Games\STEAM\SteamApps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{F51B4979-6875-4810-8D00-9653CED7168C}] => (Allow) D:\Games\STEAM\SteamApps\common\Borderlands 2\Binaries\Win32\Launcher.exe
FirewallRules: [{7810CFE0-E0BA-4407-8F4B-9E0B0A5C536D}] => (Allow) D:\Games\STEAM\SteamApps\common\Napoleon Total War\Napoleon.exe
FirewallRules: [{C9A8B981-2C54-4BA3-8C22-2EED88784D7B}] => (Allow) D:\Games\STEAM\SteamApps\common\Napoleon Total War\Napoleon.exe
FirewallRules: [{0FFF9133-FC28-4A69-AC05-2C1EFD7AF29B}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{894C2E1D-30CF-4C83-B669-8A1B844805C8}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{AF702977-4330-41DC-B7EB-971528C7BDD5}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [{D9FDE7C5-91CF-4946-B79E-C7E264DA859C}] => (Allow) LPort=2869
FirewallRules: [{9DF568BF-1BE4-40F8-B58A-90F91C8AEB20}] => (Allow) LPort=1900
FirewallRules: [{52FA9FDA-3E5A-46B9-8328-2F906640C74D}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDirector\PDR8.EXE
FirewallRules: [{85E2DA7F-9C94-4EC2-848D-0CEEB1AFFC02}] => (Allow) C:\Program Files (x86)\Cyberlink\PowerDVD10\PowerDVD Cinema\PowerDVDCinema10.exe
FirewallRules: [{7553C196-0CA5-467E-BA20-E6FD789128AE}] => (Allow) C:\Program Files (x86)\Cyberlink\PowerDVD10\PowerDVD10.EXE
FirewallRules: [TCP Query User{2E89ABFD-EC1E-4669-9382-3E1713CD09B0}D:\games\wot\worldoftanks.exe] => (Allow) D:\games\wot\worldoftanks.exe
FirewallRules: [UDP Query User{570823DD-F55D-42B6-9A66-63C8E04C6ABA}D:\games\wot\worldoftanks.exe] => (Allow) D:\games\wot\worldoftanks.exe
FirewallRules: [TCP Query User{C57F0E8D-39D6-4102-BC08-4B34F4E6FCAC}D:\games\age of conan\conanpatcher.exe] => (Allow) D:\games\age of conan\conanpatcher.exe
FirewallRules: [UDP Query User{E48AD9C5-9A74-448A-AFE9-7C11C1CF2366}D:\games\age of conan\conanpatcher.exe] => (Allow) D:\games\age of conan\conanpatcher.exe
FirewallRules: [TCP Query User{63C286A6-7FC5-4B50-8358-6D95AE8B773F}D:\games\age of conan\ageofconan.exe] => (Allow) D:\games\age of conan\ageofconan.exe
FirewallRules: [UDP Query User{82820A42-DA82-4EF3-AD60-8E65761B6AD7}D:\games\age of conan\ageofconan.exe] => (Allow) D:\games\age of conan\ageofconan.exe
FirewallRules: [{E11417E5-348A-48FD-9FE9-3BA07A7A206C}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{70269ABE-0868-45DE-A65D-16F9537681EF}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{ED69AB4B-7994-4674-A408-C80DDF325BD1}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{5BCFF07D-0F48-4C8A-9CFD-15CAA25C51F4}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [TCP Query User{71D9473F-C187-4BA3-ADC0-392896C93335}D:\games\wow\wowplauncher.exe] => (Allow) D:\games\wow\wowplauncher.exe
FirewallRules: [UDP Query User{B4FD66BC-8914-4F58-BC08-DA9BD451463D}D:\games\wow\wowplauncher.exe] => (Allow) D:\games\wow\wowplauncher.exe
FirewallRules: [{F5687D52-E6F3-42C8-8F7D-70867296C1D7}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [{F6B88C28-9D88-4475-996E-CE043B1A3615}] => (Allow) C:\Program Files\AVAST Software\Avast\ng\vbox\aswFe.exe
FirewallRules: [TCP Query User{7FE479D1-566A-497C-8962-996BC0DA7ACB}C:\games\world_of_warships\wowslauncher.exe] => (Allow) C:\games\world_of_warships\wowslauncher.exe
FirewallRules: [UDP Query User{F88CE90D-3CA0-4C26-A6D2-B0AF75695087}C:\games\world_of_warships\wowslauncher.exe] => (Allow) C:\games\world_of_warships\wowslauncher.exe
FirewallRules: [{9C3B6D75-9EE0-4DB3-9554-9964C26A0212}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{2C628A40-8FB6-449C-ADBD-1FF54453CA39}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
FirewallRules: [{7584A742-1581-4953-9297-34F2E9550087}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{3CB4FC80-BAC9-42F8-8978-219CD26A0ABC}] => (Allow) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
FirewallRules: [{C56F8600-A002-4C81-B455-F668AE7A06FF}] => (Allow) C:\Program Files\Vuze\Azureus.exe
FirewallRules: [{2E884540-B306-483E-AF55-4D59B4B50523}] => (Allow) C:\Program Files\Vuze\Azureus.exe
FirewallRules: [TCP Query User{4F5E3FFE-E350-4761-BD55-31B6E5F9EF59}C:\users\petr\desktop\sins of a solar empire\sins of a solar empire entrenchment.exe] => (Allow) C:\users\petr\desktop\sins of a solar empire\sins of a solar empire entrenchment.exe
FirewallRules: [UDP Query User{E9B46C86-9196-4C03-8276-01C4306F0347}C:\users\petr\desktop\sins of a solar empire\sins of a solar empire entrenchment.exe] => (Allow) C:\users\petr\desktop\sins of a solar empire\sins of a solar empire entrenchment.exe
FirewallRules: [{FAE882B0-BCC7-46AF-94AC-D2C7E662A598}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Faulty Device Manager Devices =============

Name: Qualcomm Atheros AR8161 PCI-E Gigabit Ethernet Controller (NDIS 6.30)
Description: Qualcomm Atheros AR8161 PCI-E Gigabit Ethernet Controller (NDIS 6.30)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Qualcomm Atheros
Service: L1C
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Zařízení Bluetooth (síť PAN)
Description: Zařízení Bluetooth (síť PAN)
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: BthPan
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

==================== Event log errors: =========================

Application errors:
==================
Error: (09/23/2015 08:22:10 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest1 se nezdařilo. Chyba v souboru manifestu nebo zásad C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest2 na řádku C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest3.
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest.

Error: (09/23/2015 08:22:10 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest1 se nezdařilo. Chyba v souboru manifestu nebo zásad C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest2 na řádku C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest3.
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest.

Error: (09/23/2015 08:21:06 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest1 se nezdařilo. Chyba v souboru manifestu nebo zásad C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest2 na řádku C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest3.
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest.

Error: (09/23/2015 08:21:06 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest1 se nezdařilo. Chyba v souboru manifestu nebo zásad C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest2 na řádku C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest3.
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest.

Error: (09/23/2015 08:20:41 AM) (Source: Microsoft-Windows-Immersive-Shell) (EventID: 5973) (User: PETRNTB)
Description: Aplikaci Microsoft.WindowsPhone_8wekyb3d8bbwe!CompanionApp.App se nepovedlo aktivovat, protože došlo k chybě: -2147024770. Další informace najdete v protokolu Microsoft-Windows-TWinUI/Operational.

Error: (09/23/2015 08:20:36 AM) (Source: SideBySide) (EventID: 78) (User: )
Description: Generování kontextu aktivace pro C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest1 se nezdařilo. Chyba v souboru manifestu nebo zásad C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest2 na řádku C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest3.
Verze součásti požadovaná aplikací je v konfliktu s jinou verzí součásti, která je již aktivní.
Konfliktní součásti:
Součást 1: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_3bccb1ff6bcd1849.manifest.
Součást 2: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.10240.16384_none_f41f7b285750ef43.manifest.

Error: (09/22/2015 06:36:21 PM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (6208) Nový soubor protokolu se nedá vytvořit, protože databáze nemůže zapisovat na jednotku protokolu. Jednotka může být jen pro čtení, špatně nakonfigurovaná nebo poškozená nebo na ní nemusí být dost místa. Chyba: -1032

Error: (09/22/2015 06:36:21 PM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost (6208) Pokus o vytvoření souboru C:\WINDOWS\system32\edbtmp.log selhal. Došlo k systémové chybě 5 (0x00000005): Přístup byl odepřen. . Operace vytvoření souboru selže a dojde k chybě -1032 (0xfffffbf8).

Error: (09/22/2015 06:36:10 PM) (Source: ESENT) (EventID: 413) (User: )
Description: SettingSyncHost (6208) Nový soubor protokolu se nedá vytvořit, protože databáze nemůže zapisovat na jednotku protokolu. Jednotka může být jen pro čtení, špatně nakonfigurovaná nebo poškozená nebo na ní nemusí být dost místa. Chyba: -1032

Error: (09/22/2015 06:36:10 PM) (Source: ESENT) (EventID: 488) (User: )
Description: SettingSyncHost (6208) Pokus o vytvoření souboru C:\WINDOWS\system32\edbtmp.log selhal. Došlo k systémové chybě 5 (0x00000005): Přístup byl odepřen. . Operace vytvoření souboru selže a dojde k chybě -1032 (0xfffffbf8).

System errors:
=============
Error: (09/23/2015 08:23:09 AM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: {784E29F4-5EBE-4279-9948-1E8FE941646D}

Error: (09/23/2015 08:22:31 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: specifické pro aplikaciMístníAktivace{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici

Error: (09/23/2015 08:22:29 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: specifické pro aplikaciMístníAktivace{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici

Error: (09/23/2015 08:22:28 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: specifické pro aplikaciMístníAktivace{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici

Error: (09/23/2015 08:22:27 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: specifické pro aplikaciMístníAktivace{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici

Error: (09/23/2015 08:22:25 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: specifické pro aplikaciMístníAktivace{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici

Error: (09/23/2015 08:22:24 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: specifické pro aplikaciMístníAktivace{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici

Error: (09/23/2015 08:22:24 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: specifické pro aplikaciMístníAktivace{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici

Error: (09/23/2015 08:22:23 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: specifické pro aplikaciMístníAktivace{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici

Error: (09/23/2015 08:22:22 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: specifické pro aplikaciMístníAktivace{D63B10C5-BB46-4990-A94F-E40B9D520160}{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}NT AUTHORITYLOCAL SERVICES-1-5-19LocalHost (pomocí LRPC)Není k dispoziciNení k dispozici

CodeIntegrity:
===================================
Date: 2015-09-20 21:25:04.743
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-09-20 15:29:32.054
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-09-20 15:29:31.962
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-09-20 15:29:31.882
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-09-20 15:29:31.804
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-09-20 15:29:31.663
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-09-20 15:29:31.569
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-09-20 15:29:31.460
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-09-20 15:29:31.366
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

Date: 2015-09-20 15:29:31.273
Description: Code Integrity determined that a process (\Device\HarddiskVolume4\Program Files\Windows Defender\MsMpEng.exe) attempted to load \Device\HarddiskVolume4\Program Files\Microsoft Silverlight\xapauthenticodesip.dll that did not meet the Custom 3 / Antimalware signing level requirements.

==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5-3230M CPU @ 2.60GHz
Percentage of memory in use: 43%
Total physical RAM: 6029.73 MB
Available physical RAM: 3394.36 MB
Total Virtual: 6989.73 MB
Available Virtual: 4091.18 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:279.01 GB) (Free:22.45 GB) NTFS ==>[system with boot components (obtained from reading drive)]
Drive d: (Data) (Fixed) (Total:398.07 GB) (Free:25.4 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 698.6 GB) (Disk ID: 57788C0B)

Partition: GPT.

==================== End of Addition.txt ============================

Albrecht · #11 Příspěvek od **Albrecht** » 23 zář 2015 16:54

Ted koukam ze mi prestal pracovat program Vuze a hlavne nabidka start.....hazi to kritickou chybu a nepomaha restart a nic :/

#12 Příspěvek od **altrok** » 23 zář 2015 17:44

Od kdy nabidka Start nejde? Od vycisteni MBAMem nebo jste neco dalsiho delal?

Albrecht · #13 Příspěvek od **Albrecht** » 23 zář 2015 17:59

Ano po poslednim kroku tedy cisteni MBANEM. A nejde ani kliknout na zdanou ikonu na liste jako wifi zvuk atd.
Jelikoz sem potreboval na PC delat musel sem dat bod obnoveni z 20.

#14 Příspěvek od **altrok** » 24 zář 2015 09:12

Bod obnoveni probehl v poradku? Poprosim Vas o aktualni logy z FRST.

Albrecht · #15 Příspěvek od **Albrecht** » 24 zář 2015 09:50

Ano probehl v poradku jen to trvalo nejakou. Bohuzel napriklad Vuze sem jiz nerozchodil za zadnou cenu :/ log dodam hned jak pujde stahnout FRST launcher

VIRY.CZ

Prosim o kontrolu

Prosim o kontrolu

Re: Prosim o kontrolu

Re: Prosim o kontrolu

Re: Prosim o kontrolu

Re: Prosim o kontrolu

Re: Prosim o kontrolu

Re: Prosim o kontrolu

Re: Prosim o kontrolu

Re: Prosim o kontrolu

Re: Prosim o kontrolu

Re: Prosim o kontrolu

Re: Prosim o kontrolu

Re: Prosim o kontrolu

Re: Prosim o kontrolu

Re: Prosim o kontrolu