Dobrý den,
prosím o pomoc, mám zpomalený počítač, nelze mi instalovat programy na zbavení malware a také mi špatně funguje stahování přes Chrome - těsně před koncem se to sekne.
Posílám FRST log.
Díky moc
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 21-06-2017 01
Ran by Tomáš (administrator) on TOMAS_NOTEBOOK (21-06-2017 22:01:47)
Running from C:\Users\Tomáš\Desktop
Loaded Profiles: Tomáš (Available Profiles: Tomáš & Anička & zspin)
Platform: Windows 10 Home Version 1607 (X64) Language: Angličtina (Spojené státy)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(Apple Computer, Inc.) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Lenovo(beijing) Limited) C:\Windows\System32\LenovoWiFiHotspotSvr.exe
(LENOVO INCORPORATED.) C:\Program Files\lenovo\iMController\SystemAgentService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(BitTorrent, Inc.) C:\Users\Tomáš\AppData\Roaming\uTorrent\utorrent.exe
(Vimicro) C:\Program Files (x86)\USB Camera\VM331STI.EXE
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(CyberLink Corp.) C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgent.exe
(Microsoft Corporation) C:\Windows\System32\InstallAgentUserBroker.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Users\Tomáš\Desktop\FRSTLauncher (1).exe
(Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\18b5353c449735dba57d08446a7d4a0b\WindowsUpdateBox.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [IgfxTray] => C:\windows\system32\igfxtray.exe [401896 2016-11-02] ()
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2234144 2014-01-21] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\windows\system32\rundll32.exe C:\windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [286056 2013-09-24] (Intel Corporation)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1703424 2013-08-11] (IDT, Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-06-03] (Synaptics Incorporated)
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [631808 2017-04-28] (Microsoft Corporation)
HKLM-x32\...\Run: [331BigDog] => C:\Program Files (x86)\USB Camera\VM331STI.EXE [561672 2015-06-12] (Vimicro)
HKLM-x32\...\Run: [UpdateP2GShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [214312 2011-12-07] (CyberLink Corp.)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe [620152 2006-10-23] (Adobe Systems Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Adobe_ID0EZEHM] => C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3Tray.exe [1884160 2007-04-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [438888 2014-01-15] (CANON INC.)
HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [318128 2016-11-16] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
HKU\S-1-5-21-798434008-2211677849-4096002834-1001\...\Run: [uTorrent] => C:\Users\Tomáš\AppData\Roaming\uTorrent\utorrent.exe [398760 2014-04-14] (BitTorrent, Inc.)
HKU\S-1-5-21-798434008-2211677849-4096002834-1001\...\Run: [GoogleChromeAutoLaunch_261D675795E727AD201BBDEE2B3C4324] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1143640 2017-05-09] (Google Inc.)
HKU\S-1-5-21-798434008-2211677849-4096002834-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4299968 2016-07-29] (Disc Soft Ltd)
ShellIconOverlayIdentifiers: [00001LenovoSyncComplete] -> {1E9CED2C-E7B4-4C47-B07A-25416393B67B} => C:\Program Files\Hightail\Hightail for Lenovo\YSINSE64.dll [2014-06-23] (Hightail Inc.)
ShellIconOverlayIdentifiers: [00002LenovoSyncActive] -> {C1285F4D-918F-4EF2-BC94-CAD5B118C835} => C:\Program Files\Hightail\Hightail for Lenovo\YSINSE64.dll [2014-06-23] (Hightail Inc.)
ShellIconOverlayIdentifiers: [00003LenovoSyncError] -> {CE5633DA-1488-4D1D-9A9B-B500297D4A8C} => C:\Program Files\Hightail\Hightail for Lenovo\YSINSE64.dll [2014-06-23] (Hightail Inc.)
ShellIconOverlayIdentifiers: [00004LenovoLocalOnly] -> {C7362DA9-D3AC-4C17-B2F5-2F1823FA04C3} => C:\Program Files\Hightail\Hightail for Lenovo\YSINSE64.dll [2014-06-23] (Hightail Inc.)
ShellIconOverlayIdentifiers-x32: [00001LenovoSyncComplete] -> {1E9CED2C-E7B4-4C47-B07A-25416393B67B} => C:\Program Files (x86)\Hightail\Hightail for Lenovo\YSINSE.dll [2014-06-23] (Hightail Inc.)
ShellIconOverlayIdentifiers-x32: [00002LenovoSyncActive] -> {C1285F4D-918F-4EF2-BC94-CAD5B118C835} => C:\Program Files (x86)\Hightail\Hightail for Lenovo\YSINSE.dll [2014-06-23] (Hightail Inc.)
ShellIconOverlayIdentifiers-x32: [00003LenovoSyncError] -> {CE5633DA-1488-4D1D-9A9B-B500297D4A8C} => C:\Program Files (x86)\Hightail\Hightail for Lenovo\YSINSE.dll [2014-06-23] (Hightail Inc.)
ShellIconOverlayIdentifiers-x32: [00004LenovoLocalOnly] -> {C7362DA9-D3AC-4C17-B2F5-2F1823FA04C3} => C:\Program Files (x86)\Hightail\Hightail for Lenovo\YSINSE.dll [2014-06-23] (Hightail Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Acrobat Speed Launcher.lnk [2015-01-30]
ShortcutTarget: Adobe Acrobat Speed Launcher.lnk -> C:\Windows\Installer\{AC76BA86-1029-0000-7760-000000000003}\_SC_Acrobat.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Acrobat Synchronizer.lnk [2015-01-30]
ShortcutTarget: Adobe Acrobat Synchronizer.lnk -> C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AdobeCollabSync.exe ()
BootExecute: autocheck autochk /p \??\G:autocheck autochk *
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
ProxyServer: [S-1-5-21-798434008-2211677849-4096002834-1001] => cache.natur.cuni.cz:3128
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{0ec779b1-7add-42de-99b7-2dd1d6675e85}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{682ffc7d-7757-41f1-a060-34d5c6d32678}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{d2a39944-62a6-4098-b6af-e61ff3bc9624}: [DhcpNameServer] 10.0.0.138
Internet Explorer:
==================
HKU\S-1-5-21-798434008-2211677849-4096002834-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo13.msn.com/?pc=LCJB
HKU\S-1-5-21-798434008-2211677849-4096002834-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com/?pc=LCJB
HKU\S-1-5-21-798434008-2211677849-4096002834-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com
SearchScopes: HKU\S-1-5-21-798434008-2211677849-4096002834-1001 -> DefaultScope {76BC9401-0695-4C33-94F4-9422F972CC21} URL =
SearchScopes: HKU\S-1-5-21-798434008-2211677849-4096002834-1001 -> {76BC9401-0695-4C33-94F4-9422F972CC21} URL =
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Podpora odkazu pro Adobe PDF Reader -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2012-09-23] (Adobe Systems Incorporated)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll [2006-10-23] (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll [2006-10-23] (Adobe Systems Incorporated)
FireFox:
========
FF DefaultProfile: m97ramew.default
FF ProfilePath: C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\m97ramew.default [2017-02-17]
FF Extension: (No Name) - C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\m97ramew.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [not found]
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-04] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-04] (Intel Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @nokia.com/EnablerPlugin -> C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll [2014-11-19] ( )
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-03-28] (Adobe Systems Inc.)
Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://gmail.com/","hxxp://zseden.cz/","hxxp://mail.zseden.cz/login.php"
CHR Profile: C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default [2017-06-21]
CHR Extension: (Prezentace Google) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-04-11]
CHR Extension: (Dokumenty Google) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-04-11]
CHR Extension: (Disk Google) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-04-11]
CHR Extension: (YouTube) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-04-11]
CHR Extension: (Adblock Plus) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-04-11]
CHR Extension: (Proxy SwitchySharp) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpplabbmogkhghncfbfdeeokoefdjegm [2017-04-11]
CHR Extension: (Tabulky Google) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-04-11]
CHR Extension: (Dokumenty Google offline) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-04-11]
CHR Extension: (AdBlock) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-06-16]
CHR Extension: (Coggle - Collaborative Mind Maps) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbcapocoafbfccjgdgammadkndakcfoi [2017-04-11]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-04-11]
CHR Extension: (Adblock Pro) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocifcklkibdehekfnmflempfgjhbedch [2017-04-11]
CHR Extension: (Gmail) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-04-11]
CHR Extension: (Chrome Media Router) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-12]
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 Bonjour Service; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [229376 2006-02-28] (Apple Computer, Inc.) [File not signed]
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1467072 2016-07-29] (Disc Soft Ltd)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2836296 2016-12-14] (ESET)
S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2015-01-30] (Macrovision Europe Ltd.) [File not signed]
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [14696 2013-09-24] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373744 2016-11-02] (Intel Corporation)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [84616 2013-06-28] ()
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-12] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-12] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-04] (Intel Corporation)
S3 Lenovo EasyPlus Hotspot; C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe [533760 2014-06-03] (Lenovo)
R2 Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [584960 2014-05-22] (LENOVO INCORPORATED.)
R2 LenovoWiFiHotspotSvr; C:\Windows\System32\LenovoWiFiHotspotSvr.exe [198192 2014-12-02] (Lenovo(beijing) Limited)
S3 LSC.Services.SystemService; C:\Program Files\lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [273232 2016-08-24] (Lenovo)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [458176 2016-12-29] (NVIDIA Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1593632 2014-01-21] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [16939296 2014-01-21] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2016-01-23] (Electronic Arts)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390632 2012-04-25] ()
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-07-22] (DEVGURU Co., LTD.)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [338944 2013-08-11] (IDT, Inc.) [File not signed]
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [249032 2015-06-03] (Synaptics Incorporated)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5702416 2015-09-11] (TeamViewer GmbH)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347320 2017-04-28] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103712 2017-04-28] (Microsoft Corporation)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2013-09-07] (Atheros) [File not signed]
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-08-10] (Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-08-10] (Disc Soft Ltd)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [132272 2017-01-17] (ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [106768 2017-01-17] (ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15488 2016-06-28] (ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [180544 2017-01-17] (ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [49672 2017-01-17] (ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [77616 2017-01-17] (ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [96856 2017-01-17] (ESET)
R0 IntelHSWPcc; C:\WINDOWS\System32\drivers\IntelPcc.sys [74344 2013-07-03] (Intel Corporation)
R3 MEIx64; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-04] (Intel Corporation)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvltwu.inf_amd64_0221ce4ec0827f74\nvlddmkm.sys [14190520 2017-01-17] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [39200 2013-12-28] (NVIDIA Corporation)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [42696 2015-06-03] (Synaptics Incorporated)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 vm331avs; C:\WINDOWS\System32\Drivers\vm331avs.sys [802312 2015-06-12] (Vimicro Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-14] ("CyberLink)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-06-21 22:01 - 2017-06-21 22:02 - 00023320 _____ C:\Users\Tomáš\Desktop\FRST.txt
2017-06-21 22:01 - 2017-06-21 22:01 - 00000000 ___HD C:\$WINDOWS.~BT
2017-06-21 22:01 - 2017-06-21 22:01 - 00000000 ____D C:\FRST
2017-06-21 22:00 - 2017-06-21 22:01 - 00112640 _____ (forum.viry.cz) C:\Users\Tomáš\Desktop\FRSTLauncher (1).exe
2017-06-21 21:52 - 2017-06-21 21:52 - 02439680 _____ (Farbar) C:\Users\Tomáš\Desktop\FRST64.exe
2017-06-21 21:38 - 2017-06-21 21:38 - 64232976 _____ (Malwarebytes ) C:\Users\zspin\Downloads\Nepotvrzeno 580676.crdownload
2017-06-21 21:37 - 2017-06-21 21:37 - 00000000 ____D C:\Users\zspin\AppData\Local\Publishers
2017-06-21 21:37 - 2017-06-21 21:37 - 00000000 ____D C:\Users\zspin\AppData\Local\NVIDIA Corporation
2017-06-21 21:31 - 2017-06-21 21:31 - 00000000 ____D C:\Users\zspin\AppData\Local\NVIDIA
2017-06-21 21:27 - 2017-06-21 21:27 - 00000000 ____D C:\Users\zspin\AppData\Roaming\Hightail for Lenovo
2017-06-21 21:27 - 2017-06-21 21:27 - 00000000 ____D C:\Users\zspin\AppData\Local\VirtualStore
2017-06-21 21:22 - 2017-06-21 21:37 - 00000000 ____D C:\Users\zspin\AppData\Local\ConnectedDevicesPlatform
2017-06-21 21:21 - 2017-06-21 21:40 - 00000000 ____D C:\Users\zspin
2017-06-21 21:21 - 2017-06-21 21:38 - 00000000 ____D C:\Users\zspin\AppData\Local\Packages
2017-06-21 21:21 - 2017-06-21 21:36 - 00000000 __SHD C:\Users\zspin\IntelGraphicsProfiles
2017-06-21 21:21 - 2017-06-21 21:21 - 00000020 ___SH C:\Users\zspin\ntuser.ini
2017-06-21 21:21 - 2017-06-21 21:21 - 00000000 _SHDL C:\Users\zspin\My Documents
2017-06-21 21:21 - 2017-06-21 21:21 - 00000000 _SHDL C:\Users\zspin\Documents\My Videos
2017-06-21 21:21 - 2017-06-21 21:21 - 00000000 _SHDL C:\Users\zspin\Documents\My Pictures
2017-06-21 21:21 - 2017-06-21 21:21 - 00000000 _SHDL C:\Users\zspin\Documents\My Music
2017-06-21 21:21 - 2017-06-21 21:21 - 00000000 ____D C:\Users\zspin\AppData\Roaming\Adobe
2017-06-21 21:21 - 2017-06-21 21:21 - 00000000 ____D C:\Users\zspin\AppData\Local\TileDataLayer
2017-06-21 21:21 - 2017-06-21 21:21 - 00000000 ____D C:\Users\zspin\AppData\Local\ESET
2017-06-21 21:21 - 2017-02-17 14:09 - 00000000 ____D C:\Users\zspin\AppData\Local\MicrosoftEdge
2017-06-21 21:21 - 2017-02-17 14:09 - 00000000 ____D C:\Users\zspin\AppData\Local\Google
2017-06-21 21:21 - 2016-11-23 21:56 - 00000000 ____D C:\Users\zspin\AppData\Roaming\Macromedia
2017-06-21 21:21 - 2016-11-23 21:56 - 00000000 ____D C:\Users\zspin\AppData\Local\Microsoft Help
2017-06-21 21:21 - 2014-12-02 12:28 - 00000126 _____ C:\Users\zspin\Desktop\Adobe Photo Offer.url
2017-06-21 21:21 - 2014-03-27 04:21 - 00000190 _____ C:\Users\zspin\Desktop\FREE CALLS with Voxox.url
2017-06-21 21:12 - 2017-06-21 21:12 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-06-21 21:12 - 2017-06-21 21:12 - 00000000 ____D C:\Program Files\Malwarebytes
2017-06-21 20:41 - 2017-06-21 20:41 - 64232976 _____ (Malwarebytes ) C:\Users\Tomáš\Downloads\mb3-setup-consumer-3.1.2.1733-1.0.141-1.0.2092.exe
2017-06-20 23:47 - 2017-06-20 23:57 - 02753658 _____ C:\Users\Tomáš\Desktop\ochutnávka ovoce.pptx
2017-06-20 23:46 - 2017-06-20 23:46 - 00347243 _____ C:\Users\Tomáš\Downloads\97D7.tmp
2017-06-20 23:26 - 2017-06-20 23:26 - 00043969 _____ C:\Users\Tomáš\Downloads\83C6.tmp
2017-06-20 22:53 - 2017-06-20 22:54 - 00000000 ____D C:\Users\Tomáš\Downloads\praktická botanika
2017-06-20 21:21 - 2017-06-20 21:21 - 00427933 _____ C:\Users\Tomáš\Downloads\Vydana faktura - 201751282.pdf
2017-06-20 21:20 - 2017-06-20 21:20 - 00018802 _____ C:\Users\Tomáš\Downloads\252-2.pdf
2017-06-19 15:38 - 2017-06-19 16:08 - 2413901824 _____ C:\Users\Tomáš\Downloads\All the President's Men - Všichni prezidentovi muži.avi
2017-06-19 15:38 - 2017-06-19 15:38 - 00012022 _____ C:\Users\Tomáš\Downloads\[CzT]Vsichni_prezidentovi_muzi_All_the_President_s_Men_1976_CZ_.torrent
2017-06-17 21:21 - 2017-06-17 21:21 - 00010922 _____ C:\Users\Tomáš\Desktop\objednávka ovoce.xlsx
2017-06-17 09:33 - 2017-06-17 09:33 - 00000000 ____D C:\Users\Tomáš\Documents\toxi
2017-06-17 09:32 - 2017-06-17 09:32 - 06566724 _____ C:\Users\Tomáš\Documents\toxi.zip
2017-06-16 23:31 - 2017-06-16 23:31 - 00040960 _____ C:\Users\Tomáš\20170616_233150_domácnost.db
2017-06-09 19:12 - 2017-06-20 23:57 - 00000000 ____D C:\WINDOWS\Panther
2017-06-08 21:34 - 2017-06-08 21:34 - 00000017 _____ C:\Users\Tomáš\AppData\Local\resmon.resmoncfg
2017-06-08 21:33 - 2017-06-08 21:33 - 00001406 _____ C:\Users\Tomáš\Desktop\práce.lnk
2017-06-08 21:32 - 2017-06-08 21:32 - 00001406 _____ C:\Users\Tomáš\Desktop\škola.lnk
2017-06-08 21:31 - 2017-06-17 23:12 - 00000000 ____D C:\Users\Tomáš\Downloads\merta
2017-06-08 21:31 - 2017-06-08 21:31 - 00001404 _____ C:\Users\Tomáš\Desktop\merta.lnk
2017-06-08 21:30 - 2017-06-08 21:30 - 00001426 _____ C:\Users\Tomáš\Desktop\tureček.lnk
2017-06-08 21:28 - 2017-06-08 21:29 - 00000000 ____D C:\Users\Tomáš\Downloads\škola
2017-06-08 21:23 - 2017-06-08 21:24 - 00000000 ____D C:\Users\Tomáš\Downloads\práce
2017-06-06 22:03 - 2017-06-06 22:04 - 00193047 _____ C:\Users\Tomáš\Downloads\VY_32_INOVACE_2_19_Procenta.pdf
2017-06-05 23:10 - 2017-06-05 23:10 - 00014407 _____ C:\Users\Tomáš\Downloads\sběr.xlsx
2017-06-05 23:08 - 2017-06-05 23:19 - 00019487 _____ C:\Users\Tomáš\Desktop\grafy - hluk.xlsx
2017-06-05 19:21 - 2017-06-05 19:21 - 00037888 _____ C:\Users\Tomáš\20170605_192145_domácnost.db
2017-06-05 16:27 - 2017-06-05 16:27 - 00060499 _____ C:\Users\Tomáš\Downloads\210995798_20170531_5_MCZB.pdf
2017-06-04 22:22 - 2017-06-04 22:50 - 00000000 ____D C:\Users\Tomáš\Downloads\matematika - závěrečná práce
2017-06-04 13:49 - 2017-06-04 13:49 - 00000000 ____D C:\Users\Tomáš\AppData\Local\UNP
2017-06-02 22:55 - 2017-06-02 23:11 - 286985520 _____ C:\Users\Tomáš\Downloads\Florenc-13.30-1957-ÄŚeskĂ˝-film-do-mobilu-mĂša.mp4
2017-06-02 22:49 - 2017-06-02 22:50 - 00000000 ____D C:\Program Files\UNP
2017-06-02 22:49 - 2017-06-02 22:49 - 00000000 ____D C:\WINDOWS\system32\UNP
2017-06-01 00:46 - 2017-06-01 12:06 - 00000000 ____D C:\Users\Tomáš\Downloads\adaptace
2017-06-01 00:44 - 2017-06-01 00:45 - 101265781 _____ C:\Users\Tomáš\Downloads\zasilka-MB8XCVKNDFKVWD3S.zip
2017-05-28 13:27 - 2017-05-31 21:46 - 00000000 ___RD C:\Users\Tomáš\Downloads\krkonoše
2017-05-28 13:09 - 2017-05-28 13:17 - 1112319812 _____ C:\Users\Tomáš\Downloads\drive-download-20170528T110646Z-001.zip
2017-05-23 22:53 - 2017-05-23 22:53 - 00344490 _____ C:\Users\Tomáš\Downloads\VR_HP_Mgr_11_042017.pdf
2017-05-23 22:53 - 2017-05-23 22:53 - 00331127 _____ C:\Users\Tomáš\Downloads\Odborný_rada_EPI_ZP_05.2017.pdf
2017-05-23 22:52 - 2017-05-23 22:52 - 00331375 _____ C:\Users\Tomáš\Downloads\VR_HDM_DiS_Bc_18_05_2017.pdf
2017-05-23 22:52 - 2017-05-23 22:52 - 00331375 _____ C:\Users\Tomáš\Downloads\VR_HDM_DiS_Bc_18_05_2017 (1).pdf
2017-05-23 22:50 - 2017-05-23 22:51 - 00443351 _____ C:\Users\Tomáš\Downloads\VĹ_ORA_HDM_-doba_neurÄŤitá_-_19.05.2017_-_19.06.2017.pdf
2017-05-23 21:09 - 2017-05-23 21:09 - 00257951 _____ C:\Users\Tomáš\Downloads\DPP_2016n Pinkr Tomáš 2017.07 ZZA.pdf
2017-05-23 17:54 - 2017-05-23 17:54 - 00000000 __SHD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2017-05-23 17:54 - 2017-05-23 17:54 - 00000000 ____D C:\ProgramData\ESET
2017-05-23 17:54 - 2017-05-23 17:54 - 00000000 ____D C:\Program Files\ESET
2017-05-22 22:05 - 2017-05-22 22:05 - 00036864 _____ C:\Users\Tomáš\20170522_220514_domácnost.db
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-06-21 22:00 - 2016-07-16 13:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-06-21 22:00 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-06-21 22:00 - 2015-01-30 18:20 - 00000000 ____D C:\Users\Tomáš\AppData\Local\Packages
2017-06-21 21:57 - 2015-02-13 21:17 - 00000000 ____D C:\Users\Tomáš\AppData\Roaming\uTorrent
2017-06-21 21:56 - 2016-11-23 22:07 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-06-21 21:56 - 2016-11-23 21:47 - 00000000 ____D C:\Users\Tomáš
2017-06-21 21:56 - 2016-11-23 21:43 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-06-21 21:56 - 2016-11-23 21:42 - 00000000 ____D C:\ProgramData\NVIDIA
2017-06-21 21:56 - 2016-11-23 21:36 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-06-21 21:56 - 2015-01-30 23:01 - 00000000 __SHD C:\Users\Tomáš\IntelGraphicsProfiles
2017-06-21 21:55 - 2015-01-30 20:03 - 00000000 ____D C:\Users\Tomáš\AppData\Local\CrashDumps
2017-06-21 21:54 - 2015-10-10 20:45 - 00000000 ____D C:\Users\Tomáš\AppData\Local\MicrosoftEdge
2017-06-21 21:21 - 2015-09-10 07:42 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-06-21 20:46 - 2016-07-16 08:04 - 01048576 _____ C:\WINDOWS\system32\config\BBI
2017-06-21 20:29 - 2015-02-14 21:20 - 00000000 ___RD C:\Users\Tomáš\OneDrive
2017-06-21 20:27 - 2017-02-17 14:08 - 00000000 ____D C:\Users\Tomáš\AppData\Roaming\Seznam.cz
2017-06-20 23:49 - 2015-02-01 16:09 - 00000000 ____D C:\ProgramData\CanonIJPLM
2017-06-20 22:49 - 2015-02-01 18:18 - 00000000 ____D C:\Users\Tomáš\AppData\Roaming\vlc
2017-06-19 20:27 - 2016-07-16 13:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-06-19 18:54 - 2015-01-30 19:46 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-06-19 18:50 - 2015-01-30 19:46 - 133627792 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-06-17 22:36 - 2017-01-21 21:10 - 00000000 ____D C:\Users\Tomáš\Downloads\tureček
2017-06-17 12:20 - 2015-02-02 17:33 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2017-06-10 18:31 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\appraiser
2017-06-08 21:51 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-06-08 21:34 - 2016-07-16 13:45 - 00000000 ____D C:\WINDOWS\INF
2017-06-08 21:32 - 2015-01-30 23:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2017-06-08 21:28 - 2016-12-18 17:01 - 00000000 ____D C:\Users\Tomáš\Downloads\referáty
2017-06-03 08:36 - 2016-07-16 13:49 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-06-03 08:36 - 2016-07-16 13:49 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-06-02 22:38 - 2015-01-30 23:26 - 00000000 ____D C:\ProgramData\FLEXnet
2017-05-31 01:40 - 2016-03-10 22:08 - 00565416 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2017-05-25 23:33 - 2016-11-20 18:00 - 00000000 ____D C:\Users\Tomáš\Downloads\evoluce
2017-05-23 17:54 - 2016-07-16 08:04 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
==================== Files in the root of some directories =======
2017-06-08 21:34 - 2017-06-08 21:34 - 0000017 _____ () C:\Users\Tomáš\AppData\Local\resmon.resmoncfg
2014-12-02 11:56 - 2014-12-02 11:56 - 0000000 ____N () C:\ProgramData\DP45977C.lfl
Some files in TEMP:
====================
2017-06-15 21:58 - 2017-06-21 20:27 - 0534528 _____ () C:\Users\Tomáš\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Tom ç\Desktop" je 398 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
==================== End Of Log ==============================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Pomalý počítač, nelze nic instalovat
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
tomas.pinkr
- Návštěvník
- Příspěvky: 13
- Registrován: 21 čer 2017 20:48
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalý počítač, nelze nic instalovat
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
tomas.pinkr
- Návštěvník
- Příspěvky: 13
- Registrován: 21 čer 2017 20:48
Re: Pomalý počítač, nelze nic instalovat
Tady to je, včera to trochu pomohlo (koukal jsem do jiného příspěvku, kde se řešilo podobné a tam jste to také doporučoval):
# AdwCleaner v6.047 - Logfile created 21/06/2017 at 22:13:14
# Updated on 19/05/2017 by Malwarebytes
# Database : 2017-06-21.3 [Server]
# Operating System : Windows 10 Home (X64)
# Username : Tomáš - TOMAS_NOTEBOOK
# Running from : C:\Users\Tomáš\Downloads\adwcleaner_6.047 (2).exe
# Mode: Clean
# Support : https://www.malwarebytes.com/support
***** [ Services ] *****
***** [ Folders ] *****
[-] Folder deleted: C:\Users\Tomáš\AppData\Local\FileViewPro
[-] Folder deleted: C:\Program Files (x86)\Lenovo\VisualDiscovery
***** [ Files ] *****
[-] File deleted: C:\WINDOWS\SysNative\VisualDiscoveryOff.ini
[-] File deleted: C:\WINDOWS\SysWOW64\VisualDiscovery.ini
[-] File deleted: C:\WINDOWS\SysWOW64\VisualDiscoveryOff.ini
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Shortcuts ] *****
***** [ Scheduled Tasks ] *****
***** [ Registry ] *****
[-] Key deleted: HKU\S-1-5-21-798434008-2211677849-4096002834-1001\Software\Classes\pokki
[#] Key deleted on reboot: HKCU\Software\Classes\pokki
[-] Key deleted: HKLM\SOFTWARE\Classes\VisualDiscoveryLib.DataContainer
[-] Key deleted: HKLM\SOFTWARE\Classes\VisualDiscoveryLib.DataContainer.1
[-] Key deleted: HKLM\SOFTWARE\Classes\VisualDiscoveryLib.DataController
[-] Key deleted: HKLM\SOFTWARE\Classes\VisualDiscoveryLib.DataController.1
[-] Key deleted: HKLM\SOFTWARE\Classes\VisualDiscoveryLib.DataTable
[-] Key deleted: HKLM\SOFTWARE\Classes\VisualDiscoveryLib.DataTable.1
[-] Key deleted: HKLM\SOFTWARE\Classes\VisualDiscoveryLib.DataTableFields
[-] Key deleted: HKLM\SOFTWARE\Classes\VisualDiscoveryLib.DataTableFields.1
[-] Key deleted: HKLM\SOFTWARE\Classes\VisualDiscoveryLib.DataTableHolder
[-] Key deleted: HKLM\SOFTWARE\Classes\VisualDiscoveryLib.DataTableHolder.1
[-] Key deleted: HKLM\SOFTWARE\Classes\VisualDiscoveryLib.LSPLogic
[-] Key deleted: HKLM\SOFTWARE\Classes\VisualDiscoveryLib.LSPLogic.1
[-] Key deleted: HKLM\SOFTWARE\Classes\VisualDiscoveryLib.ReadOnlyManager
[-] Key deleted: HKLM\SOFTWARE\Classes\VisualDiscoveryLib.ReadOnlyManager.1
[-] Key deleted: HKLM\SOFTWARE\Classes\VisualDiscoveryLib.WFPController
[-] Key deleted: HKLM\SOFTWARE\Classes\VisualDiscoveryLib.WFPController.1
[#] Key deleted on reboot: [x64] HKCU\Software\Classes\pokki
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\VisualDiscoveryLib.DataContainer
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\VisualDiscoveryLib.DataContainer.1
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\VisualDiscoveryLib.DataController
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\VisualDiscoveryLib.DataController.1
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\VisualDiscoveryLib.DataTable
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\VisualDiscoveryLib.DataTable.1
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\VisualDiscoveryLib.DataTableFields
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\VisualDiscoveryLib.DataTableFields.1
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\VisualDiscoveryLib.DataTableHolder
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\VisualDiscoveryLib.DataTableHolder.1
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\VisualDiscoveryLib.LSPLogic
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\VisualDiscoveryLib.LSPLogic.1
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\VisualDiscoveryLib.ReadOnlyManager
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\VisualDiscoveryLib.ReadOnlyManager.1
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\VisualDiscoveryLib.WFPController
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\VisualDiscoveryLib.WFPController.1
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{02966FA9-C01A-47E7-A169-C83AEA1FB0BA}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{9AD5C084-B6E6-456A-8BA2-A559663780E5}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{70C7334A-66D9-46DE-A4E2-6B923C7DB94E}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{5780633B-414C-446F-8EB2-FF1C9A731C99}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{4EECDED2-40FB-4500-85B4-86FB0EBECA68}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{10A7F29D-4B00-40EC-B07D-8616DF8135E6}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{05FF6A00-76A3-4AA1-A9A4-A782152ABE60}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{3AE76A17-C344-4A83-81CE-65EFEE41E42D}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{4E9EB4D5-C929-4005-AC62-1856B1DA5A24}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{8FAF962C-3EDE-405E-B1D0-62B8235C6044}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{2E5FA7B4-61A2-4662-BBCE-62BBB20FC649}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{5D7F05E3-075A-43AF-8BC7-21E2F7F38845}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{617E26CE-E6E1-4C75-A68A-A001F2B98491}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{79FBDBEA-A722-4ABD-BEC0-B7D463F6BA0E}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{8128586C-DF69-4266-873F-CF4C6F705A7C}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{C1F9CFCE-A7DC-4072-8B31-1DEA57004C86}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{EA4AD895-2A7F-430E-B973-DEE6C4E743A9}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{EBF4B60F-A863-426F-BE6F-5DFE83BC574F}
[-] Key deleted: HKLM\SOFTWARE\Classes\TypeLib\{CB6BF8B6-E12B-42FA-A478-91BCCDE475DC}
[-] Key deleted: HKLM\SOFTWARE\LENOVO\VisualDiscovery
[-] Key deleted: HKLM\SOFTWARE\Superfish Inc. VisualDiscovery
[-] Key deleted: HKLM\SOFTWARE\VisualDiscovery
[-] Key deleted: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Superfish Inc. VisualDiscovery
[-] Key deleted: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
[-] Key deleted: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
[#] Key deleted on reboot: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
[#] Key deleted on reboot: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
[-] Value deleted: HKU\S-1-5-21-798434008-2211677849-4096002834-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [Pokki]
***** [ Web browsers ] *****
[-] [C:\Users\zspin\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Deleted: aol.com
[-] [C:\Users\zspin\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Deleted: ask.com
*************************
:: "Tracing" keys deleted
:: Winsock settings cleared
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [6706 Bytes] - [21/06/2017 22:13:14]
C:\AdwCleaner\AdwCleaner[S1].txt - [4903 Bytes] - [09/08/2016 18:19:43]
C:\AdwCleaner\AdwCleaner[S2].txt - [6764 Bytes] - [21/06/2017 22:10:52]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [6925 Bytes] ##########
Díky
# AdwCleaner v6.047 - Logfile created 21/06/2017 at 22:13:14
# Updated on 19/05/2017 by Malwarebytes
# Database : 2017-06-21.3 [Server]
# Operating System : Windows 10 Home (X64)
# Username : Tomáš - TOMAS_NOTEBOOK
# Running from : C:\Users\Tomáš\Downloads\adwcleaner_6.047 (2).exe
# Mode: Clean
# Support : https://www.malwarebytes.com/support
***** [ Services ] *****
***** [ Folders ] *****
[-] Folder deleted: C:\Users\Tomáš\AppData\Local\FileViewPro
[-] Folder deleted: C:\Program Files (x86)\Lenovo\VisualDiscovery
***** [ Files ] *****
[-] File deleted: C:\WINDOWS\SysNative\VisualDiscoveryOff.ini
[-] File deleted: C:\WINDOWS\SysWOW64\VisualDiscovery.ini
[-] File deleted: C:\WINDOWS\SysWOW64\VisualDiscoveryOff.ini
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Shortcuts ] *****
***** [ Scheduled Tasks ] *****
***** [ Registry ] *****
[-] Key deleted: HKU\S-1-5-21-798434008-2211677849-4096002834-1001\Software\Classes\pokki
[#] Key deleted on reboot: HKCU\Software\Classes\pokki
[-] Key deleted: HKLM\SOFTWARE\Classes\VisualDiscoveryLib.DataContainer
[-] Key deleted: HKLM\SOFTWARE\Classes\VisualDiscoveryLib.DataContainer.1
[-] Key deleted: HKLM\SOFTWARE\Classes\VisualDiscoveryLib.DataController
[-] Key deleted: HKLM\SOFTWARE\Classes\VisualDiscoveryLib.DataController.1
[-] Key deleted: HKLM\SOFTWARE\Classes\VisualDiscoveryLib.DataTable
[-] Key deleted: HKLM\SOFTWARE\Classes\VisualDiscoveryLib.DataTable.1
[-] Key deleted: HKLM\SOFTWARE\Classes\VisualDiscoveryLib.DataTableFields
[-] Key deleted: HKLM\SOFTWARE\Classes\VisualDiscoveryLib.DataTableFields.1
[-] Key deleted: HKLM\SOFTWARE\Classes\VisualDiscoveryLib.DataTableHolder
[-] Key deleted: HKLM\SOFTWARE\Classes\VisualDiscoveryLib.DataTableHolder.1
[-] Key deleted: HKLM\SOFTWARE\Classes\VisualDiscoveryLib.LSPLogic
[-] Key deleted: HKLM\SOFTWARE\Classes\VisualDiscoveryLib.LSPLogic.1
[-] Key deleted: HKLM\SOFTWARE\Classes\VisualDiscoveryLib.ReadOnlyManager
[-] Key deleted: HKLM\SOFTWARE\Classes\VisualDiscoveryLib.ReadOnlyManager.1
[-] Key deleted: HKLM\SOFTWARE\Classes\VisualDiscoveryLib.WFPController
[-] Key deleted: HKLM\SOFTWARE\Classes\VisualDiscoveryLib.WFPController.1
[#] Key deleted on reboot: [x64] HKCU\Software\Classes\pokki
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\VisualDiscoveryLib.DataContainer
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\VisualDiscoveryLib.DataContainer.1
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\VisualDiscoveryLib.DataController
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\VisualDiscoveryLib.DataController.1
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\VisualDiscoveryLib.DataTable
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\VisualDiscoveryLib.DataTable.1
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\VisualDiscoveryLib.DataTableFields
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\VisualDiscoveryLib.DataTableFields.1
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\VisualDiscoveryLib.DataTableHolder
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\VisualDiscoveryLib.DataTableHolder.1
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\VisualDiscoveryLib.LSPLogic
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\VisualDiscoveryLib.LSPLogic.1
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\VisualDiscoveryLib.ReadOnlyManager
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\VisualDiscoveryLib.ReadOnlyManager.1
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\VisualDiscoveryLib.WFPController
[#] Key deleted on reboot: [x64] HKLM\SOFTWARE\Classes\VisualDiscoveryLib.WFPController.1
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{02966FA9-C01A-47E7-A169-C83AEA1FB0BA}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{9AD5C084-B6E6-456A-8BA2-A559663780E5}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{70C7334A-66D9-46DE-A4E2-6B923C7DB94E}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{5780633B-414C-446F-8EB2-FF1C9A731C99}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{4EECDED2-40FB-4500-85B4-86FB0EBECA68}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{10A7F29D-4B00-40EC-B07D-8616DF8135E6}
[-] Key deleted: HKLM\SOFTWARE\Classes\CLSID\{05FF6A00-76A3-4AA1-A9A4-A782152ABE60}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{3AE76A17-C344-4A83-81CE-65EFEE41E42D}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{4E9EB4D5-C929-4005-AC62-1856B1DA5A24}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{813A22E0-3E2B-4188-9BDA-ECA9878B8D48}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{8FAF962C-3EDE-405E-B1D0-62B8235C6044}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{BCFF5F55-6F44-11D2-86F8-00104B265ED5}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{2E5FA7B4-61A2-4662-BBCE-62BBB20FC649}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{5D7F05E3-075A-43AF-8BC7-21E2F7F38845}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{617E26CE-E6E1-4C75-A68A-A001F2B98491}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{79FBDBEA-A722-4ABD-BEC0-B7D463F6BA0E}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{8128586C-DF69-4266-873F-CF4C6F705A7C}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{C1F9CFCE-A7DC-4072-8B31-1DEA57004C86}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{EA4AD895-2A7F-430E-B973-DEE6C4E743A9}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{EBF4B60F-A863-426F-BE6F-5DFE83BC574F}
[-] Key deleted: HKLM\SOFTWARE\Classes\TypeLib\{CB6BF8B6-E12B-42FA-A478-91BCCDE475DC}
[-] Key deleted: HKLM\SOFTWARE\LENOVO\VisualDiscovery
[-] Key deleted: HKLM\SOFTWARE\Superfish Inc. VisualDiscovery
[-] Key deleted: HKLM\SOFTWARE\VisualDiscovery
[-] Key deleted: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Superfish Inc. VisualDiscovery
[-] Key deleted: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
[-] Key deleted: HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
[#] Key deleted on reboot: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\castplatform.com
[#] Key deleted on reboot: [x64] HKCU\Software\Microsoft\Internet Explorer\DOMStorage\cdn.castplatform.com
[-] Value deleted: HKU\S-1-5-21-798434008-2211677849-4096002834-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [Pokki]
***** [ Web browsers ] *****
[-] [C:\Users\zspin\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Deleted: aol.com
[-] [C:\Users\zspin\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Deleted: ask.com
*************************
:: "Tracing" keys deleted
:: Winsock settings cleared
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [6706 Bytes] - [21/06/2017 22:13:14]
C:\AdwCleaner\AdwCleaner[S1].txt - [4903 Bytes] - [09/08/2016 18:19:43]
C:\AdwCleaner\AdwCleaner[S2].txt - [6764 Bytes] - [21/06/2017 22:10:52]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [6925 Bytes] ##########
Díky
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalý počítač, nelze nic instalovat
Dejte nový log FRST.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
tomas.pinkr
- Návštěvník
- Příspěvky: 13
- Registrován: 21 čer 2017 20:48
Re: Pomalý počítač, nelze nic instalovat
Tady je:
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 21-06-2017 01
Ran by Tomáš (administrator) on TOMAS_NOTEBOOK (22-06-2017 21:49:28)
Running from C:\Users\Tomáš\Desktop
Loaded Profiles: Tomáš (Available Profiles: Tomáš & Anička & zspin)
Platform: Windows 10 Home Version 1607 (X64) Language: Angličtina (Spojené státy)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Apple Computer, Inc.) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
(LENOVO INCORPORATED.) C:\Program Files\lenovo\iMController\SystemAgentService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Lenovo(beijing) Limited) C:\Windows\System32\LenovoWiFiHotspotSvr.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Vimicro) C:\Program Files (x86)\USB Camera\VM331STI.EXE
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1705.1301.0_x64__8wekyb3d8bbwe\Calculator.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.18.614.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Users\Tomáš\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe
(Microsoft Corporation) C:\Users\Tomáš\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.14393.1439_none_7efe016621f50bd0\TiWorker.exe
(BitTorrent, Inc.) C:\Users\Tomáš\AppData\Roaming\uTorrent\utorrent.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\18b5353c449735dba57d08446a7d4a0b\WindowsUpdateBox.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [IgfxTray] => C:\windows\system32\igfxtray.exe [401896 2016-11-02] ()
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2234144 2014-01-21] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\windows\system32\rundll32.exe C:\windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [286056 2013-09-24] (Intel Corporation)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1703424 2013-08-11] (IDT, Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-06-03] (Synaptics Incorporated)
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [631808 2017-04-28] (Microsoft Corporation)
HKLM-x32\...\Run: [331BigDog] => C:\Program Files (x86)\USB Camera\VM331STI.EXE [561672 2015-06-12] (Vimicro)
HKLM-x32\...\Run: [UpdateP2GShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [214312 2011-12-07] (CyberLink Corp.)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe [620152 2006-10-23] (Adobe Systems Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Adobe_ID0EZEHM] => C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3Tray.exe [1884160 2007-04-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [438888 2014-01-15] (CANON INC.)
HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [318128 2016-11-16] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
HKU\S-1-5-21-798434008-2211677849-4096002834-1001\...\Run: [GoogleChromeAutoLaunch_261D675795E727AD201BBDEE2B3C4324] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1143640 2017-05-09] (Google Inc.)
HKU\S-1-5-21-798434008-2211677849-4096002834-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4299968 2016-07-29] (Disc Soft Ltd)
ShellIconOverlayIdentifiers: [00001LenovoSyncComplete] -> {1E9CED2C-E7B4-4C47-B07A-25416393B67B} => C:\Program Files\Hightail\Hightail for Lenovo\YSINSE64.dll [2014-06-23] (Hightail Inc.)
ShellIconOverlayIdentifiers: [00002LenovoSyncActive] -> {C1285F4D-918F-4EF2-BC94-CAD5B118C835} => C:\Program Files\Hightail\Hightail for Lenovo\YSINSE64.dll [2014-06-23] (Hightail Inc.)
ShellIconOverlayIdentifiers: [00003LenovoSyncError] -> {CE5633DA-1488-4D1D-9A9B-B500297D4A8C} => C:\Program Files\Hightail\Hightail for Lenovo\YSINSE64.dll [2014-06-23] (Hightail Inc.)
ShellIconOverlayIdentifiers: [00004LenovoLocalOnly] -> {C7362DA9-D3AC-4C17-B2F5-2F1823FA04C3} => C:\Program Files\Hightail\Hightail for Lenovo\YSINSE64.dll [2014-06-23] (Hightail Inc.)
ShellIconOverlayIdentifiers-x32: [00001LenovoSyncComplete] -> {1E9CED2C-E7B4-4C47-B07A-25416393B67B} => C:\Program Files (x86)\Hightail\Hightail for Lenovo\YSINSE.dll [2014-06-23] (Hightail Inc.)
ShellIconOverlayIdentifiers-x32: [00002LenovoSyncActive] -> {C1285F4D-918F-4EF2-BC94-CAD5B118C835} => C:\Program Files (x86)\Hightail\Hightail for Lenovo\YSINSE.dll [2014-06-23] (Hightail Inc.)
ShellIconOverlayIdentifiers-x32: [00003LenovoSyncError] -> {CE5633DA-1488-4D1D-9A9B-B500297D4A8C} => C:\Program Files (x86)\Hightail\Hightail for Lenovo\YSINSE.dll [2014-06-23] (Hightail Inc.)
ShellIconOverlayIdentifiers-x32: [00004LenovoLocalOnly] -> {C7362DA9-D3AC-4C17-B2F5-2F1823FA04C3} => C:\Program Files (x86)\Hightail\Hightail for Lenovo\YSINSE.dll [2014-06-23] (Hightail Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Acrobat Speed Launcher.lnk [2015-01-30]
ShortcutTarget: Adobe Acrobat Speed Launcher.lnk -> C:\Windows\Installer\{AC76BA86-1029-0000-7760-000000000003}\_SC_Acrobat.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Acrobat Synchronizer.lnk [2015-01-30]
ShortcutTarget: Adobe Acrobat Synchronizer.lnk -> C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AdobeCollabSync.exe ()
BootExecute: autocheck autochk /p \??\G:autocheck autochk *
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
ProxyServer: [S-1-5-21-798434008-2211677849-4096002834-1001] => cache.natur.cuni.cz:3128
Tcpip\..\Interfaces\{0ec779b1-7add-42de-99b7-2dd1d6675e85}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{682ffc7d-7757-41f1-a060-34d5c6d32678}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{d2a39944-62a6-4098-b6af-e61ff3bc9624}: [DhcpNameServer] 10.0.0.138
Internet Explorer:
==================
HKU\S-1-5-21-798434008-2211677849-4096002834-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo13.msn.com/?pc=LCJB
HKU\S-1-5-21-798434008-2211677849-4096002834-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com/?pc=LCJB
HKU\S-1-5-21-798434008-2211677849-4096002834-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com
SearchScopes: HKU\S-1-5-21-798434008-2211677849-4096002834-1001 -> DefaultScope {76BC9401-0695-4C33-94F4-9422F972CC21} URL =
SearchScopes: HKU\S-1-5-21-798434008-2211677849-4096002834-1001 -> {76BC9401-0695-4C33-94F4-9422F972CC21} URL =
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Podpora odkazu pro Adobe PDF Reader -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2012-09-23] (Adobe Systems Incorporated)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll [2006-10-23] (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll [2006-10-23] (Adobe Systems Incorporated)
FireFox:
========
FF DefaultProfile: m97ramew.default
FF ProfilePath: C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\m97ramew.default [2017-02-17]
FF Extension: (No Name) - C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\m97ramew.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [not found]
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-04] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-04] (Intel Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @nokia.com/EnablerPlugin -> C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll [2014-11-19] ( )
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-03-28] (Adobe Systems Inc.)
Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://gmail.com/","hxxp://zseden.cz/","hxxp://mail.zseden.cz/login.php"
CHR Profile: C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default [2017-06-22]
CHR Extension: (Prezentace Google) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-04-11]
CHR Extension: (Dokumenty Google) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-04-11]
CHR Extension: (Disk Google) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-04-11]
CHR Extension: (YouTube) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-04-11]
CHR Extension: (Adblock Plus) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-04-11]
CHR Extension: (Proxy SwitchySharp) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpplabbmogkhghncfbfdeeokoefdjegm [2017-04-11]
CHR Extension: (Tabulky Google) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-04-11]
CHR Extension: (Dokumenty Google offline) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-04-11]
CHR Extension: (AdBlock) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-06-22]
CHR Extension: (Coggle - Collaborative Mind Maps) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbcapocoafbfccjgdgammadkndakcfoi [2017-04-11]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-04-11]
CHR Extension: (Adblock Pro) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocifcklkibdehekfnmflempfgjhbedch [2017-04-11]
CHR Extension: (Gmail) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-04-11]
CHR Extension: (Chrome Media Router) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-12]
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 Bonjour Service; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [229376 2006-02-28] (Apple Computer, Inc.) [File not signed]
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1467072 2016-07-29] (Disc Soft Ltd)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2836296 2016-12-14] (ESET)
S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2015-01-30] (Macrovision Europe Ltd.) [File not signed]
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [14696 2013-09-24] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373744 2016-11-02] (Intel Corporation)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [84616 2013-06-28] ()
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-12] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-12] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-04] (Intel Corporation)
S3 Lenovo EasyPlus Hotspot; C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe [533760 2014-06-03] (Lenovo)
R2 Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [584960 2014-05-22] (LENOVO INCORPORATED.)
R2 LenovoWiFiHotspotSvr; C:\Windows\System32\LenovoWiFiHotspotSvr.exe [198192 2014-12-02] (Lenovo(beijing) Limited)
S3 LSC.Services.SystemService; C:\Program Files\lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [273232 2016-08-24] (Lenovo)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [458176 2016-12-29] (NVIDIA Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1593632 2014-01-21] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [16939296 2014-01-21] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2016-01-23] (Electronic Arts)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390632 2012-04-25] ()
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-07-22] (DEVGURU Co., LTD.)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [338944 2013-08-11] (IDT, Inc.) [File not signed]
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [249032 2015-06-03] (Synaptics Incorporated)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5702416 2015-09-11] (TeamViewer GmbH)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347320 2017-04-28] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103712 2017-04-28] (Microsoft Corporation)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2013-09-07] (Atheros) [File not signed]
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-08-10] (Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-08-10] (Disc Soft Ltd)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [132272 2017-01-17] (ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [106768 2017-01-17] (ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15488 2016-06-28] (ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [180544 2017-01-17] (ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [49672 2017-01-17] (ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [77616 2017-01-17] (ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [96856 2017-01-17] (ESET)
R0 IntelHSWPcc; C:\WINDOWS\System32\drivers\IntelPcc.sys [74344 2013-07-03] (Intel Corporation)
R3 MEIx64; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-04] (Intel Corporation)
R1 MpKsl74bf2105; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{4911FE03-6783-4F7A-B0A2-3CD8FCABA700}\MpKsl74bf2105.sys [44928 2017-06-21] (Microsoft Corporation)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvltwu.inf_amd64_0221ce4ec0827f74\nvlddmkm.sys [14190520 2017-01-17] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [39200 2013-12-28] (NVIDIA Corporation)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [42696 2015-06-03] (Synaptics Incorporated)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 vm331avs; C:\WINDOWS\System32\Drivers\vm331avs.sys [802312 2015-06-12] (Vimicro Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-14] ("CyberLink)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-06-22 21:49 - 2017-06-22 21:49 - 00000000 ___HD C:\$WINDOWS.~BT
2017-06-22 21:48 - 2017-06-22 21:48 - 00039391 _____ C:\Users\Tomáš\Desktop\FRST3.txt
2017-06-22 21:47 - 2017-06-22 21:48 - 00046182 _____ C:\Users\Tomáš\Desktop\Addition-2.txt
2017-06-22 21:46 - 2017-06-22 21:46 - 00000000 ____D C:\Users\Tomáš\Downloads\The Hateful Eight 2015 BRRip x264 Ac3 -RiSiNG
2017-06-22 21:45 - 2017-06-22 21:49 - 00023283 _____ C:\Users\Tomáš\Desktop\FRST.txt
2017-06-22 21:45 - 2017-06-22 21:49 - 00000000 _____ C:\Users\Tomáš\Desktop\FRST-2.txt
2017-06-22 20:39 - 2017-06-22 20:39 - 00019356 _____ C:\Users\Tomáš\Downloads\[CzT]Osm_hroznych_The_Hateful_Eight_2015_CZ_.torrent
2017-06-22 20:34 - 2017-06-22 21:49 - 1329289216 _____ C:\Users\Tomáš\Downloads\Anthropoid.2016.BRRip.XviD.AC3.CZ.avi
2017-06-22 20:31 - 2017-06-22 20:31 - 00013160 _____ C:\Users\Tomáš\Downloads\[CzT]Anthropoid_2016_CZ_.torrent
2017-06-22 20:11 - 2017-06-22 20:11 - 00351430 _____ C:\Users\Tomáš\Downloads\přihláška.pdf
2017-06-21 22:48 - 2017-06-21 22:48 - 02267350 _____ C:\Users\Tomáš\Downloads\brožura-krimi.pdf
2017-06-21 22:15 - 2017-06-21 22:15 - 00007083 _____ C:\Users\Tomáš\Desktop\AdwCleaner[C0].txt
2017-06-21 22:08 - 2017-06-21 22:08 - 04110280 _____ C:\Users\Tomáš\Downloads\adwcleaner_6.047 (2).exe
2017-06-21 22:08 - 2017-06-21 22:08 - 01830925 _____ C:\Users\Tomáš\Downloads\C4B6.tmp
2017-06-21 22:08 - 2017-06-21 22:08 - 01051929 _____ C:\Users\Tomáš\Downloads\C529.tmp
2017-06-21 22:03 - 2017-06-21 22:04 - 04110280 _____ C:\Users\Tomáš\Downloads\Nepotvrzeno 936077.crdownload
2017-06-21 22:01 - 2017-06-22 21:49 - 00000000 ____D C:\FRST
2017-06-21 22:00 - 2017-06-21 22:01 - 00112640 _____ (forum.viry.cz) C:\Users\Tomáš\Desktop\FRSTLauncher (1).exe
2017-06-21 21:52 - 2017-06-22 21:44 - 02439680 _____ (Farbar) C:\Users\Tomáš\Desktop\FRST64.exe
2017-06-21 21:38 - 2017-06-21 21:38 - 64232976 _____ (Malwarebytes ) C:\Users\zspin\Downloads\Nepotvrzeno 580676.crdownload
2017-06-21 21:37 - 2017-06-21 21:37 - 00000000 ____D C:\Users\zspin\AppData\Local\Publishers
2017-06-21 21:37 - 2017-06-21 21:37 - 00000000 ____D C:\Users\zspin\AppData\Local\NVIDIA Corporation
2017-06-21 21:31 - 2017-06-21 21:31 - 00000000 ____D C:\Users\zspin\AppData\Local\NVIDIA
2017-06-21 21:27 - 2017-06-21 21:27 - 00000000 ____D C:\Users\zspin\AppData\Roaming\Hightail for Lenovo
2017-06-21 21:27 - 2017-06-21 21:27 - 00000000 ____D C:\Users\zspin\AppData\Local\VirtualStore
2017-06-21 21:22 - 2017-06-21 21:37 - 00000000 ____D C:\Users\zspin\AppData\Local\ConnectedDevicesPlatform
2017-06-21 21:21 - 2017-06-21 21:40 - 00000000 ____D C:\Users\zspin
2017-06-21 21:21 - 2017-06-21 21:38 - 00000000 ____D C:\Users\zspin\AppData\Local\Packages
2017-06-21 21:21 - 2017-06-21 21:36 - 00000000 __SHD C:\Users\zspin\IntelGraphicsProfiles
2017-06-21 21:21 - 2017-06-21 21:21 - 00000020 ___SH C:\Users\zspin\ntuser.ini
2017-06-21 21:21 - 2017-06-21 21:21 - 00000000 _SHDL C:\Users\zspin\My Documents
2017-06-21 21:21 - 2017-06-21 21:21 - 00000000 _SHDL C:\Users\zspin\Documents\My Videos
2017-06-21 21:21 - 2017-06-21 21:21 - 00000000 _SHDL C:\Users\zspin\Documents\My Pictures
2017-06-21 21:21 - 2017-06-21 21:21 - 00000000 _SHDL C:\Users\zspin\Documents\My Music
2017-06-21 21:21 - 2017-06-21 21:21 - 00000000 ____D C:\Users\zspin\AppData\Roaming\Adobe
2017-06-21 21:21 - 2017-06-21 21:21 - 00000000 ____D C:\Users\zspin\AppData\Local\TileDataLayer
2017-06-21 21:21 - 2017-06-21 21:21 - 00000000 ____D C:\Users\zspin\AppData\Local\ESET
2017-06-21 21:21 - 2017-02-17 14:09 - 00000000 ____D C:\Users\zspin\AppData\Local\MicrosoftEdge
2017-06-21 21:21 - 2017-02-17 14:09 - 00000000 ____D C:\Users\zspin\AppData\Local\Google
2017-06-21 21:21 - 2016-11-23 21:56 - 00000000 ____D C:\Users\zspin\AppData\Roaming\Macromedia
2017-06-21 21:21 - 2016-11-23 21:56 - 00000000 ____D C:\Users\zspin\AppData\Local\Microsoft Help
2017-06-21 21:21 - 2014-12-02 12:28 - 00000126 _____ C:\Users\zspin\Desktop\Adobe Photo Offer.url
2017-06-21 21:21 - 2014-03-27 04:21 - 00000190 _____ C:\Users\zspin\Desktop\FREE CALLS with Voxox.url
2017-06-21 21:12 - 2017-06-21 21:12 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-06-21 21:12 - 2017-06-21 21:12 - 00000000 ____D C:\Program Files\Malwarebytes
2017-06-21 20:41 - 2017-06-21 20:41 - 64232976 _____ (Malwarebytes ) C:\Users\Tomáš\Downloads\mb3-setup-consumer-3.1.2.1733-1.0.141-1.0.2092.exe
2017-06-20 23:47 - 2017-06-20 23:57 - 02753658 _____ C:\Users\Tomáš\Desktop\ochutnávka ovoce.pptx
2017-06-20 23:46 - 2017-06-20 23:46 - 00347243 _____ C:\Users\Tomáš\Downloads\97D7.tmp
2017-06-20 23:26 - 2017-06-20 23:26 - 00043969 _____ C:\Users\Tomáš\Downloads\83C6.tmp
2017-06-20 22:53 - 2017-06-20 22:54 - 00000000 ____D C:\Users\Tomáš\Downloads\praktická botanika
2017-06-20 21:21 - 2017-06-20 21:21 - 00427933 _____ C:\Users\Tomáš\Downloads\Vydana faktura - 201751282.pdf
2017-06-20 21:20 - 2017-06-20 21:20 - 00018802 _____ C:\Users\Tomáš\Downloads\252-2.pdf
2017-06-19 15:38 - 2017-06-19 16:08 - 2413901824 _____ C:\Users\Tomáš\Downloads\All the President's Men - Všichni prezidentovi muži.avi
2017-06-19 15:38 - 2017-06-19 15:38 - 00012022 _____ C:\Users\Tomáš\Downloads\[CzT]Vsichni_prezidentovi_muzi_All_the_President_s_Men_1976_CZ_.torrent
2017-06-17 21:21 - 2017-06-17 21:21 - 00010922 _____ C:\Users\Tomáš\Desktop\objednávka ovoce.xlsx
2017-06-17 09:33 - 2017-06-17 09:33 - 00000000 ____D C:\Users\Tomáš\Documents\toxi
2017-06-17 09:32 - 2017-06-17 09:32 - 06566724 _____ C:\Users\Tomáš\Documents\toxi.zip
2017-06-16 23:31 - 2017-06-16 23:31 - 00040960 _____ C:\Users\Tomáš\20170616_233150_domácnost.db
2017-06-09 19:12 - 2017-06-20 23:57 - 00000000 ____D C:\WINDOWS\Panther
2017-06-08 21:34 - 2017-06-08 21:34 - 00000017 _____ C:\Users\Tomáš\AppData\Local\resmon.resmoncfg
2017-06-08 21:33 - 2017-06-08 21:33 - 00001406 _____ C:\Users\Tomáš\Desktop\práce.lnk
2017-06-08 21:32 - 2017-06-08 21:32 - 00001406 _____ C:\Users\Tomáš\Desktop\škola.lnk
2017-06-08 21:31 - 2017-06-17 23:12 - 00000000 ____D C:\Users\Tomáš\Downloads\merta
2017-06-08 21:31 - 2017-06-08 21:31 - 00001404 _____ C:\Users\Tomáš\Desktop\merta.lnk
2017-06-08 21:30 - 2017-06-08 21:30 - 00001426 _____ C:\Users\Tomáš\Desktop\tureček.lnk
2017-06-08 21:28 - 2017-06-08 21:29 - 00000000 ____D C:\Users\Tomáš\Downloads\škola
2017-06-08 21:23 - 2017-06-08 21:24 - 00000000 ____D C:\Users\Tomáš\Downloads\práce
2017-06-06 22:03 - 2017-06-06 22:04 - 00193047 _____ C:\Users\Tomáš\Downloads\VY_32_INOVACE_2_19_Procenta.pdf
2017-06-05 23:10 - 2017-06-05 23:10 - 00014407 _____ C:\Users\Tomáš\Downloads\sběr.xlsx
2017-06-05 23:08 - 2017-06-05 23:19 - 00019487 _____ C:\Users\Tomáš\Desktop\grafy - hluk.xlsx
2017-06-05 19:21 - 2017-06-05 19:21 - 00037888 _____ C:\Users\Tomáš\20170605_192145_domácnost.db
2017-06-05 16:27 - 2017-06-05 16:27 - 00060499 _____ C:\Users\Tomáš\Downloads\210995798_20170531_5_MCZB.pdf
2017-06-04 22:22 - 2017-06-04 22:50 - 00000000 ____D C:\Users\Tomáš\Downloads\matematika - závěrečná práce
2017-06-04 13:49 - 2017-06-04 13:49 - 00000000 ____D C:\Users\Tomáš\AppData\Local\UNP
2017-06-02 22:55 - 2017-06-02 23:11 - 286985520 _____ C:\Users\Tomáš\Downloads\Florenc-13.30-1957-Český-film-do-mobilu-míša.mp4
2017-06-02 22:49 - 2017-06-02 22:50 - 00000000 ____D C:\Program Files\UNP
2017-06-02 22:49 - 2017-06-02 22:49 - 00000000 ____D C:\WINDOWS\system32\UNP
2017-06-01 00:46 - 2017-06-01 12:06 - 00000000 ____D C:\Users\Tomáš\Downloads\adaptace
2017-06-01 00:44 - 2017-06-01 00:45 - 101265781 _____ C:\Users\Tomáš\Downloads\zasilka-MB8XCVKNDFKVWD3S.zip
2017-05-28 13:27 - 2017-05-31 21:46 - 00000000 ___RD C:\Users\Tomáš\Downloads\krkonoše
2017-05-28 13:09 - 2017-05-28 13:17 - 1112319812 _____ C:\Users\Tomáš\Downloads\drive-download-20170528T110646Z-001.zip
2017-05-23 22:53 - 2017-05-23 22:53 - 00344490 _____ C:\Users\Tomáš\Downloads\VR_HP_Mgr_11_042017.pdf
2017-05-23 22:53 - 2017-05-23 22:53 - 00331127 _____ C:\Users\Tomáš\Downloads\Odborný_rada_EPI_ZP_05.2017.pdf
2017-05-23 22:52 - 2017-05-23 22:52 - 00331375 _____ C:\Users\Tomáš\Downloads\VR_HDM_DiS_Bc_18_05_2017.pdf
2017-05-23 22:52 - 2017-05-23 22:52 - 00331375 _____ C:\Users\Tomáš\Downloads\VR_HDM_DiS_Bc_18_05_2017 (1).pdf
2017-05-23 22:50 - 2017-05-23 22:51 - 00443351 _____ C:\Users\Tomáš\Downloads\VŘ_ORA_HDM_-doba_neurčitá_-_19.05.2017_-_19.06.2017.pdf
2017-05-23 21:09 - 2017-05-23 21:09 - 00257951 _____ C:\Users\Tomáš\Downloads\DPP_2016n Pinkr Tomáš 2017.07 ZZA.pdf
2017-05-23 17:54 - 2017-05-23 17:54 - 00000000 __SHD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2017-05-23 17:54 - 2017-05-23 17:54 - 00000000 ____D C:\ProgramData\ESET
2017-05-23 17:54 - 2017-05-23 17:54 - 00000000 ____D C:\Program Files\ESET
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-06-22 21:50 - 2015-02-13 21:17 - 00000000 ____D C:\Users\Tomáš\AppData\Roaming\uTorrent
2017-06-22 21:49 - 2015-01-30 20:03 - 00000000 ____D C:\Users\Tomáš\AppData\Local\CrashDumps
2017-06-22 21:39 - 2016-11-23 21:36 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-06-22 20:42 - 2016-11-24 06:00 - 00930698 _____ C:\WINDOWS\system32\perfh005.dat
2017-06-22 20:42 - 2016-11-24 06:00 - 00229482 _____ C:\WINDOWS\system32\perfc005.dat
2017-06-22 20:42 - 2015-10-10 20:24 - 02404978 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-06-21 22:45 - 2016-07-16 13:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-06-21 22:17 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-06-21 22:15 - 2015-02-01 18:18 - 00000000 ____D C:\Users\Tomáš\AppData\Roaming\vlc
2017-06-21 22:14 - 2016-11-23 22:07 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-06-21 22:14 - 2016-11-23 21:43 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-06-21 22:14 - 2016-11-23 21:42 - 00000000 ____D C:\ProgramData\NVIDIA
2017-06-21 22:14 - 2015-01-30 23:01 - 00000000 __SHD C:\Users\Tomáš\IntelGraphicsProfiles
2017-06-21 22:13 - 2016-11-23 21:47 - 00000000 ____D C:\Users\Tomáš
2017-06-21 22:13 - 2016-08-09 18:17 - 00000000 ____D C:\AdwCleaner
2017-06-21 22:13 - 2016-07-16 08:04 - 01048576 _____ C:\WINDOWS\system32\config\BBI
2017-06-21 22:12 - 2014-12-02 12:31 - 00000000 ____D C:\Program Files (x86)\Lenovo
2017-06-21 22:00 - 2016-07-16 13:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-06-21 22:00 - 2015-01-30 18:20 - 00000000 ____D C:\Users\Tomáš\AppData\Local\Packages
2017-06-21 21:54 - 2015-10-10 20:45 - 00000000 ____D C:\Users\Tomáš\AppData\Local\MicrosoftEdge
2017-06-21 21:21 - 2015-09-10 07:42 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-06-21 20:29 - 2015-02-14 21:20 - 00000000 ___RD C:\Users\Tomáš\OneDrive
2017-06-21 20:27 - 2017-02-17 14:08 - 00000000 ____D C:\Users\Tomáš\AppData\Roaming\Seznam.cz
2017-06-20 23:49 - 2015-02-01 16:09 - 00000000 ____D C:\ProgramData\CanonIJPLM
2017-06-19 18:54 - 2015-01-30 19:46 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-06-19 18:50 - 2015-01-30 19:46 - 133627792 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-06-17 22:36 - 2017-01-21 21:10 - 00000000 ____D C:\Users\Tomáš\Downloads\tureček
2017-06-17 12:20 - 2015-02-02 17:33 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2017-06-10 18:31 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\appraiser
2017-06-08 21:51 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-06-08 21:34 - 2016-07-16 13:45 - 00000000 ____D C:\WINDOWS\INF
2017-06-08 21:32 - 2015-01-30 23:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2017-06-08 21:28 - 2016-12-18 17:01 - 00000000 ____D C:\Users\Tomáš\Downloads\referáty
2017-06-03 08:36 - 2016-07-16 13:49 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-06-03 08:36 - 2016-07-16 13:49 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-06-02 22:38 - 2015-01-30 23:26 - 00000000 ____D C:\ProgramData\FLEXnet
2017-05-31 01:40 - 2016-03-10 22:08 - 00565416 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2017-05-25 23:33 - 2016-11-20 18:00 - 00000000 ____D C:\Users\Tomáš\Downloads\evoluce
2017-05-23 17:54 - 2016-07-16 08:04 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
==================== Files in the root of some directories =======
2017-06-08 21:34 - 2017-06-08 21:34 - 0000017 _____ () C:\Users\Tomáš\AppData\Local\resmon.resmoncfg
2014-12-02 11:56 - 2014-12-02 11:56 - 0000000 ____N () C:\ProgramData\DP45977C.lfl
Some files in TEMP:
====================
2017-06-15 21:58 - 2017-06-21 20:27 - 0534528 _____ () C:\Users\Tomáš\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2017-06-17 10:31
==================== End of FRST.txt ============================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 21-06-2017 01
Ran by Tomáš (administrator) on TOMAS_NOTEBOOK (22-06-2017 21:49:28)
Running from C:\Users\Tomáš\Desktop
Loaded Profiles: Tomáš (Available Profiles: Tomáš & Anička & zspin)
Platform: Windows 10 Home Version 1607 (X64) Language: Angličtina (Spojené státy)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv64.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files (x86)\Canon\IJPLM\ijplmsvc.exe
(Apple Computer, Inc.) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
(LENOVO INCORPORATED.) C:\Program Files\lenovo\iMController\SystemAgentService.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe
(Lenovo(beijing) Limited) C:\Windows\System32\LenovoWiFiHotspotSvr.exe
(Atheros) C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
(DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(Microsoft Corporation) C:\Program Files\Windows Defender\NisSrv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_w32.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\tv_x64.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray64.exe
(Vimicro) C:\Program Files (x86)\USB Camera\VM331STI.EXE
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1705.1301.0_x64__8wekyb3d8bbwe\Calculator.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.18.614.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Users\Tomáš\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe
(Microsoft Corporation) C:\Users\Tomáš\AppData\Local\Microsoft\OneDrive\StandaloneUpdater\OneDriveSetup.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.14393.1439_none_7efe016621f50bd0\TiWorker.exe
(BitTorrent, Inc.) C:\Users\Tomáš\AppData\Roaming\uTorrent\utorrent.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SoftwareDistribution\Download\18b5353c449735dba57d08446a7d4a0b\WindowsUpdateBox.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch
HKLM\...\Run: [IgfxTray] => C:\windows\system32\igfxtray.exe [401896 2016-11-02] ()
HKLM\...\Run: [NvBackend] => C:\Program Files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe [2234144 2014-01-21] (NVIDIA Corporation)
HKLM\...\Run: [ShadowPlay] => C:\windows\system32\rundll32.exe C:\windows\system32\nvspcap64.dll,ShadowPlayOnSystemStart
HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [286056 2013-09-24] (Intel Corporation)
HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray64.exe [1703424 2013-08-11] (IDT, Inc.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-06-03] (Synaptics Incorporated)
HKLM\...\Run: [WindowsDefender] => C:\Program Files\Windows Defender\MSASCuiL.exe [631808 2017-04-28] (Microsoft Corporation)
HKLM-x32\...\Run: [331BigDog] => C:\Program Files (x86)\USB Camera\VM331STI.EXE [561672 2015-06-12] (Vimicro)
HKLM-x32\...\Run: [UpdateP2GShortCut] => C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe [214312 2011-12-07] (CyberLink Corp.)
HKLM-x32\...\Run: [Acrobat Assistant 8.0] => C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe [620152 2006-10-23] (Adobe Systems Inc.)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [Adobe_ID0EZEHM] => C:\Program Files (x86)\Common Files\Adobe\Adobe Version Cue CS3\Server\bin\VersionCueCS3Tray.exe [1884160 2007-04-27] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [BCSSync] => C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe [89184 2012-11-05] (Microsoft Corporation)
HKLM-x32\...\Run: [IJNetworkScannerSelectorEX] => C:\Program Files (x86)\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [438888 2014-01-15] (CANON INC.)
HKLM-x32\...\Run: [KiesTrayAgent] => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe [318128 2016-11-16] (Samsung Electronics Co., Ltd.)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
Winlogon\Notify\igfxcui: igfxdev.dll [X]
HKLM\...\Policies\Explorer\Run: [BtvStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
HKU\S-1-5-21-798434008-2211677849-4096002834-1001\...\Run: [GoogleChromeAutoLaunch_261D675795E727AD201BBDEE2B3C4324] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1143640 2017-05-09] (Google Inc.)
HKU\S-1-5-21-798434008-2211677849-4096002834-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4299968 2016-07-29] (Disc Soft Ltd)
ShellIconOverlayIdentifiers: [00001LenovoSyncComplete] -> {1E9CED2C-E7B4-4C47-B07A-25416393B67B} => C:\Program Files\Hightail\Hightail for Lenovo\YSINSE64.dll [2014-06-23] (Hightail Inc.)
ShellIconOverlayIdentifiers: [00002LenovoSyncActive] -> {C1285F4D-918F-4EF2-BC94-CAD5B118C835} => C:\Program Files\Hightail\Hightail for Lenovo\YSINSE64.dll [2014-06-23] (Hightail Inc.)
ShellIconOverlayIdentifiers: [00003LenovoSyncError] -> {CE5633DA-1488-4D1D-9A9B-B500297D4A8C} => C:\Program Files\Hightail\Hightail for Lenovo\YSINSE64.dll [2014-06-23] (Hightail Inc.)
ShellIconOverlayIdentifiers: [00004LenovoLocalOnly] -> {C7362DA9-D3AC-4C17-B2F5-2F1823FA04C3} => C:\Program Files\Hightail\Hightail for Lenovo\YSINSE64.dll [2014-06-23] (Hightail Inc.)
ShellIconOverlayIdentifiers-x32: [00001LenovoSyncComplete] -> {1E9CED2C-E7B4-4C47-B07A-25416393B67B} => C:\Program Files (x86)\Hightail\Hightail for Lenovo\YSINSE.dll [2014-06-23] (Hightail Inc.)
ShellIconOverlayIdentifiers-x32: [00002LenovoSyncActive] -> {C1285F4D-918F-4EF2-BC94-CAD5B118C835} => C:\Program Files (x86)\Hightail\Hightail for Lenovo\YSINSE.dll [2014-06-23] (Hightail Inc.)
ShellIconOverlayIdentifiers-x32: [00003LenovoSyncError] -> {CE5633DA-1488-4D1D-9A9B-B500297D4A8C} => C:\Program Files (x86)\Hightail\Hightail for Lenovo\YSINSE.dll [2014-06-23] (Hightail Inc.)
ShellIconOverlayIdentifiers-x32: [00004LenovoLocalOnly] -> {C7362DA9-D3AC-4C17-B2F5-2F1823FA04C3} => C:\Program Files (x86)\Hightail\Hightail for Lenovo\YSINSE.dll [2014-06-23] (Hightail Inc.)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Acrobat Speed Launcher.lnk [2015-01-30]
ShortcutTarget: Adobe Acrobat Speed Launcher.lnk -> C:\Windows\Installer\{AC76BA86-1029-0000-7760-000000000003}\_SC_Acrobat.exe ()
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Acrobat Synchronizer.lnk [2015-01-30]
ShortcutTarget: Adobe Acrobat Synchronizer.lnk -> C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AdobeCollabSync.exe ()
BootExecute: autocheck autochk /p \??\G:autocheck autochk *
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
ProxyServer: [S-1-5-21-798434008-2211677849-4096002834-1001] => cache.natur.cuni.cz:3128
Tcpip\..\Interfaces\{0ec779b1-7add-42de-99b7-2dd1d6675e85}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{682ffc7d-7757-41f1-a060-34d5c6d32678}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{d2a39944-62a6-4098-b6af-e61ff3bc9624}: [DhcpNameServer] 10.0.0.138
Internet Explorer:
==================
HKU\S-1-5-21-798434008-2211677849-4096002834-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://lenovo13.msn.com/?pc=LCJB
HKU\S-1-5-21-798434008-2211677849-4096002834-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com/?pc=LCJB
HKU\S-1-5-21-798434008-2211677849-4096002834-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://www.lenovo.com
SearchScopes: HKU\S-1-5-21-798434008-2211677849-4096002834-1001 -> DefaultScope {76BC9401-0695-4C33-94F4-9422F972CC21} URL =
SearchScopes: HKU\S-1-5-21-798434008-2211677849-4096002834-1001 -> {76BC9401-0695-4C33-94F4-9422F972CC21} URL =
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
BHO-x32: Podpora odkazu pro Adobe PDF Reader -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2012-09-23] (Adobe Systems Incorporated)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL [2013-12-19] (Microsoft Corporation)
BHO-x32: Adobe PDF Conversion Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll [2006-10-23] (Adobe Systems Incorporated)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2013-03-06] (Microsoft Corporation)
Toolbar: HKLM-x32 - Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll [2006-10-23] (Adobe Systems Incorporated)
FireFox:
========
FF DefaultProfile: m97ramew.default
FF ProfilePath: C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\m97ramew.default [2017-02-17]
FF Extension: (No Name) - C:\Users\Tomáš\AppData\Roaming\Mozilla\Firefox\Profiles\m97ramew.default\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [not found]
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-04] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-04] (Intel Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: @nokia.com/EnablerPlugin -> C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll [2014-11-19] ( )
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.6 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2017-03-28] (Adobe Systems Inc.)
Chrome:
=======
CHR HomePage: Default -> hxxp://www.google.com/
CHR StartupUrls: Default -> "hxxp://gmail.com/","hxxp://zseden.cz/","hxxp://mail.zseden.cz/login.php"
CHR Profile: C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default [2017-06-22]
CHR Extension: (Prezentace Google) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-04-11]
CHR Extension: (Dokumenty Google) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-04-11]
CHR Extension: (Disk Google) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-04-11]
CHR Extension: (YouTube) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-04-11]
CHR Extension: (Adblock Plus) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-04-11]
CHR Extension: (Proxy SwitchySharp) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\dpplabbmogkhghncfbfdeeokoefdjegm [2017-04-11]
CHR Extension: (Tabulky Google) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-04-11]
CHR Extension: (Dokumenty Google offline) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-04-11]
CHR Extension: (AdBlock) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-06-22]
CHR Extension: (Coggle - Collaborative Mind Maps) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\hbcapocoafbfccjgdgammadkndakcfoi [2017-04-11]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-04-11]
CHR Extension: (Adblock Pro) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\ocifcklkibdehekfnmflempfgjhbedch [2017-04-11]
CHR Extension: (Gmail) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-04-11]
CHR Extension: (Chrome Media Router) - C:\Users\Tomáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-12]
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 Bonjour Service; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [229376 2006-02-28] (Apple Computer, Inc.) [File not signed]
S3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1467072 2016-07-29] (Disc Soft Ltd)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2836296 2016-12-14] (ESET)
S3 FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [654848 2015-01-30] (Macrovision Europe Ltd.) [File not signed]
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [14696 2013-09-24] (Intel Corporation)
R2 igfxCUIService2.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [373744 2016-11-02] (Intel Corporation)
R2 IJPLMSVC; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [84616 2013-06-28] ()
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [733696 2013-05-12] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [822232 2013-05-12] (Intel(R) Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-04] (Intel Corporation)
S3 Lenovo EasyPlus Hotspot; C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe [533760 2014-06-03] (Lenovo)
R2 Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [584960 2014-05-22] (LENOVO INCORPORATED.)
R2 LenovoWiFiHotspotSvr; C:\Windows\System32\LenovoWiFiHotspotSvr.exe [198192 2014-12-02] (Lenovo(beijing) Limited)
S3 LSC.Services.SystemService; C:\Program Files\lenovo\Lenovo Solution Center\App\LSC.Services.SystemService.exe [273232 2016-08-24] (Lenovo)
R2 NVDisplay.ContainerLocalSystem; C:\Program Files\NVIDIA Corporation\Display.NvContainer\NVDisplay.Container.exe [458176 2016-12-29] (NVIDIA Corporation)
R2 NvNetworkService; C:\Program Files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [1593632 2014-01-21] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [16939296 2014-01-21] (NVIDIA Corporation)
S3 Origin Client Service; C:\Program Files (x86)\Origin\OriginClientService.exe [2104840 2016-01-23] (Electronic Arts)
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390632 2012-04-25] ()
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [754784 2016-07-22] (DEVGURU Co., LTD.)
R2 STacSV; C:\Program Files\IDT\WDM\STacSV64.exe [338944 2013-08-11] (IDT, Inc.) [File not signed]
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [249032 2015-06-03] (Synaptics Incorporated)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [5702416 2015-09-11] (TeamViewer GmbH)
R3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347320 2017-04-28] (Microsoft Corporation)
R2 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103712 2017-04-28] (Microsoft Corporation)
R2 ZAtheros Bt and Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [323584 2013-09-07] (Atheros) [File not signed]
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-08-10] (Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-08-10] (Disc Soft Ltd)
R1 eamonm; C:\WINDOWS\System32\DRIVERS\eamonm.sys [132272 2017-01-17] (ESET)
R0 edevmon; C:\WINDOWS\System32\DRIVERS\edevmon.sys [106768 2017-01-17] (ESET)
S0 eelam; C:\WINDOWS\System32\DRIVERS\eelam.sys [15488 2016-06-28] (ESET)
R1 ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [180544 2017-01-17] (ESET)
R2 ekbdflt; C:\WINDOWS\system32\DRIVERS\ekbdflt.sys [49672 2017-01-17] (ESET)
R1 epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [77616 2017-01-17] (ESET)
R1 epfwwfp; C:\WINDOWS\system32\DRIVERS\epfwwfp.sys [96856 2017-01-17] (ESET)
R0 IntelHSWPcc; C:\WINDOWS\System32\drivers\IntelPcc.sys [74344 2013-07-03] (Intel Corporation)
R3 MEIx64; C:\WINDOWS\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-04] (Intel Corporation)
R1 MpKsl74bf2105; C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{4911FE03-6783-4F7A-B0A2-3CD8FCABA700}\MpKsl74bf2105.sys [44928 2017-06-21] (Microsoft Corporation)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 nvlddmkm; C:\WINDOWS\System32\DriverStore\FileRepository\nvltwu.inf_amd64_0221ce4ec0827f74\nvlddmkm.sys [14190520 2017-01-17] (NVIDIA Corporation)
R3 nvvad_WaveExtensible; C:\WINDOWS\system32\drivers\nvvad64v.sys [39200 2013-12-28] (NVIDIA Corporation)
R3 SmbDrvI; C:\WINDOWS\system32\DRIVERS\Smb_driver_Intel.sys [42696 2015-06-03] (Synaptics Incorporated)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
R3 vm331avs; C:\WINDOWS\System32\Drivers\vm331avs.sys [802312 2015-06-12] (Vimicro Corporation)
S0 WdBoot; C:\WINDOWS\System32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
R0 WdFilter; C:\WINDOWS\System32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
R3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
S3 wsvd; C:\WINDOWS\system32\DRIVERS\wsvd.sys [102376 2012-06-14] ("CyberLink)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-06-22 21:49 - 2017-06-22 21:49 - 00000000 ___HD C:\$WINDOWS.~BT
2017-06-22 21:48 - 2017-06-22 21:48 - 00039391 _____ C:\Users\Tomáš\Desktop\FRST3.txt
2017-06-22 21:47 - 2017-06-22 21:48 - 00046182 _____ C:\Users\Tomáš\Desktop\Addition-2.txt
2017-06-22 21:46 - 2017-06-22 21:46 - 00000000 ____D C:\Users\Tomáš\Downloads\The Hateful Eight 2015 BRRip x264 Ac3 -RiSiNG
2017-06-22 21:45 - 2017-06-22 21:49 - 00023283 _____ C:\Users\Tomáš\Desktop\FRST.txt
2017-06-22 21:45 - 2017-06-22 21:49 - 00000000 _____ C:\Users\Tomáš\Desktop\FRST-2.txt
2017-06-22 20:39 - 2017-06-22 20:39 - 00019356 _____ C:\Users\Tomáš\Downloads\[CzT]Osm_hroznych_The_Hateful_Eight_2015_CZ_.torrent
2017-06-22 20:34 - 2017-06-22 21:49 - 1329289216 _____ C:\Users\Tomáš\Downloads\Anthropoid.2016.BRRip.XviD.AC3.CZ.avi
2017-06-22 20:31 - 2017-06-22 20:31 - 00013160 _____ C:\Users\Tomáš\Downloads\[CzT]Anthropoid_2016_CZ_.torrent
2017-06-22 20:11 - 2017-06-22 20:11 - 00351430 _____ C:\Users\Tomáš\Downloads\přihláška.pdf
2017-06-21 22:48 - 2017-06-21 22:48 - 02267350 _____ C:\Users\Tomáš\Downloads\brožura-krimi.pdf
2017-06-21 22:15 - 2017-06-21 22:15 - 00007083 _____ C:\Users\Tomáš\Desktop\AdwCleaner[C0].txt
2017-06-21 22:08 - 2017-06-21 22:08 - 04110280 _____ C:\Users\Tomáš\Downloads\adwcleaner_6.047 (2).exe
2017-06-21 22:08 - 2017-06-21 22:08 - 01830925 _____ C:\Users\Tomáš\Downloads\C4B6.tmp
2017-06-21 22:08 - 2017-06-21 22:08 - 01051929 _____ C:\Users\Tomáš\Downloads\C529.tmp
2017-06-21 22:03 - 2017-06-21 22:04 - 04110280 _____ C:\Users\Tomáš\Downloads\Nepotvrzeno 936077.crdownload
2017-06-21 22:01 - 2017-06-22 21:49 - 00000000 ____D C:\FRST
2017-06-21 22:00 - 2017-06-21 22:01 - 00112640 _____ (forum.viry.cz) C:\Users\Tomáš\Desktop\FRSTLauncher (1).exe
2017-06-21 21:52 - 2017-06-22 21:44 - 02439680 _____ (Farbar) C:\Users\Tomáš\Desktop\FRST64.exe
2017-06-21 21:38 - 2017-06-21 21:38 - 64232976 _____ (Malwarebytes ) C:\Users\zspin\Downloads\Nepotvrzeno 580676.crdownload
2017-06-21 21:37 - 2017-06-21 21:37 - 00000000 ____D C:\Users\zspin\AppData\Local\Publishers
2017-06-21 21:37 - 2017-06-21 21:37 - 00000000 ____D C:\Users\zspin\AppData\Local\NVIDIA Corporation
2017-06-21 21:31 - 2017-06-21 21:31 - 00000000 ____D C:\Users\zspin\AppData\Local\NVIDIA
2017-06-21 21:27 - 2017-06-21 21:27 - 00000000 ____D C:\Users\zspin\AppData\Roaming\Hightail for Lenovo
2017-06-21 21:27 - 2017-06-21 21:27 - 00000000 ____D C:\Users\zspin\AppData\Local\VirtualStore
2017-06-21 21:22 - 2017-06-21 21:37 - 00000000 ____D C:\Users\zspin\AppData\Local\ConnectedDevicesPlatform
2017-06-21 21:21 - 2017-06-21 21:40 - 00000000 ____D C:\Users\zspin
2017-06-21 21:21 - 2017-06-21 21:38 - 00000000 ____D C:\Users\zspin\AppData\Local\Packages
2017-06-21 21:21 - 2017-06-21 21:36 - 00000000 __SHD C:\Users\zspin\IntelGraphicsProfiles
2017-06-21 21:21 - 2017-06-21 21:21 - 00000020 ___SH C:\Users\zspin\ntuser.ini
2017-06-21 21:21 - 2017-06-21 21:21 - 00000000 _SHDL C:\Users\zspin\My Documents
2017-06-21 21:21 - 2017-06-21 21:21 - 00000000 _SHDL C:\Users\zspin\Documents\My Videos
2017-06-21 21:21 - 2017-06-21 21:21 - 00000000 _SHDL C:\Users\zspin\Documents\My Pictures
2017-06-21 21:21 - 2017-06-21 21:21 - 00000000 _SHDL C:\Users\zspin\Documents\My Music
2017-06-21 21:21 - 2017-06-21 21:21 - 00000000 ____D C:\Users\zspin\AppData\Roaming\Adobe
2017-06-21 21:21 - 2017-06-21 21:21 - 00000000 ____D C:\Users\zspin\AppData\Local\TileDataLayer
2017-06-21 21:21 - 2017-06-21 21:21 - 00000000 ____D C:\Users\zspin\AppData\Local\ESET
2017-06-21 21:21 - 2017-02-17 14:09 - 00000000 ____D C:\Users\zspin\AppData\Local\MicrosoftEdge
2017-06-21 21:21 - 2017-02-17 14:09 - 00000000 ____D C:\Users\zspin\AppData\Local\Google
2017-06-21 21:21 - 2016-11-23 21:56 - 00000000 ____D C:\Users\zspin\AppData\Roaming\Macromedia
2017-06-21 21:21 - 2016-11-23 21:56 - 00000000 ____D C:\Users\zspin\AppData\Local\Microsoft Help
2017-06-21 21:21 - 2014-12-02 12:28 - 00000126 _____ C:\Users\zspin\Desktop\Adobe Photo Offer.url
2017-06-21 21:21 - 2014-03-27 04:21 - 00000190 _____ C:\Users\zspin\Desktop\FREE CALLS with Voxox.url
2017-06-21 21:12 - 2017-06-21 21:12 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-06-21 21:12 - 2017-06-21 21:12 - 00000000 ____D C:\Program Files\Malwarebytes
2017-06-21 20:41 - 2017-06-21 20:41 - 64232976 _____ (Malwarebytes ) C:\Users\Tomáš\Downloads\mb3-setup-consumer-3.1.2.1733-1.0.141-1.0.2092.exe
2017-06-20 23:47 - 2017-06-20 23:57 - 02753658 _____ C:\Users\Tomáš\Desktop\ochutnávka ovoce.pptx
2017-06-20 23:46 - 2017-06-20 23:46 - 00347243 _____ C:\Users\Tomáš\Downloads\97D7.tmp
2017-06-20 23:26 - 2017-06-20 23:26 - 00043969 _____ C:\Users\Tomáš\Downloads\83C6.tmp
2017-06-20 22:53 - 2017-06-20 22:54 - 00000000 ____D C:\Users\Tomáš\Downloads\praktická botanika
2017-06-20 21:21 - 2017-06-20 21:21 - 00427933 _____ C:\Users\Tomáš\Downloads\Vydana faktura - 201751282.pdf
2017-06-20 21:20 - 2017-06-20 21:20 - 00018802 _____ C:\Users\Tomáš\Downloads\252-2.pdf
2017-06-19 15:38 - 2017-06-19 16:08 - 2413901824 _____ C:\Users\Tomáš\Downloads\All the President's Men - Všichni prezidentovi muži.avi
2017-06-19 15:38 - 2017-06-19 15:38 - 00012022 _____ C:\Users\Tomáš\Downloads\[CzT]Vsichni_prezidentovi_muzi_All_the_President_s_Men_1976_CZ_.torrent
2017-06-17 21:21 - 2017-06-17 21:21 - 00010922 _____ C:\Users\Tomáš\Desktop\objednávka ovoce.xlsx
2017-06-17 09:33 - 2017-06-17 09:33 - 00000000 ____D C:\Users\Tomáš\Documents\toxi
2017-06-17 09:32 - 2017-06-17 09:32 - 06566724 _____ C:\Users\Tomáš\Documents\toxi.zip
2017-06-16 23:31 - 2017-06-16 23:31 - 00040960 _____ C:\Users\Tomáš\20170616_233150_domácnost.db
2017-06-09 19:12 - 2017-06-20 23:57 - 00000000 ____D C:\WINDOWS\Panther
2017-06-08 21:34 - 2017-06-08 21:34 - 00000017 _____ C:\Users\Tomáš\AppData\Local\resmon.resmoncfg
2017-06-08 21:33 - 2017-06-08 21:33 - 00001406 _____ C:\Users\Tomáš\Desktop\práce.lnk
2017-06-08 21:32 - 2017-06-08 21:32 - 00001406 _____ C:\Users\Tomáš\Desktop\škola.lnk
2017-06-08 21:31 - 2017-06-17 23:12 - 00000000 ____D C:\Users\Tomáš\Downloads\merta
2017-06-08 21:31 - 2017-06-08 21:31 - 00001404 _____ C:\Users\Tomáš\Desktop\merta.lnk
2017-06-08 21:30 - 2017-06-08 21:30 - 00001426 _____ C:\Users\Tomáš\Desktop\tureček.lnk
2017-06-08 21:28 - 2017-06-08 21:29 - 00000000 ____D C:\Users\Tomáš\Downloads\škola
2017-06-08 21:23 - 2017-06-08 21:24 - 00000000 ____D C:\Users\Tomáš\Downloads\práce
2017-06-06 22:03 - 2017-06-06 22:04 - 00193047 _____ C:\Users\Tomáš\Downloads\VY_32_INOVACE_2_19_Procenta.pdf
2017-06-05 23:10 - 2017-06-05 23:10 - 00014407 _____ C:\Users\Tomáš\Downloads\sběr.xlsx
2017-06-05 23:08 - 2017-06-05 23:19 - 00019487 _____ C:\Users\Tomáš\Desktop\grafy - hluk.xlsx
2017-06-05 19:21 - 2017-06-05 19:21 - 00037888 _____ C:\Users\Tomáš\20170605_192145_domácnost.db
2017-06-05 16:27 - 2017-06-05 16:27 - 00060499 _____ C:\Users\Tomáš\Downloads\210995798_20170531_5_MCZB.pdf
2017-06-04 22:22 - 2017-06-04 22:50 - 00000000 ____D C:\Users\Tomáš\Downloads\matematika - závěrečná práce
2017-06-04 13:49 - 2017-06-04 13:49 - 00000000 ____D C:\Users\Tomáš\AppData\Local\UNP
2017-06-02 22:55 - 2017-06-02 23:11 - 286985520 _____ C:\Users\Tomáš\Downloads\Florenc-13.30-1957-Český-film-do-mobilu-míša.mp4
2017-06-02 22:49 - 2017-06-02 22:50 - 00000000 ____D C:\Program Files\UNP
2017-06-02 22:49 - 2017-06-02 22:49 - 00000000 ____D C:\WINDOWS\system32\UNP
2017-06-01 00:46 - 2017-06-01 12:06 - 00000000 ____D C:\Users\Tomáš\Downloads\adaptace
2017-06-01 00:44 - 2017-06-01 00:45 - 101265781 _____ C:\Users\Tomáš\Downloads\zasilka-MB8XCVKNDFKVWD3S.zip
2017-05-28 13:27 - 2017-05-31 21:46 - 00000000 ___RD C:\Users\Tomáš\Downloads\krkonoše
2017-05-28 13:09 - 2017-05-28 13:17 - 1112319812 _____ C:\Users\Tomáš\Downloads\drive-download-20170528T110646Z-001.zip
2017-05-23 22:53 - 2017-05-23 22:53 - 00344490 _____ C:\Users\Tomáš\Downloads\VR_HP_Mgr_11_042017.pdf
2017-05-23 22:53 - 2017-05-23 22:53 - 00331127 _____ C:\Users\Tomáš\Downloads\Odborný_rada_EPI_ZP_05.2017.pdf
2017-05-23 22:52 - 2017-05-23 22:52 - 00331375 _____ C:\Users\Tomáš\Downloads\VR_HDM_DiS_Bc_18_05_2017.pdf
2017-05-23 22:52 - 2017-05-23 22:52 - 00331375 _____ C:\Users\Tomáš\Downloads\VR_HDM_DiS_Bc_18_05_2017 (1).pdf
2017-05-23 22:50 - 2017-05-23 22:51 - 00443351 _____ C:\Users\Tomáš\Downloads\VŘ_ORA_HDM_-doba_neurčitá_-_19.05.2017_-_19.06.2017.pdf
2017-05-23 21:09 - 2017-05-23 21:09 - 00257951 _____ C:\Users\Tomáš\Downloads\DPP_2016n Pinkr Tomáš 2017.07 ZZA.pdf
2017-05-23 17:54 - 2017-05-23 17:54 - 00000000 __SHD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2017-05-23 17:54 - 2017-05-23 17:54 - 00000000 ____D C:\ProgramData\ESET
2017-05-23 17:54 - 2017-05-23 17:54 - 00000000 ____D C:\Program Files\ESET
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-06-22 21:50 - 2015-02-13 21:17 - 00000000 ____D C:\Users\Tomáš\AppData\Roaming\uTorrent
2017-06-22 21:49 - 2015-01-30 20:03 - 00000000 ____D C:\Users\Tomáš\AppData\Local\CrashDumps
2017-06-22 21:39 - 2016-11-23 21:36 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-06-22 20:42 - 2016-11-24 06:00 - 00930698 _____ C:\WINDOWS\system32\perfh005.dat
2017-06-22 20:42 - 2016-11-24 06:00 - 00229482 _____ C:\WINDOWS\system32\perfc005.dat
2017-06-22 20:42 - 2015-10-10 20:24 - 02404978 _____ C:\WINDOWS\system32\PerfStringBackup.INI
2017-06-21 22:45 - 2016-07-16 13:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-06-21 22:17 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-06-21 22:15 - 2015-02-01 18:18 - 00000000 ____D C:\Users\Tomáš\AppData\Roaming\vlc
2017-06-21 22:14 - 2016-11-23 22:07 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-06-21 22:14 - 2016-11-23 21:43 - 00000180 _____ C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
2017-06-21 22:14 - 2016-11-23 21:42 - 00000000 ____D C:\ProgramData\NVIDIA
2017-06-21 22:14 - 2015-01-30 23:01 - 00000000 __SHD C:\Users\Tomáš\IntelGraphicsProfiles
2017-06-21 22:13 - 2016-11-23 21:47 - 00000000 ____D C:\Users\Tomáš
2017-06-21 22:13 - 2016-08-09 18:17 - 00000000 ____D C:\AdwCleaner
2017-06-21 22:13 - 2016-07-16 08:04 - 01048576 _____ C:\WINDOWS\system32\config\BBI
2017-06-21 22:12 - 2014-12-02 12:31 - 00000000 ____D C:\Program Files (x86)\Lenovo
2017-06-21 22:00 - 2016-07-16 13:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-06-21 22:00 - 2015-01-30 18:20 - 00000000 ____D C:\Users\Tomáš\AppData\Local\Packages
2017-06-21 21:54 - 2015-10-10 20:45 - 00000000 ____D C:\Users\Tomáš\AppData\Local\MicrosoftEdge
2017-06-21 21:21 - 2015-09-10 07:42 - 00000000 __RHD C:\Users\Public\AccountPictures
2017-06-21 20:29 - 2015-02-14 21:20 - 00000000 ___RD C:\Users\Tomáš\OneDrive
2017-06-21 20:27 - 2017-02-17 14:08 - 00000000 ____D C:\Users\Tomáš\AppData\Roaming\Seznam.cz
2017-06-20 23:49 - 2015-02-01 16:09 - 00000000 ____D C:\ProgramData\CanonIJPLM
2017-06-19 18:54 - 2015-01-30 19:46 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-06-19 18:50 - 2015-01-30 19:46 - 133627792 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-06-17 22:36 - 2017-01-21 21:10 - 00000000 ____D C:\Users\Tomáš\Downloads\tureček
2017-06-17 12:20 - 2015-02-02 17:33 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2017-06-10 18:31 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\system32\appraiser
2017-06-08 21:51 - 2016-07-16 13:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-06-08 21:34 - 2016-07-16 13:45 - 00000000 ____D C:\WINDOWS\INF
2017-06-08 21:32 - 2015-01-30 23:36 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2017-06-08 21:28 - 2016-12-18 17:01 - 00000000 ____D C:\Users\Tomáš\Downloads\referáty
2017-06-03 08:36 - 2016-07-16 13:49 - 00835576 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerApp.exe
2017-06-03 08:36 - 2016-07-16 13:49 - 00177656 _____ (Adobe Systems Incorporated) C:\WINDOWS\SysWOW64\FlashPlayerCPLApp.cpl
2017-06-02 22:38 - 2015-01-30 23:26 - 00000000 ____D C:\ProgramData\FLEXnet
2017-05-31 01:40 - 2016-03-10 22:08 - 00565416 ____N (Microsoft Corporation) C:\WINDOWS\system32\MpSigStub.exe
2017-05-25 23:33 - 2016-11-20 18:00 - 00000000 ____D C:\Users\Tomáš\Downloads\evoluce
2017-05-23 17:54 - 2016-07-16 08:04 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
==================== Files in the root of some directories =======
2017-06-08 21:34 - 2017-06-08 21:34 - 0000017 _____ () C:\Users\Tomáš\AppData\Local\resmon.resmoncfg
2014-12-02 11:56 - 2014-12-02 11:56 - 0000000 ____N () C:\ProgramData\DP45977C.lfl
Some files in TEMP:
====================
2017-06-15 21:58 - 2017-06-21 20:27 - 0534528 _____ () C:\Users\Tomáš\AppData\Local\Temp\{E638ABC1-0067-474b-A379-87CFE81E7848}.exe
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2017-06-17 10:31
==================== End of FRST.txt ============================
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalý počítač, nelze nic instalovat
Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
SearchScopes: HKU\S-1-5-21-798434008-2211677849-4096002834-1001 -> DefaultScope {76BC9401-0695-4C33-94F4-9422F972CC21} URL =
SearchScopes: HKU\S-1-5-21-798434008-2211677849-4096002834-1001 -> {76BC9401-0695-4C33-94F4-9422F972CC21} URL =
R2 Bonjour Service; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [229376 2006-02-28] (Apple Computer, Inc.) [File not signed]
C:\Users\Tomáš\Downloads\C4B6.tmp
C:\Users\Tomáš\Downloads\C529.tmp
C:\Users\Tomáš\Downloads\97D7.tmp
C:\Users\Tomáš\Downloads\83C6.tmp
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
C:\ProgramData\DP45977C.lfl
C:\Users\Tomáš\AppData\Local\Temp
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
tomas.pinkr
- Návštěvník
- Příspěvky: 13
- Registrován: 21 čer 2017 20:48
Re: Pomalý počítač, nelze nic instalovat
Tady je:
Fix result of Farbar Recovery Scan Tool (x64) Version: 21-06-2017 01
Ran by Tomáš (22-06-2017 22:11:54) Run:1
Running from C:\Users\Tomáš\Desktop
Loaded Profiles: Tomáš (Available Profiles: Tomáš & Anička & zspin)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
SearchScopes: HKU\S-1-5-21-798434008-2211677849-4096002834-1001 -> DefaultScope {76BC9401-0695-4C33-94F4-9422F972CC21} URL =
SearchScopes: HKU\S-1-5-21-798434008-2211677849-4096002834-1001 -> {76BC9401-0695-4C33-94F4-9422F972CC21} URL =
R2 Bonjour Service; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [229376 2006-02-28] (Apple Computer, Inc.) [File not signed]
C:\Users\Tom�\Downloads\C4B6.tmp
C:\Users\Tom�\Downloads\C529.tmp
C:\Users\Tom�\Downloads\97D7.tmp
C:\Users\Tom�\Downloads\83C6.tmp
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
C:\ProgramData\DP45977C.lfl
C:\Users\Tom�\AppData\Local\Temp
EmptyTemp:
End
*****************
HKU\S-1-5-21-798434008-2211677849-4096002834-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
HKU\S-1-5-21-798434008-2211677849-4096002834-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{76BC9401-0695-4C33-94F4-9422F972CC21} => key removed successfully
HKLM\Software\Classes\CLSID\{76BC9401-0695-4C33-94F4-9422F972CC21} => key not found.
Bonjour Service => Unable to stop service.
HKLM\System\CurrentControlSet\Services\Bonjour Service => key removed successfully
Bonjour Service => service removed successfully
C:\Users\Tomáš\Downloads\C4B6.tmp => moved successfully
C:\Users\Tomáš\Downloads\C529.tmp => moved successfully
C:\Users\Tomáš\Downloads\97D7.tmp => moved successfully
C:\Users\Tomáš\Downloads\83C6.tmp => moved successfully
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat => moved successfully
Could not move "C:\ProgramData\DP45977C.lfl" => Scheduled to move on reboot.
"C:\Users\Tomáš\AppData\Local\Temp" folder move:
Could not move "C:\Users\Tomáš\AppData\Local\Temp" => Scheduled to move on reboot.
=========== EmptyTemp: ==========
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 141472300 B
Java, Flash, Steam htmlcache => 702 B
Windows/system/drivers => 312468033 B
Edge => 5351400 B
Chrome => 408694134 B
Firefox => 2968829 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 4272 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
systemprofile32 => 0 B
LocalService => 431088 B
NetworkService => 2517908 B
Tomáš => 327054984 B
Anička => 9343 B
zspin => 30964286 B
RecycleBin => 0 B
EmptyTemp: => 1.1 GB temporary data Removed.
================================
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 22-06-2017 22:18:46)
"C:\ProgramData\DP45977C.lfl" => Could not move
C:\Users\Tomáš\AppData\Local\Temp => moved successfully
==== End of Fixlog 22:18:58 ====
Fix result of Farbar Recovery Scan Tool (x64) Version: 21-06-2017 01
Ran by Tomáš (22-06-2017 22:11:54) Run:1
Running from C:\Users\Tomáš\Desktop
Loaded Profiles: Tomáš (Available Profiles: Tomáš & Anička & zspin)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
SearchScopes: HKU\S-1-5-21-798434008-2211677849-4096002834-1001 -> DefaultScope {76BC9401-0695-4C33-94F4-9422F972CC21} URL =
SearchScopes: HKU\S-1-5-21-798434008-2211677849-4096002834-1001 -> {76BC9401-0695-4C33-94F4-9422F972CC21} URL =
R2 Bonjour Service; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [229376 2006-02-28] (Apple Computer, Inc.) [File not signed]
C:\Users\Tom�\Downloads\C4B6.tmp
C:\Users\Tom�\Downloads\C529.tmp
C:\Users\Tom�\Downloads\97D7.tmp
C:\Users\Tom�\Downloads\83C6.tmp
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat
C:\ProgramData\DP45977C.lfl
C:\Users\Tom�\AppData\Local\Temp
EmptyTemp:
End
*****************
HKU\S-1-5-21-798434008-2211677849-4096002834-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
HKU\S-1-5-21-798434008-2211677849-4096002834-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{76BC9401-0695-4C33-94F4-9422F972CC21} => key removed successfully
HKLM\Software\Classes\CLSID\{76BC9401-0695-4C33-94F4-9422F972CC21} => key not found.
Bonjour Service => Unable to stop service.
HKLM\System\CurrentControlSet\Services\Bonjour Service => key removed successfully
Bonjour Service => service removed successfully
C:\Users\Tomáš\Downloads\C4B6.tmp => moved successfully
C:\Users\Tomáš\Downloads\C529.tmp => moved successfully
C:\Users\Tomáš\Downloads\97D7.tmp => moved successfully
C:\Users\Tomáš\Downloads\83C6.tmp => moved successfully
C:\WINDOWS\system32\{A6D608F0-0BDE-491A-97AE-5C4B05D86E01}.bat => moved successfully
Could not move "C:\ProgramData\DP45977C.lfl" => Scheduled to move on reboot.
"C:\Users\Tomáš\AppData\Local\Temp" folder move:
Could not move "C:\Users\Tomáš\AppData\Local\Temp" => Scheduled to move on reboot.
=========== EmptyTemp: ==========
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 141472300 B
Java, Flash, Steam htmlcache => 702 B
Windows/system/drivers => 312468033 B
Edge => 5351400 B
Chrome => 408694134 B
Firefox => 2968829 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 4272 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
systemprofile32 => 0 B
LocalService => 431088 B
NetworkService => 2517908 B
Tomáš => 327054984 B
Anička => 9343 B
zspin => 30964286 B
RecycleBin => 0 B
EmptyTemp: => 1.1 GB temporary data Removed.
================================
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 22-06-2017 22:18:46)
"C:\ProgramData\DP45977C.lfl" => Could not move
C:\Users\Tomáš\AppData\Local\Temp => moved successfully
==== End of Fixlog 22:18:58 ====
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalý počítač, nelze nic instalovat
Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
tomas.pinkr
- Návštěvník
- Příspěvky: 13
- Registrován: 21 čer 2017 20:48
Re: Pomalý počítač, nelze nic instalovat
Dobrý den,
v podstatě ne. Stahování stále moc nefunguje (občas ano, občas ne) a když jsem chtěl otevřít program k instalaci, tak ani po 5 minutách nic neotevřel (prokazatelně dvojklikem nebo přes enter "otevřeno") :-/
Díky moc za další radu
v podstatě ne. Stahování stále moc nefunguje (občas ano, občas ne) a když jsem chtěl otevřít program k instalaci, tak ani po 5 minutách nic neotevřel (prokazatelně dvojklikem nebo přes enter "otevřeno") :-/
Díky moc za další radu
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalý počítač, nelze nic instalovat
Udělejte ještě kompletní sken MBAM: http://www.malwarebytes.org/mbam.php a dejte log. Předem nic nemažte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
tomas.pinkr
- Návštěvník
- Příspěvky: 13
- Registrován: 21 čer 2017 20:48
Re: Pomalý počítač, nelze nic instalovat
Dobrý den,
to je přesně program, který nejde dotáhnout (i když se mi to jednou povedlo), ale hlavně nejde nainstalovat (před 4 dny jsem se dostal na cca 15% instalace a pak se cca 1/2 hodiny nic nedělo)
( Zkusím instalaci přes noc nechat běžet, ale ...
to je přesně program, který nejde dotáhnout (i když se mi to jednou povedlo), ale hlavně nejde nainstalovat (před 4 dny jsem se dostal na cca 15% instalace a pak se cca 1/2 hodiny nic nedělo)
( Zkusím instalaci přes noc nechat běžet, ale ...-
tomas.pinkr
- Návštěvník
- Příspěvky: 13
- Registrován: 21 čer 2017 20:48
Re: Pomalý počítač, nelze nic instalovat
Malwarebytes
www.malwarebytes.com
-Podrobnosti logovacího souboru-
Datum skenování: 25.06.17
Čas skenování: 8:07
Logovací soubor: e.txt
Správce: Ano
-Informace o softwaru-
Verze: 3.1.2.1733
Verze komponentů: 1.0.141
Aktualizovat verzi balíku komponent: 1.0.2092
Licence: Zkušební
-Systémová informace-
OS: Windows 10
CPU: x64
Systém souborů: NTFS
Uživatel: TOMAS_NOTEBOOK\Tom\u00c3\u00a1\u00c5\u00a1
-Shrnutí skenování-
Typ skenování: Skenování hrozeb (Threat Scan)
Výsledek: Dokončeno
Skenované objekty: 464241
Zjištěné hrozby: 2
Hrozby umístěné do karantény: 0
(Nebyly zjištěny žádné škodlivé položky)
Uplynulý čas: 6 min, 17 sek
-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Zakázáno
Heuristika: Povoleno
Potenciálně nežádoucí program: Povoleno
Potenciálně nežádoucí modifikace: Povoleno
-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)
Modul: 0
(Nebyly zjištěny žádné škodlivé položky)
Klíč registru: 1
PUP.Optional.InstallCore, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\DAEMON Tools Lite, Žádná uživatelská akce, [3], [368845],1.0.2092
Hodnota v registru: 0
(Nebyly zjištěny žádné škodlivé položky)
Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)
Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)
Adresář: 0
(Nebyly zjištěny žádné škodlivé položky)
Soubor: 1
PUP.Optional.InstallCore, C:\PROGRAM FILES\DAEMON TOOLS LITE\UNINST.EXE, Žádná uživatelská akce, [3], [368845],1.0.2092
Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)
(end)
www.malwarebytes.com
-Podrobnosti logovacího souboru-
Datum skenování: 25.06.17
Čas skenování: 8:07
Logovací soubor: e.txt
Správce: Ano
-Informace o softwaru-
Verze: 3.1.2.1733
Verze komponentů: 1.0.141
Aktualizovat verzi balíku komponent: 1.0.2092
Licence: Zkušební
-Systémová informace-
OS: Windows 10
CPU: x64
Systém souborů: NTFS
Uživatel: TOMAS_NOTEBOOK\Tom\u00c3\u00a1\u00c5\u00a1
-Shrnutí skenování-
Typ skenování: Skenování hrozeb (Threat Scan)
Výsledek: Dokončeno
Skenované objekty: 464241
Zjištěné hrozby: 2
Hrozby umístěné do karantény: 0
(Nebyly zjištěny žádné škodlivé položky)
Uplynulý čas: 6 min, 17 sek
-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Zakázáno
Heuristika: Povoleno
Potenciálně nežádoucí program: Povoleno
Potenciálně nežádoucí modifikace: Povoleno
-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)
Modul: 0
(Nebyly zjištěny žádné škodlivé položky)
Klíč registru: 1
PUP.Optional.InstallCore, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\UNINSTALL\DAEMON Tools Lite, Žádná uživatelská akce, [3], [368845],1.0.2092
Hodnota v registru: 0
(Nebyly zjištěny žádné škodlivé položky)
Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)
Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)
Adresář: 0
(Nebyly zjištěny žádné škodlivé položky)
Soubor: 1
PUP.Optional.InstallCore, C:\PROGRAM FILES\DAEMON TOOLS LITE\UNINST.EXE, Žádná uživatelská akce, [3], [368845],1.0.2092
Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)
(end)
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalý počítač, nelze nic instalovat
Nalezené položky smažte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
tomas.pinkr
- Návštěvník
- Příspěvky: 13
- Registrován: 21 čer 2017 20:48
Re: Pomalý počítač, nelze nic instalovat
Dobrý den,
omlouvám se, že jsem se neozval dříve, ale nějak jsem to nestíhal. Problém se stahováním odstraněn, instalovat také jde. Ale notebook začal mít problém s otevíráním wordu, excelu, powerpointu a také jinými kancelářskými programy (po dvojkliku nebo přes Enter se nic neděje, případně otevření trvá třeba i 2 minuty)
Díky za další radu.
omlouvám se, že jsem se neozval dříve, ale nějak jsem to nestíhal. Problém se stahováním odstraněn, instalovat také jde. Ale notebook začal mít problém s otevíráním wordu, excelu, powerpointu a také jinými kancelářskými programy (po dvojkliku nebo přes Enter se nic neděje, případně otevření trvá třeba i 2 minuty)
Díky za další radu.
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Pomalý počítač, nelze nic instalovat
Zkuste Office přeinstalovat.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?