Kontrola logu. Vyřešeno

[labutak3]

Hezký večer.
Zdá se, že PC začal pracovat normálně. Horší to ale bylo s Zemanem. Stahl jsem ho, ale byl v češtině a obsah neodpovídal. Nakonec jsem našel inteligentní sken. Když skenování proběhlo nabídlo mě to ZPĚ nebo DALŠÍ. dal jsem DALŠÍ a program začal opravovat. Log se sice vytvořil , ale nejsem si jist zda je to dobře. FrSt proběhlo podkle návodu. Včera večer jsem to všechno napsal, logy přiložil, odeslal a ddnes jsem zjistil, že to co jsem napsal a vložil tam není. Tak se o to pokouším dnes znova.

Zemana AntiMalware 2.60.2.1 (nainstalovaný)

-------------------------------------------------------
Scan Result : Dokončeno
Scan Date : 2016.11.9
Operating System : Windows 10 32-bit
Processor : 2X AMD Athlon(tm) II X2 250 Processor
BIOS Mode : Legacy
CUID : 12A9CB15C0605632CC4EB1
Scan Type : Inteligentní sken
Duration : 13m 22s
Scanned Objects : 60404
Detected Objects : 10
Excluded Objects : 0
Read Level : SCSI
Auto Upload : Vypnuto
Detect All Extensions : Vypnuto
Scan Documents : Vypnuto
Domain Info : DOMA,0,2

Detected Objects
-------------------------------------------------------

Firefox Search
Status : Skenováno
Object : Alza.cz - http://alza.cz
MD5 : -
Publisher : -
Size : -
Version : -
Detection : Podezřelé nastavení prohlížeče
Cleaning Action : Opravit
Related Objects :
Nastavení prohlížeče - Firefox Search

Firefox Search
Status : Skenováno
Object : Alza.cz - http://alza.cz
MD5 : -
Publisher : -
Size : -
Version : -
Detection : Podezřelé nastavení prohlížeče
Cleaning Action : Opravit
Related Objects :
Nastavení prohlížeče - Firefox Search

Firefox Search
Status : Skenováno
Object : Alza.cz - http://alza.cz
MD5 : -
Publisher : -
Size : -
Version : -
Detection : Podezřelé nastavení prohlížeče
Cleaning Action : Opravit
Related Objects :
Nastavení prohlížeče - Firefox Search

1641libfoxloader.dll
Status : Skenováno
Object : %appdata%\seznam.cz\bin\1641libfoxloader.dll
MD5 : E58EACA639CD7EB45A4E2E22460727E3
Publisher : Seznam.cz, a.s.
Size : 78504
Version : -
Detection : Adware:Win32/Seznam-DJ!Ep
Cleaning Action : Karanténa
Related Objects :
Soubor - %appdata%\seznam.cz\bin\1641libfoxloader.dll
DLL - 4008 - C:\Windows\System32\sihost.exe
DLL - 3288 - C:\Windows\explorer.exe
DLL - 5040 - C:\Windows\System32\SettingSyncHost.exe
DLL - 5412 - C:\Program Files\MyHeritage\Bin\FTBCheckUpdates.exe
DLL - 5532 - C:\Users\Hurych\AppData\Roaming\Seznam.cz\bin\szndesktop.exe

lightspeed.dll
Status : Skenováno
Object : %appdata%\seznam.cz\bin\lightspeed.dll
MD5 : 7B12697B8A8D362F5694774A9D3055F8
Publisher : Seznam.cz, a.s.
Size : 862888
Version : -
Detection : Adware:Win32/Seznam-DJ!Ep
Cleaning Action : Karanténa
Related Objects :
Soubor - %appdata%\seznam.cz\bin\lightspeed.dll
DLL - 5532 - C:\Users\Hurych\AppData\Roaming\Seznam.cz\bin\szndesktop.exe

postak3.dll
Status : Skenováno
Object : %appdata%\seznam.cz\bin\postak3.dll
MD5 : 25C4DE8E7D959920E3A8C01750A377A5
Publisher : Seznam.cz, a.s.
Size : 561864
Version : -
Detection : Adware:Win32/Seznam-DJ!Ep
Cleaning Action : Karanténa
Related Objects :
Soubor - %appdata%\seznam.cz\bin\postak3.dll
DLL - 5532 - C:\Users\Hurych\AppData\Roaming\Seznam.cz\bin\szndesktop.exe

szndesktop.exe
Status : Skenováno
Object : %appdata%\seznam.cz\bin\szndesktop.exe
MD5 : 0A54B0BCD8BC203684C803FC3FB5C5A2
Publisher : Seznam.cz, a.s.
Size : 457384
Version : -
Detection : Adware:Win32/Seznam-DJ!Ep
Cleaning Action : Karanténa
Related Objects :
Soubor - %appdata%\seznam.cz\bin\szndesktop.exe
Proces - 5532 - C:\Users\Hurych\AppData\Roaming\Seznam.cz\bin\szndesktop.exe

unlockInstance.dll
Status : Skenováno
Object : %appdata%\seznam.cz\bin\unlockinstance.dll
MD5 : 3134BC47ABC493650D59972545D00F80
Publisher : Seznam.cz, a.s.
Size : 247352
Version : -
Detection : Adware:Win32/Seznam-DJ!Ep
Cleaning Action : Karanténa
Related Objects :
Soubor - %appdata%\seznam.cz\bin\unlockinstance.dll
DLL - 5532 - C:\Users\Hurych\AppData\Roaming\Seznam.cz\bin\szndesktop.exe

libfoxcub.dll
Status : Skenováno
Object : %appdata%\seznam.cz\bin\libfoxcub.dll
MD5 : 4442651A3B744F6F1DDE9852C7CCD973
Publisher : Seznam.cz, a.s.
Size : 1778376
Version : -
Detection : Adware:Win32/Seznam-DJ!Ep
Cleaning Action : Karanténa
Related Objects :
Soubor - %appdata%\seznam.cz\bin\libfoxcub.dll
DLL - 5532 - C:\Users\Hurych\AppData\Roaming\Seznam.cz\bin\szndesktop.exe

wszndesktop.exe
Status : Skenováno
Object : %appdata%\seznam.cz\bin\wszndesktop.exe
MD5 : 177C7E1FB4793BFCC6B06D11D8032481
Publisher : Seznam.cz, a.s.
Size : 103080
Version : -
Detection : Adware:Win32/Seznam-DJ!Ep
Cleaning Action : Karanténa
Related Objects :
Soubor - %appdata%\seznam.cz\bin\wszndesktop.exe
Záznam registru - HKCU\Software\Microsoft\Windows\CurrentVersion\Run\cz.seznam.software.szndesktop = "C:\Users\Hurych\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q


Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 06-11-2016
Ran by Hurych (administrator) on HURYCH-PC (09-11-2016 20:58:11)
Running from D:\INTERNET
Loaded Profiles: Hurych (Available Profiles: Hurych & DefaultAppPool)
Platform: Microsoft Windows 10 Home Version 1607 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Software602 a.s.) C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
(Logitech Inc.) C:\Program Files\Common Files\logishrd\LVMVFM\LVPrcSrv.exe
(Nero AG) C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
(The Phone Support) C:\Program Files\The Phone Support Dock\TPSDock.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.251.0_x86__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Hewlett-Packard) C:\Program Files\HP\Digital Imaging\bin\HpqSRmon.exe
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuschd2.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office15\ONENOTEM.EXE
(Zemana Ltd.) C:\Users\Hurych\Desktop\Zemana AntiMalware\ZAM.exe
(Zemana Ltd.) C:\Users\Hurych\Desktop\Zemana AntiMalware\ZAM.exe
(Microsoft Inc.) C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.12.10310.0_x86__8wekyb3d8bbwe\Solitaire.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe


==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [8555040 2010-04-06] (Realtek Semiconductor)
HKLM\...\Run: [Windows Mobile Device Center] => C:\WINDOWS\WindowsMobile\wmdc.exe [648072 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [hpqSRMon] => C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe [150016 2008-08-20] (Hewlett-Packard)
HKLM\...\Run: [HP Software Update] => C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM\...\Run: [Family Tree Builder Update] => C:\Program Files\MyHeritage\Bin\FTBCheckUpdates.exe [2477056 2015-03-02] (MyHeritage)
HKLM\...\Run: [ZAM] => C:\Users\Hurych\Desktop\Zemana AntiMalware\ZAM.exe [13900016 2016-11-09] (Zemana Ltd.)
HKLM\...\RunOnce: [Zemana AntiMalware] => C:\Users\Hurych\Desktop\Zemana AntiMalware\ZAM.exe [13900016 2016-11-09] (Zemana Ltd.)
HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\Run: [ConMet] => C:\Program Files\ConMet\ConMet.exe [4912688 2015-09-03] (Mgr. Tomáš Papoušek)
Startup: C:\Users\Hurych\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Odeslat do OneNote.lnk [2015-07-02]
ShortcutTarget: Odeslat do OneNote.lnk -> C:\Program Files\Microsoft Office\Office15\ONENOTEM.EXE (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.51.250 192.168.51.252
Tcpip\..\Interfaces\{0d3505ca-1a23-42ee-b1e2-8dc2f7b9fd9e}: [DhcpNameServer] 192.168.51.250 192.168.51.252

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\.DEFAULT -> {35bf257a-d6a6-404f-bd03-fbae9824f981} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz&sourceid=IE_5
SearchScopes: HKU\.DEFAULT -> {439bac55-8de2-417c-ac69-43a6075d7e44} URL = hxxp://www.firmy.cz/phr/{searchTerms}?sourceid=IE_5
SearchScopes: HKU\.DEFAULT -> {7b6f3db2-cfe4-42db-adfc-1f939a3afd05} URL = hxxp://www.mapy.cz/?query={searchTerms}&sourceid=IE_5
SearchScopes: HKU\.DEFAULT -> {f8f350fb-b419-492d-b3b7-37c98eabb59a} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=IE_5
SearchScopes: HKU\S-1-5-21-3926796986-3061243883-951121101-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3926796986-3061243883-951121101-1000 -> {414916E0-E00A-443A-84A7-831DFB905C7B} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_5
SearchScopes: HKU\S-1-5-21-3926796986-3061243883-951121101-1000 -> {504BC20B-85A6-4D27-B418-96E1F161FEAD} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_5
SearchScopes: HKU\S-1-5-21-3926796986-3061243883-951121101-1000 -> {58DB53E9-6791-4E05-B4D2-89CD9E7DB032} URL = hxxp://www.mapy.cz/?query={searchTerms}&sourceid=QuickSearch_5
SearchScopes: HKU\S-1-5-21-3926796986-3061243883-951121101-1000 -> {6A07F2D6-97EA-449B-AF53-3E22FCE6FDE2} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz&sourceid=QuickSearch_5
SearchScopes: HKU\S-1-5-21-3926796986-3061243883-951121101-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={sear
SearchScopes: HKU\S-1-5-21-3926796986-3061243883-951121101-1000 -> {6AEBD73C-DF9B-408F-95D6-FD8C6302C46F} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_5
SearchScopes: HKU\S-1-5-21-3926796986-3061243883-951121101-1000 -> {CFED0946-7B45-48BB-BC0E-848659302830} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&sourceid=QuickSearch_5
SearchScopes: HKU\S-1-5-21-3926796986-3061243883-951121101-1000 -> {D5473130-1BB8-4E2A-A92C-9FB0228AE7BA} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_5
SearchScopes: HKU\S-1-5-21-3926796986-3061243883-951121101-1000 -> {EB70C53E-740B-4C3E-BBF5-DC7B8303F920} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid=QuickSearch_5
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_25\bin\ssv.dll [2015-01-15] (Oracle Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2016-10-11] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_25\bin\jp2ssv.dll [2015-01-15] (Oracle Corporation)
Toolbar: HKU\.DEFAULT -> No Name - {34AB3C4C-DA1A-4067-96F4-31452C7CFE65} - No File
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2016-05-17] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Hurych\AppData\Roaming\TomTom\HOME\Profiles\tq72uewg.default [2016-11-09]
FF Extension: (No Name) - C:\Program Files\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [not found]
FF ProfilePath: C:\Users\Hurych\AppData\Roaming\Philips-Songbird\Profiles\ky8oeux3.default [2016-11-09]
FF NewTab: Philips-Songbird\Profiles\ky8oeux3.default -> about:newtab
FF Homepage: Philips-Songbird\Profiles\ky8oeux3.default -> about:home
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\albumart@songbirdnest.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\cd-rip@songbirdnest.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\ewaacdec@songbirdnest.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\ewmp3enc@songbirdnest.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\fileassociation@philips.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\gogear@songbirdnest.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\gonzo@songbirdnest.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\gracenote@songbirdnest.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\langpack-cs@songbirdnest.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\mashTape@songbirdnest.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\msc@songbirdnest.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\mtp@songbirdnest.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\philips-addon-manager@philips.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\philips-branding@philips.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\philips-likemusic@philips.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\philips-minimizetotray@philips.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\philips-msc-mtp-switch@philips.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\philips-promotions@philips.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\philips-skin@philips.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\philips-ui@philips.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\purplerain@songbirdnest.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\sharing@songbirdnest.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\windowsmedia@songbirdnest.com [not found]
FF ProfilePath: C:\Users\Hurych\AppData\Roaming\Mozilla\Firefox\Profiles\3wyzfidh.default [2016-11-09]
FF NewTab: Mozilla\Firefox\Profiles\3wyzfidh.default -> about:newtab
FF Homepage: Mozilla\Firefox\Profiles\3wyzfidh.default -> about:home
FF Extension: (HyperTranslate) - C:\Users\Hurych\AppData\Roaming\Mozilla\Firefox\Profiles\3wyzfidh.default\Extensions\hypertranslate@mdc.com.xpi [2016-09-04]
FF Extension: (Seznam lištička) - C:\Users\Hurych\AppData\Roaming\Mozilla\Firefox\Profiles\3wyzfidh.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2016-11-09]
FF Extension: (No Name) - C:\Program Files\Mozilla Firefox\extensions\{FD2FD708-1F6F-4B68-B141-C5778F0C19BB} [2016-11-09] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_23_0_0_207.dll [2016-11-09] ()
FF Plugin: @java.com/DTPlugin,version=10.5.1 -> C:\Windows\system32\npDeployJava1.dll [2012-07-05] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\plugin2\npjp2.dll [2015-01-15] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~3\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin: @software602.cz/602XML Filler -> C:\Program Files\Software602\602XML\Filler\npfiller.dll [2012-08-06] (Software602 a.s.)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/"
CHR Profile: C:\Users\Hurych\AppData\Local\Google\Chrome\User Data\Default [2016-11-03]
CHR Extension: (Prezentace Google) - C:\Users\Hurych\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-07-05]
CHR Extension: (Dokumenty Google) - C:\Users\Hurych\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-07-07]
CHR Extension: (Disk Google) - C:\Users\Hurych\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-29]
CHR Extension: (Simple Color Picker) - C:\Users\Hurych\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgpflpaaoojlkdoknkacblidkkgighie [2016-10-16]
CHR Extension: (YouTube) - C:\Users\Hurych\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Vyhledávání Google) - C:\Users\Hurych\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-29]
CHR Extension: (Tabulky Google) - C:\Users\Hurych\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-07-05]
CHR Extension: (Dokumenty Google offline) - C:\Users\Hurych\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-17]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Hurych\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-02]
CHR Extension: (Gmail) - C:\Users\Hurych\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-07-07]
CHR Extension: (Chrome Media Router) - C:\Users\Hurych\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-10-30]
CHR Extension: (Detail.cz) - C:\Users\Hurych\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmhpdlmhembafjlpohanpgkpmnpanbcd [2016-03-17]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 602XML Updater; C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s.)
S2 ES lite Service; C:\Program Files\Gigabyte\EasySaver\ESSVR.EXE [68136 2009-08-24] ()
S3 hpqcxs08; C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll [248832 2009-05-21] (Hewlett-Packard Co.) [File not signed]
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
S3 IJPLMSVC; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [116104 2009-09-08] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [271496 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [84928 2016-07-16] (Microsoft Corporation)
R2 ZAMSvc; C:\Users\Hurych\Desktop\Zemana AntiMalware\ZAM.exe [13900016 2016-11-09] (Zemana Ltd.)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AODDriver; C:\Program Files\Gigabyte\ET6\i386\AODDriver.sys [36864 2010-03-12] (Advanced Micro Devices) [File not signed]
S3 ezplay; C:\WINDOWS\System32\Drivers\ezplay.sys [94208 2014-05-21] (VSO Software)
R3 gdrv; C:\Windows\gdrv.sys [17488 2016-11-09] (Windows (R) 2000 DDK provider)
R0 giveio; C:\WINDOWS\System32\giveio.sys [5248 1996-04-03] () [File not signed]
S3 GVTDrv; C:\Windows\system32\Drivers\GVTDrv.sys [24944 2013-05-12] ()
R3 LVPr2Mon; C:\WINDOWS\System32\DRIVERS\LVPr2Mon.sys [25824 2010-05-07] ()
S3 MarvinBus; C:\WINDOWS\System32\drivers\MarvinBus.sys [171520 2005-09-23] (Pinnacle Systems GmbH)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [62976 2016-07-16] ()
R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [494080 2016-07-16] (Realtek )
R3 RTHDMIAzAudService; C:\WINDOWS\system32\drivers\RtHDMIV.sys [183584 2010-01-27] (Realtek Semiconductor Corp.)
R0 speedfan; C:\WINDOWS\System32\speedfan.sys [21696 2010-12-18] (Almico Software)
R1 ssmdrv; C:\WINDOWS\System32\DRIVERS\ssmdrv.sys [31848 2015-06-30] (Avira Operations GmbH & Co. KG)
S3 tbhsd; C:\WINDOWS\System32\drivers\tbhsd.sys [39016 2012-08-20] (RapidSolution Software AG)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [37912 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [244576 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [100192 2016-07-16] (Microsoft Corporation)
S3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [161280 2016-07-16] (Microsoft Corporation)
R1 ZAM; C:\WINDOWS\System32\drivers\zam32.sys [181496 2016-11-09] (Zemana Ltd.)
R1 ZAM_Guard; C:\WINDOWS\System32\drivers\zamguard32.sys [181496 2016-11-09] (Zemana Ltd.)
U3 idsvc; no ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-11-09 20:57 - 2016-11-09 20:58 - 00000000 ___DC C:\FRST
2016-11-09 20:25 - 2016-11-09 20:25 - 00000000 ____D C:\Users\Hurych\Desktop\Zemana AntiMalware
2016-11-09 20:25 - 2016-11-09 20:25 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zemana AntiMalware
2016-11-09 20:12 - 2016-11-09 20:25 - 00001751 _____ C:\Users\Public\Desktop\Zemana AntiMalware.lnk
2016-11-09 20:10 - 2016-11-09 20:10 - 00001091 _____ C:\Users\Hurych\Desktop\Zemana.AntiMalware.Setup.exe – zástupce.lnk
2016-11-09 20:05 - 2016-11-09 20:57 - 00086843 _____ C:\WINDOWS\ZAM.krnl.trace
2016-11-09 20:05 - 2016-11-09 20:57 - 00017616 _____ C:\WINDOWS\ZAM_Guard.krnl.trace
2016-11-09 20:05 - 2016-11-09 20:12 - 00000000 ____D C:\Program Files\Zemana AntiMalware
2016-11-09 20:05 - 2016-11-09 20:05 - 00181496 _____ (Zemana Ltd.) C:\WINDOWS\system32\Drivers\zamguard32.sys
2016-11-09 20:05 - 2016-11-09 20:05 - 00181496 _____ (Zemana Ltd.) C:\WINDOWS\system32\Drivers\zam32.sys
2016-11-09 20:05 - 2016-11-09 20:05 - 00000000 ____D C:\Users\Hurych\AppData\Local\Zemana
2016-11-09 10:30 - 2016-11-09 10:30 - 00000000 ___DC C:\zoek
2016-11-09 08:27 - 2016-11-09 10:45 - 00003243 ____C C:\runcheck.txt
2016-11-09 08:20 - 2016-11-09 17:40 - 00000947 _____ C:\Users\Hurych\Desktop\zoek.exe – zástupce.lnk
2016-11-09 08:13 - 2016-11-09 10:44 - 00000000 ___DC C:\zoek_backup
2016-11-05 08:34 - 2016-11-05 08:34 - 00001142 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2016-11-04 18:04 - 2016-11-08 19:14 - 00000554 _____ C:\Users\Hurych\Desktop\JRT.txt
2016-11-03 20:49 - 2016-11-06 10:55 - 00170200 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2016-11-03 20:49 - 2016-11-05 08:34 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes Anti-Malware
2016-11-03 20:48 - 2016-11-08 18:57 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware
2016-11-03 20:48 - 2016-03-10 14:09 - 00053120 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mwac.sys
2016-11-03 20:48 - 2016-03-10 14:08 - 00126336 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2016-11-03 20:48 - 2016-03-10 14:08 - 00024448 _____ (Malwarebytes) C:\WINDOWS\system32\Drivers\mbam.sys
2016-11-03 20:39 - 2016-11-08 18:56 - 00000000 ___DC C:\AdwCleaner
2016-11-03 20:15 - 2016-11-03 20:15 - 00000000 ____D C:\WINDOWS\Panther
2016-10-28 15:57 - 2016-10-15 05:36 - 04970224 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2016-10-28 15:57 - 2016-10-15 05:34 - 01969912 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2016-10-28 15:57 - 2016-10-15 05:19 - 00272720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2016-10-28 15:57 - 2016-10-15 05:18 - 00454496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2016-10-28 15:57 - 2016-10-15 05:15 - 20969928 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-10-28 15:57 - 2016-10-15 05:15 - 01557808 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2016-10-28 15:57 - 2016-10-15 05:15 - 00687936 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2016-10-28 15:57 - 2016-10-15 05:14 - 01384704 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-10-28 15:57 - 2016-10-15 05:14 - 00802600 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2016-10-28 15:57 - 2016-10-15 05:11 - 01345504 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-10-28 15:57 - 2016-10-15 05:11 - 01263848 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-10-28 15:57 - 2016-10-15 05:10 - 01968992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-10-28 15:57 - 2016-10-15 05:10 - 00482656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2016-10-28 15:57 - 2016-10-15 05:00 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2016-10-28 15:57 - 2016-10-15 04:58 - 00158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-10-28 15:57 - 2016-10-15 04:56 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkDesktopSettings.dll
2016-10-28 15:57 - 2016-10-15 04:55 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2016-10-28 15:57 - 2016-10-15 04:54 - 00555008 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-10-28 15:57 - 2016-10-15 04:54 - 00394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-10-28 15:57 - 2016-10-15 04:54 - 00179712 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-10-28 15:57 - 2016-10-15 04:53 - 00705024 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskbarcpl.dll
2016-10-28 15:57 - 2016-10-15 04:53 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2016-10-28 15:57 - 2016-10-15 04:52 - 00632832 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2016-10-28 15:57 - 2016-10-15 04:52 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemcpl.dll
2016-10-28 15:57 - 2016-10-15 04:51 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2016-10-28 15:57 - 2016-10-15 04:50 - 02333184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2016-10-28 15:57 - 2016-10-15 04:50 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-10-28 15:57 - 2016-10-15 04:50 - 00387072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-10-28 15:57 - 2016-10-15 04:50 - 00353792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-10-28 15:57 - 2016-10-15 04:50 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2016-10-28 15:57 - 2016-10-15 04:49 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2016-10-28 15:57 - 2016-10-15 04:49 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2016-10-28 15:57 - 2016-10-15 04:49 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2016-10-28 15:57 - 2016-10-15 04:48 - 01323008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2016-10-28 15:57 - 2016-10-15 04:48 - 00158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
2016-10-28 15:57 - 2016-10-15 04:47 - 07626752 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-10-28 15:57 - 2016-10-15 04:47 - 01113600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2016-10-28 15:57 - 2016-10-15 04:44 - 00636928 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2016-10-28 15:57 - 2016-10-15 04:43 - 02748928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2016-10-28 15:57 - 2016-10-15 04:42 - 03776000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-10-28 15:57 - 2016-10-15 04:39 - 01228288 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-10-28 15:57 - 2016-10-15 04:38 - 07468032 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-10-28 15:57 - 2016-10-15 04:38 - 02458112 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2016-10-28 15:57 - 2016-10-15 04:37 - 01485312 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-10-28 15:57 - 2016-10-15 04:37 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-10-28 15:57 - 2016-10-15 04:37 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2016-10-28 15:57 - 2016-10-15 04:36 - 01880576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-10-28 15:57 - 2016-10-15 04:36 - 01556992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-10-28 15:57 - 2016-10-15 04:36 - 01234944 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-10-28 15:57 - 2016-10-15 04:36 - 01170944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-10-28 15:57 - 2016-10-15 04:36 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2016-10-28 15:57 - 2016-10-15 04:35 - 02999808 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-10-28 15:57 - 2016-10-15 04:35 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2016-10-28 15:56 - 2016-10-15 05:33 - 06020448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-10-28 15:56 - 2016-10-15 05:32 - 01583112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-10-28 15:56 - 2016-10-15 05:32 - 00601712 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2016-10-28 15:56 - 2016-10-15 05:20 - 01898336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-10-28 15:56 - 2016-10-15 05:20 - 00550752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-10-28 15:56 - 2016-10-15 05:20 - 00342880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-10-28 15:56 - 2016-10-15 05:19 - 02256592 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-10-28 15:56 - 2016-10-15 05:15 - 03892352 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-10-28 15:56 - 2016-10-15 05:15 - 01853776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-10-28 15:56 - 2016-10-15 05:15 - 01123368 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-10-28 15:56 - 2016-10-15 05:15 - 00952416 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-10-28 15:56 - 2016-10-15 05:14 - 00675064 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-10-28 15:56 - 2016-10-15 05:10 - 00254656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpeffects.dll
2016-10-28 15:56 - 2016-10-15 05:00 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\stdole2.tlb
2016-10-28 15:56 - 2016-10-15 04:58 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2016-10-28 15:56 - 2016-10-15 04:57 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpdxm.dll
2016-10-28 15:56 - 2016-10-15 04:57 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-10-28 15:56 - 2016-10-15 04:56 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-10-28 15:56 - 2016-10-15 04:55 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2016-10-28 15:56 - 2016-10-15 04:54 - 00239616 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-10-28 15:56 - 2016-10-15 04:54 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2016-10-28 15:56 - 2016-10-15 04:54 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpshell.dll
2016-10-28 15:56 - 2016-10-15 04:53 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2016-10-28 15:56 - 2016-10-15 04:53 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2016-10-28 15:56 - 2016-10-15 04:52 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2016-10-28 15:56 - 2016-10-15 04:50 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2016-10-28 15:56 - 2016-10-15 04:49 - 00838144 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-10-28 15:56 - 2016-10-15 04:48 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2016-10-28 15:56 - 2016-10-15 04:47 - 04612608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-10-28 15:56 - 2016-10-15 04:47 - 00488448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2016-10-28 15:56 - 2016-10-15 04:46 - 19418112 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-10-28 15:56 - 2016-10-15 04:46 - 19416576 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-10-28 15:56 - 2016-10-15 04:46 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2016-10-28 15:56 - 2016-10-15 04:46 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msinfo32.exe
2016-10-28 15:56 - 2016-10-15 04:44 - 03307520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-10-28 15:56 - 2016-10-15 04:44 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2016-10-28 15:56 - 2016-10-15 04:44 - 00470016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2016-10-28 15:56 - 2016-10-15 04:44 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2016-10-28 15:56 - 2016-10-15 04:42 - 12349440 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-10-28 15:56 - 2016-10-15 04:42 - 06108672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-10-28 15:56 - 2016-10-15 04:42 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2016-10-28 15:56 - 2016-10-15 04:42 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\olepro32.dll
2016-10-28 15:56 - 2016-10-15 04:42 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\powercfg.exe
2016-10-28 15:56 - 2016-10-15 04:41 - 12174848 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-10-28 15:56 - 2016-10-15 04:41 - 05376000 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-10-28 15:56 - 2016-10-15 04:40 - 01135616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2016-10-28 15:56 - 2016-10-15 04:40 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2016-10-28 15:56 - 2016-10-15 04:39 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2016-10-28 15:56 - 2016-10-15 04:38 - 00675840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2016-10-28 15:56 - 2016-10-15 04:37 - 02256896 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-10-28 15:56 - 2016-10-15 04:37 - 00884224 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-10-28 15:56 - 2016-10-15 04:37 - 00715264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-10-28 15:56 - 2016-10-15 04:37 - 00705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-10-28 15:56 - 2016-10-15 04:36 - 01123328 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-10-28 15:56 - 2016-10-15 04:36 - 00542208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2016-10-28 15:56 - 2016-10-15 04:36 - 00528384 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2016-10-28 15:56 - 2016-10-15 04:35 - 01509376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-10-28 15:56 - 2016-10-15 04:35 - 00760832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-10-28 15:55 - 2016-10-15 06:11 - 01415520 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-10-28 15:55 - 2016-10-15 06:11 - 01026400 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-10-28 15:55 - 2016-10-15 06:11 - 00496992 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-10-28 15:55 - 2016-10-15 06:11 - 00486752 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-10-28 15:55 - 2016-10-15 06:11 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-10-28 15:55 - 2016-10-15 06:11 - 00277344 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-10-28 15:55 - 2016-10-15 06:11 - 00224608 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-10-28 15:55 - 2016-10-15 06:11 - 00192864 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2016-10-28 15:55 - 2016-10-15 06:11 - 00115552 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-10-28 15:55 - 2016-10-15 06:11 - 00069472 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-10-28 15:55 - 2016-10-15 05:35 - 00890984 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-10-28 15:55 - 2016-10-15 05:35 - 00784064 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-10-28 15:55 - 2016-10-15 05:33 - 01073816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-10-28 15:55 - 2016-10-15 05:33 - 00945760 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-10-28 15:55 - 2016-10-15 05:33 - 00455040 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2016-10-28 15:55 - 2016-10-15 05:26 - 00055136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2016-10-28 15:55 - 2016-10-15 05:20 - 02276736 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-10-28 15:55 - 2016-10-15 05:18 - 02166232 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2016-10-28 15:55 - 2016-10-15 05:18 - 01556712 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2016-10-28 15:55 - 2016-10-15 05:18 - 00846560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2016-10-28 15:55 - 2016-10-15 05:18 - 00749920 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll
2016-10-28 15:55 - 2016-10-15 05:18 - 00576400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2016-10-28 15:55 - 2016-10-15 05:18 - 00186424 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2016-10-28 15:55 - 2016-10-15 05:18 - 00067424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crashdmp.sys
2016-10-28 15:55 - 2016-10-15 05:15 - 00959112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-10-28 15:55 - 2016-10-15 05:14 - 04311736 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-10-28 15:55 - 2016-10-15 05:11 - 01424488 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2016-10-28 15:55 - 2016-10-15 05:11 - 00545944 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-10-28 15:55 - 2016-10-15 05:10 - 00781664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2016-10-28 15:55 - 2016-10-15 05:06 - 05685760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-10-28 15:55 - 2016-10-15 05:00 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-10-28 15:55 - 2016-10-15 04:59 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfksproxy.dll
2016-10-28 15:55 - 2016-10-15 04:58 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\efsext.dll
2016-10-28 15:55 - 2016-10-15 04:56 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\esentutl.exe
2016-10-28 15:55 - 2016-10-15 04:56 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2016-10-28 15:55 - 2016-10-15 04:55 - 00254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2016-10-28 15:55 - 2016-10-15 04:55 - 00142336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2016-10-28 15:55 - 2016-10-15 04:55 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2016-10-28 15:55 - 2016-10-15 04:54 - 00410112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVolSSO.dll
2016-10-28 15:55 - 2016-10-15 04:54 - 00168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2016-10-28 15:55 - 2016-10-15 04:54 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\system32\autoplay.dll
2016-10-28 15:55 - 2016-10-15 04:54 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll
2016-10-28 15:55 - 2016-10-15 04:53 - 00549376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenterCPL.dll
2016-10-28 15:55 - 2016-10-15 04:52 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2016-10-28 15:55 - 2016-10-15 04:52 - 00322560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2016-10-28 15:55 - 2016-10-15 04:52 - 00293888 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2016-10-28 15:55 - 2016-10-15 04:51 - 13868544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-10-28 15:55 - 2016-10-15 04:51 - 00790528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-10-28 15:55 - 2016-10-15 04:51 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2016-10-28 15:55 - 2016-10-15 04:51 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2016-10-28 15:55 - 2016-10-15 04:51 - 00136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockScreenContent.dll
2016-10-28 15:55 - 2016-10-15 04:50 - 00896512 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontext.dll
2016-10-28 15:55 - 2016-10-15 04:50 - 00310272 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-10-28 15:55 - 2016-10-15 04:49 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2016-10-28 15:55 - 2016-10-15 04:48 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2016-10-28 15:55 - 2016-10-15 04:48 - 00797696 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2016-10-28 15:55 - 2016-10-15 04:46 - 01375232 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-10-28 15:55 - 2016-10-15 04:43 - 01406976 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2016-10-28 15:55 - 2016-10-15 04:43 - 00786432 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-10-28 15:55 - 2016-10-15 04:41 - 00444928 _____ (Microsoft Corporation) C:\WINDOWS\system32\energy.dll
2016-10-28 15:55 - 2016-10-15 04:41 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsiwmi.dll
2016-10-28 15:55 - 2016-10-15 04:39 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2016-10-28 15:55 - 2016-10-15 04:39 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2016-10-28 15:55 - 2016-10-15 04:39 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\chartv.dll
2016-10-28 15:55 - 2016-10-15 04:38 - 01993216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-10-28 15:55 - 2016-10-15 04:37 - 03733504 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2016-10-28 15:55 - 2016-10-15 04:37 - 01940992 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-10-28 15:55 - 2016-10-15 04:37 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2016-10-28 15:55 - 2016-10-15 04:36 - 04423680 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-10-28 15:55 - 2016-10-15 04:36 - 02484736 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2016-10-28 15:55 - 2016-10-15 04:36 - 01595392 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-10-28 15:55 - 2016-10-15 04:36 - 01523712 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2016-10-28 15:55 - 2016-10-15 04:36 - 00580608 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2016-10-28 15:55 - 2016-10-15 04:36 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmifw.dll
2016-10-28 15:55 - 2016-10-15 04:35 - 02708992 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2016-10-28 15:55 - 2016-10-15 04:35 - 02005504 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2016-10-28 15:55 - 2016-10-15 04:35 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-10-28 15:55 - 2016-10-15 04:33 - 00188928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2016-10-28 15:54 - 2016-10-15 05:40 - 01126496 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2016-10-28 15:54 - 2016-10-15 05:31 - 00570720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2016-10-28 15:54 - 2016-10-15 05:27 - 00421216 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2016-10-28 15:54 - 2016-10-15 05:18 - 00458592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2016-10-28 15:54 - 2016-10-15 05:18 - 00261984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-10-28 15:54 - 2016-10-15 04:59 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
2016-10-28 15:54 - 2016-10-15 04:56 - 00327680 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2016-10-28 15:54 - 2016-10-15 04:56 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2016-10-28 15:54 - 2016-10-15 04:55 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-10-28 15:54 - 2016-10-15 04:46 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\capimg.sys
2016-10-28 15:54 - 2016-10-15 04:43 - 00500736 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2016-10-23 16:10 - 2016-10-28 20:12 - 00000000 ____D C:\Program Files\Mozilla Firefox
2016-10-21 13:09 - 2016-10-21 13:09 - 00000000 ____D C:\WINDOWS\Minidump
2016-10-13 20:01 - 2016-10-13 20:01 - 00002752 _____ C:\Users\Public\Desktop\Nero StartSmart Essentials.lnk
2016-10-13 20:00 - 2016-10-13 20:01 - 00000000 ____D C:\Program Files\Common Files\Nero
2016-10-11 21:11 - 2016-10-11 21:11 - 00000000 ____D C:\WINDOWS\PCHEALTH
2016-10-11 19:11 - 2016-10-05 10:18 - 01283584 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2016-10-11 19:11 - 2016-10-05 10:10 - 00754688 _____ (Microsoft Corporation) C:\WINDOWS\system32\ngcsvc.dll
2016-10-11 19:11 - 2016-10-05 10:07 - 00566784 _____ (Microsoft Corporation) C:\WINDOWS\system32\ShareHost.dll
2016-10-11 19:10 - 2016-10-05 11:05 - 00099680 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tm.sys
2016-10-11 19:10 - 2016-10-05 11:03 - 01724584 _____ (Microsoft Corporation) C:\WINDOWS\system32\KernelBase.dll
2016-10-11 19:10 - 2016-10-05 10:59 - 00949600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ndis.sys
2016-10-11 19:10 - 2016-10-05 10:54 - 01097568 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpx.dll
2016-10-11 19:10 - 2016-10-05 10:51 - 01430720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Store.dll
2016-10-11 19:10 - 2016-10-05 10:50 - 00116576 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHostCommon.dll
2016-10-11 19:10 - 2016-10-05 10:49 - 01980768 _____ (Microsoft Corporation) C:\WINDOWS\system32\msxml6.dll
2016-10-11 19:10 - 2016-10-05 10:48 - 01022304 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppxPackaging.dll
2016-10-11 19:10 - 2016-10-05 10:46 - 00980824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetcore.dll
2016-10-11 19:10 - 2016-10-05 10:46 - 00056672 _____ (Avago Technologies) C:\WINDOWS\system32\Drivers\MegaSas2i.sys
2016-10-11 19:10 - 2016-10-05 10:45 - 00198496 _____ (Microsoft Corporation) C:\WINDOWS\system32\CloudExperienceHost.dll
2016-10-11 19:10 - 2016-10-05 10:31 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\ConfigureExpandedStorage.dll
2016-10-11 19:10 - 2016-10-05 10:28 - 00584192 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIRibbonRes.dll
2016-10-11 19:10 - 2016-10-05 10:28 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.dll
2016-10-11 19:10 - 2016-10-05 10:28 - 00123904 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.HostName.dll
2016-10-11 19:10 - 2016-10-05 10:27 - 00094208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepositoryClient.dll
2016-10-11 19:10 - 2016-10-05 10:27 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.ServiceDiscovery.Dnssd.dll
2016-10-11 19:10 - 2016-10-05 10:26 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserMgrProxy.dll
2016-10-11 19:10 - 2016-10-05 10:26 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDeviceRegistration.Ngc.dll
2016-10-11 19:10 - 2016-10-05 10:25 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-10-11 19:10 - 2016-10-05 10:25 - 00404992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dsreg.dll
2016-10-11 19:10 - 2016-10-05 10:25 - 00299520 _____ (Microsoft Corporation) C:\WINDOWS\system32\UserDataAccountApis.dll
2016-10-11 19:10 - 2016-10-05 10:25 - 00267776 _____ (Microsoft Corporation) C:\WINDOWS\system32\cloudAP.dll
2016-10-11 19:10 - 2016-10-05 10:25 - 00193024 _____ (Microsoft Corporation) C:\WINDOWS\system32\shutdownux.dll
2016-10-11 19:10 - 2016-10-05 10:25 - 00117760 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthBroker.dll
2016-10-11 19:10 - 2016-10-05 10:24 - 00483840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.AllJoyn.dll
2016-10-11 19:10 - 2016-10-05 10:24 - 00113152 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dfsc.sys
2016-10-11 19:10 - 2016-10-05 10:23 - 00431616 _____ (Microsoft Corporation) C:\WINDOWS\system32\efswrt.dll
2016-10-11 19:10 - 2016-10-05 10:23 - 00426496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.Wallet.dll
2016-10-11 19:10 - 2016-10-05 10:23 - 00373760 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcdedit.exe
2016-10-11 19:10 - 2016-10-05 10:23 - 00273920 _____ (Microsoft Corporation) C:\WINDOWS\system32\PrintDialogs3D.dll
2016-10-11 19:10 - 2016-10-05 10:22 - 00325632 _____ (Microsoft Corporation) C:\WINDOWS\system32\ncsi.dll
2016-10-11 19:10 - 2016-10-05 10:21 - 03689984 _____ (Microsoft Corporation) C:\WINDOWS\system32\msi.dll
2016-10-11 19:10 - 2016-10-05 10:21 - 00567808 _____ (Microsoft Corporation) C:\WINDOWS\system32\ChatApis.dll
2016-10-11 19:10 - 2016-10-05 10:21 - 00498176 _____ (Microsoft Corporation) C:\WINDOWS\system32\wbiosrvc.dll
2016-10-11 19:10 - 2016-10-05 10:20 - 00661504 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcWebFilter.dll
2016-10-11 19:10 - 2016-10-05 10:20 - 00303104 _____ (Microsoft Corporation) C:\WINDOWS\system32\nlasvc.dll
2016-10-11 19:10 - 2016-10-05 10:18 - 00858112 _____ (Microsoft Corporation) C:\WINDOWS\system32\EmailApis.dll
2016-10-11 19:10 - 2016-10-05 10:16 - 00508416 _____ (Microsoft Corporation) C:\WINDOWS\system32\vbscript.dll
2016-10-11 19:10 - 2016-10-05 10:15 - 00141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dialclient.dll
2016-10-11 19:10 - 2016-10-05 10:14 - 01456640 _____ (Microsoft Corporation) C:\WINDOWS\system32\GdiPlus.dll
2016-10-11 19:10 - 2016-10-05 10:14 - 01255936 _____ (Microsoft Corporation) C:\WINDOWS\system32\AzureSettingSyncProvider.dll
2016-10-11 19:10 - 2016-10-05 10:13 - 00055808 _____ (Microsoft Corporation) C:\WINDOWS\system32\offreg.dll
2016-10-11 19:10 - 2016-10-05 10:11 - 06043136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-10-11 19:10 - 2016-10-05 10:11 - 00125440 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mrxdav.sys
2016-10-11 19:10 - 2016-10-05 10:09 - 03369984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.StateRepository.dll
2016-10-11 19:10 - 2016-10-05 10:09 - 00710144 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppointmentApis.dll
2016-10-11 19:10 - 2016-10-05 10:09 - 00608256 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32spl.dll
2016-10-11 19:10 - 2016-10-05 10:08 - 02356736 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2016-10-11 19:10 - 2016-10-05 10:08 - 00873472 _____ (Microsoft Corporation) C:\WINDOWS\system32\aadtb.dll
2016-10-11 19:10 - 2016-10-05 10:08 - 00598528 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.dll
2016-10-11 19:10 - 2016-10-05 10:07 - 03667456 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-10-11 19:10 - 2016-10-05 10:07 - 02682880 _____ (Microsoft Corporation) C:\WINDOWS\system32\netshell.dll
2016-10-11 19:10 - 2016-10-05 10:07 - 02646016 _____ (Microsoft Corporation) C:\WINDOWS\system32\CertEnroll.dll
2016-10-11 19:10 - 2016-10-05 10:07 - 00589312 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.Sensors.dll
2016-10-11 19:10 - 2016-10-05 10:06 - 01013248 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Http.dll
2016-10-11 19:10 - 2016-10-05 10:06 - 00850944 _____ (Microsoft Corporation) C:\WINDOWS\system32\ContactApis.dll
2016-10-11 19:10 - 2016-10-05 10:05 - 03105792 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2016-10-11 19:10 - 2016-10-05 10:05 - 00751104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.BackgroundTransfer.dll
2016-10-11 19:10 - 2016-09-23 04:59 - 00446124 _____ C:\WINDOWS\system32\ApnDatabase.xml
2016-10-11 19:10 - 2016-09-07 06:18 - 00290264 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe
2016-10-11 19:09 - 2016-10-05 11:10 - 00231776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sdbus.sys
2016-10-11 19:09 - 2016-10-05 10:53 - 00154976 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dumpsd.sys
2016-10-11 19:09 - 2016-10-05 10:46 - 01360456 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfnetsrc.dll
2016-10-11 19:09 - 2016-10-05 10:26 - 00137216 _____ (Microsoft Corporation) C:\WINDOWS\system32\credprovs.dll
2016-10-11 19:09 - 2016-10-05 10:23 - 00284672 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepsync.dll
2016-10-11 19:09 - 2016-10-05 10:23 - 00125952 _____ (Microsoft Corporation) C:\WINDOWS\system32\apprepapi.dll
2016-10-11 19:09 - 2016-10-05 10:17 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\adsmsext.dll
2016-10-11 19:09 - 2016-10-05 10:10 - 06474752 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2016-10-11 19:09 - 2016-10-05 10:09 - 01700864 _____ (Microsoft Corporation) C:\WINDOWS\system32\smartscreen.exe
2016-10-11 19:09 - 2016-10-05 10:09 - 00691712 _____ (Microsoft Corporation) C:\WINDOWS\system32\msfeeds.dll

==================== One Month Modified files and folders ========

[Reklama]

[labutak3]

Pokračování:

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-11-09 20:44 - 2016-09-23 09:35 - 00000000 ____D C:\Users\Hurych
2016-11-09 20:01 - 2016-09-23 09:23 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-11-09 19:23 - 2016-07-16 09:19 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-11-09 19:19 - 2013-07-28 22:29 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-11-09 19:12 - 2014-05-08 21:16 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2016-11-09 19:12 - 2011-02-26 14:58 - 138444440 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-11-09 18:55 - 2009-07-14 03:04 - 00000478 _____ C:\WINDOWS\win.ini
2016-11-09 18:30 - 2016-09-23 10:00 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-11-09 18:30 - 2012-04-02 08:45 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2016-11-09 18:30 - 2011-07-16 20:22 - 00000000 ____D C:\WINDOWS\system32\logishrd
2016-11-09 18:30 - 2011-02-26 13:32 - 00017488 _____ (Windows (R) 2000 DDK provider) C:\WINDOWS\gdrv.sys
2016-11-09 18:29 - 2016-07-16 03:22 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2016-11-09 17:16 - 2016-07-16 09:28 - 00000000 ____D C:\WINDOWS\INF
2016-11-09 02:34 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-11-09 00:16 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-11-08 19:52 - 2014-07-31 09:37 - 00024688 _____ C:\WINDOWS\system32\Drivers\TrueSight.sys
2016-11-07 18:13 - 2016-03-31 09:21 - 00000000 ____D C:\Users\Hurych\AppData\Local\Packages
2016-11-06 10:23 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-11-05 08:34 - 2014-07-22 19:23 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-11-04 17:39 - 2016-07-16 09:29 - 00000000 ___HD C:\Program Files\WindowsApps
2016-11-03 20:20 - 2016-09-23 09:31 - 01867750 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-11-03 20:20 - 2016-07-16 18:01 - 00613360 _____ C:\WINDOWS\system32\perfh005.dat
2016-11-03 20:20 - 2016-07-16 18:01 - 00147484 _____ C:\WINDOWS\system32\perfc005.dat
2016-11-03 20:14 - 2015-07-31 08:12 - 00000000 ____D C:\Users\Hurych\AppData\Local\Avg
2016-11-03 20:14 - 2015-03-10 07:49 - 00000000 ____D C:\ProgramData\MFAData
2016-11-03 20:13 - 2015-10-29 13:07 - 00000000 ____D C:\Users\Hurych\AppData\Local\AvgSetupLog
2016-11-03 20:13 - 2015-08-17 15:14 - 00000000 ____D C:\ProgramData\AVG
2016-11-03 20:13 - 2015-07-04 07:49 - 00000000 ____D C:\Program Files\AVG
2016-11-03 20:12 - 2016-07-16 09:29 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2016-11-03 20:12 - 2015-07-04 07:50 - 00000000 __HDC C:\$AVG
2016-11-01 21:13 - 2011-02-26 13:58 - 00000000 ____D C:\Users\Hurych\AppData\Local\Google
2016-11-01 20:12 - 2014-05-03 13:25 - 00000000 ____D C:\Users\Hurych\Desktop\Domácí evidence
2016-10-30 19:40 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\rescache
2016-10-30 13:57 - 2015-07-02 11:43 - 00000000 ____D C:\Users\Hurych\AppData\Local\Adobe
2016-10-30 10:27 - 2016-07-16 03:22 - 00008192 _____ C:\WINDOWS\system32\config\ELAM
2016-10-29 00:56 - 2016-07-16 09:31 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2016-10-29 00:56 - 2016-07-16 09:31 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2016-10-28 20:27 - 2016-02-13 13:10 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-10-28 20:16 - 2016-04-23 17:55 - 00002231 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-10-28 20:12 - 2016-09-23 09:22 - 00406672 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-10-28 20:12 - 2015-02-01 18:53 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2016-10-28 20:08 - 2016-07-16 09:29 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-10-28 20:08 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-10-28 20:08 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-10-28 20:08 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-10-28 20:07 - 2016-07-16 09:30 - 00015425 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2016-10-21 13:09 - 2016-10-04 21:07 - 00072192 ____N C:\WINDOWS\Minidump\102116-78562-01.dmp
2016-10-19 09:39 - 2015-12-04 17:05 - 00000000 ____D C:\Users\Hurych\Documents\MyHeritage
2016-10-13 20:01 - 2011-03-05 11:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
2016-10-13 20:01 - 2011-03-05 11:49 - 00000000 ____D C:\Program Files\Nero
2016-10-13 20:00 - 2011-03-05 11:49 - 00000000 ____D C:\ProgramData\Nero
2016-10-12 08:33 - 2011-03-09 10:17 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2016-10-11 21:54 - 2016-07-16 09:29 - 00000000 ___SD C:\WINDOWS\system32\DiagSvcs
2016-10-11 21:54 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\system32\migwiz
2016-10-11 21:54 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\ShellExperiences
2016-10-11 21:54 - 2016-07-16 09:29 - 00000000 ____D C:\Program Files\Windows Photo Viewer
2016-10-11 21:07 - 2011-03-09 10:17 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2016-10-11 18:55 - 2016-07-16 09:25 - 00177664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Web.Diagnostics.dll
2016-10-11 18:38 - 2015-02-09 09:11 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader XI.lnk

==================== Files in the root of some directories =======

2004-11-26 12:50 - 2004-11-26 12:50 - 0000844 _____ () C:\Program Files\Popis.txt
2011-04-26 19:43 - 2014-05-21 20:27 - 0087608 _____ () C:\Users\Hurych\AppData\Roaming\ezpinst.exe
2014-05-21 20:29 - 2014-06-13 11:44 - 0007861 _____ () C:\Users\Hurych\AppData\Roaming\ezplay.cat
2014-05-21 20:29 - 2014-06-13 11:44 - 0001104 _____ () C:\Users\Hurych\AppData\Roaming\ezplay.inf
2014-05-21 20:29 - 2014-06-13 11:44 - 0094208 _____ (VSO Software) C:\Users\Hurych\AppData\Roaming\ezplay.sys
2011-03-06 19:44 - 2016-05-20 19:25 - 0087608 _____ () C:\Users\Hurych\AppData\Roaming\inst.exe
2011-03-06 19:44 - 2016-05-20 19:25 - 0007887 _____ () C:\Users\Hurych\AppData\Roaming\pcouffin.cat
2011-03-06 19:44 - 2016-05-20 19:25 - 0001144 _____ () C:\Users\Hurych\AppData\Roaming\pcouffin.inf
2016-05-20 19:25 - 2016-05-20 19:25 - 0000055 _____ () C:\Users\Hurych\AppData\Roaming\pcouffin.log
2011-03-06 19:44 - 2016-05-20 19:25 - 0047360 _____ (VSO Software) C:\Users\Hurych\AppData\Roaming\pcouffin.sys
2011-08-19 08:19 - 2015-08-30 12:21 - 0019456 _____ () C:\Users\Hurych\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-04-09 19:28 - 2014-04-09 19:28 - 0001459 _____ () C:\Users\Hurych\AppData\Local\recently-used.xbel
2011-09-29 12:05 - 2015-03-11 11:41 - 0007605 _____ () C:\Users\Hurych\AppData\Local\Resmon.ResmonCfg
2011-02-28 10:55 - 2011-02-28 10:55 - 0000056 ____H () C:\ProgramData\ezsidmv.dat
2011-02-28 08:58 - 2011-03-14 22:33 - 0001195 _____ () C:\ProgramData\hpzinstall.log

Some files in TEMP:
====================
C:\Users\Hurych\AppData\Local\Temp\7za.exe
C:\Users\Hurych\AppData\Local\Temp\DaS_21.exe
C:\Users\Hurych\AppData\Local\Temp\dllnt_dump.dll
C:\Users\Hurych\AppData\Local\Temp\hijackthis.exe
C:\Users\Hurych\AppData\Local\Temp\libeay32.dll
C:\Users\Hurych\AppData\Local\Temp\msvcr120.dll
C:\Users\Hurych\AppData\Local\Temp\MyHeritage_Version_8_0_0_8333_Size_47737760.exe
C:\Users\Hurych\AppData\Local\Temp\NirCmd.exe
C:\Users\Hurych\AppData\Local\Temp\PEVZ.EXE
C:\Users\Hurych\AppData\Local\Temp\remove.exe
C:\Users\Hurych\AppData\Local\Temp\sed.exe
C:\Users\Hurych\AppData\Local\Temp\shortcut.exe
C:\Users\Hurych\AppData\Local\Temp\sqlite3.dll
C:\Users\Hurych\AppData\Local\Temp\swreg.exe
C:\Users\Hurych\AppData\Local\Temp\swxcacls.exe
C:\Users\Hurych\AppData\Local\Temp\wget.exe
C:\Users\Hurych\AppData\Local\Temp\zoek-delete.exe


==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-11-09 18:47

==================== End of FRST.txt ============================

[labutak3]

Pokračování:

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 06-11-2016
Ran by Hurych (09-11-2016 20:59:00)
Running from D:\INTERNET
Microsoft Windows 10 Home Version 1607 (X86) (2016-09-23 09:12:26)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3926796986-3061243883-951121101-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3926796986-3061243883-951121101-503 - Limited - Disabled)
Guest (S-1-5-21-3926796986-3061243883-951121101-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3926796986-3061243883-951121101-1009 - Limited - Enabled)
Hurych (S-1-5-21-3926796986-3061243883-951121101-1000 - Administrator - Enabled) => C:\Users\Hurych

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

@BIOS (HKLM\...\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}) (Version: 2.08 - GIGABYTE)
7-Zip 9.21beta (HKLM\...\7-Zip) (Version: - )
Adobe Flash Player 23 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 23.0.0.207 - Adobe Systems Incorporated)
Adobe Flash Player 24 PPAPI (HKLM\...\Adobe Flash Player PPAPI) (Version: 24.0.0.145 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.18) - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.18 - Adobe Systems Incorporated)
Advertising Center (Version: 0.0.0.1 - Nero AG) Hidden
AutoGreen B10.0517.1 (HKLM\...\InstallShield_{C75FAD21-EC08-42F3-92D6-C9C0AB355345}) (Version: 1.00.0000 - GIGABYTE)
AutoGreen B10.0517.1 (Version: 1.00.0000 - GIGABYTE) Hidden
AVG Web TuneUp (HKLM\...\AVG Web TuneUp) (Version: 4.3.6.255 - AVG Technologies)
AviSynth 2.5 (HKLM\...\AviSynth) (Version: - )
Balíček ovladače systému Windows - Hewlett-Packard Image (04/27/2007 9.0.0.0) (HKLM\...\A6BCA7876CD547CFB5821019998F044515D81B74) (Version: 04/27/2007 9.0.0.0 - Hewlett-Packard)
Balíček ovladače systému Windows - Nokia pccsmcfd “LegacyDriver” (05/31/2012 7.1.2.0) (HKLM\...\17D063A0A9F5D5A225B76B1D9BCB5ADBE85C8382) (Version: 05/31/2012 7.1.2.0 - Nokia)
Browser Configuration Utility (HKLM\...\{A2F991E7-DDCD-42B7-AFEC-47789A099FDC}) (Version: 1.1.18.0 - DeviceVM Inc.) <==== ATTENTION
BufferChm (Version: 130.0.331.000 - Hewlett-Packard) Hidden
CameraHelperMsi (Version: 13.00.1774.0 - Logitech) Hidden
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM\...\CANONIJPLM100) (Version: - )
Canon iP2700 series Printer Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP2700_series) (Version: - )
Canon Utilities My Printer (HKLM\...\CanonMyPrinter) (Version: - )
ccc-core-static (Version: 2010.0406.2133.36843 - Název společnosti:) Hidden
CDBurnerXP (HKLM\...\{7E265513-8CDA-4631-B696-F40D983F3B07}_is1) (Version: 4.5.7.6139 - CDBurnerXP)
CDex - Open Source Digital Audio CD Extractor (HKLM\...\CDex) (Version: 1.70.4.2009 - Georgy Berdyshev)
Centrum zařízení Windows Mobile (HKLM\...\{904CCF62-818D-4675-BC76-D37EB399F917}) (Version: 6.1.6965.0 - Microsoft Corporation)
Connection Meter (HKLM\...\ConMet) (Version: - )
Destinations (Version: 130.0.0.0 - Hewlett-Packard) Hidden
DocProc (Version: 13.0.0.0 - Hewlett-Packard) Hidden
Doplněk pro vytváření PDF dokumentů z Účta (HKLM\...\Doplněk pro vytváření PDF dokumentů z Účta_is1) (Version: - )
Easy Tune 6 B10.0516.1 (HKLM\...\InstallShield_{457D7505-D665-4F95-91C3-ECB8C56E9ACA}) (Version: 1.00.0000 - GIGABYTE)
Easy Tune 6 B10.0516.1 (Version: 1.00.0000 - GIGABYTE) Hidden
EasySaver B9.1214.1 (HKLM\...\{07300F01-89CA-4CF8-92BD-2A605EB83C95}) (Version: 1.00.0000 - Gigabyte)
erLT (Version: 1.20.138.34 - Logitech, Inc.) Hidden
ffdshow [rev 2583] [2009-01-05] (HKLM\...\ffdshow_is1) (Version: 1.0 - )
Free AVI to MP4 Converter 1.0 (HKLM\...\{756DF96D-E40E-4B52-A53D-036E3D6AAB44}_is1) (Version: - PolySoft Solutions)
Google Chrome (HKLM\...\Google Chrome) (Version: 54.0.2840.71 - Google Inc.)
Google Update Helper (Version: 1.3.31.5 - Google Inc.) Hidden
GPBaseService2 (Version: 130.0.371.000 - Hewlett-Packard) Hidden
Haali Media Splitter (HKLM\...\HaaliMkx) (Version: - )
HP Imaging Device Functions 13.0 (HKLM\...\HP Imaging Device Functions) (Version: 13.0 - HP)
HP Photosmart Essential 3.5 (HKLM\...\HP Photosmart Essential) (Version: 3.5 - HP)
HP Scanjet G2710 (HKLM\...\{26D127FF-C0BF-4387-8AF7-242F59D9D9D8}) (Version: 13.0 - HP)
HP Solution Center 13.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 13.0 - HP)
HP Update (HKLM\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
hpg2710 (Version: 13.0.0.0 - Hewlett-Packard) Hidden
HPPhotosmartEssential (Version: 2.04.0000 - Hewlett-Packard) Hidden
HPProductAssistant (Version: 130.0.371.000 - Hewlett-Packard) Hidden
ImagXpress (Version: 7.0.74.0 - Nero AG) Hidden
Internet Explorer (Version: 8 - Microsoft Corporation) Hidden
Java 8 Update 25 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation)
Kniha verze 1.1 (HKLM\...\{27EB6C63-6FF1-4CE1-A7F5-E06D746D1785}_is1) (Version: 1.1 - Golden Books s.r.o.)
LAME v3.98.2 for Audacity (HKLM\...\LAME for Audacity_is1) (Version: - )
Logitech Vid HD (HKLM\...\Logitech Vid) (Version: 7.2 (7259) - Logitech Inc..)
Logitech Webcam Software (HKLM\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.0 - Logitech Inc.)
LP Recorder (HKLM\...\LP Recorder) (Version: - )
Malwarebytes Anti-Malware verze 2.2.1.1043 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft Office Standard 2013 (HKLM\...\Office15.STANDARD) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 49.0.2 (x86 cs) (HKLM\...\Mozilla Firefox 49.0.2 (x86 cs)) (Version: 49.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 49.0.2.6136 - Mozilla)
MSVC80_x86_v2 (Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x86 (Version: 1.0.1.2 - Nokia) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MyHeritage Family Tree Builder (HKLM\...\Family Tree Builder) (Version: 7.0.0.7143 - MyHeritage.com)
Nástroje kontroly pravopisu pro Microsoft Office 2013 – čeština (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Nástroje korektúry balíka Microsoft Office 2013 - slovenčina (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Nero 9 Essentials (HKLM\...\{025ab6b6-a28a-4aef-ba2c-2ff5cdd81765}) (Version: - Nero AG)
NVIDIA PhysX (HKLM\...\{64467D47-FFE4-4FBC-ABBA-A0DB829A17EB}) (Version: 9.12.0613 - NVIDIA Corporation)
OCR Software by I.R.I.S. 13.0 (HKLM\...\HPOCR) (Version: 13.0 - HP)
PC Connectivity Solution (HKLM\...\{7390478C-8581-415E-92E9-2997D9306B81}) (Version: 12.0.32.0 - Nokia)
Photo Notifier and Animation Creator (HKLM\...\Photo Notifier and Animation Creator) (Version: 1.0.0.1009 - IncrediMail Ltd.)
RajÄŤe prĹŻvodce verze 1.59.54.269 (HKLM\...\rajce.net_is1) (Version: - rajce.net)
Realtek Ethernet Controller Driver For Windows 7 (HKLM\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.18.322.2010 - Realtek)
Realtek HDMI Audio Driver for ATI (HKLM\...\{5449FB4F-1802-4D5B-A6D8-087DB1142147}) (Version: 6.0.1.6034 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6083 - Realtek Semiconductor Corp.)
Registrace uživatele zařízení Canon iP2700 series (HKLM\...\Registrace uživatele zařízení Canon iP2700 series) (Version: - )
Scan (Version: 13.0.0.0 - Hewlett-Packard) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM\...\{90150000-0012-0000-0000-0000000FF1CE}_Office15.STANDARD_{7F6C4883-A18C-459A-82C1-A2F9403F2DA6}) (Version: - Microsoft)
Seznam Software (HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\SeznamInstall) (Version: - Seznam.cz)
Skype™ 7.21 (HKLM\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.21.100 - Skype Technologies S.A.)
Software602 Form Filler (HKLM\...\{00160B3F-653A-4EA7-947E-4000D3551E9E}) (Version: 4.60 - Software602 a.s.)
SolutionCenter (Version: 130.0.373.000 - Hewlett-Packard) Hidden
Sothink Movie DVD Maker (HKLM\...\{4F94119D-1B71-400e-9F04-B4E5CEAE71F8}_is1) (Version: 3.7 - SourceTec Software Co., LTD)
Sothink Movie DVD Maker 3.4 (HKLM\...\{45B8BD63-3163-47AF-94F9-FE863FC321BA}_is1) (Version: - )
Svátky a výročí (HKLM\...\{DAB2EE5B-8A5B-49A8-A5C2-12603468688E}) (Version: 2.06.0112 - Igor Gottwald - OKsoftware)
The Lord of the Rings FREE Trial (Version: 1.00.0000 - ATI Technologies Inc.) Hidden
TomTom HOME Visual Studio Merge Modules (HKLM\...\{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}) (Version: 1.0.2 - TomTom International B.V.)
Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version: 7.50a - Ghisler Software GmbH)
VCRedistSetup (Version: 1.0.0 - Nero AG) Hidden
Virtual COM Port Driver (HKLM\...\InstallShield_{9853299F-7AD8-4560-9896-60650BD8ACBF}) (Version: 1.3.1 - STMicroelectronics)
Virtual COM Port Driver (Version: 1.3.1 - STMicroelectronics) Hidden
Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
VSO ConvertXToDVD 6 (HKLM\...\{8FC36FA6-C508-44FB-B137-1CB46D8258B2}_is1) (Version: 6.0.0.37 - VSO Software)
WebReg (Version: 130.0.132.017 - Hewlett-Packard) Hidden
Windows Driver Package - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/11/2009 2.0.0010.00002) (HKLM\...\B81055EA372C9E3EA5000B4BD9585D992D51F1DE) (Version: 08/11/2009 2.0.0010.00002 - Google, Inc.)
Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
Windows Movie Maker 2.6 (HKLM\...\{B3DAF54F-DB25-4586-9EF1-96D24BB14088}) (Version: 2.6.4037.0 - Microsoft Corporation)
WinRAR (HKLM\...\WinRAR archiver) (Version: - )
Zemana AntiMalware (HKLM\...\{8F0CD7D1-42F3-4195-95CD-833578D45057}_is1) (Version: 2.60.1 - Zemana Ltd.)
Zoner Photo Studio 13 (HKLM\...\ZonerPhotoStudio13_CZ_is1) (Version: 13.0.1.1 - ZONER software)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3926796986-3061243883-951121101-1000_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\InprocServer32 -> C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3926796986-3061243883-951121101-1000_Classes\CLSID\{BCAFD618-3FAE-4EFE-BF4E-4C43A7E1320B}\InprocServer32 -> C:\Program Files\Zoner\Photo Studio 13\Program32\SHELLEXT.DLL (ZONER software)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {04C04BF2-BBD1-438A-B61C-88011EED42E7} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {0EDCD8E2-6EE4-44A9-B173-BEF0948956AC} - System32\Tasks\{D6F826F3-12E9-414E-A75A-438F01646EB7} => pcalua.exe -a "C:\Program Files\Common Files\Canon_Inc_IC\UniversalInstaller\Uninstall\UnInstaller\UniversalUnInstaller.exe" -c "C:\Program Files\Common Files\Canon_Inc_IC\UniversalInstaller\Uninstall\ImageBrowser EX\uninstall.xml"
Task: {0F781CC2-7366-4498-99C7-A4D133F5F5F4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2016-04-06] (Google Inc.)
Task: {14306C25-F089-4C49-B751-035303B8C6E7} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {201F2E66-ECC3-4880-9DBC-0977AA1ED268} - System32\Tasks\The Phone Support Dock => C:\Program Files\The Phone Support Dock\TPSDock.exe [2014-12-12] (The Phone Support)
Task: {23C20BAD-4A26-42F2-8649-62A49A81C886} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {259BCC3A-7539-4A60-8A11-B3A03F6D7E10} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {2624F699-5244-4D4D-B1B3-51B9E5432B8C} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {2B205C13-83DC-407B-B473-80F927F6BC17} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {2B420A0B-4436-4DBC-AC57-A3321AB593A9} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {30BA1575-0202-4983-998F-668C3EE9689C} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
Task: {352C86FB-9C61-4323-BDE6-40333640E57A} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {3EB9EFB1-CD98-46D8-87AA-171A1972211E} - System32\Tasks\{772DBEB5-4D5C-4354-8658-BACD7AA67259} => pcalua.exe -a C:\Ancestry\Ancestry\Ancestry2html\bin\Ancestry2html.exe -d C:\Ancestry\Ancestry\Ancestry2html\bin
Task: {443151C0-B584-4DAD-A8CF-BD13A7331DB1} - System32\Tasks\Support Dock => C:\Program Files\Support Dock\SystweakASP.exe
Task: {4DC47D5A-E24C-4744-9393-1E92D5861C2E} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {4E0161EE-227B-482A-B202-515BB9E5DCB9} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {523EF1E9-6E5C-4ED6-8D47-4B7B844C1C27} - System32\Tasks\{D4AC9DF4-5AE5-4587-872C-368FFA39D13F} => Firefox.exe hxxp://ui.skype.com/ui/0/7.7.0.103/cs/a ... rogressBar
Task: {535BB015-C054-4EF8-89B7-FF00ABAA4D9D} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {64A7FEAF-A7FC-4216-A9E9-84444195D903} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {66FEDF9F-14E5-42C7-BB13-5B44D452EAC0} - System32\Tasks\{F84199E7-BF6E-42C3-B3DE-9A7897836073} => Firefox.exe hxxp://ui.skype.com/ui/0/7.7.0.103/cs/a ... rogressBar
Task: {6FD8F1AF-4C67-4127-9843-9E6E70A2911C} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {704B8C88-2D12-40C4-8CC4-F84E35DA8A28} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-11-09] (Adobe Systems Incorporated)
Task: {71C5B6B7-39D8-4F9A-9ECA-37DBCFB30BEE} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {7B376DC1-82D2-452A-8D0B-DC6E541B6952} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {83673578-A709-4612-A418-FB355440CB0B} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {84E51F77-6535-48EF-91E4-C00D2CA942AE} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {85899645-8366-442D-8E83-48B94863D082} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-10-21] (Adobe Systems Incorporated)
Task: {89C05B25-3412-47D8-B205-A0FEF189072C} - System32\Tasks\{ED1A55E1-DD7D-426B-AC6D-7DF9412F755A} => pcalua.exe -a "C:\Program Files\ConMet\ConMet.exe" -c /uninstall
Task: {8D909842-E0FA-4F6E-BA3D-C9138F9C5D8E} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {91424FE2-6130-423E-8E0C-449AE899A3A5} - System32\Tasks\{E2F13043-95E5-4973-99DB-688DBB848D36} => Firefox.exe hxxp://ui.skype.com/ui/0/5.5.0.124/en/a ... d;disabled
Task: {94126E81-67AB-451F-AD30-1FC675D27066} - System32\Tasks\{327B2432-86F0-49F9-8E91-94F79C73F819} => pcalua.exe -a C:\Users\Hurych\Downloads\130.exe -d C:\Users\Hurych\Downloads
Task: {9DF490E6-36ED-45F8-A7F0-0616EB73D44C} - System32\Tasks\{36DA3A66-58A3-404E-94AA-7EA7EA80AD76} => pcalua.exe -a E:\Setup.exe -d E:\
Task: {9E740ED7-37ED-46E8-ACB1-00BE45F51349} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {A3919CF6-2773-4513-87C3-FE8C2950A9B3} - System32\Tasks\{6149BE63-22D0-4DB2-B814-9B427FD53BBC} => C:\Program Files\Skype\\Phone\Skype.exe [2016-03-01] (Skype Technologies S.A.)
Task: {A3BBD529-591C-450F-8829-1E52ED18A52E} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {AA217767-7C60-457F-A1FA-80272BFDFAF5} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B3D727DE-8954-4AD5-AF43-0DD639C146B1} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {B4E483FD-5532-4741-B01E-DBD9B3867A84} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B5264621-D982-42B2-9CB0-D7C9428C839C} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {BC4E3E2E-75AF-4C38-81EA-397C1D29893F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2016-04-06] (Google Inc.)
Task: {BE6F0DEC-7454-44A3-94B7-502E2DAB1AF9} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {C3A4A034-412E-4CA5-8411-36D2F6C13F80} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {C474AE0F-FE1A-45F9-A1B1-4A9AB75B90CF} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {CF306319-34F0-41D6-8900-85ECDCDA6A97} - System32\Tasks\{7F4319EA-B9A4-46B7-8A17-BF11BB2B5461} => pcalua.exe -a D:\INTERNET\6570v1.1.exe -d "C:\Program Files\Mozilla Firefox"
Task: {D0E5A06D-3F03-42A3-AE10-83DBABE350E0} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {D2E21755-4003-4880-BB1B-F9C569CDE27B} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {D612EAA6-B716-46BD-80E4-495A70BFA70E} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {D6D1EDF3-9304-40D0-AC24-6D692DD7B653} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {D90593D9-F7C7-4F2A-9E4B-5B8192DAD4AA} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {EC6E6AD8-4939-4EF6-B753-7C16DB5AD9EB} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {F34FB1AA-6B07-480B-B7B2-66385DEDC98C} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {F61E355E-7E54-47E0-8B01-60799899074B} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {F6360C12-9539-4552-B2DC-CDB835C99CAA} - \Systweak-Support-Dock -> No File <==== ATTENTION
Task: {F72DFC2E-882C-4550-8457-9E36D7EF9ADF} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {F9121AB7-1E05-447D-8ADA-00A3701C9E95} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: {FBC91502-E109-49EC-B657-26F3234B6F05} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {FCB7B5FC-51D1-4779-9CA2-8425178D55EB} - System32\Tasks\{579749F7-BB3A-41A8-9691-2AE7C02023DB} => pcalua.exe -a "C:\Program Files\Google\Picasa3\Uninstall.exe"
Task: {FE96D9E2-C7C8-40B1-BF7A-9E2A95D8EE6B} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

Shortcut: C:\Users\Hurych\Desktop\Účto\ÚČTO 2015.LNK -> C:\UCTO2015\U.BAT ()
Shortcut: C:\Users\Hurych\Desktop\Účto\ÚČTO 2016.LNK -> C:\UCTO2016\U.BAT ()

ShortcutWithArgument: C:\Users\Hurych\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\5d696d521de238c3\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default

==================== Loaded Modules (Whitelisted) ==============

2016-07-16 09:25 - 2016-07-16 09:25 - 00190976 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-10-01 18:14 - 2016-09-15 18:32 - 02048496 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-11-04 17:35 - 2016-11-04 17:36 - 00062464 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.251.0_x86__kzf8qxf38zg5c\SkypeHost.exe
2016-11-04 17:35 - 2016-11-04 17:36 - 00151552 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.251.0_x86__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2016-11-04 17:35 - 2016-11-04 17:36 - 29914112 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.251.0_x86__kzf8qxf38zg5c\SkyWrap.dll
2016-11-02 19:57 - 2016-11-02 19:57 - 00147456 _____ () C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.12.10310.0_x86__8wekyb3d8bbwe\CellNativeClientUniversal.dll
2016-10-01 18:14 - 2016-09-15 18:32 - 02048496 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-09-24 12:51 - 2016-09-24 12:51 - 01383616 _____ () C:\Users\Hurych\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\ClientTelemetry.dll
2011-03-14 10:10 - 2010-03-15 11:28 - 00141824 _____ () C:\Program Files\WinRAR\rarext.dll
2016-11-09 20:25 - 2016-11-09 20:25 - 00129392 _____ () C:\Users\Hurych\Desktop\Zemana AntiMalware\ZAMShellExt32.dll
2016-07-16 09:25 - 2016-07-16 09:25 - 00108032 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2016-09-23 10:13 - 2016-09-23 10:13 - 00321536 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2016-10-28 15:55 - 2016-10-15 04:39 - 06726656 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-10-28 15:55 - 2016-10-15 04:35 - 01149440 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-09-23 10:13 - 2016-09-23 10:13 - 00526848 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2016-10-28 15:55 - 2016-10-15 04:35 - 01724928 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-10-28 15:55 - 2016-10-15 04:37 - 03158528 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData\TEMP:0888F409 [148]
AlternateDataStreams: C:\ProgramData\TEMP:3440EB47 [286]
AlternateDataStreams: C:\ProgramData\TEMP:66633281 [136]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\100sexlinks.com -> 100sexlinks.com

There are 4791 more sites.


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:04 - 2016-11-09 08:35 - 00000753 ____A C:\WINDOWS\system32\Drivers\etc\hosts


127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3926796986-3061243883-951121101-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Hurych\AppData\Roaming\Zoner\ZPS 13\ZPSWallPaper.bmp
DNS Servers: 192.168.51.250 - 192.168.51.252
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^ImageBrowser EX Agent.lnk => C:\Windows\pss\ImageBrowser EX Agent.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Hurych^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^EOS Utility.lnk => C:\Windows\pss\EOS Utility.lnk.Startup
MSCONFIG\startupreg: APSDaemon => "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: CanonMyPrinter => C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
MSCONFIG\startupreg: Family Tree Builder Update => C:\Program Files\MyHeritage\Bin\FTBCheckUpdates.exe
MSCONFIG\startupreg: ISUSPM Startup => C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: LightScribe Control Panel => C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
MSCONFIG\startupreg: LWS => C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe -hide
MSCONFIG\startupreg: NokiaSuite.exe => C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe -tray
MSCONFIG\startupreg: QuickTime Plugin Install => C:\Program Files\QuickTime\Plugins\DeleteMe1.exe
MSCONFIG\startupreg: seznam-listicka-distribuce => "C:\Program Files\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
MSCONFIG\startupreg: StartCCC => "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
MSCONFIG\startupreg: TomTomHOME.exe => "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe"
MSCONFIG\startupreg: USB2Check => RUNDLL32.EXE "C:\Windows\system32\PCLECoInst.dll",CheckUSBController
MSCONFIG\startupreg: USBToolTip => C:\PROGRA~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-32bit] => (Allow) LPort=808
FirewallRules: [{A75550D3-B50A-4DE5-8582-662AABA9D09C}] => (Allow) C:\Program Files\Nero\Nero TuneItUp\TuneItUp.exe
FirewallRules: [{D56F5396-E754-4869-84AD-FCC6F6DF3640}] => (Allow) C:\Program Files\Nero\Nero TuneItUp\TuneItUp.exe
FirewallRules: [{D67528DD-CA7A-4D9C-92AF-D8471E74A06F}] => (Allow) C:\Program Files\Canon\EOS Utility\EOSUPNPSV.exe
FirewallRules: [{5356E46E-74F8-4FDF-AF86-5368048E5305}] => (Allow) C:\Program Files\Canon\EOS Utility\EOSUPNPSV.exe
FirewallRules: [{CEE9464E-801C-41F3-8691-74F076BA1B4D}] => (Allow) C:\Program Files\Common Files\soft602\langserv.exe
FirewallRules: [{6FF62A00-5D32-4224-B6D8-A57F31F1F4B0}] => (Allow) C:\Program Files\Common Files\soft602\langserv.exe
FirewallRules: [{0CA6E508-F1F8-4E3E-B184-20B9B3DF64C3}] => (Allow) C:\Program Files\AVG\Av\avgmfapx.exe
FirewallRules: [{840FB3BB-C467-4BBB-AA5D-A3DD3B266DEF}] => (Allow) C:\Program Files\AVG\Av\avgmfapx.exe
FirewallRules: [{6CD4B712-F31E-48CD-B5F3-5A8703880752}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{1F59D450-306A-4569-9F47-988BC8E1764C}] => (Allow) LPort=26675
FirewallRules: [{C2AB8830-D72D-41F1-900D-A7F67F421AEA}] => (Allow) %systemroot%\WindowsMobile\wmdHost.exe
FirewallRules: [{8FC78052-ED71-4A2F-99E1-C488E7259A3B}] => (Allow) %systemroot%\WindowsMobile\wmdHost.exe
FirewallRules: [{C6DFA7B5-03DF-4ADD-AEDD-56EC5601DACF}] => (Allow) LPort=26675
FirewallRules: [{12B8DE62-AD4E-4ECA-9794-0CF4E3EC2D0E}] => (Allow) %systemroot%\WindowsMobile\wmdHost.exe
FirewallRules: [{5A0A219A-16B8-4663-93E0-AA16AA353061}] => (Allow) %systemroot%\WindowsMobile\wmdHost.exe
FirewallRules: [{A2DDA1ED-E8BA-442C-8599-CDBBEFEFFB00}] => (Allow) C:\Program Files\Logitech\Vid HD\Vid.exe
FirewallRules: [{923272D4-19C9-42B1-9328-6CD8BCF999FF}] => (Allow) C:\Program Files\Logitech\Vid HD\Vid.exe
FirewallRules: [{8D52C904-1274-413A-8041-6C263644AD6D}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{58233FF9-0E46-4CA4-8644-10956120CCE3}] => (Allow) C:\Program Files\HP\hp software update\hpwucli.exe
FirewallRules: [{AD148DED-4600-4A63-9906-21EF70FACDB6}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{946EC4B3-8DB1-4BEA-A72D-2338E4955311}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{95F712C3-5ACE-482F-BB62-2B4643D697CB}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqpse.exe
FirewallRules: [{8D7532A3-2FAC-4640-8042-0617F5A2A544}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqpsapp.exe
FirewallRules: [{F6E4355C-76F9-4C01-96CB-A9CBE45D792B}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqsudi.exe
FirewallRules: [{C6816A87-27D6-4915-A4B2-0A6CFE62E104}] => (Allow) C:\Program Files\common files\hp\digital imaging\bin\hpqphotocrm.exe
FirewallRules: [{2C3291EC-D635-4B04-8725-3B85D4B5DF6B}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{4661FA33-7357-4267-BA24-B3593CA27E00}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{DCDA0F41-0FF2-44D7-83D3-A8E4DA7E45E8}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{C6CD225F-37D8-4F85-9B07-F294B5B46A2E}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{AF508DFB-8BD7-4704-96E1-FBCF0DFEBF71}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{50F3FE7F-8897-4BA5-BDBF-7659C0E98363}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
FirewallRules: [{089DBE29-F2DB-43A9-9C9C-D14394F94A06}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

09-11-2016 19:07:52 Windows Update

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (11/09/2016 08:26:26 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro C:\Program Files\STMicroelectronics\Software\Virtual COM Port Driver\dpinst_amd64.exe se nezdařilo.
Závislé sestavení Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (11/09/2016 08:26:26 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro C:\Program Files\STMicroelectronics\Software\Virtual COM Port Driver\dpinst_ia64.exe se nezdařilo.
Závislé sestavení Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="ia64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (11/09/2016 08:24:19 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro C:\Program Files\STMicroelectronics\Software\Virtual COM Port Driver\dpinst_amd64.exe se nezdařilo.
Závislé sestavení Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (11/09/2016 08:24:19 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro C:\Program Files\STMicroelectronics\Software\Virtual COM Port Driver\dpinst_ia64.exe se nezdařilo.
Závislé sestavení Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="ia64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (11/09/2016 08:13:01 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro C:\Program Files\STMicroelectronics\Software\Virtual COM Port Driver\dpinst_amd64.exe se nezdařilo.
Závislé sestavení Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (11/09/2016 08:13:01 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro C:\Program Files\STMicroelectronics\Software\Virtual COM Port Driver\dpinst_ia64.exe se nezdařilo.
Závislé sestavení Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="ia64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (11/09/2016 08:11:16 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro C:\Program Files\STMicroelectronics\Software\Virtual COM Port Driver\dpinst_amd64.exe se nezdařilo.
Závislé sestavení Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (11/09/2016 08:11:16 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro C:\Program Files\STMicroelectronics\Software\Virtual COM Port Driver\dpinst_ia64.exe se nezdařilo.
Závislé sestavení Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="ia64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (11/09/2016 08:06:58 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro C:\Program Files\STMicroelectronics\Software\Virtual COM Port Driver\dpinst_amd64.exe se nezdařilo.
Závislé sestavení Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (11/09/2016 08:06:57 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro C:\Program Files\STMicroelectronics\Software\Virtual COM Port Driver\dpinst_ia64.exe se nezdařilo.
Závislé sestavení Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="ia64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.


System errors:
=============
Error: (11/09/2016 07:49:37 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
a APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/09/2016 06:59:57 PM) (Source: volsnap) (EventID: 36) (User: )
Description: The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.

Error: (11/09/2016 06:30:03 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba NetTcpActivator závisí na službě NetTcpPortSharing, která neuspěla při spuštění v důsledku následující chyby:
Zvolenou službu nelze spustit, protože není povolena nebo s ní není spojeno žádné povolené zařízení.

Error: (11/09/2016 06:30:02 PM) (Source: NETLOGON) (EventID: 3095) (User: )
Description: Tento počítač je nakonfigurován jako člen pracovní skupiny, nikoliv jako
člen domény. Přihlašovací služba Netlogon nepotřebuje být spuštěna v této
konfiguraci.

Error: (11/09/2016 06:28:39 PM) (Source: DCOM) (EventID: 10010) (User: HURYCH-PC)
Description: Server App.AppXwdz8g2fxr36xz0tdtagygnvemf85s7gg.mca se v daném časovém limitu neregistroval u služby DCOM.

Error: (11/09/2016 10:43:46 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (11/09/2016 10:43:45 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (11/09/2016 10:43:44 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (11/09/2016 10:43:42 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (11/09/2016 10:43:41 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.


==================== Memory info ===========================

Processor: AMD Athlon(tm) II X2 250 Processor
Percentage of memory in use: 35%
Total physical RAM: 2813.55 MB
Available physical RAM: 1812.4 MB
Total Virtual: 5629.55 MB
Available Virtual: 4413.91 MB

==================== Drives ================================

Drive c: (MĂ­stnĂ­ disk C) (Fixed) (Total:73.99 GB) (Free:5.96 GB) NTFS
Drive d: (MĂ­stnĂ­ disk D) (Fixed) (Total:465.76 GB) (Free:300.26 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or (Size: 465.8 GB) (Disk ID: 3DDF208F)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows 7 or (Size: 74.5 GB) (Disk ID: 27D027CF)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=74 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)

==================== End of Addition.txt

[jaro3]

Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.

Kód: Vybrat vše

Start
CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\.DEFAULT -> {35bf257a-d6a6-404f-bd03-fbae9824f981} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz&sourceid=IE_5
SearchScopes: HKU\.DEFAULT -> {439bac55-8de2-417c-ac69-43a6075d7e44} URL = hxxp://www.firmy.cz/phr/{searchTerms}?sourceid=IE_5
SearchScopes: HKU\.DEFAULT -> {7b6f3db2-cfe4-42db-adfc-1f939a3afd05} URL = hxxp://www.mapy.cz/?query={searchTerms}&sourceid=IE_5
SearchScopes: HKU\.DEFAULT -> {f8f350fb-b419-492d-b3b7-37c98eabb59a} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=IE_5
SearchScopes: HKU\S-1-5-21-3926796986-3061243883-951121101-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3926796986-3061243883-951121101-1000 -> {414916E0-E00A-443A-84A7-831DFB905C7B} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_5
SearchScopes: HKU\S-1-5-21-3926796986-3061243883-951121101-1000 -> {504BC20B-85A6-4D27-B418-96E1F161FEAD} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_5
SearchScopes: HKU\S-1-5-21-3926796986-3061243883-951121101-1000 -> {58DB53E9-6791-4E05-B4D2-89CD9E7DB032} URL = hxxp://www.mapy.cz/?query={searchTerms}&sourceid=QuickSearch_5
SearchScopes: HKU\S-1-5-21-3926796986-3061243883-951121101-1000 -> {6A07F2D6-97EA-449B-AF53-3E22FCE6FDE2} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz&sourceid=QuickSearch_5
SearchScopes: HKU\S-1-5-21-3926796986-3061243883-951121101-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={sear
SearchScopes: HKU\S-1-5-21-3926796986-3061243883-951121101-1000 -> {6AEBD73C-DF9B-408F-95D6-FD8C6302C46F} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_5
SearchScopes: HKU\S-1-5-21-3926796986-3061243883-951121101-1000 -> {CFED0946-7B45-48BB-BC0E-848659302830} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&sourceid=QuickSearch_5
SearchScopes: HKU\S-1-5-21-3926796986-3061243883-951121101-1000 -> {D5473130-1BB8-4E2A-A92C-9FB0228AE7BA} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_5
SearchScopes: HKU\S-1-5-21-3926796986-3061243883-951121101-1000 -> {EB70C53E-740B-4C3E-BBF5-DC7B8303F920} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid=QuickSearch_5
Toolbar: HKU\.DEFAULT -> No Name - {34AB3C4C-DA1A-4067-96F4-31452C7CFE65} - No File
FF Extension: (No Name) - C:\Program Files\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [not found]
FF NewTab: Philips-Songbird\Profiles\ky8oeux3.default -> about:newtab
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\albumart@songbirdnest.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\cd-rip@songbirdnest.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\ewaacdec@songbirdnest.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\ewmp3enc@songbirdnest.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\fileassociation@philips.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\gogear@songbirdnest.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\gonzo@songbirdnest.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\gracenote@songbirdnest.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\langpack-cs@songbirdnest.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\mashTape@songbirdnest.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\msc@songbirdnest.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\mtp@songbirdnest.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\philips-addon-manager@philips.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\philips-branding@philips.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\philips-likemusic@philips.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\philips-minimizetotray@philips.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\philips-msc-mtp-switch@philips.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\philips-promotions@philips.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\philips-skin@philips.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\philips-ui@philips.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\purplerain@songbirdnest.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\sharing@songbirdnest.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\windowsmedia@songbirdnest.com [not found]
FF NewTab: Mozilla\Firefox\Profiles\3wyzfidh.default -> about:newtab
FF Extension: (No Name) - C:\Program Files\Mozilla Firefox\extensions\{FD2FD708-1F6F-4B68-B141-C5778F0C19BB} [2016-11-09] [not signed]
C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
Browser Configuration Utility (HKLM\...\{A2F991E7-DDCD-42B7-AFEC-47789A099FDC}) (Version: 1.1.18.0 - DeviceVM Inc.) <==== ATTENTION
Task: {04C04BF2-BBD1-438A-B61C-88011EED42E7} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {23C20BAD-4A26-42F2-8649-62A49A81C886} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
U3 idsvc; no ImagePath
Task: {04C04BF2-BBD1-438A-B61C-88011EED42E7} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {0F781CC2-7366-4498-99C7-A4D133F5F5F4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2016-04-06] (Google Inc.)
Task: {23C20BAD-4A26-42F2-8649-62A49A81C886} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {2B205C13-83DC-407B-B473-80F927F6BC17} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {30BA1575-0202-4983-998F-668C3EE9689C} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
Task: {64A7FEAF-A7FC-4216-A9E9-84444195D903} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {6FD8F1AF-4C67-4127-9843-9E6E70A2911C} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {7B376DC1-82D2-452A-8D0B-DC6E541B6952} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {B5264621-D982-42B2-9CB0-D7C9428C839C} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {BC4E3E2E-75AF-4C38-81EA-397C1D29893F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2016-04-06] (Google Inc.)
Task: {BE6F0DEC-7454-44A3-94B7-502E2DAB1AF9} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {C3A4A034-412E-4CA5-8411-36D2F6C13F80} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {D612EAA6-B716-46BD-80E4-495A70BFA70E} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {F61E355E-7E54-47E0-8B01-60799899074B} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {F6360C12-9539-4552-B2DC-CDB835C99CAA} - \Systweak-Support-Dock -> No File <==== ATTENTION
Task: {F9121AB7-1E05-447D-8ADA-00A3701C9E95} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Shortcut: C:\Users\Hurych\Desktop\Účto\ÚČTO 2015.LNK -> C:\UCTO2015\U.BAT ()
Shortcut: C:\Users\Hurych\Desktop\Účto\ÚČTO 2016.LNK -> C:\UCTO2016\U.BAT ()
AlternateDataStreams: C:\ProgramData\TEMP:0888F409 [148]
AlternateDataStreams: C:\ProgramData\TEMP:3440EB47 [286]
AlternateDataStreams: C:\ProgramData\TEMP:66633281 [136]
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\100sexlinks.com -> 100sexlinks.com
MSCONFIG\startupreg: seznam-listicka-distribuce => "C:\Program Files\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate

EmptyTemp:
End

(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).

Ulož jej na na plochu jako fixlist.txt


Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.

Zbytky AVG i jeden zápis z Aviry.
Je třeba odinstalovat tímto:
Stáhněte si a nainstalujte Revo Uninstaller FreePlease download and install Revo Uninstaller Free
http://www.revouninstaller.com/start_fr ... nload.html
Poklepáním na Revo Uninstaller jej spustit.
Ze seznamu programů klikněte dvakrát na programu odstranit
Až budete vyzváni, zda chcete odinstalovat klepněte na tlačítko Ano.
Ujistěte se, že je vybrána možnost Mírný potom klepněte na tlačítko Další.
Program bude probíhat, Pokud budete vyzváni znovu klepněte na tlačítko Ano
Při vestavěný Uninstaller je dokončena klepněte na tlačítko Další.
Jakmile program hledal zbytky klepněte na tlačítko Další.
Zkontrolujte / zaškrtněte položky Bolded jen na seznamu a potom klepněte na tlačítko Odstranit
Po vyzvání klepněte na Ano a pak na další.
dal šek na všechny složky, které se nachází a vyberte možnost odstranění
Po zobrazení výzvy vyberte ano, pak na další
Poté, co udělal na tlačítko Dokončit.

Drive c: (MĂstnĂ disk C) (Fixed) (Total:73.99 GB) (Free:5.96 GB) NTFS
Totální nedostatek volného místa na disku!! Něco odinstaluj , smaž. Máš mít nejméně 15-20% volného místa na syst. disku , pro zajištění bezproblémového chodu windows!!

[labutak3]

Hezký večer.
Postupoval jsem opět podle návodu. Vše jsem zkopíroval do poznámkového bloku, uložil na polochu jako fixlist.txt. Spustil jsem FrSt, stiskl tlačítko Fix jen jednou a řeklo mě to " No fixlist.txt found." V návodu ale nebylo, že tam mám fixlist vložit. Přesto jsem to zkusila l ukázala se stejná hláška a nic .
Tak nevím co dělám špatně. Moc se omlouvám ale asi jsem to špatně pochopil.

[jaro3]

Program FRST.exe musí být na ploše , ne v žádné složce!
Fixlist.txt musí být tak na ploše.

[labutak3]

Hezký večer.
Moc se omlouvám, že zdržuji.Myslel jsem, že vše je na ploše, ale FRST.exe byl sice na ploše ale pouze zástupce. Přikládám Log z FRST.

Fix result of Farbar Recovery Scan Tool (x86) Version: 06-11-2016
Ran by Hurych (11-11-2016 21:51:45) Run:1
Running from C:\Users\Hurych\Desktop
Loaded Profiles: Hurych (Available Profiles: Hurych & DefaultAppPool)
Boot Mode: Normal

==============================================

fixlist content:
*****************

Start
CloseProcesses:
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\.DEFAULT -> {35bf257a-d6a6-404f-bd03-fbae9824f981} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz&sourceid=IE_5
SearchScopes: HKU\.DEFAULT -> {439bac55-8de2-417c-ac69-43a6075d7e44} URL = hxxp://www.firmy.cz/phr/{searchTerms}?sourceid=IE_5
SearchScopes: HKU\.DEFAULT -> {7b6f3db2-cfe4-42db-adfc-1f939a3afd05} URL = hxxp://www.mapy.cz/?query={searchTerms}&sourceid=IE_5
SearchScopes: HKU\.DEFAULT -> {f8f350fb-b419-492d-b3b7-37c98eabb59a} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=IE_5
SearchScopes: HKU\S-1-5-21-3926796986-3061243883-951121101-1000 -> {012E1000-F331-11DB-8314-0800200C9A66} URL = hxxp://www.google.com/search?q={searchTerms}
SearchScopes: HKU\S-1-5-21-3926796986-3061243883-951121101-1000 -> {414916E0-E00A-443A-84A7-831DFB905C7B} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_5
SearchScopes: HKU\S-1-5-21-3926796986-3061243883-951121101-1000 -> {504BC20B-85A6-4D27-B418-96E1F161FEAD} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_5
SearchScopes: HKU\S-1-5-21-3926796986-3061243883-951121101-1000 -> {58DB53E9-6791-4E05-B4D2-89CD9E7DB032} URL = hxxp://www.mapy.cz/?query={searchTerms}&sourceid=QuickSearch_5
SearchScopes: HKU\S-1-5-21-3926796986-3061243883-951121101-1000 -> {6A07F2D6-97EA-449B-AF53-3E22FCE6FDE2} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz&sourceid=QuickSearch_5
SearchScopes: HKU\S-1-5-21-3926796986-3061243883-951121101-1000 -> {6A1806CD-94D4-4689-BA73-E35EA1EA9990} URL = hxxp://www.google.com/search?q={sear
SearchScopes: HKU\S-1-5-21-3926796986-3061243883-951121101-1000 -> {6AEBD73C-DF9B-408F-95D6-FD8C6302C46F} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_5
SearchScopes: HKU\S-1-5-21-3926796986-3061243883-951121101-1000 -> {CFED0946-7B45-48BB-BC0E-848659302830} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&sourceid=QuickSearch_5
SearchScopes: HKU\S-1-5-21-3926796986-3061243883-951121101-1000 -> {D5473130-1BB8-4E2A-A92C-9FB0228AE7BA} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_5
SearchScopes: HKU\S-1-5-21-3926796986-3061243883-951121101-1000 -> {EB70C53E-740B-4C3E-BBF5-DC7B8303F920} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid=QuickSearch_5
Toolbar: HKU\.DEFAULT -> No Name - {34AB3C4C-DA1A-4067-96F4-31452C7CFE65} - No File
FF Extension: (No Name) - C:\Program Files\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com [not found]
FF NewTab: Philips-Songbird\Profiles\ky8oeux3.default -> about:newtab
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\albumart@songbirdnest.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\cd-rip@songbirdnest.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\ewaacdec@songbirdnest.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\ewmp3enc@songbirdnest.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\fileassociation@philips.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\gogear@songbirdnest.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\gonzo@songbirdnest.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\gracenote@songbirdnest.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\langpack-cs@songbirdnest.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\mashTape@songbirdnest.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\msc@songbirdnest.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\mtp@songbirdnest.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\philips-addon-manager@philips.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\philips-branding@philips.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\philips-likemusic@philips.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\philips-minimizetotray@philips.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\philips-msc-mtp-switch@philips.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\philips-promotions@philips.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\philips-skin@philips.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\philips-ui@philips.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\purplerain@songbirdnest.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\sharing@songbirdnest.com [not found]
FF Extension: (No Name) - C:\Program Files\Philips\Philips Songbird\extensions\windowsmedia@songbirdnest.com [not found]
FF NewTab: Mozilla\Firefox\Profiles\3wyzfidh.default -> about:newtab
FF Extension: (No Name) - C:\Program Files\Mozilla Firefox\extensions\{FD2FD708-1F6F-4B68-B141-C5778F0C19BB} [2016-11-09] [not signed]
C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
Browser Configuration Utility (HKLM\...\{A2F991E7-DDCD-42B7-AFEC-47789A099FDC}) (Version: 1.1.18.0 - DeviceVM Inc.) <==== ATTENTION
Task: {04C04BF2-BBD1-438A-B61C-88011EED42E7} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {23C20BAD-4A26-42F2-8649-62A49A81C886} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
U3 idsvc; no ImagePath
Task: {04C04BF2-BBD1-438A-B61C-88011EED42E7} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {0F781CC2-7366-4498-99C7-A4D133F5F5F4} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2016-04-06] (Google Inc.)
Task: {23C20BAD-4A26-42F2-8649-62A49A81C886} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {2B205C13-83DC-407B-B473-80F927F6BC17} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {30BA1575-0202-4983-998F-668C3EE9689C} - \OfficeSoftwareProtectionPlatform\SvcRestartTask -> No File <==== ATTENTION
Task: {64A7FEAF-A7FC-4216-A9E9-84444195D903} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {6FD8F1AF-4C67-4127-9843-9E6E70A2911C} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {7B376DC1-82D2-452A-8D0B-DC6E541B6952} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {B5264621-D982-42B2-9CB0-D7C9428C839C} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {BC4E3E2E-75AF-4C38-81EA-397C1D29893F} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2016-04-06] (Google Inc.)
Task: {BE6F0DEC-7454-44A3-94B7-502E2DAB1AF9} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {C3A4A034-412E-4CA5-8411-36D2F6C13F80} - \Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d -> No File <==== ATTENTION
Task: {D612EAA6-B716-46BD-80E4-495A70BFA70E} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {F61E355E-7E54-47E0-8B01-60799899074B} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {F6360C12-9539-4552-B2DC-CDB835C99CAA} - \Systweak-Support-Dock -> No File <==== ATTENTION
Task: {F9121AB7-1E05-447D-8ADA-00A3701C9E95} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime -> No File <==== ATTENTION
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Shortcut: C:\Users\Hurych\Desktop\Účto\ÚČTO 2015.LNK -> C:\UCTO2015\U.BAT ()
Shortcut: C:\Users\Hurych\Desktop\Účto\ÚČTO 2016.LNK -> C:\UCTO2016\U.BAT ()
AlternateDataStreams: C:\ProgramData\TEMP:0888F409 [148]
AlternateDataStreams: C:\ProgramData\TEMP:3440EB47 [286]
AlternateDataStreams: C:\ProgramData\TEMP:66633281 [136]
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\008i.com -> 008i.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\008k.com -> 008k.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\00hq.com -> 00hq.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\0190-dialers.com -> 0190-dialers.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\01i.info -> 01i.info
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\02pmnzy5eo29bfk4.com -> 02pmnzy5eo29bfk4.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\05p.com -> 05p.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\07ic5do2myz3vzpk.com -> 07ic5do2myz3vzpk.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\08nigbmwk43i01y6.com -> 08nigbmwk43i01y6.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\093qpeuqpmz6ebfa.com -> 093qpeuqpmz6ebfa.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\0calories.net -> 0calories.net
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\0cj.net -> 0cj.net
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\0scan.com -> 0scan.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\1-britney-spears-nude.com -> 1-britney-spears-nude.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\1-domains-registrations.com -> 1-domains-registrations.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\1-se.com -> 1-se.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\1001movie.com -> 1001movie.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\1001night.biz -> 1001night.biz
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\100gal.net -> 100gal.net
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\100sexlinks.com -> 100sexlinks.com
MSCONFIG\startupreg: seznam-listicka-distribuce => "C:\Program Files\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate

EmptyTemp:
End

!
*****************

Processes closed successfully.
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => key removed successfully.
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully.
"HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{35bf257a-d6a6-404f-bd03-fbae9824f981}" => key removed successfully.
HKCR\CLSID\{35bf257a-d6a6-404f-bd03-fbae9824f981} => key not found.
"HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{439bac55-8de2-417c-ac69-43a6075d7e44}" => key removed successfully.
HKCR\CLSID\{439bac55-8de2-417c-ac69-43a6075d7e44} => key not found.
"HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{7b6f3db2-cfe4-42db-adfc-1f939a3afd05}" => key removed successfully.
HKCR\CLSID\{7b6f3db2-cfe4-42db-adfc-1f939a3afd05} => key not found.
"HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{f8f350fb-b419-492d-b3b7-37c98eabb59a}" => key removed successfully.
HKCR\CLSID\{f8f350fb-b419-492d-b3b7-37c98eabb59a} => key not found.
"HKU\S-1-5-21-3926796986-3061243883-951121101-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{012E1000-F331-11DB-8314-0800200C9A66}" => key removed successfully.
HKCR\CLSID\{012E1000-F331-11DB-8314-0800200C9A66} => key not found.
"HKU\S-1-5-21-3926796986-3061243883-951121101-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{414916E0-E00A-443A-84A7-831DFB905C7B}" => key removed successfully.
HKCR\CLSID\{414916E0-E00A-443A-84A7-831DFB905C7B} => key not found.
"HKU\S-1-5-21-3926796986-3061243883-951121101-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{504BC20B-85A6-4D27-B418-96E1F161FEAD}" => key removed successfully.
HKCR\CLSID\{504BC20B-85A6-4D27-B418-96E1F161FEAD} => key not found.
"HKU\S-1-5-21-3926796986-3061243883-951121101-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{58DB53E9-6791-4E05-B4D2-89CD9E7DB032}" => key removed successfully.
HKCR\CLSID\{58DB53E9-6791-4E05-B4D2-89CD9E7DB032} => key not found.
"HKU\S-1-5-21-3926796986-3061243883-951121101-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A07F2D6-97EA-449B-AF53-3E22FCE6FDE2}" => key removed successfully.
HKCR\CLSID\{6A07F2D6-97EA-449B-AF53-3E22FCE6FDE2} => key not found.
"HKU\S-1-5-21-3926796986-3061243883-951121101-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" => key removed successfully.
HKCR\CLSID\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} => key not found.
"HKU\S-1-5-21-3926796986-3061243883-951121101-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6AEBD73C-DF9B-408F-95D6-FD8C6302C46F}" => key removed successfully.
HKCR\CLSID\{6AEBD73C-DF9B-408F-95D6-FD8C6302C46F} => key not found.
"HKU\S-1-5-21-3926796986-3061243883-951121101-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CFED0946-7B45-48BB-BC0E-848659302830}" => key removed successfully.
HKCR\CLSID\{CFED0946-7B45-48BB-BC0E-848659302830} => key not found.
"HKU\S-1-5-21-3926796986-3061243883-951121101-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{D5473130-1BB8-4E2A-A92C-9FB0228AE7BA}" => key removed successfully.
HKCR\CLSID\{D5473130-1BB8-4E2A-A92C-9FB0228AE7BA} => key not found.
"HKU\S-1-5-21-3926796986-3061243883-951121101-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{EB70C53E-740B-4C3E-BBF5-DC7B8303F920}" => key removed successfully.
HKCR\CLSID\{EB70C53E-740B-4C3E-BBF5-DC7B8303F920} => key not found.
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{34AB3C4C-DA1A-4067-96F4-31452C7CFE65} => value removed successfully.
HKCR\CLSID\{34AB3C4C-DA1A-4067-96F4-31452C7CFE65} => key not found.
C:\Program Files\TomTom HOME 2\xul\extensions\MapShare-status@tomtom.com => path removed successfully.
Firefox "newtab" removed successfully.
C:\Program Files\Philips\Philips Songbird\extensions\albumart@songbirdnest.com => path removed successfully.
C:\Program Files\Philips\Philips Songbird\extensions\cd-rip@songbirdnest.com => path removed successfully.
C:\Program Files\Philips\Philips Songbird\extensions\ewaacdec@songbirdnest.com => path removed successfully.
C:\Program Files\Philips\Philips Songbird\extensions\ewmp3enc@songbirdnest.com => path removed successfully.
C:\Program Files\Philips\Philips Songbird\extensions\fileassociation@philips.com => path removed successfully.
C:\Program Files\Philips\Philips Songbird\extensions\gogear@songbirdnest.com => path removed successfully.
C:\Program Files\Philips\Philips Songbird\extensions\gonzo@songbirdnest.com => path removed successfully.
C:\Program Files\Philips\Philips Songbird\extensions\gracenote@songbirdnest.com => path removed successfully.
C:\Program Files\Philips\Philips Songbird\extensions\langpack-cs@songbirdnest.com => path removed successfully.
C:\Program Files\Philips\Philips Songbird\extensions\mashTape@songbirdnest.com => path removed successfully.
C:\Program Files\Philips\Philips Songbird\extensions\msc@songbirdnest.com => path removed successfully.
C:\Program Files\Philips\Philips Songbird\extensions\mtp@songbirdnest.com => path removed successfully.
C:\Program Files\Philips\Philips Songbird\extensions\philips-addon-manager@philips.com => path removed successfully.
C:\Program Files\Philips\Philips Songbird\extensions\philips-branding@philips.com => path removed successfully.
C:\Program Files\Philips\Philips Songbird\extensions\philips-likemusic@philips.com => path removed successfully.
C:\Program Files\Philips\Philips Songbird\extensions\philips-minimizetotray@philips.com => path removed successfully.
C:\Program Files\Philips\Philips Songbird\extensions\philips-msc-mtp-switch@philips.com => path removed successfully.
C:\Program Files\Philips\Philips Songbird\extensions\philips-promotions@philips.com => path removed successfully.
C:\Program Files\Philips\Philips Songbird\extensions\philips-skin@philips.com => path removed successfully.
C:\Program Files\Philips\Philips Songbird\extensions\philips-ui@philips.com => path removed successfully.
C:\Program Files\Philips\Philips Songbird\extensions\purplerain@songbirdnest.com => path removed successfully.
C:\Program Files\Philips\Philips Songbird\extensions\sharing@songbirdnest.com => path removed successfully.
C:\Program Files\Philips\Philips Songbird\extensions\windowsmedia@songbirdnest.com => path removed successfully.
Firefox "newtab" removed successfully.
C:\Program Files\Mozilla Firefox\extensions\{FD2FD708-1F6F-4B68-B141-C5778F0C19BB} => moved successfully
C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => moved successfully
Browser Configuration Utility (HKLM\...\{A2F991E7-DDCD-42B7-AFEC-47789A099FDC}) (Version: 1.1.18.0 - DeviceVM Inc.) <==== ATTENTION => Error: No automatic fix found for this entry.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{04C04BF2-BBD1-438A-B61C-88011EED42E7}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{04C04BF2-BBD1-438A-B61C-88011EED42E7}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{23C20BAD-4A26-42F2-8649-62A49A81C886}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{23C20BAD-4A26-42F2-8649-62A49A81C886}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B" => key removed successfully.
idsvc => service removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{04C04BF2-BBD1-438A-B61C-88011EED42E7} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent => key not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{0F781CC2-7366-4498-99C7-A4D133F5F5F4}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0F781CC2-7366-4498-99C7-A4D133F5F5F4}" => key removed successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{23C20BAD-4A26-42F2-8649-62A49A81C886} => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => key not found.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{2B205C13-83DC-407B-B473-80F927F6BC17}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2B205C13-83DC-407B-B473-80F927F6BC17}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{30BA1575-0202-4983-998F-668C3EE9689C}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{30BA1575-0202-4983-998F-668C3EE9689C}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OfficeSoftwareProtectionPlatform\SvcRestartTask" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{64A7FEAF-A7FC-4216-A9E9-84444195D903}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{64A7FEAF-A7FC-4216-A9E9-84444195D903}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6FD8F1AF-4C67-4127-9843-9E6E70A2911C}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6FD8F1AF-4C67-4127-9843-9E6E70A2911C}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{7B376DC1-82D2-452A-8D0B-DC6E541B6952}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{7B376DC1-82D2-452A-8D0B-DC6E541B6952}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{B5264621-D982-42B2-9CB0-D7C9428C839C}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B5264621-D982-42B2-9CB0-D7C9428C839C}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BC4E3E2E-75AF-4C38-81EA-397C1D29893F}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BC4E3E2E-75AF-4C38-81EA-397C1D29893F}" => key removed successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BE6F0DEC-7454-44A3-94B7-502E2DAB1AF9}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BE6F0DEC-7454-44A3-94B7-502E2DAB1AF9}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C3A4A034-412E-4CA5-8411-36D2F6C13F80}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C3A4A034-412E-4CA5-8411-36D2F6C13F80}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OnIdle-5d" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{D612EAA6-B716-46BD-80E4-495A70BFA70E}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D612EAA6-B716-46BD-80E4-495A70BFA70E}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F61E355E-7E54-47E0-8B01-60799899074B}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F61E355E-7E54-47E0-8B01-60799899074B}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfig" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{F6360C12-9539-4552-B2DC-CDB835C99CAA}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F6360C12-9539-4552-B2DC-CDB835C99CAA}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Systweak-Support-Dock" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F9121AB7-1E05-447D-8ADA-00A3701C9E95}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F9121AB7-1E05-447D-8ADA-00A3701C9E95}" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeReminderTime" => key removed successfully.
C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => not found.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\Users\Hurych\Desktop\Účto\ÚČTO 2015.LNK => moved successfully
C:\Users\Hurych\Desktop\Účto\ÚČTO 2016.LNK => moved successfully
C:\ProgramData\TEMP => ":0888F409" ADS removed successfully..
C:\ProgramData\TEMP => ":3440EB47" ADS removed successfully..
C:\ProgramData\TEMP => ":66633281" ADS removed successfully..
"HKU\S-1-5-21-3926796986-3061243883-951121101-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\008i.com" => key removed successfully.
"HKU\S-1-5-21-3926796986-3061243883-951121101-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\008k.com" => key removed successfully.
"HKU\S-1-5-21-3926796986-3061243883-951121101-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\00hq.com" => key removed successfully.
"HKU\S-1-5-21-3926796986-3061243883-951121101-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\0190-dialers.com" => key removed successfully.
"HKU\S-1-5-21-3926796986-3061243883-951121101-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\01i.info" => key removed successfully.
"HKU\S-1-5-21-3926796986-3061243883-951121101-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\02pmnzy5eo29bfk4.com" => key removed successfully.
"HKU\S-1-5-21-3926796986-3061243883-951121101-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\05p.com" => key removed successfully.
"HKU\S-1-5-21-3926796986-3061243883-951121101-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\07ic5do2myz3vzpk.com" => key removed successfully.
"HKU\S-1-5-21-3926796986-3061243883-951121101-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\08nigbmwk43i01y6.com" => key removed successfully.
"HKU\S-1-5-21-3926796986-3061243883-951121101-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\093qpeuqpmz6ebfa.com" => key removed successfully.
"HKU\S-1-5-21-3926796986-3061243883-951121101-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\0calories.net" => key removed successfully.
"HKU\S-1-5-21-3926796986-3061243883-951121101-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\0cj.net" => key removed successfully.
"HKU\S-1-5-21-3926796986-3061243883-951121101-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\0scan.com" => key removed successfully.
"HKU\S-1-5-21-3926796986-3061243883-951121101-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\1-britney-spears-nude.com" => key removed successfully.
"HKU\S-1-5-21-3926796986-3061243883-951121101-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\1-domains-registrations.com" => key removed successfully.
"HKU\S-1-5-21-3926796986-3061243883-951121101-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\1-se.com" => key removed successfully.
"HKU\S-1-5-21-3926796986-3061243883-951121101-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\1001movie.com" => key removed successfully.
"HKU\S-1-5-21-3926796986-3061243883-951121101-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\1001night.biz" => key removed successfully.
"HKU\S-1-5-21-3926796986-3061243883-951121101-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\100gal.net" => key removed successfully.
"HKU\S-1-5-21-3926796986-3061243883-951121101-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\100sexlinks.com" => key removed successfully.
"HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\seznam-listicka-distribuce" => key removed successfully.
! => Error: No automatic fix found for this entry.

=========== EmptyTemp: ==========

BITS transfer queue => 296808 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 27681740 B
Java, Flash, Steam htmlcache => 523 B
Windows/system/drivers => 14599573 B
Edge => 55594 B
Chrome => 490144432 B
Firefox => 221660006 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 16674 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
LocalService => 172642 B
NetworkService => 1292 B
Hurych => 286720415 B
DefaultAppPool => 16674 B

RecycleBin => 0 B
EmptyTemp: => 993.1 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 21:53:14 ====

[jaro3]

To AVG a Avira šly odinstalovat? Pokud ne , tak to budeme muset odmazat v FRST.
Takže asi znovu sken FRST a oba nové logy.

[labutak3]

Hezký den.
To AVG asi šlo odinstalovat to druhé si nejsem jist. Přikládám oba logy po novém skenu ve FRST.

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 06-11-2016
Ran by Hurych (administrator) on HURYCH-PC (12-11-2016 09:46:52)
Running from C:\Users\Hurych\Desktop
Loaded Profiles: Hurych (Available Profiles: Hurych & DefaultAppPool)
Platform: Microsoft Windows 10 Home Version 1607 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Logitech Inc.) C:\Program Files\Common Files\logishrd\LVMVFM\LVPrcSrv.exe
(Software602 a.s.) C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
(The Phone Support) C:\Program Files\The Phone Support Dock\TPSDock.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.251.0_x86__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
(Hewlett-Packard) C:\Program Files\HP\Digital Imaging\bin\HpqSRmon.exe
(Hewlett-Packard) C:\Program Files\HP\HP Software Update\hpwuschd2.exe
(MyHeritage) C:\Program Files\MyHeritage\Bin\FTBCheckUpdates.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\Office15\ONENOTEM.EXE
(Microsoft Inc.) C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.12.10310.0_x86__8wekyb3d8bbwe\Solitaire.exe
() C:\Program Files\WindowsApps\Microsoft.XboxApp_22.23.11005.0_x86__8wekyb3d8bbwe\XboxApp.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe


==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [8555040 2010-04-06] (Realtek Semiconductor)
HKLM\...\Run: [Windows Mobile Device Center] => C:\WINDOWS\WindowsMobile\wmdc.exe [648072 2007-05-31] (Microsoft Corporation)
HKLM\...\Run: [hpqSRMon] => C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe [150016 2008-08-20] (Hewlett-Packard)
HKLM\...\Run: [HP Software Update] => C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM\...\Run: [Family Tree Builder Update] => C:\Program Files\MyHeritage\Bin\FTBCheckUpdates.exe [2477056 2015-03-02] (MyHeritage)
HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\Run: [ConMet] => C:\Program Files\ConMet\ConMet.exe [4912688 2015-09-03] (Mgr. Tomáš Papoušek)
Startup: C:\Users\Hurych\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Odeslat do OneNote.lnk [2015-07-02]
ShortcutTarget: Odeslat do OneNote.lnk -> C:\Program Files\Microsoft Office\Office15\ONENOTEM.EXE (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.51.250 192.168.51.252
Tcpip\..\Interfaces\{0d3505ca-1a23-42ee-b1e2-8dc2f7b9fd9e}: [DhcpNameServer] 192.168.51.250 192.168.51.252

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = www.google.com
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_25\bin\ssv.dll [2015-01-15] (Oracle Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL [2016-10-11] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_25\bin\jp2ssv.dll [2015-01-15] (Oracle Corporation)
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL [2016-05-17] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Hurych\AppData\Roaming\TomTom\HOME\Profiles\tq72uewg.default [2016-11-09]
FF ProfilePath: C:\Users\Hurych\AppData\Roaming\Philips-Songbird\Profiles\ky8oeux3.default [2016-11-11]
FF Homepage: Philips-Songbird\Profiles\ky8oeux3.default -> about:home
FF ProfilePath: C:\Users\Hurych\AppData\Roaming\Mozilla\Firefox\Profiles\3wyzfidh.default [2016-11-12]
FF Homepage: Mozilla\Firefox\Profiles\3wyzfidh.default -> www.seznam.cz
FF Extension: (HyperTranslate) - C:\Users\Hurych\AppData\Roaming\Mozilla\Firefox\Profiles\3wyzfidh.default\Extensions\hypertranslate@mdc.com.xpi [2016-09-04]
FF Extension: (Seznam lištička) - C:\Users\Hurych\AppData\Roaming\Mozilla\Firefox\Profiles\3wyzfidh.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2016-11-09]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_23_0_0_207.dll [2016-11-09] ()
FF Plugin: @java.com/DTPlugin,version=10.5.1 -> C:\Windows\system32\npDeployJava1.dll [2012-07-05] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\plugin2\npjp2.dll [2015-01-15] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~3\Office15\NPSPWRAP.DLL [2014-01-23] (Microsoft Corporation)
FF Plugin: @software602.cz/602XML Filler -> C:\Program Files\Software602\602XML\Filler\npfiller.dll [2012-08-06] (Software602 a.s.)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np-mswmp.dll [2007-04-10] (Microsoft Corporation)
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll [2016-10-01] (Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: Default
CHR StartupUrls: Default -> "hxxp://www.seznam.cz/"
CHR Profile: C:\Users\Hurych\AppData\Local\Google\Chrome\User Data\Default [2016-11-11]
CHR Extension: (Prezentace Google) - C:\Users\Hurych\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-07-05]
CHR Extension: (Dokumenty Google) - C:\Users\Hurych\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-07-07]
CHR Extension: (Disk Google) - C:\Users\Hurych\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-29]
CHR Extension: (Simple Color Picker) - C:\Users\Hurych\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgpflpaaoojlkdoknkacblidkkgighie [2016-10-16]
CHR Extension: (YouTube) - C:\Users\Hurych\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-25]
CHR Extension: (Vyhledávání Google) - C:\Users\Hurych\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-29]
CHR Extension: (Tabulky Google) - C:\Users\Hurych\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-07-05]
CHR Extension: (Dokumenty Google offline) - C:\Users\Hurych\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-17]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Hurych\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-02]
CHR Extension: (Gmail) - C:\Users\Hurych\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-07-07]
CHR Extension: (Chrome Media Router) - C:\Users\Hurych\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-10-30]
CHR Extension: (Detail.cz) - C:\Users\Hurych\AppData\Local\Google\Chrome\User Data\Default\Extensions\pmhpdlmhembafjlpohanpgkpmnpanbcd [2016-03-17]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 602XML Updater; C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s.)
S2 ES lite Service; C:\Program Files\Gigabyte\EasySaver\ESSVR.EXE [68136 2009-08-24] ()
S3 hpqcxs08; C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll [248832 2009-05-21] (Hewlett-Packard Co.) [File not signed]
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed]
S3 IJPLMSVC; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [116104 2009-09-08] ()
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [271496 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [84928 2016-07-16] (Microsoft Corporation)
S2 Nero BackItUp Scheduler 4.0; C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe [X]
S2 ZAMSvc; "C:\Users\Hurych\Desktop\Zemana AntiMalware\ZAM.exe" /service [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 AODDriver; C:\Program Files\Gigabyte\ET6\i386\AODDriver.sys [36864 2010-03-12] (Advanced Micro Devices) [File not signed]
S3 ezplay; C:\WINDOWS\System32\Drivers\ezplay.sys [94208 2014-05-21] (VSO Software)
R3 gdrv; C:\Windows\gdrv.sys [17488 2016-11-11] (Windows (R) 2000 DDK provider)
R0 giveio; C:\WINDOWS\System32\giveio.sys [5248 1996-04-03] () [File not signed]
S3 GVTDrv; C:\Windows\system32\Drivers\GVTDrv.sys [24944 2013-05-12] ()
R3 LVPr2Mon; C:\WINDOWS\System32\DRIVERS\LVPr2Mon.sys [25824 2010-05-07] ()
S3 MarvinBus; C:\WINDOWS\System32\drivers\MarvinBus.sys [171520 2005-09-23] (Pinnacle Systems GmbH)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [62976 2016-07-16] ()
R3 rt640x86; C:\WINDOWS\System32\drivers\rt640x86.sys [494080 2016-07-16] (Realtek )
R3 RTHDMIAzAudService; C:\WINDOWS\system32\drivers\RtHDMIV.sys [183584 2010-01-27] (Realtek Semiconductor Corp.)
R0 speedfan; C:\WINDOWS\System32\speedfan.sys [21696 2010-12-18] (Almico Software)
R1 ssmdrv; C:\WINDOWS\System32\DRIVERS\ssmdrv.sys [31848 2015-06-30] (Avira Operations GmbH & Co. KG)
S3 tbhsd; C:\WINDOWS\System32\drivers\tbhsd.sys [39016 2012-08-20] (RapidSolution Software AG)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [37912 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [244576 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [100192 2016-07-16] (Microsoft Corporation)
S3 WUDFWpdMtp; C:\WINDOWS\system32\DRIVERS\WUDFRd.sys [161280 2016-07-16] (Microsoft Corporation)
R1 ZAM_Guard; C:\WINDOWS\System32\drivers\zamguard32.sys [181496 2016-11-09] (Zemana Ltd.)
S1 ZAM; \??\C:\WINDOWS\System32\drivers\zam32.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-11-12 09:46 - 2016-11-12 09:47 - 00012375 _____ C:\Users\Hurych\Desktop\FRST.txt
2016-11-11 22:05 - 2016-11-11 22:05 - 00001273 _____ C:\Users\Public\Desktop\Revo Uninstaller.lnk
2016-11-11 22:05 - 2016-11-11 22:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Revo Uninstaller
2016-11-11 22:05 - 2016-11-11 22:05 - 00000000 ____D C:\Program Files\VS Revo Group
2016-11-11 22:00 - 2016-11-11 22:01 - 07100088 _____ (VS Revo Group ) C:\Users\Hurych\Desktop\revosetup.exe
2016-11-11 21:51 - 2016-11-11 21:53 - 00031072 _____ C:\Users\Hurych\Desktop\Fixlog.txt
2016-11-11 21:51 - 2016-11-11 21:51 - 01759744 _____ (Farbar) C:\Users\Hurych\Desktop\FRST.exe
2016-11-09 20:57 - 2016-11-12 09:46 - 00000000 ___DC C:\FRST
2016-11-09 20:25 - 2016-11-11 10:59 - 00000000 ____D C:\Users\Hurych\Desktop\Zemana AntiMalware
2016-11-09 20:10 - 2016-11-09 20:10 - 00001091 _____ C:\Users\Hurych\Desktop\Zemana.AntiMalware.Setup.exe – zástupce.lnk
2016-11-09 20:05 - 2016-11-12 09:46 - 00066814 _____ C:\WINDOWS\ZAM_Guard.krnl.trace
2016-11-09 20:05 - 2016-11-11 10:56 - 00162663 _____ C:\WINDOWS\ZAM.krnl.trace
2016-11-09 20:05 - 2016-11-09 20:12 - 00000000 ____D C:\Program Files\Zemana AntiMalware
2016-11-09 20:05 - 2016-11-09 20:05 - 00181496 _____ (Zemana Ltd.) C:\WINDOWS\system32\Drivers\zamguard32.sys
2016-11-09 20:05 - 2016-11-09 20:05 - 00000000 ____D C:\Users\Hurych\AppData\Local\Zemana
2016-11-09 10:30 - 2016-11-09 10:30 - 00000000 ___DC C:\zoek
2016-11-09 08:27 - 2016-11-09 10:45 - 00003243 ____C C:\runcheck.txt
2016-11-09 08:20 - 2016-11-09 17:40 - 00000947 _____ C:\Users\Hurych\Desktop\zoek.exe – zástupce.lnk
2016-11-09 08:13 - 2016-11-09 10:44 - 00000000 ___DC C:\zoek_backup
2016-11-09 04:05 - 2016-11-02 12:05 - 20969928 _____ (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
2016-11-09 04:05 - 2016-11-02 12:05 - 06657176 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Protection.PlayReady.dll
2016-11-09 04:05 - 2016-11-02 12:01 - 01263856 _____ (Microsoft Corporation) C:\WINDOWS\system32\msctf.dll
2016-11-09 04:05 - 2016-11-02 12:01 - 00276832 _____ (Microsoft Corporation) C:\WINDOWS\system32\input.dll
2016-11-09 04:05 - 2016-11-02 11:50 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\LaunchWinApp.exe
2016-11-09 04:05 - 2016-11-02 11:49 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32k.sys
2016-11-09 04:05 - 2016-11-02 11:47 - 00285184 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BlockedShutdown.dll
2016-11-09 04:05 - 2016-11-02 11:47 - 00047104 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Shell.Search.UriHandler.dll
2016-11-09 04:05 - 2016-11-02 11:45 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.BioFeedback.dll
2016-11-09 04:05 - 2016-11-02 11:44 - 00180224 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgent.exe
2016-11-09 04:05 - 2016-11-02 11:43 - 00557568 _____ (Microsoft Corporation) C:\WINDOWS\system32\StoreAgent.dll
2016-11-09 04:05 - 2016-11-02 11:42 - 00866816 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Cred.dll
2016-11-09 04:05 - 2016-11-02 11:42 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\InstallAgentUserBroker.exe
2016-11-09 04:05 - 2016-11-02 11:41 - 00215040 _____ (Microsoft Corporation) C:\WINDOWS\system32\ubpm.dll
2016-11-09 04:05 - 2016-11-02 11:39 - 00236544 _____ (Microsoft Corporation) C:\WINDOWS\system32\UIAnimation.dll
2016-11-09 04:05 - 2016-11-02 11:38 - 01013248 _____ (Microsoft Corporation) C:\WINDOWS\system32\wwansvc.dll
2016-11-09 04:05 - 2016-11-02 11:36 - 07626752 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.dll
2016-11-09 04:05 - 2016-11-02 11:36 - 01584128 _____ (Microsoft Corporation) C:\WINDOWS\system32\wlidsvc.dll
2016-11-09 04:05 - 2016-11-02 11:31 - 01228288 _____ (Microsoft Corporation) C:\WINDOWS\system32\usercpl.dll
2016-11-09 04:05 - 2016-11-02 11:29 - 07469056 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2016-11-09 04:05 - 2016-11-02 11:27 - 02458112 _____ (Microsoft Corporation) C:\WINDOWS\system32\themecpl.dll
2016-11-09 04:05 - 2016-11-02 11:27 - 01056768 _____ (Microsoft Corporation) C:\WINDOWS\system32\wifinetworkmanager.dll
2016-11-09 04:05 - 2016-11-02 11:27 - 00422400 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinapi.dll
2016-11-09 04:05 - 2016-11-02 11:26 - 02747392 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcore.dll
2016-11-09 04:05 - 2016-11-02 11:26 - 01880576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Logon.dll
2016-11-09 04:05 - 2016-11-02 11:26 - 01235968 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kbase.sys
2016-11-09 04:05 - 2016-11-02 11:26 - 00712192 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Search.dll
2016-11-09 04:05 - 2016-11-02 11:25 - 02998272 _____ (Microsoft Corporation) C:\WINDOWS\system32\win32kfull.sys
2016-11-09 04:05 - 2016-11-02 11:25 - 01556480 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Immersive.dll
2016-11-09 04:05 - 2016-11-02 11:23 - 03106304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2016-11-09 04:05 - 2016-11-02 11:23 - 02356736 _____ (Microsoft Corporation) C:\WINDOWS\system32\MSVidCtl.dll
2016-11-09 04:05 - 2016-10-28 04:11 - 00446896 _____ C:\WINDOWS\system32\ApnDatabase.xml
2016-11-09 04:04 - 2016-11-02 12:22 - 06020448 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntoskrnl.exe
2016-11-09 04:04 - 2016-11-02 12:22 - 01583112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ntdll.dll
2016-11-09 04:04 - 2016-11-02 12:22 - 00601712 _____ (Microsoft Corporation) C:\WINDOWS\system32\oleaut32.dll
2016-11-09 04:04 - 2016-11-02 12:21 - 01957216 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ntfs.sys
2016-11-09 04:04 - 2016-11-02 12:12 - 00341344 _____ (Microsoft Corporation) C:\WINDOWS\system32\msv1_0.dll
2016-11-09 04:04 - 2016-11-02 12:09 - 02257104 _____ (Microsoft Corporation) C:\WINDOWS\system32\iertutil.dll
2016-11-09 04:04 - 2016-11-02 12:08 - 00602464 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupEngine.dll
2016-11-09 04:04 - 2016-11-02 12:08 - 00111968 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupApi.dll
2016-11-09 04:04 - 2016-11-02 12:06 - 00080224 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpudd.dll
2016-11-09 04:04 - 2016-11-02 12:05 - 03892352 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfcore.dll
2016-11-09 04:04 - 2016-11-02 12:05 - 00951904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsvr.dll
2016-11-09 04:04 - 2016-11-02 12:04 - 00596832 _____ (Microsoft Corporation) C:\WINDOWS\system32\comctl32.dll
2016-11-09 04:04 - 2016-11-02 12:00 - 00042336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\iorate.sys
2016-11-09 04:04 - 2016-11-02 11:51 - 00327168 _____ (Microsoft Corporation) C:\WINDOWS\system32\microsoft-windows-system-events.dll
2016-11-09 04:04 - 2016-11-02 11:48 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\TSpkg.dll
2016-11-09 04:04 - 2016-11-02 11:46 - 00176128 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkDesktopSettings.dll
2016-11-09 04:04 - 2016-11-02 11:45 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfsensorgroup.dll
2016-11-09 04:04 - 2016-11-02 11:44 - 00222720 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkBindingEngineMigPlugin.dll
2016-11-09 04:04 - 2016-11-02 11:43 - 00271872 _____ (Microsoft Corporation) C:\WINDOWS\system32\PsmServiceExtHost.dll
2016-11-09 04:04 - 2016-11-02 11:43 - 00198144 _____ (Microsoft Corporation) C:\WINDOWS\system32\FSClient.dll
2016-11-09 04:04 - 2016-11-02 11:42 - 00384512 _____ (Microsoft Corporation) C:\WINDOWS\system32\DataSenseHandlers.dll
2016-11-09 04:04 - 2016-11-02 11:42 - 00306176 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieproxy.dll
2016-11-09 04:04 - 2016-11-02 11:42 - 00202240 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetworkUXBroker.dll
2016-11-09 04:04 - 2016-11-02 11:41 - 00635904 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9diag.dll
2016-11-09 04:04 - 2016-11-02 11:40 - 00493056 _____ (Microsoft Corporation) C:\WINDOWS\system32\WlanMediaManager.dll
2016-11-09 04:04 - 2016-11-02 11:40 - 00387072 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettings.UserAccountsHandlers.dll
2016-11-09 04:04 - 2016-11-02 11:40 - 00198656 _____ (Microsoft Corporation) C:\WINDOWS\system32\indexeddbserver.dll
2016-11-09 04:04 - 2016-11-02 11:39 - 00482304 _____ (Microsoft Corporation) C:\WINDOWS\system32\ipnathlp.dll
2016-11-09 04:04 - 2016-11-02 11:39 - 00465920 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockAppBroker.dll
2016-11-09 04:04 - 2016-11-02 11:33 - 12349952 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmp.dll
2016-11-09 04:04 - 2016-11-02 11:33 - 03307520 _____ (Microsoft Corporation) C:\WINDOWS\system32\MFMediaEngine.dll
2016-11-09 04:04 - 2016-11-02 11:32 - 03776000 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_nt.dll
2016-11-09 04:04 - 2016-11-02 11:31 - 00090624 _____ (Microsoft Corporation) C:\WINDOWS\system32\olepro32.dll
2016-11-09 04:04 - 2016-11-02 11:30 - 12175360 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieframe.dll
2016-11-09 04:04 - 2016-11-02 11:29 - 03666432 _____ (Microsoft Corporation) C:\WINDOWS\system32\jscript9.dll
2016-11-09 04:04 - 2016-11-02 11:29 - 00503808 _____ (Microsoft Corporation) C:\WINDOWS\system32\FrameServer.dll
2016-11-09 04:04 - 2016-11-02 11:29 - 00122368 _____ (Microsoft Corporation) C:\WINDOWS\system32\NPSM.dll
2016-11-09 04:04 - 2016-11-02 11:28 - 06044160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakra.dll
2016-11-09 04:04 - 2016-11-02 11:28 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\asycfilt.dll
2016-11-09 04:04 - 2016-11-02 11:26 - 03595776 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcorets.dll
2016-11-09 04:04 - 2016-11-02 11:26 - 01120768 _____ (Microsoft Corporation) C:\WINDOWS\system32\lsasrv.dll
2016-11-09 04:04 - 2016-11-02 11:26 - 00182784 _____ (Microsoft Corporation) C:\WINDOWS\system32\NetSetupSvc.dll
2016-11-09 04:04 - 2016-08-02 05:30 - 00822784 _____ (Microsoft Corporation) C:\WINDOWS\system32\Chakradiag.dll
2016-11-09 04:03 - 2016-11-02 13:01 - 00315744 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\atmfd.dll
2016-11-09 04:03 - 2016-11-02 12:24 - 00890984 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.efi
2016-11-09 04:03 - 2016-11-02 12:24 - 00783552 _____ (Microsoft Corporation) C:\WINDOWS\system32\winresume.exe
2016-11-09 04:03 - 2016-11-02 12:23 - 01073816 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.efi
2016-11-09 04:03 - 2016-11-02 12:23 - 00945760 _____ (Microsoft Corporation) C:\WINDOWS\system32\winload.exe
2016-11-09 04:03 - 2016-11-02 12:21 - 00276320 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\clfs.sys
2016-11-09 04:03 - 2016-11-02 12:10 - 02323728 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d10warp.dll
2016-11-09 04:03 - 2016-11-02 12:05 - 00959112 _____ (Microsoft Corporation) C:\WINDOWS\system32\ole32.dll
2016-11-09 04:03 - 2016-11-02 12:04 - 04312248 _____ (Microsoft Corporation) C:\WINDOWS\explorer.exe
2016-11-09 04:03 - 2016-11-02 12:01 - 01425000 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d9.dll
2016-11-09 04:03 - 2016-11-02 12:01 - 01413664 _____ (Microsoft Corporation) C:\WINDOWS\system32\gdi32full.dll
2016-11-09 04:03 - 2016-11-02 12:01 - 00545936 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontdrvhost.exe
2016-11-09 04:03 - 2016-11-02 11:49 - 00037376 _____ (Adobe Systems) C:\WINDOWS\system32\atmlib.dll
2016-11-09 04:03 - 2016-11-02 11:46 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininetlui.dll
2016-11-09 04:03 - 2016-11-02 11:45 - 00164352 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcTok.exe
2016-11-09 04:03 - 2016-11-02 11:45 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dab.dll
2016-11-09 04:03 - 2016-11-02 11:45 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\browserbroker.dll
2016-11-09 04:03 - 2016-11-02 11:43 - 00731136 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d8.dll
2016-11-09 04:03 - 2016-11-02 11:43 - 00270336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dxtrans.dll
2016-11-09 04:03 - 2016-11-02 11:43 - 00126464 _____ (Microsoft Corporation) C:\WINDOWS\system32\iepeers.dll
2016-11-09 04:03 - 2016-11-02 11:42 - 00549376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ActionCenterCPL.dll
2016-11-09 04:03 - 2016-11-02 11:42 - 00506880 _____ (Microsoft Corporation) C:\WINDOWS\system32\DevicePairing.dll
2016-11-09 04:03 - 2016-11-02 11:42 - 00322560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpAXHolder.dll
2016-11-09 04:03 - 2016-11-02 11:42 - 00202752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.HumanInterfaceDevice.dll
2016-11-09 04:03 - 2016-11-02 11:41 - 00517632 _____ (Microsoft Corporation) C:\WINDOWS\system32\FlightSettings.dll
2016-11-09 04:03 - 2016-11-02 11:40 - 00896512 _____ (Microsoft Corporation) C:\WINDOWS\system32\fontext.dll
2016-11-09 04:03 - 2016-11-02 11:40 - 00548352 _____ (Microsoft Corporation) C:\WINDOWS\system32\ddraw.dll
2016-11-09 04:03 - 2016-11-02 11:38 - 00623616 _____ (Microsoft Corporation) C:\WINDOWS\system32\bisrv.dll
2016-11-09 04:03 - 2016-11-02 11:37 - 19415040 _____ (Microsoft Corporation) C:\WINDOWS\system32\edgehtml.dll
2016-11-09 04:03 - 2016-11-02 11:36 - 19415552 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtml.dll
2016-11-09 04:03 - 2016-11-02 11:36 - 00078336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bowser.sys
2016-11-09 04:03 - 2016-11-02 11:33 - 00598528 _____ (Microsoft Corporation) C:\WINDOWS\system32\WpcRefreshTask.dll
2016-11-09 04:03 - 2016-11-02 11:31 - 03196416 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdp.dll
2016-11-09 04:03 - 2016-11-02 11:29 - 01247232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Globalization.dll
2016-11-09 04:03 - 2016-11-02 11:28 - 04423680 _____ (Microsoft Corporation) C:\WINDOWS\system32\ExplorerFrame.dll
2016-11-09 04:03 - 2016-11-02 11:27 - 00580608 _____ (Microsoft Corporation) C:\WINDOWS\system32\hgcpl.dll
2016-11-09 04:03 - 2016-11-02 11:26 - 02484736 _____ (Microsoft Corporation) C:\WINDOWS\system32\gameux.dll
2016-11-09 04:03 - 2016-11-02 11:26 - 01595392 _____ (Microsoft Corporation) C:\WINDOWS\system32\urlmon.dll
2016-11-09 04:03 - 2016-11-02 11:26 - 01509376 _____ (Microsoft Corporation) C:\WINDOWS\system32\ieapfltr.dll
2016-11-09 04:03 - 2016-11-02 11:26 - 00912896 _____ (Microsoft Corporation) C:\WINDOWS\system32\comdlg32.dll
2016-11-09 04:03 - 2016-11-02 11:25 - 02256384 _____ (Microsoft Corporation) C:\WINDOWS\system32\wininet.dll
2016-11-09 04:03 - 2016-11-02 11:23 - 00199680 _____ (Microsoft Corporation) C:\WINDOWS\system32\GlobCollationHost.dll
2016-11-09 04:03 - 2016-11-02 10:11 - 00788624 _____ C:\WINDOWS\system32\locale.nls
2016-11-09 04:02 - 2016-11-02 13:01 - 00484584 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSes.dll
2016-11-09 04:02 - 2016-11-02 12:21 - 00570720 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\acpi.sys
2016-11-09 04:02 - 2016-11-02 12:09 - 00544088 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\vhdmp.sys
2016-11-09 04:02 - 2016-11-02 12:05 - 00313088 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiodg.exe
2016-11-09 04:02 - 2016-11-02 11:47 - 00156672 _____ (Microsoft Corporation) C:\WINDOWS\system32\BcastDVRHelper.dll
2016-11-09 04:02 - 2016-11-02 11:46 - 00140288 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppCapture.dll
2016-11-09 04:02 - 2016-11-02 11:46 - 00132096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ACPBackgroundManagerPolicy.dll
2016-11-09 04:02 - 2016-11-02 11:45 - 00492032 _____ (Microsoft Corporation) C:\WINDOWS\system32\bcastdvr.exe
2016-11-09 04:02 - 2016-11-02 11:44 - 00231936 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.ApplicationModel.LockScreen.dll
2016-11-09 04:02 - 2016-11-02 11:44 - 00089088 _____ (Microsoft Corporation) C:\WINDOWS\system32\AuthExt.dll
2016-11-09 04:02 - 2016-11-02 11:42 - 00790528 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.desktop.dll
2016-11-09 04:02 - 2016-11-02 11:41 - 00136704 _____ (Microsoft Corporation) C:\WINDOWS\system32\LockScreenContent.dll
2016-11-09 04:02 - 2016-11-02 11:40 - 01375232 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentExtensions.onecore.dll
2016-11-09 04:02 - 2016-11-02 11:38 - 00760832 _____ (Microsoft Corporation) C:\WINDOWS\system32\appwiz.cpl
2016-11-09 04:02 - 2016-11-02 11:37 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXApplicabilityBlob.dll
2016-11-09 04:02 - 2016-11-02 11:36 - 00063488 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetailsUpdate.dll
2016-11-09 04:02 - 2016-11-02 11:32 - 00786432 _____ (Microsoft Corporation) C:\WINDOWS\system32\audiosrv.dll
2016-11-09 04:02 - 2016-11-02 11:30 - 00134144 _____ (Microsoft Corporation) C:\WINDOWS\system32\ErrorDetails.dll
2016-11-09 04:02 - 2016-11-02 11:28 - 01946112 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentServer.dll
2016-11-09 04:02 - 2016-11-02 11:26 - 00798208 _____ (Microsoft Corporation) C:\WINDOWS\system32\authui.dll
2016-11-04 18:04 - 2016-11-08 19:14 - 00000554 _____ C:\Users\Hurych\Desktop\JRT.txt
2016-11-03 20:39 - 2016-11-08 18:56 - 00000000 ___DC C:\AdwCleaner
2016-11-03 20:15 - 2016-11-03 20:15 - 00000000 ____D C:\WINDOWS\Panther
2016-10-28 15:57 - 2016-10-15 05:36 - 04970224 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppsvc.exe
2016-10-28 15:57 - 2016-10-15 05:34 - 01969912 _____ (Microsoft Corporation) C:\WINDOWS\system32\hevcdecoder.dll
2016-10-28 15:57 - 2016-10-15 05:19 - 00272720 _____ (Microsoft Corporation) C:\WINDOWS\system32\wintrust.dll
2016-10-28 15:57 - 2016-10-15 05:18 - 00454496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\storport.sys
2016-10-28 15:57 - 2016-10-15 05:15 - 01557808 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmde.dll
2016-10-28 15:57 - 2016-10-15 05:15 - 00687936 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvproc.dll
2016-10-28 15:57 - 2016-10-15 05:14 - 01384704 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppobjs.dll
2016-10-28 15:57 - 2016-10-15 05:14 - 00802600 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeManagerObj.dll
2016-10-28 15:57 - 2016-10-15 05:11 - 01345504 _____ (Microsoft Corporation) C:\WINDOWS\system32\user32.dll
2016-10-28 15:57 - 2016-10-15 05:10 - 01968992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tcpip.sys
2016-10-28 15:57 - 2016-10-15 05:10 - 00482656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\afd.sys
2016-10-28 15:57 - 2016-10-15 05:00 - 00254464 _____ (Microsoft Corporation) C:\WINDOWS\system32\twinui.pcshell.dll
2016-10-28 15:57 - 2016-10-15 04:58 - 00158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusNotification.exe
2016-10-28 15:57 - 2016-10-15 04:55 - 00035840 _____ (Microsoft Corporation) C:\WINDOWS\system32\TpmTasks.dll
2016-10-28 15:57 - 2016-10-15 04:54 - 00394240 _____ (Microsoft Corporation) C:\WINDOWS\system32\MusUpdateHandlers.dll
2016-10-28 15:57 - 2016-10-15 04:53 - 00705024 _____ (Microsoft Corporation) C:\WINDOWS\system32\taskbarcpl.dll
2016-10-28 15:57 - 2016-10-15 04:52 - 00632832 _____ (Microsoft Corporation) C:\WINDOWS\system32\sud.dll
2016-10-28 15:57 - 2016-10-15 04:52 - 00288256 _____ (Microsoft Corporation) C:\WINDOWS\system32\systemcpl.dll
2016-10-28 15:57 - 2016-10-15 04:51 - 00132608 _____ (Microsoft Corporation) C:\WINDOWS\system32\winsrv.dll
2016-10-28 15:57 - 2016-10-15 04:50 - 02333184 _____ (Microsoft Corporation) C:\WINDOWS\system32\WsmSvc.dll
2016-10-28 15:57 - 2016-10-15 04:50 - 00416256 _____ (Microsoft Corporation) C:\WINDOWS\system32\usocore.dll
2016-10-28 15:57 - 2016-10-15 04:50 - 00353792 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Bluetooth.dll
2016-10-28 15:57 - 2016-10-15 04:50 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\updatepolicy.dll
2016-10-28 15:57 - 2016-10-15 04:49 - 00348672 _____ (Microsoft Corporation) C:\WINDOWS\system32\zipfldr.dll
2016-10-28 15:57 - 2016-10-15 04:49 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system32\wscsvc.dll
2016-10-28 15:57 - 2016-10-15 04:49 - 00033280 _____ (Microsoft Corporation) C:\WINDOWS\system32\WSManHTTPConfig.exe
2016-10-28 15:57 - 2016-10-15 04:48 - 01323008 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_fs.dll
2016-10-28 15:57 - 2016-10-15 04:48 - 00158720 _____ (Microsoft Corporation) C:\WINDOWS\system32\EditionUpgradeHelper.dll
2016-10-28 15:57 - 2016-10-15 04:47 - 01113600 _____ (Microsoft Corporation) C:\WINDOWS\system32\wsp_health.dll
2016-10-28 15:57 - 2016-10-15 04:44 - 00636928 _____ (Microsoft Corporation) C:\WINDOWS\system32\winhttp.dll
2016-10-28 15:57 - 2016-10-15 04:43 - 02748928 _____ (Microsoft Corporation) C:\WINDOWS\system32\mispace.dll
2016-10-28 15:57 - 2016-10-15 04:37 - 01485312 _____ (Microsoft Corporation) C:\WINDOWS\system32\diagtrack.dll
2016-10-28 15:57 - 2016-10-15 04:37 - 00579072 _____ (Microsoft Corporation) C:\WINDOWS\system32\winlogon.exe
2016-10-28 15:57 - 2016-10-15 04:36 - 01170944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Speech.dll
2016-10-28 15:57 - 2016-10-15 04:36 - 00358912 _____ (Microsoft Corporation) C:\WINDOWS\system32\stobject.dll
2016-10-28 15:56 - 2016-10-15 05:20 - 01898336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgkrnl.sys
2016-10-28 15:56 - 2016-10-15 05:20 - 00550752 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms2.sys
2016-10-28 15:56 - 2016-10-15 05:20 - 00342880 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dxgmms1.sys
2016-10-28 15:56 - 2016-10-15 05:15 - 01853776 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfmp4srcsnk.dll
2016-10-28 15:56 - 2016-10-15 05:15 - 01123368 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfplat.dll
2016-10-28 15:56 - 2016-10-15 05:14 - 00675064 _____ (Microsoft Corporation) C:\WINDOWS\system32\sppwinob.dll
2016-10-28 15:56 - 2016-10-15 05:10 - 00254656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpeffects.dll
2016-10-28 15:56 - 2016-10-15 05:00 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\stdole2.tlb
2016-10-28 15:56 - 2016-10-15 04:58 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\splwow64.exe
2016-10-28 15:56 - 2016-10-15 04:57 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpdxm.dll
2016-10-28 15:56 - 2016-10-15 04:57 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshtmled.dll
2016-10-28 15:56 - 2016-10-15 04:56 - 00186368 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdd.dll
2016-10-28 15:56 - 2016-10-15 04:54 - 00239616 _____ (Microsoft Corporation) C:\WINDOWS\system32\moshostcore.dll
2016-10-28 15:56 - 2016-10-15 04:54 - 00186880 _____ (Microsoft Corporation) C:\WINDOWS\system32\SettingsHandlers_Flights.dll
2016-10-28 15:56 - 2016-10-15 04:54 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\wmpshell.dll
2016-10-28 15:56 - 2016-10-15 04:49 - 00838144 _____ (Microsoft Corporation) C:\WINDOWS\system32\JpMapControl.dll
2016-10-28 15:56 - 2016-10-15 04:48 - 00088576 _____ (Microsoft Corporation) C:\WINDOWS\system32\MDMAppInstaller.exe
2016-10-28 15:56 - 2016-10-15 04:47 - 04612608 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.dll
2016-10-28 15:56 - 2016-10-15 04:47 - 00488448 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpnprv.dll
2016-10-28 15:56 - 2016-10-15 04:46 - 00471552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.BackgroundMediaPlayback.dll
2016-10-28 15:56 - 2016-10-15 04:46 - 00336896 _____ (Microsoft Corporation) C:\WINDOWS\system32\msinfo32.exe
2016-10-28 15:56 - 2016-10-15 04:44 - 00747008 _____ (Microsoft Corporation) C:\WINDOWS\system32\RemoteNaturalLanguage.dll
2016-10-28 15:56 - 2016-10-15 04:44 - 00470016 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.BackgroundMediaPlayer.dll
2016-10-28 15:56 - 2016-10-15 04:42 - 06108672 _____ (Microsoft Corporation) C:\WINDOWS\system32\mos.dll
2016-10-28 15:56 - 2016-10-15 04:42 - 00459776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Media.Playback.MediaPlayer.dll
2016-10-28 15:56 - 2016-10-15 04:42 - 00076800 _____ (Microsoft Corporation) C:\WINDOWS\system32\powercfg.exe
2016-10-28 15:56 - 2016-10-15 04:41 - 05376000 _____ (Microsoft Corporation) C:\WINDOWS\system32\BingMaps.dll
2016-10-28 15:56 - 2016-10-15 04:40 - 01135616 _____ (Microsoft Corporation) C:\WINDOWS\system32\wpncore.dll
2016-10-28 15:56 - 2016-10-15 04:38 - 00675840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.dll
2016-10-28 15:56 - 2016-10-15 04:37 - 00884224 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2016-10-28 15:56 - 2016-10-15 04:37 - 00715264 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapControlCore.dll
2016-10-28 15:56 - 2016-10-15 04:37 - 00705536 _____ (Microsoft Corporation) C:\WINDOWS\system32\MapsStore.dll
2016-10-28 15:56 - 2016-10-15 04:36 - 00542208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Networking.Connectivity.dll
2016-10-28 15:56 - 2016-10-15 04:36 - 00528384 _____ (Microsoft Corporation) C:\WINDOWS\system32\spoolsv.exe
2016-10-28 15:56 - 2016-10-15 04:35 - 00760832 _____ (Microsoft Corporation) C:\WINDOWS\system32\NMAA.dll
2016-10-28 15:55 - 2016-10-15 06:11 - 01415520 _____ (Microsoft Corporation) C:\WINDOWS\system32\appraiser.dll
2016-10-28 15:55 - 2016-10-15 06:11 - 01026400 _____ (Microsoft Corporation) C:\WINDOWS\system32\aeinv.dll
2016-10-28 15:55 - 2016-10-15 06:11 - 00496992 _____ (Microsoft Corporation) C:\WINDOWS\system32\devinv.dll
2016-10-28 15:55 - 2016-10-15 06:11 - 00486752 _____ (Microsoft Corporation) C:\WINDOWS\system32\generaltel.dll
2016-10-28 15:55 - 2016-10-15 06:11 - 00277344 _____ (Microsoft Corporation) C:\WINDOWS\system32\invagent.dll
2016-10-28 15:55 - 2016-10-15 06:11 - 00224608 _____ (Microsoft Corporation) C:\WINDOWS\system32\DeviceCensus.exe
2016-10-28 15:55 - 2016-10-15 06:11 - 00192864 _____ (Microsoft Corporation) C:\WINDOWS\system32\aepic.dll
2016-10-28 15:55 - 2016-10-15 06:11 - 00115552 _____ (Microsoft Corporation) C:\WINDOWS\system32\acmigration.dll
2016-10-28 15:55 - 2016-10-15 06:11 - 00069472 _____ (Microsoft Corporation) C:\WINDOWS\system32\CompatTelRunner.exe
2016-10-28 15:55 - 2016-10-15 05:33 - 00455040 _____ (Microsoft Corporation) C:\WINDOWS\system32\DolbyDecMFT.dll
2016-10-28 15:55 - 2016-10-15 05:26 - 00055136 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\dam.sys
2016-10-28 15:55 - 2016-10-15 05:20 - 02276736 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3d11.dll
2016-10-28 15:55 - 2016-10-15 05:18 - 02166232 _____ (Microsoft Corporation) C:\WINDOWS\system32\combase.dll
2016-10-28 15:55 - 2016-10-15 05:18 - 01556712 _____ (Microsoft Corporation) C:\WINDOWS\system32\crypt32.dll
2016-10-28 15:55 - 2016-10-15 05:18 - 00846560 _____ (Microsoft Corporation) C:\WINDOWS\system32\WinTypes.dll
2016-10-28 15:55 - 2016-10-15 05:18 - 00749920 _____ (Microsoft Corporation) C:\WINDOWS\system32\drvstore.dll
2016-10-28 15:55 - 2016-10-15 05:18 - 00576400 _____ (Microsoft Corporation) C:\WINDOWS\system32\wer.dll
2016-10-28 15:55 - 2016-10-15 05:18 - 00186424 _____ (Microsoft Corporation) C:\WINDOWS\system32\weretw.dll
2016-10-28 15:55 - 2016-10-15 05:18 - 00067424 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\crashdmp.sys
2016-10-28 15:55 - 2016-10-15 05:10 - 00781664 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\http.sys
2016-10-28 15:55 - 2016-10-15 05:06 - 05685760 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Data.Pdf.dll
2016-10-28 15:55 - 2016-10-15 05:00 - 01631232 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.Resources.dll
2016-10-28 15:55 - 2016-10-15 04:59 - 00187904 _____ (Microsoft Corporation) C:\WINDOWS\system32\mfksproxy.dll
2016-10-28 15:55 - 2016-10-15 04:58 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\efsext.dll
2016-10-28 15:55 - 2016-10-15 04:56 - 00306688 _____ (Microsoft Corporation) C:\WINDOWS\system32\esentutl.exe
2016-10-28 15:55 - 2016-10-15 04:56 - 00231424 _____ (Microsoft Corporation) C:\WINDOWS\system32\wc_storage.dll
2016-10-28 15:55 - 2016-10-15 04:55 - 00254976 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpusersvc.dll
2016-10-28 15:55 - 2016-10-15 04:55 - 00142336 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.Devices.WiFi.dll
2016-10-28 15:55 - 2016-10-15 04:55 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\HttpsDataSource.dll
2016-10-28 15:55 - 2016-10-15 04:54 - 00410112 _____ (Microsoft Corporation) C:\WINDOWS\system32\SndVolSSO.dll
2016-10-28 15:55 - 2016-10-15 04:54 - 00168448 _____ (Microsoft Corporation) C:\WINDOWS\system32\AudioSrvPolicyManager.dll
2016-10-28 15:55 - 2016-10-15 04:54 - 00152064 _____ (Microsoft Corporation) C:\WINDOWS\system32\autoplay.dll
2016-10-28 15:55 - 2016-10-15 04:54 - 00079360 _____ (Microsoft Corporation) C:\WINDOWS\system32\BthRadioMedia.dll
2016-10-28 15:55 - 2016-10-15 04:52 - 00293888 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdpsvc.dll
2016-10-28 15:55 - 2016-10-15 04:51 - 13868544 _____ (Microsoft Corporation) C:\WINDOWS\system32\Windows.UI.Xaml.dll
2016-10-28 15:55 - 2016-10-15 04:51 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dhcpcore6.dll
2016-10-28 15:55 - 2016-10-15 04:50 - 00310272 _____ (Microsoft Corporation) C:\WINDOWS\system32\AppXDeploymentClient.dll
2016-10-28 15:55 - 2016-10-15 04:48 - 00827392 _____ (Microsoft Corporation) C:\WINDOWS\system32\iphlpsvc.dll
2016-10-28 15:55 - 2016-10-15 04:48 - 00797696 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2016-10-28 15:55 - 2016-10-15 04:43 - 01406976 _____ (Microsoft Corporation) C:\WINDOWS\system32\LocationFramework.dll
2016-10-28 15:55 - 2016-10-15 04:41 - 00444928 _____ (Microsoft Corporation) C:\WINDOWS\system32\energy.dll
2016-10-28 15:55 - 2016-10-15 04:41 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\iscsiwmi.dll
2016-10-28 15:55 - 2016-10-15 04:39 - 00806400 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3D12.dll
2016-10-28 15:55 - 2016-10-15 04:39 - 00357376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Geolocation.dll
2016-10-28 15:55 - 2016-10-15 04:39 - 00109568 _____ (Microsoft Corporation) C:\WINDOWS\system32\chartv.dll
2016-10-28 15:55 - 2016-10-15 04:38 - 01993216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dwmcore.dll
2016-10-28 15:55 - 2016-10-15 04:37 - 03733504 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_47.dll
2016-10-28 15:55 - 2016-10-15 04:37 - 00709120 _____ (Microsoft Corporation) C:\WINDOWS\system32\CPFilters.dll
2016-10-28 15:55 - 2016-10-15 04:36 - 01523712 _____ (Microsoft Corporation) C:\WINDOWS\system32\FntCache.dll
2016-10-28 15:55 - 2016-10-15 04:36 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmifw.dll
2016-10-28 15:55 - 2016-10-15 04:35 - 02708992 _____ (Microsoft Corporation) C:\WINDOWS\system32\esent.dll
2016-10-28 15:55 - 2016-10-15 04:35 - 02005504 _____ (Microsoft Corporation) C:\WINDOWS\system32\DWrite.dll
2016-10-28 15:55 - 2016-10-15 04:33 - 00188928 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\ahcache.sys
2016-10-28 15:54 - 2016-10-15 05:40 - 01126496 _____ (Microsoft Corporation) C:\WINDOWS\system32\ClipUp.exe
2016-10-28 15:54 - 2016-10-15 05:27 - 00421216 _____ (Microsoft Corporation) C:\WINDOWS\system32\pcasvc.dll
2016-10-28 15:54 - 2016-10-15 05:18 - 00458592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\spaceport.sys
2016-10-28 15:54 - 2016-10-15 05:18 - 00261984 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\pci.sys
2016-10-28 15:54 - 2016-10-15 04:59 - 00216576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\xboxgip.sys
2016-10-28 15:54 - 2016-10-15 04:56 - 00327680 _____ (Microsoft Corporation) C:\WINDOWS\system32\daxexec.dll
2016-10-28 15:54 - 2016-10-15 04:56 - 00095232 _____ (Microsoft Corporation) C:\WINDOWS\system32\BluetoothApis.dll
2016-10-28 15:54 - 2016-10-15 04:55 - 00116224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidclass.sys
2016-10-28 15:54 - 2016-10-15 04:46 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\capimg.sys
2016-10-28 15:54 - 2016-10-15 04:43 - 00500736 _____ (Microsoft Corporation) C:\WINDOWS\system32\NotificationController.dll
2016-10-23 16:10 - 2016-10-28 20:12 - 00000000 ____D C:\Program Files\Mozilla Firefox
2016-10-21 13:09 - 2016-10-21 13:09 - 00000000 ____D C:\WINDOWS\Minidump
2016-10-13 20:00 - 2016-11-11 18:07 - 00000000 ____D C:\Program Files\Common Files\Nero

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-11-12 09:43 - 2016-09-23 09:23 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2016-11-12 08:57 - 2016-07-16 09:29 - 00000000 ___HD C:\Program Files\WindowsApps
2016-11-12 08:57 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\AppReadiness
2016-11-11 22:01 - 2016-04-23 17:55 - 00002231 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-11-11 21:55 - 2016-09-23 10:00 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2016-11-11 21:55 - 2011-07-16 20:22 - 00000000 ____D C:\WINDOWS\system32\logishrd
2016-11-11 21:55 - 2011-02-26 13:32 - 00017488 _____ (Windows (R) 2000 DDK provider) C:\WINDOWS\gdrv.sys
2016-11-11 21:53 - 2016-09-23 09:35 - 00000000 ____D C:\Users\Hurych
2016-11-11 21:53 - 2016-07-16 03:22 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2016-11-11 21:53 - 2014-04-24 20:54 - 00000000 ____D C:\Users\Hurych\AppData\LocalLow\Temp
2016-11-11 21:52 - 2015-05-06 19:06 - 00000000 ____D C:\Users\Hurych\Desktop\Účto
2016-11-11 18:07 - 2011-03-05 11:50 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero
2016-11-11 18:07 - 2011-03-05 11:49 - 00000000 ____D C:\ProgramData\Nero
2016-11-11 18:07 - 2011-03-05 11:49 - 00000000 ____D C:\Program Files\Nero
2016-11-10 20:59 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\rescache
2016-11-10 19:48 - 2016-03-31 09:21 - 00000000 ____D C:\Users\Hurych\AppData\Local\Packages
2016-11-10 07:47 - 2016-02-13 13:10 - 00000000 __RHD C:\Users\Public\AccountPictures
2016-11-09 22:25 - 2016-07-16 09:28 - 00000000 ____D C:\WINDOWS\INF
2016-11-09 22:18 - 2016-09-23 09:31 - 01894460 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2016-11-09 22:18 - 2016-07-16 18:01 - 00626904 _____ C:\WINDOWS\system32\perfh005.dat
2016-11-09 22:18 - 2016-07-16 18:01 - 00151666 _____ C:\WINDOWS\system32\perfc005.dat
2016-11-09 22:14 - 2016-09-23 09:22 - 00406672 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-11-09 22:12 - 2016-07-16 09:29 - 00000000 ___RD C:\WINDOWS\ImmersiveControlPanel
2016-11-09 22:12 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\system32\WinBioPlugIns
2016-11-09 22:12 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\system32\oobe
2016-11-09 22:12 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\system32\migwiz
2016-11-09 22:12 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\ShellExperiences
2016-11-09 22:12 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\bcastdvr
2016-11-09 19:23 - 2016-07-16 09:19 - 00000000 ____D C:\WINDOWS\CbsTemp
2016-11-09 19:19 - 2013-07-28 22:29 - 00000000 ____D C:\WINDOWS\system32\MRT
2016-11-09 19:12 - 2014-05-08 21:16 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office 2013
2016-11-09 19:12 - 2011-02-26 14:58 - 138444440 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2016-11-09 18:55 - 2009-07-14 03:04 - 00000478 _____ C:\WINDOWS\win.ini
2016-11-09 02:34 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\system32\Macromed
2016-11-09 00:16 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2016-11-08 19:52 - 2014-07-31 09:37 - 00024688 _____ C:\WINDOWS\system32\Drivers\TrueSight.sys
2016-11-05 08:34 - 2014-07-22 19:23 - 00000000 ____D C:\ProgramData\Malwarebytes
2016-11-03 20:14 - 2015-07-31 08:12 - 00000000 ____D C:\Users\Hurych\AppData\Local\Avg
2016-11-03 20:14 - 2015-03-10 07:49 - 00000000 ____D C:\ProgramData\MFAData
2016-11-03 20:13 - 2015-10-29 13:07 - 00000000 ____D C:\Users\Hurych\AppData\Local\AvgSetupLog
2016-11-03 20:13 - 2015-08-17 15:14 - 00000000 ____D C:\ProgramData\AVG
2016-11-03 20:13 - 2015-07-04 07:49 - 00000000 ____D C:\Program Files\AVG
2016-11-03 20:12 - 2016-07-16 09:29 - 00000000 ___HD C:\WINDOWS\ELAMBKUP
2016-11-03 20:12 - 2015-07-04 07:50 - 00000000 __HDC C:\$AVG
2016-11-01 21:13 - 2011-02-26 13:58 - 00000000 ____D C:\Users\Hurych\AppData\Local\Google
2016-11-01 20:12 - 2014-05-03 13:25 - 00000000 ____D C:\Users\Hurych\Desktop\Domácí evidence
2016-10-30 13:57 - 2015-07-02 11:43 - 00000000 ____D C:\Users\Hurych\AppData\Local\Adobe
2016-10-30 10:27 - 2016-07-16 03:22 - 00008192 _____ C:\WINDOWS\system32\config\ELAM
2016-10-29 00:56 - 2016-07-16 09:31 - 00828408 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2016-10-29 00:56 - 2016-07-16 09:31 - 00176632 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2016-10-28 20:12 - 2015-02-01 18:53 - 00000000 ____D C:\Program Files\Mozilla Maintenance Service
2016-10-28 20:08 - 2016-07-16 09:29 - 00000000 ____D C:\WINDOWS\system32\appraiser
2016-10-28 20:07 - 2016-07-16 09:30 - 00015425 _____ C:\WINDOWS\system32\OEMDefaultAssociations.xml
2016-10-21 13:09 - 2016-10-04 21:07 - 00072192 ____N C:\WINDOWS\Minidump\102116-78562-01.dmp
2016-10-19 09:39 - 2015-12-04 17:05 - 00000000 ____D C:\Users\Hurych\Documents\MyHeritage

==================== Files in the root of some directories =======

2004-11-26 12:50 - 2004-11-26 12:50 - 0000844 _____ () C:\Program Files\Popis.txt
2011-04-26 19:43 - 2014-05-21 20:27 - 0087608 _____ () C:\Users\Hurych\AppData\Roaming\ezpinst.exe
2014-05-21 20:29 - 2014-06-13 11:44 - 0007861 _____ () C:\Users\Hurych\AppData\Roaming\ezplay.cat
2014-05-21 20:29 - 2014-06-13 11:44 - 0001104 _____ () C:\Users\Hurych\AppData\Roaming\ezplay.inf
2014-05-21 20:29 - 2014-06-13 11:44 - 0094208 _____ (VSO Software) C:\Users\Hurych\AppData\Roaming\ezplay.sys
2011-03-06 19:44 - 2016-05-20 19:25 - 0087608 _____ () C:\Users\Hurych\AppData\Roaming\inst.exe
2011-03-06 19:44 - 2016-05-20 19:25 - 0007887 _____ () C:\Users\Hurych\AppData\Roaming\pcouffin.cat
2011-03-06 19:44 - 2016-05-20 19:25 - 0001144 _____ () C:\Users\Hurych\AppData\Roaming\pcouffin.inf
2016-05-20 19:25 - 2016-05-20 19:25 - 0000055 _____ () C:\Users\Hurych\AppData\Roaming\pcouffin.log
2011-03-06 19:44 - 2016-05-20 19:25 - 0047360 _____ (VSO Software) C:\Users\Hurych\AppData\Roaming\pcouffin.sys
2011-08-19 08:19 - 2015-08-30 12:21 - 0019456 _____ () C:\Users\Hurych\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-04-09 19:28 - 2014-04-09 19:28 - 0001459 _____ () C:\Users\Hurych\AppData\Local\recently-used.xbel
2011-09-29 12:05 - 2015-03-11 11:41 - 0007605 _____ () C:\Users\Hurych\AppData\Local\Resmon.ResmonCfg
2011-02-28 10:55 - 2011-02-28 10:55 - 0000056 ____H () C:\ProgramData\ezsidmv.dat
2011-02-28 08:58 - 2011-03-14 22:33 - 0001195 _____ () C:\ProgramData\hpzinstall.log

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-11-09 18:47

==================== End of FRST.txt ============================

[labutak3]

Pokračování.

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 06-11-2016
Ran by Hurych (12-11-2016 09:47:49)
Running from C:\Users\Hurych\Desktop
Microsoft Windows 10 Home Version 1607 (X86) (2016-09-23 09:12:26)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3926796986-3061243883-951121101-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3926796986-3061243883-951121101-503 - Limited - Disabled)
Guest (S-1-5-21-3926796986-3061243883-951121101-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3926796986-3061243883-951121101-1009 - Limited - Enabled)
Hurych (S-1-5-21-3926796986-3061243883-951121101-1000 - Administrator - Enabled) => C:\Users\Hurych

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

@BIOS (HKLM\...\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}) (Version: 2.08 - GIGABYTE)
7-Zip 9.21beta (HKLM\...\7-Zip) (Version: - )
Adobe Flash Player 23 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 23.0.0.207 - Adobe Systems Incorporated)
Adobe Flash Player 24 PPAPI (HKLM\...\Adobe Flash Player PPAPI) (Version: 24.0.0.145 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.18) - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.18 - Adobe Systems Incorporated)
AutoGreen B10.0517.1 (HKLM\...\InstallShield_{C75FAD21-EC08-42F3-92D6-C9C0AB355345}) (Version: 1.00.0000 - GIGABYTE)
AutoGreen B10.0517.1 (Version: 1.00.0000 - GIGABYTE) Hidden
AVG Web TuneUp (HKLM\...\AVG Web TuneUp) (Version: 4.3.6.255 - AVG Technologies)
AviSynth 2.5 (HKLM\...\AviSynth) (Version: - )
Balíček ovladače systému Windows - Hewlett-Packard Image (04/27/2007 9.0.0.0) (HKLM\...\A6BCA7876CD547CFB5821019998F044515D81B74) (Version: 04/27/2007 9.0.0.0 - Hewlett-Packard)
Balíček ovladače systému Windows - Nokia pccsmcfd “LegacyDriver” (05/31/2012 7.1.2.0) (HKLM\...\17D063A0A9F5D5A225B76B1D9BCB5ADBE85C8382) (Version: 05/31/2012 7.1.2.0 - Nokia)
Browser Configuration Utility (HKLM\...\{A2F991E7-DDCD-42B7-AFEC-47789A099FDC}) (Version: 1.1.18.0 - DeviceVM Inc.) <==== ATTENTION
BufferChm (Version: 130.0.331.000 - Hewlett-Packard) Hidden
CameraHelperMsi (Version: 13.00.1774.0 - Logitech) Hidden
Canon Inkjet Printer/Scanner/Fax Extended Survey Program (HKLM\...\CANONIJPLM100) (Version: - )
Canon iP2700 series Printer Driver (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_iP2700_series) (Version: - )
Canon Utilities My Printer (HKLM\...\CanonMyPrinter) (Version: - )
ccc-core-static (Version: 2010.0406.2133.36843 - Název společnosti:) Hidden
CDex - Open Source Digital Audio CD Extractor (HKLM\...\CDex) (Version: 1.70.4.2009 - Georgy Berdyshev)
Centrum zařízení Windows Mobile (HKLM\...\{904CCF62-818D-4675-BC76-D37EB399F917}) (Version: 6.1.6965.0 - Microsoft Corporation)
Connection Meter (HKLM\...\ConMet) (Version: - )
Destinations (Version: 130.0.0.0 - Hewlett-Packard) Hidden
DocProc (Version: 13.0.0.0 - Hewlett-Packard) Hidden
Doplněk pro vytváření PDF dokumentů z Účta (HKLM\...\Doplněk pro vytváření PDF dokumentů z Účta_is1) (Version: - )
Easy Tune 6 B10.0516.1 (HKLM\...\InstallShield_{457D7505-D665-4F95-91C3-ECB8C56E9ACA}) (Version: 1.00.0000 - GIGABYTE)
Easy Tune 6 B10.0516.1 (Version: 1.00.0000 - GIGABYTE) Hidden
EasySaver B9.1214.1 (HKLM\...\{07300F01-89CA-4CF8-92BD-2A605EB83C95}) (Version: 1.00.0000 - Gigabyte)
erLT (Version: 1.20.138.34 - Logitech, Inc.) Hidden
ffdshow [rev 2583] [2009-01-05] (HKLM\...\ffdshow_is1) (Version: 1.0 - )
Free AVI to MP4 Converter 1.0 (HKLM\...\{756DF96D-E40E-4B52-A53D-036E3D6AAB44}_is1) (Version: - PolySoft Solutions)
Google Chrome (HKLM\...\Google Chrome) (Version: 54.0.2840.99 - Google Inc.)
Google Update Helper (Version: 1.3.31.5 - Google Inc.) Hidden
GPBaseService2 (Version: 130.0.371.000 - Hewlett-Packard) Hidden
Haali Media Splitter (HKLM\...\HaaliMkx) (Version: - )
HP Imaging Device Functions 13.0 (HKLM\...\HP Imaging Device Functions) (Version: 13.0 - HP)
HP Photosmart Essential 3.5 (HKLM\...\HP Photosmart Essential) (Version: 3.5 - HP)
HP Scanjet G2710 (HKLM\...\{26D127FF-C0BF-4387-8AF7-242F59D9D9D8}) (Version: 13.0 - HP)
HP Solution Center 13.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 13.0 - HP)
HP Update (HKLM\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
hpg2710 (Version: 13.0.0.0 - Hewlett-Packard) Hidden
HPPhotosmartEssential (Version: 2.04.0000 - Hewlett-Packard) Hidden
HPProductAssistant (Version: 130.0.371.000 - Hewlett-Packard) Hidden
ImagXpress (Version: 7.0.74.0 - Nero AG) Hidden
Internet Explorer (Version: 8 - Microsoft Corporation) Hidden
Java 8 Update 25 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218025F0}) (Version: 8.0.250 - Oracle Corporation)
Kniha verze 1.1 (HKLM\...\{27EB6C63-6FF1-4CE1-A7F5-E06D746D1785}_is1) (Version: 1.1 - Golden Books s.r.o.)
LAME v3.98.2 for Audacity (HKLM\...\LAME for Audacity_is1) (Version: - )
Logitech Vid HD (HKLM\...\Logitech Vid) (Version: 7.2 (7259) - Logitech Inc..)
Logitech Webcam Software (HKLM\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.0 - Logitech Inc.)
LP Recorder (HKLM\...\LP Recorder) (Version: - )
Microsoft Office Standard 2013 (HKLM\...\Office15.STANDARD) (Version: 15.0.4569.1506 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM\...\{6AFCA4E1-9B78-3640-8F72-A7BF33448200}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM\...\{4fcf070a-daac-45e9-a8b0-6850941f7ed8}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x86) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x86)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 49.0.2 (x86 cs) (HKLM\...\Mozilla Firefox 49.0.2 (x86 cs)) (Version: 49.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 49.0.2.6136 - Mozilla)
MSVC80_x86_v2 (Version: 1.0.3.0 - Nokia) Hidden
MSVC90_x86 (Version: 1.0.1.2 - Nokia) Hidden
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (HKLM\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MyHeritage Family Tree Builder (HKLM\...\Family Tree Builder) (Version: 7.0.0.7143 - MyHeritage.com)
Nástroje kontroly pravopisu pro Microsoft Office 2013 – čeština (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Nástroje korektúry balíka Microsoft Office 2013 - slovenčina (Version: 15.0.4569.1506 - Microsoft Corporation) Hidden
Nero 9 Essentials (HKLM\...\{13caf50d-8ca5-4b19-9b3d-e00abc3f4825}) (Version: - Nero AG)
NVIDIA PhysX (HKLM\...\{64467D47-FFE4-4FBC-ABBA-A0DB829A17EB}) (Version: 9.12.0613 - NVIDIA Corporation)
OCR Software by I.R.I.S. 13.0 (HKLM\...\HPOCR) (Version: 13.0 - HP)
PC Connectivity Solution (HKLM\...\{7390478C-8581-415E-92E9-2997D9306B81}) (Version: 12.0.32.0 - Nokia)
Photo Notifier and Animation Creator (HKLM\...\Photo Notifier and Animation Creator) (Version: 1.0.0.1009 - IncrediMail Ltd.)
RajÄŤe prĹŻvodce verze 1.59.54.269 (HKLM\...\rajce.net_is1) (Version: - rajce.net)
Realtek Ethernet Controller Driver For Windows 7 (HKLM\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.18.322.2010 - Realtek)
Realtek HDMI Audio Driver for ATI (HKLM\...\{5449FB4F-1802-4D5B-A6D8-087DB1142147}) (Version: 6.0.1.6034 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6083 - Realtek Semiconductor Corp.)
Registrace uživatele zařízení Canon iP2700 series (HKLM\...\Registrace uživatele zařízení Canon iP2700 series) (Version: - )
Revo Uninstaller 2.0.1 (HKLM\...\{A28DBDA2-3CC7-4ADC-8BFE-66D7743C6C97}_is1) (Version: 2.0.1 - VS Revo Group, Ltd.)
Scan (Version: 13.0.0.0 - Hewlett-Packard) Hidden
Service Pack 1 for Microsoft Office 2013 (KB2850036) 32-Bit Edition (HKLM\...\{90150000-0012-0000-0000-0000000FF1CE}_Office15.STANDARD_{7F6C4883-A18C-459A-82C1-A2F9403F2DA6}) (Version: - Microsoft)
Seznam Software (HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\SeznamInstall) (Version: - Seznam.cz)
Skype™ 7.21 (HKLM\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.21.100 - Skype Technologies S.A.)
Software602 Form Filler (HKLM\...\{00160B3F-653A-4EA7-947E-4000D3551E9E}) (Version: 4.60 - Software602 a.s.)
SolutionCenter (Version: 130.0.373.000 - Hewlett-Packard) Hidden
Sothink Movie DVD Maker (HKLM\...\{4F94119D-1B71-400e-9F04-B4E5CEAE71F8}_is1) (Version: 3.7 - SourceTec Software Co., LTD)
Sothink Movie DVD Maker 3.4 (HKLM\...\{45B8BD63-3163-47AF-94F9-FE863FC321BA}_is1) (Version: - )
Svátky a výročí (HKLM\...\{DAB2EE5B-8A5B-49A8-A5C2-12603468688E}) (Version: 2.06.0112 - Igor Gottwald - OKsoftware)
The Lord of the Rings FREE Trial (Version: 1.00.0000 - ATI Technologies Inc.) Hidden
TomTom HOME Visual Studio Merge Modules (HKLM\...\{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}) (Version: 1.0.2 - TomTom International B.V.)
Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version: 7.50a - Ghisler Software GmbH)
VCRedistSetup (Version: 1.0.0 - Nero AG) Hidden
Virtual COM Port Driver (HKLM\...\InstallShield_{9853299F-7AD8-4560-9896-60650BD8ACBF}) (Version: 1.3.1 - STMicroelectronics)
Virtual COM Port Driver (Version: 1.3.1 - STMicroelectronics) Hidden
Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.1 - VideoLAN)
VSO ConvertXToDVD 6 (HKLM\...\{8FC36FA6-C508-44FB-B137-1CB46D8258B2}_is1) (Version: 6.0.0.37 - VSO Software)
WebReg (Version: 130.0.132.017 - Hewlett-Packard) Hidden
Windows Driver Package - Google, Inc. (WinUSB) AndroidUsbDeviceClass (08/11/2009 2.0.0010.00002) (HKLM\...\B81055EA372C9E3EA5000B4BD9585D992D51F1DE) (Version: 08/11/2009 2.0.0010.00002 - Google, Inc.)
Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
Windows Movie Maker 2.6 (HKLM\...\{B3DAF54F-DB25-4586-9EF1-96D24BB14088}) (Version: 2.6.4037.0 - Microsoft Corporation)
WinRAR (HKLM\...\WinRAR archiver) (Version: - )
Zoner Photo Studio 13 (HKLM\...\ZonerPhotoStudio13_CZ_is1) (Version: 13.0.1.1 - ZONER software)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3926796986-3061243883-951121101-1000_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\InprocServer32 -> C:\WINDOWS\system32\shell32.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3926796986-3061243883-951121101-1000_Classes\CLSID\{BCAFD618-3FAE-4EFE-BF4E-4C43A7E1320B}\InprocServer32 -> C:\Program Files\Zoner\Photo Studio 13\Program32\SHELLEXT.DLL (ZONER software)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0EDCD8E2-6EE4-44A9-B173-BEF0948956AC} - System32\Tasks\{D6F826F3-12E9-414E-A75A-438F01646EB7} => pcalua.exe -a "C:\Program Files\Common Files\Canon_Inc_IC\UniversalInstaller\Uninstall\UnInstaller\UniversalUnInstaller.exe" -c "C:\Program Files\Common Files\Canon_Inc_IC\UniversalInstaller\Uninstall\ImageBrowser EX\uninstall.xml"
Task: {14306C25-F089-4C49-B751-035303B8C6E7} - System32\Tasks\Microsoft\Windows\Media Center\PvrRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {201F2E66-ECC3-4880-9DBC-0977AA1ED268} - System32\Tasks\The Phone Support Dock => C:\Program Files\The Phone Support Dock\TPSDock.exe [2014-12-12] (The Phone Support)
Task: {259BCC3A-7539-4A60-8A11-B3A03F6D7E10} - System32\Tasks\Microsoft\Windows\Media Center\PvrScheduleTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {2624F699-5244-4D4D-B1B3-51B9E5432B8C} - System32\Tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {2B420A0B-4436-4DBC-AC57-A3321AB593A9} - System32\Tasks\Microsoft\Windows\Media Center\ehDRMInit => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {352C86FB-9C61-4323-BDE6-40333640E57A} - System32\Tasks\Microsoft\Windows\Media Center\StartRecording => C:\WINDOWS\ehome\ehrec.exe
Task: {3EB9EFB1-CD98-46D8-87AA-171A1972211E} - System32\Tasks\{772DBEB5-4D5C-4354-8658-BACD7AA67259} => pcalua.exe -a C:\Ancestry\Ancestry\Ancestry2html\bin\Ancestry2html.exe -d C:\Ancestry\Ancestry\Ancestry2html\bin
Task: {443151C0-B584-4DAD-A8CF-BD13A7331DB1} - System32\Tasks\Support Dock => C:\Program Files\Support Dock\SystweakASP.exe
Task: {4DC47D5A-E24C-4744-9393-1E92D5861C2E} - System32\Tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {4E0161EE-227B-482A-B202-515BB9E5DCB9} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {523EF1E9-6E5C-4ED6-8D47-4B7B844C1C27} - System32\Tasks\{D4AC9DF4-5AE5-4587-872C-368FFA39D13F} => Firefox.exe hxxp://ui.skype.com/ui/0/7.7.0.103/cs/a ... rogressBar
Task: {535BB015-C054-4EF8-89B7-FF00ABAA4D9D} - System32\Tasks\Microsoft\Windows\Media Center\RegisterSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {66FEDF9F-14E5-42C7-BB13-5B44D452EAC0} - System32\Tasks\{F84199E7-BF6E-42C3-B3DE-9A7897836073} => Firefox.exe hxxp://ui.skype.com/ui/0/7.7.0.103/cs/a ... rogressBar
Task: {704B8C88-2D12-40C4-8CC4-F84E35DA8A28} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-11-09] (Adobe Systems Incorporated)
Task: {71C5B6B7-39D8-4F9A-9ECA-37DBCFB30BEE} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate_scheduled => C:\WINDOWS\ehome\mcupdate.exe
Task: {83673578-A709-4612-A418-FB355440CB0B} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {84E51F77-6535-48EF-91E4-C00D2CA942AE} - System32\Tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {85899645-8366-442D-8E83-48B94863D082} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-10-21] (Adobe Systems Incorporated)
Task: {89C05B25-3412-47D8-B205-A0FEF189072C} - System32\Tasks\{ED1A55E1-DD7D-426B-AC6D-7DF9412F755A} => pcalua.exe -a "C:\Program Files\ConMet\ConMet.exe" -c /uninstall
Task: {8D909842-E0FA-4F6E-BA3D-C9138F9C5D8E} - System32\Tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {91424FE2-6130-423E-8E0C-449AE899A3A5} - System32\Tasks\{E2F13043-95E5-4973-99DB-688DBB848D36} => Firefox.exe hxxp://ui.skype.com/ui/0/5.5.0.124/en/a ... d;disabled
Task: {94126E81-67AB-451F-AD30-1FC675D27066} - System32\Tasks\{327B2432-86F0-49F9-8E91-94F79C73F819} => pcalua.exe -a C:\Users\Hurych\Downloads\130.exe -d C:\Users\Hurych\Downloads
Task: {9DF490E6-36ED-45F8-A7F0-0616EB73D44C} - System32\Tasks\{36DA3A66-58A3-404E-94AA-7EA7EA80AD76} => pcalua.exe -a E:\Setup.exe -d E:\
Task: {9E740ED7-37ED-46E8-ACB1-00BE45F51349} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {A3919CF6-2773-4513-87C3-FE8C2950A9B3} - System32\Tasks\{6149BE63-22D0-4DB2-B814-9B427FD53BBC} => C:\Program Files\Skype\\Phone\Skype.exe [2016-03-01] (Skype Technologies S.A.)
Task: {A3BBD529-591C-450F-8829-1E52ED18A52E} - System32\Tasks\Microsoft\Office\Office 15 Subscription Heartbeat => C:\Program Files\Common Files\Microsoft Shared\Office15\OLicenseHeartbeat.exe [2014-01-23] (Microsoft Corporation)
Task: {AA217767-7C60-457F-A1FA-80272BFDFAF5} - System32\Tasks\Microsoft\Windows\Media Center\ReindexSearchRoot => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {B3D727DE-8954-4AD5-AF43-0DD639C146B1} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
Task: {B4E483FD-5532-4741-B01E-DBD9B3867A84} - System32\Tasks\Microsoft\Windows\Media Center\OCURDiscovery => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {C474AE0F-FE1A-45F9-A1B1-4A9AB75B90CF} - System32\Tasks\Microsoft\Windows\Media Center\OCURActivate => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {CF306319-34F0-41D6-8900-85ECDCDA6A97} - System32\Tasks\{7F4319EA-B9A4-46B7-8A17-BF11BB2B5461} => pcalua.exe -a D:\INTERNET\6570v1.1.exe -d "C:\Program Files\Mozilla Firefox"
Task: {D0E5A06D-3F03-42A3-AE10-83DBABE350E0} - System32\Tasks\Microsoft\Windows\Media Center\mcupdate => C:\WINDOWS\ehome\mcupdate.exe
Task: {D2E21755-4003-4880-BB1B-F9C569CDE27B} - System32\Tasks\Microsoft\Windows\Media Center\RecordingRestart => C:\WINDOWS\ehome\ehrec.exe
Task: {D6D1EDF3-9304-40D0-AC24-6D692DD7B653} - System32\Tasks\Microsoft\Windows\Media Center\InstallPlayReady => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {D90593D9-F7C7-4F2A-9E4B-5B8192DAD4AA} - System32\Tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe
Task: {EC6E6AD8-4939-4EF6-B753-7C16DB5AD9EB} - System32\Tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {F34FB1AA-6B07-480B-B7B2-66385DEDC98C} - System32\Tasks\Microsoft\Windows\Media Center\UpdateRecordPath => C:\WINDOWS\ehome\ehPrivJob.exe
Task: {F72DFC2E-882C-4550-8457-9E36D7EF9ADF} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office\Office15\msoia.exe [2014-01-23] (Microsoft Corporation)
Task: {FBC91502-E109-49EC-B657-26F3234B6F05} - System32\Tasks\Microsoft\Windows\Media Center\PeriodicScanRetry => C:\WINDOWS\ehome\MCUpdate.exe
Task: {FCB7B5FC-51D1-4779-9CA2-8425178D55EB} - System32\Tasks\{579749F7-BB3A-41A8-9691-2AE7C02023DB} => pcalua.exe -a "C:\Program Files\Google\Picasa3\Uninstall.exe"
Task: {FE96D9E2-C7C8-40B1-BF7A-9E2A95D8EE6B} - System32\Tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask => C:\WINDOWS\ehome\mcupdate.exe

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

ShortcutWithArgument: C:\Users\Hurych\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\5d696d521de238c3\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default

==================== Loaded Modules (Whitelisted) ==============

2016-07-16 09:25 - 2016-07-16 09:25 - 00190976 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-10-01 18:14 - 2016-09-15 18:32 - 02048496 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2016-10-01 18:14 - 2016-09-15 18:32 - 02048496 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-09-24 12:51 - 2016-09-24 12:51 - 01383616 _____ () C:\Users\Hurych\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\ClientTelemetry.dll
2011-03-14 10:10 - 2010-03-15 11:28 - 00141824 _____ () C:\Program Files\WinRAR\rarext.dll
2016-07-16 09:25 - 2016-07-16 09:25 - 00108032 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2016-11-09 04:05 - 2016-11-02 11:46 - 00321536 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2016-11-09 04:03 - 2016-11-02 11:31 - 06726656 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-11-09 04:03 - 2016-11-02 11:24 - 01150464 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-09-23 10:13 - 2016-09-23 10:13 - 00526848 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2016-11-09 04:03 - 2016-11-02 11:24 - 01724928 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-11-09 04:03 - 2016-11-02 11:26 - 03158528 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-11-04 17:35 - 2016-11-04 17:36 - 00062464 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.251.0_x86__kzf8qxf38zg5c\SkypeHost.exe
2016-11-04 17:35 - 2016-11-04 17:36 - 00151552 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.251.0_x86__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2016-11-04 17:35 - 2016-11-04 17:36 - 29914112 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.9.251.0_x86__kzf8qxf38zg5c\SkyWrap.dll
2016-11-02 19:57 - 2016-11-02 19:57 - 00147456 _____ () C:\Program Files\WindowsApps\Microsoft.MicrosoftSolitaireCollection_3.12.10310.0_x86__8wekyb3d8bbwe\CellNativeClientUniversal.dll
2016-11-12 08:57 - 2016-11-12 08:57 - 00017920 _____ () C:\Program Files\WindowsApps\Microsoft.XboxApp_22.23.11005.0_x86__8wekyb3d8bbwe\XboxApp.exe
2016-11-12 08:57 - 2016-11-12 08:57 - 30682112 _____ () C:\Program Files\WindowsApps\Microsoft.XboxApp_22.23.11005.0_x86__8wekyb3d8bbwe\XboxApp.dll
2016-11-11 10:41 - 2016-11-11 10:41 - 00678400 _____ () C:\Program Files\WindowsApps\Microsoft.XboxApp_22.23.11005.0_x86__8wekyb3d8bbwe\sqlite3.dll
2016-07-31 12:08 - 2016-07-31 12:08 - 01289128 _____ () C:\Program Files\WindowsApps\Microsoft.XboxApp_22.23.11005.0_x86__8wekyb3d8bbwe\winsdkfb.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\101hotteens.com -> 101hotteens.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\101lottery.com -> 101lottery.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\123expressview.com -> 123expressview.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\123found.com -> 123found.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\123keno.com -> 123keno.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\12don.info -> 12don.info
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\143fuck.com -> 143fuck.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\17gamo.com -> 17gamo.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\17webplace.com -> 17webplace.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\180solutions.com -> 180solutions.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\1autocity.com -> 1autocity.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\1ive.net -> 1ive.net
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\1se.ru -> 1se.ru
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\1sexparty.com -> 1sexparty.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\1stfind.com -> 1stfind.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\1stpagehere.com -> 1stpagehere.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\1traff.us -> 1traff.us
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\1ze.net -> 1ze.net
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\2-antispyware.com -> 2-antispyware.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\2004search.cc -> 2004search.cc

There are 4771 more sites.


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:04 - 2016-11-09 08:35 - 00000753 ____A C:\WINDOWS\system32\Drivers\etc\hosts


127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3926796986-3061243883-951121101-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Hurych\AppData\Roaming\Zoner\ZPS 13\ZPSWallPaper.bmp
DNS Servers: 192.168.51.250 - 192.168.51.252
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^ImageBrowser EX Agent.lnk => C:\Windows\pss\ImageBrowser EX Agent.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Hurych^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^EOS Utility.lnk => C:\Windows\pss\EOS Utility.lnk.Startup
MSCONFIG\startupreg: APSDaemon => "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: CanonMyPrinter => C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
MSCONFIG\startupreg: Family Tree Builder Update => C:\Program Files\MyHeritage\Bin\FTBCheckUpdates.exe
MSCONFIG\startupreg: ISUSPM Startup => C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: LightScribe Control Panel => C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
MSCONFIG\startupreg: LWS => C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe -hide
MSCONFIG\startupreg: NokiaSuite.exe => C:\Program Files\Nokia\Nokia Suite\NokiaSuite.exe -tray
MSCONFIG\startupreg: QuickTime Plugin Install => C:\Program Files\QuickTime\Plugins\DeleteMe1.exe
MSCONFIG\startupreg: StartCCC => "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
MSCONFIG\startupreg: TomTomHOME.exe => "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe"
MSCONFIG\startupreg: USB2Check => RUNDLL32.EXE "C:\Windows\system32\PCLECoInst.dll",CheckUSBController
MSCONFIG\startupreg: USBToolTip => C:\PROGRA~1\Pinnacle\SHARED~1\Programs\USBTip\USBTip.exe

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [MSMQ-In-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-TCP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-In-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [MSMQ-Out-UDP] => (Allow) %systemroot%\system32\mqsvc.exe
FirewallRules: [WCF-NetTcpActivator-In-TCP-32bit] => (Allow) LPort=808
FirewallRules: [{A75550D3-B50A-4DE5-8582-662AABA9D09C}] => (Allow) C:\Program Files\Nero\Nero TuneItUp\TuneItUp.exe
FirewallRules: [{D56F5396-E754-4869-84AD-FCC6F6DF3640}] => (Allow) C:\Program Files\Nero\Nero TuneItUp\TuneItUp.exe
FirewallRules: [{D67528DD-CA7A-4D9C-92AF-D8471E74A06F}] => (Allow) C:\Program Files\Canon\EOS Utility\EOSUPNPSV.exe
FirewallRules: [{5356E46E-74F8-4FDF-AF86-5368048E5305}] => (Allow) C:\Program Files\Canon\EOS Utility\EOSUPNPSV.exe
FirewallRules: [{CEE9464E-801C-41F3-8691-74F076BA1B4D}] => (Allow) C:\Program Files\Common Files\soft602\langserv.exe
FirewallRules: [{6FF62A00-5D32-4224-B6D8-A57F31F1F4B0}] => (Allow) C:\Program Files\Common Files\soft602\langserv.exe
FirewallRules: [{0CA6E508-F1F8-4E3E-B184-20B9B3DF64C3}] => (Allow) C:\Program Files\AVG\Av\avgmfapx.exe
FirewallRules: [{840FB3BB-C467-4BBB-AA5D-A3DD3B266DEF}] => (Allow) C:\Program Files\AVG\Av\avgmfapx.exe
FirewallRules: [{6CD4B712-F31E-48CD-B5F3-5A8703880752}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{1F59D450-306A-4569-9F47-988BC8E1764C}] => (Allow) LPort=26675
FirewallRules: [{C2AB8830-D72D-41F1-900D-A7F67F421AEA}] => (Allow) %systemroot%\WindowsMobile\wmdHost.exe
FirewallRules: [{8FC78052-ED71-4A2F-99E1-C488E7259A3B}] => (Allow) %systemroot%\WindowsMobile\wmdHost.exe
FirewallRules: [{C6DFA7B5-03DF-4ADD-AEDD-56EC5601DACF}] => (Allow) LPort=26675
FirewallRules: [{12B8DE62-AD4E-4ECA-9794-0CF4E3EC2D0E}] => (Allow) %systemroot%\WindowsMobile\wmdHost.exe
FirewallRules: [{5A0A219A-16B8-4663-93E0-AA16AA353061}] => (Allow) %systemroot%\WindowsMobile\wmdHost.exe
FirewallRules: [{A2DDA1ED-E8BA-442C-8599-CDBBEFEFFB00}] => (Allow) C:\Program Files\Logitech\Vid HD\Vid.exe
FirewallRules: [{923272D4-19C9-42B1-9328-6CD8BCF999FF}] => (Allow) C:\Program Files\Logitech\Vid HD\Vid.exe
FirewallRules: [{8D52C904-1274-413A-8041-6C263644AD6D}] => (Allow) C:\Program Files\Skype\Phone\Skype.exe
FirewallRules: [{58233FF9-0E46-4CA4-8644-10956120CCE3}] => (Allow) C:\Program Files\HP\hp software update\hpwucli.exe
FirewallRules: [{AD148DED-4600-4A63-9906-21EF70FACDB6}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe
FirewallRules: [{946EC4B3-8DB1-4BEA-A72D-2338E4955311}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqgplgtupl.exe
FirewallRules: [{95F712C3-5ACE-482F-BB62-2B4643D697CB}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqpse.exe
FirewallRules: [{8D7532A3-2FAC-4640-8042-0617F5A2A544}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqpsapp.exe
FirewallRules: [{F6E4355C-76F9-4C01-96CB-A9CBE45D792B}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqsudi.exe
FirewallRules: [{C6816A87-27D6-4915-A4B2-0A6CFE62E104}] => (Allow) C:\Program Files\common files\hp\digital imaging\bin\hpqphotocrm.exe
FirewallRules: [{2C3291EC-D635-4B04-8725-3B85D4B5DF6B}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpiscnapp.exe
FirewallRules: [{4661FA33-7357-4267-BA24-B3593CA27E00}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpfccopy.exe
FirewallRules: [{DCDA0F41-0FF2-44D7-83D3-A8E4DA7E45E8}] => (Allow) C:\Program Files\HP\Digital Imaging\bin\hpqkygrp.exe
FirewallRules: [{C6CD225F-37D8-4F85-9B07-F294B5B46A2E}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{AF508DFB-8BD7-4704-96E1-FBCF0DFEBF71}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{50F3FE7F-8897-4BA5-BDBF-7659C0E98363}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe
FirewallRules: [{8406BBE4-C1FB-409C-89BB-C52494DAF243}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================


==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (11/11/2016 10:15:17 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny QueryFullProcessImageNameW došlo k neočekávané chybě. hr= 0x80070006, Neplatný popisovač.
.


Operace:
Spouštění asynchronní operace

Kontext:
Aktuální stav: DoSnapshotSet

Error: (11/11/2016 10:15:01 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (11/11/2016 10:10:06 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny QueryFullProcessImageNameW došlo k neočekávané chybě. hr= 0x80070006, Neplatný popisovač.
.


Operace:
Spouštění asynchronní operace

Kontext:
Aktuální stav: DoSnapshotSet

Error: (11/11/2016 10:09:38 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.

Error: (11/11/2016 10:09:20 PM) (Source: VSS) (EventID: 8194) (User: )
Description: Chyba služby Stínová kopie svazků: Při dotazu na rozhraní IVssWriterCallback došlo k neočekávané chybě. hr = 0x80070005, Přístup byl odepřen.
.
To je často způsobeno nesprávným nastavením zabezpečení v modulu pro zápis nebo žadateli.


Operace:
Shromažďování dat modulu pro zápis

Kontext:
ID třídy modulu pro zápis: {e8132975-6f93-4464-a53e-1050253ae220}
Název modulu pro zápis: System Writer
ID instance modulu pro zápis: {0c9ffa27-adbb-44bc-9e91-3b7667d1fcd5}

Error: (11/11/2016 10:06:59 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro C:\Program Files\STMicroelectronics\Software\Virtual COM Port Driver\dpinst_amd64.exe se nezdařilo.
Závislé sestavení Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="amd64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (11/11/2016 10:06:59 PM) (Source: SideBySide) (EventID: 33) (User: )
Description: Generování kontextu aktivace pro C:\Program Files\STMicroelectronics\Software\Virtual COM Port Driver\dpinst_ia64.exe se nezdařilo.
Závislé sestavení Microsoft.Windows.Common-Controls,language="&#x2a;",processorArchitecture="ia64",publicKeyToken="6595b64144ccf1df",type="win32",version="6.0.0.0" nelze najít.
Podrobnější diagnostické údaje získáte pomocí programu sxstrace.exe.

Error: (11/11/2016 06:07:28 PM) (Source: Microsoft-Windows-RestartManager) (EventID: 10007) (User: HURYCH-PC)
Description: Aplikaci nebo sluĹľbu Nero BackItUp Scheduler 4.0 nelze restartovat.

Error: (11/11/2016 06:06:18 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny QueryFullProcessImageNameW došlo k neočekávané chybě. hr= 0x80070006, Neplatný popisovač.
.


Operace:
Spouštění asynchronní operace

Kontext:
Aktuální stav: DoSnapshotSet

Error: (11/11/2016 06:05:53 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.

Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).

System Error:
Přístup byl odepřen.
.


System errors:
=============
Error: (11/12/2016 06:37:20 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
a APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.

Error: (11/11/2016 09:55:12 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Nero BackItUp Scheduler 4.0 neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedený soubor.

Error: (11/11/2016 09:55:12 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: Služba NetTcpActivator závisí na službě NetTcpPortSharing, která neuspěla při spuštění v důsledku následující chyby:
Zvolenou službu nelze spustit, protože není povolena nebo s ní není spojeno žádné povolené zařízení.

Error: (11/11/2016 09:55:12 PM) (Source: NETLOGON) (EventID: 3095) (User: )
Description: Tento počítač je nakonfigurován jako člen pracovní skupiny, nikoliv jako
člen domény. Přihlašovací služba Netlogon nepotřebuje být spuštěna v této
konfiguraci.

Error: (11/11/2016 09:52:16 PM) (Source: Service Control Manager) (EventID: 7032) (User: )
Description: Správce služeb se pokusil o opravnou akci (Restartovat službu) po nečekaném ukončení služby Windows Search, ale tato akce selhala kvůli následující chybě:
Instance této služby je již spuštěna.

Error: (11/11/2016 09:51:46 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Adaptér naslouchání Net.Msmq byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 120000 milisekund: Restartovat službu.

Error: (11/11/2016 09:51:46 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Adaptér naslouchání Net.Pipe byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 120000 milisekund: Restartovat službu.

Error: (11/11/2016 09:51:46 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Search byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.

Error: (11/11/2016 09:51:45 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Windows Media Player Network Sharing byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.

Error: (11/11/2016 09:51:45 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Řízení front zpráv byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 120000 milisekund: Restartovat službu.


==================== Memory info ===========================

Processor: AMD Athlon(tm) II X2 250 Processor
Percentage of memory in use: 34%
Total physical RAM: 2813.55 MB
Available physical RAM: 1845.13 MB
Total Virtual: 3133.55 MB
Available Virtual: 2003.18 MB

==================== Drives ================================

Drive c: (MĂ­stnĂ­ disk C) (Fixed) (Total:73.99 GB) (Free:8.75 GB) NTFS
Drive d: (MĂ­stnĂ­ disk D) (Fixed) (Total:465.76 GB) (Free:303 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or (Size: 74.5 GB) (Disk ID: 27D027CF)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=74 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=450 MB) - (Type=27)

========================================================
Disk: 1 (MBR Code: Windows 7 or (Size: 465.8 GB) (Disk ID: 3DDF208F)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)

==================== End of Addition.txt

[jaro3]

Odinstaluj:
AVG Web TuneUp
Nero TuneItUp
Použij RevoUninstaller

Drive c: (MĂstnĂ disk C) (Fixed) (Total:73.99 GB) (Free:8.75 GB) NTFS
Totální nedostatek volného místa na disku!! Něco odinstaluj , smaž. Máš mít nejméně 15-20% volného místa na syst. disku , pro zajištění bezproblémového chodu windows!!


\Minidump\102116-78562-01.dmp ---- neměl si BSOD , modrou smrt?
vypadá to na možnost i vadného disku:
Stáhni si CrystalDiskInfo
Spusť program a klikni na Úpravy-Kopírovat. Poté sem vlož pomocí Ctrl+V obsah logu.

Prosím, postupuj následujícím způsobem:
Otevřít poznámkový blok (Start => Všechny programy => Příslušenství => Poznámkový blok).
Prosím, zkopíruj do něj celý obsah níže.

Kód: Vybrat vše

Start
CloseProcesses:
C:\Users\Hurych\AppData\Local\AvgSetupLog
D C:\ProgramData\AVG
C:\Program Files\AVG
C:\$AVG
Browser Configuration Utility (HKLM\...\{A2F991E7-DDCD-42B7-AFEC-47789A099FDC}) (Version: 1.1.18.0 - DeviceVM Inc.) <==== ATTENTION
Task: {B3D727DE-8954-4AD5-AF43-0DD639C146B1} - \Microsoft\Windows\Setup\GWXTriggers\ScheduleUpgradeTime -> No File <==== ATTENTION
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\101hotteens.com -> 101hotteens.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\101lottery.com -> 101lottery.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\123expressview.com -> 123expressview.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\123found.com -> 123found.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\123keno.com -> 123keno.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\12don.info -> 12don.info
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\143fuck.com -> 143fuck.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\17gamo.com -> 17gamo.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\17webplace.com -> 17webplace.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\180solutions.com -> 180solutions.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\1autocity.com -> 1autocity.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\1ive.net -> 1ive.net
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\1se.ru -> 1se.ru
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\1sexparty.com -> 1sexparty.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\1stfind.com -> 1stfind.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\1stpagehere.com -> 1stpagehere.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\1traff.us -> 1traff.us
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\1ze.net -> 1ze.net
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\2-antispyware.com -> 2-antispyware.com
IE restricted site: HKU\S-1-5-21-3926796986-3061243883-951121101-1000\...\2004search.cc -> 2004search.cc
FirewallRules: [{0CA6E508-F1F8-4E3E-B184-20B9B3DF64C3}] => (Allow) C:\Program Files\AVG\Av\avgmfapx.exe
FirewallRules: [{840FB3BB-C467-4BBB-AA5D-A3DD3B266DEF}] => (Allow) C:\Program Files\AVG\Av\avgmfapx.exe
FirewallRules: [{0CA6E508-F1F8-4E3E-B184-20B9B3DF64C3}] => (Allow) C:\Program Files\AVG\Av\avgmfapx.exe
FirewallRules: [{840FB3BB-C467-4BBB-AA5D-A3DD3B266DEF}] => (Allow) C:\Program Files\AVG\Av\avgmfapx.exe

EmptyTemp:
End

(Můžeš použít funkci „vybrat vše“, klepni pravým tlačítkem myši na levé horní políčko v otevřeném poznámkovém bloku a zvol „ Vložit“).

Ulož jej na na plochu jako fixlist.txt


Spusťt FRST a stiskni tlačítko „Fix“ (Opravit) jen jednou a čekej.
Nástroj vypracuje log na ploše (Fixlog.txt), prosím zkopíruj sem celý jeho obsah.

[labutak3]

Kde by se měl prosím uložit log z CrystalDiskInfo. Dal jsem Úprasvy a kopírovat a nic se neděhje. Log jsem nenašel. Děkuji