Dobrý den, prosím o pomoct z vylečením systemu
Zde přikládám log z FRST:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 18-06-2017 01
Ran by Milan (administrator) on DESKTOP-FMN2L67 (20-06-2017 11:19:27)
Running from C:\Users\Milan\Desktop
Loaded Profiles: Milan (Available Profiles: Milan)
Platform: Windows 10 Pro Version 1607 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: "C:\Program Files (x86)\UCBrowser\Application\UCBrowser.exe" -- "%1")
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
() C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Windows\SysWOW64\PnkBstrB.exe
(MSI) C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe
(MSI) C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe
(MSI) C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe
(MSI) C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe
() C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(MICRO-STAR INTERNATIONAL CO., LTD.) C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
() C:\Program Files (x86)\UCBrowser\Application\UCService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe
(Realtek Semiconductor) C:\Program Files (x86)\MSI\NetworkGenie\NetworkGenie.exe
(GIGABYTE Technology Co.,Ltd.) C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\OC_GURU.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.33.5\GoogleCrashHandler64.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MSASCuiL.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Ultra\DiscSoftBusService.exe
(Gaijin Entertainment) C:\Users\Milan\AppData\Local\Gaijin\Program Files (x86)\NetAgent\.obsolete\gjagent.exe.41
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
() C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
(Facebook) C:\Users\Milan\AppData\Local\Facebook\Games\FacebookGameroom.exe
(MSI) C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamUserAgent.exe
(Skype Technologies) C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe
(Skype Technologies) C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe
(The CefSharp Authors) C:\Users\Milan\AppData\Local\Facebook\Games\Facebook Gameroom Browser.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
() C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe
() C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.17.420.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
(Microsoft Corporation) C:\Windows\System32\browser_broker.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Intel(R) Corporation) C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Adobe Systems Incorporated) C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.14393.1051_none_7f2bf7ea21d201b2\TiWorker.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdgeCP.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [9198592 2017-02-10] (Realtek Semiconductor)
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2398776 2016-06-15] (NVIDIA Corporation)
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [631808 2017-04-28] (Microsoft Corporation)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PrivacyIconClient.exe [1178400 2015-07-11] (Intel Corporation)
HKLM-x32\...\Run: [Fast Boot] => C:\Program Files (x86)\MSI\Fast Boot\StartFastBoot.exe [759120 2015-04-22] ()
HKLM-x32\...\Run: [Command Center] => C:\Program Files (x86)\MSI\Command Center\StartCommandCenter.exe [835680 2016-06-14] (MSI)
HKLM-x32\...\Run: [Super Charger] => C:\Program Files (x86)\MSI\Super Charger\Super Charger.exe [1022928 2016-11-21] (MSI)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
HKLM\...\Policies\Explorer: [EnableShellExecuteHooks] 1
HKLM\ DisallowedCertificates: 03D22C9C66915D58C88912B64C1F984B8344EF09 (Comodo Security Solutions) <==== ATTENTION
HKLM\ DisallowedCertificates: 0F684EC1163281085C6AF20528878103ACEFCAAB (F-Secure Corporation) <==== ATTENTION
HKLM\ DisallowedCertificates: 1667908C9E22EFBD0590E088715CC74BE4C60884 (FRISK Software International/F-Prot) <==== ATTENTION
HKLM\ DisallowedCertificates: 18DEA4EFA93B06AE997D234411F3FD72A677EECE (Bitdefender SRL) <==== ATTENTION
HKLM\ DisallowedCertificates: 2026D13756EB0DB753DF26CB3B7EEBE3E70BB2CF (G DATA Software AG) <==== ATTENTION
HKLM\ DisallowedCertificates: 249BDA38A611CD746A132FA2AF995A2D3C941264 (Malwarebytes Corporation) <==== ATTENTION
HKLM\ DisallowedCertificates: 31AC96A6C17C425222C46D55C3CCA6BA12E54DAF (Symantec Corporation) <==== ATTENTION
HKLM\ DisallowedCertificates: 331E2046A1CCA7BFEF766724394BE6112B4CA3F7 (Trend Micro) <==== ATTENTION
HKLM\ DisallowedCertificates: 3353EA609334A9F23A701B9159E30CB6C22D4C59 (Webroot Inc.) <==== ATTENTION
HKLM\ DisallowedCertificates: 373C33726722D3A5D1EDD1F1585D5D25B39BEA1A (SUPERAntiSpyware.com) <==== ATTENTION
HKLM\ DisallowedCertificates: 3850EDD77CC74EC9F4829AE406BBF9C21E0DA87F (Kaspersky Lab) <==== ATTENTION
HKLM\ DisallowedCertificates: 3D496FA682E65FC122351EC29B55AB94F3BB03FC (AVG Technologies CZ) <==== ATTENTION
HKLM\ DisallowedCertificates: 4243A03DB4C3C15149CEA8B38EEA1DA4F26BD159 (PC Tools) <==== ATTENTION
HKLM\ DisallowedCertificates: 42727E052C0C2E1B35AB53E1005FD9EDC9DE8F01 (K7 Computing Pvt Ltd) <==== ATTENTION
HKLM\ DisallowedCertificates: 4420C99742DF11DD0795BC15B7B0ABF090DC84DF (Doctor Web Ltd.) <==== ATTENTION
HKLM\ DisallowedCertificates: 4C0AF5719009B7C9D85C5EAEDFA3B7F090FE5FFF (Emsisoft Ltd) <==== ATTENTION
HKLM\ DisallowedCertificates: 5240AB5B05D11B37900AC7712A3C6AE42F377C8C (Check Point Software Technologies Ltd.) <==== ATTENTION
HKLM\ DisallowedCertificates: 5DD3D41810F28B2A13E9A004E6412061E28FA48D (Emsisoft Ltd) <==== ATTENTION
HKLM\ DisallowedCertificates: 7457A3793086DBB58B3858D6476889E3311E550E (K7 Computing Pvt Ltd) <==== ATTENTION
HKLM\ DisallowedCertificates: 76A9295EF4343E12DFC5FE05DC57227C1AB00D29 (BullGuard Ltd) <==== ATTENTION
HKLM\ DisallowedCertificates: 775B373B33B9D15B58BC02B184704332B97C3CAF (McAfee) <==== ATTENTION
HKLM\ DisallowedCertificates: 872CD334B7E7B3C3D1C6114CD6B221026D505EAB (Comodo Security Solutions) <==== ATTENTION
HKLM\ DisallowedCertificates: 88AD5DFE24126872B33175D1778687B642323ACF (McAfee) <==== ATTENTION
HKLM\ DisallowedCertificates: 9132E8B079D080E01D52631690BE18EBC2347C1E (Adaware Software) <==== ATTENTION
HKLM\ DisallowedCertificates: 982D98951CF3C0CA2A02814D474A976CBFF6BDB1 (Safer Networking Ltd.) <==== ATTENTION
HKLM\ DisallowedCertificates: 9A08641F7C5F2CCA0888388BE3E5DBDDAAA3B361 (Webroot Inc.) <==== ATTENTION
HKLM\ DisallowedCertificates: 9C43F665E690AB4D486D4717B456C5554D4BCEB5 (ThreatTrack Security) <==== ATTENTION
HKLM\ DisallowedCertificates: 9E3F95577B37C74CA2F70C1E1859E798B7FC6B13 (CURIOLAB S.M.B.A.) <==== ATTENTION
HKLM\ DisallowedCertificates: A1F8DCB086E461E2ABB4B46ADCFA0B48C58B6E99 (Avira Operations GmbH & Co. KG) <==== ATTENTION
HKLM\ DisallowedCertificates: A5341949ABE1407DD7BF7DFE75460D9608FBC309 (BullGuard Ltd) <==== ATTENTION
HKLM\ DisallowedCertificates: A59CC32724DD07A6FC33F7806945481A2D13CA2F (ESET) <==== ATTENTION
HKLM\ DisallowedCertificates: AB7E760DA2485EA9EF5A6EEE7647748D4BA6B947 (AVG Technologies CZ) <==== ATTENTION
HKLM\ DisallowedCertificates: AD4C5429E10F4FF6C01840C20ABA344D7401209F (Avast Antivirus/Software) <==== ATTENTION
HKLM\ DisallowedCertificates: AD96BB64BA36379D2E354660780C2067B81DA2E0 (Symantec Corporation) <==== ATTENTION
HKLM\ DisallowedCertificates: B8EBF0E696AF77F51C96DB4D044586E2F4F8FD84 (Malwarebytes Corporation) <==== ATTENTION
HKLM\ DisallowedCertificates: CDC37C22FE9272D8F2610206AD397A45040326B8 (Trend Micro) <==== ATTENTION
HKLM\ DisallowedCertificates: D3F78D747E7C5D6D3AE8ABFDDA7522BFB4CBD598 (Kaspersky Lab) <==== ATTENTION
HKLM\ DisallowedCertificates: DB303C9B61282DE525DC754A535CA2D6A9BD3D87 (ThreatTrack Security) <==== ATTENTION
HKLM\ DisallowedCertificates: DB77E5CFEC34459146748B667C97B185619251BA (Avast Antivirus/Software) <==== ATTENTION
HKLM\ DisallowedCertificates: E22240E837B52E691C71DF248F12D27F96441C00 (Total Defense, Inc.) <==== ATTENTION
HKLM\ DisallowedCertificates: E513EAB8610CFFD7C87E00BCA15C23AAB407FCEF (AVG Technologies CZ) <==== ATTENTION
HKLM\ DisallowedCertificates: ED841A61C0F76025598421BC1B00E24189E68D54 (Bitdefender SRL) <==== ATTENTION
HKLM\ DisallowedCertificates: F83099622B4A9F72CB5081F742164AD1B8D048C9 (ESET) <==== ATTENTION
HKLM\ DisallowedCertificates: FBB42F089AF2D570F2BF6F493D107A3255A9BB1A (Panda Security S.L) <==== ATTENTION
HKLM\ DisallowedCertificates: FFFA650F2CB2ABC0D80527B524DD3F9FC172C138 (Doctor Web Ltd.) <==== ATTENTION
HKU\S-1-5-21-4251244029-1314746575-1999885948-1001\...\Run: [DAEMON Tools Ultra Agent] => C:\Program Files\DAEMON Tools Ultra\DTAgent.exe [4338880 2016-02-02] (Disc Soft Ltd)
HKU\S-1-5-21-4251244029-1314746575-1999885948-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\Steam.exe [3042592 2017-06-08] (Valve Corporation)
HKU\S-1-5-21-4251244029-1314746575-1999885948-1001\...\Run: [Gaijin.Net Agent] => C:\Users\Milan\AppData\Local\Gaijin\Program Files (x86)\NetAgent\gjagent.exe [2012616 2017-06-15] (Gaijin Entertainment)
HKU\S-1-5-21-4251244029-1314746575-1999885948-1001\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27716568 2017-05-04] (Skype Technologies S.A.)
HKU\S-1-5-21-4251244029-1314746575-1999885948-1001\...\Run: [zcnMqC0ofr.exe] => C:\Program Files\Windows Sidebar\SML080U9AH37M7XQWE9PYVJ77Y\zcnMqC0ofr.exe -r1_5 -r2_1
HKU\S-1-5-21-4251244029-1314746575-1999885948-1001\...\Run: [cz.seznam.software.autoupdate] => "C:\Users\Milan\AppData\Roaming\Seznam.cz\szninstall.exe" -c
HKU\S-1-5-21-4251244029-1314746575-1999885948-1001\...\Run: [cz.seznam.software.szndesktop] => "C:\Users\Milan\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
HKU\S-1-5-21-4251244029-1314746575-1999885948-1001\...\Run: [msiql] => C:\Users\Milan\AppData\Local\Temp\00025292\msiql.exe /RUNNING <===== ATTENTION
HKU\S-1-5-21-4251244029-1314746575-1999885948-1001\...\Run: [Pritc] => C:\Users\Milan\AppData\Local\Temp\is-QTL6F.tmp\Setup.exe <===== ATTENTION
HKU\S-1-5-21-4251244029-1314746575-1999885948-1001\...\Run: [YeaDesktop] => C:\Program Files (x86)\YeaDesktop\YeaDesktop.exe /autostart <===== ATTENTION
HKU\S-1-5-21-4251244029-1314746575-1999885948-1001\...\RunOnce: [Uninstall 17.3.6799.0327\amd64] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Milan\AppData\Local\Microsoft\OneDrive\17.3.6799.0327\amd64"
HKU\S-1-5-21-4251244029-1314746575-1999885948-1001\...\RunOnce: [Uninstall 17.3.6799.0327] => C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Milan\AppData\Local\Microsoft\OneDrive\17.3.6799.0327"
HKU\S-1-5-21-4251244029-1314746575-1999885948-1001\...\MountPoints2: {19937547-b99e-11e6-92af-4ccc6a074195} - "G:\Lenovo_Suite.exe"
HKU\S-1-5-21-4251244029-1314746575-1999885948-1001\...\MountPoints2: {e45dcef3-2041-11e7-9be6-4ccc6a074195} - "L:\setup.exe"
HKU\S-1-5-21-4251244029-1314746575-1999885948-1001\...\MountPoints2: {f9ec72c4-b594-11e6-92af-4ccc6a074195} - "F:\setup.exe"
HKU\S-1-5-21-4251244029-1314746575-1999885948-1001\...\MountPoints2: {f9ec72c7-b594-11e6-92af-4ccc6a074195} - "G:\autorun.exe"
HKU\S-1-5-21-4251244029-1314746575-1999885948-1001\...\MountPoints2: {f9ec72cc-b594-11e6-92af-4ccc6a074195} - "K:\Setup.exe"
HKU\S-1-5-21-4251244029-1314746575-1999885948-1001\...\MountPoints2: {f9ec72d4-b594-11e6-92af-4ccc6a074195} - "H:\setup.exe"
ShellExecuteHooks: No Name - {5F51FFFE-7463-4220-B711-E5B9ACB8EDFE} - C:\ProgramData\igfxDH.dll [991232 2017-05-09] ()
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2017-03-21] (Google)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\GIGABYTE OC_GURU.lnk [2016-11-16]
ShortcutTarget: GIGABYTE OC_GURU.lnk -> C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\OC_GURU.exe (GIGABYTE Technology Co.,Ltd.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TP-LINK Wireless Configuration Utility.lnk [2016-11-16]
ShortcutTarget: TP-LINK Wireless Configuration Utility.lnk -> C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe ()
Startup: C:\Users\Milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Facebook Gameroom.lnk [2017-04-16]
ShortcutTarget: Facebook Gameroom.lnk -> C:\Users\Milan\AppData\Local\Facebook\Games\FacebookGameroom.exe (Facebook)
GroupPolicy: Restriction <======= ATTENTION
GroupPolicyScripts: Restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\Parameters: [NameServer] 82.163.143.176 82.163.142.178
Tcpip\..\Interfaces\{6c73635c-6f34-4906-93b6-3dfd5d20c1f0}: [NameServer] 82.163.143.176 82.163.142.178
Tcpip\..\Interfaces\{6c73635c-6f34-4906-93b6-3dfd5d20c1f0}: [DhcpNameServer] 82.163.143.176
Tcpip\..\Interfaces\{9c1cb9ce-e0c6-4800-8387-0039fd1f4f6a}: [NameServer] 82.163.143.176 82.163.142.178
Tcpip\..\Interfaces\{9c1cb9ce-e0c6-4800-8387-0039fd1f4f6a}: [DhcpNameServer] 82.163.143.176
Tcpip\..\Interfaces\{e2a54280-afc2-4d04-b996-54f2178bf669}: [NameServer] 82.163.143.176 82.163.142.178
Tcpip\..\Interfaces\{e2a54280-afc2-4d04-b996-54f2178bf669}: [DhcpNameServer] 10.0.0.138
Internet Explorer:
==================
BHO: No Name -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> No File
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-12-13] (Google Inc.)
BHO-x32: No Name -> {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} -> No File
BHO-x32: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-12-13] (Google Inc.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2016-12-13] (Google Inc.)
Toolbar: HKLM-x32 - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2016-12-13] (Google Inc.)
FireFox:
========
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.68 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2015-04-21] (Intel Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2016-12-29] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2016-12-29] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-30] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-30] (Google Inc.)
Chrome:
=======
CHR HomePage: Default -> msn.com
CHR NewTab: Default -> Active:"chrome-extension://gihekmjabecocjnkimdaafngfammhpbg/newtab-init.html", Active:"chrome-extension://olfeabkoenfaoljndfecamgilllcpiak/core/chrome/content/speedDial/speedDial.html"
CHR DefaultSearchURL: Default -> hxxp://www.bing.com/search?FORM=__PARAM__DF&PC ... earchTerms}
CHR DefaultSearchKeyword: Default -> bing.com
CHR DefaultSuggestURL: Default -> hxxp://www.bing.com/osjson.aspx?FORM=__PARAM__ ... earchTerms}
CHR Profile: C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default [2017-06-11]
CHR Extension: (Prezentace Google) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2016-12-22]
CHR Extension: (Dokumenty Google) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-12-22]
CHR Extension: (Disk Google) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-12-22]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2017-05-31]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2017-05-30]
CHR Extension: (YouTube) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-12-22]
CHR Extension: (Bing) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\fcfenmboojpjinhpgggodefccipikbpd [2017-01-10]
CHR Extension: (Tabulky Google) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2016-12-22]
CHR Extension: (Dokumenty Google offline) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-12-26]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-04-09]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2017-05-30]
CHR Extension: (Gmail) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-12-22]
CHR Extension: (Chrome Media Router) - C:\Users\Milan\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-06-08]
CHR Extension: (mysearch) - C:\Users\Milan\AppData\Local\kemgadeojglibflomicgnfeopkdfflnw [2017-05-10]
CHR HKU\S-1-5-21-4251244029-1314746575-1999885948-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-4251244029-1314746575-1999885948-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [blmojkbhnkkphngknkmgccmlenfaelkd] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-4251244029-1314746575-1999885948-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fcfenmboojpjinhpgggodefccipikbpd] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-4251244029-1314746575-1999885948-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 Auhardwaregl; C:\Windows\SysWow64\Auhardwaregl.dll [440104 2017-06-08] ()
R3 Disc Soft Ultra Bus Service; C:\Program Files\DAEMON Tools Ultra\DiscSoftBusService.exe [1439424 2016-02-02] (Disc Soft Ltd)
R2 ESRV_SVC_WILLAMETTE; C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [416408 2016-06-08] ()
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [881152 2015-05-22] (Intel(R) Corporation)
S3 Intel(R) Security Assist; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isa.exe [335872 2015-05-19] (Intel Corporation) [File not signed]
S3 intelsba; C:\Program Files\Intel\Intel(R) Small Business Advantage\Service\Intel.SmallBusinessAdvantage.WindowsService.exe [58792 2015-06-04] (Intel Corporation)
R2 isaHelperSvc; C:\Program Files (x86)\Intel\Intel(R) Security Assist\isaHelperService.exe [7680 2015-05-19] () [File not signed]
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [223520 2015-07-11] (Intel Corporation)
S3 MSIClock_CC; C:\Program Files (x86)\MSI\Command Center\ClockGen\MSIClockService.exe [4163680 2016-09-09] (MSI)
S3 MSICOMM_CC; C:\Program Files (x86)\MSI\Command Center\MSICommService.exe [2204768 2016-09-29] (MSI)
S3 MSICPU_CC; C:\Program Files (x86)\MSI\Command Center\CPU\MSICPUService.exe [4171360 2016-11-23] (MSI)
R2 MSICTL_CC; C:\Program Files (x86)\MSI\Command Center\MSIControlService.exe [2014816 2016-11-15] (MSI)
R2 MSIDDR_CC; C:\Program Files (x86)\MSI\Command Center\DDR\MSIDDRService.exe [2327648 2016-12-05] (MSI)
S3 MSISMB_CC; C:\Program Files (x86)\MSI\Command Center\SMBus\MSISMBService.exe [2076768 2016-12-05] (MSI)
S3 MSISuperIO_CC; C:\Program Files (x86)\MSI\Command Center\SuperIO\MSISuperIOService.exe [609888 2016-12-05] (MSI)
R2 MSI_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\FastBootService.exe [105296 2015-06-04] (MSI)
R2 MSI_SuperCharger; C:\Program Files (x86)\MSI\Super Charger\ChargeService.exe [163792 2016-11-21] (MSI)
R2 MSI_Trigger_Service; C:\Program Files (x86)\MSI\MSITrigger\MSI_Trigger_Service.exe [30240 2013-09-26] (MICRO-STAR INTERNATIONAL CO., LTD.)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [458176 2016-12-29] (NVIDIA Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1881144 2016-06-15] (NVIDIA Corporation)
R3 NvStreamNetworkSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamNetworkService.exe [3634232 2016-06-15] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamService.exe [2522680 2016-06-15] (NVIDIA Corporation)
R2 PnkBstrA; C:\WINDOWS\SysWOW64\PnkBstrA.exe [75136 2016-12-24] ()
R2 PnkBstrB; C:\WINDOWS\SysWOW64\PnkBstrB.exe [189248 2016-12-24] ()
S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [2889896 2016-09-15] (Microsoft Corporation)
R2 SystemUsageReportSvc_WILLAMETTE; C:\Program Files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe [117400 2016-06-08] ()
R2 UCBrowserSvc; C:\Program Files (x86)\UCBrowser\Application\UCService.exe [627088 2017-06-05] () <==== ATTENTION
S3 USER_ESRV_SVC_WILLAMETTE; C:\Program Files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [416408 2016-06-08] ()
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347320 2017-04-28] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103712 2017-04-28] (Microsoft Corporation)
R2 XTU3SERVICE; C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\XtuService.exe [19192 2015-10-06] (Intel(R) Corporation)
S2 EraserSvc11611; "C:\Program Files (x86)\Norton Security\Engine\22.5.0.124\NS.exe" /h ccCommon [X]
S2 Recover; C:\Program Files\Windows Sidebar\T2BYWTH3A7S4LDE6R7VIEO33T3\5DU#NJEfX-.exe [X]
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 dtultrascsibus; C:\WINDOWS\System32\drivers\dtultrascsibus.sys [30264 2016-11-28] (Disc Soft Ltd)
R3 GPCIDrv; C:\Program Files (x86)\GIGABYTE\GIGABYTE OC_GURU II\GPCIDrv64.sys [14376 2014-08-28] ()
R3 ikbevent; C:\WINDOWS\system32\DRIVERS\ikbevent.sys [22216 2014-05-27] ()
R3 imsevent; C:\WINDOWS\system32\DRIVERS\imsevent.sys [22728 2014-05-27] ()
R2 iocbios2; C:\Program Files (x86)\Intel\Intel(R) Extreme Tuning Utility\Drivers\IocDriver\64bit\iocbios2.sys [30224 2015-05-28] (Intel Corporation)
R3 ISCT; C:\WINDOWS\System32\drivers\ISCTD.sys [44744 2014-05-27] ()
R1 LanmaMaster; C:\WINDOWS\system32\drivers\lanmamaster.sys [2982504 2016-11-11] () [File not signed]
R1 MpKsl968a0939; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{85448A23-1C63-42AE-B720-FC01345C6AAF}\MpKsl968a0939.sys [44928 2017-06-20] (Microsoft Corporation)
R1 MpKsl9a842783; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{22C0F9DC-3059-4260-97B3-D1C692F44806}\MpKsl9a842783.sys [44928 2017-06-11] (Microsoft Corporation)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 NTIOLib_1_0_3; C:\Program Files (x86)\MSI\Super Charger\NTIOLib_X64.sys [13368 2012-10-25] (MSI)
R3 NTIOLib_FastBoot; C:\Program Files (x86)\MSI\Fast Boot\NTIOLib_X64.sys [13368 2012-10-26] (MSI)
R3 NTIOLib_MSIDDR_CC; C:\Program Files (x86)\MSI\Command Center\DDR\NTIOLib_X64.sys [13368 2012-11-26] (MSI)
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nv_dispiwu.inf_amd64_b67dc924fff8de6d\nvlddmkm.sys [14199224 2017-01-04] (NVIDIA Corporation)
R3 NvStreamKms; C:\Program Files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [28216 2016-06-15] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [56384 2016-04-14] (NVIDIA Corporation)
R3 rt640x64; C:\WINDOWS\System32\drivers\rt640x64.sys [937728 2016-05-17] (Realtek )
R3 semav6msr64; C:\Windows\system32\drivers\semav6msr64.sys [21984 2015-06-04] ()
R1 ucdrv; C:\Program Files (x86)\UCBrowser\Security:ucdrv-x64.sys [25444 ] (UC Web Inc.) <==== ATTENTION
R2 Uefochubsrv; C:\WINDOWS\system32\drivers\Uefochubsrv.sys [197160 2016-11-11] ()
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
S3 XtuAcpiDriver; C:\WINDOWS\System32\drivers\XtuAcpiDriver.sys [63840 2015-06-24] (Intel Corporation)
S3 NAVENG; \??\C:\Program Files (x86)\Norton Security\NortonData\22.5.0.124\Definitions\SDSDefs\20161217.001\ENG64.SYS [X]
S3 NAVEX15; \??\C:\Program Files (x86)\Norton Security\NortonData\22.5.0.124\Definitions\SDSDefs\20161217.001\EX64.SYS [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-06-20 11:19 - 2017-06-20 11:20 - 00030669 _____ C:\Users\Milan\Desktop\FRST.txt
2017-06-20 11:19 - 2017-06-20 11:19 - 00000000 ____D C:\FRST
2017-06-20 11:18 - 2017-06-20 11:19 - 02439680 _____ (Farbar) C:\Users\Milan\Desktop\FRST64.exe
2017-06-12 12:37 - 2017-06-18 19:07 - 00000000 ____D C:\WINDOWS\system32\MpEngineStore
2017-06-11 14:47 - 2017-06-11 14:47 - 00000000 ____D C:\Users\Milan\AppData\Roaming\Hard Disk Sentinel
2017-06-11 14:45 - 2017-06-11 14:45 - 00003786 _____ C:\WINDOWS\System32\Tasks\KMSAutoNet
2017-06-11 14:45 - 2017-06-11 14:45 - 00000000 ____D C:\ProgramData\KMSAutoS
2017-06-11 14:44 - 2017-06-11 14:45 - 00000000 ____D C:\Users\Milan\AppData\Local\MSfree Inc
2017-06-11 14:43 - 2017-06-11 14:43 - 00000000 ____D C:\Users\Milan\Desktop\Skript vyčištění OS Windows
2017-06-11 14:43 - 2017-06-11 14:43 - 00000000 ____D C:\Users\Milan\Desktop\Kaspersky Internet Security 2017 Final + Crack Till 2017
2017-06-11 14:43 - 2017-06-11 14:43 - 00000000 ____D C:\Users\Milan\Desktop\Hard Disk Sentinel Professional 5.01 Build 8557 Final + Portable
2017-06-08 16:42 - 2017-06-08 18:10 - 00000000 ____D C:\RescueCD Logs
2017-06-08 14:22 - 2017-06-08 14:23 - 00000000 ____D C:\Users\Milan\Downloads\rufus_files
2017-06-08 14:21 - 2017-06-08 14:22 - 00000098 _____ C:\Users\Milan\Downloads\rufus.ini
2017-06-08 14:21 - 2017-06-08 14:21 - 00954488 _____ (Akeo Consulting (hxxp://akeo.ie)) C:\Users\Milan\Downloads\rufus-2.15p.exe
2017-06-08 14:21 - 2017-06-08 14:21 - 00000452 __RSH C:\ProgramData\ntuser.pol
2017-06-08 13:43 - 2017-06-08 13:49 - 699400192 _____ C:\Users\Milan\Downloads\bitdefender-rescue-cd.iso
2017-06-08 13:43 - 2017-06-08 13:43 - 03990528 _____ C:\Users\Milan\Downloads\stickifier.exe
2017-06-08 13:21 - 2017-06-08 13:21 - 00000000 ____D C:\ProgramData\cacb9182-5741-0
2017-06-08 13:21 - 2017-06-08 13:21 - 00000000 ____D C:\ProgramData\cacb9182-1d17-1
2017-06-08 13:05 - 2017-06-08 13:37 - 00000000 ____D C:\Users\Milan\Desktop\backups
2017-06-08 12:31 - 2017-06-08 12:31 - 00000000 ____D C:\Users\Milan\Downloads\backups
2017-06-08 11:34 - 2017-06-08 11:34 - 04110280 _____ C:\Users\Milan\Desktop\AdwCleaner.exe
2017-06-08 11:33 - 2017-06-11 14:46 - 00001376 _____ C:\Users\Milan\Desktop\Rkill.txt
2017-06-08 11:33 - 2017-06-08 11:33 - 02030536 _____ (Bleeping Computer, LLC) C:\Users\Milan\Desktop\rkill.exe
2017-06-08 11:33 - 2017-06-08 11:33 - 00000000 _____ C:\Users\Milan\Downloads\AdwCleaner_exe.i6tpgx2.partial
2017-06-08 11:31 - 2017-06-11 14:45 - 00000000 ____D C:\ProgramData\Kaspersky Lab Setup Files
2017-06-08 11:30 - 2017-06-08 11:30 - 00388608 _____ (Trend Micro Inc.) C:\Users\Milan\Desktop\hijackthis.exe
2017-06-08 11:29 - 2017-06-08 11:31 - 198893744 _____ (Лаборатория Касперского) C:\Users\Milan\Downloads\kts17.0.0.611abcderu_12333.exe
2017-06-08 11:27 - 2017-06-08 11:27 - 02598432 _____ (Kaspersky Lab) C:\Users\Milan\Downloads\kav17.0.0.611en_10892.exe
2017-06-08 11:21 - 2017-06-08 11:21 - 782543980 _____ C:\WINDOWS\MEMORY.DMP
2017-06-08 11:21 - 2017-06-08 11:21 - 00000000 ____D C:\WINDOWS\Minidump
2017-06-08 11:00 - 2017-06-08 11:32 - 00000000 ____D C:\ProgramData\WinCacheData
2017-06-08 10:48 - 2017-06-11 14:58 - 00000000 ____D C:\Program Files (x86)\WindowsTM
2017-06-08 10:48 - 2017-06-08 10:56 - 00000000 ____D C:\ProgramData\Cache
2017-06-08 10:48 - 2017-06-08 10:48 - 00440104 _____ C:\WINDOWS\SysWOW64\Auhardwaregl.dll
2017-06-08 10:48 - 2017-06-08 10:48 - 00000000 ____D C:\Users\Public\Documents\XMUpdate
2017-06-07 19:21 - 2017-06-07 19:21 - 00000000 ____D C:\ProgramData\cacb9182-72e5-0
2017-06-07 19:21 - 2017-06-07 19:21 - 00000000 ____D C:\ProgramData\cacb9182-3005-1
2017-06-07 13:21 - 2017-06-07 13:21 - 00000000 ____D C:\ProgramData\cacb9182-4d15-0
2017-06-07 13:21 - 2017-06-07 13:21 - 00000000 ____D C:\ProgramData\cacb9182-16f7-1
2017-06-07 09:04 - 2017-06-11 14:52 - 00000000 ____D C:\ProgramData\{66a64725-512c-0}
2017-06-07 09:04 - 2017-06-11 14:52 - 00000000 ____D C:\ProgramData\{1c4e4827-612c-0}
2017-06-07 09:04 - 2017-06-11 14:52 - 00000000 ____D C:\ProgramData\{11642e8b-212c-1}
2017-06-04 19:21 - 2017-06-04 19:21 - 00000000 ____D C:\ProgramData\cacb9182-4243-1
2017-06-04 19:21 - 2017-06-04 19:21 - 00000000 ____D C:\ProgramData\cacb9182-3cb1-0
2017-06-04 13:21 - 2017-06-04 13:21 - 00000000 ____D C:\ProgramData\cacb9182-58a3-1
2017-06-04 13:21 - 2017-06-04 13:21 - 00000000 ____D C:\ProgramData\cacb9182-46b7-0
2017-05-31 19:21 - 2017-05-31 19:21 - 00000000 ____D C:\ProgramData\cacb9182-6821-1
2017-05-31 19:21 - 2017-05-31 19:21 - 00000000 ____D C:\ProgramData\cacb9182-5fb7-0
2017-05-31 16:17 - 2017-06-08 17:44 - 00000000 ____D C:\ProgramData\{6AD4CF70-DD7F-78DB-4C1D-6F6F2F027478}
2017-05-31 16:17 - 2017-06-07 09:04 - 00000000 ____D C:\ProgramData\{68d03d80-312c-0}
2017-05-31 16:17 - 2017-06-07 09:04 - 00000000 ____D C:\ProgramData\{371e05b5-312c-0}
2017-05-31 16:17 - 2017-05-31 16:17 - 00004182 _____ C:\WINDOWS\System32\Tasks\{F6F2795F-4159-CEF4-FCD7-DDEB722E14BB}
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-06-20 11:07 - 2016-07-16 13:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-06-20 11:06 - 2016-07-16 13:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-06-20 11:06 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-06-20 11:04 - 2016-11-19 19:27 - 00000000 ____D C:\WarThunder
2017-06-20 11:02 - 2016-12-13 20:54 - 00003290 _____ C:\WINDOWS\System32\Tasks\OneDrive Standalone Update Task v2
2017-06-20 11:02 - 2016-11-16 12:23 - 00002391 _____ C:\Users\Milan\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive.lnk
2017-06-20 11:02 - 2016-11-16 12:23 - 00000000 ___RD C:\Users\Milan\OneDrive
2017-06-20 11:01 - 2016-11-16 12:24 - 00000000 ____D C:\Users\Milan\AppData\Roaming\Skype
2017-06-20 11:00 - 2016-12-11 19:12 - 00000000 ____D C:\Users\Milan\Documents\temp
2017-06-20 11:00 - 2016-11-20 18:46 - 00000000 ____D C:\Program Files (x86)\Steam
2017-06-20 10:59 - 2016-11-28 20:06 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-06-20 10:59 - 2016-11-28 19:56 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-06-20 10:59 - 2016-11-16 12:58 - 00000000 ____D C:\ProgramData\NVIDIA
2017-06-20 10:58 - 2017-05-10 15:14 - 00002566 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-06-20 10:58 - 2017-05-10 15:14 - 00002554 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-06-18 19:13 - 2016-11-17 17:01 - 00000000 ____D C:\Users\Milan\AppData\Local\CrashDumps
2017-06-15 16:54 - 2016-11-16 17:28 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-06-15 16:52 - 2016-11-16 17:28 - 133627792 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-06-11 15:18 - 2016-11-28 20:00 - 00000000 ____D C:\Users\Milan
2017-06-11 14:57 - 2016-07-16 08:04 - 00262144 _____ C:\WINDOWS\system32\config\BBI
2017-06-11 14:44 - 2016-12-31 17:52 - 00000000 ___RD C:\Program Files (x86)\Skype
2017-06-11 14:44 - 2016-12-31 17:52 - 00000000 ____D C:\ProgramData\Skype
2017-06-11 14:41 - 2016-07-16 13:45 - 00000000 ____D C:\WINDOWS\INF
2017-06-11 11:48 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\appraiser
2017-06-08 17:44 - 2017-05-10 13:17 - 00000000 ____D C:\Program Files (x86)\YeaDesktop
2017-06-08 17:44 - 2017-05-10 13:16 - 00000000 ____D C:\ProgramData\673b3ff2
2017-06-08 17:44 - 2017-05-10 13:15 - 00000000 ____D C:\Program Files (x86)\KMSPico 10.2.1 Final
2017-06-08 17:44 - 2016-07-16 08:04 - 00000000 ____D C:\Program Files\Scan Picture Plus
2017-06-08 14:21 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\SysWOW64\GroupPolicy
2017-06-08 14:21 - 2015-07-10 13:04 - 00000000 ___HD C:\WINDOWS\system32\GroupPolicy
2017-06-08 13:39 - 2017-05-10 13:18 - 00000324 _____ C:\WINDOWS\Tasks\UCBrowserUpdaterCore.job
2017-06-08 13:23 - 2017-05-10 13:18 - 00002202 _____ C:\WINDOWS\System32\Tasks\UCBrowserUpdaterCore
2017-06-08 12:57 - 2017-05-10 13:16 - 00000000 ____D C:\Users\Milan\AppData\Roaming\Seznam.cz
2017-06-08 12:50 - 2017-05-10 13:17 - 00003656 _____ C:\WINDOWS\System32\Tasks\CreateExplorerShellUnelevatedTask
2017-06-08 11:19 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-06-07 20:14 - 2017-01-11 18:36 - 00000000 ____D C:\Users\Milan\Documents\Euro Truck Simulator 2
2017-06-07 11:09 - 2017-05-10 13:18 - 00000000 ____D C:\Program Files (x86)\UCBrowser
2017-05-31 20:03 - 2016-11-16 17:31 - 00565416 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2017-05-31 16:17 - 2017-05-10 13:22 - 00000000 ____D C:\ProgramData\cacb9182-4f95-0
2017-05-31 16:17 - 2017-05-10 13:16 - 00000000 ____D C:\ProgramData\cacb9182-5437-0
2017-05-31 16:17 - 2017-05-10 13:16 - 00000000 ____D C:\ProgramData\{995375F4-2EF8-C25F-B311-0778DCE49F7E}
2017-05-31 16:17 - 2017-05-10 13:16 - 00000000 ____D C:\ProgramData\{6551029d-012c-1}
2017-05-31 16:17 - 2017-05-10 13:16 - 00000000 ____D C:\ProgramData\{2e3104d9-512c-0}
==================== Files in the root of some directories =======
2017-04-17 11:32 - 2017-04-17 11:32 - 0000022 _____ () C:\Users\Milan\AppData\Local\x-plane_install_11.txt
2017-05-10 13:18 - 2017-05-09 14:58 - 0991232 ___SH () C:\ProgramData\igfxDH.dll
Files to move or delete:
====================
C:\ProgramData\igfxDH.dll
C:\Users\Milan\SkypeSetupFull.exe
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2017-06-18 19:27
==================== End of FRST.txt ============================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Pomalý pc nelze nic instalovat
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pomalý pc nelze nic instalovat
- Přílohy
-
- Addition+jpg.zip
- soubor addition.txt a fotka problemu při spustění instalace antivirového programu
- (88.65 KiB) Staženo 61 x
-
Rudy
- Site Admin
- Příspěvky: 118254
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalý pc nelze nic instalovat
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Pomalý pc nelze nic instalovat
Dobrý den tak ADW nelze spustit piše to to samé jako u instalace Esetu že mě správce zablokoval spuštění i když v tom to počitači je jen jeden učet správce jiné učty zde nejsou do přilohy přikladám screen spuštění
- Přílohy
-
- adw.jpg (48.46 KiB) Zobrazeno 1210 x
-
Rudy
- Site Admin
- Příspěvky: 118254
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalý pc nelze nic instalovat
Zkuste spustit v nouz. režimu. Nevím, co je toto za ptákovinu, ADWCleaner je zceka regulérní aplikace (čistí AC od AdWarů).
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?