Dobrý den,
prosím o kontrolu logu, v poslední době se občas stává, že se pc zasekne a nezbývá mi nic jiného než ho znovu rozběhat přes tlačítko "reset".
Logfile of random's system information tool 1.10 (written by random/random)
Run by admin at 2020-12-13 13:43:54
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 146 GB (77%) free of 191 GB
Total RAM: 895 MB (53% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:44:16, on 13.12.2020
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Alwil Software\Avast5\afwServ.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\Program Files\AVAST Software\Avast Cleanup\TuneupSvc.exe
C:\Program Files\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe
C:\WINDOWS\system32\KaraokeSer.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\Google\Update\1.3.36.52\GoogleCrashHandler.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\UMonit.exe
C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\Program Files\AVAST Software\Avast Cleanup\TuneupUI.exe
C:\WINDOWS\system32\RunDll32.exe
C:\WINDOWS\system32\RunDll32.exe
C:\Documents and Settings\admin\Plocha\RSIT.exe
C:\Program Files\trend micro\admin.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.google.com/?trackid=sp-006
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\Alwil Software\Avast5\AvLaunch.exe" /gui
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe 1
O4 - HKLM\..\Run: [UMonit] C:\WINDOWS\system32\UMonit.exe
O4 - HKLM\..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nview\nwiz.exe /installquiet
O4 - HKLM\..\Run: [ISUSPM] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [CCleaner Smart Cleaning] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - HKUS\S-1-5-21-1960408961-261478967-682003330-1192\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'UpdatusUser')
O4 - Startup: Sledování výstrah kazety - .lnk = ?
O4 - Startup: Sledování výstrah kazety - HP DeskJet 3700 series.lnk = ?
O4 - Global Startup: Avast Cleanup Premium.lnk = C:\Program Files\AVAST Software\Avast Cleanup\TuneupUI.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\KEM.exe
O4 - Global Startup: LUMIX Simple Viewer.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Windows Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
O8 - Extra context menu item: Easy-WebPrint Add To Print List - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint High Speed Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_HSPrint.html
O8 - Extra context menu item: Easy-WebPrint Preview - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Preview.html
O8 - Extra context menu item: Easy-WebPrint Print - res://C:\Program Files\Canon\Easy-WebPrint\Resource.dll/RC_Print.html
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 2134774234
O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: aswbIDSAgent - AVAST Software - C:\Program Files\Alwil Software\Avast5\aswidsagent.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Avast Firewall Service (avast! Firewall) - AVAST Software - C:\Program Files\Alwil Software\Avast5\afwServ.exe
O23 - Service: Avast Cleanup Premium (CleanupPSvc) - AVAST Software - C:\Program Files\AVAST Software\Avast Cleanup\TuneupSvc.exe
O23 - Service: Foxit Reader Service (FoxitReaderService) - Foxit Software Inc. - C:\Program Files\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: VIA Karaoke digital mixer Service (KaraokeService) - VIA Technologies, Inc. - C:\WINDOWS\system32\KaraokeSer.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
--
End of file - 9193 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player NPAPI Notifier.job - C:\WINDOWS\system32\Macromed\Flash\FlashUtil32_32_0_0_465_Plugin.exe -check plugin
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\WINDOWS\tasks\AppleSoftwareUpdate.job - C:\Program Files\Apple Software Update\SoftwareUpdate.exe -task
C:\WINDOWS\tasks\Avast Emergency Update.job - C:\Program Files\Alwil Software\Avast5\AvEmUpdate.exe
C:\WINDOWS\tasks\Avast TUNEUP Update.job - C:\Program Files\AVAST Software\Avast Cleanup\TUNEUpdate.exe
C:\WINDOWS\tasks\CCleaner Update.job - C:\CCUpdate.exe
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\tasks\SUPERAntiSpyware Scheduled Task a8f24154-fd98-494d-89b1-989013281250.job - C:\Program Files\SUPERAntiSpyware\SASTask.exe "C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" /TASK:a8f24154-fd98-494d-89b1-989013281250
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\8faakgqr.default-1483643606250
"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 32.0.0.465 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_32_0_0_465.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf]
"Description"=
"Path"=C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp]
"Description"=
"Path"=C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf]
"Description"=
"Path"=C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
C:\Program Files\Mozilla Firefox\components\
nsIQTScriptablePlugin.xpt
C:\Program Files\Mozilla Firefox\plugins\
np-mswmp.dll
npfd.dll
nppdf32.dll
npqtplugin.dll
npqtplugin2.dll
npqtplugin3.dll
npqtplugin4.dll
npqtplugin5.dll
npqtplugin6.dll
npqtplugin7.dll
QuickTimePlugin.class
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt
======Registry dump======
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AppleSyncNotifier"=C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe [2011-11-02 59240]
"APSDaemon"=C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [2015-03-20 60712]
"AvastUI.exe"=C:\Program Files\Alwil Software\Avast5\AvLaunch.exe [2018-12-08 242392]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2014-10-02 421888]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2015-09-12 157456]
"seznam-listicka-distribuce"=C:\Program Files\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2014-12-19 1022152]
"HDAudDeck"=C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe [2000-01-01 41134712]
"UMonit"=C:\WINDOWS\system32\UMonit.exe [2000-01-01 200704]
"nwiz"=C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2000-01-01 1982312]
"ISUSPM"=C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [2006-03-20 213936]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2020-10-30 10076592]
"CCleaner Smart Cleaning"=C:\Program Files\CCleaner\CCleaner.exe [2020-02-28 17085056]
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Avast Cleanup Premium.lnk - C:\Program Files\AVAST Software\Avast Cleanup\TuneupUI.exe
Logitech SetPoint.lnk - C:\Program Files\Logitech\SetPoint\KEM.exe
LUMIX Simple Viewer.lnk - C:\Program Files\Panasonic\LUMIXSimpleViewer\PhLeAutoRun.exe
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office\OSA9.EXE
Windows Search.lnk - C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Documents and Settings\admin\Nabídka Start\Programy\Po spuštění
Sledování výstrah kazety - .lnk - C:\WINDOWS\system32\RunDll32.exe
Sledování výstrah kazety - HP DeskJet 3700 series.lnk - C:\WINDOWS\system32\RunDll32.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-24 304128]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2013-05-07 115440]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe"="C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger"
"C:\Documents and Settings\admin\Plocha\Hry\Widelands\widelands.exe"="C:\Documents and Settings\admin\Plocha\Hry\Widelands\widelands.exe:*:Enabled:widelands"
"C:\Documents and Settings\admin\Plocha\Hry\Freeciv-2.0.8-gtk2\civserver.exe"="C:\Documents and Settings\admin\Plocha\Hry\Freeciv-2.0.8-gtk2\civserver.exe:*:Enabled:civserver"
"C:\Program Files\Java\jre1.6.0_07\bin\javaw.exe"="C:\Program Files\Java\jre1.6.0_07\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Java\jre6\bin\javaw.exe"="C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Google\Google Earth\plugin\geplugin.exe"="C:\Program Files\Google\Google Earth\plugin\geplugin.exe:*:Enabled:Google Earth"
"C:\Documents and Settings\admin\Plocha\Hry\Ping-Pong\MainP.dat"="C:\Documents and Settings\admin\Plocha\Hry\Ping-Pong\MainP.dat:*:Disabled:fullrus"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"C:\Program Files\Google\Chrome\Application\chrome.exe"="C:\Program Files\Google\Chrome\Application\chrome.exe:*:Enabled:Google Chrome"
"C:\Program Files\HP\HP DeskJet 3700 series\Bin\DeviceSetup.exe"="C:\Program Files\HP\HP DeskJet 3700 series\Bin\DeviceSetup.exe:LocalSubNet:Enabled:Instalace zařízení HP (HP DeskJet 3700 series)"
"C:\Program Files\HP\HP DeskJet 3700 series\Bin\HPNetworkCommunicatorCom.exe"="C:\Program Files\HP\HP DeskJet 3700 series\Bin\HPNetworkCommunicatorCom.exe:LocalSubNet:Enabled:Síťový komunikační program HP COM (HP DeskJet 3700 series)"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox (C:\Program Files\Mozilla Firefox)"
"C:\Program Files\Alwil Software\Avast5\AvEmUpdate.exe"="C:\Program Files\Alwil Software\Avast5\AvEmUpdate.exe:*:Enabled:Avast Emergency Update"
"C:\Program Files\CCleaner\CCUpdate.exe"="C:\Program Files\CCleaner\CCUpdate.exe:*:Enabled:CCleaner Update"
"C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"="C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe:*:Enabled:Daemonu.exe"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe"="C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe:*:Enabled:Logitech Desktop Messenger"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\itunes.exe]
"Debugger=""C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\softwareupdate.exe]
"Debugger=""C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
======List of files/folders created in the last 1 month======
2020-11-29 15:23:56 ----A---- C:\WINDOWS\system32\FNTCACHE.DAT
======List of files/folders modified in the last 1 month======
2020-12-13 13:44:01 ----D---- C:\Program Files\trend micro
2020-12-13 13:06:51 ----A---- C:\WINDOWS\SchedLgU.Txt
2020-12-13 12:53:55 ----A---- C:\lsdb2.json
2020-12-13 12:53:27 ----D---- C:\WINDOWS\system32\CatRoot2
2020-12-13 12:51:26 ----D---- C:\WINDOWS\temp
2020-12-13 12:51:26 ----A---- C:\WINDOWS\AvEmUpdate.ini
2020-12-13 12:51:15 ----A---- C:\lsdb2.json.old
2020-12-13 12:51:03 ----D---- C:\Backups
2020-12-13 12:51:03 ----A---- C:\swh_stats.json
2020-12-13 12:51:01 ----D---- C:\WINDOWS\system32\Macromed
2020-12-12 20:26:05 ----D---- C:\WINDOWS\Prefetch
2020-12-12 17:53:31 ----D---- C:\dwjobs
2020-12-10 21:33:46 ----D---- C:\WINDOWS
2020-12-08 16:46:00 ----D---- C:\WINDOWS\system32
2020-12-08 16:45:47 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2020-12-04 19:06:11 ----SHD---- C:\WINDOWS\Installer
2020-12-04 19:01:58 ----SD---- C:\WINDOWS\Tasks
2020-11-29 15:23:59 ----D---- C:\WINDOWS\Debug
2020-11-17 17:31:21 ----D---- C:\log
2020-11-14 23:10:36 ----D---- C:\WINDOWS\Minidump
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidshx.sys [2018-12-08 165384]
R0 aswblog;aswblog; C:\WINDOWS\system32\drivers\aswblogx.sys [2018-12-08 284256]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbunivx.sys [2018-12-08 57904]
R0 aswNdis;avast! Firewall NDIS Filter Service; C:\WINDOWS\system32\DRIVERS\aswNdis.sys [2017-04-20 12112]
R0 aswNdis2;aswNdis2; C:\WINDOWS\system32\drivers\aswNdis2.sys [2018-12-08 332280]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2018-12-08 72800]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2018-12-08 310200]
R0 nvata;nvata; C:\WINDOWS\system32\DRIVERS\nvata.sys [2006-08-21 105344]
R0 nvgts;nvgts; C:\WINDOWS\system32\DRIVERS\nvgts.sys [2000-01-01 168040]
R1 AmdK8;AMD Processor Driver; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2005-03-09 36352]
R1 aswArPot;aswArPot; C:\WINDOWS\system32\drivers\aswArPot.sys [2018-12-08 167480]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdriverx.sys [2018-12-08 188976]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2018-12-08 40688]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2018-12-08 70640]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2019-05-23 784552]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2019-05-23 397984]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS []
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS []
R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2010-03-25 28520]
R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2004-08-18 12032]
R2 acedrv11;acedrv11; \??\C:\WINDOWS\system32\drivers\acedrv11.sys []
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2019-01-18 135200]
R2 irda;Protokol IrDA; C:\WINDOWS\system32\DRIVERS\irda.sys [2008-04-13 88192]
R3 Afc;PPdus ASPI Shell; C:\WINDOWS\system32\drivers\Afc.sys [2005-02-23 11776]
R3 FIXUSTOR;FIXUSTOR; C:\WINDOWS\system32\DRIVERS\fixustor.sys [2000-01-01 12416]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 26840]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 L8042Kbd;Logitech SetPoint Keyboard Driver; C:\WINDOWS\system32\DRIVERS\L8042Kbd.sys [2004-06-08 13105]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2000-01-01 12648960]
R3 NVENETFD;NVIDIA nForce 10/100 Mbps Ethernet ; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2000-01-01 70912]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2000-01-01 13824]
R3 pfc;Padus ASPI Shell; C:\WINDOWS\system32\drivers\pfc.sys [2003-09-20 21248]
R3 Rasirda;WAN Miniport (IrDA); C:\WINDOWS\system32\DRIVERS\rasirda.sys [2001-08-17 19584]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\WINDOWS\system32\drivers\viahduaa.sys [2000-01-01 2558200]
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
S3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2006-05-10 3964736]
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2000-01-01 1656960]
S3 aswHwid;aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [2018-12-08 42736]
S3 aswStmXP;aswStmXP; C:\WINDOWS\system32\drivers\aswStmXP.sys [2018-12-08 146584]
S3 aswTap;avast! SecureLine TAP Adapter v3; C:\WINDOWS\system32\DRIVERS\aswTap.sys [2014-07-11 35144]
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2010-01-21 6039584]
S3 irsir;Microsoft Serial Infrared Driver; C:\WINDOWS\system32\DRIVERS\irsir.sys [2001-08-17 18688]
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2000-01-01 1389056]
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
S3 taphss;Anchorfree HSS Adapter; C:\WINDOWS\system32\DRIVERS\taphss.sys [2012-03-26 32768]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2013-08-09 32384]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2009-07-14 444136]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [2017-01-31 143776]
R2 avast! Firewall;Avast Firewall Service; C:\Program Files\Alwil Software\Avast5\afwServ.exe [2018-12-08 338632]
R2 CleanupPSvc;Avast Cleanup Premium; C:\Program Files\AVAST Software\Avast Cleanup\TuneupSvc.exe [2019-07-25 10287216]
R2 FoxitReaderService;Foxit Reader Service; C:\Program Files\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe [2018-04-17 1659456]
R2 Irmon;Sledování infračerveného přenosu; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R2 KaraokeService;VIA Karaoke digital mixer Service; C:\WINDOWS\system32\KaraokeSer.exe [2000-01-01 88696]
R2 NVSvc;NVIDIA Driver Helper Service; C:\WINDOWS\system32\nvsvc32.exe [2013-01-31 156448]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2000-01-01 1259296]
R2 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2008-05-26 439808]
S2 avast! Antivirus;Avast Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2018-12-08 324000]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2020-12-08 335416]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\Alwil Software\Avast5\aswidsagent.exe [2018-12-08 6799632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-08-31 144200]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 WinRM;Windows Remote Management (WS-Management); C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-07-20 754856]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2015-01-19 60744]
S4 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 390504]
S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S4 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2015-09-12 540944]
S4 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2005-12-18 73728]
S4 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2018-02-26 175056]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
pc se někdy zasekne
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: pc se někdy zasekne
Dobry den.
Stiahnite si na plochu nastroj AdwCleaner, link. na stiahnutie tu: https://toolslib.net/downloads/finish/1/
Pred spustenim nastroja povypinajte vsetke beziace okna programov, to su vsetke beziace programy pod desktopom.
Kliknite pravym tlacidlom mysi na program -> spustit ako Administrator.
Pokracujte kliknutim na tlacidlo Prehladaj teraz (Scan now) a pockajte, kym sa system doskenuje.
Po skene nechajte oznacene vsetky chlieviky, pripadne najdene hrozieby a pokracujte v dolnom pravom rohu tlacidlom Vycistit Teraz (Clean and Repair).
Po restartovani PC sa spusti nastroj AdwCleaner, kliknite na Zobrazit soubor protokolu.
Spusti sa log, jeho obsah skopirujte sem.
Stiahnite si na plochu nastroj AdwCleaner, link. na stiahnutie tu: https://toolslib.net/downloads/finish/1/Pred spustenim nastroja povypinajte vsetke beziace okna programov, to su vsetke beziace programy pod desktopom.
Kliknite pravym tlacidlom mysi na program -> spustit ako Administrator.
Pokracujte kliknutim na tlacidlo Prehladaj teraz (Scan now) a pockajte, kym sa system doskenuje.
Po skene nechajte oznacene vsetky chlieviky, pripadne najdene hrozieby a pokracujte v dolnom pravom rohu tlacidlom Vycistit Teraz (Clean and Repair).
Po restartovani PC sa spusti nastroj AdwCleaner, kliknite na Zobrazit soubor protokolu.
Spusti sa log, jeho obsah skopirujte sem.
► Vyšla moja nová kniha BOTNETY! 
Informácie o nej nájdete tu: >> BOTNETY <<
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT <<
----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Informácie o nej nájdete tu: >> BOTNETY << ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << ----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
-
TomášzePlzně
- Návštěvník
- Příspěvky: 110
- Registrován: 06 srp 2012 19:15
Re: pc se někdy zasekne
Bohužel to nelze spustit, píše mi to, že to není platná aplikace typu win32.
Re: pc se někdy zasekne
Hej, vy mate xp. som si nevsimol
► Vyšla moja nová kniha BOTNETY! Informácie o nej nájdete tu: >> BOTNETY <<
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT <<
----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Informácie o nej nájdete tu: >> BOTNETY << ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << ----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
-
TomášzePlzně
- Návštěvník
- Příspěvky: 110
- Registrován: 06 srp 2012 19:15
Re: pc se někdy zasekne
A dá se někde stáhnout starší s XP kompatibilní verze adwcleaneru? Plánuji sice v dohledné době koupit nové pc, ale tohle staré bych ještě rád dal zpátky do pořádku.
-
cernohous13
- VIP in memoriam
- Příspěvky: 8721
- Registrován: 09 pro 2006 06:19
- Bydliště: Jablonec nad Nisou
- Kontaktovat uživatele:
Re: pc se někdy zasekne
Zdravím, zkus to zde:
https://toolslib.net/downloads/finish/1 ... DtyhOcjFK/
https://toolslib.net/downloads/finish/1 ... DtyhOcjFK/
Doporučení:
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
-
TomášzePlzně
- Návštěvník
- Příspěvky: 110
- Registrován: 06 srp 2012 19:15
Re: pc se někdy zasekne
Také zdravím,
tak jsem tu starou verzi stáhnul, provedl kontrolu a vyčištění a po restartu pc na mě vyskočil textový soubor "AdwCleaner(C0)" je to ten zmiňovaný log?
# AdwCleaner v6.046 - Log vytvořen 15/12/2020 v 08:05:42
# Aktualizováno dne 24/04/2017 z Malwarebytes
# Databáze : 2017-04-24.1 [Místní]
# Operační systém : Microsoft Windows XP Service Pack 3 (X86)
# Uživatelské jméno : admin - AMD3000
# Spuštěno z : C:\Documents and Settings\admin\Plocha\adwcleaner_6.046.exe
# Mod: Čištění
# Podpora : https://www.malwarebytes.com/support
***** [ Služby ] *****
***** [ Složky ] *****
[-] Složka smazána: C:\Documents and Settings\All Users\Dokumenty\Downloaded Installers
***** [ Soubory ] *****
[-] Soubor smazán: C:\WINDOWS\unins000.dat
[-] Soubor smazán: C:\WINDOWS\unins000.exe
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Zástupci ] *****
***** [ Naplánované úlohy ] *****
***** [ Registry ] *****
[-] Klíč smazán: HKLM\SOFTWARE\Classes\BackWeb.Client.ScriptHelper-8876480
[-] Klíč smazán: HKLM\SOFTWARE\Classes\BJPTab.BJPlusTab_ProcessPanel
[-] Klíč smazán: HKLM\SOFTWARE\Classes\BJPTab.BJPlusTab_ToolMenu
***** [ Prohlížeče ] *****
*************************
:: "Tracing" klíče smazány
:: Winsock nastavení vyčištěno
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [1230 Bajty] - [15/12/2020 08:05:42]
C:\AdwCleaner\AdwCleaner[S0].txt - [1629 Bajty] - [15/12/2020 08:04:20]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [1376 Bajty] ##########
tak jsem tu starou verzi stáhnul, provedl kontrolu a vyčištění a po restartu pc na mě vyskočil textový soubor "AdwCleaner(C0)" je to ten zmiňovaný log?
# AdwCleaner v6.046 - Log vytvořen 15/12/2020 v 08:05:42
# Aktualizováno dne 24/04/2017 z Malwarebytes
# Databáze : 2017-04-24.1 [Místní]
# Operační systém : Microsoft Windows XP Service Pack 3 (X86)
# Uživatelské jméno : admin - AMD3000
# Spuštěno z : C:\Documents and Settings\admin\Plocha\adwcleaner_6.046.exe
# Mod: Čištění
# Podpora : https://www.malwarebytes.com/support
***** [ Služby ] *****
***** [ Složky ] *****
[-] Složka smazána: C:\Documents and Settings\All Users\Dokumenty\Downloaded Installers
***** [ Soubory ] *****
[-] Soubor smazán: C:\WINDOWS\unins000.dat
[-] Soubor smazán: C:\WINDOWS\unins000.exe
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Zástupci ] *****
***** [ Naplánované úlohy ] *****
***** [ Registry ] *****
[-] Klíč smazán: HKLM\SOFTWARE\Classes\BackWeb.Client.ScriptHelper-8876480
[-] Klíč smazán: HKLM\SOFTWARE\Classes\BJPTab.BJPlusTab_ProcessPanel
[-] Klíč smazán: HKLM\SOFTWARE\Classes\BJPTab.BJPlusTab_ToolMenu
***** [ Prohlížeče ] *****
*************************
:: "Tracing" klíče smazány
:: Winsock nastavení vyčištěno
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [1230 Bajty] - [15/12/2020 08:05:42]
C:\AdwCleaner\AdwCleaner[S0].txt - [1629 Bajty] - [15/12/2020 08:04:20]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [1376 Bajty] ##########
-
cernohous13
- VIP in memoriam
- Příspěvky: 8721
- Registrován: 09 pro 2006 06:19
- Bydliště: Jablonec nad Nisou
- Kontaktovat uživatele:
Re: pc se někdy zasekne
Výborně 
Nyní by se hodily oba logy z FRST https://forum.viry.cz/viewtopic.php?f=13&t=154679
a kolega bude pokračovat - já
Nyní by se hodily oba logy z FRST https://forum.viry.cz/viewtopic.php?f=13&t=154679
a kolega bude pokračovat - já
Doporučení:
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
-
TomášzePlzně
- Návštěvník
- Příspěvky: 110
- Registrován: 06 srp 2012 19:15
Re: pc se někdy zasekne
Takže tady je jeden
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 14-12-2020
Ran by admin (16-12-2020 16:13:00)
Running from C:\Documents and Settings\admin\Plocha
Microsoft Windows XP Home Edition Service Pack 3 (X86) (2006-08-15 18:52:46)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
admin (S-1-5-21-1960408961-261478967-682003330-1004 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\admin
Administrator (S-1-5-21-1960408961-261478967-682003330-500 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\Administrator
ASPNET (S-1-5-21-1960408961-261478967-682003330-1191 - Limited - Enabled)
Guest (S-1-5-21-1960408961-261478967-682003330-501 - Limited - Disabled)
HelpAssistant (S-1-5-21-1960408961-261478967-682003330-1000 - Limited - Disabled)
SUPPORT_388945a0 (S-1-5-21-1960408961-261478967-682003330-1002 - Limited - Disabled)
UpdatusUser (S-1-5-21-1960408961-261478967-682003330-1192 - Limited - Enabled) => %SystemDrive%\Documents and Settings\UpdatusUser
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {7591db91-41f0-48a3-b128-1a293fd8233d}
FW: Avast Antivirus (Disabled) {7591db91-41f0-48a3-b128-1a293fd8233d}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 18.05 (HKLM\...\{23170F69-40C1-2701-1805-000001000000}) (Version: 18.05.00.0 - Igor Pavlov)
7-Zip 9.22beta (HKLM\...\7-Zip) (Version: - )
Adobe Flash Player 32 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 32.0.0.465 - Adobe)
Adobe Reader XI (11.0.08) - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
Aktualizace systému Windows Internet Explorer 7 (KB976749) (HKLM\...\KB976749-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace systému Windows Internet Explorer 7 (KB980182) (HKLM\...\KB980182-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace systému Windows Internet Explorer 8 (KB2598845) (HKLM\...\KB2598845-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows Internet Explorer 8 (KB2632503) (HKLM\...\KB2632503-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení aplikace Windows Media Player (KB911564) (HKLM\...\KB911564) (Version: - Microsoft Corporation) Hidden
Aktualizace zabezpečení aplikace Windows Media Player 6.4 (KB925398) (HKLM\...\KB925398_WMP64) (Version: - Microsoft Corporation)
Aktualizace zabezpečení aplikace Windows Media Player 9 (KB936782) (HKLM\...\KB936782_WMP9) (Version: - Microsoft Corporation) Hidden
Aktualizace zabezpečení produktu Windows XP (KB923689) (HKLM\...\KB923689) (Version: - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2183461) (HKLM\...\KB2183461-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2360131) (HKLM\...\KB2360131-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2416400) (HKLM\...\KB2416400-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2482017) (HKLM\...\KB2482017-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2497640) (HKLM\...\KB2497640-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2530548) (HKLM\...\KB2530548-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2544521) (HKLM\...\KB2544521-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2559049) (HKLM\...\KB2559049-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2586448) (HKLM\...\KB2586448-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2618444) (HKLM\...\KB2618444-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2647516) (HKLM\...\KB2647516-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2675157) (HKLM\...\KB2675157-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2699988) (HKLM\...\KB2699988-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2722913) (HKLM\...\KB2722913-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2744842) (HKLM\...\KB2744842-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2761465) (HKLM\...\KB2761465-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2792100) (HKLM\...\KB2792100-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2797052) (HKLM\...\KB2797052-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2799329) (HKLM\...\KB2799329-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2809289) (HKLM\...\KB2809289-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2817183) (HKLM\...\KB2817183-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2829530) (HKLM\...\KB2829530-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2838727) (HKLM\...\KB2838727-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2846071) (HKLM\...\KB2846071-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2862772) (HKLM\...\KB2862772-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2870699) (HKLM\...\KB2870699-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2879017) (HKLM\...\KB2879017-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2888505) (HKLM\...\KB2888505-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2898785) (HKLM\...\KB2898785-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2909921) (HKLM\...\KB2909921-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2925418) (HKLM\...\KB2925418-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2936068) (HKLM\...\KB2936068-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2964358) (HKLM\...\KB2964358-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB938127) (HKLM\...\KB938127-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB939653) (HKLM\...\KB939653-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB942615) (HKLM\...\KB942615-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB944533) (HKLM\...\KB944533-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB950759) (HKLM\...\KB950759-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB953838) (HKLM\...\KB953838-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB956390) (HKLM\...\KB956390-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB958215) (HKLM\...\KB958215-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB960714) (HKLM\...\KB960714-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB961260) (HKLM\...\KB961260-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB963027) (HKLM\...\KB963027-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB969897) (HKLM\...\KB969897-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB972260) (HKLM\...\KB972260-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB974455) (HKLM\...\KB974455-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB976325) (HKLM\...\KB976325-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB978207) (HKLM\...\KB978207-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB982381) (HKLM\...\KB982381-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2510531) (HKLM\...\KB2510531-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2909921) (HKLM\...\KB2909921-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB923789) (HKLM\...\KB923789) (Version: - Microsoft Corporation)
Apple Mobile Device Support (HKLM\...\{E1DB0812-2D60-43DB-AE09-6C7027D93B28}) (Version: 8.1.1.3 - Apple Inc.)
Apple Software Update (HKLM\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
Autodesk Design Review 2010 (HKLM\...\{55D9E026-DCB0-46FF-B60A-68B972228CF6}) (Version: 10.0.0.108 - Autodesk, Inc.) Hidden
Autodesk Design Review 2010 (HKLM\...\Autodesk Design Review 2010) (Version: 10.0.0.108 - Autodesk, Inc.)
Avast Premier (HKLM\...\Avast Antivirus) (Version: 18.8.2356 - AVAST Software)
Balíček zprostředkovatele služby Microsoft Base Smart Card Cryptographic Service (HKLM\...\KB909520) (Version: - Microsoft Corporation)
Beetle Run for Windows (HKLM\...\Beetle Run for Windows) (Version: - )
Becher Train (HKLM\...\Becher Train_is1) (Version: - )
Bermen 1.1 (HKLM\...\Bermen_is1) (Version: - Island software)
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
BVE Uchibo Line (HKLM\...\{9BD8D527-A96C-46DB-B076-48D34189B372}) (Version: 2.0.1 - mackoy)
CCleaner (HKLM\...\CCleaner) (Version: 5.64 - Piriform)
CD-LabelPrint (HKLM\...\MediaNavigation.CDLabelPrint) (Version: - )
Celestia 1.6.1 (HKLM\...\Celestia_is1) (Version: - Shatters Software)
Czech Soccer Manager (HKU\S-1-5-21-1960408961-261478967-682003330-1004\...\Czech Soccer Manager) (Version: - )
Czech Soccer Manager 2002 FE (HKLM\...\Czech Soccer Manager 2002 FE) (Version: - )
Czech Soccer Manager 2002 Final Edition (HKLM\...\Czech Soccer Manager 2002 Final Edition) (Version: - )
Czech Soccer Manager 2002 Final Edition (HKLM\...\Czech Soccer Manager 2002 Final Editionverze 4.0 (31.3.2006)) (Version: verze 4.0 (31.3.2006) - Petr Vašíček)
DemonStar (HKLM\...\DemonStarDeinstKey) (Version: - )
Easy-WebPrint (HKLM\...\Easy-WebPrint) (Version: - )
ESET Online Scanner v3 (HKLM\...\ESET Online Scanner) (Version: - )
Flaps for Windows (HKLM\...\Flaps for Windows) (Version: - )
Football Challenge 2010 (PL) (HKU\S-1-5-21-1960408961-261478967-682003330-1004\...\fc10-PL_TVP_MAIN) (Version: - )
Free Mp3/Wma/Ogg Converter 4.0.1 (HKLM\...\Free Mp3/Wma/Ogg Converter_is1) (Version: - )
Free PDF to Word Doc Converter v1.1 (HKLM\...\Free PDF to Word Doc Converter_is1) (Version: 1.1 - www.hellopdf.com)
Freeciv 2.0.8 (GTK+ client) (HKLM\...\Freeciv-2.0.8-gtk2) (Version: - )
Frog Hop for Windows (HKLM\...\Frog Hop for Windows ) (Version: - )
Fussball Challenge 2008 (ORF) (HKU\S-1-5-21-1960408961-261478967-682003330-1004\...\fc08-AT_ORF_MAIN) (Version: - )
Garmin Communicator Plugin (HKLM\...\{647BB978-2876-487B-9B0E-FDB73F0EA4A2}) (Version: 4.0.4 - Garmin Ltd or its subsidiaries)
Genesys USB Mass Storage Device (HKLM\...\{959B7F35-2819-40C5-A0CD-3C53B5FCC935}) (Version: 2.5.0.0 - Genesys Logic)
Google Drive (HKLM\...\{AC117AF9-316B-4E1D-959E-F0EB85B0DC5F}) (Version: 2.34.7100.0000 - Google, Inc.)
Google Earth Plug-in (HKLM\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Chrome (HKLM\...\Google Chrome) (Version: 49.0.2623.112 - Google Inc.)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
HP DeskJet 3700 series Nápověda (HKLM\...\{295D0212-82EF-4A9B-9523-754A430DE721}) (Version: 40.0.0 - HP)
HP Dropbox Plugin (HKLM\...\{0078F518-B5B5-4857-8939-199E752A4190}) (Version: 36.0.41.58587 - HP)
HP Google Drive Plugin (HKLM\...\{F260117F-45E4-483E-B10F-C80224558C4D}) (Version: 36.0.41.58587 - HP)
HP Photo Creations (HKLM\...\HP Photo Creations) (Version: 1.0.0.9572 - HP)
iPhone Configuration Utility (HKLM\...\{FA54AFB1-5745-4389-B8C1-9F7509672ED1}) (Version: 2.1.0.163 - Apple Inc.)
iTunes (HKLM\...\{868B9974-4F23-494D-B6BC-4FAB92B2755D}) (Version: 12.1.3.6 - Apple Inc.)
Jízdní řád ČD 2019 (HKLM\...\{2FFA4F8E-8D11-4A0C-9C58-4BD03B51DDDA}_is1) (Version: - České dráhy a.s.)
Kat (HKLM\...\Kat) (Version: - )
Legie (HKLM\...\{FB86EDAA-B17D-447E-972B-5580A4C6AE3C}_is1) (Version: - Sudokop.com)
LightScribe 1.4.62.1 (HKLM\...\{ABB2901A-3D0A-4F21-8324-2F13C3EFE163}) (Version: 1.4.62.1 - hxxp://www.lightscribe.com) Hidden
Logitech Desktop Messenger (HKLM\...\{900B1197-53F5-4F46-A882-2CFFFE2EEDCB}) (Version: 2.52.18 - Logitech, Inc.)
Logitech SetPoint (HKLM\...\{2E8EAC71-BFE4-417A-88F0-5A1BDFBCF5D3}) (Version: 2.12 - )
LUMIX Simple Viewer (HKLM\...\{2CDCCE7E-55D5-40CC-AEA0-ABA54713501F}) (Version: 0.99.0000 - )
Microsoft .NET Framework 1.1 (HKLM\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )
Microsoft .NET Framework 1.1 Czech Language Pack (HKLM\...\{5E65E94D-69F2-4850-9E93-6459C53A0F50}) (Version: 1.1.4322 - Microsoft)
Microsoft .NET Framework 1.1 Security Update (KB2833941) (HKLM\...\M2833941) (Version: - )
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - CSY (HKLM\...\{A2C9CD1B-2551-3AED-B244-6698FB929FA6}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - CSY (HKLM\...\{546C143E-68DC-314D-97BC-1E454E3BA429}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 – jazyková sada – CSY (HKLM\...\Microsoft .NET Framework 3.5 Language Pack SP1 - csy) (Version: - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile CSY Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile CSY Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Compression Client Pack 1.0 for Windows XP (HKLM\...\MSCompPackV1) (Version: 1 - Microsoft Corporation)
Microsoft Office 2000 Professional (HKLM\...\{00010405-78E1-11D2-B60F-006097C998E7}) (Version: 9.00.2720 - Microsoft Corporation)
Microsoft Return of Arcade Trial Version (HKLM\...\Return of Arcade Trial) (Version: - )
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft User-Mode Driver Framework Feature Pack 1.0 (HKLM\...\Wudf01000) (Version: - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Mini Golf Pro 1.1 (HKLM\...\Mini Golf Pro_is1) (Version: - S64 Games)
MobileMe Control Panel (HKLM\...\{710BF966-43C8-4216-A8EC-BC4E169FF7C1}) (Version: 3.1.8.0 - Apple Inc.)
Mozilla Firefox 52.9.0 ESR (x86 cs) (HKLM\...\Mozilla Firefox 52.9.0 ESR (x86 cs)) (Version: 52.9.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 38.5.0 - Mozilla)
Mozilla Thunderbird 38.5.0 (x86 cs) (HKLM\...\Mozilla Thunderbird 38.5.0 (x86 cs)) (Version: 38.5.0 - Mozilla)
Mrtvé město (HKLM\...\Mrtvé město_is1) (Version: - NiHiLiS)
Nero OEM (HKLM\...\Nero - Burning Rom!UninstallKey) (Version: - )
NSIS LHM2006 (remove only) (HKLM\...\LHM2006) (Version: - )
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.10.57.35 - NVIDIA Corporation)
NVIDIA nView 136.53 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView) (Version: 136.53 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 307.83 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 307.83 - NVIDIA Corporation)
Oilcap Pro for Windows (HKLM\...\Oilcap Pro for Windows) (Version: - )
OpenOffice.org 3.4.1 (HKLM\...\{1E0AF527-0B8E-4F8A-BA27-CB3C359998C6}) (Version: 3.41.9593 - Apache Software Foundation)
OpenTTD 1.5.3 (HKLM\...\OpenTTD) (Version: 1.5.3 - OpenTTD)
Oprava Hotfix systému Windows Internet Explorer 7 (KB947864) (HKLM\...\KB947864-IE7) (Version: 1 - Microsoft Corporation) Hidden
Oracle of Runes for Windows (HKLM\...\Oracle of Runes for Windows) (Version: - )
ORF-Ski Challenge 2008 (HKU\S-1-5-21-1960408961-261478967-682003330-1004\...\SC08-ORF_MAIN) (Version: - )
Ovládací panel NVIDIA 307.83 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 307.83 - NVIDIA Corporation) Hidden
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 0.9.7 - Frank Heindörfer, Philip Chinery)
PHOTOfunSTUDIO -viewer- (HKLM\...\{9A9DBEBC-C800-4776-A970-D76D6AA405B1}) (Version: 1.00.000 - )
Ping-Pong (HKLM\...\Ping-Pong_is1) (Version: 1.0 - MyPlayCity, Inc.)
Pivot Stickfigure Animator (HKLM\...\{BEAD39CD-901D-4267-8B8B-EAA83CB4B70D}) (Version: 2.2.5 - Peter Bone)
Platform (HKLM\...\{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.) Hidden
Podpora aplikací Apple (32bitová) (HKLM\...\{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}) (Version: 3.1.3 - Apple Inc.)
PowerDVD (HKLM\...\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}) (Version: - )
ProtectDisc Driver, Version 11 (HKLM\...\ProtectDisc Driver 11) (Version: 11.0.0.10 - ProtectDisc Software GmbH)
QuickTime 7 (HKLM\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
Real Bowling (HKLM\...\RealBowling_is1) (Version: 1.0 - Media Contact LLC)
Realtek AC'97 Audio (HKLM\...\{FB08F381-6533-4108-B7DD-039E11FBC27E}) (Version: 5.23 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 5.10.0.6013 - Realtek Semiconductor Corp.)
Rugby World Cup 95 (HKLM\...\Rugby World Cup 95_is1) (Version: - GameFabrique)
Sada Compatibility Pack pro systém Office 2007 (HKLM\...\{90120000-0020-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Safari (HKLM\...\{C779648B-410E-4BBA-B75B-5815BCEFE71D}) (Version: 5.34.57.2 - Apple Inc.)
Seznam Software (HKU\S-1-5-21-1960408961-261478967-682003330-1004\...\SeznamInstall) (Version: 2.1.29 - Seznam.cz)
Squark for Windows (HKLM\...\Squark for Windows) (Version: - )
Stellarium 0.13.0 (HKLM\...\Stellarium_is1) (Version: 0.13.0 - Stellarium team)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 8.0.1052 - SUPERAntiSpyware.com)
The lost Castle (HKLM\...\The lost Castle) (Version: - )
Treiber-Deinstallation (HKLM\...\Treiber5_is1) (Version: Version 5.0 - Andreas Huber)
TUGZip 3.4 (HKLM\...\TUGZip_is1) (Version: - Christian Kindahl)
VIA Platforma Ovladače zařízení (HKLM\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.)
WebFldrs XP (HKLM\...\{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}) (Version: 9.50.7523 - Microsoft Corporation) Hidden
Widelands build9half (HKLM\...\Widelands_is1) (Version: build9half - Widelands Development Team)
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\KB892130) (Version: - Microsoft Corporation)
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\WGA) (Version: 1.7.0069.2 - Microsoft Corporation)
Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation)
Windows Management Framework Core (HKLM\...\KB968930) (Version: - Microsoft Corporation)
Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version: - )
Windows Media Player 11 (HKLM\...\Windows Media Player) (Version: - )
Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinRAR 5.71 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
XingMPEG Player (HKLM\...\XingMPEG Player) (Version: - )
XML Paper Specification Shared Components Language Pack 1.0 (HKLM\...\XPSEPSCLP) (Version: - Microsoft Corporation) Hidden
Základní software zařízení HP DeskJet 3700 series (HKLM\...\{AEC0E756-8BF5-4857-A2F7-03E72B6318B2}) (Version: 40.1.1032.61591 - HP Inc.)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1960408961-261478967-682003330-1004_Classes\CLSID\{0713E8A2-850A-101B-AFC0-4210102A8DA7}\InprocServer32 -> C:\WINDOWS\system32\ComCtl32.ocx (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1960408961-261478967-682003330-1004_Classes\CLSID\{0713E8D2-850A-101B-AFC0-4210102A8DA7}\InprocServer32 -> C:\WINDOWS\system32\ComCtl32.ocx (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1960408961-261478967-682003330-1004_Classes\CLSID\{373FF7F0-EB8B-11CD-8820-08002B2F4F5A}\InprocServer32 -> C:\WINDOWS\system32\ComCtl32.ocx (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1960408961-261478967-682003330-1004_Classes\CLSID\{58DA8D8A-9D6A-101B-AFC0-4210102A8DA7}\InprocServer32 -> C:\WINDOWS\system32\ComCtl32.ocx (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1960408961-261478967-682003330-1004_Classes\CLSID\{58DA8D8F-9D6A-101B-AFC0-4210102A8DA7}\InprocServer32 -> C:\WINDOWS\system32\ComCtl32.ocx (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1960408961-261478967-682003330-1004_Classes\CLSID\{612A8624-0FB3-11CE-8747-524153480004}\InprocServer32 -> C:\WINDOWS\system32\ComCtl32.ocx (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1960408961-261478967-682003330-1004_Classes\CLSID\{648A5600-2C6E-101B-82B6-000000000014}\InprocServer32 -> C:\WINDOWS\system32\MSCOMM32.OCX (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1960408961-261478967-682003330-1004_Classes\CLSID\{6B7E638F-850A-101B-AFC0-4210102A8DA7}\InprocServer32 -> C:\WINDOWS\system32\ComCtl32.ocx (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1960408961-261478967-682003330-1004_Classes\CLSID\{97090E2F-3062-4459-855B-014F0D3CDBB1}\InprocServer32 -> C:\Program Files\Windows Desktop Search\deskbar.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1960408961-261478967-682003330-1004_Classes\CLSID\{9ED94440-E5E8-101B-B9B5-444553540000}\InprocServer32 -> C:\WINDOWS\system32\ComCtl32.ocx (Microsoft Corporation -> Microsoft Corporation)
SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} - C:\WINDOWS\system32\shell32.dll (Microsoft Windows Component Publisher -> Microsoft Corporation)
SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - C:\WINDOWS\system32\SHELL32.dll (Microsoft Windows Component Publisher -> Microsoft Corporation)
SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\WINDOWS\system32\webcheck.dll (Microsoft Windows -> Microsoft Corporation)
SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - C:\WINDOWS\system32\stobject.dll (Microsoft Windows Component Publisher -> Microsoft Corporation)
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll (Microsoft Windows Component Publisher -> Microsoft Corporation)
ShellExecuteHooks: URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - C:\WINDOWS\system32\shell32.dll [8466944 2012-06-08] (Microsoft Windows Component Publisher -> Microsoft Corporation)
ShellExecuteHooks: Windows Desktop Search Namespace Manager - {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [304128 2009-05-24] (Microsoft Corporation) [File not signed]
ShellExecuteHooks: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [115440 2013-05-07] (SUPERAntiSpyware.com -> SuperAdBlocker.com)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync32.dll [2017-10-09] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync32.dll [2017-10-09] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync32.dll [2017-10-09] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Alwil Software\Avast5\ashShell.dll [2018-12-08] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [Autodesk.DWF.ContextMenu] -> {6C18531F-CA85-45F7-8278-FF33CF0A5964} => C:\Program Files\Common Files\Autodesk Shared\DWF Common\DWFShellExtension.dll [2009-01-13] (Autodesk, Inc -> Autodesk, Inc.)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Alwil Software\Avast5\ashShell.dll [2018-12-08] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => -> No File
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu32.dll [2017-10-09] (Google Inc -> Google)
ContextMenuHandlers1: [TzShell] -> {B38FE8E9-5DFC-4D58-8459-1E3AC5165E34} => C:\Program Files\TUGZip\TzShell.dll [2006-05-14] () [File not signed]
ContextMenuHandlers1: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Documents and Settings\admin\Plocha\win rar 371cz\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Alwil Software\Avast5\ashShell.dll [2018-12-08] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu32.dll [2017-10-09] (Google Inc -> Google)
ContextMenuHandlers5: [00nView] -> {1E9B04FB-F9E5-4718-997B-B8DA88302A48} => C:\Program Files\NVIDIA Corporation\nview\nvshell.dll [2000-01-01] (NVIDIA Corporation -> )
ContextMenuHandlers5: [NvCplDesktopContext] -> {A70C977A-BF00-412C-90B7-034C51DA2439} => C:\WINDOWS\system32\nvcpl.dll [2013-01-31] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Alwil Software\Avast5\ashShell.dll [2018-12-08] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => -> No File
ContextMenuHandlers6: [TzShell] -> {B38FE8E9-5DFC-4D58-8459-1E3AC5165E34} => C:\Program Files\TUGZip\TzShell.dll [2006-05-14] () [File not signed]
ContextMenuHandlers6: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Documents and Settings\admin\Plocha\win rar 371cz\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [msacm.trspch] => C:\WINDOWS\system32\tssoft32.acm [8192 2004-08-18] (Microsoft Windows Component Publisher -> DSP GROUP, INC.)
HKLM\...\Drivers32: [vidc.I420] => C:\WINDOWS\system32\msh263.drv [294912 2008-04-14] (Microsoft Windows Component Publisher -> Microsoft Corporation)
HKLM\...\Drivers32: [vidc.iv31] => C:\WINDOWS\system32\ir32_32.dll [199168 2004-08-18] (Microsoft Windows Component Publisher -> )
HKLM\...\Drivers32: [vidc.iv32] => C:\WINDOWS\system32\ir32_32.dll [199168 2004-08-18] (Microsoft Windows Component Publisher -> )
HKLM\...\Drivers32: [vidc.iv41] => C:\WINDOWS\system32\ir41_32.ax [848384 2008-04-14] (Microsoft Windows Component Publisher -> Intel Corporation)
HKLM\...\Drivers32: [msacm.msg723] => C:\WINDOWS\system32\msg723.acm [118784 2004-08-18] (Microsoft Windows Component Publisher -> Microsoft Corporation)
HKLM\...\Drivers32: [vidc.M263] => C:\WINDOWS\system32\msh263.drv [294912 2008-04-14] (Microsoft Windows Component Publisher -> Microsoft Corporation)
HKLM\...\Drivers32: [vidc.M261] => C:\WINDOWS\system32\msh261.drv [188416 2008-04-14] (Microsoft Windows Component Publisher -> Microsoft Corporation)
HKLM\...\Drivers32: [msacm.msaudio1] => C:\WINDOWS\system32\msaud32.acm [282654 2009-09-01] (Microsoft Windows Component Publisher -> Microsoft Corporation)
HKLM\...\Drivers32: [msacm.sl_anet] => C:\WINDOWS\system32\sl_anet.acm [86016 2008-04-14] (Microsoft Windows Component Publisher -> Sipro Lab Telecom Inc.)
HKLM\...\Drivers32: [msacm.iac2] => C:\WINDOWS\system32\iac25_32.ax [199680 2008-04-14] (Microsoft Windows Component Publisher -> Intel Corporation)
HKLM\...\Drivers32: [vidc.iv50] => C:\WINDOWS\system32\ir50_32.dll [755200 2008-04-14] (Microsoft Windows Component Publisher -> Intel Corporation)
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
WMI:subscription\__FilterToConsumerBinding->\\.\root\subscription:MSFT_UCScenarioControl.Name=\"Microsoft WMI Updating Consumer Scenario Control\"",Filter="\\.\root\subscription:__EventFilter.Name=\"Microsoft WMI Updating Consumer Scenario Control\"::
WMI:subscription\__EventFilter->Microsoft WMI Updating Consumer Scenario Control::[Query => SELECT * FROM __InstanceOperationEvent WHERE TargetInstance ISA 'MSFT_UCScenario']
Shortcut: C:\Documents and Settings\admin\Nabídka Start\Programy\Billiard Simulator\DarXide Games.lnk -> hxxp://www.darxidegames.co
ShortcutWithArgument: C:\Documents and Settings\All Users\Nabídka Start\Programy\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> "C:\Documents and Settings\All Users\Nabídka Start\Programy\Google Chrome.lnk"
ShortcutWithArgument: C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> "C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk"
==================== Loaded Modules (Whitelisted) =============
2007-01-04 23:45 - 2002-07-04 09:38 - 000053248 _____ () [File not signed] C:\Program Files\ArcSoft\Software Suite\PhotoImpression\share\pihook.dll
2018-01-12 21:24 - 2016-09-12 14:53 - 048936448 _____ () [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\libcef.dll
2009-09-20 11:57 - 2005-09-05 19:52 - 001355776 _____ () [File not signed] C:\Program Files\TUGZip\Plugins\TzArchive10.tgp
2009-09-20 11:57 - 2005-02-17 22:15 - 000077824 _____ () [File not signed] C:\Program Files\TUGZip\Plugins\TzImage10.tgp
2009-09-20 11:57 - 2006-05-14 12:03 - 000655360 _____ () [File not signed] C:\Program Files\TUGZip\TzShell.dll
2009-02-27 17:26 - 2001-10-28 16:42 - 000116224 _____ () [File not signed] C:\WINDOWS\system32\pdfcmnnt.dll
2009-09-20 11:57 - 2003-08-29 22:51 - 000156160 _____ () [File not signed] C:\WINDOWS\system32\unrar3.dll
2019-04-12 12:01 - 2000-01-01 01:00 - 000167936 _____ () [File not signed] C:\WINDOWS\system32\ustor.dll
2009-02-27 17:20 - 2003-09-16 01:19 - 000010240 _____ () [File not signed] C:\WINDOWS\system32\virport.dll
2012-08-10 15:51 - 2012-08-10 15:51 - 000434176 _____ (Apache Software Foundation) [File not signed] C:\Program Files\OpenOffice.org 3\Basis\program\shlxthdl\shlxthdl.dll
2020-04-14 10:26 - 2020-04-14 10:26 - 000379904 _____ (Avast Software s.r.o. -> AVAST Software) [File not signed] [File is in use] C:\Program Files\Alwil Software\Avast5\defs\20041300\aswArray.dll
2020-04-14 10:26 - 2020-04-14 10:26 - 000511136 _____ (Avast Software s.r.o. -> AVAST Software) [File not signed] [File is in use] C:\Program Files\Alwil Software\Avast5\defs\20041300\aswCmnBS.dll
2020-04-14 10:26 - 2020-04-14 10:26 - 000434608 _____ (Avast Software s.r.o. -> AVAST Software) [File not signed] [File is in use] C:\Program Files\Alwil Software\Avast5\defs\20041300\aswCmnIS.dll
2020-04-14 10:26 - 2020-04-14 10:26 - 000158856 _____ (Avast Software s.r.o. -> AVAST Software) [File not signed] [File is in use] C:\Program Files\Alwil Software\Avast5\defs\20041300\aswCmnOS.dll
2020-04-14 10:26 - 2020-04-14 10:26 - 001626704 _____ (Avast Software s.r.o. -> AVAST Software) [File not signed] [File is in use] C:\Program Files\Alwil Software\Avast5\defs\20041300\aswEngin.dll
2020-04-14 10:26 - 2020-04-14 10:26 - 000615976 _____ (Avast Software s.r.o. -> AVAST Software) [File not signed] [File is in use] C:\Program Files\Alwil Software\Avast5\defs\20041300\aswFiDb.dll
2020-04-14 10:26 - 2020-04-14 10:26 - 000452776 _____ (Avast Software s.r.o. -> AVAST Software) [File not signed] [File is in use] C:\Program Files\Alwil Software\Avast5\defs\20041300\aswRep.dll
2020-04-14 10:27 - 2020-04-14 10:27 - 000045208 _____ (Avast Software s.r.o. -> AVAST Software) [File not signed] [File is in use] C:\Program Files\Alwil Software\Avast5\defs\20041300\fwAux.dll
2020-04-14 10:26 - 2020-04-14 10:26 - 000538528 _____ (Avast Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\Alwil Software\Avast5\defs\20041300\aswCleanerDLL.dll
2018-01-12 21:24 - 2019-07-25 20:24 - 000514944 _____ (AVAST Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\aswCmnBS.dll
2018-01-12 21:24 - 2019-07-25 20:24 - 000359536 _____ (AVAST Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\aswCmnIS.dll
2018-01-12 21:24 - 2019-07-25 20:24 - 000151880 _____ (AVAST Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\aswCmnOS.dll
2018-05-15 14:12 - 2019-07-25 20:24 - 000094032 _____ (AVAST Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\aswIP.dll
2018-01-12 21:24 - 2019-07-25 20:24 - 000767544 _____ (AVAST Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\aswProperty.dll
2018-01-12 21:24 - 2019-07-25 20:24 - 001264448 _____ (AVAST Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\AvChrome.dll
2018-01-12 21:24 - 2019-07-25 20:24 - 001954456 _____ (AVAST Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\burger_client.dll
2018-05-15 14:12 - 2019-07-25 20:24 - 000895672 _____ (AVAST Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\commchannel.dll
2018-01-25 21:24 - 2019-07-25 20:24 - 000652432 _____ (AVAST Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\CommonUI.dll
2018-01-25 21:24 - 2019-07-25 20:24 - 000043936 _____ (AVAST Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\dll_loader.dll
2018-01-12 21:24 - 2019-07-25 20:24 - 000365208 _____ (AVAST Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\event_manager.dll
2018-01-12 21:24 - 2019-07-25 20:24 - 000394168 _____ (AVAST Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\event_manager_burger.dll
2018-01-12 21:24 - 2019-07-25 20:24 - 000333688 _____ (AVAST Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\event_routing.dll
2018-01-12 21:24 - 2019-07-25 20:24 - 000406528 _____ (AVAST Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\event_routing_rpc.dll
2018-01-12 21:24 - 2019-07-25 20:24 - 000141528 _____ (AVAST Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\log.dll
2018-01-25 21:24 - 2019-07-25 20:24 - 000044448 _____ (AVAST Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\module_lifetime.dll
2018-01-25 21:24 - 2019-07-25 20:24 - 000192688 _____ (AVAST Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\network_notifications.dll
2019-04-12 10:41 - 2019-07-25 20:24 - 000275872 _____ (AVAST Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\serialization.dll
2019-01-18 13:44 - 2019-10-11 13:13 - 002059288 _____ (AVAST Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\swhealthex2.dll
2018-01-12 21:24 - 2019-07-25 20:24 - 000279496 _____ (AVAST Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\tasks_core.dll
2018-05-15 14:12 - 2019-07-25 20:24 - 000833696 _____ (AVAST Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\vaarclient.dll
2018-10-23 06:28 - 2018-10-23 06:28 - 002387776 _____ (AVAST Software s.r.o. -> The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Alwil Software\Avast5\libcrypto-1_1.dll
2018-10-23 06:28 - 2018-10-23 06:28 - 000512832 _____ (AVAST Software s.r.o. -> The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Alwil Software\Avast5\libssl-1_1.dll
2018-04-30 16:00 - 2018-04-30 16:00 - 000049664 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2008-05-26 21:19 - 2009-05-24 21:41 - 000304128 ____N (Microsoft Corporation) [File not signed] C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll
2020-02-28 14:32 - 2020-02-28 14:32 - 000104272 _____ (Piriform Software Ltd -> ) [File not signed] C:\Program Files\CCleaner\lang\lang-1029.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{1a3e09be-1e45-494b-9174-d7385b45bbf5} => ""=""
==================== Association (Whitelisted) =================
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
HKLM\...\batfile\DefaultIcon: %SystemRoot%\System32\shell32.dll,-153 <==== ATTENTION
==================== Internet Explorer (Version 8) (Whitelisted) ==========
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-1960408961-261478967-682003330-1004\Software\Microsoft\Internet Explorer\Main,Start Page =
HKU\S-1-5-21-1960408961-261478967-682003330-1004\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/cs-cz/?ocid=iehp
URLSearchHook: [S-1-5-21-1960408961-261478967-682003330-1192] ATTENTION => Default URLSearchHook is missing
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} hxxp://download.eset.com/special/eos/OnlineScanner.cab
Handler: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll [2007-11-08] (Logitech Inc.) [File not signed]
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2004-08-18 13:00 - 2020-04-14 10:09 - 000000000 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1960408961-261478967-682003330-1004\Control Panel\Desktop\\Wallpaper -> C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Pozadí plochy.bmp
HKU\S-1-5-21-1960408961-261478967-682003330-1192\Control Panel\Desktop\\Wallpaper -> (Žádný)
DNS Servers: 10.78.196.1 - 10.109.255.254
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName3 -> C:\WINDOWS\system32\ipconf.tsp (Microsoft Windows Component Publisher -> Microsoft Corporation)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName4 -> C:\WINDOWS\system32\h323.tsp (Microsoft Windows Component Publisher -> Microsoft Corporation)
Windows Firewall is disabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
DomainProfile\AuthorizedApplications: [C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe] => Enabled:Logitech Desktop Messenger
StandardProfile\AuthorizedApplications: [C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe] => Enabled:Logitech Desktop Messenger
StandardProfile\AuthorizedApplications: [C:\Documents and Settings\admin\Plocha\Hry\Widelands\widelands.exe] => Enabled:widelands
StandardProfile\AuthorizedApplications: [C:\Documents and Settings\admin\Plocha\Hry\Freeciv-2.0.8-gtk2\civserver.exe] => Enabled:civserver
StandardProfile\AuthorizedApplications: [C:\Program Files\Java\jre1.6.0_07\bin\javaw.exe] => Enabled:Java(TM) Platform SE binary
StandardProfile\AuthorizedApplications: [C:\Program Files\Java\jre6\bin\javaw.exe] => Enabled:Java(TM) Platform SE binary
StandardProfile\AuthorizedApplications: [C:\Program Files\Google\Google Earth\plugin\geplugin.exe] => Enabled:Google Earth
StandardProfile\AuthorizedApplications: [C:\Documents and Settings\admin\Plocha\Hry\Ping-Pong\MainP.dat] => Disabled:fullrus
StandardProfile\AuthorizedApplications: [C:\Program Files\iTunes\iTunes.exe] => Enabled:iTunes
StandardProfile\AuthorizedApplications: [C:\Program Files\Google\Chrome\Application\chrome.exe] => Enabled:Google Chrome
StandardProfile\AuthorizedApplications: [C:\Program Files\HP\HP DeskJet 3700 series\Bin\DeviceSetup.exe] => :LocalSubNet:Enabled:Instalace zařízení HP (HP DeskJet 3700 series)
StandardProfile\AuthorizedApplications: [C:\Program Files\HP\HP DeskJet 3700 series\Bin\HPNetworkCommunicatorCom.exe] => :LocalSubNet:Enabled:Síťový komunikační program HP COM (HP DeskJet 3700 series)
StandardProfile\AuthorizedApplications: [C:\Program Files\Mozilla Firefox\firefox.exe] => Enabled:Firefox (C:\Program Files\Mozilla Firefox)
StandardProfile\AuthorizedApplications: [C:\Program Files\Alwil Software\Avast5\AvEmUpdate.exe] => Enabled:Avast Emergency Update
StandardProfile\AuthorizedApplications: [C:\Program Files\CCleaner\CCUpdate.exe] => Enabled:CCleaner Update
StandardProfile\AuthorizedApplications: [C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe] => Enabled:Daemonu.exe
StandardProfile\GloballyOpenPorts: [5357:TCP] => Enabled:WS-Eventing TCP Port 5357
StandardProfile\GloballyOpenPorts: [5985:TCP] => Disabled:Vzdálená správa systému Windows
StandardProfile\GloballyOpenPorts: [80:TCP] => Disabled:Vzdálená správa systému Windows – režim kompatibility (HTTP-In)
==================== Restore Points =========================
28-11-2020 15:15:47 Kontrolní bod systému
29-11-2020 22:28:41 Kontrolní bod systému
30-11-2020 23:04:42 Kontrolní bod systému
01-12-2020 23:41:28 Kontrolní bod systému
03-12-2020 18:34:58 Kontrolní bod systému
04-12-2020 21:46:20 Kontrolní bod systému
06-12-2020 15:36:36 Kontrolní bod systému
07-12-2020 18:51:52 Kontrolní bod systému
08-12-2020 22:49:12 Kontrolní bod systému
10-12-2020 00:07:20 Kontrolní bod systému
11-12-2020 19:49:58 Kontrolní bod systému
13-12-2020 00:51:45 Kontrolní bod systému
14-12-2020 15:28:44 Kontrolní bod systému
15-12-2020 17:48:31 Kontrolní bod systému
==================== Faulty Device Manager Devices ============
Name: avast! SecureLine TAP Adapter v3
Description: avast! SecureLine TAP Adapter v3
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: TAP-Windows Provider V9
Service: aswTap
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: ========================
Application errors:
==================
Error: (12/16/2020 04:01:40 PM) (Source: crypt32) (EventID: 11) (User: )
Description: Extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab> se nezdařilo. Chyba: Byl zadán neplatný algoritmus.
Error: (12/16/2020 04:01:40 PM) (Source: crypt32) (EventID: 11) (User: )
Description: Extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab> se nezdařilo. Chyba: Byl zadán neplatný algoritmus.
Error: (12/16/2020 04:01:40 PM) (Source: crypt32) (EventID: 11) (User: )
Description: Extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab> se nezdařilo. Chyba: Byl zadán neplatný algoritmus.
Error: (12/16/2020 04:01:39 PM) (Source: crypt32) (EventID: 11) (User: )
Description: Extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab> se nezdařilo. Chyba: Byl zadán neplatný algoritmus.
Error: (12/16/2020 04:01:38 PM) (Source: crypt32) (EventID: 11) (User: )
Description: Extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab> se nezdařilo. Chyba: Byl zadán neplatný algoritmus.
Error: (12/16/2020 04:01:38 PM) (Source: crypt32) (EventID: 11) (User: )
Description: Extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab> se nezdařilo. Chyba: Byl zadán neplatný algoritmus.
Error: (12/16/2020 04:01:37 PM) (Source: crypt32) (EventID: 11) (User: )
Description: Extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab> se nezdařilo. Chyba: Byl zadán neplatný algoritmus.
Error: (12/16/2020 04:01:37 PM) (Source: crypt32) (EventID: 11) (User: )
Description: Extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab> se nezdařilo. Chyba: Byl zadán neplatný algoritmus.
System errors:
=============
Error: (12/16/2020 03:10:16 PM) (Source: Windows Update Agent) (EventID: 16) (User: )
Description: Připojení se nezdařilo: Připojení ke službě automatických aktualizací nelze navázat. Stažení a instalaci aktualizací podle tohoto plánu nelze spustit. Pokus o navázání spojení bude opakován.
Error: (12/16/2020 11:21:19 AM) (Source: 0) (EventID: 1) (User: )
Description: Event-ID 1
Error: (12/16/2020 11:21:10 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Avast Antivirus neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (12/16/2020 11:21:10 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Vypršel časový limit (30000 milisekund) čekání na připojení služby Avast Antivirus.
Error: (12/15/2020 06:58:55 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Zařazování tisku byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (12/15/2020 04:30:20 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba modelu COM pro zápis na disk CD (IMAPI) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (12/15/2020 04:30:20 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Vypršel časový limit (30000 milisekund) čekání na připojení služby Služba modelu COM pro zápis na disk CD (IMAPI).
Error: (12/15/2020 04:29:32 PM) (Source: 0) (EventID: 1) (User: )
Description: Event-ID 1
==================== Memory info ===========================
BIOS: American Megatrends Inc. A_M_I - 3001103 03/03/2011
Motherboard: ASRock N68C-S UCC
Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 3800+
Percentage of memory in use: 99%
Total physical RAM: 895.23 MB
Available physical RAM: 6.76 MB
Total Virtual: 2166.28 MB
Available Virtual: 704.38 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:186.3 GB) (Free:142.65 GB) NTFS ==>[drive with boot components (Windows XP)]
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 186.3 GB) (Disk ID: 1AE61AE5)
Partition 1: (Active) - (Size=186.3 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 14-12-2020
Ran by admin (16-12-2020 16:13:00)
Running from C:\Documents and Settings\admin\Plocha
Microsoft Windows XP Home Edition Service Pack 3 (X86) (2006-08-15 18:52:46)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
admin (S-1-5-21-1960408961-261478967-682003330-1004 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\admin
Administrator (S-1-5-21-1960408961-261478967-682003330-500 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\Administrator
ASPNET (S-1-5-21-1960408961-261478967-682003330-1191 - Limited - Enabled)
Guest (S-1-5-21-1960408961-261478967-682003330-501 - Limited - Disabled)
HelpAssistant (S-1-5-21-1960408961-261478967-682003330-1000 - Limited - Disabled)
SUPPORT_388945a0 (S-1-5-21-1960408961-261478967-682003330-1002 - Limited - Disabled)
UpdatusUser (S-1-5-21-1960408961-261478967-682003330-1192 - Limited - Enabled) => %SystemDrive%\Documents and Settings\UpdatusUser
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {7591db91-41f0-48a3-b128-1a293fd8233d}
FW: Avast Antivirus (Disabled) {7591db91-41f0-48a3-b128-1a293fd8233d}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 18.05 (HKLM\...\{23170F69-40C1-2701-1805-000001000000}) (Version: 18.05.00.0 - Igor Pavlov)
7-Zip 9.22beta (HKLM\...\7-Zip) (Version: - )
Adobe Flash Player 32 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 32.0.0.465 - Adobe)
Adobe Reader XI (11.0.08) - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
Aktualizace systému Windows Internet Explorer 7 (KB976749) (HKLM\...\KB976749-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace systému Windows Internet Explorer 7 (KB980182) (HKLM\...\KB980182-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace systému Windows Internet Explorer 8 (KB2598845) (HKLM\...\KB2598845-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace systému Windows Internet Explorer 8 (KB2632503) (HKLM\...\KB2632503-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení aplikace Windows Media Player (KB911564) (HKLM\...\KB911564) (Version: - Microsoft Corporation) Hidden
Aktualizace zabezpečení aplikace Windows Media Player 6.4 (KB925398) (HKLM\...\KB925398_WMP64) (Version: - Microsoft Corporation)
Aktualizace zabezpečení aplikace Windows Media Player 9 (KB936782) (HKLM\...\KB936782_WMP9) (Version: - Microsoft Corporation) Hidden
Aktualizace zabezpečení produktu Windows XP (KB923689) (HKLM\...\KB923689) (Version: - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2183461) (HKLM\...\KB2183461-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2360131) (HKLM\...\KB2360131-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2416400) (HKLM\...\KB2416400-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2482017) (HKLM\...\KB2482017-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2497640) (HKLM\...\KB2497640-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2530548) (HKLM\...\KB2530548-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2544521) (HKLM\...\KB2544521-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2559049) (HKLM\...\KB2559049-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2586448) (HKLM\...\KB2586448-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2618444) (HKLM\...\KB2618444-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2647516) (HKLM\...\KB2647516-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2675157) (HKLM\...\KB2675157-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2699988) (HKLM\...\KB2699988-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2722913) (HKLM\...\KB2722913-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2744842) (HKLM\...\KB2744842-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2761465) (HKLM\...\KB2761465-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2792100) (HKLM\...\KB2792100-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2797052) (HKLM\...\KB2797052-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2799329) (HKLM\...\KB2799329-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2809289) (HKLM\...\KB2809289-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2817183) (HKLM\...\KB2817183-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2829530) (HKLM\...\KB2829530-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2838727) (HKLM\...\KB2838727-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2846071) (HKLM\...\KB2846071-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2862772) (HKLM\...\KB2862772-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2870699) (HKLM\...\KB2870699-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2879017) (HKLM\...\KB2879017-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2888505) (HKLM\...\KB2888505-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2898785) (HKLM\...\KB2898785-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2909921) (HKLM\...\KB2909921-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2925418) (HKLM\...\KB2925418-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2936068) (HKLM\...\KB2936068-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2964358) (HKLM\...\KB2964358-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB938127) (HKLM\...\KB938127-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB939653) (HKLM\...\KB939653-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB942615) (HKLM\...\KB942615-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB944533) (HKLM\...\KB944533-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB950759) (HKLM\...\KB950759-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB953838) (HKLM\...\KB953838-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB956390) (HKLM\...\KB956390-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB958215) (HKLM\...\KB958215-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB960714) (HKLM\...\KB960714-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB961260) (HKLM\...\KB961260-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB963027) (HKLM\...\KB963027-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB969897) (HKLM\...\KB969897-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB972260) (HKLM\...\KB972260-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB974455) (HKLM\...\KB974455-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB976325) (HKLM\...\KB976325-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB978207) (HKLM\...\KB978207-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB982381) (HKLM\...\KB982381-IE7) (Version: 1 - Microsoft Corporation) Hidden
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2510531) (HKLM\...\KB2510531-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2909921) (HKLM\...\KB2909921-IE8) (Version: 1 - Microsoft Corporation)
Aktualizace zabezpečení systému Windows XP (KB923789) (HKLM\...\KB923789) (Version: - Microsoft Corporation)
Apple Mobile Device Support (HKLM\...\{E1DB0812-2D60-43DB-AE09-6C7027D93B28}) (Version: 8.1.1.3 - Apple Inc.)
Apple Software Update (HKLM\...\{FFD1F7F1-1AC9-4BC4-A908-0686D635ABAF}) (Version: 2.1.4.131 - Apple Inc.)
Autodesk Design Review 2010 (HKLM\...\{55D9E026-DCB0-46FF-B60A-68B972228CF6}) (Version: 10.0.0.108 - Autodesk, Inc.) Hidden
Autodesk Design Review 2010 (HKLM\...\Autodesk Design Review 2010) (Version: 10.0.0.108 - Autodesk, Inc.)
Avast Premier (HKLM\...\Avast Antivirus) (Version: 18.8.2356 - AVAST Software)
Balíček zprostředkovatele služby Microsoft Base Smart Card Cryptographic Service (HKLM\...\KB909520) (Version: - Microsoft Corporation)
Beetle Run for Windows (HKLM\...\Beetle Run for Windows) (Version: - )
Becher Train (HKLM\...\Becher Train_is1) (Version: - )
Bermen 1.1 (HKLM\...\Bermen_is1) (Version: - Island software)
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
BVE Uchibo Line (HKLM\...\{9BD8D527-A96C-46DB-B076-48D34189B372}) (Version: 2.0.1 - mackoy)
CCleaner (HKLM\...\CCleaner) (Version: 5.64 - Piriform)
CD-LabelPrint (HKLM\...\MediaNavigation.CDLabelPrint) (Version: - )
Celestia 1.6.1 (HKLM\...\Celestia_is1) (Version: - Shatters Software)
Czech Soccer Manager (HKU\S-1-5-21-1960408961-261478967-682003330-1004\...\Czech Soccer Manager) (Version: - )
Czech Soccer Manager 2002 FE (HKLM\...\Czech Soccer Manager 2002 FE) (Version: - )
Czech Soccer Manager 2002 Final Edition (HKLM\...\Czech Soccer Manager 2002 Final Edition) (Version: - )
Czech Soccer Manager 2002 Final Edition (HKLM\...\Czech Soccer Manager 2002 Final Editionverze 4.0 (31.3.2006)) (Version: verze 4.0 (31.3.2006) - Petr Vašíček)
DemonStar (HKLM\...\DemonStarDeinstKey) (Version: - )
Easy-WebPrint (HKLM\...\Easy-WebPrint) (Version: - )
ESET Online Scanner v3 (HKLM\...\ESET Online Scanner) (Version: - )
Flaps for Windows (HKLM\...\Flaps for Windows) (Version: - )
Football Challenge 2010 (PL) (HKU\S-1-5-21-1960408961-261478967-682003330-1004\...\fc10-PL_TVP_MAIN) (Version: - )
Free Mp3/Wma/Ogg Converter 4.0.1 (HKLM\...\Free Mp3/Wma/Ogg Converter_is1) (Version: - )
Free PDF to Word Doc Converter v1.1 (HKLM\...\Free PDF to Word Doc Converter_is1) (Version: 1.1 - www.hellopdf.com)
Freeciv 2.0.8 (GTK+ client) (HKLM\...\Freeciv-2.0.8-gtk2) (Version: - )
Frog Hop for Windows (HKLM\...\Frog Hop for Windows ) (Version: - )
Fussball Challenge 2008 (ORF) (HKU\S-1-5-21-1960408961-261478967-682003330-1004\...\fc08-AT_ORF_MAIN) (Version: - )
Garmin Communicator Plugin (HKLM\...\{647BB978-2876-487B-9B0E-FDB73F0EA4A2}) (Version: 4.0.4 - Garmin Ltd or its subsidiaries)
Genesys USB Mass Storage Device (HKLM\...\{959B7F35-2819-40C5-A0CD-3C53B5FCC935}) (Version: 2.5.0.0 - Genesys Logic)
Google Drive (HKLM\...\{AC117AF9-316B-4E1D-959E-F0EB85B0DC5F}) (Version: 2.34.7100.0000 - Google, Inc.)
Google Earth Plug-in (HKLM\...\{4AB54F11-2F8C-11E3-B09F-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Chrome (HKLM\...\Google Chrome) (Version: 49.0.2623.112 - Google Inc.)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.36.51 - Google LLC) Hidden
Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
HP DeskJet 3700 series Nápověda (HKLM\...\{295D0212-82EF-4A9B-9523-754A430DE721}) (Version: 40.0.0 - HP)
HP Dropbox Plugin (HKLM\...\{0078F518-B5B5-4857-8939-199E752A4190}) (Version: 36.0.41.58587 - HP)
HP Google Drive Plugin (HKLM\...\{F260117F-45E4-483E-B10F-C80224558C4D}) (Version: 36.0.41.58587 - HP)
HP Photo Creations (HKLM\...\HP Photo Creations) (Version: 1.0.0.9572 - HP)
iPhone Configuration Utility (HKLM\...\{FA54AFB1-5745-4389-B8C1-9F7509672ED1}) (Version: 2.1.0.163 - Apple Inc.)
iTunes (HKLM\...\{868B9974-4F23-494D-B6BC-4FAB92B2755D}) (Version: 12.1.3.6 - Apple Inc.)
Jízdní řád ČD 2019 (HKLM\...\{2FFA4F8E-8D11-4A0C-9C58-4BD03B51DDDA}_is1) (Version: - České dráhy a.s.)
Kat (HKLM\...\Kat) (Version: - )
Legie (HKLM\...\{FB86EDAA-B17D-447E-972B-5580A4C6AE3C}_is1) (Version: - Sudokop.com)
LightScribe 1.4.62.1 (HKLM\...\{ABB2901A-3D0A-4F21-8324-2F13C3EFE163}) (Version: 1.4.62.1 - hxxp://www.lightscribe.com) Hidden
Logitech Desktop Messenger (HKLM\...\{900B1197-53F5-4F46-A882-2CFFFE2EEDCB}) (Version: 2.52.18 - Logitech, Inc.)
Logitech SetPoint (HKLM\...\{2E8EAC71-BFE4-417A-88F0-5A1BDFBCF5D3}) (Version: 2.12 - )
LUMIX Simple Viewer (HKLM\...\{2CDCCE7E-55D5-40CC-AEA0-ABA54713501F}) (Version: 0.99.0000 - )
Microsoft .NET Framework 1.1 (HKLM\...\Microsoft .NET Framework 1.1 (1033)) (Version: - )
Microsoft .NET Framework 1.1 Czech Language Pack (HKLM\...\{5E65E94D-69F2-4850-9E93-6459C53A0F50}) (Version: 1.1.4322 - Microsoft)
Microsoft .NET Framework 1.1 Security Update (KB2833941) (HKLM\...\M2833941) (Version: - )
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - CSY (HKLM\...\{A2C9CD1B-2551-3AED-B244-6698FB929FA6}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - CSY (HKLM\...\{546C143E-68DC-314D-97BC-1E454E3BA429}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 – jazyková sada – CSY (HKLM\...\Microsoft .NET Framework 3.5 Language Pack SP1 - csy) (Version: - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile CSY Language Pack (HKLM\...\Microsoft .NET Framework 4 Client Profile CSY Language Pack) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Compression Client Pack 1.0 for Windows XP (HKLM\...\MSCompPackV1) (Version: 1 - Microsoft Corporation)
Microsoft Office 2000 Professional (HKLM\...\{00010405-78E1-11D2-B60F-006097C998E7}) (Version: 9.00.2720 - Microsoft Corporation)
Microsoft Return of Arcade Trial Version (HKLM\...\Return of Arcade Trial) (Version: - )
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft User-Mode Driver Framework Feature Pack 1.0 (HKLM\...\Wudf01000) (Version: - Microsoft Corporation)
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (HKLM\...\{770657D0-A123-3C07-8E44-1C83EC895118}) (Version: 8.0.50727.4053 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (HKLM\...\{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (HKLM\...\{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}) (Version: 9.0.30729.5570 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Mini Golf Pro 1.1 (HKLM\...\Mini Golf Pro_is1) (Version: - S64 Games)
MobileMe Control Panel (HKLM\...\{710BF966-43C8-4216-A8EC-BC4E169FF7C1}) (Version: 3.1.8.0 - Apple Inc.)
Mozilla Firefox 52.9.0 ESR (x86 cs) (HKLM\...\Mozilla Firefox 52.9.0 ESR (x86 cs)) (Version: 52.9.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 38.5.0 - Mozilla)
Mozilla Thunderbird 38.5.0 (x86 cs) (HKLM\...\Mozilla Thunderbird 38.5.0 (x86 cs)) (Version: 38.5.0 - Mozilla)
Mrtvé město (HKLM\...\Mrtvé město_is1) (Version: - NiHiLiS)
Nero OEM (HKLM\...\Nero - Burning Rom!UninstallKey) (Version: - )
NSIS LHM2006 (remove only) (HKLM\...\LHM2006) (Version: - )
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version: 1.10.57.35 - NVIDIA Corporation)
NVIDIA nView 136.53 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView) (Version: 136.53 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 307.83 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 307.83 - NVIDIA Corporation)
Oilcap Pro for Windows (HKLM\...\Oilcap Pro for Windows) (Version: - )
OpenOffice.org 3.4.1 (HKLM\...\{1E0AF527-0B8E-4F8A-BA27-CB3C359998C6}) (Version: 3.41.9593 - Apache Software Foundation)
OpenTTD 1.5.3 (HKLM\...\OpenTTD) (Version: 1.5.3 - OpenTTD)
Oprava Hotfix systému Windows Internet Explorer 7 (KB947864) (HKLM\...\KB947864-IE7) (Version: 1 - Microsoft Corporation) Hidden
Oracle of Runes for Windows (HKLM\...\Oracle of Runes for Windows) (Version: - )
ORF-Ski Challenge 2008 (HKU\S-1-5-21-1960408961-261478967-682003330-1004\...\SC08-ORF_MAIN) (Version: - )
Ovládací panel NVIDIA 307.83 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel) (Version: 307.83 - NVIDIA Corporation) Hidden
PDFCreator (HKLM\...\{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}) (Version: 0.9.7 - Frank Heindörfer, Philip Chinery)
PHOTOfunSTUDIO -viewer- (HKLM\...\{9A9DBEBC-C800-4776-A970-D76D6AA405B1}) (Version: 1.00.000 - )
Ping-Pong (HKLM\...\Ping-Pong_is1) (Version: 1.0 - MyPlayCity, Inc.)
Pivot Stickfigure Animator (HKLM\...\{BEAD39CD-901D-4267-8B8B-EAA83CB4B70D}) (Version: 2.2.5 - Peter Bone)
Platform (HKLM\...\{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.) Hidden
Podpora aplikací Apple (32bitová) (HKLM\...\{AFA1153A-F547-409B-B837-3A0D6C5A3FEC}) (Version: 3.1.3 - Apple Inc.)
PowerDVD (HKLM\...\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}) (Version: - )
ProtectDisc Driver, Version 11 (HKLM\...\ProtectDisc Driver 11) (Version: 11.0.0.10 - ProtectDisc Software GmbH)
QuickTime 7 (HKLM\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
Real Bowling (HKLM\...\RealBowling_is1) (Version: 1.0 - Media Contact LLC)
Realtek AC'97 Audio (HKLM\...\{FB08F381-6533-4108-B7DD-039E11FBC27E}) (Version: 5.23 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 5.10.0.6013 - Realtek Semiconductor Corp.)
Rugby World Cup 95 (HKLM\...\Rugby World Cup 95_is1) (Version: - GameFabrique)
Sada Compatibility Pack pro systém Office 2007 (HKLM\...\{90120000-0020-0405-0000-0000000FF1CE}) (Version: 12.0.6612.1000 - Microsoft Corporation)
Safari (HKLM\...\{C779648B-410E-4BBA-B75B-5815BCEFE71D}) (Version: 5.34.57.2 - Apple Inc.)
Seznam Software (HKU\S-1-5-21-1960408961-261478967-682003330-1004\...\SeznamInstall) (Version: 2.1.29 - Seznam.cz)
Squark for Windows (HKLM\...\Squark for Windows) (Version: - )
Stellarium 0.13.0 (HKLM\...\Stellarium_is1) (Version: 0.13.0 - Stellarium team)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 8.0.1052 - SUPERAntiSpyware.com)
The lost Castle (HKLM\...\The lost Castle) (Version: - )
Treiber-Deinstallation (HKLM\...\Treiber5_is1) (Version: Version 5.0 - Andreas Huber)
TUGZip 3.4 (HKLM\...\TUGZip_is1) (Version: - Christian Kindahl)
VIA Platforma Ovladače zařízení (HKLM\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.)
WebFldrs XP (HKLM\...\{350C9405-3D7C-4EE8-BAA9-00BCB3D54227}) (Version: 9.50.7523 - Microsoft Corporation) Hidden
Widelands build9half (HKLM\...\Widelands_is1) (Version: build9half - Widelands Development Team)
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\KB892130) (Version: - Microsoft Corporation)
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\WGA) (Version: 1.7.0069.2 - Microsoft Corporation)
Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation)
Windows Management Framework Core (HKLM\...\KB968930) (Version: - Microsoft Corporation)
Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version: - )
Windows Media Player 11 (HKLM\...\Windows Media Player) (Version: - )
Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinRAR 5.71 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.71.0 - win.rar GmbH)
XingMPEG Player (HKLM\...\XingMPEG Player) (Version: - )
XML Paper Specification Shared Components Language Pack 1.0 (HKLM\...\XPSEPSCLP) (Version: - Microsoft Corporation) Hidden
Základní software zařízení HP DeskJet 3700 series (HKLM\...\{AEC0E756-8BF5-4857-A2F7-03E72B6318B2}) (Version: 40.1.1032.61591 - HP Inc.)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-1960408961-261478967-682003330-1004_Classes\CLSID\{0713E8A2-850A-101B-AFC0-4210102A8DA7}\InprocServer32 -> C:\WINDOWS\system32\ComCtl32.ocx (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1960408961-261478967-682003330-1004_Classes\CLSID\{0713E8D2-850A-101B-AFC0-4210102A8DA7}\InprocServer32 -> C:\WINDOWS\system32\ComCtl32.ocx (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1960408961-261478967-682003330-1004_Classes\CLSID\{373FF7F0-EB8B-11CD-8820-08002B2F4F5A}\InprocServer32 -> C:\WINDOWS\system32\ComCtl32.ocx (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1960408961-261478967-682003330-1004_Classes\CLSID\{58DA8D8A-9D6A-101B-AFC0-4210102A8DA7}\InprocServer32 -> C:\WINDOWS\system32\ComCtl32.ocx (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1960408961-261478967-682003330-1004_Classes\CLSID\{58DA8D8F-9D6A-101B-AFC0-4210102A8DA7}\InprocServer32 -> C:\WINDOWS\system32\ComCtl32.ocx (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1960408961-261478967-682003330-1004_Classes\CLSID\{612A8624-0FB3-11CE-8747-524153480004}\InprocServer32 -> C:\WINDOWS\system32\ComCtl32.ocx (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1960408961-261478967-682003330-1004_Classes\CLSID\{648A5600-2C6E-101B-82B6-000000000014}\InprocServer32 -> C:\WINDOWS\system32\MSCOMM32.OCX (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1960408961-261478967-682003330-1004_Classes\CLSID\{6B7E638F-850A-101B-AFC0-4210102A8DA7}\InprocServer32 -> C:\WINDOWS\system32\ComCtl32.ocx (Microsoft Corporation -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1960408961-261478967-682003330-1004_Classes\CLSID\{97090E2F-3062-4459-855B-014F0D3CDBB1}\InprocServer32 -> C:\Program Files\Windows Desktop Search\deskbar.dll (Microsoft Windows -> Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1960408961-261478967-682003330-1004_Classes\CLSID\{9ED94440-E5E8-101B-B9B5-444553540000}\InprocServer32 -> C:\WINDOWS\system32\ComCtl32.ocx (Microsoft Corporation -> Microsoft Corporation)
SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} - C:\WINDOWS\system32\shell32.dll (Microsoft Windows Component Publisher -> Microsoft Corporation)
SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - C:\WINDOWS\system32\SHELL32.dll (Microsoft Windows Component Publisher -> Microsoft Corporation)
SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\WINDOWS\system32\webcheck.dll (Microsoft Windows -> Microsoft Corporation)
SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - C:\WINDOWS\system32\stobject.dll (Microsoft Windows Component Publisher -> Microsoft Corporation)
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll (Microsoft Windows Component Publisher -> Microsoft Corporation)
ShellExecuteHooks: URL Exec Hook - {AEB6717E-7E19-11d0-97EE-00C04FD91972} - C:\WINDOWS\system32\shell32.dll [8466944 2012-06-08] (Microsoft Windows Component Publisher -> Microsoft Corporation)
ShellExecuteHooks: Windows Desktop Search Namespace Manager - {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [304128 2009-05-24] (Microsoft Corporation) [File not signed]
ShellExecuteHooks: SABShellExecuteHook Class - {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [115440 2013-05-07] (SUPERAntiSpyware.com -> SuperAdBlocker.com)
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync32.dll [2017-10-09] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync32.dll [2017-10-09] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync32.dll [2017-10-09] (Google Inc -> Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Alwil Software\Avast5\ashShell.dll [2018-12-08] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) [File not signed]
ContextMenuHandlers1: [Autodesk.DWF.ContextMenu] -> {6C18531F-CA85-45F7-8278-FF33CF0A5964} => C:\Program Files\Common Files\Autodesk Shared\DWF Common\DWFShellExtension.dll [2009-01-13] (Autodesk, Inc -> Autodesk, Inc.)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Alwil Software\Avast5\ashShell.dll [2018-12-08] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => -> No File
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu32.dll [2017-10-09] (Google Inc -> Google)
ContextMenuHandlers1: [TzShell] -> {B38FE8E9-5DFC-4D58-8459-1E3AC5165E34} => C:\Program Files\TUGZip\TzShell.dll [2006-05-14] () [File not signed]
ContextMenuHandlers1: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Documents and Settings\admin\Plocha\win rar 371cz\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Alwil Software\Avast5\ashShell.dll [2018-12-08] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) [File not signed]
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu32.dll [2017-10-09] (Google Inc -> Google)
ContextMenuHandlers5: [00nView] -> {1E9B04FB-F9E5-4718-997B-B8DA88302A48} => C:\Program Files\NVIDIA Corporation\nview\nvshell.dll [2000-01-01] (NVIDIA Corporation -> )
ContextMenuHandlers5: [NvCplDesktopContext] -> {A70C977A-BF00-412C-90B7-034C51DA2439} => C:\WINDOWS\system32\nvcpl.dll [2013-01-31] (NVIDIA Corporation -> NVIDIA Corporation)
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-04-30] (Igor Pavlov) [File not signed]
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Alwil Software\Avast5\ashShell.dll [2018-12-08] (AVAST Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => -> No File
ContextMenuHandlers6: [TzShell] -> {B38FE8E9-5DFC-4D58-8459-1E3AC5165E34} => C:\Program Files\TUGZip\TzShell.dll [2006-05-14] () [File not signed]
ContextMenuHandlers6: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Documents and Settings\admin\Plocha\win rar 371cz\rarext.dll [2019-04-27] (win.rar GmbH -> Alexander Roshal)
==================== Codecs (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Drivers32: [msacm.trspch] => C:\WINDOWS\system32\tssoft32.acm [8192 2004-08-18] (Microsoft Windows Component Publisher -> DSP GROUP, INC.)
HKLM\...\Drivers32: [vidc.I420] => C:\WINDOWS\system32\msh263.drv [294912 2008-04-14] (Microsoft Windows Component Publisher -> Microsoft Corporation)
HKLM\...\Drivers32: [vidc.iv31] => C:\WINDOWS\system32\ir32_32.dll [199168 2004-08-18] (Microsoft Windows Component Publisher -> )
HKLM\...\Drivers32: [vidc.iv32] => C:\WINDOWS\system32\ir32_32.dll [199168 2004-08-18] (Microsoft Windows Component Publisher -> )
HKLM\...\Drivers32: [vidc.iv41] => C:\WINDOWS\system32\ir41_32.ax [848384 2008-04-14] (Microsoft Windows Component Publisher -> Intel Corporation)
HKLM\...\Drivers32: [msacm.msg723] => C:\WINDOWS\system32\msg723.acm [118784 2004-08-18] (Microsoft Windows Component Publisher -> Microsoft Corporation)
HKLM\...\Drivers32: [vidc.M263] => C:\WINDOWS\system32\msh263.drv [294912 2008-04-14] (Microsoft Windows Component Publisher -> Microsoft Corporation)
HKLM\...\Drivers32: [vidc.M261] => C:\WINDOWS\system32\msh261.drv [188416 2008-04-14] (Microsoft Windows Component Publisher -> Microsoft Corporation)
HKLM\...\Drivers32: [msacm.msaudio1] => C:\WINDOWS\system32\msaud32.acm [282654 2009-09-01] (Microsoft Windows Component Publisher -> Microsoft Corporation)
HKLM\...\Drivers32: [msacm.sl_anet] => C:\WINDOWS\system32\sl_anet.acm [86016 2008-04-14] (Microsoft Windows Component Publisher -> Sipro Lab Telecom Inc.)
HKLM\...\Drivers32: [msacm.iac2] => C:\WINDOWS\system32\iac25_32.ax [199680 2008-04-14] (Microsoft Windows Component Publisher -> Intel Corporation)
HKLM\...\Drivers32: [vidc.iv50] => C:\WINDOWS\system32\ir50_32.dll [755200 2008-04-14] (Microsoft Windows Component Publisher -> Intel Corporation)
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
WMI:subscription\__FilterToConsumerBinding->\\.\root\subscription:MSFT_UCScenarioControl.Name=\"Microsoft WMI Updating Consumer Scenario Control\"",Filter="\\.\root\subscription:__EventFilter.Name=\"Microsoft WMI Updating Consumer Scenario Control\"::
WMI:subscription\__EventFilter->Microsoft WMI Updating Consumer Scenario Control::[Query => SELECT * FROM __InstanceOperationEvent WHERE TargetInstance ISA 'MSFT_UCScenario']
Shortcut: C:\Documents and Settings\admin\Nabídka Start\Programy\Billiard Simulator\DarXide Games.lnk -> hxxp://www.darxidegames.co
ShortcutWithArgument: C:\Documents and Settings\All Users\Nabídka Start\Programy\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> "C:\Documents and Settings\All Users\Nabídka Start\Programy\Google Chrome.lnk"
ShortcutWithArgument: C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> "C:\Documents and Settings\All Users\Plocha\Google Chrome.lnk"
==================== Loaded Modules (Whitelisted) =============
2007-01-04 23:45 - 2002-07-04 09:38 - 000053248 _____ () [File not signed] C:\Program Files\ArcSoft\Software Suite\PhotoImpression\share\pihook.dll
2018-01-12 21:24 - 2016-09-12 14:53 - 048936448 _____ () [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\libcef.dll
2009-09-20 11:57 - 2005-09-05 19:52 - 001355776 _____ () [File not signed] C:\Program Files\TUGZip\Plugins\TzArchive10.tgp
2009-09-20 11:57 - 2005-02-17 22:15 - 000077824 _____ () [File not signed] C:\Program Files\TUGZip\Plugins\TzImage10.tgp
2009-09-20 11:57 - 2006-05-14 12:03 - 000655360 _____ () [File not signed] C:\Program Files\TUGZip\TzShell.dll
2009-02-27 17:26 - 2001-10-28 16:42 - 000116224 _____ () [File not signed] C:\WINDOWS\system32\pdfcmnnt.dll
2009-09-20 11:57 - 2003-08-29 22:51 - 000156160 _____ () [File not signed] C:\WINDOWS\system32\unrar3.dll
2019-04-12 12:01 - 2000-01-01 01:00 - 000167936 _____ () [File not signed] C:\WINDOWS\system32\ustor.dll
2009-02-27 17:20 - 2003-09-16 01:19 - 000010240 _____ () [File not signed] C:\WINDOWS\system32\virport.dll
2012-08-10 15:51 - 2012-08-10 15:51 - 000434176 _____ (Apache Software Foundation) [File not signed] C:\Program Files\OpenOffice.org 3\Basis\program\shlxthdl\shlxthdl.dll
2020-04-14 10:26 - 2020-04-14 10:26 - 000379904 _____ (Avast Software s.r.o. -> AVAST Software) [File not signed] [File is in use] C:\Program Files\Alwil Software\Avast5\defs\20041300\aswArray.dll
2020-04-14 10:26 - 2020-04-14 10:26 - 000511136 _____ (Avast Software s.r.o. -> AVAST Software) [File not signed] [File is in use] C:\Program Files\Alwil Software\Avast5\defs\20041300\aswCmnBS.dll
2020-04-14 10:26 - 2020-04-14 10:26 - 000434608 _____ (Avast Software s.r.o. -> AVAST Software) [File not signed] [File is in use] C:\Program Files\Alwil Software\Avast5\defs\20041300\aswCmnIS.dll
2020-04-14 10:26 - 2020-04-14 10:26 - 000158856 _____ (Avast Software s.r.o. -> AVAST Software) [File not signed] [File is in use] C:\Program Files\Alwil Software\Avast5\defs\20041300\aswCmnOS.dll
2020-04-14 10:26 - 2020-04-14 10:26 - 001626704 _____ (Avast Software s.r.o. -> AVAST Software) [File not signed] [File is in use] C:\Program Files\Alwil Software\Avast5\defs\20041300\aswEngin.dll
2020-04-14 10:26 - 2020-04-14 10:26 - 000615976 _____ (Avast Software s.r.o. -> AVAST Software) [File not signed] [File is in use] C:\Program Files\Alwil Software\Avast5\defs\20041300\aswFiDb.dll
2020-04-14 10:26 - 2020-04-14 10:26 - 000452776 _____ (Avast Software s.r.o. -> AVAST Software) [File not signed] [File is in use] C:\Program Files\Alwil Software\Avast5\defs\20041300\aswRep.dll
2020-04-14 10:27 - 2020-04-14 10:27 - 000045208 _____ (Avast Software s.r.o. -> AVAST Software) [File not signed] [File is in use] C:\Program Files\Alwil Software\Avast5\defs\20041300\fwAux.dll
2020-04-14 10:26 - 2020-04-14 10:26 - 000538528 _____ (Avast Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\Alwil Software\Avast5\defs\20041300\aswCleanerDLL.dll
2018-01-12 21:24 - 2019-07-25 20:24 - 000514944 _____ (AVAST Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\aswCmnBS.dll
2018-01-12 21:24 - 2019-07-25 20:24 - 000359536 _____ (AVAST Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\aswCmnIS.dll
2018-01-12 21:24 - 2019-07-25 20:24 - 000151880 _____ (AVAST Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\aswCmnOS.dll
2018-05-15 14:12 - 2019-07-25 20:24 - 000094032 _____ (AVAST Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\aswIP.dll
2018-01-12 21:24 - 2019-07-25 20:24 - 000767544 _____ (AVAST Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\aswProperty.dll
2018-01-12 21:24 - 2019-07-25 20:24 - 001264448 _____ (AVAST Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\AvChrome.dll
2018-01-12 21:24 - 2019-07-25 20:24 - 001954456 _____ (AVAST Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\burger_client.dll
2018-05-15 14:12 - 2019-07-25 20:24 - 000895672 _____ (AVAST Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\commchannel.dll
2018-01-25 21:24 - 2019-07-25 20:24 - 000652432 _____ (AVAST Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\CommonUI.dll
2018-01-25 21:24 - 2019-07-25 20:24 - 000043936 _____ (AVAST Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\dll_loader.dll
2018-01-12 21:24 - 2019-07-25 20:24 - 000365208 _____ (AVAST Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\event_manager.dll
2018-01-12 21:24 - 2019-07-25 20:24 - 000394168 _____ (AVAST Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\event_manager_burger.dll
2018-01-12 21:24 - 2019-07-25 20:24 - 000333688 _____ (AVAST Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\event_routing.dll
2018-01-12 21:24 - 2019-07-25 20:24 - 000406528 _____ (AVAST Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\event_routing_rpc.dll
2018-01-12 21:24 - 2019-07-25 20:24 - 000141528 _____ (AVAST Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\log.dll
2018-01-25 21:24 - 2019-07-25 20:24 - 000044448 _____ (AVAST Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\module_lifetime.dll
2018-01-25 21:24 - 2019-07-25 20:24 - 000192688 _____ (AVAST Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\network_notifications.dll
2019-04-12 10:41 - 2019-07-25 20:24 - 000275872 _____ (AVAST Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\serialization.dll
2019-01-18 13:44 - 2019-10-11 13:13 - 002059288 _____ (AVAST Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\swhealthex2.dll
2018-01-12 21:24 - 2019-07-25 20:24 - 000279496 _____ (AVAST Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\tasks_core.dll
2018-05-15 14:12 - 2019-07-25 20:24 - 000833696 _____ (AVAST Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\vaarclient.dll
2018-10-23 06:28 - 2018-10-23 06:28 - 002387776 _____ (AVAST Software s.r.o. -> The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Alwil Software\Avast5\libcrypto-1_1.dll
2018-10-23 06:28 - 2018-10-23 06:28 - 000512832 _____ (AVAST Software s.r.o. -> The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files\Alwil Software\Avast5\libssl-1_1.dll
2018-04-30 16:00 - 2018-04-30 16:00 - 000049664 _____ (Igor Pavlov) [File not signed] C:\Program Files\7-Zip\7-zip.dll
2008-05-26 21:19 - 2009-05-24 21:41 - 000304128 ____N (Microsoft Corporation) [File not signed] C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll
2020-02-28 14:32 - 2020-02-28 14:32 - 000104272 _____ (Piriform Software Ltd -> ) [File not signed] C:\Program Files\CCleaner\lang\lang-1029.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{1a3e09be-1e45-494b-9174-d7385b45bbf5} => ""=""
==================== Association (Whitelisted) =================
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
HKLM\...\batfile\DefaultIcon: %SystemRoot%\System32\shell32.dll,-153 <==== ATTENTION
==================== Internet Explorer (Version 8) (Whitelisted) ==========
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-1960408961-261478967-682003330-1004\Software\Microsoft\Internet Explorer\Main,Start Page =
HKU\S-1-5-21-1960408961-261478967-682003330-1004\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/cs-cz/?ocid=iehp
URLSearchHook: [S-1-5-21-1960408961-261478967-682003330-1192] ATTENTION => Default URLSearchHook is missing
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} hxxp://download.eset.com/special/eos/OnlineScanner.cab
Handler: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll [2007-11-08] (Logitech Inc.) [File not signed]
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2004-08-18 13:00 - 2020-04-14 10:09 - 000000000 _____ C:\WINDOWS\system32\drivers\etc\hosts
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-1960408961-261478967-682003330-1004\Control Panel\Desktop\\Wallpaper -> C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Pozadí plochy.bmp
HKU\S-1-5-21-1960408961-261478967-682003330-1192\Control Panel\Desktop\\Wallpaper -> (Žádný)
DNS Servers: 10.78.196.1 - 10.109.255.254
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName3 -> C:\WINDOWS\system32\ipconf.tsp (Microsoft Windows Component Publisher -> Microsoft Corporation)
HKLM\software\microsoft\Windows\CurrentVersion\Telephony\Providers => ProviderFileName4 -> C:\WINDOWS\system32\h323.tsp (Microsoft Windows Component Publisher -> Microsoft Corporation)
Windows Firewall is disabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
DomainProfile\AuthorizedApplications: [C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe] => Enabled:Logitech Desktop Messenger
StandardProfile\AuthorizedApplications: [C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe] => Enabled:Logitech Desktop Messenger
StandardProfile\AuthorizedApplications: [C:\Documents and Settings\admin\Plocha\Hry\Widelands\widelands.exe] => Enabled:widelands
StandardProfile\AuthorizedApplications: [C:\Documents and Settings\admin\Plocha\Hry\Freeciv-2.0.8-gtk2\civserver.exe] => Enabled:civserver
StandardProfile\AuthorizedApplications: [C:\Program Files\Java\jre1.6.0_07\bin\javaw.exe] => Enabled:Java(TM) Platform SE binary
StandardProfile\AuthorizedApplications: [C:\Program Files\Java\jre6\bin\javaw.exe] => Enabled:Java(TM) Platform SE binary
StandardProfile\AuthorizedApplications: [C:\Program Files\Google\Google Earth\plugin\geplugin.exe] => Enabled:Google Earth
StandardProfile\AuthorizedApplications: [C:\Documents and Settings\admin\Plocha\Hry\Ping-Pong\MainP.dat] => Disabled:fullrus
StandardProfile\AuthorizedApplications: [C:\Program Files\iTunes\iTunes.exe] => Enabled:iTunes
StandardProfile\AuthorizedApplications: [C:\Program Files\Google\Chrome\Application\chrome.exe] => Enabled:Google Chrome
StandardProfile\AuthorizedApplications: [C:\Program Files\HP\HP DeskJet 3700 series\Bin\DeviceSetup.exe] => :LocalSubNet:Enabled:Instalace zařízení HP (HP DeskJet 3700 series)
StandardProfile\AuthorizedApplications: [C:\Program Files\HP\HP DeskJet 3700 series\Bin\HPNetworkCommunicatorCom.exe] => :LocalSubNet:Enabled:Síťový komunikační program HP COM (HP DeskJet 3700 series)
StandardProfile\AuthorizedApplications: [C:\Program Files\Mozilla Firefox\firefox.exe] => Enabled:Firefox (C:\Program Files\Mozilla Firefox)
StandardProfile\AuthorizedApplications: [C:\Program Files\Alwil Software\Avast5\AvEmUpdate.exe] => Enabled:Avast Emergency Update
StandardProfile\AuthorizedApplications: [C:\Program Files\CCleaner\CCUpdate.exe] => Enabled:CCleaner Update
StandardProfile\AuthorizedApplications: [C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe] => Enabled:Daemonu.exe
StandardProfile\GloballyOpenPorts: [5357:TCP] => Enabled:WS-Eventing TCP Port 5357
StandardProfile\GloballyOpenPorts: [5985:TCP] => Disabled:Vzdálená správa systému Windows
StandardProfile\GloballyOpenPorts: [80:TCP] => Disabled:Vzdálená správa systému Windows – režim kompatibility (HTTP-In)
==================== Restore Points =========================
28-11-2020 15:15:47 Kontrolní bod systému
29-11-2020 22:28:41 Kontrolní bod systému
30-11-2020 23:04:42 Kontrolní bod systému
01-12-2020 23:41:28 Kontrolní bod systému
03-12-2020 18:34:58 Kontrolní bod systému
04-12-2020 21:46:20 Kontrolní bod systému
06-12-2020 15:36:36 Kontrolní bod systému
07-12-2020 18:51:52 Kontrolní bod systému
08-12-2020 22:49:12 Kontrolní bod systému
10-12-2020 00:07:20 Kontrolní bod systému
11-12-2020 19:49:58 Kontrolní bod systému
13-12-2020 00:51:45 Kontrolní bod systému
14-12-2020 15:28:44 Kontrolní bod systému
15-12-2020 17:48:31 Kontrolní bod systému
==================== Faulty Device Manager Devices ============
Name: avast! SecureLine TAP Adapter v3
Description: avast! SecureLine TAP Adapter v3
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: TAP-Windows Provider V9
Service: aswTap
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: ========================
Application errors:
==================
Error: (12/16/2020 04:01:40 PM) (Source: crypt32) (EventID: 11) (User: )
Description: Extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab> se nezdařilo. Chyba: Byl zadán neplatný algoritmus.
Error: (12/16/2020 04:01:40 PM) (Source: crypt32) (EventID: 11) (User: )
Description: Extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab> se nezdařilo. Chyba: Byl zadán neplatný algoritmus.
Error: (12/16/2020 04:01:40 PM) (Source: crypt32) (EventID: 11) (User: )
Description: Extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab> se nezdařilo. Chyba: Byl zadán neplatný algoritmus.
Error: (12/16/2020 04:01:39 PM) (Source: crypt32) (EventID: 11) (User: )
Description: Extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab> se nezdařilo. Chyba: Byl zadán neplatný algoritmus.
Error: (12/16/2020 04:01:38 PM) (Source: crypt32) (EventID: 11) (User: )
Description: Extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab> se nezdařilo. Chyba: Byl zadán neplatný algoritmus.
Error: (12/16/2020 04:01:38 PM) (Source: crypt32) (EventID: 11) (User: )
Description: Extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab> se nezdařilo. Chyba: Byl zadán neplatný algoritmus.
Error: (12/16/2020 04:01:37 PM) (Source: crypt32) (EventID: 11) (User: )
Description: Extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab> se nezdařilo. Chyba: Byl zadán neplatný algoritmus.
Error: (12/16/2020 04:01:37 PM) (Source: crypt32) (EventID: 11) (User: )
Description: Extrakce kořenového seznamu jiného výrobce ze souboru CAB pro automatickou aktualizaci v: <http://www.download.windowsupdate.com/m ... ootstl.cab> se nezdařilo. Chyba: Byl zadán neplatný algoritmus.
System errors:
=============
Error: (12/16/2020 03:10:16 PM) (Source: Windows Update Agent) (EventID: 16) (User: )
Description: Připojení se nezdařilo: Připojení ke službě automatických aktualizací nelze navázat. Stažení a instalaci aktualizací podle tohoto plánu nelze spustit. Pokus o navázání spojení bude opakován.
Error: (12/16/2020 11:21:19 AM) (Source: 0) (EventID: 1) (User: )
Description: Event-ID 1
Error: (12/16/2020 11:21:10 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Avast Antivirus neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (12/16/2020 11:21:10 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Vypršel časový limit (30000 milisekund) čekání na připojení služby Avast Antivirus.
Error: (12/15/2020 06:58:55 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Zařazování tisku byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (12/15/2020 04:30:20 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba modelu COM pro zápis na disk CD (IMAPI) neuspěla při spuštění v důsledku následující chyby:
Služba neodpověděla na řídicí nebo zahajovací požadavek dostatečně včas.
Error: (12/15/2020 04:30:20 PM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Vypršel časový limit (30000 milisekund) čekání na připojení služby Služba modelu COM pro zápis na disk CD (IMAPI).
Error: (12/15/2020 04:29:32 PM) (Source: 0) (EventID: 1) (User: )
Description: Event-ID 1
==================== Memory info ===========================
BIOS: American Megatrends Inc. A_M_I - 3001103 03/03/2011
Motherboard: ASRock N68C-S UCC
Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 3800+
Percentage of memory in use: 99%
Total physical RAM: 895.23 MB
Available physical RAM: 6.76 MB
Total Virtual: 2166.28 MB
Available Virtual: 704.38 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:186.3 GB) (Free:142.65 GB) NTFS ==>[drive with boot components (Windows XP)]
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (Size: 186.3 GB) (Disk ID: 1AE61AE5)
Partition 1: (Active) - (Size=186.3 GB) - (Type=07 NTFS)
==================== End of Addition.txt =======================
-
TomášzePlzně
- Návštěvník
- Příspěvky: 110
- Registrován: 06 srp 2012 19:15
Re: pc se někdy zasekne
A tady je druhý
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 14-12-2020
Ran by admin (administrator) on AMD3000 (16-12-2020 16:10:57)
Running from C:\Documents and Settings\admin\Plocha
Loaded Profiles: admin & UpdatusUser
Platform: Microsoft Windows XP Home Edition Service Pack 3 (X86) Language: Čeština
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\WINDOWS\system32\UMonit.exe
(AVAST Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\TuneupSvc.exe
(AVAST Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\TuneupUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\Alwil Software\Avast5\afwServ.exe
(Foxit Software Incorporated -> Foxit Software Inc.) C:\Program Files\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Update\1.3.36.52\GoogleCrashHandler.exe
(Macrovision Corporation -> Macrovision Corporation) C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
(Microsoft Windows Component Publisher -> Microsoft Corporation) C:\WINDOWS\system32\alg.exe
(Microsoft Windows Component Publisher -> Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner.exe
(SUPERAntiSpyware.com -> SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore.exe
(Support.com Inc -> SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
(VIA Technologies Inc. -> VIA Technologies, Inc.) C:\WINDOWS\system32\KaraokeSer.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AppleSyncNotifier] => C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe [59240 2011-11-02] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2015-03-20] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Alwil Software\Avast5\AvLaunch.exe [242392 2018-12-08] (AVAST Software s.r.o. -> AVAST Software)
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.) [File not signed]
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [157456 2015-09-12] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [seznam-listicka-distribuce] => C:\Program Files\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] (Seznam.cz, a.s. -> )
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [HDAudDeck] => C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe [41134712 2000-01-01] (VIA Technologies Inc. -> VIA Technologies, Inc.)
HKLM\...\Run: [UMonit] => C:\WINDOWS\system32\UMonit.exe********************************************************************************************************************************* [200704 2000-01-01] () [File not signed]
HKLM\...\Run: [nwiz] => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [1982312 2000-01-01] (NVIDIA Corporation -> )
HKLM\...\Run: [ISUSPM] => C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [213936 2006-03-20] (Macrovision Corporation -> Macrovision Corporation)
HKU\S-1-5-21-1960408961-261478967-682003330-1004\...\Run: [MSMSGS] => C:\Program Files\Messenger\msmsgs.exe [1695232 2008-04-14] (Microsoft Windows Component Publisher -> Microsoft Corporation)
HKU\S-1-5-21-1960408961-261478967-682003330-1004\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [10076592 2020-12-16] (Support.com Inc -> SUPERAntiSpyware)
HKU\S-1-5-21-1960408961-261478967-682003330-1004\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner.exe [17085056 2020-02-28] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1960408961-261478967-682003330-1004\Software\Policies\...\system: [disablecmd] 0
HKU\S-1-5-21-1960408961-261478967-682003330-1004\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\ssmyst.scr [18944 2008-04-14] (Microsoft Windows Component Publisher -> Microsoft Corporation)
HKLM\...\Windows NT x86\Print Processors\Canon iP4200 Print Processor: C:\Windows\System32\spool\prtprocs\W32X86\CNMPD78.DLL [20992 2005-08-26] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows NT x86\Print Processors\MS_XPS: C:\Windows\System32\spool\prtprocs\W32X86\filterpipelineprintproc.dll [89088 2008-07-06] (Microsoft Windows Component Publisher -> Microsoft Corporation)
HKLM\...\Windows NT x86\Print Processors\winprint: localspl.dll
HKLM\...\Print\Monitors\BJ Language Monitor: C:\WINDOWS\system32\cnbjmon.dll [49152 2008-04-14] (Microsoft Windows Component Publisher -> Microsoft Corporation)
HKLM\...\Print\Monitors\Canon BJ Language Monitor iP4200: C:\WINDOWS\system32\CNMLM78.DLL [140288 2005-08-26] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\HP 0653 Status Monitor: C:\WINDOWS\system32\hpinksts0653LM.dll [316088 2016-02-05] (Hewlett Packard -> HP Inc.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP DeskJet 3700 series): C:\WINDOWS\system32\HPDiscoPM0653.dll [659600 2016-02-21] (Hewlett Packard -> HP Inc.)
HKLM\...\Print\Monitors\PDFCreator: C:\WINDOWS\system32\pdfcmnnt.dll [116224 2001-10-28] () [File not signed]
HKLM\...\Print\Monitors\PJL Language Monitor: C:\WINDOWS\system32\pjlmon.dll [15360 2008-04-14] (Microsoft Windows Component Publisher -> Microsoft Corporation)
HKLM\...\Print\Monitors\virprnt: C:\WINDOWS\system32\virport.dll [10240 2003-09-16] () [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [<{12d0ed0d-0ee0-4f90-8827-78cefb8f4988}] -> C:\WINDOWS\system32\ieudinit.exe [2009-03-08] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] -> C:\WINDOWS\inf\unregmp2.exe [2007-06-27] (Microsoft Windows Component Publisher -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}] -> C:\WINDOWS\system32\shmgrate.exe [2008-04-14] (Microsoft Windows Component Publisher -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2179C5D3-EBFF-11CF-B6FD-00AA00B4E220}] ->
HKLM\Software\Microsoft\Active Setup\Installed Components: [{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] ->
HKLM\Software\Microsoft\Active Setup\Installed Components: [{44BBA840-CC51-11CF-AAFA-00AA00B6015C}] -> C:\Program Files\Outlook Express\setup50.exe [2008-04-14] (Microsoft Windows Component Publisher -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{44BBA842-CC51-11CF-AAFA-00AA00B6015B}] -> C:\WINDOWS\system32\advpack.dll [2009-03-08] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{5945c046-1e7d-11d1-bc44-00c04fd912be}] -> C:\WINDOWS\system32\advpack.dll [2009-03-08] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{6BF52A52-394A-11d3-B153-00C04F79FAA6}] -> C:\WINDOWS\system32\advpack.dll [2009-03-08] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{7790769C-0471-11d2-AF11-00C04FA35D02}] -> C:\Program Files\Outlook Express\setup50.exe [2008-04-14] (Microsoft Windows Component Publisher -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\49.0.2623.112\Installer\chrmstp.exe [2017-10-15] (Google Inc -> Google Inc.)
HKLM\Software\...\Winlogon\GPExtensions: [{C631DF4C-088F-4156-B058-4375F0853CD8}] -> C:\WINDOWS\System32\cscui.dll [2008-04-14] (Microsoft Windows Component Publisher -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{c6dc5466-785a-11d2-84d0-00c04fb169f7}] -> appmgmts.dll
IFEO\itunes.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\softwareupdate.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
SubSystems: [Windows] => "%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,3072,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestThreads=16" <==== ATTENTION
Startup: C:\Documents and Settings\admin\Nabídka Start\Programy\Po spuštění\Sledování výstrah kazety - .lnk [2018-08-02]
ShortcutAndArgument: Sledování výstrah kazety - .lnk -> C:\WINDOWS\system32\RunDll32.exe => "C:\Program Files\HP\HP DeskJet 3700 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN69J2D1HP06H6;CONNECTION=USB;MONITOR=1;
Startup: C:\Documents and Settings\admin\Nabídka Start\Programy\Po spuštění\Sledování výstrah kazety - HP DeskJet 3700 series.lnk [2020-12-16]
ShortcutAndArgument: Sledování výstrah kazety - HP DeskJet 3700 series.lnk -> C:\WINDOWS\system32\RunDll32.exe => "C:\Program Files\HP\HP DeskJet 3700 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN69J2D1HP06H6;CONNECTION=USB;MONITOR=1;
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Avast Cleanup Premium.lnk [2018-01-12]
ShortcutTarget: Avast Cleanup Premium.lnk -> C:\Program Files\AVAST Software\Avast Cleanup\TuneupUI.exe (AVAST Software s.r.o. -> AVAST Software) [File not signed]
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Logitech SetPoint.lnk [2006-08-15]
ShortcutTarget: Logitech SetPoint.lnk -> C:\Program Files\Logitech\SetPoint\KEM.exe (Logitech Inc.) [File not signed]
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\LUMIX Simple Viewer.lnk [2006-09-07]
ShortcutTarget: LUMIX Simple Viewer.lnk -> C:\Program Files\Panasonic\LUMIXSimpleViewer\PhLeAutoRun.exe (Matsushita Electric Industrial Co., Ltd.) [File not signed]
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Microsoft Office.lnk [2006-08-19]
ShortcutTarget: Microsoft Office.lnk -> C:\Program Files\Microsoft Office\Office\OSA9.EXE (Microsoft Corporation) [File not signed]
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Windows Search.lnk [2018-07-31]
ShortcutTarget: Windows Search.lnk -> C:\Program Files\Windows Desktop Search\WindowsSearch.exe (Microsoft Windows -> Microsoft Corporation)
==================== Scheduled Tasks=============================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player NPAPI Notifier.job => C:\WINDOWS\system32\Macromed\Flash\FlashUtil32_32_0_0_465_Plugin.exe
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\AppleSoftwareUpdate.job => C:\Program Files\Apple Software Update\SoftwareUpdate.exe
Task: C:\WINDOWS\Tasks\Avast Emergency Update.job => C:\Program Files\Alwil Software\Avast5\AvEmUpdate.exe
Task: C:\WINDOWS\Tasks\Avast TUNEUP Update.job => C:\Program Files\AVAST Software\Avast Cleanup\TUNEUpdate.exe
Task: C:\WINDOWS\Tasks\CCleaner Update.job => C:\CCUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task a8f24154-fd98-494d-89b1-989013281250.job => C:\Program Files\SUPERAntiSpyware\SASTask.exe C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 10.78.196.1 10.109.255.254
Tcpip\..\Interfaces\{DD57444A-2552-4D94-A78F-11C9D3C4C43F}: [DhcpNameServer] 10.78.196.1 10.109.255.254
FireFox:
========
FF ProfilePath: C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\8faakgqr.default-1483643606250 [2020-12-16]
FF Extension: (Avast Passwords) - C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\8faakgqr.default-1483643606250\Extensions\jid1-r1tDuNiNb4SEww@jetpack.xpi [2020-02-11] [UpdateUrl:hxxps://pamcdn.avast.com/pamcdn/extensions/firefox/update.json]
FF Extension: (Avast SafePrice | Comparison, deals, coupons) - C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\8faakgqr.default-1483643606250\Extensions\sp@avast.com.xpi [2019-02-06] [UpdateUrl:hxxps://firefoxext.avcdn.net/firefoxext/avast/sp/update.json]
FF Extension: (Hotfix for Firefox bug 1548973 (armagaddon 2.0) mitigation) - C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\8faakgqr.default-1483643606250\features\{b4c3caa4-ca75-43d5-8a63-1a7780d1f7cc}\hotfix-bug-1548973@mozilla.org.xpi [2019-06-16] [Legacy]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: (Microsoft .NET Framework Assistant) - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2015-01-18] [Legacy] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_32_0_0_465.dll [2020-12-08] (Adobe Inc. -> ) [File not signed]
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2015-09-04] (Apple Inc. -> )
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google) [File not signed]
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\itms.js [2015-09-09]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Documents and Settings\admin\Local Settings\Data aplikací\Google\Chrome\User Data\Default [2020-12-16]
CHR Notifications: Default -> hxxps://e-mostecko.pushcrew.com; hxxps://vedator.os.tc; hxxps://vedator.os.tc; hxxps://www.albinoblacksheep.com; hxxps://www.belfastlive.co.uk; hxxps://www.facebook.com; hxxps://www.facebook.com; hxxps://www.megaknihy.cz; hxxps://www.sisyfos.cz; hxxps://www.sisyfos.cz; hxxps://www.ubagroup.com; hxxps://www.youtube.com
CHR Extension: (Seznam doplněk - Email) - C:\Documents and Settings\admin\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2020-04-07]
CHR Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Documents and Settings\admin\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2020-06-16]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Documents and Settings\admin\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-03]
CHR Extension: (Seznam doplněk - Esko) - C:\Documents and Settings\admin\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2020-04-07]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKU\S-1-5-21-1960408961-261478967-682003330-1004\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig]
CHR HKU\S-1-5-21-1960408961-261478967-682003330-1004\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [143776 2017-01-31] (SUPERAntiSpyware.com -> SUPERAntiSpyware.com)
S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-08] (Adobe Inc. -> Adobe) [File not signed]
S3 aswbIDSAgent; C:\Program Files\Alwil Software\Avast5\aswidsagent.exe [6799632 2018-12-08] (AVAST Software s.r.o. -> AVAST Software)
S2 avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [324000 2018-12-08] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\Alwil Software\Avast5\afwServ.exe [338632 2018-12-08] (AVAST Software s.r.o. -> AVAST Software)
R2 CleanupPSvc; C:\Program Files\AVAST Software\Avast Cleanup\TuneupSvc.exe [10287216 2019-07-25] (AVAST Software s.r.o. -> AVAST Software) [File not signed]
R2 FoxitReaderService; C:\Program Files\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe [1659456 2018-04-17] (Foxit Software Incorporated -> Foxit Software Inc.)
R2 KaraokeService; C:\WINDOWS\system32\KaraokeSer.exe [88696 2000-01-01] (VIA Technologies Inc. -> VIA Technologies, Inc.)
S4 LightScribeService; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [73728 2005-12-18] (Hewlett-Packard Company) [File not signed]
S3 SwPrv; C:\WINDOWS\system32\dllhost.exe /Processid:{DEE5F2DF-4506-49EC-8B57-56116842D7BB} [5120 2008-04-14] (Microsoft Windows Component Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 acedrv11; C:\WINDOWS\system32\drivers\acedrv11.sys [501560 2008-01-23] (Protect Software GmbH -> Protect Software GmbH)
R3 Afc; C:\WINDOWS\System32\drivers\Afc.sys [11776 2005-02-23] (Arcsoft, Inc.) [File not signed]
S3 ALCXWDM; C:\WINDOWS\System32\drivers\ALCXWDM.SYS [3964736 2006-05-10] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.)
S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1656960 2000-01-01] (Creative) [File not signed]
R1 AmdK8; C:\WINDOWS\System32\DRIVERS\AmdK8.sys [36352 2005-03-09] (Microsoft Windows Publisher -> Advanced Micro Devices)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [167480 2018-12-08] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriverx.sys [188976 2018-12-08] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidshx.sys [165384 2018-12-08] (AVAST Software s.r.o. -> AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswblogx.sys [284256 2018-12-08] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbunivx.sys [57904 2018-12-08] (AVAST Software s.r.o. -> AVAST Software)
S3 aswHwid; C:\WINDOWS\System32\drivers\aswHwid.sys [42736 2018-12-08] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [40688 2018-12-08] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [135200 2019-01-18] (AVAST Software s.r.o. -> AVAST Software)
R0 aswNdis; C:\WINDOWS\System32\DRIVERS\aswNdis.sys [12112 2017-04-20] (ALWIL Software -> ALWIL Software)
R0 aswNdis2; C:\WINDOWS\System32\drivers\aswNdis2.sys [332280 2018-12-08] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr.sys [70640 2018-12-08] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [72800 2018-12-08] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [784552 2019-05-23] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [397984 2019-05-23] (AVAST Software s.r.o. -> AVAST Software)
S3 aswStmXP; C:\WINDOWS\System32\drivers\aswStmXP.sys [146584 2018-12-08] (AVAST Software s.r.o. -> AVAST Software)
S3 aswTap; C:\WINDOWS\System32\DRIVERS\aswTap.sys [35144 2014-07-11] (AVAST Software a.s. -> The OpenVPN Project)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [310200 2018-12-08] (AVAST Software s.r.o. -> AVAST Software)
R3 FIXUSTOR; C:\WINDOWS\System32\DRIVERS\fixustor.sys [12416 2000-01-01] (Microsoft Windows Hardware Compatibility Publisher -> Genesys Logic)
R3 HDAudBus; C:\WINDOWS\System32\DRIVERS\HDAudBus.sys [144384 2008-04-13] (Microsoft Windows Component Publisher -> Windows (R) Server 2003 DDK provider)
S3 irsir; C:\WINDOWS\System32\DRIVERS\irsir.sys [18688 2001-08-17] (Microsoft Windows Component Publisher -> Microsoft Corporation)
R3 L8042Kbd; C:\WINDOWS\System32\DRIVERS\L8042Kbd.sys [13105 2004-06-08] (Microsoft Windows Hardware Compatibility Publisher -> Logitech, Inc.)
S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1389056 2000-01-01] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd.)
R0 nvata; C:\WINDOWS\System32\DRIVERS\nvata.sys [105344 2006-08-21] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
R3 NVENETFD; C:\WINDOWS\System32\DRIVERS\NVENETFD.sys [70912 2000-01-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
R0 nvgts; C:\WINDOWS\System32\DRIVERS\nvgts.sys [168040 2000-01-01] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvnetbus; C:\WINDOWS\System32\DRIVERS\nvnetbus.sys [13824 2000-01-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
R3 pfc; C:\WINDOWS\System32\drivers\pfc.sys [21248 2003-09-20] (Padus, Inc.) [File not signed]
R3 Ptilink; C:\WINDOWS\System32\DRIVERS\ptilink.sys [17792 2004-08-18] (Microsoft Windows Component Publisher -> Parallel Technologies, Inc.)
R3 Rasirda; C:\WINDOWS\System32\DRIVERS\rasirda.sys [19584 2001-08-17] (Microsoft Windows Component Publisher -> Microsoft Corporation)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [12880 2011-07-22] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [67664 2011-07-12] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Windows Component Publisher -> Microsoft Corporation)
S3 Secdrv; C:\WINDOWS\System32\DRIVERS\secdrv.sys [20480 2007-11-13] (Microsoft Windows Component Publisher -> Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.)
R1 ssmdrv; C:\WINDOWS\System32\DRIVERS\ssmdrv.sys [28520 2010-03-25] (Avira GmbH -> Avira GmbH)
S3 taphss; C:\WINDOWS\System32\DRIVERS\taphss.sys [32768 2012-03-26] (AnchorFree Inc -> AnchorFree Inc)
R3 VIAHdAudAddService; C:\WINDOWS\System32\drivers\viahduaa.sys [2558200 2000-01-01] (VIA Technologies Inc. -> VIA Technologies, Inc.)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-12-16 16:10 - 2020-12-16 16:12 - 000024850 _____ C:\Documents and Settings\admin\Plocha\FRST.txt
2020-12-16 16:03 - 2020-12-16 16:03 - 002000384 _____ (Farbar) C:\Documents and Settings\admin\Plocha\FRST.exe
2020-12-16 11:42 - 2020-12-16 11:42 - 000000047 _____ C:\Documents and Settings\admin\Plocha\messenger.txt
2020-12-15 08:07 - 2020-12-15 08:07 - 000177856 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-12-15 08:01 - 2020-12-15 08:05 - 000000000 ____D C:\AdwCleaner
2020-12-15 07:56 - 2020-12-15 07:57 - 004102600 _____ C:\Documents and Settings\admin\Plocha\adwcleaner_6.046.exe
2020-12-13 15:46 - 2020-12-13 15:46 - 000000682 _____ C:\Documents and Settings\admin\Plocha\návod.txt
2020-12-13 15:41 - 2020-12-13 15:50 - 008447152 _____ (Malwarebytes) C:\Documents and Settings\admin\Plocha\adwcleaner_8.0.8.exe
2020-12-13 13:42 - 2020-12-13 13:42 - 001107968 _____ C:\Documents and Settings\admin\Plocha\RSIT.exe
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-12-16 16:12 - 2018-12-12 22:45 - 000000000 ____D C:\Documents and Settings\admin\Local Settings\Temp
2020-12-16 16:11 - 2018-12-11 20:05 - 000000000 ____D C:\FRST
2020-12-16 16:10 - 2006-08-15 19:55 - 000000000 ____D C:\Documents and Settings\admin\Plocha
2020-12-16 16:06 - 2015-07-16 19:43 - 000000940 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2020-12-16 15:45 - 2017-08-02 00:36 - 000000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2020-12-16 14:45 - 2006-08-15 19:54 - 000032508 _____ C:\WINDOWS\SchedLgU.Txt
2020-12-16 14:14 - 2013-03-01 11:57 - 000002187 _____ C:\Documents and Settings\All Users\Plocha\Safari.lnk
2020-12-16 12:49 - 2020-04-14 15:49 - 000000034 _____ C:\WINDOWS\AvEmUpdate.ini
2020-12-16 12:49 - 2017-04-20 11:23 - 000000360 ____H C:\WINDOWS\Tasks\Avast Emergency Update.job
2020-12-16 11:24 - 2010-11-24 16:14 - 000000000 ____D C:\Program Files\SUPERAntiSpyware
2020-12-16 11:23 - 2020-04-15 16:49 - 001105414 _____ C:\lsdb2.json
2020-12-16 11:21 - 2020-04-15 17:24 - 000000000 ____D C:\dwjobs
2020-12-16 11:21 - 2020-04-15 16:49 - 001105537 _____ C:\lsdb2.json.old
2020-12-16 11:21 - 2020-04-15 16:49 - 000019066 _____ C:\swh_stats.json
2020-12-16 11:21 - 2018-12-20 12:59 - 000000936 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2020-12-16 11:21 - 2018-01-12 21:24 - 000000372 ____H C:\WINDOWS\Tasks\Avast TUNEUP Update.job
2020-12-16 11:21 - 2017-10-24 21:27 - 000000282 ____H C:\WINDOWS\Tasks\CCleaner Update.job
2020-12-16 11:21 - 2016-06-13 23:48 - 000000000 _____ C:\WINDOWS\system32\last.dump
2020-12-16 11:21 - 2006-08-15 19:54 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-12-16 02:47 - 2006-08-15 19:55 - 000000178 ___SH C:\Documents and Settings\admin\ntuser.ini
2020-12-16 02:47 - 2006-08-15 19:55 - 000000000 ____D C:\Documents and Settings\admin
2020-12-16 02:00 - 2020-04-21 23:46 - 000000510 _____ C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task a8f24154-fd98-494d-89b1-989013281250.job
2020-12-15 16:31 - 2006-08-15 19:55 - 000000000 ___HD C:\Documents and Settings\admin\Local Settings\Data aplikací
2020-12-15 08:05 - 2019-04-12 12:35 - 000000178 ___SH C:\Documents and Settings\UpdatusUser\ntuser.ini
2020-12-15 08:05 - 2006-08-15 21:41 - 000000000 ___RD C:\Documents and Settings\All Users\Dokumenty
2020-12-15 07:58 - 2011-01-08 00:22 - 000000000 ____D C:\Documents and Settings\admin\Dokumenty\Stažené soubory
2020-12-14 15:04 - 2004-08-18 13:00 - 000011936 _____ C:\WINDOWS\system32\wpa.dbl
2020-12-13 13:44 - 2015-06-16 14:15 - 000000000 ____D C:\Program Files\trend micro
2020-12-13 12:51 - 2020-04-15 17:33 - 000000000 ____D C:\Backups
2020-12-13 12:51 - 2006-08-15 19:49 - 000000000 ____D C:\WINDOWS\system32\Macromed
2020-12-12 23:26 - 2018-03-13 18:45 - 000000946 _____ C:\WINDOWS\Tasks\Adobe Flash Player NPAPI Notifier.job
2020-12-08 16:45 - 2017-08-02 00:36 - 000842296 _____ (Adobe) C:\WINDOWS\system32\FlashPlayerApp.exe
2020-12-08 16:45 - 2017-08-02 00:36 - 000175160 _____ (Adobe) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2020-11-29 08:10 - 2017-11-16 21:55 - 000000000 ____D C:\Documents and Settings\admin\Plocha\Debility
2020-11-23 12:39 - 2006-08-19 18:12 - 000002545 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\Microsoft Word.lnk
2020-11-17 17:31 - 2020-04-15 16:48 - 000000000 ____D C:\log
==================== Files in the root of some directories ========
2006-08-19 17:20 - 2012-03-13 13:49 - 000018432 _____ () C:\Documents and Settings\admin\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2018-08-02 15:38 - 2018-08-02 15:38 - 000000125 _____ () C:\Documents and Settings\admin\Local Settings\Data aplikací\fusioncache.dat
2007-09-22 10:55 - 2007-09-22 10:55 - 000000305 _____ () C:\Documents and Settings\All Users\Data aplikací\addr_file.html
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 14-12-2020
Ran by admin (administrator) on AMD3000 (16-12-2020 16:10:57)
Running from C:\Documents and Settings\admin\Plocha
Loaded Profiles: admin & UpdatusUser
Platform: Microsoft Windows XP Home Edition Service Pack 3 (X86) Language: Čeština
Default browser: FF
Boot Mode: Normal
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\WINDOWS\system32\UMonit.exe
(AVAST Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\TuneupSvc.exe
(AVAST Software s.r.o. -> AVAST Software) [File not signed] C:\Program Files\AVAST Software\Avast Cleanup\TuneupUI.exe
(AVAST Software s.r.o. -> AVAST Software) C:\Program Files\Alwil Software\Avast5\afwServ.exe
(Foxit Software Incorporated -> Foxit Software Inc.) C:\Program Files\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe
(Google LLC -> Google LLC) C:\Program Files\Google\Update\1.3.36.52\GoogleCrashHandler.exe
(Macrovision Corporation -> Macrovision Corporation) C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe
(Microsoft Windows Component Publisher -> Microsoft Corporation) C:\WINDOWS\system32\alg.exe
(Microsoft Windows Component Publisher -> Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe <2>
(NVIDIA Corporation -> NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
(NVIDIA Corporation -> NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner.exe
(SUPERAntiSpyware.com -> SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore.exe
(Support.com Inc -> SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
(VIA Technologies Inc. -> VIA Technologies, Inc.) C:\WINDOWS\system32\KaraokeSer.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AppleSyncNotifier] => C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe [59240 2011-11-02] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2015-03-20] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\Alwil Software\Avast5\AvLaunch.exe [242392 2018-12-08] (AVAST Software s.r.o. -> AVAST Software)
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.) [File not signed]
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [157456 2015-09-12] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [seznam-listicka-distribuce] => C:\Program Files\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] (Seznam.cz, a.s. -> )
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [1022152 2014-12-19] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
HKLM\...\Run: [HDAudDeck] => C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe [41134712 2000-01-01] (VIA Technologies Inc. -> VIA Technologies, Inc.)
HKLM\...\Run: [UMonit] => C:\WINDOWS\system32\UMonit.exe********************************************************************************************************************************* [200704 2000-01-01] () [File not signed]
HKLM\...\Run: [nwiz] => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [1982312 2000-01-01] (NVIDIA Corporation -> )
HKLM\...\Run: [ISUSPM] => C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [213936 2006-03-20] (Macrovision Corporation -> Macrovision Corporation)
HKU\S-1-5-21-1960408961-261478967-682003330-1004\...\Run: [MSMSGS] => C:\Program Files\Messenger\msmsgs.exe [1695232 2008-04-14] (Microsoft Windows Component Publisher -> Microsoft Corporation)
HKU\S-1-5-21-1960408961-261478967-682003330-1004\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [10076592 2020-12-16] (Support.com Inc -> SUPERAntiSpyware)
HKU\S-1-5-21-1960408961-261478967-682003330-1004\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner.exe [17085056 2020-02-28] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-1960408961-261478967-682003330-1004\Software\Policies\...\system: [disablecmd] 0
HKU\S-1-5-21-1960408961-261478967-682003330-1004\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\ssmyst.scr [18944 2008-04-14] (Microsoft Windows Component Publisher -> Microsoft Corporation)
HKLM\...\Windows NT x86\Print Processors\Canon iP4200 Print Processor: C:\Windows\System32\spool\prtprocs\W32X86\CNMPD78.DLL [20992 2005-08-26] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Windows NT x86\Print Processors\MS_XPS: C:\Windows\System32\spool\prtprocs\W32X86\filterpipelineprintproc.dll [89088 2008-07-06] (Microsoft Windows Component Publisher -> Microsoft Corporation)
HKLM\...\Windows NT x86\Print Processors\winprint: localspl.dll
HKLM\...\Print\Monitors\BJ Language Monitor: C:\WINDOWS\system32\cnbjmon.dll [49152 2008-04-14] (Microsoft Windows Component Publisher -> Microsoft Corporation)
HKLM\...\Print\Monitors\Canon BJ Language Monitor iP4200: C:\WINDOWS\system32\CNMLM78.DLL [140288 2005-08-26] (Microsoft Windows Hardware Compatibility Publisher -> CANON INC.)
HKLM\...\Print\Monitors\HP 0653 Status Monitor: C:\WINDOWS\system32\hpinksts0653LM.dll [316088 2016-02-05] (Hewlett Packard -> HP Inc.)
HKLM\...\Print\Monitors\HP Discovery Port Monitor (HP DeskJet 3700 series): C:\WINDOWS\system32\HPDiscoPM0653.dll [659600 2016-02-21] (Hewlett Packard -> HP Inc.)
HKLM\...\Print\Monitors\PDFCreator: C:\WINDOWS\system32\pdfcmnnt.dll [116224 2001-10-28] () [File not signed]
HKLM\...\Print\Monitors\PJL Language Monitor: C:\WINDOWS\system32\pjlmon.dll [15360 2008-04-14] (Microsoft Windows Component Publisher -> Microsoft Corporation)
HKLM\...\Print\Monitors\virprnt: C:\WINDOWS\system32\virport.dll [10240 2003-09-16] () [File not signed]
HKLM\Software\Microsoft\Active Setup\Installed Components: [<{12d0ed0d-0ee0-4f90-8827-78cefb8f4988}] -> C:\WINDOWS\system32\ieudinit.exe [2009-03-08] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] -> C:\WINDOWS\inf\unregmp2.exe [2007-06-27] (Microsoft Windows Component Publisher -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}] -> C:\WINDOWS\system32\shmgrate.exe [2008-04-14] (Microsoft Windows Component Publisher -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2179C5D3-EBFF-11CF-B6FD-00AA00B4E220}] ->
HKLM\Software\Microsoft\Active Setup\Installed Components: [{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] ->
HKLM\Software\Microsoft\Active Setup\Installed Components: [{44BBA840-CC51-11CF-AAFA-00AA00B6015C}] -> C:\Program Files\Outlook Express\setup50.exe [2008-04-14] (Microsoft Windows Component Publisher -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{44BBA842-CC51-11CF-AAFA-00AA00B6015B}] -> C:\WINDOWS\system32\advpack.dll [2009-03-08] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{5945c046-1e7d-11d1-bc44-00c04fd912be}] -> C:\WINDOWS\system32\advpack.dll [2009-03-08] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{6BF52A52-394A-11d3-B153-00C04F79FAA6}] -> C:\WINDOWS\system32\advpack.dll [2009-03-08] (Microsoft Windows -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{7790769C-0471-11d2-AF11-00C04FA35D02}] -> C:\Program Files\Outlook Express\setup50.exe [2008-04-14] (Microsoft Windows Component Publisher -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\49.0.2623.112\Installer\chrmstp.exe [2017-10-15] (Google Inc -> Google Inc.)
HKLM\Software\...\Winlogon\GPExtensions: [{C631DF4C-088F-4156-B058-4375F0853CD8}] -> C:\WINDOWS\System32\cscui.dll [2008-04-14] (Microsoft Windows Component Publisher -> Microsoft Corporation)
HKLM\Software\...\Winlogon\GPExtensions: [{c6dc5466-785a-11d2-84d0-00c04fb169f7}] -> appmgmts.dll
IFEO\itunes.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
IFEO\softwareupdate.exe: [Debugger] "C:\Program Files\AVAST Software\Avast Cleanup\autoreactivator.exe"
SubSystems: [Windows] => "%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,3072,512 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestThreads=16" <==== ATTENTION
Startup: C:\Documents and Settings\admin\Nabídka Start\Programy\Po spuštění\Sledování výstrah kazety - .lnk [2018-08-02]
ShortcutAndArgument: Sledování výstrah kazety - .lnk -> C:\WINDOWS\system32\RunDll32.exe => "C:\Program Files\HP\HP DeskJet 3700 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN69J2D1HP06H6;CONNECTION=USB;MONITOR=1;
Startup: C:\Documents and Settings\admin\Nabídka Start\Programy\Po spuštění\Sledování výstrah kazety - HP DeskJet 3700 series.lnk [2020-12-16]
ShortcutAndArgument: Sledování výstrah kazety - HP DeskJet 3700 series.lnk -> C:\WINDOWS\system32\RunDll32.exe => "C:\Program Files\HP\HP DeskJet 3700 series\bin\HPStatusBL.dll",RunDLLEntry SERIALNUMBER=CN69J2D1HP06H6;CONNECTION=USB;MONITOR=1;
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Avast Cleanup Premium.lnk [2018-01-12]
ShortcutTarget: Avast Cleanup Premium.lnk -> C:\Program Files\AVAST Software\Avast Cleanup\TuneupUI.exe (AVAST Software s.r.o. -> AVAST Software) [File not signed]
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Logitech SetPoint.lnk [2006-08-15]
ShortcutTarget: Logitech SetPoint.lnk -> C:\Program Files\Logitech\SetPoint\KEM.exe (Logitech Inc.) [File not signed]
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\LUMIX Simple Viewer.lnk [2006-09-07]
ShortcutTarget: LUMIX Simple Viewer.lnk -> C:\Program Files\Panasonic\LUMIXSimpleViewer\PhLeAutoRun.exe (Matsushita Electric Industrial Co., Ltd.) [File not signed]
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Microsoft Office.lnk [2006-08-19]
ShortcutTarget: Microsoft Office.lnk -> C:\Program Files\Microsoft Office\Office\OSA9.EXE (Microsoft Corporation) [File not signed]
Startup: C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění\Windows Search.lnk [2018-07-31]
ShortcutTarget: Windows Search.lnk -> C:\Program Files\Windows Desktop Search\WindowsSearch.exe (Microsoft Windows -> Microsoft Corporation)
==================== Scheduled Tasks=============================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player NPAPI Notifier.job => C:\WINDOWS\system32\Macromed\Flash\FlashUtil32_32_0_0_465_Plugin.exe
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\AppleSoftwareUpdate.job => C:\Program Files\Apple Software Update\SoftwareUpdate.exe
Task: C:\WINDOWS\Tasks\Avast Emergency Update.job => C:\Program Files\Alwil Software\Avast5\AvEmUpdate.exe
Task: C:\WINDOWS\Tasks\Avast TUNEUP Update.job => C:\Program Files\AVAST Software\Avast Cleanup\TUNEUpdate.exe
Task: C:\WINDOWS\Tasks\CCleaner Update.job => C:\CCUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task a8f24154-fd98-494d-89b1-989013281250.job => C:\Program Files\SUPERAntiSpyware\SASTask.exe C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Winsock: Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704 2011-08-30] (Apple Inc. -> Apple Inc.)
Tcpip\Parameters: [DhcpNameServer] 10.78.196.1 10.109.255.254
Tcpip\..\Interfaces\{DD57444A-2552-4D94-A78F-11C9D3C4C43F}: [DhcpNameServer] 10.78.196.1 10.109.255.254
FireFox:
========
FF ProfilePath: C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\8faakgqr.default-1483643606250 [2020-12-16]
FF Extension: (Avast Passwords) - C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\8faakgqr.default-1483643606250\Extensions\jid1-r1tDuNiNb4SEww@jetpack.xpi [2020-02-11] [UpdateUrl:hxxps://pamcdn.avast.com/pamcdn/extensions/firefox/update.json]
FF Extension: (Avast SafePrice | Comparison, deals, coupons) - C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\8faakgqr.default-1483643606250\Extensions\sp@avast.com.xpi [2019-02-06] [UpdateUrl:hxxps://firefoxext.avcdn.net/firefoxext/avast/sp/update.json]
FF Extension: (Hotfix for Firefox bug 1548973 (armagaddon 2.0) mitigation) - C:\Documents and Settings\admin\Data aplikací\Mozilla\Firefox\Profiles\8faakgqr.default-1483643606250\features\{b4c3caa4-ca75-43d5-8a63-1a7780d1f7cc}\hotfix-bug-1548973@mozilla.org.xpi [2019-06-16] [Legacy]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: (Microsoft .NET Framework Assistant) - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2015-01-18] [Legacy] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_32_0_0_465.dll [2020-12-08] (Adobe Inc. -> ) [File not signed]
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2015-09-04] (Apple Inc. -> )
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.fdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google) [File not signed]
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\itms.js [2015-09-09]
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Documents and Settings\admin\Local Settings\Data aplikací\Google\Chrome\User Data\Default [2020-12-16]
CHR Notifications: Default -> hxxps://e-mostecko.pushcrew.com; hxxps://vedator.os.tc; hxxps://vedator.os.tc; hxxps://www.albinoblacksheep.com; hxxps://www.belfastlive.co.uk; hxxps://www.facebook.com; hxxps://www.facebook.com; hxxps://www.megaknihy.cz; hxxps://www.sisyfos.cz; hxxps://www.sisyfos.cz; hxxps://www.ubagroup.com; hxxps://www.youtube.com
CHR Extension: (Seznam doplněk - Email) - C:\Documents and Settings\admin\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2020-04-07]
CHR Extension: (Avast SafePrice | Srovnání, výhodné nabídky, kupóny) - C:\Documents and Settings\admin\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2020-06-16]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Documents and Settings\admin\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-03]
CHR Extension: (Seznam doplněk - Esko) - C:\Documents and Settings\admin\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2020-04-07]
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck]
CHR HKU\S-1-5-21-1960408961-261478967-682003330-1004\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bgjpfhpjcgdppjbgnpnjllokbmcdllig]
CHR HKU\S-1-5-21-1960408961-261478967-682003330-1004\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [olfeabkoenfaoljndfecamgilllcpiak]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [143776 2017-01-31] (SUPERAntiSpyware.com -> SUPERAntiSpyware.com)
S3 AdobeFlashPlayerUpdateSvc; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-12-08] (Adobe Inc. -> Adobe) [File not signed]
S3 aswbIDSAgent; C:\Program Files\Alwil Software\Avast5\aswidsagent.exe [6799632 2018-12-08] (AVAST Software s.r.o. -> AVAST Software)
S2 avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [324000 2018-12-08] (AVAST Software s.r.o. -> AVAST Software)
R2 avast! Firewall; C:\Program Files\Alwil Software\Avast5\afwServ.exe [338632 2018-12-08] (AVAST Software s.r.o. -> AVAST Software)
R2 CleanupPSvc; C:\Program Files\AVAST Software\Avast Cleanup\TuneupSvc.exe [10287216 2019-07-25] (AVAST Software s.r.o. -> AVAST Software) [File not signed]
R2 FoxitReaderService; C:\Program Files\Foxit Software\Foxit Reader\FoxitConnectedPDFService.exe [1659456 2018-04-17] (Foxit Software Incorporated -> Foxit Software Inc.)
R2 KaraokeService; C:\WINDOWS\system32\KaraokeSer.exe [88696 2000-01-01] (VIA Technologies Inc. -> VIA Technologies, Inc.)
S4 LightScribeService; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [73728 2005-12-18] (Hewlett-Packard Company) [File not signed]
S3 SwPrv; C:\WINDOWS\system32\dllhost.exe /Processid:{DEE5F2DF-4506-49EC-8B57-56116842D7BB} [5120 2008-04-14] (Microsoft Windows Component Publisher -> Microsoft Corporation)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 acedrv11; C:\WINDOWS\system32\drivers\acedrv11.sys [501560 2008-01-23] (Protect Software GmbH -> Protect Software GmbH)
R3 Afc; C:\WINDOWS\System32\drivers\Afc.sys [11776 2005-02-23] (Arcsoft, Inc.) [File not signed]
S3 ALCXWDM; C:\WINDOWS\System32\drivers\ALCXWDM.SYS [3964736 2006-05-10] (Microsoft Windows Hardware Compatibility Publisher -> Realtek Semiconductor Corp.)
S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1656960 2000-01-01] (Creative) [File not signed]
R1 AmdK8; C:\WINDOWS\System32\DRIVERS\AmdK8.sys [36352 2005-03-09] (Microsoft Windows Publisher -> Advanced Micro Devices)
R1 aswArPot; C:\WINDOWS\System32\drivers\aswArPot.sys [167480 2018-12-08] (AVAST Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\WINDOWS\System32\drivers\aswbidsdriverx.sys [188976 2018-12-08] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\WINDOWS\System32\drivers\aswbidshx.sys [165384 2018-12-08] (AVAST Software s.r.o. -> AVAST Software)
R0 aswblog; C:\WINDOWS\System32\drivers\aswblogx.sys [284256 2018-12-08] (AVAST Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\WINDOWS\System32\drivers\aswbunivx.sys [57904 2018-12-08] (AVAST Software s.r.o. -> AVAST Software)
S3 aswHwid; C:\WINDOWS\System32\drivers\aswHwid.sys [42736 2018-12-08] (AVAST Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\WINDOWS\System32\drivers\aswKbd.sys [40688 2018-12-08] (AVAST Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\WINDOWS\System32\drivers\aswMonFlt.sys [135200 2019-01-18] (AVAST Software s.r.o. -> AVAST Software)
R0 aswNdis; C:\WINDOWS\System32\DRIVERS\aswNdis.sys [12112 2017-04-20] (ALWIL Software -> ALWIL Software)
R0 aswNdis2; C:\WINDOWS\System32\drivers\aswNdis2.sys [332280 2018-12-08] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\WINDOWS\System32\drivers\aswRdr.sys [70640 2018-12-08] (AVAST Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\WINDOWS\System32\drivers\aswRvrt.sys [72800 2018-12-08] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\WINDOWS\System32\drivers\aswSnx.sys [784552 2019-05-23] (AVAST Software s.r.o. -> AVAST Software)
R1 aswSP; C:\WINDOWS\System32\drivers\aswSP.sys [397984 2019-05-23] (AVAST Software s.r.o. -> AVAST Software)
S3 aswStmXP; C:\WINDOWS\System32\drivers\aswStmXP.sys [146584 2018-12-08] (AVAST Software s.r.o. -> AVAST Software)
S3 aswTap; C:\WINDOWS\System32\DRIVERS\aswTap.sys [35144 2014-07-11] (AVAST Software a.s. -> The OpenVPN Project)
R0 aswVmm; C:\WINDOWS\System32\drivers\aswVmm.sys [310200 2018-12-08] (AVAST Software s.r.o. -> AVAST Software)
R3 FIXUSTOR; C:\WINDOWS\System32\DRIVERS\fixustor.sys [12416 2000-01-01] (Microsoft Windows Hardware Compatibility Publisher -> Genesys Logic)
R3 HDAudBus; C:\WINDOWS\System32\DRIVERS\HDAudBus.sys [144384 2008-04-13] (Microsoft Windows Component Publisher -> Windows (R) Server 2003 DDK provider)
S3 irsir; C:\WINDOWS\System32\DRIVERS\irsir.sys [18688 2001-08-17] (Microsoft Windows Component Publisher -> Microsoft Corporation)
R3 L8042Kbd; C:\WINDOWS\System32\DRIVERS\L8042Kbd.sys [13105 2004-06-08] (Microsoft Windows Hardware Compatibility Publisher -> Logitech, Inc.)
S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1389056 2000-01-01] (Microsoft Windows Hardware Compatibility Publisher -> Creative Technology Ltd.)
R0 nvata; C:\WINDOWS\System32\DRIVERS\nvata.sys [105344 2006-08-21] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
R3 NVENETFD; C:\WINDOWS\System32\DRIVERS\NVENETFD.sys [70912 2000-01-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
R0 nvgts; C:\WINDOWS\System32\DRIVERS\nvgts.sys [168040 2000-01-01] (NVIDIA Corporation -> NVIDIA Corporation)
R3 nvnetbus; C:\WINDOWS\System32\DRIVERS\nvnetbus.sys [13824 2000-01-01] (Microsoft Windows Hardware Compatibility Publisher -> NVIDIA Corporation)
R3 pfc; C:\WINDOWS\System32\drivers\pfc.sys [21248 2003-09-20] (Padus, Inc.) [File not signed]
R3 Ptilink; C:\WINDOWS\System32\DRIVERS\ptilink.sys [17792 2004-08-18] (Microsoft Windows Component Publisher -> Parallel Technologies, Inc.)
R3 Rasirda; C:\WINDOWS\System32\DRIVERS\rasirda.sys [19584 2001-08-17] (Microsoft Windows Component Publisher -> Microsoft Corporation)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [12880 2011-07-22] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [67664 2011-07-12] (Support.com, Inc. -> SUPERAdBlocker.com and SUPERAntiSpyware.com)
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Windows Component Publisher -> Microsoft Corporation)
S3 Secdrv; C:\WINDOWS\System32\DRIVERS\secdrv.sys [20480 2007-11-13] (Microsoft Windows Component Publisher -> Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.)
R1 ssmdrv; C:\WINDOWS\System32\DRIVERS\ssmdrv.sys [28520 2010-03-25] (Avira GmbH -> Avira GmbH)
S3 taphss; C:\WINDOWS\System32\DRIVERS\taphss.sys [32768 2012-03-26] (AnchorFree Inc -> AnchorFree Inc)
R3 VIAHdAudAddService; C:\WINDOWS\System32\drivers\viahduaa.sys [2558200 2000-01-01] (VIA Technologies Inc. -> VIA Technologies, Inc.)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) (Whitelisted) =========
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-12-16 16:10 - 2020-12-16 16:12 - 000024850 _____ C:\Documents and Settings\admin\Plocha\FRST.txt
2020-12-16 16:03 - 2020-12-16 16:03 - 002000384 _____ (Farbar) C:\Documents and Settings\admin\Plocha\FRST.exe
2020-12-16 11:42 - 2020-12-16 11:42 - 000000047 _____ C:\Documents and Settings\admin\Plocha\messenger.txt
2020-12-15 08:07 - 2020-12-15 08:07 - 000177856 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2020-12-15 08:01 - 2020-12-15 08:05 - 000000000 ____D C:\AdwCleaner
2020-12-15 07:56 - 2020-12-15 07:57 - 004102600 _____ C:\Documents and Settings\admin\Plocha\adwcleaner_6.046.exe
2020-12-13 15:46 - 2020-12-13 15:46 - 000000682 _____ C:\Documents and Settings\admin\Plocha\návod.txt
2020-12-13 15:41 - 2020-12-13 15:50 - 008447152 _____ (Malwarebytes) C:\Documents and Settings\admin\Plocha\adwcleaner_8.0.8.exe
2020-12-13 13:42 - 2020-12-13 13:42 - 001107968 _____ C:\Documents and Settings\admin\Plocha\RSIT.exe
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-12-16 16:12 - 2018-12-12 22:45 - 000000000 ____D C:\Documents and Settings\admin\Local Settings\Temp
2020-12-16 16:11 - 2018-12-11 20:05 - 000000000 ____D C:\FRST
2020-12-16 16:10 - 2006-08-15 19:55 - 000000000 ____D C:\Documents and Settings\admin\Plocha
2020-12-16 16:06 - 2015-07-16 19:43 - 000000940 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2020-12-16 15:45 - 2017-08-02 00:36 - 000000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2020-12-16 14:45 - 2006-08-15 19:54 - 000032508 _____ C:\WINDOWS\SchedLgU.Txt
2020-12-16 14:14 - 2013-03-01 11:57 - 000002187 _____ C:\Documents and Settings\All Users\Plocha\Safari.lnk
2020-12-16 12:49 - 2020-04-14 15:49 - 000000034 _____ C:\WINDOWS\AvEmUpdate.ini
2020-12-16 12:49 - 2017-04-20 11:23 - 000000360 ____H C:\WINDOWS\Tasks\Avast Emergency Update.job
2020-12-16 11:24 - 2010-11-24 16:14 - 000000000 ____D C:\Program Files\SUPERAntiSpyware
2020-12-16 11:23 - 2020-04-15 16:49 - 001105414 _____ C:\lsdb2.json
2020-12-16 11:21 - 2020-04-15 17:24 - 000000000 ____D C:\dwjobs
2020-12-16 11:21 - 2020-04-15 16:49 - 001105537 _____ C:\lsdb2.json.old
2020-12-16 11:21 - 2020-04-15 16:49 - 000019066 _____ C:\swh_stats.json
2020-12-16 11:21 - 2018-12-20 12:59 - 000000936 _____ C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2020-12-16 11:21 - 2018-01-12 21:24 - 000000372 ____H C:\WINDOWS\Tasks\Avast TUNEUP Update.job
2020-12-16 11:21 - 2017-10-24 21:27 - 000000282 ____H C:\WINDOWS\Tasks\CCleaner Update.job
2020-12-16 11:21 - 2016-06-13 23:48 - 000000000 _____ C:\WINDOWS\system32\last.dump
2020-12-16 11:21 - 2006-08-15 19:54 - 000000006 ____H C:\WINDOWS\Tasks\SA.DAT
2020-12-16 02:47 - 2006-08-15 19:55 - 000000178 ___SH C:\Documents and Settings\admin\ntuser.ini
2020-12-16 02:47 - 2006-08-15 19:55 - 000000000 ____D C:\Documents and Settings\admin
2020-12-16 02:00 - 2020-04-21 23:46 - 000000510 _____ C:\WINDOWS\Tasks\SUPERAntiSpyware Scheduled Task a8f24154-fd98-494d-89b1-989013281250.job
2020-12-15 16:31 - 2006-08-15 19:55 - 000000000 ___HD C:\Documents and Settings\admin\Local Settings\Data aplikací
2020-12-15 08:05 - 2019-04-12 12:35 - 000000178 ___SH C:\Documents and Settings\UpdatusUser\ntuser.ini
2020-12-15 08:05 - 2006-08-15 21:41 - 000000000 ___RD C:\Documents and Settings\All Users\Dokumenty
2020-12-15 07:58 - 2011-01-08 00:22 - 000000000 ____D C:\Documents and Settings\admin\Dokumenty\Stažené soubory
2020-12-14 15:04 - 2004-08-18 13:00 - 000011936 _____ C:\WINDOWS\system32\wpa.dbl
2020-12-13 13:44 - 2015-06-16 14:15 - 000000000 ____D C:\Program Files\trend micro
2020-12-13 12:51 - 2020-04-15 17:33 - 000000000 ____D C:\Backups
2020-12-13 12:51 - 2006-08-15 19:49 - 000000000 ____D C:\WINDOWS\system32\Macromed
2020-12-12 23:26 - 2018-03-13 18:45 - 000000946 _____ C:\WINDOWS\Tasks\Adobe Flash Player NPAPI Notifier.job
2020-12-08 16:45 - 2017-08-02 00:36 - 000842296 _____ (Adobe) C:\WINDOWS\system32\FlashPlayerApp.exe
2020-12-08 16:45 - 2017-08-02 00:36 - 000175160 _____ (Adobe) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2020-11-29 08:10 - 2017-11-16 21:55 - 000000000 ____D C:\Documents and Settings\admin\Plocha\Debility
2020-11-23 12:39 - 2006-08-19 18:12 - 000002545 _____ C:\Documents and Settings\All Users\Nabídka Start\Programy\Microsoft Word.lnk
2020-11-17 17:31 - 2020-04-15 16:48 - 000000000 ____D C:\log
==================== Files in the root of some directories ========
2006-08-19 17:20 - 2012-03-13 13:49 - 000018432 _____ () C:\Documents and Settings\admin\Local Settings\Data aplikací\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2018-08-02 15:38 - 2018-08-02 15:38 - 000000125 _____ () C:\Documents and Settings\admin\Local Settings\Data aplikací\fusioncache.dat
2007-09-22 10:55 - 2007-09-22 10:55 - 000000305 _____ () C:\Documents and Settings\All Users\Data aplikací\addr_file.html
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
==================== End of FRST.txt ========================
Re: pc se někdy zasekne
Dakujem kolegovi :]]
Do poznamkoveho bloku skopirujte obsah dole:
Poznamkovy blok ulozte pod nazvom fixlist.txt do umiestnenia kde je FRST.
Spustite FRST a odkliknite tlacidlo: Fix
Vykona sa funkcionalita po ktorej sa pocitac rebootuje. Po reboote sem vlozte obsah logu: fixlog.txt ulozeneho v umiestneni FRST.
Do poznamkoveho bloku skopirujte obsah dole:
Kód: Vybrat vše
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.) [File not signed]
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [157456 2015-09-12] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [seznam-listicka-distribuce] => C:\Program Files\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] (Seznam.cz, a.s. -> )
HKU\S-1-5-21-1960408961-261478967-682003330-1004\Software\Policies\...\system: [disablecmd] 0
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2179C5D3-EBFF-11CF-B6FD-00AA00B4E220}] ->
HKLM\Software\Microsoft\Active Setup\Installed Components: [{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] ->
HKLM\Software\Microsoft\Active Setup\Installed Components: [{44BBA840-CC51-11CF-AAFA-00AA00B6015C}] -> C:\Program Files\Outlook Express\setup50.exe [2008-04-14] (Microsoft Windows Component Publisher -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{7790769C-0471-11d2-AF11-00C04FA35D02}] -> C:\Program Files\Outlook Express\setup50.exe [2008-04-14] (Microsoft Windows Component Publisher -> Microsoft Corporation)
ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestThreads=16" <==== ATTENTION
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\itms.js [2015-09-09]
StandardProfile\GloballyOpenPorts: [5357:TCP] => Enabled:WS-Eventing TCP Port 5357
URLSearchHook: [S-1-5-21-1960408961-261478967-682003330-1192] ATTENTION => Default URLSearchHook is missing
HKU\S-1-5-21-1960408961-261478967-682003330-1004\Software\Microsoft\Internet Explorer\Main,Start Page =
HKLM\...\batfile\DefaultIcon: %SystemRoot%\System32\shell32.dll,-153 <==== ATTENTION
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{1a3e09be-1e45-494b-9174-d7385b45bbf5} => ""=""
ContextMenuHandlers1: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => -> No FileContextMenuHandlers6: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => -> No File
EmptyTemp:
Spustite FRST a odkliknite tlacidlo: Fix
Vykona sa funkcionalita po ktorej sa pocitac rebootuje. Po reboote sem vlozte obsah logu: fixlog.txt ulozeneho v umiestneni FRST.
► Vyšla moja nová kniha BOTNETY! Informácie o nej nájdete tu: >> BOTNETY <<
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT <<
----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Informácie o nej nájdete tu: >> BOTNETY << ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << ----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
-
TomášzePlzně
- Návštěvník
- Příspěvky: 110
- Registrován: 06 srp 2012 19:15
Re: pc se někdy zasekne
Já také děkuji Vašemu kolegovi.
To, co teď FRST prováděl se nějak nelíbilo SuperAntiSpyware, že já ho měl napřed vypnout?
Teď k věci, tady je ten fixlog
Fix result of Farbar Recovery Scan Tool (x86) Version: 14-12-2020
Ran by admin (16-12-2020 19:53:45) Run:2
Running from C:\Documents and Settings\admin\Plocha
Loaded Profiles: admin & UpdatusUser
Boot Mode: Normal
==============================================
fixlist content:
*****************
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.) [File not signed]
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [157456 2015-09-12] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [seznam-listicka-distribuce] => C:\Program Files\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] (Seznam.cz, a.s. -> )
HKU\S-1-5-21-1960408961-261478967-682003330-1004\Software\Policies\...\system: [disablecmd] 0
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2179C5D3-EBFF-11CF-B6FD-00AA00B4E220}] ->
HKLM\Software\Microsoft\Active Setup\Installed Components: [{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] ->
HKLM\Software\Microsoft\Active Setup\Installed Components: [{44BBA840-CC51-11CF-AAFA-00AA00B6015C}] -> C:\Program Files\Outlook Express\setup50.exe [2008-04-14] (Microsoft Windows Component Publisher -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{7790769C-0471-11d2-AF11-00C04FA35D02}] -> C:\Program Files\Outlook Express\setup50.exe [2008-04-14] (Microsoft Windows Component Publisher -> Microsoft Corporation)
ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestThreads=16" <==== ATTENTION
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\itms.js [2015-09-09]
StandardProfile\GloballyOpenPorts: [5357:TCP] => Enabled:WS-Eventing TCP Port 5357
URLSearchHook: [S-1-5-21-1960408961-261478967-682003330-1192] ATTENTION => Default URLSearchHook is missing
HKU\S-1-5-21-1960408961-261478967-682003330-1004\Software\Microsoft\Internet Explorer\Main,Start Page =
HKLM\...\batfile\DefaultIcon: %SystemRoot%\System32\shell32.dll,-153 <==== ATTENTION
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{1a3e09be-1e45-494b-9174-d7385b45bbf5} => ""=""
ContextMenuHandlers1: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => -> No FileContextMenuHandlers6: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => -> No File
EmptyTemp:
*****************
"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\QuickTime Task" => removed successfully.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\iTunesHelper" => removed successfully.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\seznam-listicka-distribuce" => removed successfully.
"HKU\S-1-5-21-1960408961-261478967-682003330-1004\Software\Policies\Microsoft\Windows\System\\disablecmd" => removed successfully.
HKLM\Software\Microsoft\Active Setup\Installed Components\{2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} => removed successfully.
HKLM\Software\Microsoft\Active Setup\Installed Components\{22d6f312-b0f6-11d0-94ab-0080c74c7e95} => removed successfully.
HKLM\Software\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C} => removed successfully.
HKLM\Software\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02} => removed successfully.
ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestThreads=16" <==== ATTENTION => Error: No automatic fix found for this entry.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\Program Files\mozilla firefox\defaults\pref\itms.js => moved successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\\5357:TCP" => removed successfully.
Could not restore Default URLSearchHook.
HKU\S-1-5-21-1960408961-261478967-682003330-1004\Software\Microsoft\Internet Explorer\Main\\"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
HKLM\Software\Classes\batfile\DefaultIcon\\"Default"="%SystemRoot%\System32\shell32.dll,-153" => value restored successfully
HKLM\System\CurrentControlSet\Control\SafeBoot\Network\{1a3e09be-1e45-494b-9174-d7385b45bbf5} => removed successfully.
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => -> No FileContextMenuHandlers6: [Foxit_ConvertToPDF_Reader => not found
=========== EmptyTemp: ==========
BITS transfer queue => 10261 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache => 32969 B
Java, Flash, Steam htmlcache => 1153 B
Windows/system/dllcache/drivers => 813648 B
Edge => 0 B
Chrome => 373076438 B
Firefox => 381127942 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Documents and Settings => 0 B
Default User => 0 B
All Users => 0 B
systemprofile => 121680341 B
LocalService => 121746781 B
NetworkService => 121813009 B
admin => 234742893 B
UpdatusUser => 234809121 B
Administrator => 234809121 B
RecycleBin => 0 B
EmptyTemp: => 1.7 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 19:54:52 ====
To, co teď FRST prováděl se nějak nelíbilo SuperAntiSpyware, že já ho měl napřed vypnout?
Teď k věci, tady je ten fixlog
Fix result of Farbar Recovery Scan Tool (x86) Version: 14-12-2020
Ran by admin (16-12-2020 19:53:45) Run:2
Running from C:\Documents and Settings\admin\Plocha
Loaded Profiles: admin & UpdatusUser
Boot Mode: Normal
==============================================
fixlist content:
*****************
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [421888 2014-10-02] (Apple Inc.) [File not signed]
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [157456 2015-09-12] (Apple Inc. -> Apple Inc.)
HKLM\...\Run: [seznam-listicka-distribuce] => C:\Program Files\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] (Seznam.cz, a.s. -> )
HKU\S-1-5-21-1960408961-261478967-682003330-1004\Software\Policies\...\system: [disablecmd] 0
HKLM\Software\Microsoft\Active Setup\Installed Components: [{2179C5D3-EBFF-11CF-B6FD-00AA00B4E220}] ->
HKLM\Software\Microsoft\Active Setup\Installed Components: [{22d6f312-b0f6-11d0-94ab-0080c74c7e95}] ->
HKLM\Software\Microsoft\Active Setup\Installed Components: [{44BBA840-CC51-11CF-AAFA-00AA00B6015C}] -> C:\Program Files\Outlook Express\setup50.exe [2008-04-14] (Microsoft Windows Component Publisher -> Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{7790769C-0471-11d2-AF11-00C04FA35D02}] -> C:\Program Files\Outlook Express\setup50.exe [2008-04-14] (Microsoft Windows Component Publisher -> Microsoft Corporation)
ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestThreads=16" <==== ATTENTION
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
FF ExtraCheck: C:\Program Files\mozilla firefox\defaults\pref\itms.js [2015-09-09]
StandardProfile\GloballyOpenPorts: [5357:TCP] => Enabled:WS-Eventing TCP Port 5357
URLSearchHook: [S-1-5-21-1960408961-261478967-682003330-1192] ATTENTION => Default URLSearchHook is missing
HKU\S-1-5-21-1960408961-261478967-682003330-1004\Software\Microsoft\Internet Explorer\Main,Start Page =
HKLM\...\batfile\DefaultIcon: %SystemRoot%\System32\shell32.dll,-153 <==== ATTENTION
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\{1a3e09be-1e45-494b-9174-d7385b45bbf5} => ""=""
ContextMenuHandlers1: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => -> No FileContextMenuHandlers6: [Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => -> No File
EmptyTemp:
*****************
"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\QuickTime Task" => removed successfully.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\iTunesHelper" => removed successfully.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\seznam-listicka-distribuce" => removed successfully.
"HKU\S-1-5-21-1960408961-261478967-682003330-1004\Software\Policies\Microsoft\Windows\System\\disablecmd" => removed successfully.
HKLM\Software\Microsoft\Active Setup\Installed Components\{2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} => removed successfully.
HKLM\Software\Microsoft\Active Setup\Installed Components\{22d6f312-b0f6-11d0-94ab-0080c74c7e95} => removed successfully.
HKLM\Software\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C} => removed successfully.
HKLM\Software\Microsoft\Active Setup\Installed Components\{7790769C-0471-11d2-AF11-00C04FA35D02} => removed successfully.
ServerDll=winsrv:ConServerDllInitialization,2 ProfileControl=Off MaxRequestThreads=16" <==== ATTENTION => Error: No automatic fix found for this entry.
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully
C:\Program Files\mozilla firefox\defaults\pref\itms.js => moved successfully
"HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List\\5357:TCP" => removed successfully.
Could not restore Default URLSearchHook.
HKU\S-1-5-21-1960408961-261478967-682003330-1004\Software\Microsoft\Internet Explorer\Main\\"Start Page"="http://go.microsoft.com/fwlink/?LinkId=69157" => value restored successfully
HKLM\Software\Classes\batfile\DefaultIcon\\"Default"="%SystemRoot%\System32\shell32.dll,-153" => value restored successfully
HKLM\System\CurrentControlSet\Control\SafeBoot\Network\{1a3e09be-1e45-494b-9174-d7385b45bbf5} => removed successfully.
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\Foxit_ConvertToPDF_Reader] -> {A94757A0-0226-426F-B4F1-4DF381C630D3} => -> No FileContextMenuHandlers6: [Foxit_ConvertToPDF_Reader => not found
=========== EmptyTemp: ==========
BITS transfer queue => 10261 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache => 32969 B
Java, Flash, Steam htmlcache => 1153 B
Windows/system/dllcache/drivers => 813648 B
Edge => 0 B
Chrome => 373076438 B
Firefox => 381127942 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Documents and Settings => 0 B
Default User => 0 B
All Users => 0 B
systemprofile => 121680341 B
LocalService => 121746781 B
NetworkService => 121813009 B
admin => 234742893 B
UpdatusUser => 234809121 B
Administrator => 234809121 B
RecycleBin => 0 B
EmptyTemp: => 1.7 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 19:54:52 ====
Re: pc se někdy zasekne
ako je na tom pocitac?
► Vyšla moja nová kniha BOTNETY! Informácie o nej nájdete tu: >> BOTNETY <<
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT <<
----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Informácie o nej nájdete tu: >> BOTNETY << ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << ----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
-
TomášzePlzně
- Návštěvník
- Příspěvky: 110
- Registrován: 06 srp 2012 19:15
Re: pc se někdy zasekne
PC jde normálně, nastala jiná nepříjemnost a sice už asi 3 dny se z něj nedá připojit na messenger (ani z jednoho prohlížeče), dalo by se to také nějak vyřešit?
Možná je to i déle než 3 dny, před těmi 3 dny mi tam totiž údajně přišla nějaká zpráva, ke které už se mi nepodařilo dostat.
Možná je to i déle než 3 dny, před těmi 3 dny mi tam totiž údajně přišla nějaká zpráva, ke které už se mi nepodařilo dostat.
Re: pc se někdy zasekne
Co vam hlasi pri snahe pripojit sa?
► Vyšla moja nová kniha BOTNETY! Informácie o nej nájdete tu: >> BOTNETY <<
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT <<
----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Informácie o nej nájdete tu: >> BOTNETY << ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << ----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Přispějete na provoz fóra?