Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Chyba - Při vyhledávání virů došlo k chybě

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
martas2
Návštěvník
Návštěvník
Příspěvky: 123
Registrován: 17 lis 2010 18:52

Chyba - Při vyhledávání virů došlo k chybě

#1 Příspěvek od martas2 »

Zdravím,
mám už starší noťas s win7 a už asi dva měsíce mi nic nejde stáhnout, pokaždé se tam objeví "Chyba - Při vyhledávání virů došlo k chybě". Používám Chrome, zkoušel jsem stahovat na různých prohlížečích (IE, Opera, Mozilla), ale výsledek to stejné. Zde je log:


Logfile of random's system information tool 1.16 (written by random/random)
Run by Hanička at 2017-06-28 15:11:44
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 28 GB (9%) free of 305 GB
Total RAM: 4077 MB (40% free)
X64

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:11:51, on 28.6.2017
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v10.0 (10.00.9200.16660)
Boot mode: Normal

Running processes:
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Fractalis Software\Display Stix 2.1.1\dstix.exe
C:\Program Files (x86)\puush\puush.exe
C:\Users\Hanička\AppData\Local\FluxSoftware\Flux\flux.exe
C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTray.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Users\Hanička\AppData\Roaming\Spotify\SpotifyWebHelper.exe
C:\Users\Hanička\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
C:\Users\Hanička\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Users\Hanička\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Users\Hanička\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe
C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe
C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
C:\Users\Hanička\AppData\Roaming\Spotify\Spotify.exe
C:\Users\Hanička\AppData\Roaming\Spotify\Spotify.exe
C:\Users\Hanička\AppData\Roaming\Spotify\Spotify.exe
C:\Users\Hanička\AppData\Roaming\Spotify\Spotify.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Windows\SysWOW64\ctfmon.exe
C:\Users\Hanička\Desktop\RSIT.exe
C:\Program Files (x86)\trend micro\Hanička_RSIT.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://toshiba.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=16194
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: 178.238.37.208 gregi.eu
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: (no name) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - (no file)
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: (no name) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - (no file)
O2 - BHO: (no name) - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - (no file)
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll
O2 - BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - (no file)
O2 - BHO: (no name) - {F3C88694-EFFA-4d78-B409-54B7B2535B14} - (no file)
O3 - Toolbar: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll" (file missing)
O4 - HKLM\..\Run: [TSleepSrv] %ProgramFiles(x86)%\TOSHIBA\TOSHIBA Sleep Utility\TSleepSrv.exe
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [AvgUi] "C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe" /lps=fmw
O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Hanička\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKCU\..\Run: [Google Update] "C:\Users\Hanička\AppData\Local\Google\Desktop\Install\{d1db83aa-84f7-b4d8-97bc-7f00fcf873a8}\???\???\???\{d1db83aa-84f7-b4d8-97bc-7f00fcf873a8}\GoogleUpdate.exe" >
O4 - HKCU\..\Run: [Display Stix - System tray] C:\Program Files (x86)\Fractalis Software\Display Stix 2.1.1\dstix.exe
O4 - HKCU\..\Run: [Dropbox Update] "C:\Users\Hanička\AppData\Local\Dropbox\Update\DropboxUpdate.exe" /c
O4 - HKCU\..\Run: [puush] C:\Program Files (x86)\puush\puush.exe
O4 - HKCU\..\Run: [Zoner Photo Studio Service 16] "C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXEC:\Program Files\Zoner\Photo Studio 16\Program32\ZPSService.exe"
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Hanička\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Hanička\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [f.lux] "C:\Users\Hanička\AppData\Local\FluxSoftware\Flux\flux.exe" /noshow
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] "C:\PROGRAM FILES\ZONER\PHOTO STUDIO 16\Program32\ZPSTRAY.EXE"
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Hanička\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [Spotify] "C:\Users\Hanička\AppData\Roaming\Spotify\Spotify.exe" -autostart -minimized
O4 - HKCU\..\Run: [GoogleChromeAutoLaunch_9F67CBB32E8C07D5CBA4A4BCF8A6FD94] "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window /prefetch:5
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [TOPI.EXE] C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe /STARTUP (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [TOPI.EXE] C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe /STARTUP (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [TOPI.EXE] C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe /STARTUP (User 'Default user')
O4 - .DEFAULT User Startup: TRDCReminder.lnk = C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (User 'Default user')
O4 - Startup: Dropbox.lnk = ?
O4 - Global Startup: Bluetooth Manager.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Přidat do aplikace TOSHIBA Bulletin Board - res://C:\Program Files\TOSHIBA\BulletinBoard\TosBBCom.dll/1000
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - (no file)
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: aswbIDSAgent - AVAST Software s.r.o. - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AVG Service (avgsvc) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
O23 - Service: ConfigFree WiMAX Service (cfWiMAXService) - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe
O23 - Service: ConfigFree Service - TOSHIBA CORPORATION - C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GFNEX Service (GFNEXSrv) - Unknown owner - C:\Windows\System32\GFNEXSrv.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - Unknown owner - C:\Windows\system32\TODDSrv.exe (file missing)
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
O23 - Service: TOSHIBA eco Utility Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TECO\TecoService.exe
O23 - Service: TOSHIBA HDD SSD Alert Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
O23 - Service: TPCH Service (TPCHSrv) - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 14760 bytes

======Scheduled tasks folder======

C:\Windows\tasks\40db1533-f551-4998-8bca-934da85073e3-1-6.job - C:\Program Files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-1-6.exe /rawdata=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
C:\Windows\tasks\40db1533-f551-4998-8bca-934da85073e3-1-7.job - C:\Program Files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-1-7.exe /rawdata=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
C:\Windows\tasks\40db1533-f551-4998-8bca-934da85073e3-10_user.job - C:\Program Files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-10.exe /rawdata=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
C:\Windows\tasks\40db1533-f551-4998-8bca-934da85073e3-11.job - C:\Program Files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-11.exe /rawdata=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
C:\Windows\tasks\40db1533-f551-4998-8bca-934da85073e3-3.job - C:\Program Files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-3.exe /rawdata=MxSvmyJl7+l3k5AbdcC4a/4VpmCIYhPyowgxHtWlOyojR5xO360gACtXDINQvpzozLP9Ju/B0bliQOly25iDj8kMUfYFJirkBda3laxOJuSj8xDe/L94vhgmslxAxLsk+J49QIKQai5+Y1Rw1vLBJ01QCGyB9mVAG+VrkngvovkEEkW0x2LdBU0YmYHVGI4vi4wrjGkaUlYbC2+4lnJezanHX6gYaGhxGviGEJULScrbzeBwgDc6Mr8vxb2k2oKgvW3pFO7LMsp4jqx7daFjpZcu8mug53kHLN+Why3Wv0/MqckjXSsAGZsT6NckWZyM/fOpabLIybm39djaJ+v+BhFVgFbMH9IeFFYS6Sd/r4EdWrWtNONO0tmF91t/YoP2znwCisn3N4eGOVMetRk7ftQSPg073rJs+1EC8G75AVWKw5npF8uDJ8GwN/Js+/qZC0WLDLJwS+nBVxWORpPqYXdS3yzEpKtcfkzRQ6lEgY73lpHjn/fiD/Ml/nwIvJCKnLfSUgZ4O1H828JVjtc7PoSE8K1JA/2b0o8LWlSn+i32bBJ7yPYL2Abi8D1f8CL4Kt+rPjS4QM46srXBq+wgcvrcSAosWC4nO3YmfJQkBqpALAx5Zm2RC3RPEsclhUpRD0TF49FaoJjYobUSYo3Wqzx/uNYjk30/3Fnrv/dcFsMDj8u9wYAIt6MufOyAgp6sMZ0sUzrFcsfgPEnfvWdbpoxVXC6c0u2dLK7uQvo8BWxEViFH1aeUb+cBkOFVeNONw5qJttR/WJSTsWGgI147lJojGvhX5Y3iKMXzb1IxVJySU+/4XsG6xPf5gmf0rGocm7Ta9HLy/izHIkeGFEczBlpJzzKmL4fOmGB3YyWCdVyEUObsqEOD5aMK1RU8Q2eX/0Av5azbm+AZAQtOM9Ux1dXa2j5w91ksmLoneD8CgHTjLpQ4jdgnGFVuJje72rmkD/mkhIAP3eXcUiz4KMfhwMonuHD0Vq6IQc+gqSh8yAcO2KBO10jdcB6uKVDFnaAbnP+fg1ybIb80KK83/PFPnALlN5cLitq4DV/XwHEpeH5URpIGvx0AykjgRA5kKE7V8VesshLFhh9mWpTlfToQFIT3Q1cma4tDa/WpmZO4JFloh0W6wqCpdH9f7PW+UCSVN4FrowWWvB65JegfhiAtt1XIRuwSynztr2guF+P9v5CpUleDQjcg5hfmgIm+cziS3jnmkO1tUfpnuLZkJDLY/NJJqDjJwi0jPg18DX8u22+rU9Ws1SbaZohj2sdjTODx453Hm6e9KETnrkq+LqDjSl1+/I/Ef1HMr0SoCl5VqFhTNiIIa4ZAJX7bBy9hcQ0tfw+YaEo8Ag+FCsZeA1LPqlKeIFFkz6fTmETaMI0xl/zjrMSVcJkEO1O3ImRdbAFzDM+ib09oOZ/Entxux/iRnh2RQXCStTnbfcuWaeKqJBnusu8LnwOE1zDO14uCFdoMBgZKtDycoDJ00GZwll60CtjPM4ehg2Sec4r1KePjNTN74x0eLUCrlTCm1vCoQ0bDuVvNy10eiTFC5EQIw+SEJRtbD4UbJTlZtBlr3yF2WOi5S9cGFvm27MASMqrMK50n+1XX/gYhcYloSJ1VSdlCg2ADICdOZufN50rwmnl/v04Pwf3yurG0Fn1Kme4Zc555nFoRe8l5wzip+FFGGSqwgj4Tk9Yd0qLbRdmypRefsoAvOYFFuSORIhRnpba10N7QcaS0HENTVU5KHtUueflcJy5WZcbeesntjF6PhRq0I0I1tSN3if6hVZyemzJqrmT0D2nqEe4d8713tOblykLYf+J6W+FXJP9E+dSJ8CHgoq84vF5QGGtZu0OBZXcgjOyKu8Z+LtuDFH7ARb0PxudjBw01frjEZKzKpwOX0iOndbfjedEJb3AfAeQqASnSzSxn6E6IHJOzLEjDKT2kJfJPUwJS0Pn80zLJrf9wXIyG1yZuAL9rjaBmXbmPj0kk8NYeyj6hesztGwN+exe6q/lEYNSqTNiGBmZa+1ixo9wDp6dpPjle+FutW2bZk8l2Y8fF
C:\Windows\tasks\40db1533-f551-4998-8bca-934da85073e3-5.job - C:\Program Files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-5.exe /rawdata=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
C:\Windows\tasks\40db1533-f551-4998-8bca-934da85073e3-5_user.job - C:\Program Files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-5.exe /rawdata=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
C:\Windows\tasks\40db1533-f551-4998-8bca-934da85073e3-6.job - C:\Program Files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-6.exe /rawdata=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
C:\Windows\tasks\40db1533-f551-4998-8bca-934da85073e3-7.job - C:\Program Files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-7.exe /rawdata=wjGGX6zfyEGGV9luStpOSRPeS8ZFrGGtnjkR0OwV8dEZopgDpK2M23BHuwX5fQ9kDSlCwCKBm5HeVeyB7dGwNp6BVs8YHuuLazjg1bq5PLYg12FxHfhV/KJoN1ssGELTKdMgp2LgJoagzsas5Z48ZbgbLd9A3fF49tlGQHpqIYK+rOnyzGIn6MPXSN1O3NdZZGOiz8EQuI1EvDFijGce08E5daAKhe2TD6Vc5zrkKbh/hy/6e3vvj2WSl9M6a+uonDOSC4ZJQfa1PyIaYZOm8gjA85SIgmXkFHxTE9AbroCpXpb5kehiyJ1QzDLBwv8bwEwgGydcW2UXe/wMPGe8Ma9dkPWkHt26YFz9Bo45hS1NxcyAW827x0QTu+mEPDfaa0xLiIILMH0RDsUkvIoVKULQ3Zwuk9mGfCPp/jFQmLIzsYm6Wkl73V6i+G7x1OqjHa6oE2CGNBCetloTWEqxKKZUWpYoL3v4/qKnTTOcJ9MjGmlrCsVmogOnacF8vZHNxYW7w1PY9tAZV4WbRZuNmVE04ItdT2mwpNci4QQ1gxbLocu/Gr1IZqSxJbmuQPtKnlriig4EIHv00hjrKqCg108yA58lpH3xfl5tTdICS3SEBkqy5CGoFmAOt0+sBu1oV8jP8GinQ3cjxuE9soYBM81zOShYsMJbmhpdm+e068x+y+/N0QhS4IUzx+kt4zTzPUkXFMx59oSZhBgtUB7TCbClunREo25Rwc520PDGpCrNBSnCOS1RKoUr9nvI3nKCEigangqvzJ/N4XgPotf4xbGuuNDrr4RbSU7UzqZmk37HOR2PmJlg4jWQq8SMLnTErzXHHtF1AfG8Qu53Wc9Mii2kX8AWhIHcIK5XVtrCgO4BXtAfUyC5incDwmo2dMkSGNqp8j2BDZk/hVG5oToFUVT6zo6PA5NZzEURiYyQ3aAKt/IsUftH6sVcnCHU1n9Qmg5fRYKKZE9t7gxLBN0aCruT/j1/eDXEcZua7feLE2e2L2m7r7mriMoXKs6R+sjjZvnryTXhOB320G9qz8rVVU6l1ex6ZXJ9ynxSRc52o/N1bQAnIEf1dFQ66hLamqTuXWrdbkjSPXUDEcrcS0hbor/7zBACqx8ejf2hLr1UsB1aVCzpF5/Z0ZDxK+gE3+LASr1g6XxSYS6LFkAAGKfc157DEXBTCTYJc0NcUE9qKIuujRl1kw2IXfvjFgZvr/MgayaJ5XbItCyh4+51nl6R8VIA7RcjDVhgE9NeLJyIZvUCxP2fdp+SaUx4D0UwVykgzji7mp+miwBfzmED4ihXG/cfnQ44hJ1Kgwt59jHClA0mYUpbC0kIKT+Np7r6Jh+S1fJq3OavLsxUkCMePQ1K+JBkFxXTvCLoZd+mCNoy3SiN5dK31mnvZ4vV3d31TzfVhkzNgc9hsEVOZuvtaHR+/75dNKTWfjkVMtQNLjD9idip6fuqUDYvxZKMONPj0JTth3blY0Djl7tXd60JknvKLecB+oh/IE/dqM9VLCltZqu+8caUh+r+ozJ7Jgo+ZWOiKCNyRurOG8C6TwnuMuNfOf4XZu7ga3mgaro12o6T4XtGBMaH7O6YwMegyFIpkoQEabHbXfIYTfek/MLJT94A11JQtyN++GLwau4NjIOCNcSOaplfRNAkzGfkYmNBpcIvuQsCflqtsmu8Ngha3cR6xrbcGuiVzTGeSBmwgVS0Ms2tGG9E169f508xd4IrHVTPGG6h8Dt0CXnBaXPbgcZfd7CyfjUaqrMvJSx5s/KI/MchStdmwu9WlaB5mzdEOsYv10PL2QxaEs66cH1ncVDyBF6hCB/C2WQtNi3WrBdXIWYJ5G3hJhxYU/YOtO7rz4wroO4BExkYaMOLRcXORILOAIhdy7Ca1xRf/cwewG5sI2mmP5wzabz4PNV1aqwfvT6WlAnlWz9cxJ+LW1WNYYX2keqvOkXlxk5Ws5jxijdUNwITNObcIMxS+2OZFmCfMGAB/1aiW1yPuSmSe5k2HTz22H9I4YgPuuX/3eWnOLsujjJp/r2K+Vqwu5BGAfJ7TWzsCjolWlz3Ef60ns0ExllQMTL571Ua8+zzXhTYigqFk6ZHHV/QlQ9oGeOeSEULY+9Gj4voVnsYK418CYjC76aVlR24fmq/jIWG1enfgvK3B5HshCdlZHqwnZGGYyAL5eFvfXmmixSAmPAG2Q0HLNdljN6DsL3YYlYMNUZpbMGgXOd5ODVwxbdtgdvJcpse4mPptijXOdjJbPadWKRmXXAFeNrH3d/uSR4cLDIFif9t6nWnA3vEv0GONYvHDWENcnkFdkTMIll9hQKSB9OpWqlDPz4jlaI9jv/2o4JwZeYbs7tIcUNcPIdY1M9EXnWoCg2iQ74ffzTzUFOFXX/3s9vxnQ==
C:\Windows\tasks\DropboxUpdateTaskUserS-1-5-21-4020377181-2607978513-1069556970-1000Core.job - C:\Users\Hanička\AppData\Local\Dropbox\Update\DropboxUpdate.exe /c
C:\Windows\tasks\DropboxUpdateTaskUserS-1-5-21-4020377181-2607978513-1069556970-1000UA.job - C:\Users\Hanička\AppData\Local\Dropbox\Update\DropboxUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-4020377181-2607978513-1069556970-1000Core.job - C:\Users\Hanička\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-4020377181-2607978513-1069556970-1000UA.job - C:\Users\Hanička\AppData\Local\Facebook\Update\FacebookUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\PhEpS6ncOiXKxfMk.job - C:\Users\Hani�ka\AppData\Roaming\PhEpS6ncOiXKxfMk.exe --c=a9fW+CZ48H23lMEGERFN4pnuIDp+BnfU4qP8PgCvE6aGvo+Ne5ksb8gAoacCVdazpIYpIaTguKzbvVA0ILhgxlRcforH2dVd1VOuNk6jXEzl7PwQatgj3cJ+uxCPMbEt/iS4/w/ZGI63jK0WpD/t4/8n0MGsUE+LziTeEOjxA25mf0Rcqx5ka8yO37d0bKc8WskRFZrX6WADiMTjwZci17OGQIZD+irupDxr2biT0yylypaozCsvg4LVoaH1BqLgi9CbKbYlFAccmO/iuNDOj1T8RkrS9abqR6xe9qBqRmcNZ1da+HW0QSk1wvjUpMf9gaOM3sy6kIbooq8KM659hg==

=========Google Chrome=========

C:\Users\Hanička\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension aapocclcgogkmnckokdopfmhonfmgoek 1 Prezentace Google 0.9
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Obchod Chrome 0.2
Extension aohghmighlieiainnegkcijnfilokake 1 Dokumenty Google 0.9
Extension apdfllckaahabafndbhieahigkjlhalf 1 Disk Google 14.1
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension bgjpfhpjcgdppjbgnpnjllokbmcdllig 0 Seznam Lištička - Email 1.4.2
Extension blmojkbhnkkphngknkmgccmlenfaelkd 0 Seznam Lištička - Slovník 1.4.6
Extension blpcfgokakmgnkcojhhkbfbldkacnbeo 1 YouTube 4.2.8
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension efaidnbmnnnibpcajpcglclefindmkaj 0 Adobe Acrobat 15.1.0.6
Extension eofcbnmajmjmplflapaojjnihcjkigck 0 Avast SafePrice 12.0.222
Extension felcaaldnbdncclmgdcncolpebgiejap 1 Tabulky Google 1.1
Extension fkkcgfbgohboipdhliafmacjnhjbhmim 0 MSN Homepage 0.0.0.6
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension ghbmnnjooekpmoecnnnilnnbdlolhkhi 1 Dokumenty Google offline 1.4
Extension gomekmidlodglbbmalcneegieacbdmki 0 Avast Online Security 12.0.222
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.46
Extension lifbcibllhkdhoafpjfnlhfpfgnpldfl 0 Skype 10.2.0.3000
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.2
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Platby Internetového obchodu Chrome 1.0.0.2
Extension olfeabkoenfaoljndfecamgilllcpiak 0 Seznam Lištička - Rychlá volba 1.9.1
Extension pjkljhegncpnkpknbcohdijeoejaedia 1 Gmail 8.1
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 5817.313.0.5
Homepage:
default_search_provider.search_url:
C:\Users\Hanička\AppData\Local\Google\Chrome\User Data\Default\Preferences
Homepage:
default_search_provider.search_url:

[HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck]
"Path"=C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswwebrepchrome-sp.crx

[HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki]
"Path"=C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx

[HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl]
"Path"=


======Registry dump======


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={6BE5F8F9-C348-43A9-8951-2F72B256A2BE}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{6BE5F8F9-C348-43A9-8951-2F72B256A2BE}]
"URL"=http://www.bing.com/search?q={searchTer ... -SearchBox

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-03-31 773920]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13 1307928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F3C88694-EFFA-4d78-B409-54B7B2535B14}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{D4027C7F-154A-4066-A1AD-4243D8127440}
{8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13 1307928]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"TSleepSrv"=C:\Program Files (x86)\TOSHIBA\TOSHIBA Sleep Utility\TSleepSrv.exe [2010-06-04 252792]
""= []
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"AvgUi"=C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [2016-12-06 240400]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Facebook Update"=C:\Users\Hanička\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-07-11 138096]
"Google Update"= []
"Display Stix - System tray"=C:\Program Files (x86)\Fractalis Software\Display Stix 2.1.1\dstix.exe [2004-01-12 241664]
"Dropbox Update"=C:\Users\Hanička\AppData\Local\Dropbox\Update\DropboxUpdate.exe [2016-11-05 143144]
"puush"=C:\Program Files (x86)\puush\puush.exe [2015-06-21 568904]
"Zoner Photo Studio Service 16"=C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXE [2013-10-18 801816]
"cz.seznam.software.autoupdate"=C:\Users\Hanička\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\Hanička\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
"f.lux"=C:\Users\Hanička\AppData\Local\FluxSoftware\Flux\flux.exe [2013-10-24 1017224]
"Zoner Photo Studio Autoupdate"=C:\PROGRAM FILES\ZONER\PHOTO STUDIO 16\Program32\ZPSTRAY.EXE [2013-10-18 801816]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2017-06-08 3042592]
"Spotify Web Helper"=C:\Users\Hanička\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2017-06-23 1562224]
"Spotify"=C:\Users\Hanička\AppData\Roaming\Spotify\Spotify.exe [2017-06-23 7047792]
"GoogleChromeAutoLaunch_9F67CBB32E8C07D5CBA4A4BCF8A6FD94"=C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [2017-05-09 1143640]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth Manager.lnk - C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe

C:\Users\Hanička\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Dropbox.lnk - C:\Users\Hanička\AppData\Roaming\Dropbox\bin\Dropbox.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]


[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{2D46B6DC-2207-486B-B523-A557E6D54B47}]
"StubPath"=C:\Windows\system32\cmd.exe /D /C start C:\Windows\system32\ie4uinit.exe -ClearIconCache
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
"StubPath"="C:\Program Files (x86)\Google\Chrome\Application\57.0.2987.133\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{A6EADE66-0000-0000-484E-7E8A45000000}]
"StubPath"="C:\Windows\SysWOW64\Rundll32.exe" "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll",CreateReaderUserSettings

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=i420vfw.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\SysWOW64\l3codeca.acm
"vidc.cvid"=iccvid.dll
"msacm.siren"=sirenacm.dll
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"vidc.VP60"=C:\Windows\system32\vp6vfw.dll
"vidc.VP61"=C:\Windows\system32\vp6vfw.dll
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"wave7"=wdmaud.drv
"midi7"=wdmaud.drv
"mixer7"=wdmaud.drv
"msacm.ac3filter"=ac3filter.acm
"vidc.yv12"=yv12vfw.dll
"wave8"=wdmaud.drv
"midi8"=wdmaud.drv
"mixer8"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2017-06-28 15:11:45 ----D---- C:\Program Files (x86)\trend micro
2017-06-28 15:11:44 ----D---- C:\rsit
2017-06-28 14:39:22 ----D---- C:\ProgramData\SWCUTemp

======List of files/folders modified in the last 1 month======

2017-06-28 15:11:51 ----D---- C:\Windows\Prefetch
2017-06-28 15:11:45 ----RD---- C:\Program Files (x86)
2017-06-28 15:11:14 ----D---- C:\Windows\Temp
2017-06-28 15:10:43 ----D---- C:\Windows\System32
2017-06-28 15:10:43 ----D---- C:\Windows\inf
2017-06-28 14:45:13 ----D---- C:\Users\Hanička\AppData\Roaming\uTorrent
2017-06-28 14:45:13 ----D---- C:\Program Files (x86)\Steam
2017-06-28 14:45:12 ----D---- C:\Windows\ModemLogs
2017-06-28 14:45:12 ----D---- C:\Windows\Minidump
2017-06-28 14:45:12 ----D---- C:\Windows\Logs
2017-06-28 14:45:12 ----D---- C:\Windows
2017-06-28 14:39:22 ----HD---- C:\ProgramData
2017-06-28 14:13:14 ----D---- C:\Users\Hanička\AppData\Roaming\Spotify
2017-06-28 10:15:37 ----D---- C:\Users\Hanička\AppData\Roaming\Seznam.cz
2017-06-28 10:03:29 ----A---- C:\Windows\SysWOW64\log.txt
2017-06-28 10:01:24 ----D---- C:\ProgramData\NVIDIA
2017-06-27 20:10:32 ----D---- C:\Users\Hanička\AppData\Roaming\Dropbox
2017-06-26 16:47:22 ----SHD---- C:\System Volume Information
2017-06-25 09:14:48 ----D---- C:\Windows\SysWOW64\Macromed
2017-06-16 14:16:12 ----D---- C:\Windows\SysWOW64
2017-06-16 14:16:10 ----A---- C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-06-10 16:30:46 ----SHD---- C:\Windows\Installer
2017-06-10 16:30:46 ----D---- C:\ProgramData\Skype
2017-06-10 16:30:45 ----RD---- C:\Program Files (x86)\Skype

File C:\Windows\SysWOW64\wininit.exe is digitally signed
File C:\Windows\explorer.exe is digitally signed
File C:\Windows\SysWOW64\explorer.exe is digitally signed
File C:\Windows\SysWOW64\svchost.exe is digitally signed
File C:\Windows\SysWOW64\svchost.exe is digitally signed
File C:\Windows\SysWOW64\User32.dll is digitally signed
File C:\Windows\SysWOW64\User32.dll is digitally signed
File C:\Windows\SysWOW64\userinit.exe is digitally signed
File C:\Windows\SysWOW64\userinit.exe is digitally signed

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswbidsh;aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys []
R0 aswblog;aswblog; C:\Windows\system32\drivers\aswbloga.sys []
R0 aswbuniv;aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys []
R0 aswRvrt;aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys []
R0 aswVmm;aswVmm; C:\Windows\system32\drivers\aswVmm.sys []
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys []
R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys []
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys []
R0 TVALZ;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver; C:\Windows\system32\DRIVERS\TVALZ_O.SYS []
R1 aswbidsdriver;aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys []
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys []
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr2.sys []
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys []
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys []
R1 Tosrfcom;Bluetooth RFCOMM; C:\Windows\System32\Drivers\tosrfcom.sys []
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys []
R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys []
R2 aswStm;aswStm; C:\Windows\system32\drivers\aswStm.sys []
R2 TVALZFL;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver; C:\Windows\system32\DRIVERS\TVALZFL.sys []
R2 TVicPort64;TVicPort64; C:\Windows\SysWOW64\drivers\TVicPort64.sys []
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys []
R3 BtFilter;Bluetooth LowerFilter Class Filter Driver; C:\Windows\system32\DRIVERS\btfilter.sys []
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys []
R3 MEIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys []
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\nusb3hub.sys []
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\nusb3xhc.sys []
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys []
R3 PGEffect;Pangu effect driver; C:\Windows\system32\DRIVERS\pgeffect.sys []
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\Windows\System32\Drivers\RootMdm.sys []
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys []
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys []
R3 tdcmdpst;TOSHIBA Writing Engine Filter Driver; C:\Windows\system32\DRIVERS\tdcmdpst.sys []
R3 tosporte;Bluetooth COM Port; C:\Windows\system32\DRIVERS\tosporte.sys []
R3 tosrfec;Bluetooth ACPI; C:\Windows\system32\DRIVERS\tosrfec.sys []
S3 aswHdsKe;aswHdsKe; \??\C:\Windows\system32\drivers\aswHdsKe.sys []
S3 aswHwid;aswHwid; C:\Windows\system32\drivers\aswHwid.sys []
S3 GGSAFERDriver;GGSAFER Driver; \??\J:\Garena\Garena Classic\safedrv.sys []
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys []
S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\Windows\system32\DRIVERS\ewusbmdm.sys []
S3 hwusbdev;Huawei DataCard USB PNP Device; C:\Windows\system32\DRIVERS\ewusbdev.sys []
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys []
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys []
S3 tosrfbd;Bluetooth RFBUS; C:\Windows\system32\DRIVERS\tosrfbd.sys []
S3 tosrfbnp;Bluetooth RFBNEP; C:\Windows\System32\Drivers\tosrfbnp.sys []
S3 Tosrfhid;Bluetooth RFHID; C:\Windows\system32\DRIVERS\Tosrfhid.sys []
S3 tosrfnds;Bluetooth Personal Area Network; C:\Windows\system32\DRIVERS\tosrfnds.sys []
S3 TosRfSnd;Bluetooth Audio; C:\Windows\system32\drivers\tosrfsnd.sys []
S3 Tosrfusb;Bluetooth USB Controller; C:\Windows\system32\DRIVERS\tosrfusb.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys []
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys []
S3 TVICPORT;TVICPORT; \??\C:\Windows\system32\DRIVERS\TVICPORT.SYS []
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys []
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys []

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2017-04-25 83056]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2017-05-05 263304]
R2 avgsvc;AVG Service; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [2016-12-06 1146128]
R2 cfWiMAXService;ConfigFree WiMAX Service; C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe [2010-01-28 249200]
R2 ConfigFree Service;ConfigFree Service; C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe [2009-03-10 46448]
R2 GFNEXSrv;GFNEX Service; C:\Windows\System32\GFNEXSrv.exe []
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-12-20 325656]
R2 NVSvc;NVIDIA Driver Helper Service; C:\Windows\system32\nvvsvc.exe []
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2012-12-23 76888]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-01-16 378984]
R2 TODDSrv;TOSHIBA Optical Disc Drive Service; C:\Windows\system32\TODDSrv.exe []
R2 TosCoSrv;TOSHIBA Power Saver; C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe [2010-12-09 489384]
R2 TOSHIBA eco Utility Service;TOSHIBA eco Utility Service; C:\Program Files\TOSHIBA\TECO\TecoService.exe [2010-12-08 267192]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-12-20 2656280]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2017-05-05 7346208]
R3 BBUpdate;BBUpdate; C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.exe [2012-02-13 240408]
R3 TOSHIBA HDD SSD Alert Service;TOSHIBA HDD SSD Alert Service; C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe [2010-12-08 137632]
R3 TPCHSrv;TPCH Service; C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe [2010-12-20 822704]
S2 BBSvc;BingBar Service; C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.exe [2012-02-13 193816]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 ‮etadpug;Google Update Service (gupdate); C:\Program Files (x86)\Google\Desktop\Install\{d1db83aa-84f7-b4d8-97bc-7f00fcf873a8}\ \...\‮ﯹ๛\{d1db83aa-84f7-b4d8-97bc-7f00fcf873a8}\GoogleUpdate.exe < []
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-03-22 154440]
S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2017-04-05 317400]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-06-16 272384]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2016-03-22 154440]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2016-07-23 837312]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe []
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]

-----------------EOF-----------------

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118195
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Chyba - Při vyhledávání virů došlo k chybě

#2 Příspěvek od Rudy »

Zdravím!
Spusťte tuto utilitu:
Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

martas2
Návštěvník
Návštěvník
Příspěvky: 123
Registrován: 17 lis 2010 18:52

Re: Chyba - Při vyhledávání virů došlo k chybě

#3 Příspěvek od martas2 »

# AdwCleaner v6.047 - Log vytvořen 29/06/2017 v 16:38:58
# Aktualizováno dne 19/05/2017 z Malwarebytes
# Databáze : 2017-06-28.2 [Server]
# Operační systém : Windows 7 Home Premium Service Pack 1 (X64)
# Uživatelské jméno : Hanička - HANICKA-TOSH
# Spuštěno z : F:\adwcleaner_6.047.exe
# Mod: Čištění
# Podpora : https://www.malwarebytes.com/support



***** [ Služby ] *****



***** [ Složky ] *****

[-] Složka smazána: C:\Users\Hanička\AppData\Local\apn
[-] Složka smazána: C:\Users\Hanička\AppData\Local\globalUpdate
[-] Složka smazána: C:\Users\Hanička\AppData\LocalLow\AskToolbar
[-] Složka smazána: C:\Users\Hanička\AppData\Roaming\defaulttab
[-] Složka smazána: C:\Users\Hanička\AppData\Roaming\SimilarSites
[-] Složka smazána: C:\Users\Hanička\AppData\Roaming\Systweak
[-] Složka smazána: C:\ProgramData\dtdata
[#] Složka smazána po restartu: C:\ProgramData\Application Data\dtdata
[-] Složka smazána: C:\Program Files (x86)\Ask.com
[-] Složka smazána: C:\Program Files (x86)\globalUpdate
[-] Složka smazána: C:\Program Files (x86)\SimilarSites
[-] Složka smazána: C:\Windows\installer\{86d4b82a-abed-442a-be86-96357b70f4fe}
[-] Složka smazána: C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\defaulttab


***** [ Soubory ] *****

[-] Soubor smazán: C:\Users\Hanička\AppData\LocalLow\Microsoft\Internet Explorer\Services\Search_ask.com.xml
[-] Soubor smazán: C:\Windows\SysNative\roboot64.exe


***** [ DLL ] *****



***** [ WMI ] *****



***** [ Zástupci ] *****



***** [ Naplánované úlohy ] *****

[-] Úloha smazána: Scheduled Update for Ask Toolbar
[-] Úloha smazána: Scheduled Update for Ask Toolbar
[-] Úloha smazána: amiupdaterExd
[-] Úloha smazána: amiupdaterExi


***** [ Registry ] *****

[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
[#] Klíč smazán po restartu: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}_is1
[#] Klíč smazán po restartu: HKLM\SOFTWARE\Classes\Installer\Features\0CE7E880681D8514BB74495CB9C7DB15
[#] Klíč smazán po restartu: HKLM\SOFTWARE\Classes\Installer\Products\0CE7E880681D8514BB74495CB9C7DB15
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\0CE7E880681D8514BB74495CB9C7DB15
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\0CE7E880681D8514BB74495CB9C7DB15
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\Installer\Features\0CE7E880681D8514BB74495CB9C7DB15
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\Installer\Products\0CE7E880681D8514BB74495CB9C7DB15
[-] Klíč smazán: HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
[-] Klíč smazán: HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
[-] Klíč smazán: HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
[-] Klíč smazán: HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
[-] Klíč smazán: HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
[-] Klíč smazán: HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
[-] Klíč smazán: HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
[-] Klíč smazán: HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\globalUpdateUpdate.CoreClass.1
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\globalUpdateUpdate.OnDemandCOMClassSvc.1.0
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3COMClassService.1.0
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\globalUpdateUpdate.Update3WebSvc.1.0
[-] Klíč smazán: HKLM\SOFTWARE\Classes\AppID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\AppID\{38495740-0035-4471-851E-F5BBB86AB085}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\AppID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\AppID\{72D89EBF-0C5D-4190-91FD-398E45F1D007}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{3278F5CF-48F3-4253-A6BB-004CE84AF492}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{3B5702BA-7F4C-4D1A-B026-1E9A01D43978}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{577975B8-C40E-43E6-B0DE-4C6B44088B52}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{7E49F793-B3CD-4BF7-8419-B34B8BD30E61}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{6EDBF8C0-C94C-4A13-956F-E393BCA5BA4B}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{1F8EDE97-36D5-422A-B8F0-9406E2D87C60}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{A8F7D0A5-7074-40B8-9BDC-1174BDD0A132}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{D14D64BC-A0E4-42E3-BB72-FB41EA43C198}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{DD1F043F-ABC8-4643-8B95-D2C5B22BB019}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{E3F3E8F9-F747-4DD6-BA6B-82A6CE1E0860}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{ED0B64D4-BF27-4521-AD27-190F49BF5EA7}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{023E9EC8-B147-40EB-B0B3-DF90618FB371}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{0522D9A4-4D57-437D-978D-E5B3B6C9005D}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{07F41522-AF7D-4F26-B394-094F059FDB8A}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{0C40F472-7407-4467-8914-1DEA7C326972}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{212E6D43-6062-492A-B8CC-144669FF11ED}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{224FE662-1E6D-4BC0-AEBB-9E2FB4057BE9}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{3A807417-B46D-4D37-8C9A-19AC6DE204F9}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{3CC60715-D6C5-429D-830E-43FA3F86C61D}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{4517D94C-19BA-46FA-BE66-2A30CEAC4A85}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{555D7146-94A8-4C94-AE76-C39CDC7F7705}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{59D188FA-757A-424E-8C93-F58FFD896BD7}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{8120D9D6-785C-4413-9C0C-DF2028C56FAD}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{823AE2EB-E62C-4847-B192-C99B91B92416}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{9B4F7CFE-987D-410E-A8E4-20182E0B3C24}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{9B9A45F4-18FC-484A-BACA-076D78273D8E}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{A6D54287-7939-466A-8579-92546D946C8C}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{A78EDAFB-926F-4D93-AB13-8232D7378EB1}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{BE89FFB3-7F9C-4A16-B475-98B195A06628}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\TypeLib\{FEB62B15-CC00-4736-AAEC-BA046C9DFF73}
[-] Klíč smazán: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{00000000-6E41-4FD3-8538-502F5495E5FC}
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{5645E0E7-FC12-43BF-A6E4-F9751942B298}
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7F6AFBF1-E065-4627-A2FD-810366367D01}
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{A1E28287-1A31-4B0F-8D05-AA8C465D3C5A}
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C7BF8F4B-7BC7-4F42-B944-3D28A3A86D8A}
[-] Hodnota smazána: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Ext\CLSID [{FE69C007-C452-4D3E-86D2-1730DF8BC871}]
[-] Hodnota smazána: HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]
[-] Hodnota smazána: HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}]
[-] Hodnota smazána: HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{00000000-6E41-4FD3-8538-502F5495E5FC}]
[-] Klíč smazán: HKU\.DEFAULT\Software\Default Tab
[-] Klíč smazán: HKU\.DEFAULT\Software\DefaultTab
[-] Klíč smazán: HKU\.DEFAULT\Software\AppDataLow\Software\_CrossriderRegNamePlaceHolder_
[-] Klíč smazán: HKU\.DEFAULT\Software\AppDataLow\Software\AskToolbar
[-] Klíč smazán: HKU\.DEFAULT\Software\AppDataLow\Software\DefaultTab
[-] Klíč smazán: HKU\.DEFAULT\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\windows_ie_ac_001\Software\_CrossriderRegNamePlaceHolder_
[-] Klíč smazán: HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\Software\APN
[-] Klíč smazán: HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\Software\ArenaHD
[-] Klíč smazán: HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\Software\Ask.com
[-] Klíč smazán: HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\Software\Conduit
[-] Klíč smazán: HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\Software\Default Tab
[-] Klíč smazán: HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\Software\GlobalUpdate
[-] Klíč smazán: HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\Software\HighDefAction
[-] Klíč smazán: HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\Software\InstallCore
[-] Klíč smazán: HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\Software\InstalledBrowserExtensions
[-] Klíč smazán: HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\Software\Softonic
[-] Klíč smazán: HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\Software\YorkNewCin
[-] Klíč smazán: HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\Software\AppDataLow\Software\AskToolbar
[-] Klíč smazán: HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\Software\AppDataLow\Software\Crossrider
[-] Klíč smazán: HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\Software\AppDataLow\Software\DefaultTab
[-] Klíč smazán: HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}
[#] Klíč smazán po restartu: HKU\S-1-5-18\Software\Default Tab
[#] Klíč smazán po restartu: HKU\S-1-5-18\Software\DefaultTab
[#] Klíč smazán po restartu: HKU\S-1-5-18\Software\AppDataLow\Software\_CrossriderRegNamePlaceHolder_
[#] Klíč smazán po restartu: HKU\S-1-5-18\Software\AppDataLow\Software\AskToolbar
[#] Klíč smazán po restartu: HKU\S-1-5-18\Software\AppDataLow\Software\DefaultTab
[#] Klíč smazán po restartu: HKU\S-1-5-18\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\windows_ie_ac_001\Software\_CrossriderRegNamePlaceHolder_
[#] Klíč smazán po restartu: HKCU\Software\APN
[#] Klíč smazán po restartu: HKCU\Software\ArenaHD
[#] Klíč smazán po restartu: HKCU\Software\Ask.com
[#] Klíč smazán po restartu: HKCU\Software\Conduit
[#] Klíč smazán po restartu: HKCU\Software\Default Tab
[#] Klíč smazán po restartu: HKCU\Software\GlobalUpdate
[#] Klíč smazán po restartu: HKCU\Software\HighDefAction
[#] Klíč smazán po restartu: HKCU\Software\InstallCore
[#] Klíč smazán po restartu: HKCU\Software\InstalledBrowserExtensions
[#] Klíč smazán po restartu: HKCU\Software\Softonic
[#] Klíč smazán po restartu: HKCU\Software\YorkNewCin
[#] Klíč smazán po restartu: HKCU\Software\AppDataLow\Software\AskToolbar
[#] Klíč smazán po restartu: HKCU\Software\AppDataLow\Software\Crossrider
[#] Klíč smazán po restartu: HKCU\Software\AppDataLow\Software\DefaultTab
[-] Klíč smazán: HKLM\SOFTWARE\AppDataLow\SOFTWARE\_CrossriderRegNamePlaceHolder_
[-] Klíč smazán: HKLM\SOFTWARE\AppDataLow\SOFTWARE\Crossrider
[-] Klíč smazán: HKLM\SOFTWARE\APN
[-] Klíč smazán: HKLM\SOFTWARE\ArenaHD
[-] Klíč smazán: HKLM\SOFTWARE\AskToolbar
[-] Klíč smazán: HKLM\SOFTWARE\Conduit
[-] Klíč smazán: HKLM\SOFTWARE\Default Tab
[-] Klíč smazán: HKLM\SOFTWARE\DefaultTab
[-] Klíč smazán: HKLM\SOFTWARE\GlobalUpdate
[-] Klíč smazán: HKLM\SOFTWARE\HighDefAction
[-] Klíč smazán: HKLM\SOFTWARE\InstalledBrowserExtensions
[-] Klíč smazán: HKLM\SOFTWARE\YorkNewCin
[-] Klíč smazán: HKLM\SOFTWARE\systweak
[#] Klíč smazán po restartu: HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
[#] Klíč smazán po restartu: [x64] HKCU\Software\APN
[#] Klíč smazán po restartu: [x64] HKCU\Software\ArenaHD
[#] Klíč smazán po restartu: [x64] HKCU\Software\Ask.com
[#] Klíč smazán po restartu: [x64] HKCU\Software\Conduit
[#] Klíč smazán po restartu: [x64] HKCU\Software\Default Tab
[#] Klíč smazán po restartu: [x64] HKCU\Software\GlobalUpdate
[#] Klíč smazán po restartu: [x64] HKCU\Software\HighDefAction
[#] Klíč smazán po restartu: [x64] HKCU\Software\InstallCore
[#] Klíč smazán po restartu: [x64] HKCU\Software\InstalledBrowserExtensions
[#] Klíč smazán po restartu: [x64] HKCU\Software\Softonic
[#] Klíč smazán po restartu: [x64] HKCU\Software\YorkNewCin
[#] Klíč smazán po restartu: [x64] HKCU\Software\AppDataLow\Software\AskToolbar
[#] Klíč smazán po restartu: [x64] HKCU\Software\AppDataLow\Software\Crossrider
[#] Klíč smazán po restartu: [x64] HKCU\Software\AppDataLow\Software\DefaultTab
[-] Klíč smazán: [x64] HKLM\SOFTWARE\ArenaHD
[-] Klíč smazán: [x64] HKLM\SOFTWARE\HighDefAction
[-] Klíč smazán: [x64] HKLM\SOFTWARE\InstalledBrowserExtensions
[-] Klíč smazán: [x64] HKLM\SOFTWARE\YorkNewCin
[#] Klíč smazán po restartu: [x64] HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9
[#] Klíč smazán po restartu: HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\F928123A039649549966d4C29D35B1C9
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0CFE535C35F99574E8340BFA75BF92C2
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\261F213D1F55267499B1F87D0CC3BCF7
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\120DFADEB50841F408F04D2A278F9509
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B5BAE2ED018083A4C8DA86D6E3F4B024
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\F928123A039649549966d4C29D35B1C9
[-] Klíč smazán: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\F928123A039649549966d4C29D35B1C9
[-] Klíč smazán: HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\Software\Microsoft\Internet Explorer\SearchScopes\{7056ADA5-B41B-4CE4-9503-DB022D32EE45}
[-] Klíč smazán: HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\Software\Microsoft\Internet Explorer\SearchScopes\{992E1E73-5302-46F4-BAF6-7E89F8A9EA32}
[#] Klíč smazán po restartu: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{7056ADA5-B41B-4CE4-9503-DB022D32EE45}
[#] Klíč smazán po restartu: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{992E1E73-5302-46F4-BAF6-7E89F8A9EA32}
[#] Klíč smazán po restartu: [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{7056ADA5-B41B-4CE4-9503-DB022D32EE45}
[#] Klíč smazán po restartu: [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{992E1E73-5302-46F4-BAF6-7E89F8A9EA32}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\AppID\DefaultTabBHO.DLL
[-] Klíč smazán: HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
[-] Klíč smazán: HKLM\SOFTWARE\Classes\AppID\globalupdate.exe
[-] Klíč smazán: HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=4
[-] Klíč smazán: HKLM\SOFTWARE\MozillaPlugins\@staging.google.com/globalUpdate Update;version=10


***** [ Prohlížeče ] *****



*************************

:: "Tracing" klíče smazány
:: Winsock nastavení vyčištěno

*************************

C:\AdwCleaner\AdwCleaner[C0].txt - [20912 Bajty] - [29/06/2017 16:38:58]
C:\AdwCleaner\AdwCleaner[S0].txt - [19987 Bajty] - [29/06/2017 16:36:45]

########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [21060 Bajty] ##########

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118195
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Chyba - Při vyhledávání virů došlo k chybě

#4 Příspěvek od Rudy »

Dejte nový log FRST.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

martas2
Návštěvník
Návštěvník
Příspěvky: 123
Registrován: 17 lis 2010 18:52

Re: Chyba - Při vyhledávání virů došlo k chybě

#5 Příspěvek od martas2 »

Omlouvám se za zpoždění, jsem samá práce.. Zde log :)

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 08-07-2017
Ran by HaniÄŤka (administrator) on HANICKA-TOSH (10-07-2017 11:09:26)
Running from C:\Users\HaniÄŤka\Desktop
Loaded Profiles: HaniÄŤka (Available Profiles: HaniÄŤka)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 10 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
() C:\Windows\System32\GFNEXSrv.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
(NVIDIA Corporation) C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(TOSHIBA Corporation) C:\Windows\System32\TODDSrv.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TECO\TecoService.exe
(Microsoft Corp.) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe
(TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TECO\Teco.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Fractalis Software) C:\Program Files (x86)\Fractalis Software\Display Stix 2.1.1\dstix.exe
() C:\Program Files (x86)\puush\puush.exe
(Flux Software LLC) C:\Users\HaniÄŤka\AppData\Local\FluxSoftware\Flux\flux.exe
(ZONER software) C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTray.exe
(Valve Corporation) C:\Program Files (x86)\Steam\Steam.exe
() C:\Users\HaniÄŤka\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
() C:\Users\HaniÄŤka\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
(Dropbox, Inc.) C:\Users\HaniÄŤka\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Sun Microsystems, Inc.) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\ConfigFree\NDSTray.exe
(Dropbox, Inc.) C:\Users\HaniÄŤka\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Dropbox, Inc.) C:\Users\HaniÄŤka\AppData\Roaming\Dropbox\bin\Dropbox.exe
(TOSHIBA CORPORATION) C:\Program Files (x86)\TOSHIBA\ConfigFree\CFSwMgr.exe
(Spotify Ltd) C:\Users\HaniÄŤka\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(Valve Corporation) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe
(SpoleÄŤnost TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe
(Sun Microsystems, Inc.) C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
(Microsoft Corporation.) C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.EXE
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(forum.viry.cz) C:\Users\HaniÄŤka\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [TosReelTimeMonitor] => C:\Program Files\TOSHIBA\ReelTime\TosReelTimeMonitor.exe [38304 2010-12-14] (TOSHIBA Corporation)
HKLM\...\Run: [TPwrMain] => C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [566696 2011-03-02] (TOSHIBA Corporation)
HKLM\...\Run: [HSON] => C:\Program Files\TOSHIBA\TBS\HSON.exe [296824 2010-09-25] (TOSHIBA Corporation)
HKLM\...\Run: [TCrdMain] => C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [973176 2010-12-15] (TOSHIBA Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [11775592 2011-01-12] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2186856 2011-01-10] (Realtek Semiconductor)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2679592 2011-02-03] (Synaptics Incorporated)
HKLM\...\Run: [Teco] => C:\Program Files\TOSHIBA\TECO\Teco.exe [1519016 2010-12-08] (TOSHIBA Corporation)
HKLM\...\Run: [TosSENotify] => C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe [710040 2010-12-08] (TOSHIBA Corporation)
HKLM\...\Run: [TosWaitSrv] => C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [711576 2010-12-20] (TOSHIBA Corporation)
HKLM\...\Run: [TosVolRegulator] => C:\Program Files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe [24376 2009-11-11] (TOSHIBA Corporation)
HKLM\...\Run: [Toshiba Registration] => C:\Program Files\TOSHIBA\Registration\ToshibaReminder.exe [150992 2011-03-11] (Toshiba Europe GmbH)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [213832 2017-07-03] (AVAST Software)
HKLM-x32\...\Run: [TSleepSrv] => C:\Program Files (x86)\TOSHIBA\TOSHIBA Sleep Utility\TSleepSrv.exe [252792 2010-06-04] (TOSHIBA)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Sun Microsystems, Inc.)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [240400 2016-12-06] (AVG Technologies CZ, s.r.o.)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-19\...\Run: [TOPI.EXE] => C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe [845176 2011-02-18] (TOSHIBA)
HKU\S-1-5-20\...\Run: [TOPI.EXE] => C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe [845176 2011-02-18] (TOSHIBA)
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\Run: [Facebook Update] => C:\Users\HaniÄŤka\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2012-07-11] (Facebook Inc.)
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\Run: [Google Update*‮❤<*>] => "C:\Users\HaniÄŤka\AppData\Local\Google\Desktop\Install\{d1db83aa-84f7-b4d8-97bc-7f00fcf873a8}\❤≸⋙\â°˘â� ⍨\‮ﯹ๛\{d1db83aa-84f7-b4d8-97bc-7f00fcf873a8}\GoogleUpdate.exe" > <==== ATTENTION (Value Name with invalid characters)
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\Run: [Display Stix - System tray] => C:\Program Files (x86)\Fractalis Software\Display Stix 2.1.1\dstix.exe [241664 2004-01-12] (Fractalis Software)
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\Run: [Dropbox Update] => C:\Users\HaniÄŤka\AppData\Local\Dropbox\Update\DropboxUpdate.exe [143144 2016-11-05] (Dropbox, Inc.)
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\Run: [puush] => C:\Program Files (x86)\puush\puush.exe [568904 2015-06-21] ()
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\Run: [Zoner Photo Studio Service 16] => C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSService.exe [27672 2013-10-18] ()
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\Run: [cz.seznam.software.autoupdate] => C:\Users\HaniÄŤka\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\Run: [cz.seznam.software.szndesktop] => C:\Users\HaniÄŤka\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [103080 2015-05-26] ()
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\Run: [f.lux] => C:\Users\HaniÄŤka\AppData\Local\FluxSoftware\Flux\flux.exe [1017224 2013-10-24] (Flux Software LLC)
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\Run: [Zoner Photo Studio Autoupdate] => C:\PROGRAM FILES\ZONER\PHOTO STUDIO 16\Program32\ZPSTRAY.EXE [801816 2013-10-18] (ZONER software)
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [3042592 2017-06-08] (Valve Corporation)
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\Run: [GoogleChromeAutoLaunch_9F67CBB32E8C07D5CBA4A4BCF8A6FD94] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe [1197912 2017-06-23] (Google Inc.)
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\Run: [Spotify] => C:\Users\HaniÄŤka\AppData\Roaming\Spotify\Spotify.exe [7111792 2017-07-07] (Spotify Ltd)
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\Run: [Spotify Web Helper] => C:\Users\HaniÄŤka\AppData\Roaming\Spotify\Spotify.exe [7111792 2017-07-07] (Spotify Ltd)
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\MountPoints2: G - G:\LaunchU3.exe -a
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\MountPoints2: {91d4f4b9-be27-11e1-85c3-e0699592947c} - F:\Installer.exe
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\MountPoints2: {a2bedf90-1775-11e1-9943-e0699592947c} - F:\Autorun.exe
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\MountPoints2: {a2bedfa8-1775-11e1-9943-e0699592947c} - G:\Autorun.exe
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\MountPoints2: {a2bedfaa-1775-11e1-9943-e0699592947c} - H:\Autorun.exe
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\MountPoints2: {a2bedfac-1775-11e1-9943-e0699592947c} - I:\Autorun.exe
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\MountPoints2: {b3b44d5f-fbe4-11e0-8a7d-e0699592947c} - F:\Autorun.exe
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\MountPoints2: {b7812a13-5019-11e2-943a-e0699592947c} - G:\LaunchU3.exe -a
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\MountPoints2: {dffed6fb-4d41-11e3-9f2a-e0699592947c} - F:\.autorun\autorun.exe
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\MountPoints2: {f0b96d29-fb20-11e0-8ec3-e0699592947c} - F:\Autorun.exe
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\MountPoints2: {f0b96d37-fb20-11e0-8ec3-e0699592947c} - F:\Autorun.exe
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\MountPoints2: {f0b96d6c-fb20-11e0-8ec3-e0699592947c} - G:\Autorun.exe
HKU\S-1-5-18\...\Run: [TOPI.EXE] => C:\Program Files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe [845176 2011-02-18] (TOSHIBA)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth Manager.lnk [2012-01-19]
ShortcutTarget: Bluetooth Manager.lnk -> C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe (No File)
Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk [2011-03-11]
ShortcutTarget: TRDCReminder.lnk -> C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (TOSHIBA Europe)
Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\TRDCReminder.lnk [2011-03-11]
ShortcutTarget: TRDCReminder.lnk -> C:\Program Files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe (TOSHIBA Europe)
Startup: C:\Users\HaniÄŤka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk [2017-06-27]
ShortcutTarget: Dropbox.lnk -> C:\Users\HaniÄŤka\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
BootExecute: SBBD.exe /D \Device\HarddiskVolume2\Program Files (x86)\iS3\STOPzilla AntiVirus\Definitions /Lautocheck autochk *
GroupPolicy\User: Restriction <==== ATTENTION
CHR HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\SOFTWARE\Policies\Google: Restriction <==== ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 01 mswsock.dll => No File ATTENTION: LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Winsock: Catalog5 05 mswsock.dll => No File ATTENTION: LibraryPath should be "%SystemRoot%\System32\mswsock.dll"
Winsock: Catalog5-x64 01 mswsock.dll => No File ATTENTION: LibraryPath should be "%SystemRoot%\system32\NLAapi.dll"
Winsock: Catalog5-x64 05 mswsock.dll => No File ATTENTION: LibraryPath should be "%SystemRoot%\System32\mswsock.dll"
Hosts: 178.238.37.208 gregi.eu
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{717E8A11-F6CD-4F1B-85F7-1CC090D43ACD}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/?clid=16194
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://toshiba.msn.com
SearchScopes: HKLM -> DefaultScope {9265B91A-F338-4685-B274-D7AD6DC01B34} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {9265B91A-F338-4685-B274-D7AD6DC01B34} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {6BE5F8F9-C348-43A9-8951-2F72B256A2BE} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {6BE5F8F9-C348-43A9-8951-2F72B256A2BE} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKU\S-1-5-21-4020377181-2607978513-1069556970-1000 -> DefaultScope {8172f457-818d-46db-941f-2bbe53e156af} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKU\S-1-5-21-4020377181-2607978513-1069556970-1000 -> {19961930-88D9-4359-8930-FE59D380D834} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid= ... arch_16194
SearchScopes: HKU\S-1-5-21-4020377181-2607978513-1069556970-1000 -> {1E93477D-086B-4FEE-93B4-6AB4CBCEC8EF} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_16194
SearchScopes: HKU\S-1-5-21-4020377181-2607978513-1069556970-1000 -> {399a1442-7377-49e7-8d77-6dc9ed5968c1} URL = hxxp://www.zbozi.cz/?q={searchTerms}&sourceid=quicksearch_6826
SearchScopes: HKU\S-1-5-21-4020377181-2607978513-1069556970-1000 -> {4F92C0E2-7DE3-4DA9-9142-CB4EAA92C2CE} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_16194
SearchScopes: HKU\S-1-5-21-4020377181-2607978513-1069556970-1000 -> {5cf5d387-d87c-4408-9a6b-301b0713d62a} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... earch_6826
SearchScopes: HKU\S-1-5-21-4020377181-2607978513-1069556970-1000 -> {6BE5F8F9-C348-43A9-8951-2F72B256A2BE} URL =
SearchScopes: HKU\S-1-5-21-4020377181-2607978513-1069556970-1000 -> {6FBC91A1-0C85-4DBB-B5FE-F75BC764E41A} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz ... arch_16194
SearchScopes: HKU\S-1-5-21-4020377181-2607978513-1069556970-1000 -> {7AF278E9-6D41-4E2D-A7BC-F5CDC72553E1} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_16194
SearchScopes: HKU\S-1-5-21-4020377181-2607978513-1069556970-1000 -> {80418120-4FA2-4837-8D4E-56148D03B44E} URL = hxxp://rover.ebay.com/rover/1/710-71511-9400-6/4?satitle={searchTerms}
SearchScopes: HKU\S-1-5-21-4020377181-2607978513-1069556970-1000 -> {80B1365C-6DCB-4351-B9CB-6FBED6AE83F5} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&s ... arch_16194
SearchScopes: HKU\S-1-5-21-4020377181-2607978513-1069556970-1000 -> {8172f457-818d-46db-941f-2bbe53e156af} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKU\S-1-5-21-4020377181-2607978513-1069556970-1000 -> {9265B91A-F338-4685-B274-D7AD6DC01B34} URL =
SearchScopes: HKU\S-1-5-21-4020377181-2607978513-1069556970-1000 -> {A35E5996-3BBF-4AC7-B863-BD9C5038C8B9} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_16194
SearchScopes: HKU\S-1-5-21-4020377181-2607978513-1069556970-1000 -> {B4C7A1CE-7BC0-4EBD-9BB2-D128EA628D83} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=QuickSearch_16194
SearchScopes: HKU\S-1-5-21-4020377181-2607978513-1069556970-1000 -> {C39E04B1-BE05-4E12-890C-DC73D8FB8A57} URL = hxxp://www.amazon.co.uk/gp/search?ie=UTF8&keyw ... nkCode=ur2
SearchScopes: HKU\S-1-5-21-4020377181-2607978513-1069556970-1000 -> {eb97f7df-1773-4916-aae6-5af74da8c69d} URL = hxxp://www.firmy.cz/phr/{searchTerms}
SearchScopes: HKU\S-1-5-21-4020377181-2607978513-1069556970-1000 -> {F7770548-4341-45AD-9FD9-B2421DE81128} URL = hxxp://www.mapy.cz/?query={searchTerms}&source ... arch_16194
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2017-07-03] (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21] (Microsoft Corp.)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO-x32: No Name -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> No File
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2017-07-03] (AVAST Software)
BHO-x32: No Name -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> No File
BHO-x32: No Name -> {9FDDE16B-836F-4806-AB1F-1455CBEFF289} -> No File
BHO-x32: Bing Bar Helper -> {d2ce3e00-f94a-4740-988e-03dc2f38c34f} -> C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13] (Microsoft Corporation.)
BHO-x32: No Name -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> No File
BHO-x32: No Name -> {F3C88694-EFFA-4d78-B409-54B7B2535B14} -> No File
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13] (Microsoft Corporation.)

FireFox:
========
FF ProfilePath: C:\Users\HaniÄŤka\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default [2017-05-19]
FF Homepage: Mozilla\Firefox\Profiles\nahd6ha2.default -> hxxp://www.ask.com/?l=dis&o=15187
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\nahd6ha2.default -> Ask.com
FF SearchEngineOrder.1: Mozilla\Firefox\Profiles\nahd6ha2.default -> Ask.com
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\nahd6ha2.default -> Ask.com
FF Keyword.URL: Mozilla\Firefox\Profiles\nahd6ha2.default -> hxxp://websearch.ask.com/redirect?client=ff&src=kw&tb=PTV&o=15184&locale=en_US&apn_uid=84c6a6ee-bcd4-483f-8edc-cda3cf9acb3e&apn_ptnrs=RY&apn_sauid=CA38D96E-5F43-4902-A816-CA9D6C55AEC8&apn_dtid=YYYYYYYYCZ&&q=
FF Extension: (KMPlayer Toolbar) - C:\Users\HaniÄŤka\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\Extensions\toolbar@ask.com [2014-08-05] [not signed]
FF Extension: (Yandex.Bar) - C:\Users\HaniÄŤka\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\Extensions\yasearch@yandex.ru [2011-11-25] [not signed]
FF Extension: (Seznam lištička) - C:\Users\Hanička\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2017-05-19]
FF SearchPlugin: C:\Users\HaniÄŤka\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\searchplugins\askcom.xml [2012-05-02]
FF ProfilePath: C:\Users\HaniÄŤka\AppData\Roaming\Gapminder Foundation\Gapminder World\Profiles\y51ldhxr.default [2015-09-28]
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.20513.0\npctrl.dll [2013-05-13] ( Microsoft Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.9.2 -> C:\Windows\SysWOW64\npDeployJava1.dll [2012-12-27] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.9.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll [2012-12-27] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrl.dll [No File]
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2010-11-10] (Microsoft Corporation)
FF Plugin-x32: @nvidia.com/3DVision -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll [2011-01-16] (NVIDIA Corporation)
FF Plugin-x32: @nvidia.com/3DVisionStreaming -> C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2011-01-16] (NVIDIA Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-30] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-30] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.0.8 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-05] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-4020377181-2607978513-1069556970-1000: @Skype Limited.com/Facebook Video Calling Plugin -> C:\Users\HaniÄŤka\AppData\Local\Facebook\Video\Skype\npFacebookVideoCalling.dll [2014-07-24] (Skype Limited)

Chrome:
=======
CHR HomePage: Default -> msn.com
CHR Profile: C:\Users\HaniÄŤka\AppData\Local\Google\Chrome\User Data\Default [2017-07-10]
CHR Extension: (Prezentace Google) - C:\Users\HaniÄŤka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-06-28]
CHR Extension: (Dokumenty Google) - C:\Users\HaniÄŤka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-06-28]
CHR Extension: (Disk Google) - C:\Users\HaniÄŤka\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2017-06-28]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Hanička\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2017-06-28]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Hanička\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2017-06-28]
CHR Extension: (YouTube) - C:\Users\HaniÄŤka\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2017-06-28]
CHR Extension: (Adobe Acrobat) - C:\Users\HaniÄŤka\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-06-28]
CHR Extension: (Avast SafePrice) - C:\Users\HaniÄŤka\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2017-06-28]
CHR Extension: (Tabulky Google) - C:\Users\HaniÄŤka\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-06-28]
CHR Extension: (MSN Homepage) - C:\Users\HaniÄŤka\AppData\Local\Google\Chrome\User Data\Default\Extensions\fkkcgfbgohboipdhliafmacjnhjbhmim [2017-06-28]
CHR Extension: (Dokumenty Google offline) - C:\Users\HaniÄŤka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2017-06-28]
CHR Extension: (Avast Online Security) - C:\Users\HaniÄŤka\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2017-06-28]
CHR Extension: (Skype) - C:\Users\HaniÄŤka\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2017-06-28]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Hanička\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-06-28]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Hanička\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2017-06-28]
CHR Extension: (Gmail) - C:\Users\HaniÄŤka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2017-06-28]
CHR Extension: (Chrome Media Router) - C:\Users\HaniÄŤka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-06-30]
CHR HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [blmojkbhnkkphngknkmgccmlenfaelkd] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [fkkcgfbgohboipdhliafmacjnhjbhmim] - hxxps://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswwebrepchrome-sp.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - hxxps://clients2.google.com/service/update2/crx

Opera:
=======
OPR Extension: (Opera Bookmarks Share Portal) - C:\Users\HaniÄŤka\AppData\Roaming\Opera Software\Opera Stable\Extensions\lkadffjmnaiokkdncgdlecdegajoiemi [2015-11-15]
OPR Extension: (Adblock Plus) - C:\Users\HaniÄŤka\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2016-03-20]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7430992 2017-07-03] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [263312 2017-07-03] (AVAST Software)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1146128 2016-12-06] (AVG Technologies CZ, s.r.o.)
R2 GFNEXSrv; C:\Windows\System32\GFNEXSrv.exe [162824 2010-09-09] ()
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [File not signed]
R2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2012-12-23] ()
S2 *etadpug; "C:\Program Files (x86)\Google\Desktop\Install\{d1db83aa-84f7-b4d8-97bc-7f00fcf873a8}\ \...\‮ﯹ๛\{d1db83aa-84f7-b4d8-97bc-7f00fcf873a8}\GoogleUpdate.exe" < <==== ATTENTION (ZeroAccess)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R1 aswbidsdriver; C:\Windows\system32\drivers\aswbidsdrivera.sys [319984 2017-07-03] (AVAST Software s.r.o.)
R0 aswbidsh; C:\Windows\system32\drivers\aswbidsha.sys [198944 2017-07-03] (AVAST Software s.r.o.)
R0 aswblog; C:\Windows\system32\drivers\aswbloga.sys [343264 2017-07-03] (AVAST Software s.r.o.)
R0 aswbuniv; C:\Windows\system32\drivers\aswbuniva.sys [57704 2017-07-03] (AVAST Software s.r.o.)
S3 aswHdsKe; C:\Windows\system32\drivers\aswHdsKe.sys [82936 2016-11-14] (AVAST Software)
S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [46984 2017-07-03] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [41800 2017-07-03] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [146664 2017-07-03] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [110352 2017-07-03] (AVAST Software)
R0 aswRvrt; C:\Windows\system32\drivers\aswRvrt.sys [84392 2017-07-03] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [1015848 2017-07-03] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [585608 2017-07-03] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [198768 2017-07-03] (AVAST Software)
R0 aswVmm; C:\Windows\system32\drivers\aswVmm.sys [361336 2017-07-03] (AVAST Software)
U5 ewusbnet; C:\Windows\System32\Drivers\ewusbnet.sys [243200 2009-10-21] (Huawei Technologies Co., Ltd.)
S3 hwusbdev; C:\Windows\System32\DRIVERS\ewusbdev.sys [114304 2009-10-12] (Huawei Technologies Co., Ltd.)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-07-10 11:09 - 2017-07-10 11:10 - 00031073 _____ C:\Users\HaniÄŤka\Desktop\FRST.txt
2017-07-10 11:09 - 2017-07-10 11:09 - 00000000 ____D C:\FRST
2017-07-10 11:08 - 2017-07-10 11:08 - 00112640 _____ (forum.viry.cz) C:\Users\HaniÄŤka\Downloads\Nepotvrzeno 279885.crdownload
2017-07-10 11:08 - 2017-07-10 11:08 - 00000000 ____D C:\ProgramData\SWCUTemp
2017-07-10 11:08 - 2017-07-10 11:06 - 00112640 _____ (forum.viry.cz) C:\Users\HaniÄŤka\Desktop\FRSTLauncher.exe
2017-07-10 11:02 - 2017-07-10 10:58 - 02437120 _____ (Farbar) C:\Users\HaniÄŤka\Desktop\FRST64.exe
2017-07-07 16:18 - 2017-07-07 16:18 - 00011160 _____ C:\Users\Hanička\Desktop\ceník lišky.xlsx
2017-07-07 16:09 - 2017-07-07 16:40 - 00024740 _____ C:\Users\HaniÄŤka\Desktop\cenĂ­k dph.xlsx
2017-07-06 22:43 - 2017-07-06 22:43 - 00024772 _____ C:\Users\HaniÄŤka\Desktop\cenĂ­k.xlsx
2017-07-06 22:41 - 2017-07-06 22:41 - 00352349 _____ C:\Users\Hanička\Desktop\Sešit1.pdf
2017-07-03 20:46 - 2017-07-03 20:46 - 00400464 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2017-06-29 16:34 - 2017-06-29 16:38 - 00000000 ____D C:\AdwCleaner
2017-06-29 16:34 - 2017-06-29 16:29 - 04110280 _____ C:\Users\HaniÄŤka\Desktop\adwcleaner_6.047.exe
2017-06-28 15:11 - 2017-06-28 15:11 - 00000000 ____D C:\rsit
2017-06-28 15:11 - 2017-06-28 15:11 - 00000000 ____D C:\Program Files (x86)\trend micro
2017-06-28 15:11 - 2017-06-28 15:05 - 01206272 _____ C:\Users\HaniÄŤka\Desktop\RSIT.exe
2017-06-28 14:46 - 2017-06-28 14:46 - 00045198 _____ C:\Users\HaniÄŤka\Documents\cc_20170628_144626.reg
2017-06-28 14:46 - 2017-06-28 14:46 - 00014052 _____ C:\Users\HaniÄŤka\Documents\cc_20170628_144641.reg
2017-06-27 20:10 - 2017-06-27 20:10 - 00000000 ____D C:\Users\HaniÄŤka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2017-06-26 16:34 - 2017-06-26 16:34 - 00000000 ____D C:\Users\HaniÄŤka\AppData\LocalLow\uTorrent
2017-06-26 15:43 - 2017-06-26 16:54 - 00000000 ____D C:\Users\HaniÄŤka\Downloads\The Cider House Rules [1999] BRRip XviD - CODY
2017-06-26 15:32 - 2017-06-26 15:33 - 113074435 ____R C:\Users\HaniÄŤka\Downloads\FPVFreeride.zip
2017-06-24 23:14 - 2017-06-24 23:14 - 00974138 _____ C:\Users\HaniÄŤka\Desktop\produkt.dib
2017-06-19 18:28 - 2017-06-19 18:28 - 00000000 ____D C:\Users\HaniÄŤka\AppData\Local\{4F38188E-8E34-4990-A3D1-589257C9262B}
2017-06-19 18:23 - 2017-06-18 17:33 - 03341640 ____N C:\Users\HaniÄŤka\Desktop\20170618_160841_HDR-02.jpeg
2017-06-19 18:21 - 2017-06-20 16:34 - 00000000 ____D C:\Users\HaniÄŤka\Desktop\Dana
2017-06-15 14:32 - 2017-06-17 18:07 - 00000000 ____D C:\Users\HaniÄŤka\Desktop\FocenĂ­
2017-06-15 11:45 - 2017-06-14 19:35 - 03630925 ____N C:\Users\HaniÄŤka\Desktop\20170614_185511_HDR-01.jpeg
2017-06-14 12:25 - 2017-06-14 12:25 - 00000000 ____D C:\Users\HaniÄŤka\AppData\Local\{AB2DF155-F778-401B-BAE7-D7415932EB5A}
2017-06-13 22:46 - 2017-06-15 16:52 - 00000000 ____D C:\Users\HaniÄŤka\Desktop\CVRK
2017-06-13 22:10 - 2017-06-19 18:24 - 00000000 ____D C:\Users\HaniÄŤka\Desktop\Fotky mobil

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-07-10 11:04 - 2011-02-14 10:37 - 00634818 _____ C:\Windows\system32\perfh005.dat
2017-07-10 11:04 - 2011-02-14 10:37 - 00123376 _____ C:\Windows\system32\perfc005.dat
2017-07-10 11:04 - 2009-07-14 07:13 - 01478808 _____ C:\Windows\system32\PerfStringBackup.INI
2017-07-10 11:04 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2017-07-10 10:57 - 2017-02-18 19:15 - 00000000 ____D C:\Users\HaniÄŤka\AppData\Local\Spotify
2017-07-10 10:53 - 2016-09-20 22:07 - 00003600 _____ C:\Windows\System32\Tasks\AVG EUpdate Task
2017-07-10 10:49 - 2011-04-29 01:58 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2017-07-10 10:48 - 2015-11-15 14:43 - 00000000 ____D C:\Users\HaniÄŤka\AppData\Roaming\Seznam.cz
2017-07-10 10:46 - 2009-07-14 06:45 - 00025120 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-07-10 10:46 - 2009-07-14 06:45 - 00025120 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-07-10 10:45 - 2017-02-18 19:14 - 00000000 ____D C:\Users\HaniÄŤka\AppData\Roaming\Spotify
2017-07-10 10:45 - 2016-12-30 01:27 - 00000000 ____D C:\Program Files (x86)\Steam
2017-07-10 10:43 - 2015-11-15 14:43 - 00003136 _____ C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-1-7.job
2017-07-10 10:43 - 2015-11-15 14:43 - 00003136 _____ C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-1-6.job
2017-07-10 10:43 - 2015-11-15 14:43 - 00002444 _____ C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-5.job
2017-07-10 10:43 - 2015-11-15 14:42 - 00005516 _____ C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-6.job
2017-07-10 10:43 - 2015-11-15 14:42 - 00005182 _____ C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-11.job
2017-07-10 10:43 - 2015-11-15 14:42 - 00005180 _____ C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-7.job
2017-07-10 10:43 - 2015-11-15 14:41 - 00004492 _____ C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-3.job
2017-07-10 10:39 - 2011-04-29 01:35 - 00000000 ____D C:\ProgramData\NVIDIA
2017-07-10 10:39 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-07-08 11:12 - 2016-09-28 14:38 - 00000000 ____D C:\Users\HaniÄŤka\Desktop\Generace 21
2017-07-08 10:25 - 2015-06-16 18:01 - 00000926 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-4020377181-2607978513-1069556970-1000UA.job
2017-07-08 10:25 - 2015-06-16 18:01 - 00000874 _____ C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-4020377181-2607978513-1069556970-1000Core.job
2017-07-08 10:23 - 2011-11-27 15:42 - 00000968 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4020377181-2607978513-1069556970-1000Core.job
2017-07-08 10:12 - 2011-11-27 15:42 - 00000990 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4020377181-2607978513-1069556970-1000UA.job
2017-07-07 11:03 - 2014-07-05 21:36 - 00003994 _____ C:\Windows\System32\Tasks\User_Feed_Synchronization-{4FE9413A-9C79-4F84-8EFE-AC21689C9999}
2017-07-04 09:41 - 2016-07-18 00:17 - 00003900 _____ C:\Windows\System32\Tasks\SafeZone scheduled Autoupdate 1468793863
2017-07-03 20:47 - 2017-03-10 10:38 - 00003914 _____ C:\Windows\System32\Tasks\Avast Emergency Update
2017-07-03 20:47 - 2013-09-20 20:35 - 00361336 _____ (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys
2017-07-03 20:46 - 2014-08-01 19:41 - 00198768 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2017-07-03 20:46 - 2014-08-01 19:41 - 00046984 _____ (AVAST Software) C:\Windows\system32\Drivers\aswHwid.sys
2017-07-03 20:46 - 2013-09-20 20:35 - 00585608 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2017-07-03 20:46 - 2013-09-20 20:35 - 00360792 _____ (AVAST Software) C:\Windows\system32\Drivers\aswvmm.sys.149910765212006
2017-07-03 20:46 - 2013-09-20 20:35 - 00146664 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
2017-07-03 20:46 - 2013-09-20 20:35 - 00110352 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2017-07-03 20:46 - 2013-09-20 20:35 - 00084392 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2017-07-03 20:46 - 2011-11-10 14:52 - 00000000 ____D C:\ProgramData\AVAST Software
2017-07-03 20:45 - 2017-03-10 10:38 - 00343264 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbloga.sys
2017-07-03 20:45 - 2017-03-10 10:38 - 00319984 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsdrivera.sys
2017-07-03 20:45 - 2017-03-10 10:38 - 00198944 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbidsha.sys
2017-07-03 20:45 - 2017-03-10 10:38 - 00057704 _____ (AVAST Software s.r.o.) C:\Windows\system32\Drivers\aswbuniva.sys
2017-07-03 20:45 - 2016-07-13 20:30 - 00041800 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2017-07-03 20:45 - 2013-09-20 20:35 - 01015848 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2017-07-03 20:37 - 2016-08-18 23:51 - 00000000 _____ C:\Windows\SysWOW64\last.dump
2017-06-30 19:40 - 2011-03-11 14:57 - 00000000 ____D C:\ProgramData\Skype
2017-06-29 15:52 - 2016-03-22 12:32 - 00002202 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-06-29 15:52 - 2016-03-22 12:32 - 00002190 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-06-28 14:45 - 2014-02-18 11:41 - 00000000 ____D C:\Windows\Minidump
2017-06-28 14:45 - 2013-09-20 20:27 - 00000000 ____D C:\Users\HaniÄŤka\AppData\Local\CrashDumps
2017-06-28 14:45 - 2013-03-07 16:06 - 00000000 ____D C:\Users\HaniÄŤka\AppData\Roaming\uTorrent
2017-06-28 14:45 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\ModemLogs
2017-06-27 20:10 - 2013-07-06 23:19 - 00000000 ____D C:\Users\HaniÄŤka\AppData\Roaming\Dropbox
2017-06-26 16:16 - 2013-02-04 13:01 - 00000000 ___RD C:\Users\HaniÄŤka\Desktop\Psychologie
2017-06-23 10:21 - 2017-04-23 14:19 - 00000000 ____D C:\Users\HaniÄŤka\Downloads\Desert.Flower.2009.720p.BluRay.x264-RSG
2017-06-17 19:16 - 2015-09-07 13:49 - 00000000 ____D C:\Users\HaniÄŤka\AppData\Local\Windows Live
2017-06-16 14:16 - 2016-03-20 09:50 - 00803328 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-06-16 14:16 - 2016-03-20 09:50 - 00144896 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-06-16 14:16 - 2016-03-20 09:50 - 00004528 _____ C:\Windows\System32\Tasks\Adobe Flash Player PPAPI Notifier
2017-06-16 14:16 - 2016-03-20 09:50 - 00004396 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-06-16 14:16 - 2016-03-20 09:50 - 00000000 ____D C:\Windows\system32\Macromed
2017-06-14 19:53 - 2015-06-16 18:01 - 00000000 ____D C:\Users\HaniÄŤka\AppData\Local\Dropbox
2017-06-10 16:30 - 2017-03-15 19:43 - 00000000 ___RD C:\Program Files (x86)\Skype

==================== Files in the root of some directories =======

2015-04-19 14:20 - 2015-04-19 14:20 - 0005872 _____ () C:\Users\HaniÄŤka\AppData\Roaming\PhEpS6ncOiXKxfMk
2012-02-18 15:29 - 2012-02-18 15:29 - 0051270 _____ () C:\Users\HaniÄŤka\AppData\Roaming\room_v3.dat
2013-10-17 22:56 - 2013-10-17 22:56 - 0000292 _____ () C:\Users\HaniÄŤka\AppData\Local\HamsterBookConverter.cfg
2013-03-17 21:03 - 2013-03-17 21:03 - 0002110 _____ () C:\Users\HaniÄŤka\AppData\Local\recently-used.xbel
2012-01-28 18:39 - 2012-01-28 18:39 - 0000048 ____H () C:\ProgramData\ezsidmv.dat
ZeroAccess:
C:\Users\HaniÄŤka\AppData\Local\Google\Desktop\Install
ZeroAccess:
C:\Program Files (x86)\Google\Desktop\Install

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
ATTENTION: ====> Use DeleteJunctionsIndirectory: C:\Program Files\Windows Defender

LastRegBack: 2017-07-03 13:57

==================== End of FRST.txt ============================



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: (WINDOWS) (Fixed) (Total:297.8 GB) (Free:26.1 GB) NTFS
Drive d: (Data) (Fixed) (Total:297.98 GB) (Free:274.52 GB) NTFS
Drive f: () (Removable) (Total:0.95 GB) (Free:0.63 GB) FAT

Available physical RAM: 2079.87 MB
Total physical RAM: 4076.91 MB
Percentage of memory in use: 48%

==================== MBR and Partition Table ==================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 596.2 GB) (Disk ID: C4DA6005)
Partition 1: (Active) - (Size=400 MB) - (Type=27)
Partition 2: (Not Active) - (Size=297.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=298 GB) - (Type=07 NTFS)
Disk: 1 (Size: 973.5 MB) (Disk ID: 00000000)

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-1-6.job => C:\Program Files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-1-6.exe <==== ATTENTION
Task: C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-1-7.job => C:\Program Files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-1-7.exe <==== ATTENTION
Task: C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-10_user.job => C:\Program Files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-10.exe <==== ATTENTION
Task: C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-11.job => C:\Program Files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-11.exe <==== ATTENTION
Task: C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-3.job => C:\Program Files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-3.exe <==== ATTENTION
Task: C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-5.job => C:\Program Files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-5_user.job => C:\Program Files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-6.job => C:\Program Files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-6.exe <==== ATTENTION
Task: C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-7.job => C:\Program Files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-7.exe <==== ATTENTION
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-4020377181-2607978513-1069556970-1000Core.job => C:\Users\HaniÄŤka\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\DropboxUpdateTaskUserS-1-5-21-4020377181-2607978513-1069556970-1000UA.job => C:\Users\HaniÄŤka\AppData\Local\Dropbox\Update\DropboxUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4020377181-2607978513-1069556970-1000Core.job => C:\Users\HaniÄŤka\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4020377181-2607978513-1069556970-1000UA.job => C:\Users\HaniÄŤka\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\PhEpS6ncOiXKxfMk.job => C:\Users\Hanika\AppData\Roaming\PhEpS6ncOiXKxfMk.exe <==== ATTENTION

==================== Alternate Data Streams (whitelisted) ==================

AlternateDataStreams: C:\ProgramData\TEMP:C5760A8B [152]
AlternateDataStreams: C:\Users\HaniÄŤka\Desktop\102LEICA:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\Hanička\Desktop\ceník lišky.jpg:com.dropbox.attributes [168]

==================== Security Center ==================

AV: avast! Antivirus (Enabled - Up to date) {2B2D1395-420B-D5C9-657E-930FE358FC3C}
AS: avast! Antivirus (Enabled - Up to date) {904CF271-6431-DA47-5FCE-A87D98DFB681}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Haniźka\Desktop" je 33045 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000


==================== End Of Log ==============================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118195
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Chyba - Při vyhledávání virů došlo k chybě

#6 Příspěvek od Rudy »

Otevřte poznámkový blok a zkopírujte do něj:
Start
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Sun Microsystems, Inc.)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\Run: [Facebook Update] => C:\Users\HaniÄŤka\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2012-07-11] (Facebook Inc.)
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\MountPoints2: G - G:\LaunchU3.exe -a
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\MountPoints2: {91d4f4b9-be27-11e1-85c3-e0699592947c} - F:\Installer.exe
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\MountPoints2: {a2bedf90-1775-11e1-9943-e0699592947c} - F:\Autorun.exe
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\MountPoints2: {a2bedfa8-1775-11e1-9943-e0699592947c} - G:\Autorun.exe
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\MountPoints2: {a2bedfaa-1775-11e1-9943-e0699592947c} - H:\Autorun.exe
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\MountPoints2: {a2bedfac-1775-11e1-9943-e0699592947c} - I:\Autorun.exe
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\MountPoints2: {b3b44d5f-fbe4-11e0-8a7d-e0699592947c} - F:\Autorun.exe
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\MountPoints2: {b7812a13-5019-11e2-943a-e0699592947c} - G:\LaunchU3.exe -a
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\MountPoints2: {dffed6fb-4d41-11e3-9f2a-e0699592947c} - F:\.autorun\autorun.exe
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\MountPoints2: {f0b96d29-fb20-11e0-8ec3-e0699592947c} - F:\Autorun.exe
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\MountPoints2: {f0b96d37-fb20-11e0-8ec3-e0699592947c} - F:\Autorun.exe
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\MountPoints2: {f0b96d6c-fb20-11e0-8ec3-e0699592947c} - G:\Autorun.exe
GroupPolicy\User: Restriction <==== ATTENTION
CHR HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
SearchScopes: HKLM -> DefaultScope {9265B91A-F338-4685-B274-D7AD6DC01B34} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {9265B91A-F338-4685-B274-D7AD6DC01B34} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {6BE5F8F9-C348-43A9-8951-2F72B256A2BE} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {6BE5F8F9-C348-43A9-8951-2F72B256A2BE} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKU\S-1-5-21-4020377181-2607978513-1069556970-1000 -> DefaultScope {8172f457-818d-46db-941f-2bbe53e156af} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKU\S-1-5-21-4020377181-2607978513-1069556970-1000 -> {8172f457-818d-46db-941f-2bbe53e156af} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKU\S-1-5-21-4020377181-2607978513-1069556970-1000 -> {9265B91A-F338-4685-B274-D7AD6DC01B34} URL =
BHO-x32: No Name -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> No File
BHO-x32: No Name -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> No File
BHO-x32: No Name -> {9FDDE16B-836F-4806-AB1F-1455CBEFF289} -> No File
BHO-x32: No Name -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> No File
BHO-x32: No Name -> {F3C88694-EFFA-4d78-B409-54B7B2535B14} -> No File
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13] (Microsoft Corporation.)
FF Homepage: Mozilla\Firefox\Profiles\nahd6ha2.default -> hxxp://www.ask.com/?l=dis&o=15187
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\nahd6ha2.default -> Ask.com
FF SearchEngineOrder.1: Mozilla\Firefox\Profiles\nahd6ha2.default -> Ask.com
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\nahd6ha2.default -> Ask.com
FF Keyword.URL: Mozilla\Firefox\Profiles\nahd6ha2.default -> hxxp://websearch.ask.com/redirect?clien ... YYYYCZ&&q=
FF SearchPlugin: C:\Users\HaniÄŤka\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\searchplugins\askcom.xml [2012-05-02]
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswwebrepchrome-sp.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>
C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-1-7.job
C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-1-6.job
C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-5.job
C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-6.job
C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-11.job
C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-7.job
C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-3.job
c:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4020377181-2607978513-1069556970-1000Core.job
C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4020377181-2607978513-1069556970-1000UA.job
Task: C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-1-6.job => C:\Program Files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-1-6.exe <==== ATTENTION
Task: C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-1-7.job => C:\Program Files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-1-7.exe <==== ATTENTION
Task: C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-10_user.job => C:\Program Files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-10.exe <==== ATTENTION
Task: C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-11.job => C:\Program Files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-11.exe <==== ATTENTION
Task: C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-3.job => C:\Program Files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-3.exe <==== ATTENTION
Task: C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-5.job => C:\Program Files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-5_user.job => C:\Program Files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-6.job => C:\Program Files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-6.exe <==== ATTENTION
Task: C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-7.job => C:\Program Files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-7.exe <==== ATTENTION
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4020377181-2607978513-1069556970-1000Core.job => C:\Users\HaniÄŤka\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4020377181-2607978513-1069556970-1000UA.job => C:\Users\HaniÄŤka\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\PhEpS6ncOiXKxfMk.job => C:\Users\Hanika\AppData\Roaming\PhEpS6ncOiXKxfMk.exe <==== ATTENTION
AlternateDataStreams: C:\ProgramData\TEMP:C5760A8B [152]
AlternateDataStreams: C:\Users\HaniÄŤka\Desktop\102LEICA:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\Hanička\Desktop\ceník lišky.jpg:com.dropbox.attributes [168]

EmptyTemp:
End
Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Z logu:
Velikost slozky "C:\Users\Haniźka\Desktop" je 33045 MB.
To je příliš mnoho a může to způsobovat zpomalení startu systému. Vytvořte v C:\Users\Haniźka novou složku, do níž přesuňte všechna data z plochy (kromě zástupců). Na plochu si pak dejte zástupce té složky pro snazší přístup.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

martas2
Návštěvník
Návštěvník
Příspěvky: 123
Registrován: 17 lis 2010 18:52

Re: Chyba - Při vyhledávání virů došlo k chybě

#7 Příspěvek od martas2 »

Fix result of Farbar Recovery Scan Tool (x64) Version: 11-07-2017
Ran by Hanička (13-07-2017 16:44:01) Run:1
Running from C:\Users\Hanička\Desktop
Loaded Profiles: Hanička (Available Profiles: Hanička)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [252848 2012-07-03] (Sun Microsystems, Inc.)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\Run: [Facebook Update] => C:\Users\Hanička\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2012-07-11] (Facebook Inc.)
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\MountPoints2: G - G:\LaunchU3.exe -a
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\MountPoints2: {91d4f4b9-be27-11e1-85c3-e0699592947c} - F:\Installer.exe
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\MountPoints2: {a2bedf90-1775-11e1-9943-e0699592947c} - F:\Autorun.exe
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\MountPoints2: {a2bedfa8-1775-11e1-9943-e0699592947c} - G:\Autorun.exe
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\MountPoints2: {a2bedfaa-1775-11e1-9943-e0699592947c} - H:\Autorun.exe
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\MountPoints2: {a2bedfac-1775-11e1-9943-e0699592947c} - I:\Autorun.exe
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\MountPoints2: {b3b44d5f-fbe4-11e0-8a7d-e0699592947c} - F:\Autorun.exe
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\MountPoints2: {b7812a13-5019-11e2-943a-e0699592947c} - G:\LaunchU3.exe -a
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\MountPoints2: {dffed6fb-4d41-11e3-9f2a-e0699592947c} - F:\.autorun\autorun.exe
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\MountPoints2: {f0b96d29-fb20-11e0-8ec3-e0699592947c} - F:\Autorun.exe
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\MountPoints2: {f0b96d37-fb20-11e0-8ec3-e0699592947c} - F:\Autorun.exe
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\...\MountPoints2: {f0b96d6c-fb20-11e0-8ec3-e0699592947c} - G:\Autorun.exe
GroupPolicy\User: Restriction <==== ATTENTION
CHR HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
SearchScopes: HKLM -> DefaultScope {9265B91A-F338-4685-B274-D7AD6DC01B34} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {9265B91A-F338-4685-B274-D7AD6DC01B34} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> DefaultScope {6BE5F8F9-C348-43A9-8951-2F72B256A2BE} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {6BE5F8F9-C348-43A9-8951-2F72B256A2BE} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKU\S-1-5-21-4020377181-2607978513-1069556970-1000 -> DefaultScope {8172f457-818d-46db-941f-2bbe53e156af} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKU\S-1-5-21-4020377181-2607978513-1069556970-1000 -> {8172f457-818d-46db-941f-2bbe53e156af} URL = hxxp://www.bing.com/search?q={searchTerms}&for ... -SearchBox
SearchScopes: HKU\S-1-5-21-4020377181-2607978513-1069556970-1000 -> {9265B91A-F338-4685-B274-D7AD6DC01B34} URL =
BHO-x32: No Name -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> No File
BHO-x32: No Name -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> No File
BHO-x32: No Name -> {9FDDE16B-836F-4806-AB1F-1455CBEFF289} -> No File
BHO-x32: No Name -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> No File
BHO-x32: No Name -> {F3C88694-EFFA-4d78-B409-54B7B2535B14} -> No File
Toolbar: HKLM - No Name - {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - No File
Toolbar: HKLM-x32 - Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13] (Microsoft Corporation.)
FF Homepage: Mozilla\Firefox\Profiles\nahd6ha2.default -> hxxp://www.ask.com/?l=dis&o=15187
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\nahd6ha2.default -> Ask.com
FF SearchEngineOrder.1: Mozilla\Firefox\Profiles\nahd6ha2.default -> Ask.com
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\nahd6ha2.default -> Ask.com
FF Keyword.URL: Mozilla\Firefox\Profiles\nahd6ha2.default -> hxxp://websearch.ask.com/redirect?clien ... YYYYCZ&&q=
FF SearchPlugin: C:\Users\Hanička\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\searchplugins\askcom.xml [2012-05-02]
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswwebrepchrome-sp.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>
C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-1-7.job
C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-1-6.job
C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-5.job
C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-6.job
C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-11.job
C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-7.job
C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-3.job
c:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4020377181-2607978513-1069556970-1000Core.job
C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4020377181-2607978513-1069556970-1000UA.job
Task: C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-1-6.job => C:\Program Files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-1-6.exe <==== ATTENTION
Task: C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-1-7.job => C:\Program Files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-1-7.exe <==== ATTENTION
Task: C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-10_user.job => C:\Program Files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-10.exe <==== ATTENTION
Task: C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-11.job => C:\Program Files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-11.exe <==== ATTENTION
Task: C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-3.job => C:\Program Files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-3.exe <==== ATTENTION
Task: C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-5.job => C:\Program Files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-5_user.job => C:\Program Files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-5.exe <==== ATTENTION
Task: C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-6.job => C:\Program Files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-6.exe <==== ATTENTION
Task: C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-7.job => C:\Program Files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-7.exe <==== ATTENTION
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4020377181-2607978513-1069556970-1000Core.job => C:\Users\Hanička\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4020377181-2607978513-1069556970-1000UA.job => C:\Users\Hanička\AppData\Local\Facebook\Update\FacebookUpdate.exe
Task: C:\Windows\Tasks\PhEpS6ncOiXKxfMk.job => C:\Users\Hanika\AppData\Roaming\PhEpS6ncOiXKxfMk.exe <==== ATTENTION
AlternateDataStreams: C:\ProgramData\TEMP:C5760A8B [152]
AlternateDataStreams: C:\Users\Hanička\Desktop\102LEICA:com.dropbox.attributes [168]
AlternateDataStreams: C:\Users\Hanička\Desktop\ceník lišky.jpg:com.dropbox.attributes [168]

EmptyTemp:
End
*****************

HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value removed successfully
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender => key removed successfully
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Facebook Update => value removed successfully
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\G => key removed successfully
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{91d4f4b9-be27-11e1-85c3-e0699592947c} => key removed successfully
HKLM\Software\Classes\CLSID\{91d4f4b9-be27-11e1-85c3-e0699592947c} => key not found.
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a2bedf90-1775-11e1-9943-e0699592947c} => key removed successfully
HKLM\Software\Classes\CLSID\{a2bedf90-1775-11e1-9943-e0699592947c} => key not found.
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a2bedfa8-1775-11e1-9943-e0699592947c} => key removed successfully
HKLM\Software\Classes\CLSID\{a2bedfa8-1775-11e1-9943-e0699592947c} => key not found.
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a2bedfaa-1775-11e1-9943-e0699592947c} => key removed successfully
HKLM\Software\Classes\CLSID\{a2bedfaa-1775-11e1-9943-e0699592947c} => key not found.
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a2bedfac-1775-11e1-9943-e0699592947c} => key removed successfully
HKLM\Software\Classes\CLSID\{a2bedfac-1775-11e1-9943-e0699592947c} => key not found.
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b3b44d5f-fbe4-11e0-8a7d-e0699592947c} => key removed successfully
HKLM\Software\Classes\CLSID\{b3b44d5f-fbe4-11e0-8a7d-e0699592947c} => key not found.
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{b7812a13-5019-11e2-943a-e0699592947c} => key removed successfully
HKLM\Software\Classes\CLSID\{b7812a13-5019-11e2-943a-e0699592947c} => key not found.
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{dffed6fb-4d41-11e3-9f2a-e0699592947c} => key removed successfully
HKLM\Software\Classes\CLSID\{dffed6fb-4d41-11e3-9f2a-e0699592947c} => key not found.
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f0b96d29-fb20-11e0-8ec3-e0699592947c} => key removed successfully
HKLM\Software\Classes\CLSID\{f0b96d29-fb20-11e0-8ec3-e0699592947c} => key not found.
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f0b96d37-fb20-11e0-8ec3-e0699592947c} => key removed successfully
HKLM\Software\Classes\CLSID\{f0b96d37-fb20-11e0-8ec3-e0699592947c} => key not found.
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f0b96d6c-fb20-11e0-8ec3-e0699592947c} => key removed successfully
HKLM\Software\Classes\CLSID\{f0b96d6c-fb20-11e0-8ec3-e0699592947c} => key not found.
C:\Windows\system32\GroupPolicy\User => moved successfully
C:\Windows\system32\GroupPolicy\GPT.ini => moved successfully
C:\Windows\SysWOW64\GroupPolicy\GPT.ini => moved successfully
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\SOFTWARE\Policies\Google => key removed successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key removed successfully
HKLM\Software\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9265B91A-F338-4685-B274-D7AD6DC01B34} => key removed successfully
HKLM\Software\Classes\CLSID\{9265B91A-F338-4685-B274-D7AD6DC01B34} => key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{6BE5F8F9-C348-43A9-8951-2F72B256A2BE} => key removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{6BE5F8F9-C348-43A9-8951-2F72B256A2BE} => key not found.
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{8172f457-818d-46db-941f-2bbe53e156af} => key removed successfully
HKLM\Software\Classes\CLSID\{8172f457-818d-46db-941f-2bbe53e156af} => key not found.
HKU\S-1-5-21-4020377181-2607978513-1069556970-1000\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{9265B91A-F338-4685-B274-D7AD6DC01B34} => key removed successfully
HKLM\Software\Classes\CLSID\{9265B91A-F338-4685-B274-D7AD6DC01B34} => key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} => key removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} => key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6} => key removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{9030D464-4C02-4ABF-8ECC-5164760863C6} => key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289} => key removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{9FDDE16B-836F-4806-AB1F-1455CBEFF289} => key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9} => key removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9} => key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F3C88694-EFFA-4d78-B409-54B7B2535B14} => key removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{F3C88694-EFFA-4d78-B409-54B7B2535B14} => key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} => value removed successfully
HKLM\Software\Classes\CLSID\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} => key not found.
HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar\\{8dcb7100-df86-4384-8842-8fa844297b3f} => value removed successfully
HKLM\Software\Wow6432Node\Classes\CLSID\{8dcb7100-df86-4384-8842-8fa844297b3f} => key removed successfully
Firefox "homepage" removed successfully
Firefox SelectedSearchEngine removed successfully
Firefox SearchEngineOrder.1 removed successfully
Firefox DefaultSearchEngine removed successfully
Firefox "Keyword.URL" removed successfully
C:\Users\Hanička\AppData\Roaming\Mozilla\Firefox\Profiles\nahd6ha2.default\searchplugins\askcom.xml => moved successfully
HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE => key removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE => key removed successfully
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck => key removed successfully
HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki => key removed successfully
C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-1-7.job => moved successfully
C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-1-6.job => moved successfully
C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-5.job => moved successfully
C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-6.job => moved successfully
C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-11.job => moved successfully
C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-7.job => moved successfully
C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-3.job => moved successfully
c:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4020377181-2607978513-1069556970-1000Core.job => moved successfully
C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4020377181-2607978513-1069556970-1000UA.job => moved successfully
C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-1-6.job => not found.
C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-1-7.job => not found.
C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-10_user.job => moved successfully
C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-11.job => not found.
C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-3.job => not found.
C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-5.job => not found.
C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-5_user.job => moved successfully
C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-6.job => not found.
C:\Windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-7.job => not found.
C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4020377181-2607978513-1069556970-1000Core.job => not found.
C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-4020377181-2607978513-1069556970-1000UA.job => not found.
C:\Windows\Tasks\PhEpS6ncOiXKxfMk.job => moved successfully
C:\ProgramData\TEMP => ":C5760A8B" ADS removed successfully.
C:\Users\Hanička\Desktop\102LEICA => ":com.dropbox.attributes" ADS removed successfully.
C:\Users\Hanička\Desktop\ceník lišky.jpg => ":com.dropbox.attributes" ADS removed successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 49397917 B
Java, Flash, Steam htmlcache => 5060355 B
Windows/system/drivers => 90332488 B
Edge => 0 B
Chrome => 611743124 B
Firefox => 0 B
Opera => 28780992 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 83029 B
Public => 0 B
ProgramData => 0 B
systemprofile => 42378406 B
systemprofile32 => 86637 B
LocalService => 66228 B
NetworkService => 66228 B
Hanička => 9005879 B

RecycleBin => 7347420771 B
EmptyTemp: => 7.6 GB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 16:46:39 ====

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118195
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Chyba - Při vyhledávání virů došlo k chybě

#8 Příspěvek od Rudy »

Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

martas2
Návštěvník
Návštěvník
Příspěvky: 123
Registrován: 17 lis 2010 18:52

Re: Chyba - Při vyhledávání virů došlo k chybě

#9 Příspěvek od martas2 »

Bohužel žádná změna :/ Pořád ta samá chyba

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118195
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Chyba - Při vyhledávání virů došlo k chybě

#10 Příspěvek od Rudy »

Zkusíme Chrome přeinstalovat. Chrome zazálohujte pomocí ChromeBackup: http://www.stahuj.centrum.cz/internet_a ... me-backup/ . Pak Chrome kompletně odinstalujte vč. jeho profilu (podadresáře Chrome v c:\users\Hanička\appdata\local, c:\users\Hanička\appdata\roaming, c:\users\Hanička\data aplikací, c:\users\Hanička\local settings a v c:\program data musí být smazány). Potom udělejte novu, čistou instalaci Chrome a zpět ze zálohy nakopírujte pouze záložky a hesla.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Odpovědět