Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Podivné chování chrome

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
Laras
Návštěvník
Návštěvník
Příspěvky: 3
Registrován: 24 říj 2006 16:24

Podivné chování chrome

#1 Příspěvek od Laras »

Zdravím, prosím o kontrolu logu - po spuštění chrome po krátké době přestane pracovat korektně myš - nejdou otevřít záložky, jiné programy nereagují na některé tlačítka.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 14-10-2017
Ran by patockam (administrator) on PATOCKA (15-10-2017 10:25:45)
Running from C:\Users\patockam\Desktop
Loaded Profiles: patockam (Available Profiles: patockam)
Platform: Windows 7 Professional Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Autodesk Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(CrypKey (Canada) Ltd.) C:\Windows\System32\Crypserv.exe
(Digi International Inc.) C:\Windows\SysWOW64\dgrpencx.exe
(Dassault Systèmes) C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe
() C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
(Softland) C:\Program Files (x86)\Softland\FBackup 6\bService.exe
(FileOpen Systems Inc.) C:\Program Files\FileOpen\Services\FileOpenManager64.exe
(FileZilla Project) C:\Program Files (x86)\FileZilla Server\FileZilla Server.exe
(SafeNet Inc.) C:\Windows\System32\hasplms.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Windows\SysWOW64\irstrtsv.exe
() C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe
(Microsoft Corporation) C:\Windows\System32\msiexec.exe
(pdfforge GmbH) C:\Program Files (x86)\PDF Architect 2\creator-ws.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
(silex technology, Inc.) C:\Program Files\silex technology\SX Virtual Link Lite\SvlLtSrv.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(TOSHIBA Corporation) C:\Windows\System32\TODDSrv.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
() C:\Program Files (x86)\ASUS\Printer Utilities\UsbService64.exe
(Validity Sensors, Inc.) C:\Windows\System32\valWBFPolicyService.exe
(OCCAM Financial Technology) C:\Program Files (x86)\VeNCrypt-0.2.6\vencserver.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TECO\TecoService.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
(Intel Corporation) C:\Windows\Temp\irstrtsv\scrncap.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
() C:\Windows\System32\igfxTray.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\Apoint.exe
(TOSHIBA) C:\Program Files\TOSHIBA\Fingerprint Utility\TFPUTaskMonitor.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
() C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
(TOSHIBA Corporation ) C:\Program Files\TOSHIBA\Power Saver\TBatmgrTrayicon.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TECO\Teco.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApMsgFwd.exe
() C:\Program Files\TOSHIBA\FlashCards\Hotkey\TCrdKBB.exe
(Toshiba Europe GmbH) C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\hidfind.exe
(FileOpen Systems Inc.) C:\Program Files\FileOpen\Services\FileOpenBroker64.exe
(Alps Electric Co., Ltd.) C:\Program Files\Apoint2K\ApntEx.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TECO\TecoHook.exe
(ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
(Viber Media S.à r.l.) C:\Users\patockam\AppData\Local\Viber\Viber.exe
(TOSHIBA) C:\Program Files\TOSHIBA\FlashCards\Hotkey\TDUNotify\TDUSrv64.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe
(Softland) C:\Program Files (x86)\Softland\FBackup 6\bTray.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\onenotem.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
(TOSHIBA Corporation) C:\Program Files (x86)\Toshiba\TOSHIBA Service Station\ToshibaServiceStation.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(DTS, Inc.) C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\APO3GUI.exe
(Autodesk, Inc.) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Safer-Networking Ltd.) C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe
(Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\acwebbrowser.exe
(Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\acwebbrowser.exe
(Autodesk) C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AcWebBrowser\acwebbrowser.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(TOSHIBA Corporation) C:\Program Files (x86)\Toshiba\TOSHIBA Service Station\TMachInfo.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHSrv.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe
(Společnost TOSHIBA Corporation) C:\Program Files\TOSHIBA\TPHM\TPCHWMsg.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\Bootstrap.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\ismagent.exe
(forum.viry.cz) C:\Users\patockam\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [] => [X]
HKLM\...\Run: [IgfxTray] => C:\windows\system32\igfxtray.exe [392168 2016-07-28] ()
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13674712 2014-07-29] (Realtek Semiconductor)
HKLM\...\Run: [Apoint] => C:\Program Files\Apoint2K\Apoint.exe [381784 2013-11-15] (Alps Electric Co., Ltd.)
HKLM\...\Run: [TFPUService] => C:\Program Files\TOSHIBA\Fingerprint Utility\TFPUTaskMonitor.exe [230752 2013-08-26] (TOSHIBA)
HKLM\...\Run: [TCrdMain] => C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe [2853968 2014-02-26] (TOSHIBA Corporation)
HKLM\...\Run: [TPwrMain] => C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [595840 2012-03-03] ()
HKLM\...\Run: [BatteryManager] => C:\Program Files\TOSHIBA\Power Saver\TBatmgrTrayIcon.exe [287104 2014-04-17] (TOSHIBA Corporation )
HKLM\...\Run: [Teco] => C:\Program Files\TOSHIBA\TECO\Teco.exe [1604168 2013-11-26] (TOSHIBA Corporation)
HKLM\...\Run: [TosSENotify] => C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe [711040 2013-08-21] (TOSHIBA Corporation)
HKLM\...\Run: [TosWaitSrv] => C:\Program Files\TOSHIBA\TPHM\TosWaitSrv.exe [712096 2011-12-15] (TOSHIBA Corporation)
HKLM\...\Run: [TSleepSrv] => C:\Program Files (x86)\TOSHIBA\TOSHIBA Sleep Utility\TSleepSrv.exe [1500240 2013-04-17] (TOSHIBA)
HKLM\...\Run: [TosVolRegulator] => C:\Program Files\TOSHIBA\TosVolRegulator\TosVolRegulator.exe [24376 2009-11-12] (TOSHIBA Corporation)
HKLM\...\Run: [Toshiba TEMPRO] => C:\Program Files (x86)\Toshiba TEMPRO\TemproTray.exe [1546720 2011-02-10] (Toshiba Europe GmbH)
HKLM\...\Run: [Toshiba Registration] => C:\Program Files\TOSHIBA\Registration\ToshibaReminder.exe [150992 2014-10-22] (Toshiba Europe GmbH)
HKLM\...\Run: [FileOpenBroker] => C:\Program Files\FileOpen\Services\FileOpenBroker64.exe [1314112 2015-01-05] (FileOpen Systems Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [169768 2015-04-07] (Apple Inc.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [5595848 2015-07-08] (ESET)
HKLM-x32\...\Run: [IMSS] => C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [134616 2013-12-10] (Intel Corporation)
HKLM-x32\...\Run: [USB3MON] => C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [292848 2013-04-26] (Intel Corporation)
HKLM-x32\...\Run: [ToshibaServiceStation] => C:\Program Files (x86)\TOSHIBA\TOSHIBA Service Station\ToshibaServiceStation.exe [1298816 2011-07-12] (TOSHIBA Corporation)
HKLM-x32\...\Run: [DTS Studio Sound] => C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\APO3GUI.exe [1500992 2013-10-05] (DTS, Inc.)
HKLM-x32\...\Run: [Winsuite2012] => [X]
HKLM-x32\...\Run: [ADSKAppManager] => C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AutodeskDesktopApp.exe [716224 2016-03-23] (Autodesk, Inc.)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-12-12] (Oracle Corporation)
HKLM-x32\...\Run: [SDTray] => C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [4101576 2014-06-24] (Safer-Networking Ltd.)
Winlogon\Notify\igfxcui: igfxdev.dll [X]
Winlogon\Notify\SDWinLogon-x32: SDWinLogon.dll [X]
HKLM\...\Policies\Explorer: [NoWelcomeScreen] 1
HKU\S-1-5-21-1093123727-3524560010-1697392749-1000\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4468056 2015-06-18] (Disc Soft Ltd)
HKU\S-1-5-21-1093123727-3524560010-1697392749-1000\...\Run: [Viber] => C:\Users\patockam\AppData\Local\Viber\Viber.exe [30800464 2017-09-26] (Viber Media S.à r.l.)
HKU\S-1-5-21-1093123727-3524560010-1697392749-1000\...\Run: [FBackup 6 Tray Agent] => C:\Program Files (x86)\Softland\FBackup 6\bTray.exe [10887544 2016-11-18] (Softland)
HKU\S-1-5-21-1093123727-3524560010-1697392749-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9856176 2017-09-20] (Piriform Ltd)
HKU\S-1-5-21-1093123727-3524560010-1697392749-1000\...\Run: [SpybotPostWindows10UpgradeReInstall] => C:\Program Files\Common Files\AV\Spybot - Search and Destroy\Test.exe [1011200 2015-07-28] (Safer-Networking Ltd.)
HKU\S-1-5-21-1093123727-3524560010-1697392749-1000\...\Policies\Explorer: []
HKU\S-1-5-21-1093123727-3524560010-1697392749-1000\...\MountPoints2: D - D:\powersuitegolden_full809.exe
HKU\S-1-5-21-1093123727-3524560010-1697392749-1000\...\MountPoints2: {ad62cb9c-4be2-11e6-9ce0-96898396738c} - D:\Startme.exe
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth Monitor.lnk [2016-02-26]
ShortcutTarget: Bluetooth Monitor.lnk -> C:\Program Files (x86)\Toshiba\Bluetooth Monitor\BtMon2.exe (TOSHIBA CORPORATION)
Startup: C:\Users\patockam\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Odeslat do OneNote.lnk [2016-03-10]
ShortcutTarget: Odeslat do OneNote.lnk -> C:\Program Files\Microsoft Office 15\root\office15\onenotem.exe (Microsoft Corporation)
BootExecute: autocheck autochk * sdnclean64.exe
GroupPolicy: Restriction <==== ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{368B608B-3715-4A23-8DCE-996E370D0C07}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{49E45A17-3E79-4FB5-9AC9-85D361DD8E96}: [DhcpNameServer] 172.27.1.1 172.27.1.62
Tcpip\..\Interfaces\{9CD57384-ACC4-41B0-976E-6FFB0681B79A}: [DhcpNameServer] 93.153.117.33 93.153.117.1
Tcpip\..\Interfaces\{CD09BF6E-8A3F-47AC-B2AB-B5E1E53488C0}: [DhcpNameServer] 192.168.42.129
Tcpip\..\Interfaces\{FAEE18B2-FE3B-49D1-9AFB-009A0A9E40E7}: [DhcpNameServer] 192.168.254.1

Internet Explorer:
==================
HKU\S-1-5-21-1093123727-3524560010-1697392749-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://dispecink.tcmach.cz/web/index.htm
HKU\S-1-5-21-1093123727-3524560010-1697392749-1000\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://toshiba13.msn.com/?pc=TEJB
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-1093123727-3524560010-1697392749-1000 -> DefaultScope {FBBCFF86-E407-4AD1-9828-D49ABF0A75C0} URL =
SearchScopes: HKU\S-1-5-21-1093123727-3524560010-1697392749-1000 -> {FBBCFF86-E407-4AD1-9828-D49ABF0A75C0} URL =
BHO: TOSHIBA Fingerprint Utility Web Site Passwords -> {030AC7B6-E7EC-40F1-8FB2-C0FD344DE0B9} -> C:\Program Files\TOSHIBA\Fingerprint Utility\TFPUPWDBankBHO.dll [2013-08-26] (TOSHIBA)
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2017-08-15] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_121\bin\ssv.dll [2017-03-21] (Oracle Corporation)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\URLREDIR.DLL [2017-03-14] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2017-08-15] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-03-21] (Oracle Corporation)
BHO-x32: TOSHIBA Fingerprint Utility Web Site Passwords -> {030AC7B6-E7EC-40F1-8FB2-C0FD344DE0B9} -> C:\Program Files\TOSHIBA\Fingerprint Utility\BrowserAddin\TFPUPWDBankBHO.dll [2013-08-26] (TOSHIBA)
BHO-x32: PDF Architect Helper -> {691B33B0-B86E-47F3-81C7-56E4FE3B929C} -> C:\Program Files (x86)\PDF Architect 2\creator-ie-helper.dll [2014-10-10] (pdfforge GmbH)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-03-21] (Oracle Corporation)
BHO-x32: Evernote extension -> {92EF2EAD-A7CE-4424-B0DB-499CF856608E} -> C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll [2014-05-13] (Evernote Corp., 305 Walnut Street, Redwood City, CA 94063)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office 15\root\Office15\URLREDIR.DLL [2017-03-14] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-03-21] (Oracle Corporation)
Toolbar: HKLM-x32 - PDF Architect Toolbar - {DEEB13D7-CEA9-45FB-B77C-E039BEC85221} - C:\Program Files (x86)\PDF Architect 2\creator-ie-plugin.dll [2014-10-10] (pdfforge GmbH)
DPF: HKLM-x32 {E19E79EC-F62E-40A0-952D-E49AEC7BEC2F} hxxp://10.1.13.189/control/nvA1Media.cab
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2017-07-18] (Microsoft Corporation)

FireFox:
========
FF DefaultProfile: gj70f5eu.default
FF ProfilePath: C:\Users\patockam\AppData\Roaming\Mozilla\Firefox\Profiles\gj70f5eu.default [2017-10-15]
FF Extension: (QuickJava) - C:\Users\patockam\AppData\Roaming\Mozilla\Firefox\Profiles\gj70f5eu.default\Extensions\{E6C1199F-E687-42da-8C24-E7770CC3AE66}.xpi [2017-03-21]
FF HKLM-x32\...\Firefox\Extensions: [{302BCF7B-E09E-4854-9F2F-8B2DA4EF70F9}] - C:\Program Files\TOSHIBA\Fingerprint Utility\BrowserAddin\FirefoxAddin
FF Extension: (TOSHIBA Fingerprint Utility Web Site Passwords) - C:\Program Files\TOSHIBA\Fingerprint Utility\BrowserAddin\FirefoxAddin [2014-11-05] [not signed]
FF HKLM-x32\...\Firefox\Extensions: [pdf_architect_2_conv@pdfarchitect.org] - C:\Program Files (x86)\PDF Architect 2\resources\pdfarchitect2firefoxextension
FF Extension: (PDF Architect 2 Creator) - C:\Program Files (x86)\PDF Architect 2\resources\pdfarchitect2firefoxextension [2015-01-05] [not signed]
FF HKLM-x32\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => not found
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_25_0_0_148.dll [2017-04-16] ()
FF Plugin: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-03-21] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-03-21] (Oracle Corporation)
FF Plugin: synology.com/SurveillancePlugin_x86_64 -> C:\Program Files (x86)\Synology\SurveillancePlugin\1.0.0.934\npSurveillancePlugin_x86_64.dll [2016-03-25] (Synology)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_25_0_0_148.dll [2017-04-16] ()
FF Plugin-x32: @Apple.com/iTunes,version=1.0 -> C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll [2014-10-30] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-12-10] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-12-10] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-03-21] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-03-21] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2014-12-20] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-12-03] (Adobe Systems Inc.)
FF Plugin-x32: PDF Architect 2 -> C:\Program Files (x86)\PDF Architect 2\np-previewer.dll [2014-10-10] (pdfforge GmbH)
FF Plugin-x32: synology.com/SurveillancePlugin -> C:\Program Files (x86)\Synology\SurveillancePlugin\1.0.0.934\npSurveillancePlugin.dll [2016-03-25] (Synology)

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\patockam\AppData\Local\Google\Chrome\User Data\Default [2017-10-15]
CHR Extension: (No Name) - C:\Users\patockam\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2017-10-14]
CHR Extension: (No Name) - C:\Users\patockam\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-14]
CHR Extension: (No Name) - C:\Users\patockam\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-28]
CHR Extension: (No Name) - C:\Users\patockam\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-09-26]
CHR Extension: (Bing) - C:\Users\patockam\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmkckgpgekmanipelfidlhmkfcjicion [2017-08-28]
CHR Extension: (Adblock Plus) - C:\Users\patockam\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2017-09-27]
CHR Extension: (No Name) - C:\Users\patockam\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-10-28]
CHR Extension: (No Name) - C:\Users\patockam\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2017-10-14]
CHR Extension: (No Name) - C:\Users\patockam\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-03-21]
CHR Extension: (Arabic) - C:\Users\patockam\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2017-10-10]
CHR Extension: (Ubiquiti Device Discovery Tool) - C:\Users\patockam\AppData\Local\Google\Chrome\User Data\Default\Extensions\hmpigflbjeapnknladcfphgkemopofig [2017-07-29]
CHR Extension: (Chrome Web Store Payments) - C:\Users\patockam\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-08-22]
CHR Extension: (Synology Download Station) - C:\Users\patockam\AppData\Local\Google\Chrome\User Data\Default\Extensions\onhbegdkgonhlokobjefolhpoidcnida [2016-04-26]
CHR Extension: (No Name) - C:\Users\patockam\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-03-31]
CHR Extension: (Chrome Media Router) - C:\Users\patockam\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-09-26]
CHR HKU\S-1-5-21-1093123727-3524560010-1697392749-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bmkckgpgekmanipelfidlhmkfcjicion] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [iniieblifogecdlkejbmonblijmdaiog] - C:\Program Files\TOSHIBA\Fingerprint Utility\BrowserAddin\ChromeAddin\ChromeAddin.crx [2013-08-26]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AdAppMgrSvc; C:\Program Files (x86)\Autodesk\Autodesk Desktop App\AdAppMgrSvc.exe [1231376 2016-03-23] (Autodesk Inc.)
R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [77128 2015-01-20] (Apple Inc.)
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3059440 2017-07-18] (Microsoft Corporation)
R2 CrypKey License; C:\windows\system32\crypserv.exe [126976 2010-03-18] (CrypKey (Canada) Ltd.) [File not signed]
R2 DgRpEncx; C:\windows\SysWow64\dgrpencx.exe [1025520 2013-02-16] (Digi International Inc.)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusService.exe [1268568 2015-06-18] (Disc Soft Ltd)
R2 DraftSight API Service; C:\Program Files\Dassault Systemes\DraftSight\bin\dsHttpApiService.exe [125440 2016-03-17] (Dassault Systèmes) [File not signed]
R2 dts_apo_service; C:\Program Files (x86)\DTS, Inc\DTS Studio Sound\dts_apo_service.exe [19792 2013-10-05] ()
R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [1353720 2015-07-08] (ESET)
R2 FBackup6Srv; C:\Program Files (x86)\Softland\FBackup 6\bService.exe [5131640 2016-11-18] (Softland)
R2 FileOpenManager; C:\Program Files\FileOpen\Services\FileOpenManager64.exe [341312 2015-01-05] (FileOpen Systems Inc.)
R2 FileZilla Server; C:\Program Files (x86)\FileZilla Server\FileZilla Server.exe [857776 2016-09-22] (FileZilla Project)
R2 hasplms; C:\windows\system32\hasplms.exe [4683144 2014-06-02] (SafeNet Inc.)
S3 IDriverT; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [69632 2005-11-14] (Macrovision Corporation) [File not signed]
R2 igfxCUIService1.0.0.0; C:\windows\system32\igfxCUIService.exe [354280 2016-07-28] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-28] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-28] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-12-10] (Intel Corporation)
R2 irstrtsv; C:\windows\SysWOW64\irstrtsv.exe [784288 2013-10-16] (Intel Corporation)
R2 ISCTAgent; C:\Program Files\Intel\Intel(R) Smart Connect Technology Agent\iSCTAgent.exe [198120 2013-08-13] ()
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-12-10] (Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6058960 2017-08-07] (Malwarebytes)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [284912 2014-05-30] ()
R2 Net Driver HPZ12; C:\Windows\system32\HPZinw12.dll [71680 2008-07-18] (Hewlett-Packard) [File not signed]
S3 OpenVPNService; C:\Program Files (x86)\OpenVPN\bin\openvpnserv.exe [33080 2014-12-01] (The OpenVPN Project)
S3 PDF Architect 2; C:\Program Files (x86)\PDF Architect 2\ws.exe [1771560 2014-10-10] (pdfforge GmbH)
R2 PDF Architect 2 Creator; C:\Program Files (x86)\PDF Architect 2\creator-ws.exe [738856 2014-10-10] (pdfforge GmbH)
S3 pdfforge CrashHandler; C:\Program Files (x86)\PDF Architect 2\crash-handler-ws.exe [861736 2014-10-10] (pdfforge GmbH)
R2 Pml Driver HPZ12; C:\Windows\system32\HPZipm12.dll [89600 2008-07-18] (Hewlett-Packard) [File not signed]
S3 rpcapd; C:\Program Files (x86)\WinPcap\rpcapd.exe [118520 2013-03-01] (Riverbed Technology, Inc.)
R2 SDScannerService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [1738168 2014-06-24] (Safer-Networking Ltd.)
R2 SDUpdateService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [4088608 2016-09-21] (Safer-Networking Ltd.) [File not signed]
R2 SDWSCService; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [235984 2016-11-24] (Safer-Networking Ltd.) [File not signed]
R2 SX Virtual Link Lite; C:\Program Files\silex technology\SX Virtual Link Lite\SvlLtSrv.exe [204688 2014-10-13] (silex technology, Inc.)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [10883824 2017-03-17] (TeamViewer GmbH)
S3 TemproMonitoringService; C:\Program Files (x86)\Toshiba TEMPRO\TemproSvc.exe [112080 2011-02-10] (Toshiba Europe GmbH)
R2 UsbService; C:\Program Files (x86)\ASUS\Printer Utilities\UsbService64.exe [334848 2010-08-10] () [File not signed]
R2 valWBFPolicyService; C:\windows\system32\valWBFPolicyService.exe [33280 2013-08-27] (Validity Sensors, Inc.) [File not signed]
R2 VeNCrypt; C:\Program Files (x86)\VeNCrypt-0.2.6\vencserver.exe [886312 2006-12-11] (OCCAM Financial Technology)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3816176 2014-05-30] (Intel® Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 akshasp; C:\windows\System32\DRIVERS\akshasp.sys [69208 2015-05-21] (SafeNet Inc.)
S3 aksusb; C:\windows\System32\DRIVERS\aksusb.sys [312344 2015-05-21] (SafeNet Inc.)
R2 config; C:\windows\System32\DRIVERS\ibtfudrv.sys [120528 2014-04-15] (Intel Corporation)
R3 DIGIRPS; C:\windows\System32\DRIVERS\digirlpt.sys [174816 2013-02-16] (Digi International Inc.)
R3 dtlitescsibus; C:\windows\System32\DRIVERS\dtlitescsibus.sys [30264 2015-06-20] (Disc Soft Ltd)
R3 e1dexpress; C:\windows\System32\DRIVERS\e1d62x64.sys [489752 2014-07-29] (Intel Corporation)
R1 eamonm; C:\windows\System32\DRIVERS\eamonm.sys [255240 2015-07-14] (ESET)
U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [251632 2015-07-14] (ESET)
R1 ehdrv; C:\windows\System32\DRIVERS\ehdrv.sys [178520 2015-07-14] (ESET)
R2 epfwwfpr; C:\windows\System32\DRIVERS\epfwwfpr.sys [168208 2015-07-14] (ESET)
R1 ESProtectionDriver; C:\windows\system32\drivers\mbae64.sys [77440 2017-10-04] ()
R3 guardian2; C:\windows\System32\Drivers\oz776x64.sys [87696 2013-01-11] (O2Micro)
R2 hardlock; C:\windows\system32\drivers\hardlock.sys [340336 2015-05-21] (SafeNet Inc.)
R0 iaStorF; C:\windows\System32\DRIVERS\iaStorF.sys [28008 2013-07-30] (Intel Corporation)
R3 ikbevent; C:\windows\System32\DRIVERS\ikbevent.sys [21408 2013-08-09] ()
R3 imsevent; C:\windows\System32\DRIVERS\imsevent.sys [21920 2013-08-09] ()
R3 INETMON; C:\windows\System32\Drivers\INETMON.sys [29088 2013-08-08] ()
R3 irstrtdv; C:\windows\System32\DRIVERS\irstrtdv.sys [20192 2013-10-16] (Intel Corporation)
R3 ISCT; C:\windows\System32\DRIVERS\ISCTD64.sys [46568 2013-08-08] ()
R2 MBAMChameleon; C:\windows\System32\Drivers\MbamChameleon.sys [192952 2017-10-15] (Malwarebytes)
R3 MBAMFarflt; C:\windows\System32\DRIVERS\farflt.sys [110016 2017-10-15] (Malwarebytes)
R3 MBAMProtection; C:\windows\System32\DRIVERS\mbam.sys [45504 2017-10-15] (Malwarebytes)
R0 MBAMSwissArmy; C:\windows\System32\Drivers\mbamswissarmy.sys [252232 2017-10-15] (Malwarebytes)
R3 MBAMWebProtection; C:\windows\System32\DRIVERS\mwac.sys [84256 2017-10-15] (Malwarebytes)
R3 MEIx64; C:\windows\System32\DRIVERS\TeeDriverx64.sys [100312 2013-12-10] (Intel Corporation)
R2 mgdrv; C:\windows\system32\drivers\mgdrv.sys [62712 2015-11-09] (Moxa Inc. )
R2 mgdrvfilter; C:\windows\system32\drivers\mgdrvfilter.sys [43768 2015-11-09] (Moxa Inc. )
R3 NETwNs64; C:\windows\System32\DRIVERS\Netwsw02.sys [3442144 2014-06-18] (Intel Corporation)
R1 NetworkX; C:\windows\System32\ckldrv.sys [30272 2010-03-19] ()
R2 NPF; C:\windows\System32\drivers\npf.sys [36600 2013-03-01] (Riverbed Technology, Inc.)
S3 ptun0901; C:\windows\System32\DRIVERS\ptun0901.sys [27136 2015-01-26] (The OpenVPN Project)
R3 RTSPER; C:\windows\System32\DRIVERS\RtsPer.sys [411208 2013-06-07] (Realsil Semiconductor Corporation)
R3 sxuptp; C:\windows\System32\DRIVERS\sxuptp.sys [310496 2014-05-20] (silex technology, Inc.)
S3 toshidpt; C:\windows\System32\drivers\Toshidpt.sys [10232 2012-08-01] (TOSHIBA Corporation.)
R3 usb3Hub; C:\windows\System32\DRIVERS\usb3Hub.sys [204184 2014-03-04] (Windows (R) Win 7 DDK provider)
R3 vuhub; C:\windows\System32\DRIVERS\vuhub.sys [47616 2007-12-17] ()
S3 cpuz139; \??\C:\Users\patockam\AppData\Local\Temp\cpuz139\cpuz139_x64.sys [X] <==== ATTENTION
S3 NSNDIS5; \??\C:\windows\system32\NSNDIS5.SYS [X]
S2 supersafer64; \??\C:\windows\SysWOW64\drivers\supersafer64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-10-15 10:25 - 2017-10-15 10:25 - 000032209 _____ C:\Users\patockam\Desktop\FRST.txt
2017-10-15 10:23 - 2017-10-15 10:23 - 000112640 _____ (forum.viry.cz) C:\Users\patockam\Desktop\FRSTLauncher.exe
2017-10-15 10:22 - 2017-10-15 10:25 - 000000000 ____D C:\FRST
2017-10-15 10:22 - 2017-10-15 10:22 - 002402304 _____ (Farbar) C:\Users\patockam\Desktop\FRST64.exe
2017-10-15 10:14 - 2017-10-15 10:14 - 008250832 _____ (Malwarebytes) C:\Users\patockam\Downloads\AdwCleaner.exe
2017-10-15 10:13 - 2017-10-15 10:17 - 000000000 ____D C:\AdwCleaner
2017-10-15 09:51 - 2017-10-15 09:51 - 000000000 ____D C:\Program Files\Common Files\AV
2017-10-15 09:51 - 2015-07-28 17:52 - 000821920 _____ (Safer-Networking Ltd. ) C:\Users\Public\Desktop\Post Win10 Spybot-install.exe
2017-10-15 09:48 - 2017-10-15 09:48 - 000180932 _____ C:\Users\patockam\Documents\cc_20171015_094802.reg
2017-10-15 09:39 - 2017-10-15 09:39 - 000002794 _____ C:\windows\System32\Tasks\CCleanerSkipUAC
2017-10-15 09:39 - 2017-10-15 09:39 - 000000833 _____ C:\Users\Public\Desktop\CCleaner.lnk
2017-10-15 09:39 - 2017-10-15 09:39 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2017-10-15 09:39 - 2017-10-15 09:39 - 000000000 ____D C:\Program Files\CCleaner
2017-10-15 09:38 - 2017-10-15 09:38 - 009809688 _____ (Piriform Ltd) C:\Users\patockam\Downloads\ccsetup535.exe
2017-10-15 09:26 - 2017-10-15 09:59 - 000000000 ____D C:\ProgramData\Spybot - Search & Destroy
2017-10-15 09:26 - 2017-10-15 09:51 - 000000000 ____D C:\Program Files (x86)\Spybot - Search & Destroy 2
2017-10-15 09:26 - 2017-10-15 09:26 - 000001366 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot-S&D Start Center.lnk
2017-10-15 09:26 - 2017-10-15 09:26 - 000001354 _____ C:\Users\Public\Desktop\Spybot-S&D Start Center.lnk
2017-10-15 09:26 - 2017-10-15 09:26 - 000000000 ____D C:\windows\System32\Tasks\Safer-Networking
2017-10-15 09:26 - 2017-10-15 09:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Spybot - Search & Destroy 2
2017-10-15 09:26 - 2013-09-20 10:49 - 000021040 _____ (Safer Networking Limited) C:\windows\system32\sdnclean64.exe
2017-10-15 09:25 - 2017-10-15 09:25 - 053962248 _____ C:\Users\patockam\Downloads\spybot-2.4.exe
2017-10-15 08:56 - 2017-10-15 10:18 - 000110016 _____ (Malwarebytes) C:\windows\system32\Drivers\farflt.sys
2017-10-15 08:56 - 2017-10-15 10:18 - 000084256 _____ (Malwarebytes) C:\windows\system32\Drivers\mwac.sys
2017-10-15 08:56 - 2017-10-15 10:18 - 000045504 _____ (Malwarebytes) C:\windows\system32\Drivers\mbam.sys
2017-10-15 08:56 - 2017-10-15 09:04 - 000252232 _____ (Malwarebytes) C:\windows\system32\Drivers\mbamswissarmy.sys
2017-10-15 08:56 - 2017-10-15 08:56 - 000192952 _____ (Malwarebytes) C:\windows\system32\Drivers\MbamChameleon.sys
2017-10-15 08:40 - 2017-10-15 08:40 - 000001878 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2017-10-15 08:40 - 2017-10-15 08:40 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2017-10-15 08:40 - 2017-10-04 13:15 - 000077440 _____ C:\windows\system32\Drivers\mbae64.sys
2017-10-15 08:39 - 2017-10-15 08:39 - 000000000 ____D C:\ProgramData\MB2Migration
2017-10-15 08:39 - 2017-10-15 08:39 - 000000000 ____D C:\ProgramData\Malwarebytes
2017-10-15 08:39 - 2017-10-15 08:39 - 000000000 ____D C:\Program Files\Malwarebytes
2017-10-15 08:39 - 2017-10-15 08:39 - 000000000 ____D C:\Program Files (x86)\Malwarebytes Anti-Malware
2017-10-15 08:38 - 2017-10-15 08:38 - 021540440 _____ (Malwarebytes Corporation ) C:\Users\patockam\Downloads\mbam-setup-2.1.4.1018.exe
2017-10-13 19:36 - 2017-10-13 19:36 - 000044378 _____ C:\Users\patockam\Downloads\[CzT]Podfukari_2_Now_You_See_Me_2_2016_CZ_EN_720pHD_.torrent
2017-10-13 18:45 - 2017-10-13 18:45 - 000001180 _____ C:\Users\Public\Desktop\Dokumentace HW MATEC.lnk.lnk
2017-10-13 18:39 - 2017-10-13 18:40 - 121131536 _____ (AMiT s.r.o. ) C:\Users\patockam\Downloads\DetStudioSetup183_24.exe
2017-10-13 17:57 - 2017-10-13 17:57 - 000015486 _____ C:\Users\patockam\Downloads\[CzT]Podfukari_2_Now_You_See_Me_2_2016_CZ_.torrent
2017-10-13 17:56 - 2017-10-13 17:56 - 000023075 _____ C:\Users\patockam\Downloads\[CzT]Podfukari_2_Now_You_See_Me_2_2016_CZ_EN_.torrent
2017-10-11 19:16 - 2017-10-11 19:16 - 000023167 _____ C:\Users\patockam\AppData\Local\recently-used.xbel
2017-10-11 19:11 - 2017-10-11 19:16 - 000031650 _____ C:\Users\patockam\Downloads\16_Mach_ES1_CHM.svgz
2017-10-09 14:59 - 2017-10-09 15:00 - 036466904 _____ C:\Users\patockam\Downloads\SAO_DPS_2017_10_05.ZIP
2017-10-09 08:40 - 2017-10-09 08:40 - 002936752 _____ (ParetoLogic) C:\Users\patockam\Downloads\Pareto_DR_Setup_RW.exe
2017-10-09 07:49 - 2017-10-09 07:50 - 005336518 _____ C:\Users\patockam\Downloads\RakhniDecryptor.zip
2017-10-09 07:49 - 2017-10-09 07:49 - 000591870 _____ C:\Users\patockam\Downloads\rannohdecryptor.zip
2017-10-08 19:12 - 2017-10-08 19:12 - 037566158 _____ C:\Users\patockam\Downloads\Doma4.zip
2017-10-07 19:53 - 2017-10-07 19:53 - 000085200 _____ C:\Users\patockam\Downloads\[CzT]John_Wick_2_John_Wick_Chapter_Two_2017_CZ_EN_1080pHD_.torrent
2017-10-07 07:33 - 2017-10-07 07:33 - 000010752 _____ C:\Users\patockam\Downloads\1BP1 - Tlak glykolu.xls
2017-10-07 07:33 - 2017-10-07 07:33 - 000001807 _____ C:\Users\patockam\Downloads\1BP1 - Tlak glykolu (2).csv
2017-10-07 07:31 - 2017-10-07 07:31 - 000004015 _____ C:\Users\patockam\Downloads\1BP1 - Tlak glykolu (1).csv
2017-10-07 07:30 - 2017-10-07 07:30 - 000004015 _____ C:\Users\patockam\Downloads\1BP1 - Tlak glykolu.csv
2017-10-05 12:27 - 2017-10-05 12:27 - 000525819 _____ C:\Users\patockam\Downloads\1_Pivovar (5).svgz
2017-10-05 11:29 - 2017-10-05 11:29 - 002093623 _____ C:\Users\patockam\Downloads\lookdet_u_g_cz_107 (8).pdf
2017-10-05 11:28 - 2017-10-05 11:28 - 004885145 _____ C:\Users\patockam\Downloads\lookdet_a_g_cz_107 (12).pdf
2017-10-04 12:45 - 2017-10-04 12:45 - 000003086 _____ C:\Users\patockam\Downloads\UkazkaPouzitiViceroJpg.zip
2017-10-04 11:37 - 2017-10-04 11:37 - 000241331 _____ C:\Users\patockam\Downloads\Plynoměr vyvíječ páry (2).csv
2017-10-04 11:36 - 2017-10-04 11:36 - 001447691 _____ C:\Users\patockam\Downloads\Plynoměr vyvíječ páry (1).csv
2017-10-03 18:26 - 2017-10-03 18:27 - 048238784 _____ (Hewlett-Packard Company ) C:\Users\patockam\Downloads\sp75979.exe
2017-10-02 07:12 - 2017-10-02 08:54 - 000000000 ____D C:\Users\patockam\AppData\Local\Viber
2017-10-01 07:55 - 2017-10-01 07:57 - 000005895 _____ C:\Users\patockam\Documents\WC Hruska.cfg
2017-09-30 19:22 - 2017-09-30 19:22 - 000042290 _____ C:\Users\patockam\Downloads\[SkT]Mumie_-_The_Mummy_(2017)(CZ-EN)[1080p]_=_CSFD_55% (1).torrent
2017-09-30 19:15 - 2017-09-30 19:16 - 000040557 _____ C:\Users\patockam\Downloads\[SkT]Mumie_-_The_Mummy_(2017)(CZ-EN)[720p]_=_CSFD_55% (1).torrent
2017-09-30 19:00 - 2017-09-30 19:00 - 000042290 _____ C:\Users\patockam\Downloads\[SkT]Mumie_-_The_Mummy_(2017)(CZ-EN)[1080p]_=_CSFD_55%.torrent
2017-09-30 18:55 - 2017-09-30 18:55 - 000076504 _____ C:\Users\patockam\Downloads\[SkT]Mumie_-_The_Mummy_(2017)(CZ-EN)[1080pHD]_=_CSFD_55%.torrent
2017-09-30 18:54 - 2017-09-30 18:54 - 000040557 _____ C:\Users\patockam\Downloads\[SkT]Mumie_-_The_Mummy_(2017)(CZ-EN)[720p]_=_CSFD_55%.torrent
2017-09-30 18:53 - 2017-09-30 18:53 - 000018496 _____ C:\Users\patockam\Downloads\[SkT]Mumie_-_The_Mummy_(2017)(CZ)_=_CSFD_55%.torrent
2017-09-30 12:06 - 2017-09-30 12:06 - 000148969 _____ C:\Users\patockam\Desktop\HTML Color Codes.html
2017-09-30 12:04 - 2017-09-30 12:04 - 000310626 _____ C:\Users\patockam\Desktop\výběr barvy rgb - Hledat Googlem.html
2017-09-30 12:04 - 2017-09-30 12:04 - 000000000 ____D C:\Users\patockam\Desktop\výběr barvy rgb - Hledat Googlem_files
2017-09-29 15:11 - 2017-09-29 15:15 - 000537287 _____ C:\Users\patockam\Downloads\1_Pivovar (4).svgz
2017-09-29 15:07 - 2017-09-29 15:07 - 000008464 _____ C:\Users\patockam\Desktop\logo_text2.svg
2017-09-29 14:57 - 2017-09-29 14:57 - 004885145 _____ C:\Users\patockam\Downloads\lookdet_a_g_cz_107 (11).pdf
2017-09-29 07:46 - 2017-09-29 07:46 - 000000000 ____D C:\Users\patockam\Desktop\sx-3000gb_v113_eng
2017-09-29 07:45 - 2017-09-29 07:45 - 000000000 ____D C:\Users\patockam\Documents\sx-3000gb_v113_eng
2017-09-29 07:43 - 2017-09-29 07:43 - 000976500 _____ C:\Users\patockam\Downloads\sx-3000gb_v113_eng.zip
2017-09-28 14:05 - 2017-09-28 14:05 - 000036908 _____ C:\Users\patockam\Downloads\9_Slunce Invest.svgz
2017-09-28 14:04 - 2017-09-28 14:04 - 000008696 _____ C:\Users\patockam\Downloads\10_Slunce invest - systém.svgz
2017-09-28 14:03 - 2017-09-28 14:03 - 000414755 _____ C:\Users\patockam\Downloads\Hvac_Flat_Icons_Free_Vector.zip
2017-09-28 14:03 - 2017-09-28 14:03 - 000055948 _____ C:\Users\patockam\Downloads\Untitled (1).svg
2017-09-28 11:25 - 2017-09-28 18:12 - 000540004 _____ C:\Users\patockam\Downloads\1_Pivovar (3).svgz
2017-09-28 11:01 - 2017-09-28 11:01 - 000097592 _____ C:\Users\patockam\Downloads\Untitled.svg
2017-09-28 10:59 - 2017-09-28 10:59 - 000290191 _____ C:\Users\patockam\Downloads\30.zip
2017-09-28 10:59 - 2017-09-28 10:59 - 000000000 ____D C:\Users\patockam\Downloads\30
2017-09-28 10:57 - 2017-09-28 10:57 - 001720341 _____ C:\Users\patockam\Downloads\4_08.zip
2017-09-28 10:56 - 2017-09-28 10:56 - 001082148 _____ C:\Users\patockam\Downloads\Heating_Icons_Vector_ai.zip
2017-09-28 10:53 - 2017-09-28 10:53 - 003190534 _____ C:\Users\patockam\Downloads\03_fire_ai.zip
2017-09-28 10:44 - 2017-09-28 10:44 - 001085812 _____ C:\Users\patockam\Downloads\ventilator_icons_ai.zip
2017-09-27 20:15 - 2017-09-27 20:15 - 000042825 _____ C:\Users\patockam\Downloads\[CzT]Lara_Croft_Tomb_Raider_Lara_Croft_Tomb_Raider_2001_CZ_EN_1080pHD_.torrent
2017-09-27 20:15 - 2017-09-27 20:15 - 000025083 _____ C:\Users\patockam\Downloads\[CzT]Lara_Croft_Tomb_Raider_1_2_2001_2003_CZ_.torrent
2017-09-27 08:25 - 2017-09-27 08:25 - 002093623 _____ C:\Users\patockam\Downloads\lookdet_u_g_cz_107 (7).pdf
2017-09-27 08:24 - 2017-09-27 08:24 - 004885145 _____ C:\Users\patockam\Downloads\lookdet_a_g_cz_107 (10).pdf
2017-09-26 19:34 - 2017-09-26 19:34 - 000414468 _____ C:\Users\patockam\Downloads\Plynoměr vyvíječ páry.csv
2017-09-26 15:46 - 2017-09-26 15:46 - 000083012 _____ C:\Users\patockam\Downloads\1_Pivovar (2).svgz
2017-09-26 15:44 - 2017-09-26 18:58 - 000100304 _____ C:\Users\patockam\Downloads\1_Pivovar (1).svgz
2017-09-26 14:00 - 2017-09-26 14:46 - 000094444 _____ C:\Users\patockam\Downloads\1_Pivovar.svgz
2017-09-25 19:39 - 2017-09-25 19:40 - 000000000 ___HD C:\$WINDOWS.~BT
2017-09-25 19:15 - 2017-09-25 19:15 - 002721168 _____ (Microsoft Corporation) C:\Users\patockam\Downloads\Windows7-USB-DVD-Download-Tool-Installer-en-US (1).exe
2017-09-25 19:02 - 2017-09-25 19:02 - 005473600 _____ (Piriform Ltd) C:\Users\patockam\Downloads\rcsetup153.exe
2017-09-25 11:44 - 2017-09-25 11:44 - 000000000 ____D C:\Users\patockam\AppData\Local\Advanced Port Scanner 2
2017-09-25 11:43 - 2017-09-25 11:44 - 008830152 _____ (Famatech Corp. ) C:\Users\patockam\Downloads\pscan24.exe
2017-09-25 10:09 - 2017-09-25 10:09 - 004885145 _____ C:\Users\patockam\Downloads\lookdet_a_g_cz_107 (9).pdf
2017-09-25 10:09 - 2017-09-25 10:09 - 004885145 _____ C:\Users\patockam\Downloads\lookdet_a_g_cz_107 (8).pdf
2017-09-24 20:05 - 2017-09-24 20:05 - 000141175 _____ C:\Users\patockam\Downloads\darkovy_poukaz_polozka_36961.pdf
2017-09-24 18:03 - 2017-09-24 18:03 - 002093623 _____ C:\Users\patockam\Downloads\lookdet_u_g_cz_107 (6).pdf
2017-09-24 17:51 - 2017-09-24 17:51 - 002093623 _____ C:\Users\patockam\Downloads\lookdet_u_g_cz_107 (5).pdf
2017-09-24 17:48 - 2017-09-24 17:48 - 004885145 _____ C:\Users\patockam\Downloads\lookdet_a_g_cz_107 (7).pdf
2017-09-24 17:22 - 2017-09-24 17:22 - 002093623 _____ C:\Users\patockam\Downloads\lookdet_u_g_cz_107 (4).pdf
2017-09-24 17:20 - 2017-09-24 17:20 - 000256082 _____ C:\Users\patockam\Downloads\poruchylookdet (2).apk
2017-09-24 17:20 - 2017-09-24 17:20 - 000000000 ____D C:\Users\patockam\Downloads\poruchylookdet (2)
2017-09-24 17:20 - 2017-09-24 17:20 - 000000000 ____D C:\Users\patockam\apktool
2017-09-24 17:17 - 2017-09-24 17:17 - 017487521 _____ (Vaibhav Pandey) C:\Users\patockam\Downloads\apkstudio-d49d3de-windows.exe
2017-09-23 20:44 - 2017-09-23 20:44 - 004885145 _____ C:\Users\patockam\Downloads\lookdet_a_g_cz_107 (6).pdf
2017-09-19 21:32 - 2017-09-19 21:32 - 000382287 _____ C:\Users\patockam\Downloads\Vydana faktura - 20170007.pdf
2017-09-19 21:32 - 2017-09-19 21:32 - 000379199 _____ C:\Users\patockam\Downloads\Vydana faktura - 20170008.pdf
2017-09-19 18:10 - 2017-09-19 18:10 - 000003079 _____ C:\Users\patockam\Downloads\config (6).bin
2017-09-19 13:34 - 2017-09-19 13:35 - 000244319 _____ C:\Users\patockam\Downloads\NSYS3D5525_NSYS3D5525P.zip
2017-09-19 09:09 - 2017-09-19 09:09 - 000000000 ____D C:\Users\patockam\AppData\Local\cache
2017-09-17 07:49 - 2017-09-17 07:49 - 000197077 _____ C:\Users\patockam\Downloads\CPR_1293-CPR-0397_SD-283ST_(17).pdf
2017-09-15 18:07 - 2017-09-15 18:07 - 000715636 _____ C:\Users\patockam\Downloads\[SkT]Ztracene_mesto_Z_-_The_Lost_City_of_Z_(2016)(CZ-EN)[720p]_=_CSFD_66%.torrent
2017-09-15 13:29 - 2017-09-15 13:29 - 000237929 _____ C:\Users\patockam\Downloads\NSYS3D8625_NSYS3D8625P (1).zip
2017-09-15 13:15 - 2017-09-15 13:15 - 000237929 _____ C:\Users\patockam\Downloads\NSYS3D8625_NSYS3D8625P.zip

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-10-15 10:25 - 2009-07-14 06:45 - 000027344 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-10-15 10:25 - 2009-07-14 06:45 - 000027344 ____H C:\windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-10-15 10:22 - 2011-02-14 12:17 - 000688004 _____ C:\windows\system32\perfh005.dat
2017-10-15 10:22 - 2011-02-14 12:17 - 000148350 _____ C:\windows\system32\perfc005.dat
2017-10-15 10:22 - 2009-07-14 07:13 - 001620980 _____ C:\windows\system32\PerfStringBackup.INI
2017-10-15 10:22 - 2009-07-14 05:20 - 000000000 ____D C:\windows\inf
2017-10-15 10:20 - 2016-11-20 09:23 - 000000000 ____D C:\Users\patockam\AppData\LocalLow\Mozilla
2017-10-15 10:19 - 2016-11-24 08:21 - 000000000 __SHD C:\Users\patockam\IntelGraphicsProfiles
2017-10-15 10:19 - 2015-07-31 07:17 - 000000000 ____D C:\Users\patockam\AppData\Roaming\ViberPC
2017-10-15 10:19 - 2009-07-14 04:34 - 000000455 _____ C:\windows\win.ini
2017-10-15 10:18 - 2015-03-25 21:21 - 000065536 _____ C:\windows\system32\Ikeext.etl
2017-10-15 10:18 - 2009-07-14 07:08 - 000000006 ____H C:\windows\Tasks\SA.DAT
2017-10-15 10:10 - 2017-08-10 18:44 - 000000000 ____D C:\Program Files\Mozilla Firefox
2017-10-15 10:10 - 2015-04-23 10:21 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-10-15 10:10 - 2009-07-14 05:20 - 000000000 ____D C:\windows\tracing
2017-10-15 09:49 - 2016-12-18 21:38 - 000000000 ____D C:\windows\pss
2017-10-15 09:46 - 2015-06-20 16:53 - 000000000 ____D C:\Users\patockam\AppData\Roaming\DAEMON Tools Lite
2017-10-15 09:46 - 2015-03-24 19:10 - 000000000 ____D C:\Users\patockam\AppData\Roaming\MPC-HC
2017-10-15 09:46 - 2015-01-05 10:59 - 000000000 ____D C:\Users\patockam\AppData\Local\PDFCreator
2017-10-15 09:46 - 2015-01-05 10:57 - 000000000 ____D C:\Program Files\PDFCreator
2017-10-15 09:46 - 2014-12-23 11:16 - 000000000 ____D C:\Users\patockam\AppData\Roaming\inkscape
2017-10-15 09:46 - 2014-12-11 17:10 - 000000000 ____D C:\Users\patockam\AppData\Roaming\TeamViewer
2017-10-15 09:45 - 2015-01-02 09:46 - 000000000 ____D C:\windows\Minidump
2017-10-15 09:45 - 2014-12-30 21:27 - 000000000 ____D C:\Users\patockam\AppData\Local\CrashDumps
2017-10-15 09:45 - 2014-10-23 23:56 - 000000000 ____D C:\windows\Panther
2017-10-15 08:53 - 2014-12-11 21:17 - 000007610 _____ C:\Users\patockam\AppData\Local\Resmon.ResmonCfg
2017-10-15 08:42 - 2014-12-13 12:31 - 000000000 ____D C:\Users\patockam\AppData\Local\ESET
2017-10-15 08:17 - 2015-03-15 20:59 - 000000000 ____D C:\Users\patockam\Documents\Soubory aplikace Outlook
2017-10-14 14:25 - 2014-12-22 10:41 - 000000000 ____D C:\Users\patockam\AppData\Local\ElevatedDiagnostics
2017-10-14 14:25 - 2009-07-14 05:20 - 000000000 ____D C:\windows\system32\NDF
2017-10-14 14:12 - 2015-07-31 09:59 - 000000000 ____D C:\Users\patockam\Documents\ViberDownloads
2017-10-14 07:39 - 2014-12-13 14:04 - 000000000 ___RD C:\Users\patockam\Virtual Machines
2017-10-13 18:44 - 2014-12-11 21:25 - 000000000 ____D C:\Users\patockam\AppData\Local\TempDIR
2017-10-13 18:44 - 2014-12-11 21:25 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Amit
2017-10-13 18:44 - 2014-12-11 21:25 - 000000000 ____D C:\Program Files (x86)\Amit
2017-10-12 13:45 - 2014-12-13 11:17 - 000000000 ____D C:\Users\patockam\AppData\Local\GHISLER
2017-10-12 08:48 - 2015-03-28 13:10 - 000002312 ____H C:\Users\patockam\Documents\Default.rdp
2017-10-10 14:45 - 2015-01-06 14:44 - 000405024 _____ C:\Users\patockam\Desktop\Mzdy práce.xlsx
2017-10-09 07:51 - 2015-04-13 12:37 - 000000000 ____D C:\Users\patockam\Desktop\DOC
2017-10-05 14:27 - 2014-12-11 20:59 - 000000000 ____D C:\Users\patockam\AppData\Local\Deployment
2017-10-04 08:56 - 2014-12-11 09:19 - 000000120 _____ C:\windows\system32\config\netlogon.ftl
2017-10-02 07:37 - 2015-01-26 08:15 - 000027648 _____ C:\Users\patockam\Desktop\Kopie - 181 Víkendové služby.xls
2017-10-02 07:29 - 2015-01-26 08:15 - 000028160 _____ C:\Users\patockam\Desktop\Kopie - 182 - Hodnocení víkendové služby.xls
2017-09-26 07:09 - 2014-12-23 11:55 - 000000000 ____D C:\Users\patockam\AppData\Roaming\Skype
2017-09-26 07:07 - 2014-12-11 21:00 - 000002166 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-09-25 19:40 - 2015-09-08 19:48 - 000001908 _____ C:\windows\diagwrn.xml
2017-09-25 19:40 - 2015-09-08 19:48 - 000001908 _____ C:\windows\diagerr.xml
2017-09-25 10:38 - 2015-02-12 14:54 - 000008290 _____ C:\Users\patockam\advanced_ip_scanner_MAC.bin
2017-09-25 07:44 - 2017-04-11 10:32 - 000000000 ___RD C:\Program Files (x86)\Skype
2017-09-25 07:44 - 2014-12-23 11:55 - 000000000 ____D C:\ProgramData\Skype
2017-09-24 17:43 - 2014-12-11 01:30 - 000000000 ____D C:\Users\patockam
2017-09-22 07:55 - 2014-10-22 22:52 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive
2017-09-21 08:13 - 2014-12-20 10:25 - 000000000 ____D C:\Program Files\Microsoft Office 15
2017-09-21 08:13 - 2014-10-22 22:55 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft

==================== Files in the root of some directories =======

2016-07-01 01:28 - 2016-07-01 01:28 - 000000048 ____H () C:\Program Files (x86)\dlv9q8emcr.dat
2016-12-03 20:52 - 2016-12-03 20:52 - 000000600 _____ () C:\Users\patockam\AppData\Roaming\winscp.rnd
2015-04-04 10:50 - 2017-07-03 13:21 - 000000600 _____ () C:\Users\patockam\AppData\Local\PUTTY.RND
2017-10-11 19:16 - 2017-10-11 19:16 - 000023167 _____ () C:\Users\patockam\AppData\Local\recently-used.xbel
2014-12-11 21:17 - 2017-10-15 08:53 - 000007610 _____ () C:\Users\patockam\AppData\Local\Resmon.ResmonCfg
2014-12-30 20:47 - 2014-12-30 20:48 - 000030652 _____ () C:\Users\patockam\AppData\Local\WiDiSetupLog.20141230.194723.wdl
2014-11-05 11:41 - 2014-11-05 11:41 - 000000000 ____H () C:\ProgramData\DP45977C.lfl
2015-02-12 15:00 - 2015-02-12 15:00 - 000000334 _____ () C:\ProgramData\{EA7CC8F9-CE2D-41C3-8F30-01F932E7EE64}_WiseFW.ini

Files to move or delete:
====================
C:\Users\patockam\sql.bat


Some files in TEMP:
====================
2016-10-19 17:11 - 2016-10-19 17:11 - 002458672 _____ (The OpenSSL Project, http://www.openssl.org/) C:\Users\patockam\AppData\Local\Temp\libeay32.dll
2016-10-19 17:11 - 2016-10-19 17:11 - 000970912 _____ (Microsoft Corporation) C:\Users\patockam\AppData\Local\Temp\msvcr120.dll
2016-10-19 17:11 - 2016-10-19 17:11 - 000772672 _____ () C:\Users\patockam\AppData\Local\Temp\sqlite3.dll

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\SysWOW64\wininit.exe => File is digitally signed
C:\windows\explorer.exe => File is digitally signed
C:\windows\SysWOW64\explorer.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\SysWOW64\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\SysWOW64\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\SysWOW64\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\dnsapi.dll => File is digitally signed
C:\windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-10-10 12:13

==================== End of FRST.txt ============================



===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: (TI31406700A) (Fixed) (Total:217.45 GB) (Free:62.05 GB) NTFS ==>[system with boot components (obtained from drive)]

Available physical RAM: 4568.62 MB
Total physical RAM: 8101.34 MB
Percentage of memory in use: 43%

==================== MBR and Partition Table ==================

Disk: 0 (MBR Code: Windows 7 or Vista) (Size: 238.5 GB) (Disk ID: 4291727D)
Partition 1: (Active) - (Size=1.5 GB) - (Type=27)
Partition 2: (Not Active) - (Size=217.5 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=8 GB) - (Type=84)
Partition 4: (Not Active) - (Size=11.6 GB) - (Type=17)

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

==================== Alternate Data Streams (whitelisted) ==================

AlternateDataStreams: C:\ProgramData\Reprise:wupeogjxldtlfudivq`qsp`27hfm [0]
AlternateDataStreams: C:\ProgramData\TEMP:4FC01C57 [136]

==================== Security Center ==================

AV: ESET NOD32 Antivirus 8.0 (Enabled - Up to date) {19259FAE-8396-A113-46DB-15B0E7DFA289}
AV: Malwarebytes (Enabled - Up to date) {23007AD3-69FE-687C-2629-D584AFFAF72B}
AS: Spybot - Search and Destroy (Enabled - Up to date) {A16C3F68-9280-E053-1818-342707FECF4D}
AS: Malwarebytes (Enabled - Up to date) {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: ESET NOD32 Antivirus 8.0 (Enabled - Up to date) {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\patockam\Desktop" je 42 MB.


***** Startup Programs *****

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\FileZilla Server Interface
"C:\Program Files (x86)\FileZilla Server\FileZilla Server Interface.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Vacon Live
"C:\Program Files (x86)\Vacon\Live\DCT.exe" silent [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Vacon Loader
"C:\Program Files (x86)\Vacon\Loader\SUT.exe" silent [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^AlfaSelectUpdate.lnk
C:\PROGRA~2\ALFALA~1\ALFASE~1\Update.exe

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Run VeNCrypt Listening Viewer.lnk
C:\PROGRA~2\VENCRY~1.6\VENCVI~1.EXE -listen [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^patockam^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^SX Virtual Link.lnk
C:\PROGRA~1\SILEXT~1\SXVIRT~1\Connect.exe


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
DisableUnicastResponsesToMulticastBroadcast REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]


[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\\Program Files (x86)\\Spybot - Search & Destroy 2\\SDTray.exe"="C:\\Program Files (x86)\\Spybot - Search & Destroy 2\\SDTray.exe:*:Enabled:Spybot - Search & Destroy tray access"
"C:\\Program Files (x86)\\Spybot - Search & Destroy 2\\SDFSSvc.exe"="C:\\Program Files (x86)\\Spybot - Search & Destroy 2\\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service"
"C:\\Program Files (x86)\\Spybot - Search & Destroy 2\\SDUpdate.exe"="C:\\Program Files (x86)\\Spybot - Search & Destroy 2\\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater"
"C:\\Program Files (x86)\\Spybot - Search & Destroy 2\\SDUpdSvc.exe"="C:\\Program Files (x86)\\Spybot - Search & Destroy 2\\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000


==================== End Of Log ==============================

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Podivné chování chrome

#2 Příspěvek od Rudy »

Zdravím!
Spusťte postupně tytp utility:

1. Stahnete Zoek.exe http://download.bleepingcomputer.com/smeenk/zoek.exe a ulozte jej na plochu

Pokud pouzivate Win Vista ci W7, kliknete na Zoek pravym a dejte Run As Administrator ci Spustit jako spravce
Do okna vlozte skript nize




autoclean;
resethosts;
emptyclsid;
IEdefaults;
FFdefaults;
CHRdefaults;
emptyIEcache;
emptyFFcache;
emptyCHRcache;
emptyalltemp;
emptyflash;
emptyjava;
emptyrecycle.bin;





Nasledne kliknete na Run Script
PC provede opravu, restartuje se a da Vam log, jeho obsah vlozte sem.

a

2. Junkware removal tool: http://thisisudax.org/downloads/JRT.exe
•Ulozte nejlepe na plochu
•Po spusteni se zobrazi licencni podminky, stisknete libovolnou klavesu
•Probehne vytvoreni zalohy a nasledne prohledavani
•Probehne skenovani a pak se objevi log, pripadne bude ulozen v c:\JRT jako JRT.txt, ten sem vlozte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Laras
Návštěvník
Návštěvník
Příspěvky: 3
Registrován: 24 říj 2006 16:24

Re: Podivné chování chrome

#3 Příspěvek od Laras »

Zoek.exe v5.0.0.1 Updated 27-09-2015
Tool run by patockam on ne 15.10.2017 at 10:59:28,50.
Microsoft Windows 7 Professional 6.1.7601 Service Pack 1 x64
Running in: Normal Mode No Internet Access Detected
Launched: C:\Users\patockam\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

15.10.2017 11:00:06 Zoek.exe System Restore Point Created Successfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handled within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Empty Folders Check ======================

C:\PROGRA~2\Malwarebytes Anti-Malware deleted successfully
C:\PROGRA~2\Network Stumbler deleted successfully
C:\PROGRA~2\OpenVPN Technologies deleted successfully
C:\PROGRA~2\Spotmau deleted successfully
C:\PROGRA~3\RealVNC-Service deleted successfully
C:\PROGRA~3\TuneUp360 deleted successfully
C:\Users\patockam\AppData\Roaming\MPC-HC deleted successfully
C:\Users\patockam\AppData\Roaming\TightVNC deleted successfully
C:\Users\patockam\AppData\Local\Advanced Port Scanner 2 deleted successfully
C:\Users\patockam\AppData\Local\CrashDumps deleted successfully
C:\Users\patockam\AppData\Local\EmieSiteList deleted successfully
C:\Users\patockam\AppData\Local\EmieUserList deleted successfully
C:\Users\patockam\AppData\Local\PDFCreator deleted successfully
C:\Users\patockam\AppData\Local\Skype deleted successfully

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\{302BCF7B-E09E-4854-9F2F-

8B2DA4EF70F9} deleted successfully
HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions

\pdf_architect_2_conv@pdfarchitect.org deleted successfully

==== Deleting Services ======================


==== FireFox Fix ======================

Deleted from C:\Users\patockam\AppData\Roaming\Mozilla\Firefox\Profiles\gj70f5eu.default

\prefs.js:

Added to C:\Users\patockam\AppData\Roaming\Mozilla\Firefox\Profiles\gj70f5eu.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

Deleted from C:\Users\patockam\AppData\Roaming\Thunderbird\Profiles\zzasmonj.default\prefs.js:

Added to C:\Users\patockam\AppData\Roaming\Thunderbird\Profiles\zzasmonj.default\prefs.js:
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Deleting Files \ Folders ======================

C:\PROGRA~2\Network Stumbler not found
C:\PROGRA~2\OpenVPN Technologies not found
C:\PROGRA~2\Spotmau not found
C:\PROGRA~2\Wondershare deleted
C:\PROGRA~2\COMMON~1\Wondershare deleted
C:\install.exe deleted
C:\Users\patockam\AppData\Roaming\Wondershare deleted
C:\Users\patockam\AppData\Roaming\Thinstall deleted
C:\Users\patockam\AppData\Roaming\pdfforge deleted
C:\Users\patockam\sql.bat deleted
C:\PROGRA~3\Package Cache deleted
C:\Users\patockam\AppData\Local\Wondershare deleted
C:\Users\patockam\AppData\Local\TempDIR deleted
C:\Users\patockam\AppData\Local\cache deleted
C:\Users\patockam\AppData\Local\CrashRpt deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mitsubishi Alpha Controller deleted
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Wondershare deleted
C:\windows\SysNative\GroupPolicy\Machine deleted
C:\windows\SysNative\GroupPolicy\User deleted
C:\windows\SysNative\GroupPolicy\GPT.INI deleted
C:\windows\Syswow64\GroupPolicy\gpt.ini deleted
"C:\windows\Installer\1956bbea.msi" deleted

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\patockam\AppData\Roaming\Mozilla\Firefox\Profiles\gj70f5eu.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

ProfilePath: C:\Users\patockam\AppData\Roaming\Thunderbird\Profiles\zzasmonj.default
user_pref("browser.startup.homepage", "about:home");
user_pref("browser.newtab.url", "about:newtab");

==== Firefox Extensions ======================

ProfilePath: C:\Users\patockam\AppData\Roaming\Mozilla\Firefox\Profiles\gj70f5eu.default
- QuickJava - %ProfilePath%\extensions\{E6C1199F-E687-42da-8C24-E7770CC3AE66}.xpi

ProfilePath: C:\Users\patockam\AppData\Roaming\Thunderbird\Profiles\zzasmonj.default
- esk slovnk pro kontrolu pravopisu - %ProfilePath%\extensions\cs@dictionaries.addons.mozilla.org
- Lightning - %ProfilePath%\extensions\{e2fda1a4-762b-4020-b5ad-a41df1933103}

AppDir: C:\Program Files\Mozilla Firefox
- Undetermined - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi

AppDir: C:\Program Files (x86)\Mozilla Firefox
- Undetermined - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi

==== Firefox Plugins ======================

Profilepath: C:\Users\patockam\AppData\Roaming\Mozilla\Firefox\Profiles\gj70f5eu.default
2C6C5C551AF6ED376960A12CEB5DE3D3 - C:\Program Files\Java\jre1.8.0_121\bin

\plugin2\npjp2.dll - Java(TM) Platform SE 8 U121
3391BC7B2BDAF9B07564BB4AEF0BC098 - C:\Program Files\Java\jre1.8.0_121\bin\dtplugin

\npdeployJava1.dll - Java Deployment Toolkit 8.0.1210.13


==== Chromium Look ======================

Google Chrome Version: 46.0.2490.86

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
iniieblifogecdlkejbmonblijmdaiog - C:\Program Files\TOSHIBA\Fingerprint Utility\BrowserAddin

\ChromeAddin\ChromeAddin.crx[26.08.2013 23:16]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions
bmkckgpgekmanipelfidlhmkfcjicion - No path found[]

Bing Search Engine - patockam\AppData\Local\Google\Chrome\User Data\Default\Extensions

\bmkckgpgekmanipelfidlhmkfcjicion
UBNT Discovery - patockam\AppData\Local\Google\Chrome\User Data\Default\Extensions

\hmpigflbjeapnknladcfphgkemopofig
Chrome Media Router - patockam\AppData\Local\Google\Chrome\User Data\Default\Extensions

\pkedcjkdefgpdelpbcmbmeomcjbeemfm

==== Chromium Fix ======================

C:\Users\patockam\AppData\Local\Google\Chrome\User Data\Default\Extensions

\bmkckgpgekmanipelfidlhmkfcjicion deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://dispecink.tcmach.cz/web/index.htm"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{FBBCFF86-E407-4AD1-9828-D49ABF0A75C0}"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://dispecink.tcmach.cz/web/index.htm"
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"="{012E1000-F331-11DB-8314-0800200C9A66}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}

&src=IE-SearchBox&FORM=IE8SRC"
{FBBCFF86-E407-4AD1-9828-D49ABF0A75C0} Unknown Url="Not_Found"

==== Reset Google Chrome ======================

C:\Users\patockam\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset

successfully
C:\Users\patockam\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset

successfully
C:\Users\patockam\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\patockam\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset

successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-1093123727-3524560010-1697392749-1000\Software\Microsoft\Internet Explorer

\SearchScopes\{FBBCFF86-E407-4AD1-9828-D49ABF0A75C0} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{FBBCFF86-E407-

4AD1-9828-D49ABF0A75C0} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{FBBCFF86-E407-4AD1-9828-

D49ABF0A75C0} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-

18\Products\FEE98B82400000001520FCF3A3907BD7 deleted successfully
HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\bmkckgpgekmanipelfidlhmkfcjicion deleted

successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{28B89EEF-0004-0000-5102-

CF3F3A09B77D} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\FEE98B82400000001520FCF3A3907BD7 deleted

successfully

==== Empty IE Cache ======================

C:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet

Files\Content.IE5 emptied successfully
C:\Users\patockam\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied

successfully
C:\Users\patockam\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5

emptied successfully
C:\windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet

Files\Content.IE5 emptied successfully
C:\windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet

Files\Content.IE5 emptied successfully
C:\windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet

Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

C:\Users\patockam\AppData\Local\Mozilla\Firefox\Profiles\gj70f5eu.default\cache2 emptied

successfully

==== Empty Chrome Cache ======================

C:\Users\patockam\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=583 folders=137 733822864 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\patockam\AppData\Local\Temp will be emptied at reboot
C:\windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\windows\Temp successfully emptied
C:\Users\patockam\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on ne 15.10.2017 at 11:26:14,02 ======================


~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.4 (07.09.2017)
Operating System: Windows 7 Professional x64
Ran by patockam (Administrator) on ne 15.10.2017 at 11:27:46,42
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 9

Successfully deleted: C:\Users\patockam\AppData\Roaming\wyupdate au (Folder)
Successfully deleted: C:\Users\patockam\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6TPWZ7GS (Temporary Internet Files Folder)
Successfully deleted: C:\Users\patockam\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FP0I9O4G (Temporary Internet Files Folder)
Successfully deleted: C:\Users\patockam\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PBBMMK89 (Temporary Internet Files Folder)
Successfully deleted: C:\Users\patockam\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YMX3MG4H (Temporary Internet Files Folder)
Successfully deleted: C:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6TPWZ7GS (Temporary Internet Files Folder)
Successfully deleted: C:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\FP0I9O4G (Temporary Internet Files Folder)
Successfully deleted: C:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\PBBMMK89 (Temporary Internet Files Folder)
Successfully deleted: C:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\YMX3MG4H (Temporary Internet Files Folder)



Registry: 2

Successfully deleted: HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} (Registry Key)
Successfully deleted: HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} (Registry Key)




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on ne 15.10.2017 at 11:31:27,58
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Podivné chování chrome

#4 Příspěvek od Rudy »

OK. Změnilo se něco?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Laras
Návštěvník
Návštěvník
Příspěvky: 3
Registrován: 24 říj 2006 16:24

Re: Podivné chování chrome

#5 Příspěvek od Laras »

Zdá se, že je to ok. Děkuji moc. V čem byl problém?

Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 118199
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:

Re: Podivné chování chrome

#6 Příspěvek od Rudy »

Chybné nastaverní profilu prohlížeče. Těmi skeny jsme ho vrátili do defaultu (a nejen v chrome, ale ve všech prohlížečích).
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování:
Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.

Odpovědět