Právě je 17 zář 2019 02:22

Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Všechny časy jsou v UTC + 1 hodina


Pravidla fóra


Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.



Odeslat nové téma Toto téma je zamknuté. Nemůžete posílat nové příspěvky ani odpovídat na starší.  [ Příspěvků: 46 ]  Přejít na stránku Předchozí  1, 2, 3, 4  Další
Autor Zpráva
 Předmět příspěvku: Re: Chyba zabezpečeného spojení
PříspěvekNapsal: 15 zář 2018 18:52 
Offline
Návštěvník
Návštěvník

Registrován: 07 čer 2013 21:04
Příspěvky: 18
Kde jsi prosímtě přišla na oskeruše, hmm, v mém rodném bydlišti rostou od dob říše římské, tak jako vinná réva :-D a ne jenom jeden druh ovoce , ale i mandle, meruňky, moruše atd :-P

Netaktní otázka win 7 ultimate je ofiko verze či má nějaký háček? Přemýšlím, kde je u Tebe zakopaný pes, rozchodit vlastni mailový server bylo snadnější :?: Jěště mě zaráží, že dělá jen na jednom webu...v neděli něco písnu, zkusím podumat.

_________________
Obrázek


Nahoru
 Profil  
 
 Předmět příspěvku: Re: Chyba zabezpečeného spojení
PříspěvekNapsal: 16 zář 2018 19:05 
Offline
Návštěvník
Návštěvník

Registrován: 16 dub 2010 11:03
Příspěvky: 181
Tak jsem myslela a nespletla jsem se.
Co se týče toho Ultimejtu, tak tohle je počítač mého finského zetě a ten je takový spořádaný, nikdy by mi nepodstrčil svini. Navíc je právník, takže v tom to nebude.
V neděli - aha, to je dnes, tak mi klidně písni. Stejnak nic nepochopím.
Na začátku jsem se chtěla s tím nalepit na samotný Lidl, ale mluvit s takovým mamutem je jako mluvit do zdi. Nevíš ani, na koho se obrátit.
Já si už ani nepamatuji, co jsem u nich chtěla objednat, je to dávno passé, zůstal jen vztek. A také nemám ráda, když něco u mě zadrhává. A aby toho nebylo málo, v posledních dnech se mi začala objevovat malá, ale modrá. Vyskočí, něco mi napíše, ani to nestačím přečíst, a už mizí, počítač se sám restartuje a jede dál jako nic. A JAK SE TI LÍBÍ TOHLE? Mně teda vůbec ne, ale kdo se mě ptal. Zatím se měj a truď.


Nahoru
 Profil  
 
 Předmět příspěvku: Re: Chyba zabezpečeného spojení
PříspěvekNapsal: 17 zář 2018 14:49 
Offline
Návštěvník
Návštěvník

Registrován: 07 čer 2013 21:04
Příspěvky: 18
Trefila jsi dobře, až na to že zkratka EBV značí Epstein-Barrové virus :) , nikoliv oskeruši. Já vím, mám den zpoždění v odpovědi.

Otázka na win7 byla míněna v dobrém. Jo dumal jsem a technická podpora Lidlu, byla jedna z nich, druhé bylo "nekompetentní" windowsy, třetí varianta jest bordílek zalezlý v operačním systému.

Zkus mi dát oba dva reporty, podle následujícího návodu https://forum.viry.cz/viewtopic.php?f=13&t=154679 .

_________________
Obrázek


Nahoru
 Profil  
 
 Předmět příspěvku: Re: Chyba zabezpečeného spojení
PříspěvekNapsal: 17 zář 2018 21:54 
Offline
Návštěvník
Návštěvník

Registrován: 16 dub 2010 11:03
Příspěvky: 181
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 22.04.2018
Ran by Toma (administrator) on TOMA-PC (17-09-2018 22:50:26)
Running from C:\Users\Toma\Desktop\Soubory _VIRY.cz
Loaded Profiles: Toma (Available Profiles: Toma)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: Finština (Finsko)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
( ASUSTeK Computer Inc.) C:\Program Files\ASUS\GPU Boost Driver\GpuBoostServer.exe
(Bitdefender) C:\Program Files\Bitdefender Antivirus Free\bdredline.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
() C:\Windows\SysWOW64\SecUPDUtilSvc.exe
(SDL) C:\Program Files (x86)\Common Files\SDL\Telemetrics\Sdl.Desktop.ProductTelemetrics.Host.Windows.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Logitech Inc.) C:\Program Files (x86)\Logitech\Vid HD\Vid.exe
(VoipConnect) C:\Program Files (x86)\VoipConnect.com\VoipConnect\voipconnect.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
() C:\Users\Toma\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
() C:\Users\Toma\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(cyberlink) C:\Program Files (x86)\CyberLink\Shared files\brs.exe
(Logitech Inc.) C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
(Bitdefender) C:\Program Files\Bitdefender Antivirus Free\updatesrv.exe
(Bitdefender) C:\Program Files\Bitdefender Antivirus Free\vsserv.exe
(Bitdefender) C:\Program Files\Bitdefender Antivirus Free\vsservppl.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Bitdefender) C:\Program Files\Bitdefender Antivirus Free\bdagent.exe
() C:\Program Files (x86)\OEClassic\OEClassic.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
() C:\Program Files (x86)\WG2000\WINGED.EXE
(Skype Technologies) C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10151968 2010-04-20] (Realtek Semiconductor)
HKLM\...\Run: [AtherosBtStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [613536 2010-10-27] (Atheros Communications)
HKLM\...\Run: [AthBtTray] => C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [379040 2010-10-27] (Atheros Commnucations)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [163776 2017-08-12] (IvoSoft)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [298296 2018-07-06] (Apple Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2010-02-10] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Six Engine] => C:\Program Files (x86)\ASUS\EPU\EPU.exe [5309056 2010-06-14] ( ASUSTeK Computer Inc.)
HKLM-x32\...\Run: [CLMLServer] => C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [103720 2009-12-15] (CyberLink)
HKLM-x32\...\Run: [UpdateP2GoShortCut] => C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl9] => C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe [87336 2009-07-06] (CyberLink Corp.)
HKLM-x32\...\Run: [BDRegion] => C:\Program Files (x86)\Cyberlink\Shared files\brs.exe [75048 2010-05-14] (cyberlink)
HKLM-x32\...\Run: [UpdatePSTShortCut] => "C:\Program Files (x86)\CyberLink\Blu-ray Disc Suite\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Blu-ray Disc Suite" UpdateWithCreateOnce "Software\CyberLink\PowerStarter"
HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [205336 2011-11-11] (Logitech Inc.)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1069296 2018-03-27] ()
HKU\S-1-5-21-2865527742-3441578996-859845922-1000\...\Run: [Logitech Vid] => C:\Program Files (x86)\Logitech\Vid HD\Vid.exe [6129496 2011-01-13] (Logitech Inc.)
HKU\S-1-5-21-2865527742-3441578996-859845922-1000\...\Run: [VoipConnect] => C:\Program Files (x86)\VoipConnect.com\VoipConnect\voipconnect.exe [42304056 2018-01-29] (VoipConnect)
HKU\S-1-5-21-2865527742-3441578996-859845922-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8590760 2015-12-08] (Piriform Ltd)
HKU\S-1-5-21-2865527742-3441578996-859845922-1000\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Toma\AppData\Roaming\Seznam.cz\szninstall.exe [1069296 2018-03-27] ()
HKU\S-1-5-21-2865527742-3441578996-859845922-1000\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Toma\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [109808 2018-03-27] ()
HKU\S-1-5-21-2865527742-3441578996-859845922-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27832272 2017-08-25] (Skype Technologies S.A.)
HKU\S-1-5-21-2865527742-3441578996-859845922-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\PhotoScreensaver.scr [477696 2010-11-21] (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{D9D3AF0F-D0D9-4BD0-A48D-37A1112F77AC}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{E6E69474-A415-495A-9473-4040CBC4FED2}: [DhcpNameServer] 10.0.0.138

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-2865527742-3441578996-859845922-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/?clid=12454
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2865527742-3441578996-859845922-1000 -> {1F4B397D-F2D5-414F-B138-B86FF030E495} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-2865527742-3441578996-859845922-1000 -> {279B91D7-43A6-4D02-8F5B-3D9A03F01406} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-2865527742-3441578996-859845922-1000 -> {6275EC92-153A-4352-A337-F620999FE8AD} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-2865527742-3441578996-859845922-1000 -> {A8E012C5-7DB5-4CF8-88DB-053C873906F6} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-2865527742-3441578996-859845922-1000 -> {B4FB63C8-6516-49F2-AB53-1F74F74BAAF3} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-2865527742-3441578996-859845922-1000 -> {C3BFC533-FD28-4712-AFAF-2E9BD0D7DEB0} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-2865527742-3441578996-859845922-1000 -> {DE2BBB5A-A972-4929-BAA4-1E040EFBE85B} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-2865527742-3441578996-859845922-1000 -> {E22375DC-BF25-4D95-87A2-65315B47CC9F} URL = hxxp://www.mapy.cz/?query={searchTerms}&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-2865527742-3441578996-859845922-1000 -> {E5AB4E9D-6633-4850-87C0-D90C5098B1FE} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid=QuickSearch_29530
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-12] (IvoSoft)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-12-21] (Microsoft Corporation)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2017-08-12] (IvoSoft)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2017-08-12] (IvoSoft)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\ssv.dll [2016-04-02] (Oracle Corporation)
BHO-x32: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2010-10-27] (Atheros Commnucations)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-12-21] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\jp2ssv.dll [2016-04-02] (Oracle Corporation)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2017-08-12] (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-12] (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2017-08-12] (IvoSoft)

FireFox:
========
FF DefaultProfile: lp9kdgcx.default
FF ProfilePath: C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default [2018-09-17]
FF Homepage: Mozilla\Firefox\Profiles\lp9kdgcx.default -> about:home
FF Session Restore: Mozilla\Firefox\Profiles\lp9kdgcx.default -> is enabled.
FF Extension: (Adblocker X) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\@adblock57.xpi [2018-04-24]
FF Extension: (Tipli do prohlížeče) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\@tipli-do-prohlizece-.xpi [2018-07-23]
FF Extension: (Český slovník pro kontrolu pravopisu) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\cs@dictionaries.addons.mozilla.org [2016-08-13] [Legacy]
FF Extension: (British English Dictionary) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\en-GB@dictionaries.addons.mozilla.org [2016-01-05] [Legacy] [not signed]
FF Extension: (United States English Spellchecker) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\en-US@dictionaries.addons.mozilla.org [2016-03-18] [Legacy]
FF Extension: (Spanish (Spain) Dictionary) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\es-es@dictionaries.addons.mozilla.org [2018-01-25] [Legacy]
FF Extension: (Dictionnaire français) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\fr-dicollecte@dictionaries.addons.mozilla.org [2018-05-10] [Legacy]
FF Extension: (IrregularVerbs) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\IrregularVerbs@canevas.xul.xpi [2016-04-27] [Legacy]
FF Extension: (Notifier for Gmail™) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\jid0-GjwrPchS3Ugt7xydvqVK4DQk8Ls@jetpack.xpi [2018-05-21]
FF Extension: (Mate Translate – translator, dictionary) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\jid1-TMndP6cdKgxLcQ@jetpack.xpi [2018-07-10]
FF Extension: (Russian spellchecking dictionary) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\ru@dictionaries.addons.mozilla.org [2016-01-05] [Legacy] [not signed]
FF Extension: (S3.Translator) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\s3google@translator.xpi [2018-09-11]
FF Extension: (Seznam doplněk - Esko) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\sko-extension@firma.seznam.cz.xpi [2018-09-06]
FF Extension: (Ukrainian dictionary) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\uk-ua@dictionaries.addons.mozilla.org [2018-08-31] [Legacy]
FF Extension: (X-notifier (for Gmail™,Hotmail,Yahoo,AOL...)) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\{37fa1426-b82d-11db-8314-0800200c9a66}.xpi [2018-09-15]
FF Extension: (ImTranslator: Překladač, Slovník, Hlas) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi [2018-07-18]
FF Extension: (Search By Image (by Google)) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\{ce7e73df-6a44-4028-8079-5927a588c948}.xpi [2017-01-24] [Legacy]
FF Extension: (Adblock Plus) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2018-08-30]
FF Extension: (Seznam doplněk - Email) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}.xpi [2018-09-06]
FF Extension: (No Name) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\extensions\sko-extension@firma.seznam.cz [not found]
FF Extension: (WebCompat Reporter) - C:\Program Files (x86)\Mozilla Firefox\browser\features\webcompat-reporter@mozilla.org.xpi [2018-09-05] [Legacy] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_30_0_0_134.dll [2018-07-16] ()
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_30_0_0_134.dll [2018-07-16] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\dtplugin\npDeployJava1.dll [2016-04-02] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\plugin2\npjp2.dll [2016-04-02] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-06-29] (Adobe Systems Inc.)

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2018-07-05] (Apple Inc.)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [52896 2010-10-27] (Atheros Commnucations) [File not signed]
R2 bdredline; C:\Program Files\Bitdefender Antivirus Free\bdredline.exe [2195280 2018-06-07] (Bitdefender)
S2 CLKMSVC10_9EC60124; C:\Program Files (x86)\CyberLink\PowerDVD9\NavFilter\kmsvc.exe [246256 2010-05-14] (CyberLink)
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6541008 2018-05-03] (Malwarebytes)
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1284032 2018-07-31] (Bitdefender)
R2 SamsungUPDUtilSvc; C:\Windows\SysWOW64\SecUPDUtilSvc.exe [143664 2015-12-29] ()
R2 Sdl.ProductTelemetrics.v1; C:\Program Files (x86)\Common Files\SDL\Telemetrics\Sdl.Desktop.ProductTelemetrics.Host.Windows.exe [12288 2015-06-17] (SDL) [File not signed]
R2 updatesrv; C:\Program Files\Bitdefender Antivirus Free\updatesrv.exe [239400 2018-06-07] (Bitdefender)
R2 vsserv; C:\Program Files\Bitdefender Antivirus Free\vsserv.exe [239400 2018-06-07] (Bitdefender)
R2 vsservppl; C:\Program Files\Bitdefender Antivirus Free\vsservppl.exe [239400 2018-06-07] (Bitdefender)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AODDriver; C:\Program Files\ASUS\GPU Boost Driver\amd64\AODDriver.sys [52280 2010-03-12] (Advanced Micro Devices)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2009-08-04] ()
R0 atc; C:\Windows\System32\DRIVERS\atc.sys [1283464 2018-06-07] (BitDefender S.R.L. Bucharest, ROMANIA)
R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [1723552 2018-05-11] (BitDefender)
R0 BdDci; C:\Windows\System32\DRIVERS\bddci.sys [152648 2018-05-11] (Bitdefender)
R3 edrsensor; C:\Windows\System32\DRIVERS\edrsensor.sys [246064 2018-05-11] (BitDefender S.R.L. Bucharest, ROMANIA)
R0 gzflt; C:\Windows\System32\drivers\gzflt.sys [193184 2018-07-04] (BitDefender LLC)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [259360 2018-09-17] (Malwarebytes)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-16] ()
S3 phantomtap; C:\Windows\System32\DRIVERS\phantomtap.sys [35664 2017-06-23] (The OpenVPN Project)
R2 trufos; C:\Windows\System32\drivers\trufos.sys [607640 2018-05-11] (Bitdefender)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-09-17 17:29 - 2018-09-17 17:29 - 000000000 ___RD C:\Users\Toma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2018-09-16 18:14 - 2018-09-16 18:11 - 065643006 _____ C:\Users\Toma\Desktop\IMG_5492.MOV
2018-09-15 11:27 - 2018-09-15 11:27 - 000059923 _____ C:\Users\Toma\Downloads\Smlouva o Bankovní IDentitě - Tamara Panaková.pdf
2018-09-15 09:17 - 2018-09-15 09:17 - 000282040 _____ C:\Windows\Minidump\091518-16754-01.dmp
2018-09-13 20:58 - 2018-09-13 20:58 - 000282040 _____ C:\Windows\Minidump\091318-16785-01.dmp
2018-09-12 10:24 - 2018-09-12 10:25 - 000023541 _____ C:\Users\Toma\Desktop\Брюки _ДЛИНА.odt
2018-09-11 18:01 - 2018-09-11 18:01 - 000120587 _____ C:\Users\Toma\Desktop\Ponožková natural od p. Ďurovíče.odt
2018-09-11 17:54 - 2018-09-11 17:54 - 001381346 _____ C:\Users\Toma\Desktop\První dávka samovzorovací ponožkové od p. Ďurovíče.odt
2018-09-11 15:04 - 2018-09-11 15:04 - 000282040 _____ C:\Windows\Minidump\091118-17113-01.dmp
2018-09-11 07:53 - 2018-09-15 09:17 - 661174585 _____ C:\Windows\MEMORY.DMP
2018-09-11 07:53 - 2018-09-11 07:53 - 000282040 _____ C:\Windows\Minidump\091118-14835-01.dmp
2018-09-09 18:37 - 2018-09-09 18:37 - 001380588 _____ C:\Users\Toma\Desktop\pl_šatek_Close_To_You_PL.pdf
2018-09-09 18:36 - 2018-09-09 18:36 - 001462602 _____ C:\Users\Toma\Desktop\cz.Šatek Close_To_You_CZ.pdf
2018-09-09 18:13 - 2018-09-09 18:13 - 001380574 _____ C:\Users\Toma\Downloads\Close_To_You_PL.pdf
2018-09-09 18:04 - 2018-09-09 18:04 - 001462590 _____ C:\Users\Toma\Downloads\Close_To_You_CZ.pdf
2018-09-04 21:25 - 2018-09-04 21:25 - 000745782 _____ C:\Users\Toma\Downloads\Echoes_from_Karelia_ver3.pdf
2018-09-04 14:03 - 2018-09-04 14:04 - 007571152 _____ (Malwarebytes) C:\Users\Toma\Downloads\adwcleaner_7.2.3.1.exe
2018-09-04 13:53 - 2018-09-17 17:29 - 000259360 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2018-09-03 00:04 - 2018-09-03 00:04 - 000020599 _____ C:\Users\Toma\Desktop\Пирожки с гречневой кашей.odt
2018-09-02 11:02 - 2018-09-02 11:02 - 001433737 _____ C:\Users\Toma\Downloads\Russian_Double_Heelix(1).pdf
2018-09-02 10:55 - 2018-09-02 10:55 - 004344112 _____ C:\Users\Toma\Desktop\Носочки Двойные спиральки (Джени Стайман).odt
2018-09-02 09:51 - 2018-09-02 09:51 - 001433737 _____ C:\Users\Toma\Downloads\Russian_Double_Heelix.pdf
2018-08-31 13:29 - 2018-08-31 13:29 - 000076611 _____ C:\Users\Toma\Downloads\24506-P%C5%99ehled_nejpodstatn%C4%9Bj%C5%A1%C3%ADch_zm%C4%9Bn.pdf
2018-08-27 18:15 - 2018-08-27 18:10 - 101203024 _____ C:\Users\Toma\Desktop\IMG_5280.MOV
2018-08-25 10:15 - 2018-08-25 10:16 - 000369728 _____ C:\Windows\system32\FNTCACHE.DAT
2018-08-24 12:08 - 2018-08-24 12:08 - 000092560 _____ C:\Users\Toma\AppData\Local\GDIPFONTCACHEV1.DAT
2018-08-24 12:03 - 2018-08-24 12:03 - 000000082 _____ C:\Windows\system32\cc_20180824_120338.reg
2018-08-24 11:59 - 2018-08-24 11:59 - 000000082 _____ C:\Windows\system32\cc_20180824_115930.reg
2018-08-24 11:58 - 2018-08-24 11:58 - 000000082 _____ C:\Windows\system32\cc_20180824_115851.reg
2018-08-24 10:29 - 2018-08-24 10:29 - 000000000 ____D C:\Users\Toma\AppData\Local\mbam
2018-08-20 23:33 - 2018-08-20 20:36 - 095176961 _____ C:\Users\Toma\Desktop\IMG_5204.MOV
2018-08-20 23:32 - 2018-08-20 20:36 - 097032740 _____ C:\Users\Toma\Desktop\IMG_5203.MOV
2018-08-18 22:41 - 2018-08-18 22:41 - 000006083 _____ C:\Users\Toma\Downloads\doria35lp.pdf
2018-08-18 22:26 - 2018-08-18 22:26 - 002268175 _____ C:\Users\Toma\Downloads\inca50.pdf

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-09-17 22:51 - 2018-02-03 00:22 - 000000000 ____D C:\Program Files\Bitdefender Antivirus Free
2018-09-17 22:50 - 2018-05-03 21:41 - 000000000 ____D C:\Users\Toma\AppData\Local\ClassicShell
2018-09-17 22:50 - 2018-04-21 11:55 - 000000000 ____D C:\FRST
2018-09-17 22:50 - 2015-12-29 21:50 - 000000000 ____D C:\Users\Toma\AppData\Roaming\Skype
2018-09-17 17:40 - 2009-07-14 06:45 - 000021888 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-09-17 17:40 - 2009-07-14 06:45 - 000021888 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-09-17 17:35 - 2015-12-21 17:23 - 000719098 _____ C:\Windows\system32\perfh019.dat
2018-09-17 17:35 - 2015-12-21 17:23 - 000151344 _____ C:\Windows\system32\perfc019.dat
2018-09-17 17:35 - 2015-12-21 17:17 - 000671828 _____ C:\Windows\system32\perfh005.dat
2018-09-17 17:35 - 2015-12-21 17:17 - 000142424 _____ C:\Windows\system32\perfc005.dat
2018-09-17 17:35 - 2015-12-21 17:12 - 000386842 _____ C:\Windows\system32\perfh00D.dat
2018-09-17 17:35 - 2015-12-21 17:12 - 000085260 _____ C:\Windows\system32\perfc00D.dat
2018-09-17 17:35 - 2010-11-21 11:10 - 000476000 _____ C:\Windows\system32\perfh00B.dat
2018-09-17 17:35 - 2010-11-21 11:10 - 000102022 _____ C:\Windows\system32\perfc00B.dat
2018-09-17 17:35 - 2009-07-14 07:13 - 003507970 _____ C:\Windows\system32\PerfStringBackup.INI
2018-09-17 17:35 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2018-09-17 17:34 - 2018-06-05 19:53 - 000000000 ____D C:\Users\Toma\AppData\Roaming\Seznam.cz
2018-09-17 17:33 - 2016-11-16 19:48 - 000000000 ____D C:\Users\Toma\AppData\LocalLow\Mozilla
2018-09-17 17:31 - 2018-02-03 00:22 - 000003648 _____ C:\Windows\System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864
2018-09-17 17:29 - 2017-08-21 13:06 - 000000035 _____ C:\Users\Public\Documents\AtherosServiceConfig.ini
2018-09-17 17:29 - 2015-12-31 00:30 - 000000000 _____ C:\Windows\system32\Drivers\lvuvc.hs
2018-09-17 17:29 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-09-16 22:07 - 2015-12-30 00:12 - 000000000 ____D C:\Users\Toma\Documents\Soubory aplikace Outlook
2018-09-16 22:07 - 2015-12-29 21:36 - 000000000 ____D C:\Users\Toma\AppData\Roaming\vlc
2018-09-15 09:17 - 2017-06-30 13:41 - 000000000 ____D C:\Windows\Minidump
2018-09-10 15:31 - 2018-07-27 19:36 - 000000000 ____D C:\Users\Toma\Desktop\Леинка!
2018-09-09 17:55 - 2018-05-01 00:19 - 000000000 ___RD C:\Users\Toma\Desktop\Nové různé
2018-09-09 08:17 - 2017-06-04 18:13 - 000000000 ___RD C:\Users\Toma\Documents\Scanned Documents
2018-09-06 07:21 - 2017-06-13 23:16 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2018-09-06 07:21 - 2015-12-20 20:24 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-09-04 13:53 - 2018-04-25 15:17 - 000152688 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2018-09-02 22:04 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\NDF
2018-09-01 12:59 - 2015-12-21 00:48 - 003433546 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2018-08-24 11:55 - 2016-01-01 01:37 - 000000000 ____D C:\Users\Toma\Desktop\Málo používané
2018-08-24 11:55 - 2015-12-20 20:04 - 000000000 ____D C:\Users\Toma\AppData\Local\CrashDumps

==================== Files in the root of some directories =======

2015-10-21 16:38 - 2015-10-21 16:38 - 118294111 _____ () C:\Program Files (x86)\openoffice1.cab
2015-10-21 16:36 - 2015-10-21 16:36 - 002306048 _____ () C:\Program Files (x86)\openoffice412.msi
2015-10-21 16:36 - 2015-10-21 16:36 - 000478720 _____ () C:\Program Files (x86)\setup.exe
2015-10-21 16:36 - 2015-10-21 16:36 - 000000279 _____ () C:\Program Files (x86)\setup.ini
2016-06-01 22:07 - 2018-08-15 15:16 - 000000349 _____ () C:\Users\Toma\AppData\Roaming\FotoSketcher.ini
2018-04-21 16:40 - 2018-04-21 21:44 - 000029696 _____ () C:\Users\Toma\AppData\Local\MSGBOX.EXE

Some files in TEMP:
====================
2018-06-07 19:04 - 2018-06-07 19:04 - 000465920 _____ (Realtek Semiconductor Corp.) C:\Users\Toma\AppData\Local\Temp\COMAP.EXE
2018-06-30 20:01 - 2018-08-28 19:01 - 062091672 _____ (Skype Technologies S.A.) C:\Users\Toma\AppData\Local\Temp\SkypeSetup.exe
2018-06-12 10:17 - 2018-06-12 10:18 - 041465128 _____ () C:\Users\Toma\AppData\Local\Temp\vlc-3.0.3-win64.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-09-15 13:23

==================== End of FRST.txt ============================


Nahoru
 Profil  
 
 Předmět příspěvku: Re: Chyba zabezpečeného spojení
PříspěvekNapsal: 17 zář 2018 22:02 
Offline
Návštěvník
Návštěvník

Registrován: 16 dub 2010 11:03
Příspěvky: 181
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 22.04.2018
Ran by Toma (17-09-2018 23:12:48)
Running from C:\Users\Toma\Desktop\Soubory _VIRY.cz
Windows 7 Ultimate Service Pack 1 (X64) (2015-12-20 16:34:42)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

HomeGroupUser$ (S-1-5-21-2865527742-3441578996-859845922-1002 - Limited - Enabled)
Järjestelmänvalvoja (S-1-5-21-2865527742-3441578996-859845922-500 - Administrator - Disabled)
Toma (S-1-5-21-2865527742-3441578996-859845922-1000 - Administrator - Enabled) => C:\Users\Toma
Vieras (S-1-5-21-2865527742-3441578996-859845922-501 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Bitdefender Antivirus Free Antimalware (Enabled - Up to date) {EA21BCE8-A461-99C3-3A0D-4C964E75494E}
AS: Bitdefender Antivirus Free Antimalware (Enabled - Up to date) {51405D0C-825B-964D-00BD-77E435F203F3}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 18.011.20058 - Adobe Systems Incorporated)
Adobe Flash Player 30 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 30.0.0.134 - Adobe Systems Incorporated)
Apple Mobile Device Support (HKLM\...\{C29B636B-9015-4ED1-A12F-6375A337F23B}) (Version: 11.4.1.46 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
ASUS WiFi-AP @n (HKLM-x32\...\{6600970A-BAE7-412A-BFFC-91AD793B3A41}) (Version: 1.1.0.6 - ASUS)
ASUS WiFi-AP @n (HKLM-x32\...\{AED37211-341F-4520-ACCB-D102DA140925}) (Version: 1.1.0.6 - ASUS) Hidden
ATI Catalyst Install Manager (HKLM\...\{2A13EF26-4D68-B2D7-A486-DBBD2FDE366B}) (Version: 3.0.765.0 - ATI Technologies, Inc.)
Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 21.0.25.59 - Bitdefender)
Bitdefender Antivirus Free (HKLM\...\{1FCCF41D-5F00-4FE2-9653-162D0486C8B4}) (Version: 1.0.10.12 - Bitdefender)
Bluetooth Win7 Suite (64) (HKLM\...\{230D1595-57DA-4933-8C4E-375797EBB7E1}) (Version: 7.2.0.40 - Atheros Communications)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CameraHelperMsi (HKLM-x32\...\{15634701-BACE-4449-8B25-1567DA8C9FD3}) (Version: 13.31.1038.0 - Logitech) Hidden
ccc-core-static (HKLM-x32\...\{8ADE5280-35CA-CF98-A456-F66B98C77244}) (Version: 2010.0210.2206.39615 - Yrityksen nimi) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.13 - Piriform)
Classic Shell (HKLM\...\{CABCE573-0A86-42FA-A52A-C7EA61D5BE08}) (Version: 4.3.1 - IvoSoft)
CyberLink BD Advisor 2.0 (HKLM-x32\...\{2D2D8FE2-605C-4D3C-B706-36E981E7EEF0}) (Version: - )
CyberLink Blu-ray Disc Suite (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 6.0.3226 - CyberLink Corp.)
CyberLink LG Burning Tool (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.2.3714 - CyberLink Corp.)
CyberLink PowerDVD 9 (HKLM-x32\...\InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}) (Version: 9.0.2919.52 - CyberLink Corp.)
EPU (HKLM-x32\...\{9C2AC00C-0C06-4B7E-97A4-A833808D54D6}) (Version: 1.02.21 - )
erLT (HKLM-x32\...\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}) (Version: 1.20.138.34 - Logitech, Inc.) Hidden
FormApps Signing Extension (HKLM-x32\...\{ACA43D91-8B42-4D42-8C8B-A893BD6AA40D}) (Version: 2.8.2.28 - Software602 a.s.)
FotoSketcher 3.30 (HKLM-x32\...\{E7C6D565-2E48-4303-A114-AFE7B2E561AF}_is1) (Version: - David THOIRON)
GPU Boost Driver (HKLM-x32\...\{B8887E02-C910-4498-A7C0-186ABFDCD110}) (Version: 1.01.15 - ASUS)
Intel(R) Update Manager (HKLM-x32\...\{7224B7CE-196C-4E2A-A1AE-1D7BF259FD36}) (Version: 3.4.1942 - Intel Corporation)
Intel® SSD Toolbox (HKLM-x32\...\{06D085C8-1F00-11B2-96A7-8f0CE39193ED}) (Version: 3.4.6.400 - Intel Corporation)
iTunes (HKLM\...\{56E3752E-E2E6-4F7C-AC04-24BC03A78F09}) (Version: 12.8.0.150 - Apple Inc.)
Java 8 Update 77 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218077F0}) (Version: 8.0.770.3 - Oracle Corporation)
Jpeg Resampler Vs 6+ (HKLM-x32\...\JpegResampler2010_is1) (Version: - Jpeg Resampler)
Logitech Vid HD (HKLM-x32\...\Logitech Vid) (Version: 7.2 (7248) - Logitech Inc..)
Logitech Webcam Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.0 - Logitech Inc.)
LWS VideoEffects (HKLM\...\{138A4072-9E64-46BD-B5F9-DB2BB395391F}) (Version: 13.30.1379.0 - Logitech) Hidden
Malwarebytes verze 3.5.1.2522 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.5.1.2522 - Malwarebytes)
Microsoft .NET Framework 4.7.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.7.02558 - Microsoft Corporation)
Microsoft .NET Framework 4.7.1 (suomi) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1035) (Version: 4.7.02558 - Microsoft Corporation)
Microsoft .NET Framework 4.7.1 (Русский) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1049) (Version: 4.7.02558 - Корпорация Майкрософт)
Microsoft .NET Framework 4.7.1 (עברית) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1037) (Version: 4.7.02558 - Microsoft Corporation)
Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft Office 2010 pro podnikatele (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office 2010 Service Pack 1 (SP1) (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{047B0968-E622-4FAA-9B4B-121FA109EDDE}) (Version: - Microsoft)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-0081-0405-0000-0000000FF1CE}) (Version: 14.0.6123.5001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft WSE 2.0 SP3 Runtime (HKLM-x32\...\{F3CA9611-CD42-4562-ADAB-A554CF8E17F1}) (Version: 2.0.5050.0 - Microsoft Corp.)
Mozilla Firefox 62.0 (x64 cs) (HKLM\...\Mozilla Firefox 62.0 (x64 cs)) (Version: 62.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 53.0 - Mozilla)
OE Classic 2.8 (HKLM-x32\...\OEClassic) (Version: 2.8 - OE Classic)
Open XML SDK 2.5 for Microsoft Office (HKLM-x32\...\{3EA16E23-14D2-466A-8268-D7CD40DC46B6}) (Version: 2.5.5631 - Microsoft Corporation)
OpenOffice 4.1.5 (HKLM-x32\...\{2FEA9841-64DE-4FA5-A36F-1CD23E2790EB}) (Version: 4.15.9789 - Apache Software Foundation)
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{E5347310-C82F-4833-AA36-8D11E5A8A86A}) (Version: 6.6 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{D745E014-74DD-43A3-98DF-E7D38164B681}) (Version: 6.6 - Apple Inc.)
Realtek Ethernet Controller Driver For Windows Vista and Later (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 1.00.0009 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6093 - Realtek Semiconductor Corp.)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.4.0 - Renesas Electronics Corporation) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.4.0 - Renesas Electronics Corporation)
Russian Phonetic YaZHert - WinRus.com (HKLM\...\{DE3C0FDB-6BCC-4D98-A928-923A70A41670}) (Version: 1.0.3.40 - personal)
Samsung Printer Center (HKLM-x32\...\Samsung Printer Center) (Version: 1.0.0.21 - Samsung Electronics Co., Ltd.)
SDL Trados 2015 - Remove suite of products (HKLM-x32\...\TranslationStudio2015) (Version: 4.0.4809 - SDL)
SDL Trados Legacy Compatibility Module (HKLM-x32\...\{7F8F4AF6-0CE2-46E9-BA14-C55F19968926}) (Version: 2.1.128 - SDL)
SDL Trados Studio 2015 (HKLM-x32\...\{27FA26BF-7D3F-458F-A4FF-3F972177B1DC}) (Version: 4.0.4809 - SDL)
SDL WorldServer Components (HKLM-x32\...\{CF32FB2A-0B13-4D6F-AB9F-9687D855C069}) (Version: 1.0.4809 - SDL)
Seznam Software (HKU\S-1-5-21-2865527742-3441578996-859845922-1000\...\SeznamInstall) (Version: 2.1.32 - Seznam.cz)
Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.103 - Skype Technologies S.A.)
Sokoban game Stand-alone version 3.0.4 (HKLM-x32\...\{09ABF828-03A7-47DF-890C-BF44F29CBD52}_is1) (Version: - 365freesoft.com)
Uninstall Samsung Printer Software (HKLM-x32\...\TotalUninstaller) (Version: 4.0.0.13 - Samsung Electronics CO., LTD.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.3 - VideoLAN)
Средства проверки правописания Microsoft Office 2013 — русский (HKLM\...\{90150000-001F-0419-1000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-12] (IvoSoft)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-12] (IvoSoft)
ContextMenuHandlers1: [Atheros] -> {B8952421-0E55-400B-94A6-FA858FC0A39F} => C:\Program Files (x86)\Bluetooth Suite\BtvAppExt.dll [2010-10-27] (Atheros Commnucations)
ContextMenuHandlers1-x32: [JRcm] -> {C20B9A7B-ED5B-4CEB-B2A6-F1F62E99C539} => C:\Program Files (x86)\JpegResampler2010\JRcm.dll [2010-08-19] ()
ContextMenuHandlers1-x32: [JRcm64] -> {013BF2A8-A4B1-11DF-A865-F509E0D72085} => C:\Program Files (x86)\JpegResampler2010\JRcm64.dll [2010-09-07] ()
ContextMenuHandlers1-x32-x32: [TranslationStudioShlExt2011] -> {F6C08E19-DCE1-45B5-A225-E94FADB585DD} => C:\Program Files (x86)\SDL\SDL Trados Studio\Studio4\TranslationStudioExt.dll [2015-06-25] (TODO: <Company name>)
ContextMenuHandlers3: [FTShellContext] -> {AFF81F7B-6942-40c4-AADA-7214EF7B6DD1} => C:\Program Files (x86)\Bluetooth Suite\ShellContextExt.dll [2010-10-27] (Atheros Commnucations)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-03] (Malwarebytes)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2010-02-10] (Advanced Micro Devices, Inc.)
ContextMenuHandlers6-x32: [JRcm] -> {C20B9A7B-ED5B-4CEB-B2A6-F1F62E99C539} => C:\Program Files (x86)\JpegResampler2010\JRcm.dll [2010-08-19] ()
ContextMenuHandlers6-x32: [JRcm64] -> {013BF2A8-A4B1-11DF-A865-F509E0D72085} => C:\Program Files (x86)\JpegResampler2010\JRcm64.dll [2010-09-07] ()
ContextMenuHandlers6-x32: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-03] (Malwarebytes)
ContextMenuHandlers6-x32: [StartMenuExt] -> {E595F05F-903F-4318-8B0A-7F633B520D2B} => C:\Windows\system32\StartMenuHelper64.dll [2017-08-12] (IvoSoft)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0274F842-1821-42E2-91D2-FAD6AC57FF8C} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2018-01-08] (Apple Inc.)
Task: {309D7AFC-F0CF-4A40-9096-CC2871E4F643} - System32\Tasks\{1167C67F-207F-4374-8771-14B0983480B6} => C:\Program Files (x86)\OpenOffice 4\program\soffice.exe [2017-12-12] (Apache Software Foundation)
Task: {34A35BC7-A91A-47E2-8178-2A89A4A9E6AF} - System32\Tasks\{A87930DD-9711-490E-8C96-E30FE710BAC2} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxp://ui.skype.com/ui/0/7.17.0.105/cs/ ... e=tsPlugin
Task: {38679578-5077-48B1-AB94-8FD4A8B27D47} - System32\Tasks\{F086085C-C1C9-4847-8DF8-55F79EA953AD} => "c:\program files (x86)\mozilla firefox\firefox.exe" hxxps://www.skype.com/go/downloading?so ... tError=404
Task: {3F3DB6DC-596A-42F0-B931-322C4C04983E} - System32\Tasks\{5C677165-391C-431D-AD70-98E24E583BBC} => "c:\program files (x86)\mozilla firefox\firefox.exe" hxxp://www.skype.com/go/downloading?sou ... tError=404
Task: {4966E353-C0FA-451D-8BB0-8BE59EB43378} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_30_0_0_134_Plugin.exe [2018-07-16] (Adobe Systems Incorporated)
Task: {4D1062B8-6580-40E0-B48B-47198F86FAEE} - System32\Tasks\{0AD0094F-ACE6-4A76-9F77-58892661EE96} => "c:\program files (x86)\mozilla firefox\firefox.exe" hxxps://ui.skype.com/ui/0/7.37.0.103/cs ... =tsInstall
Task: {52455DAA-CAEC-47AB-92B9-FA0ED1B64A88} - System32\Tasks\{EAFB31B5-7415-4209-8FA5-278EAFB5EE87} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxp://ui.skype.com/ui/0/6.21.0.104/cs/ ... Error=1618
Task: {576C622A-E1F3-416F-B87B-4CE1761818C8} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-03-21] (Adobe Systems Incorporated)
Task: {576E71A9-F2DA-46CD-9074-F6AD2139C519} - System32\Tasks\{1EF9473D-BB68-415C-8EA7-A3C88AA7A284} => C:\Program Files (x86)\OpenOffice 4\program\soffice.exe [2017-12-12] (Apache Software Foundation)
Task: {5FB360D1-2A25-4178-B3D9-C0008C9F2B2B} - System32\Tasks\{D1C03177-E44E-48E6-885C-96CAA8C342AC} => C:\Program Files (x86)\OpenOffice 4\program\soffice.exe [2017-12-12] (Apache Software Foundation)
Task: {66EF331B-15D2-40DC-A1C2-5DB7D0D84EC0} - System32\Tasks\{AA518FA6-3CA1-4904-8201-EBB62D210225} => C:\Program Files (x86)\OpenOffice 4\program\soffice.exe [2017-12-12] (Apache Software Foundation)
Task: {6AD0BBE3-6039-4F27-9CC4-1C0D347A7819} - System32\Tasks\{72EC817C-55B1-4611-82A8-82D350FEF835} => "c:\program files (x86)\mozilla firefox\firefox.exe" hxxp://www.skype.com/go/downloading?sou ... tError=404
Task: {7081D89D-74AC-4C69-9E86-1E43E7CE9C17} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2016-08-12] (Intel Corporation)
Task: {80352AA9-0150-4554-BB63-F2F5585D5E5F} - System32\Tasks\{3025C3B2-232A-4771-AF11-5300E246DBE4} => C:\Users\Toma\Desktop\Skype.exe
Task: {8733E4C0-B4E0-4B7C-9D0A-45C7048F52BA} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2016-08-12] (Intel Corporation)
Task: {8D50ACD4-BDED-41B5-8F42-960A822F9FD8} - System32\Tasks\ASUS\Gpu Boost Driver => C:\Program Files\ASUS\GPU Boost Driver\GpuBoostServer.exe [2010-03-27] ( ASUSTeK Computer Inc.)
Task: {A7E513EB-BE0C-4B41-949F-36E8E7D24C82} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [2018-07-31] (Bitdefender)
Task: {AA202A71-B25C-4917-8375-8B024DA05A80} - System32\Tasks\{4537B726-35E9-491C-930B-E11C530569F0} => C:\Windows\system32\pcalua.exe -a D:\winged\Instalg.exe -d D:\winged
Task: {AC11BA41-AD35-4D17-BC87-59196265C51B} - System32\Tasks\{9482E7D9-D1DB-44F9-A3E9-5C6A1F1F4C6F} => C:\Users\Toma\Downloads\BoxWorldSolver1.03\BoxWorldSolver1.03\BWSolver.exe [2018-06-26] ()
Task: {C415C6FD-1658-4A66-AD6D-A889C075FB14} - System32\Tasks\{F8B7CE94-FD28-440E-A105-61D657E581E1} => C:\Users\Toma\Downloads\BoxWorldSolver1.03\BoxWorldSolver1.03\BWSolver.exe [2018-06-26] ()
Task: {E7567EDB-75FF-44AE-A506-7F5A28B239E7} - System32\Tasks\{E6260363-21DD-445B-B2BC-C640280DF33B} => C:\Program Files (x86)\OpenOffice 4\program\soffice.exe [2017-12-12] (Apache Software Foundation)
Task: {F5ADA1BD-4EAC-4BE9-B1CE-94B7459B23A8} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-12-08] (Piriform Ltd)
Task: {FA80E35E-1BBA-482E-BF19-BD07CD3BB795} - System32\Tasks\{F53D6235-7DED-42B7-A428-A87C67208C07} => C:\Program Files (x86)\OpenOffice 4\program\soffice.exe [2017-12-12] (Apache Software Foundation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


Shortcut: C:\Users\Toma\Desktop\HRY\Solitairе.lnk -> [LF6"pH,R GFSI+SdWI!=Lv] <==== Cyrillic

==================== Loaded Modules (Whitelisted) ==============

2015-12-29 21:56 - 2015-03-12 04:43 - 000022528 _____ () C:\Windows\System32\us003lm.dll
2018-06-05 19:53 - 2017-11-13 16:46 - 000092368 _____ () C:\Users\Toma\AppData\Roaming\Seznam.cz\bin\26577libfoxloader-x64.dll
2016-06-29 11:44 - 2010-09-07 03:21 - 000538435 _____ () C:\Program Files (x86)\JpegResampler2010\JRcm64.dll
2018-06-23 06:56 - 2018-06-23 06:56 - 001356088 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2017-11-30 19:54 - 2017-11-30 19:54 - 000088888 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-12-29 21:56 - 2015-12-29 21:56 - 000143664 ____N () C:\Windows\SysWOW64\SecUPDUtilSvc.exe
2018-07-06 02:00 - 2018-07-06 02:00 - 001356088 _____ () C:\Program Files\iTunes\libxml2.dll
2018-07-06 02:00 - 2018-07-06 02:00 - 000088888 _____ () C:\Program Files\iTunes\zlib1.dll
2015-12-08 21:25 - 2015-12-08 21:25 - 000047616 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
2018-06-05 19:53 - 2017-11-13 16:38 - 000506064 _____ () C:\Users\Toma\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
2018-06-05 19:53 - 2017-02-08 13:39 - 000080576 _____ () C:\Users\Toma\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
2009-07-14 03:18 - 2009-07-14 03:41 - 000150528 _____ () C:\Windows\system32\SaMinDrv.dll
2018-02-03 01:11 - 2018-06-07 10:12 - 000278280 _____ () C:\Program Files\Bitdefender Antivirus Free\txmlutil.dll
2018-05-08 14:21 - 2018-05-08 14:21 - 000992704 _____ () C:\Program Files\Bitdefender Antivirus Free\Signatures\OTEngines\OTEngines_02639_001\ashttpbr.mdl
2018-05-08 14:21 - 2018-05-08 14:21 - 000543344 _____ () C:\Program Files\Bitdefender Antivirus Free\Signatures\OTEngines\OTEngines_02639_001\ashttpdsp.mdl
2018-05-08 14:21 - 2018-05-08 14:21 - 003228632 _____ () C:\Program Files\Bitdefender Antivirus Free\Signatures\OTEngines\OTEngines_02639_001\ashttpph.mdl
2018-05-08 14:21 - 2018-05-08 14:21 - 001527808 _____ () C:\Program Files\Bitdefender Antivirus Free\Signatures\OTEngines\OTEngines_02639_001\ashttprbl.mdl
2018-04-25 15:17 - 2018-09-04 13:53 - 002681424 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2015-12-20 19:49 - 2015-12-20 19:49 - 000270336 _____ () C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CrossDisplay.Graphics.Dashboard\1.0.0.0__90ba9c70f846762e\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2018-04-17 20:39 - 2018-04-17 20:39 - 013649920 _____ () C:\Program Files (x86)\OEClassic\OEClassic.exe
2016-01-26 21:07 - 2016-01-26 21:07 - 000888832 _____ () C:\Program Files (x86)\WG2000\WINGED.EXE
2011-08-12 13:20 - 2011-08-12 13:20 - 001260568 _____ () C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\UMVPLMute.dll
2011-08-12 13:19 - 2011-08-12 13:19 - 000221208 _____ () C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\FxPreview.dll
2011-08-12 13:20 - 2011-08-12 13:20 - 001349656 _____ () C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\MRSystem.dll
2011-08-12 13:20 - 2011-08-12 13:20 - 000135192 _____ () C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\MapTrackData.dll
2011-08-12 13:20 - 2011-08-12 13:20 - 001323032 _____ () C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\MMSystem.dll
2011-08-12 13:20 - 2011-08-12 13:20 - 000294424 _____ () C:\Program Files (x86)\Common Files\Logishrd\LQCVFX\VMSystem.dll
2015-12-20 20:03 - 2010-03-12 06:40 - 004449632 _____ () C:\Program Files\ASUS\GPU Boost Driver\Platform.dll
2015-12-20 20:03 - 2010-03-12 06:40 - 000423256 _____ () C:\Program Files\ASUS\GPU Boost Driver\Device.dll
2009-04-10 01:04 - 2009-04-10 01:04 - 002141008 _____ () C:\Program Files (x86)\Logitech\Vid HD\QtCore4.dll
2009-03-04 00:17 - 2009-03-04 00:17 - 007704400 _____ () C:\Program Files (x86)\Logitech\Vid HD\QtGui4.dll
2009-04-22 23:53 - 2009-04-22 23:53 - 000969040 _____ () C:\Program Files (x86)\Logitech\Vid HD\QtNetwork4.dll
2009-03-04 00:17 - 2009-03-04 00:17 - 000475472 _____ () C:\Program Files (x86)\Logitech\Vid HD\QtOpenGL4.dll
2009-03-04 00:17 - 2009-03-04 00:17 - 000363856 _____ () C:\Program Files (x86)\Logitech\Vid HD\QtXml4.dll
2009-03-04 00:17 - 2009-03-04 00:17 - 000200016 _____ () C:\Program Files (x86)\Logitech\Vid HD\QtSql4.dll
2011-01-13 03:55 - 2011-01-13 03:55 - 000027472 _____ () C:\Program Files (x86)\Logitech\Vid HD\SDL.dll
2009-03-04 00:17 - 2009-03-04 00:17 - 011311952 _____ () C:\Program Files (x86)\Logitech\Vid HD\QtWebKit4.dll
2009-03-04 00:17 - 2009-03-04 00:17 - 000291664 _____ () C:\Program Files (x86)\Logitech\Vid HD\phonon4.dll
2011-01-13 03:57 - 2011-01-13 03:57 - 000751616 _____ () C:\Program Files (x86)\Logitech\Vid HD\vpxmd.dll
2018-06-05 19:53 - 2017-11-13 16:49 - 000085200 _____ () C:\Users\Toma\AppData\Roaming\Seznam.cz\bin\26577libfoxloader.dll
2009-03-04 00:18 - 2009-03-04 00:18 - 000029008 _____ () C:\Program Files (x86)\Logitech\Vid HD\plugins\imageformats\qgif4.dll
2009-03-04 00:18 - 2009-03-04 00:18 - 000035152 _____ () C:\Program Files (x86)\Logitech\Vid HD\plugins\imageformats\qico4.dll
2009-03-04 00:18 - 2009-03-04 00:18 - 000138064 _____ () C:\Program Files (x86)\Logitech\Vid HD\plugins\imageformats\qjpeg4.dll
2012-01-18 08:43 - 2012-01-18 08:43 - 000183320 _____ () C:\Program Files (x86)\Common Files\logishrd\SharedBin\LVAPI11.dll
2017-08-17 16:51 - 2017-08-17 16:51 - 001993184 ____R () C:\Program Files (x86)\Skype\Phone\skypert.dll
2018-06-05 19:53 - 2018-02-21 11:36 - 000869584 _____ () C:\Users\Toma\AppData\Roaming\Seznam.cz\bin\lightspeed.dll
2009-12-15 14:46 - 2009-12-15 14:46 - 000619816 ____N () C:\Program Files (x86)\CyberLink\Power2Go\CLMediaLibrary.dll
2009-12-15 14:49 - 2009-12-15 14:49 - 000013096 ____N () C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll
2011-03-02 00:14 - 2011-03-02 00:14 - 002143576 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtCore4.dll
2011-03-02 00:14 - 2011-03-02 00:14 - 007954776 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtGui4.dll
2011-03-02 00:15 - 2011-03-02 00:15 - 000340824 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtXml4.dll
2011-03-02 00:15 - 2011-03-02 00:15 - 000027480 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QGif4.dll
2011-03-02 00:15 - 2011-03-02 00:15 - 000126808 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QJpeg4.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2018-04-22 21:35 - 000000035 _____ C:\Windows\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2865527742-3441578996-859845922-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Toma\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{1677EA17-A35E-4CBB-8C0C-6A4578BDE383}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD9\PowerDVD Cinema\PowerDVDCinema.exe
FirewallRules: [{E10610D7-BAE8-4814-88AD-03D486DBA142}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD9\PowerDVD9.EXE
FirewallRules: [{FF903EC8-88AE-4889-B7A2-70AD181ABFA4}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{0268E9DD-FAEA-4DE1-BC6D-56A5B4CED072}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{F11D1D30-812D-4290-AB0C-298CAE40F7BB}] => (Allow) C:\Program Files (x86)\Logitech\Vid HD\Vid.exe
FirewallRules: [{A7A69370-1604-4801-902B-7CF1FFFAE0F9}] => (Allow) C:\Program Files (x86)\Logitech\Vid HD\Vid.exe
FirewallRules: [TCP Query User{E8922B58-419C-429D-AEA0-2E44FC2D3B94}C:\program files (x86)\voipconnect.com\voipconnect\voipconnect.exe] => (Allow) C:\program files (x86)\voipconnect.com\voipconnect\voipconnect.exe
FirewallRules: [UDP Query User{7470360D-A531-48BE-A4B5-5B9878D69593}C:\program files (x86)\voipconnect.com\voipconnect\voipconnect.exe] => (Allow) C:\program files (x86)\voipconnect.com\voipconnect\voipconnect.exe
FirewallRules: [TCP Query User{E8E2EE71-CDA3-406D-A213-24218146024A}C:\program files (x86)\voipconnect.com\voipconnect\voipconnect.exe] => (Block) C:\program files (x86)\voipconnect.com\voipconnect\voipconnect.exe
FirewallRules: [UDP Query User{B5F36A5C-021F-4A50-BAA2-0BE24C9AF0C9}C:\program files (x86)\voipconnect.com\voipconnect\voipconnect.exe] => (Block) C:\program files (x86)\voipconnect.com\voipconnect\voipconnect.exe
FirewallRules: [TCP Query User{6D6DFDFC-251A-449D-9690-A7E351D15708}C:\program files (x86)\logitech\vid hd\vid.exe] => (Block) C:\program files (x86)\logitech\vid hd\vid.exe
FirewallRules: [UDP Query User{12A9D677-E90A-4254-98A7-E98FD2F5E665}C:\program files (x86)\logitech\vid hd\vid.exe] => (Block) C:\program files (x86)\logitech\vid hd\vid.exe
FirewallRules: [{89312E52-B171-4FEE-80B3-00F03F59F3B7}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{6333DD0B-7F4B-46D8-A302-4EE9F56E7C93}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{C9E54346-0A86-46F3-ACAB-32E2CF2429F4}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{044CB0AE-A019-4F1B-91D2-1D36357D991C}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{55FF4FBE-56D4-4613-91CA-70F3785334E7}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
FirewallRules: [TCP Query User{35FF7B23-486D-41CC-A30A-E668F550FD61}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{0DC6AE52-C85C-4ADD-8295-B1A4D176A538}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{25D03501-A6CC-4211-89B1-B06E5FA8C8D8}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{B5EDE073-B6CB-426A-8A8C-23259FDF990A}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{DB6E0D62-8AF6-4AD0-8F81-808349ED7C5D}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{251A5A0F-4F24-4828-A5E3-51094A59B1BE}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe
FirewallRules: [UDP Query User{93006562-02DB-438F-9E01-DC989BB5B6C6}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe
FirewallRules: [{E7ED5827-C03D-48D9-86DA-FEC6AF22DAB3}] => (Allow) C:\Program Files\iTunes\iTunes.exe

==================== Restore Points =========================

09-09-2018 09:00:39 Windows Update
09-09-2018 19:00:17 Windowsin varmuuskopiointi
16-09-2018 09:00:18 Windows Update
16-09-2018 19:00:16 Windowsin varmuuskopiointi

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (09/17/2018 10:50:20 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: AppendDNSNameString: Illegal empty label in name "."

Error: (09/17/2018 10:50:20 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: AppendDNSNameString: Illegal empty label in name "."

Error: (09/17/2018 09:51:30 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: AppendDNSNameString: Illegal empty label in name "."

Error: (09/17/2018 09:51:30 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: AppendDNSNameString: Illegal empty label in name "."

Error: (09/17/2018 09:46:43 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: AppendDNSNameString: Illegal empty label in name "."

Error: (09/17/2018 09:46:43 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: AppendDNSNameString: Illegal empty label in name "."

Error: (09/17/2018 09:24:09 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: AppendDNSNameString: Illegal empty label in name "."

Error: (09/17/2018 09:24:09 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: AppendDNSNameString: Illegal empty label in name "."


System errors:
=============
Error: (09/17/2018 05:29:22 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo:
atc

Error: (09/16/2018 10:07:23 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {F9717507-6651-4EDB-BFF7-AE615179BCCF} se v daném časovém limitu neregistroval u služby DCOM.

Error: (09/16/2018 10:07:22 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {3FCB7074-EC9E-4AAF-9BE3-C0E356942366} se v daném časovém limitu neregistroval u služby DCOM.

Error: (09/16/2018 08:49:57 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo:
atc

Error: (09/15/2018 09:57:43 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {F9717507-6651-4EDB-BFF7-AE615179BCCF} se v daném časovém limitu neregistroval u služby DCOM.

Error: (09/15/2018 10:37:20 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo:
atc

Error: (09/15/2018 10:22:54 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {F9717507-6651-4EDB-BFF7-AE615179BCCF} se v daném časovém limitu neregistroval u služby DCOM.

Error: (09/15/2018 10:22:54 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {3FCB7074-EC9E-4AAF-9BE3-C0E356942366} se v daném časovém limitu neregistroval u služby DCOM.


Windows Defender:
===================================
Date: 2017-11-21 09:01:16.256
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{6911F078-D3C3-42FA-B361-4FC71BC17ED3}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:NT-HALLINTA\Verkkopalvelu

Date: 2017-07-03 21:28:44.816
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{83DEDBD8-F9C5-4917-B300-1AC58E8CD3E2}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:Toma-PC\Toma

Date: 2017-06-18 21:40:08.297
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{85BEEC49-9641-4BBF-BC93-DDA993E9D48D}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:Toma-PC\Toma

Date: 2017-06-09 21:15:01.136
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{FAD1C810-1610-4BE6-ABDF-91AF0D9DC698}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:Toma-PC\Toma

Date: 2017-06-09 13:48:22.105
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{24FC9C38-9C44-4FA5-8009-FDFF43688CD0}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Úplné prohledávání
Uživatel:Toma-PC\Toma

==================== Memory info ===========================

Processor: AMD Athlon(tm) II X4 610e Processor
Percentage of memory in use: 54%
Total physical RAM: 7935.18 MB
Available physical RAM: 3605.42 MB
Total Virtual: 15868.5 MB
Available Virtual: 10076.03 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:148.95 GB) (Free:62.61 GB) NTFS
Drive e: (Externi HDD Babicka) (Fixed) (Total:931.48 GB) (Free:351.96 GB) NTFS

\\?\Volume{11420ede-a73f-11e5-b0d0-806e6f6e6963}\ (Järjestelmän varaama) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 149.1 GB) (Disk ID: 028FDAE7)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=149 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 931.5 GB) (Disk ID: 8613847A)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================


Nahoru
 Profil  
 
 Předmět příspěvku: Re: Chyba zabezpečeného spojení
PříspěvekNapsal: 20 zář 2018 14:27 
Offline
Návštěvník
Návštěvník

Registrován: 07 čer 2013 21:04
Příspěvky: 18
Otevřte poznámkový blok a zkopírujte do něj:


Kód:

Start

File: C:\Program Files (x86)\WG2000\WINGED.EXE
VirusTotal:C:\Windows\system32\taskhost.exe
VirusTotal:C:\Windows\system32\conhost.exe

CloseProcesses:
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
EmptyTemp:

End



Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<.
Po dokonceni si FRST vyzada restart PC, potvrd kliknutim na OK
Po skončení akce se objeví log, pripadne jej najdes v miste spusteni programu s nazvem Fixlog.txt, který sem zkopírujte.

_________________
Obrázek


Nahoru
 Profil  
 
 Předmět příspěvku: Re: Chyba zabezpečeného spojení
PříspěvekNapsal: 20 zář 2018 16:57 
Offline
Návštěvník
Návštěvník

Registrován: 16 dub 2010 11:03
Příspěvky: 181
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 22.04.2018
Ran by Toma (administrator) on TOMA-PC (20-09-2018 17:47:28)
Running from C:\Users\Toma\Desktop\Soubory _VIRY.cz
Loaded Profiles: Toma (Available Profiles: Toma)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: Finština (Finsko)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
( ASUSTeK Computer Inc.) C:\Program Files\ASUS\GPU Boost Driver\GpuBoostServer.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Bitdefender) C:\Program Files\Bitdefender Antivirus Free\bdredline.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
() C:\Windows\SysWOW64\SecUPDUtilSvc.exe
(SDL) C:\Program Files (x86)\Common Files\SDL\Telemetrics\Sdl.Desktop.ProductTelemetrics.Host.Windows.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Logitech Inc.) C:\Program Files (x86)\Logitech\Vid HD\Vid.exe
(VoipConnect) C:\Program Files (x86)\VoipConnect.com\VoipConnect\voipconnect.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
() C:\Users\Toma\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
() C:\Users\Toma\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe
(cyberlink) C:\Program Files (x86)\CyberLink\Shared files\brs.exe
(Logitech Inc.) C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
(Bitdefender) C:\Program Files\Bitdefender Antivirus Free\updatesrv.exe
(Bitdefender) C:\Program Files\Bitdefender Antivirus Free\vsserv.exe
(Bitdefender) C:\Program Files\Bitdefender Antivirus Free\vsservppl.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Bitdefender) C:\Program Files\Bitdefender Antivirus Free\bdagent.exe
(Skype Technologies) C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
() C:\Program Files (x86)\OEClassic\OEClassic.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10151968 2010-04-20] (Realtek Semiconductor)
HKLM\...\Run: [AtherosBtStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [613536 2010-10-27] (Atheros Communications)
HKLM\...\Run: [AthBtTray] => C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [379040 2010-10-27] (Atheros Commnucations)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [163776 2017-08-12] (IvoSoft)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [298296 2018-07-06] (Apple Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2010-02-10] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Six Engine] => C:\Program Files (x86)\ASUS\EPU\EPU.exe [5309056 2010-06-14] ( ASUSTeK Computer Inc.)
HKLM-x32\...\Run: [CLMLServer] => C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [103720 2009-12-15] (CyberLink)
HKLM-x32\...\Run: [UpdateP2GoShortCut] => C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl9] => C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe [87336 2009-07-06] (CyberLink Corp.)
HKLM-x32\...\Run: [BDRegion] => C:\Program Files (x86)\Cyberlink\Shared files\brs.exe [75048 2010-05-14] (cyberlink)
HKLM-x32\...\Run: [UpdatePSTShortCut] => "C:\Program Files (x86)\CyberLink\Blu-ray Disc Suite\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Blu-ray Disc Suite" UpdateWithCreateOnce "Software\CyberLink\PowerStarter"
HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [205336 2011-11-11] (Logitech Inc.)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1069296 2018-03-27] ()
HKU\S-1-5-21-2865527742-3441578996-859845922-1000\...\Run: [Logitech Vid] => C:\Program Files (x86)\Logitech\Vid HD\Vid.exe [6129496 2011-01-13] (Logitech Inc.)
HKU\S-1-5-21-2865527742-3441578996-859845922-1000\...\Run: [VoipConnect] => C:\Program Files (x86)\VoipConnect.com\VoipConnect\voipconnect.exe [42304056 2018-01-29] (VoipConnect)
HKU\S-1-5-21-2865527742-3441578996-859845922-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8590760 2015-12-08] (Piriform Ltd)
HKU\S-1-5-21-2865527742-3441578996-859845922-1000\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Toma\AppData\Roaming\Seznam.cz\szninstall.exe [1069296 2018-03-27] ()
HKU\S-1-5-21-2865527742-3441578996-859845922-1000\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Toma\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [109808 2018-03-27] ()
HKU\S-1-5-21-2865527742-3441578996-859845922-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27832272 2017-08-25] (Skype Technologies S.A.)
HKU\S-1-5-21-2865527742-3441578996-859845922-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\PhotoScreensaver.scr [477696 2010-11-21] (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{D9D3AF0F-D0D9-4BD0-A48D-37A1112F77AC}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{E6E69474-A415-495A-9473-4040CBC4FED2}: [DhcpNameServer] 10.0.0.138

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-2865527742-3441578996-859845922-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/?clid=12454
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2865527742-3441578996-859845922-1000 -> {1F4B397D-F2D5-414F-B138-B86FF030E495} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-2865527742-3441578996-859845922-1000 -> {279B91D7-43A6-4D02-8F5B-3D9A03F01406} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-2865527742-3441578996-859845922-1000 -> {6275EC92-153A-4352-A337-F620999FE8AD} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-2865527742-3441578996-859845922-1000 -> {A8E012C5-7DB5-4CF8-88DB-053C873906F6} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-2865527742-3441578996-859845922-1000 -> {B4FB63C8-6516-49F2-AB53-1F74F74BAAF3} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-2865527742-3441578996-859845922-1000 -> {C3BFC533-FD28-4712-AFAF-2E9BD0D7DEB0} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-2865527742-3441578996-859845922-1000 -> {DE2BBB5A-A972-4929-BAA4-1E040EFBE85B} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-2865527742-3441578996-859845922-1000 -> {E22375DC-BF25-4D95-87A2-65315B47CC9F} URL = hxxp://www.mapy.cz/?query={searchTerms}&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-2865527742-3441578996-859845922-1000 -> {E5AB4E9D-6633-4850-87C0-D90C5098B1FE} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid=QuickSearch_29530
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-12] (IvoSoft)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-12-21] (Microsoft Corporation)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2017-08-12] (IvoSoft)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2017-08-12] (IvoSoft)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\ssv.dll [2016-04-02] (Oracle Corporation)
BHO-x32: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2010-10-27] (Atheros Commnucations)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-12-21] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\jp2ssv.dll [2016-04-02] (Oracle Corporation)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2017-08-12] (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-12] (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2017-08-12] (IvoSoft)

FireFox:
========
FF DefaultProfile: lp9kdgcx.default
FF ProfilePath: C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default [2018-09-20]
FF Homepage: Mozilla\Firefox\Profiles\lp9kdgcx.default -> about:home
FF Session Restore: Mozilla\Firefox\Profiles\lp9kdgcx.default -> is enabled.
FF Extension: (Adblocker X) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\@adblock57.xpi [2018-04-24]
FF Extension: (Tipli do prohlížeče) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\@tipli-do-prohlizece-.xpi [2018-07-23]
FF Extension: (Český slovník pro kontrolu pravopisu) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\cs@dictionaries.addons.mozilla.org [2016-08-13] [Legacy]
FF Extension: (British English Dictionary) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\en-GB@dictionaries.addons.mozilla.org [2016-01-05] [Legacy] [not signed]
FF Extension: (United States English Spellchecker) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\en-US@dictionaries.addons.mozilla.org [2016-03-18] [Legacy]
FF Extension: (Spanish (Spain) Dictionary) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\es-es@dictionaries.addons.mozilla.org [2018-01-25] [Legacy]
FF Extension: (Dictionnaire français) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\fr-dicollecte@dictionaries.addons.mozilla.org [2018-05-10] [Legacy]
FF Extension: (IrregularVerbs) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\IrregularVerbs@canevas.xul.xpi [2016-04-27] [Legacy]
FF Extension: (Notifier for Gmail™) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\jid0-GjwrPchS3Ugt7xydvqVK4DQk8Ls@jetpack.xpi [2018-05-21]
FF Extension: (Mate Translate – translator, dictionary) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\jid1-TMndP6cdKgxLcQ@jetpack.xpi [2018-07-10]
FF Extension: (Russian spellchecking dictionary) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\ru@dictionaries.addons.mozilla.org [2016-01-05] [Legacy] [not signed]
FF Extension: (S3.Translator) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\s3google@translator.xpi [2018-09-11]
FF Extension: (Seznam doplněk - Esko) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\sko-extension@firma.seznam.cz.xpi [2018-09-06]
FF Extension: (Ukrainian dictionary) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\uk-ua@dictionaries.addons.mozilla.org [2018-08-31] [Legacy]
FF Extension: (X-notifier (for Gmail™,Hotmail,Yahoo,AOL...)) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\{37fa1426-b82d-11db-8314-0800200c9a66}.xpi [2018-09-15]
FF Extension: (ImTranslator: Překladač, Slovník, Hlas) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi [2018-09-19]
FF Extension: (Search By Image (by Google)) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\{ce7e73df-6a44-4028-8079-5927a588c948}.xpi [2017-01-24] [Legacy]
FF Extension: (Adblock Plus) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2018-08-30]
FF Extension: (Seznam doplněk - Email) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}.xpi [2018-09-06]
FF Extension: (No Name) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\extensions\sko-extension@firma.seznam.cz [not found]
FF Extension: (WebCompat Reporter) - C:\Program Files (x86)\Mozilla Firefox\browser\features\webcompat-reporter@mozilla.org.xpi [2018-09-05] [Legacy] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_30_0_0_134.dll [2018-07-16] ()
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_30_0_0_134.dll [2018-07-16] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\dtplugin\npDeployJava1.dll [2016-04-02] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\plugin2\npjp2.dll [2016-04-02] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-06-29] (Adobe Systems Inc.)

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2018-07-05] (Apple Inc.)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [52896 2010-10-27] (Atheros Commnucations) [File not signed]
R2 bdredline; C:\Program Files\Bitdefender Antivirus Free\bdredline.exe [2195280 2018-06-07] (Bitdefender)
S2 CLKMSVC10_9EC60124; C:\Program Files (x86)\CyberLink\PowerDVD9\NavFilter\kmsvc.exe [246256 2010-05-14] (CyberLink)
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6541008 2018-05-03] (Malwarebytes)
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1284032 2018-07-31] (Bitdefender)
R2 SamsungUPDUtilSvc; C:\Windows\SysWOW64\SecUPDUtilSvc.exe [143664 2015-12-29] ()
R2 Sdl.ProductTelemetrics.v1; C:\Program Files (x86)\Common Files\SDL\Telemetrics\Sdl.Desktop.ProductTelemetrics.Host.Windows.exe [12288 2015-06-17] (SDL) [File not signed]
R2 updatesrv; C:\Program Files\Bitdefender Antivirus Free\updatesrv.exe [239400 2018-06-07] (Bitdefender)
R2 vsserv; C:\Program Files\Bitdefender Antivirus Free\vsserv.exe [239400 2018-06-07] (Bitdefender)
R2 vsservppl; C:\Program Files\Bitdefender Antivirus Free\vsservppl.exe [239400 2018-06-07] (Bitdefender)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AODDriver; C:\Program Files\ASUS\GPU Boost Driver\amd64\AODDriver.sys [52280 2010-03-12] (Advanced Micro Devices)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2009-08-04] ()
R0 atc; C:\Windows\System32\DRIVERS\atc.sys [1283464 2018-06-07] (BitDefender S.R.L. Bucharest, ROMANIA)
R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [1723552 2018-05-11] (BitDefender)
R0 BdDci; C:\Windows\System32\DRIVERS\bddci.sys [152648 2018-05-11] (Bitdefender)
R3 edrsensor; C:\Windows\System32\DRIVERS\edrsensor.sys [246064 2018-05-11] (BitDefender S.R.L. Bucharest, ROMANIA)
R0 gzflt; C:\Windows\System32\drivers\gzflt.sys [193184 2018-07-04] (BitDefender LLC)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [259360 2018-09-20] (Malwarebytes)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-16] ()
S3 phantomtap; C:\Windows\System32\DRIVERS\phantomtap.sys [35664 2017-06-23] (The OpenVPN Project)
R2 trufos; C:\Windows\System32\drivers\trufos.sys [607640 2018-05-11] (Bitdefender)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-09-20 17:45 - 2018-09-20 17:45 - 000000492 _____ C:\Users\Toma\Desktop\fixlist.txt
2018-09-20 14:50 - 2018-09-20 14:50 - 000000000 ___RD C:\Users\Toma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2018-09-19 14:10 - 2018-09-19 14:18 - 000000000 ____D C:\Users\Toma\Desktop\2018-09-19
2018-09-19 14:10 - 2018-09-19 14:10 - 000000000 ____D C:\Users\Toma\Desktop\2018-06-01
2018-09-19 14:10 - 2018-09-19 14:10 - 000000000 ____D C:\Users\Toma\Desktop\2018-05-29
2018-09-19 14:10 - 2018-09-19 14:10 - 000000000 ____D C:\Users\Toma\Desktop\2018-03-04
2018-09-19 14:10 - 2018-09-19 14:10 - 000000000 ____D C:\Users\Toma\Desktop\2018-02-25
2018-09-19 14:10 - 2018-09-19 14:10 - 000000000 ____D C:\Users\Toma\Desktop\2018-02-11
2018-09-19 14:10 - 2018-09-19 14:10 - 000000000 ____D C:\Users\Toma\Desktop\2018-01-03
2018-09-19 14:10 - 2018-09-19 14:10 - 000000000 ____D C:\Users\Toma\Desktop\2017-12-29
2018-09-19 14:10 - 2018-09-19 14:10 - 000000000 ____D C:\Users\Toma\Desktop\2017-12-28
2018-09-19 10:05 - 2018-09-19 10:05 - 000000000 ____D C:\Users\Toma\AppData\Local\ElevatedDiagnostics
2018-09-16 18:14 - 2018-09-16 18:11 - 065643006 _____ C:\Users\Toma\Desktop\IMG_5492.MOV
2018-09-15 11:27 - 2018-09-15 11:27 - 000059923 _____ C:\Users\Toma\Downloads\Smlouva o Bankovní IDentitě - Tamara Panaková.pdf
2018-09-15 09:17 - 2018-09-15 09:17 - 000282040 _____ C:\Windows\Minidump\091518-16754-01.dmp
2018-09-13 20:58 - 2018-09-13 20:58 - 000282040 _____ C:\Windows\Minidump\091318-16785-01.dmp
2018-09-12 10:24 - 2018-09-12 10:25 - 000023541 _____ C:\Users\Toma\Desktop\Брюки _ДЛИНА.odt
2018-09-11 18:01 - 2018-09-11 18:01 - 000120587 _____ C:\Users\Toma\Desktop\Ponožková natural od p. Ďurovíče.odt
2018-09-11 17:54 - 2018-09-18 12:59 - 001376694 _____ C:\Users\Toma\Desktop\Ďurovíče рrvní dávka samovzorovací ponožkové .odt
2018-09-11 15:04 - 2018-09-11 15:04 - 000282040 _____ C:\Windows\Minidump\091118-17113-01.dmp
2018-09-11 07:53 - 2018-09-15 09:17 - 661174585 _____ C:\Windows\MEMORY.DMP
2018-09-11 07:53 - 2018-09-11 07:53 - 000282040 _____ C:\Windows\Minidump\091118-14835-01.dmp
2018-09-09 18:37 - 2018-09-09 18:37 - 001380588 _____ C:\Users\Toma\Desktop\pl_šatek_Close_To_You_PL.pdf
2018-09-09 18:36 - 2018-09-09 18:36 - 001462602 _____ C:\Users\Toma\Desktop\cz.Šatek Close_To_You_CZ.pdf
2018-09-09 18:13 - 2018-09-09 18:13 - 001380574 _____ C:\Users\Toma\Downloads\Close_To_You_PL.pdf
2018-09-09 18:04 - 2018-09-09 18:04 - 001462590 _____ C:\Users\Toma\Downloads\Close_To_You_CZ.pdf
2018-09-04 21:25 - 2018-09-04 21:25 - 000745782 _____ C:\Users\Toma\Downloads\Echoes_from_Karelia_ver3.pdf
2018-09-04 14:03 - 2018-09-04 14:04 - 007571152 _____ (Malwarebytes) C:\Users\Toma\Downloads\adwcleaner_7.2.3.1.exe
2018-09-04 13:53 - 2018-09-20 14:50 - 000259360 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2018-09-03 00:04 - 2018-09-03 00:04 - 000020599 _____ C:\Users\Toma\Desktop\Пирожки с гречневой кашей.odt
2018-09-02 11:02 - 2018-09-02 11:02 - 001433737 _____ C:\Users\Toma\Downloads\Russian_Double_Heelix(1).pdf
2018-09-02 10:55 - 2018-09-02 10:55 - 004344112 _____ C:\Users\Toma\Desktop\Носочки Двойные спиральки (Джени Стайман).odt
2018-09-02 09:51 - 2018-09-02 09:51 - 001433737 _____ C:\Users\Toma\Downloads\Russian_Double_Heelix.pdf
2018-08-31 13:29 - 2018-08-31 13:29 - 000076611 _____ C:\Users\Toma\Downloads\24506-P%C5%99ehled_nejpodstatn%C4%9Bj%C5%A1%C3%ADch_zm%C4%9Bn.pdf
2018-08-27 18:15 - 2018-08-27 18:10 - 101203024 _____ C:\Users\Toma\Desktop\IMG_5280.MOV
2018-08-25 10:15 - 2018-08-25 10:16 - 000369728 _____ C:\Windows\system32\FNTCACHE.DAT
2018-08-24 12:08 - 2018-08-24 12:08 - 000092560 _____ C:\Users\Toma\AppData\Local\GDIPFONTCACHEV1.DAT
2018-08-24 12:03 - 2018-08-24 12:03 - 000000082 _____ C:\Windows\system32\cc_20180824_120338.reg
2018-08-24 11:59 - 2018-08-24 11:59 - 000000082 _____ C:\Windows\system32\cc_20180824_115930.reg
2018-08-24 11:58 - 2018-08-24 11:58 - 000000082 _____ C:\Windows\system32\cc_20180824_115851.reg
2018-08-24 10:29 - 2018-08-24 10:29 - 000000000 ____D C:\Users\Toma\AppData\Local\mbam

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-09-20 17:47 - 2018-04-21 11:55 - 000000000 ____D C:\FRST
2018-09-20 17:47 - 2018-02-03 00:22 - 000000000 ____D C:\Program Files\Bitdefender Antivirus Free
2018-09-20 17:47 - 2015-12-29 21:50 - 000000000 ____D C:\Users\Toma\AppData\Roaming\Skype
2018-09-20 17:44 - 2018-05-03 21:41 - 000000000 ____D C:\Users\Toma\AppData\Local\ClassicShell
2018-09-20 15:05 - 2009-07-14 06:45 - 000021888 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-09-20 15:05 - 2009-07-14 06:45 - 000021888 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-09-20 14:56 - 2016-11-16 19:48 - 000000000 ____D C:\Users\Toma\AppData\LocalLow\Mozilla
2018-09-20 14:55 - 2018-06-05 19:53 - 000000000 ____D C:\Users\Toma\AppData\Roaming\Seznam.cz
2018-09-20 14:55 - 2015-12-21 17:23 - 000719098 _____ C:\Windows\system32\perfh019.dat
2018-09-20 14:55 - 2015-12-21 17:23 - 000151344 _____ C:\Windows\system32\perfc019.dat
2018-09-20 14:55 - 2015-12-21 17:17 - 000671828 _____ C:\Windows\system32\perfh005.dat
2018-09-20 14:55 - 2015-12-21 17:17 - 000142424 _____ C:\Windows\system32\perfc005.dat
2018-09-20 14:55 - 2015-12-21 17:12 - 000386842 _____ C:\Windows\system32\perfh00D.dat
2018-09-20 14:55 - 2015-12-21 17:12 - 000085260 _____ C:\Windows\system32\perfc00D.dat
2018-09-20 14:55 - 2010-11-21 11:10 - 000476000 _____ C:\Windows\system32\perfh00B.dat
2018-09-20 14:55 - 2010-11-21 11:10 - 000102022 _____ C:\Windows\system32\perfc00B.dat
2018-09-20 14:55 - 2009-07-14 07:13 - 003507970 _____ C:\Windows\system32\PerfStringBackup.INI
2018-09-20 14:55 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2018-09-20 14:52 - 2018-02-03 00:22 - 000003648 _____ C:\Windows\System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864
2018-09-20 14:50 - 2017-08-21 13:06 - 000000035 _____ C:\Users\Public\Documents\AtherosServiceConfig.ini
2018-09-20 14:50 - 2015-12-31 00:30 - 000000000 _____ C:\Windows\system32\Drivers\lvuvc.hs
2018-09-20 14:50 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-09-19 19:41 - 2015-12-30 00:12 - 000000000 ____D C:\Users\Toma\Documents\Soubory aplikace Outlook
2018-09-19 16:39 - 2015-12-29 21:36 - 000000000 ____D C:\Users\Toma\AppData\Roaming\vlc
2018-09-15 09:17 - 2017-06-30 13:41 - 000000000 ____D C:\Windows\Minidump
2018-09-10 15:31 - 2018-07-27 19:36 - 000000000 ____D C:\Users\Toma\Desktop\Леинка!
2018-09-09 17:55 - 2018-05-01 00:19 - 000000000 ___RD C:\Users\Toma\Desktop\Nové různé
2018-09-09 08:17 - 2017-06-04 18:13 - 000000000 ___RD C:\Users\Toma\Documents\Scanned Documents
2018-09-06 07:21 - 2017-06-13 23:16 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2018-09-06 07:21 - 2015-12-20 20:24 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-09-04 13:53 - 2018-04-25 15:17 - 000152688 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2018-09-02 22:04 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\NDF
2018-09-01 12:59 - 2015-12-21 00:48 - 003433546 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2018-08-24 11:55 - 2016-01-01 01:37 - 000000000 ____D C:\Users\Toma\Desktop\Málo používané
2018-08-24 11:55 - 2015-12-20 20:04 - 000000000 ____D C:\Users\Toma\AppData\Local\CrashDumps

==================== Files in the root of some directories =======

2015-10-21 16:38 - 2015-10-21 16:38 - 118294111 _____ () C:\Program Files (x86)\openoffice1.cab
2015-10-21 16:36 - 2015-10-21 16:36 - 002306048 _____ () C:\Program Files (x86)\openoffice412.msi
2015-10-21 16:36 - 2015-10-21 16:36 - 000478720 _____ () C:\Program Files (x86)\setup.exe
2015-10-21 16:36 - 2015-10-21 16:36 - 000000279 _____ () C:\Program Files (x86)\setup.ini
2016-06-01 22:07 - 2018-08-15 15:16 - 000000349 _____ () C:\Users\Toma\AppData\Roaming\FotoSketcher.ini
2018-04-21 16:40 - 2018-04-21 21:44 - 000029696 _____ () C:\Users\Toma\AppData\Local\MSGBOX.EXE

Some files in TEMP:
====================
2018-06-07 19:04 - 2018-06-07 19:04 - 000465920 _____ (Realtek Semiconductor Corp.) C:\Users\Toma\AppData\Local\Temp\COMAP.EXE
2018-06-30 20:01 - 2018-08-28 19:01 - 062091672 _____ (Skype Technologies S.A.) C:\Users\Toma\AppData\Local\Temp\SkypeSetup.exe
2018-06-12 10:17 - 2018-06-12 10:18 - 041465128 _____ () C:\Users\Toma\AppData\Local\Temp\vlc-3.0.3-win64.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-09-15 13:23

==================== End of FRST.txt ============================


Nahoru
 Profil  
 
 Předmět příspěvku: Re: Chyba zabezpečeného spojení
PříspěvekNapsal: 20 zář 2018 16:59 
Offline
Návštěvník
Návštěvník

Registrován: 16 dub 2010 11:03
Příspěvky: 181
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 22.04.2018
Ran by Toma (20-09-2018 17:48:54)
Running from C:\Users\Toma\Desktop\Soubory _VIRY.cz
Windows 7 Ultimate Service Pack 1 (X64) (2015-12-20 16:34:42)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

HomeGroupUser$ (S-1-5-21-2865527742-3441578996-859845922-1002 - Limited - Enabled)
Järjestelmänvalvoja (S-1-5-21-2865527742-3441578996-859845922-500 - Administrator - Disabled)
Toma (S-1-5-21-2865527742-3441578996-859845922-1000 - Administrator - Enabled) => C:\Users\Toma
Vieras (S-1-5-21-2865527742-3441578996-859845922-501 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Bitdefender Antivirus Free Antimalware (Enabled - Up to date) {EA21BCE8-A461-99C3-3A0D-4C964E75494E}
AS: Bitdefender Antivirus Free Antimalware (Enabled - Up to date) {51405D0C-825B-964D-00BD-77E435F203F3}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 18.011.20058 - Adobe Systems Incorporated)
Adobe Flash Player 30 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 30.0.0.134 - Adobe Systems Incorporated)
Apple Mobile Device Support (HKLM\...\{C29B636B-9015-4ED1-A12F-6375A337F23B}) (Version: 11.4.1.46 - Apple Inc.)
Apple Software Update (HKLM-x32\...\{A30EA700-5515-48F0-88B0-9E99DC356B88}) (Version: 2.6.0.1 - Apple Inc.)
ASUS WiFi-AP @n (HKLM-x32\...\{6600970A-BAE7-412A-BFFC-91AD793B3A41}) (Version: 1.1.0.6 - ASUS)
ASUS WiFi-AP @n (HKLM-x32\...\{AED37211-341F-4520-ACCB-D102DA140925}) (Version: 1.1.0.6 - ASUS) Hidden
ATI Catalyst Install Manager (HKLM\...\{2A13EF26-4D68-B2D7-A486-DBBD2FDE366B}) (Version: 3.0.765.0 - ATI Technologies, Inc.)
Bitdefender Agent (HKLM\...\Bitdefender Agent) (Version: 21.0.25.59 - Bitdefender)
Bitdefender Antivirus Free (HKLM\...\{1FCCF41D-5F00-4FE2-9653-162D0486C8B4}) (Version: 1.0.10.12 - Bitdefender)
Bluetooth Win7 Suite (64) (HKLM\...\{230D1595-57DA-4933-8C4E-375797EBB7E1}) (Version: 7.2.0.40 - Atheros Communications)
Bonjour (HKLM\...\{56DDDFB8-7F79-4480-89D5-25E1F52AB28F}) (Version: 3.1.0.1 - Apple Inc.)
CameraHelperMsi (HKLM-x32\...\{15634701-BACE-4449-8B25-1567DA8C9FD3}) (Version: 13.31.1038.0 - Logitech) Hidden
ccc-core-static (HKLM-x32\...\{8ADE5280-35CA-CF98-A456-F66B98C77244}) (Version: 2010.0210.2206.39615 - Yrityksen nimi) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.13 - Piriform)
Classic Shell (HKLM\...\{CABCE573-0A86-42FA-A52A-C7EA61D5BE08}) (Version: 4.3.1 - IvoSoft)
CyberLink BD Advisor 2.0 (HKLM-x32\...\{2D2D8FE2-605C-4D3C-B706-36E981E7EEF0}) (Version: - )
CyberLink Blu-ray Disc Suite (HKLM-x32\...\InstallShield_{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}) (Version: 6.0.3226 - CyberLink Corp.)
CyberLink LG Burning Tool (HKLM-x32\...\InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}) (Version: 6.2.3714 - CyberLink Corp.)
CyberLink PowerDVD 9 (HKLM-x32\...\InstallShield_{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}) (Version: 9.0.2919.52 - CyberLink Corp.)
EPU (HKLM-x32\...\{9C2AC00C-0C06-4B7E-97A4-A833808D54D6}) (Version: 1.02.21 - )
erLT (HKLM-x32\...\{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}) (Version: 1.20.138.34 - Logitech, Inc.) Hidden
FormApps Signing Extension (HKLM-x32\...\{ACA43D91-8B42-4D42-8C8B-A893BD6AA40D}) (Version: 2.8.2.28 - Software602 a.s.)
FotoSketcher 3.30 (HKLM-x32\...\{E7C6D565-2E48-4303-A114-AFE7B2E561AF}_is1) (Version: - David THOIRON)
GPU Boost Driver (HKLM-x32\...\{B8887E02-C910-4498-A7C0-186ABFDCD110}) (Version: 1.01.15 - ASUS)
Intel(R) Update Manager (HKLM-x32\...\{7224B7CE-196C-4E2A-A1AE-1D7BF259FD36}) (Version: 3.4.1942 - Intel Corporation)
Intel® SSD Toolbox (HKLM-x32\...\{06D085C8-1F00-11B2-96A7-8f0CE39193ED}) (Version: 3.4.6.400 - Intel Corporation)
iTunes (HKLM\...\{56E3752E-E2E6-4F7C-AC04-24BC03A78F09}) (Version: 12.8.0.150 - Apple Inc.)
Java 8 Update 77 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218077F0}) (Version: 8.0.770.3 - Oracle Corporation)
Jpeg Resampler Vs 6+ (HKLM-x32\...\JpegResampler2010_is1) (Version: - Jpeg Resampler)
Logitech Vid HD (HKLM-x32\...\Logitech Vid) (Version: 7.2 (7248) - Logitech Inc..)
Logitech Webcam Software (HKLM-x32\...\{D40EB009-0499-459c-A8AF-C9C110766215}) (Version: 2.0 - Logitech Inc.)
LWS VideoEffects (HKLM\...\{138A4072-9E64-46BD-B5F9-DB2BB395391F}) (Version: 13.30.1379.0 - Logitech) Hidden
Malwarebytes verze 3.5.1.2522 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.5.1.2522 - Malwarebytes)
Microsoft .NET Framework 4.7.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.7.02558 - Microsoft Corporation)
Microsoft .NET Framework 4.7.1 (suomi) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1035) (Version: 4.7.02558 - Microsoft Corporation)
Microsoft .NET Framework 4.7.1 (Русский) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1049) (Version: 4.7.02558 - Корпорация Майкрософт)
Microsoft .NET Framework 4.7.1 (עברית) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1037) (Version: 4.7.02558 - Microsoft Corporation)
Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft Office 2010 pro podnikatele (HKLM-x32\...\Office14.SingleImage) (Version: 14.0.6029.1000 - Microsoft Corporation)
Microsoft Office 2010 Service Pack 1 (SP1) (HKLM-x32\...\{90140000-003D-0000-0000-0000000FF1CE}_Office14.SingleImage_{047B0968-E622-4FAA-9B4B-121FA109EDDE}) (Version: - Microsoft)
Microsoft Office Outlook Connector (HKLM-x32\...\{95140000-0081-0405-0000-0000000FF1CE}) (Version: 14.0.6123.5001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM-x32\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft WSE 2.0 SP3 Runtime (HKLM-x32\...\{F3CA9611-CD42-4562-ADAB-A554CF8E17F1}) (Version: 2.0.5050.0 - Microsoft Corp.)
Mozilla Firefox 62.0 (x64 cs) (HKLM\...\Mozilla Firefox 62.0 (x64 cs)) (Version: 62.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 53.0 - Mozilla)
OE Classic 2.8 (HKLM-x32\...\OEClassic) (Version: 2.8 - OE Classic)
Open XML SDK 2.5 for Microsoft Office (HKLM-x32\...\{3EA16E23-14D2-466A-8268-D7CD40DC46B6}) (Version: 2.5.5631 - Microsoft Corporation)
OpenOffice 4.1.5 (HKLM-x32\...\{2FEA9841-64DE-4FA5-A36F-1CD23E2790EB}) (Version: 4.15.9789 - Apache Software Foundation)
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{E5347310-C82F-4833-AA36-8D11E5A8A86A}) (Version: 6.6 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{D745E014-74DD-43A3-98DF-E7D38164B681}) (Version: 6.6 - Apple Inc.)
Realtek Ethernet Controller Driver For Windows Vista and Later (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 1.00.0009 - Realtek)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6093 - Realtek Semiconductor Corp.)
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.4.0 - Renesas Electronics Corporation) Hidden
Renesas Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.0.4.0 - Renesas Electronics Corporation)
Russian Phonetic YaZHert - WinRus.com (HKLM\...\{DE3C0FDB-6BCC-4D98-A928-923A70A41670}) (Version: 1.0.3.40 - personal)
Samsung Printer Center (HKLM-x32\...\Samsung Printer Center) (Version: 1.0.0.21 - Samsung Electronics Co., Ltd.)
SDL Trados 2015 - Remove suite of products (HKLM-x32\...\TranslationStudio2015) (Version: 4.0.4809 - SDL)
SDL Trados Legacy Compatibility Module (HKLM-x32\...\{7F8F4AF6-0CE2-46E9-BA14-C55F19968926}) (Version: 2.1.128 - SDL)
SDL Trados Studio 2015 (HKLM-x32\...\{27FA26BF-7D3F-458F-A4FF-3F972177B1DC}) (Version: 4.0.4809 - SDL)
SDL WorldServer Components (HKLM-x32\...\{CF32FB2A-0B13-4D6F-AB9F-9687D855C069}) (Version: 1.0.4809 - SDL)
Seznam Software (HKU\S-1-5-21-2865527742-3441578996-859845922-1000\...\SeznamInstall) (Version: 2.1.32 - Seznam.cz)
Skype™ 7.40 (HKLM-x32\...\{3B7E914A-93D5-4A29-92BB-AF8C3F66C431}) (Version: 7.40.103 - Skype Technologies S.A.)
Sokoban game Stand-alone version 3.0.4 (HKLM-x32\...\{09ABF828-03A7-47DF-890C-BF44F29CBD52}_is1) (Version: - 365freesoft.com)
Uninstall Samsung Printer Software (HKLM-x32\...\TotalUninstaller) (Version: 4.0.0.13 - Samsung Electronics CO., LTD.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.3 - VideoLAN)
Средства проверки правописания Microsoft Office 2013 — русский (HKLM\...\{90150000-001F-0419-1000-0000000FF1CE}) (Version: 15.0.4420.1017 - Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

ShellIconOverlayIdentifiers: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-12] (IvoSoft)
ShellIconOverlayIdentifiers-x32: [ShareOverlay] -> {594D4122-1F87-41E2-96C7-825FB4796516} => C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-12] (IvoSoft)
ContextMenuHandlers1: [Atheros] -> {B8952421-0E55-400B-94A6-FA858FC0A39F} => C:\Program Files (x86)\Bluetooth Suite\BtvAppExt.dll [2010-10-27] (Atheros Commnucations)
ContextMenuHandlers1-x32: [JRcm] -> {C20B9A7B-ED5B-4CEB-B2A6-F1F62E99C539} => C:\Program Files (x86)\JpegResampler2010\JRcm.dll [2010-08-19] ()
ContextMenuHandlers1-x32: [JRcm64] -> {013BF2A8-A4B1-11DF-A865-F509E0D72085} => C:\Program Files (x86)\JpegResampler2010\JRcm64.dll [2010-09-07] ()
ContextMenuHandlers1-x32-x32: [TranslationStudioShlExt2011] -> {F6C08E19-DCE1-45B5-A225-E94FADB585DD} => C:\Program Files (x86)\SDL\SDL Trados Studio\Studio4\TranslationStudioExt.dll [2015-06-25] (TODO: <Company name>)
ContextMenuHandlers3: [FTShellContext] -> {AFF81F7B-6942-40c4-AADA-7214EF7B6DD1} => C:\Program Files (x86)\Bluetooth Suite\ShellContextExt.dll [2010-10-27] (Atheros Commnucations)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-03] (Malwarebytes)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2010-02-10] (Advanced Micro Devices, Inc.)
ContextMenuHandlers6-x32: [JRcm] -> {C20B9A7B-ED5B-4CEB-B2A6-F1F62E99C539} => C:\Program Files (x86)\JpegResampler2010\JRcm.dll [2010-08-19] ()
ContextMenuHandlers6-x32: [JRcm64] -> {013BF2A8-A4B1-11DF-A865-F509E0D72085} => C:\Program Files (x86)\JpegResampler2010\JRcm64.dll [2010-09-07] ()
ContextMenuHandlers6-x32: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2018-05-03] (Malwarebytes)
ContextMenuHandlers6-x32: [StartMenuExt] -> {E595F05F-903F-4318-8B0A-7F633B520D2B} => C:\Windows\system32\StartMenuHelper64.dll [2017-08-12] (IvoSoft)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0274F842-1821-42E2-91D2-FAD6AC57FF8C} - System32\Tasks\Apple\AppleSoftwareUpdate => C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe [2018-01-08] (Apple Inc.)
Task: {309D7AFC-F0CF-4A40-9096-CC2871E4F643} - System32\Tasks\{1167C67F-207F-4374-8771-14B0983480B6} => C:\Program Files (x86)\OpenOffice 4\program\soffice.exe [2017-12-12] (Apache Software Foundation)
Task: {34A35BC7-A91A-47E2-8178-2A89A4A9E6AF} - System32\Tasks\{A87930DD-9711-490E-8C96-E30FE710BAC2} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxp://ui.skype.com/ui/0/7.17.0.105/cs/ ... e=tsPlugin
Task: {38679578-5077-48B1-AB94-8FD4A8B27D47} - System32\Tasks\{F086085C-C1C9-4847-8DF8-55F79EA953AD} => "c:\program files (x86)\mozilla firefox\firefox.exe" hxxps://www.skype.com/go/downloading?so ... tError=404
Task: {3F3DB6DC-596A-42F0-B931-322C4C04983E} - System32\Tasks\{5C677165-391C-431D-AD70-98E24E583BBC} => "c:\program files (x86)\mozilla firefox\firefox.exe" hxxp://www.skype.com/go/downloading?sou ... tError=404
Task: {4966E353-C0FA-451D-8BB0-8BE59EB43378} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_30_0_0_134_Plugin.exe [2018-07-16] (Adobe Systems Incorporated)
Task: {4D1062B8-6580-40E0-B48B-47198F86FAEE} - System32\Tasks\{0AD0094F-ACE6-4A76-9F77-58892661EE96} => "c:\program files (x86)\mozilla firefox\firefox.exe" hxxps://ui.skype.com/ui/0/7.37.0.103/cs ... =tsInstall
Task: {52455DAA-CAEC-47AB-92B9-FA0ED1B64A88} - System32\Tasks\{EAFB31B5-7415-4209-8FA5-278EAFB5EE87} => "c:\program files (x86)\google\chrome\application\chrome.exe" hxxp://ui.skype.com/ui/0/6.21.0.104/cs/ ... Error=1618
Task: {576C622A-E1F3-416F-B87B-4CE1761818C8} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-03-21] (Adobe Systems Incorporated)
Task: {576E71A9-F2DA-46CD-9074-F6AD2139C519} - System32\Tasks\{1EF9473D-BB68-415C-8EA7-A3C88AA7A284} => C:\Program Files (x86)\OpenOffice 4\program\soffice.exe [2017-12-12] (Apache Software Foundation)
Task: {5FB360D1-2A25-4178-B3D9-C0008C9F2B2B} - System32\Tasks\{D1C03177-E44E-48E6-885C-96CAA8C342AC} => C:\Program Files (x86)\OpenOffice 4\program\soffice.exe [2017-12-12] (Apache Software Foundation)
Task: {66EF331B-15D2-40DC-A1C2-5DB7D0D84EC0} - System32\Tasks\{AA518FA6-3CA1-4904-8201-EBB62D210225} => C:\Program Files (x86)\OpenOffice 4\program\soffice.exe [2017-12-12] (Apache Software Foundation)
Task: {6AD0BBE3-6039-4F27-9CC4-1C0D347A7819} - System32\Tasks\{72EC817C-55B1-4611-82A8-82D350FEF835} => "c:\program files (x86)\mozilla firefox\firefox.exe" hxxp://www.skype.com/go/downloading?sou ... tError=404
Task: {7081D89D-74AC-4C69-9E86-1E43E7CE9C17} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473-Logon => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2016-08-12] (Intel Corporation)
Task: {80352AA9-0150-4554-BB63-F2F5585D5E5F} - System32\Tasks\{3025C3B2-232A-4771-AF11-5300E246DBE4} => C:\Users\Toma\Desktop\Skype.exe
Task: {8733E4C0-B4E0-4B7C-9D0A-45C7048F52BA} - System32\Tasks\IUM-F1E24CA0-B63E-4F13-A9E3-4ADE3BFF3473 => C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [2016-08-12] (Intel Corporation)
Task: {8D50ACD4-BDED-41B5-8F42-960A822F9FD8} - System32\Tasks\ASUS\Gpu Boost Driver => C:\Program Files\ASUS\GPU Boost Driver\GpuBoostServer.exe [2010-03-27] ( ASUSTeK Computer Inc.)
Task: {A7E513EB-BE0C-4B41-949F-36E8E7D24C82} - System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864 => C:\Program Files\Bitdefender Agent\WatchDog.exe [2018-07-31] (Bitdefender)
Task: {AA202A71-B25C-4917-8375-8B024DA05A80} - System32\Tasks\{4537B726-35E9-491C-930B-E11C530569F0} => C:\Windows\system32\pcalua.exe -a D:\winged\Instalg.exe -d D:\winged
Task: {AC11BA41-AD35-4D17-BC87-59196265C51B} - System32\Tasks\{9482E7D9-D1DB-44F9-A3E9-5C6A1F1F4C6F} => C:\Users\Toma\Downloads\BoxWorldSolver1.03\BoxWorldSolver1.03\BWSolver.exe [2018-06-26] ()
Task: {C415C6FD-1658-4A66-AD6D-A889C075FB14} - System32\Tasks\{F8B7CE94-FD28-440E-A105-61D657E581E1} => C:\Users\Toma\Downloads\BoxWorldSolver1.03\BoxWorldSolver1.03\BWSolver.exe [2018-06-26] ()
Task: {E7567EDB-75FF-44AE-A506-7F5A28B239E7} - System32\Tasks\{E6260363-21DD-445B-B2BC-C640280DF33B} => C:\Program Files (x86)\OpenOffice 4\program\soffice.exe [2017-12-12] (Apache Software Foundation)
Task: {F5ADA1BD-4EAC-4BE9-B1CE-94B7459B23A8} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2015-12-08] (Piriform Ltd)
Task: {FA80E35E-1BBA-482E-BF19-BD07CD3BB795} - System32\Tasks\{F53D6235-7DED-42B7-A428-A87C67208C07} => C:\Program Files (x86)\OpenOffice 4\program\soffice.exe [2017-12-12] (Apache Software Foundation)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts & WMI ========================

(The entries could be listed to be restored or removed.)


Shortcut: C:\Users\Toma\Desktop\HRY\Solitairе.lnk -> [LF6"pH,R GFSI+SdWI!=Lv] <==== Cyrillic

==================== Loaded Modules (Whitelisted) ==============

2015-12-29 21:56 - 2015-03-12 04:43 - 000022528 _____ () C:\Windows\System32\us003lm.dll
2018-06-05 19:53 - 2017-11-13 16:46 - 000092368 _____ () C:\Users\Toma\AppData\Roaming\Seznam.cz\bin\26577libfoxloader-x64.dll
2018-02-03 01:11 - 2018-06-07 10:12 - 000278280 _____ () C:\Program Files\Bitdefender Antivirus Free\txmlutil.dll
2016-06-29 11:44 - 2010-09-07 03:21 - 000538435 _____ () C:\Program Files (x86)\JpegResampler2010\JRcm64.dll
2018-06-23 06:56 - 2018-06-23 06:56 - 001356088 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2017-11-30 19:54 - 2017-11-30 19:54 - 000088888 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2015-12-29 21:56 - 2015-12-29 21:56 - 000143664 ____N () C:\Windows\SysWOW64\SecUPDUtilSvc.exe
2018-07-06 02:00 - 2018-07-06 02:00 - 001356088 _____ () C:\Program Files\iTunes\libxml2.dll
2018-07-06 02:00 - 2018-07-06 02:00 - 000088888 _____ () C:\Program Files\iTunes\zlib1.dll
2015-12-08 21:25 - 2015-12-08 21:25 - 000047616 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
2018-06-05 19:53 - 2017-11-13 16:38 - 000506064 _____ () C:\Users\Toma\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
2018-06-05 19:53 - 2017-02-08 13:39 - 000080576 _____ () C:\Users\Toma\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
2009-07-14 03:18 - 2009-07-14 03:41 - 000150528 _____ () C:\Windows\system32\SaMinDrv.dll
2018-05-08 14:21 - 2018-05-08 14:21 - 000992704 _____ () C:\Program Files\Bitdefender Antivirus Free\Signatures\OTEngines\OTEngines_02639_001\ashttpbr.mdl
2018-05-08 14:21 - 2018-05-08 14:21 - 000543344 _____ () C:\Program Files\Bitdefender Antivirus Free\Signatures\OTEngines\OTEngines_02639_001\ashttpdsp.mdl
2018-05-08 14:21 - 2018-05-08 14:21 - 003228632 _____ () C:\Program Files\Bitdefender Antivirus Free\Signatures\OTEngines\OTEngines_02639_001\ashttpph.mdl
2018-05-08 14:21 - 2018-05-08 14:21 - 001527808 _____ () C:\Program Files\Bitdefender Antivirus Free\Signatures\OTEngines\OTEngines_02639_001\ashttprbl.mdl
2018-04-25 15:17 - 2018-09-04 13:53 - 002681424 _____ () C:\PROGRAM FILES\MALWAREBYTES\ANTI-MALWARE\SelfProtectionSdk.dll
2015-12-20 19:49 - 2015-12-20 19:49 - 000270336 _____ () C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CrossDisplay.Graphics.Dashboard\1.0.0.0__90ba9c70f846762e\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
2018-04-17 20:39 - 2018-04-17 20:39 - 013649920 _____ () C:\Program Files (x86)\OEClassic\OEClassic.exe
2015-12-20 20:03 - 2010-03-12 06:40 - 004449632 _____ () C:\Program Files\ASUS\GPU Boost Driver\Platform.dll
2015-12-20 20:03 - 2010-03-12 06:40 - 000423256 _____ () C:\Program Files\ASUS\GPU Boost Driver\Device.dll
2009-04-10 01:04 - 2009-04-10 01:04 - 002141008 _____ () C:\Program Files (x86)\Logitech\Vid HD\QtCore4.dll
2009-03-04 00:17 - 2009-03-04 00:17 - 007704400 _____ () C:\Program Files (x86)\Logitech\Vid HD\QtGui4.dll
2009-04-22 23:53 - 2009-04-22 23:53 - 000969040 _____ () C:\Program Files (x86)\Logitech\Vid HD\QtNetwork4.dll
2009-03-04 00:17 - 2009-03-04 00:17 - 000475472 _____ () C:\Program Files (x86)\Logitech\Vid HD\QtOpenGL4.dll
2009-03-04 00:17 - 2009-03-04 00:17 - 000363856 _____ () C:\Program Files (x86)\Logitech\Vid HD\QtXml4.dll
2009-03-04 00:17 - 2009-03-04 00:17 - 000200016 _____ () C:\Program Files (x86)\Logitech\Vid HD\QtSql4.dll
2011-01-13 03:55 - 2011-01-13 03:55 - 000027472 _____ () C:\Program Files (x86)\Logitech\Vid HD\SDL.dll
2009-03-04 00:17 - 2009-03-04 00:17 - 011311952 _____ () C:\Program Files (x86)\Logitech\Vid HD\QtWebKit4.dll
2009-03-04 00:17 - 2009-03-04 00:17 - 000291664 _____ () C:\Program Files (x86)\Logitech\Vid HD\phonon4.dll
2011-01-13 03:57 - 2011-01-13 03:57 - 000751616 _____ () C:\Program Files (x86)\Logitech\Vid HD\vpxmd.dll
2018-06-05 19:53 - 2017-11-13 16:49 - 000085200 _____ () C:\Users\Toma\AppData\Roaming\Seznam.cz\bin\26577libfoxloader.dll
2009-03-04 00:18 - 2009-03-04 00:18 - 000029008 _____ () C:\Program Files (x86)\Logitech\Vid HD\plugins\imageformats\qgif4.dll
2009-03-04 00:18 - 2009-03-04 00:18 - 000035152 _____ () C:\Program Files (x86)\Logitech\Vid HD\plugins\imageformats\qico4.dll
2009-03-04 00:18 - 2009-03-04 00:18 - 000138064 _____ () C:\Program Files (x86)\Logitech\Vid HD\plugins\imageformats\qjpeg4.dll
2012-01-18 08:43 - 2012-01-18 08:43 - 000183320 _____ () C:\Program Files (x86)\Common Files\logishrd\SharedBin\LVAPI11.dll
2017-08-17 16:51 - 2017-08-17 16:51 - 001993184 ____R () C:\Program Files (x86)\Skype\Phone\skypert.dll
2018-06-05 19:53 - 2018-02-21 11:36 - 000869584 _____ () C:\Users\Toma\AppData\Roaming\Seznam.cz\bin\lightspeed.dll
2009-12-15 14:46 - 2009-12-15 14:46 - 000619816 ____N () C:\Program Files (x86)\CyberLink\Power2Go\CLMediaLibrary.dll
2009-12-15 14:49 - 2009-12-15 14:49 - 000013096 ____N () C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvcPS.dll
2011-03-02 00:14 - 2011-03-02 00:14 - 002143576 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtCore4.dll
2011-03-02 00:14 - 2011-03-02 00:14 - 007954776 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtGui4.dll
2011-03-02 00:15 - 2011-03-02 00:15 - 000340824 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\QtXml4.dll
2011-03-02 00:15 - 2011-03-02 00:15 - 000027480 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QGif4.dll
2011-03-02 00:15 - 2011-03-02 00:15 - 000126808 _____ () C:\Program Files (x86)\Logitech\LWS\Webcam Software\imageformats\QJpeg4.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 04:34 - 2018-04-22 21:35 - 000000035 _____ C:\Windows\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2865527742-3441578996-859845922-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Toma\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 2) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{1677EA17-A35E-4CBB-8C0C-6A4578BDE383}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD9\PowerDVD Cinema\PowerDVDCinema.exe
FirewallRules: [{E10610D7-BAE8-4814-88AD-03D486DBA142}] => (Allow) C:\Program Files (x86)\CyberLink\PowerDVD9\PowerDVD9.EXE
FirewallRules: [{FF903EC8-88AE-4889-B7A2-70AD181ABFA4}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{0268E9DD-FAEA-4DE1-BC6D-56A5B4CED072}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{F11D1D30-812D-4290-AB0C-298CAE40F7BB}] => (Allow) C:\Program Files (x86)\Logitech\Vid HD\Vid.exe
FirewallRules: [{A7A69370-1604-4801-902B-7CF1FFFAE0F9}] => (Allow) C:\Program Files (x86)\Logitech\Vid HD\Vid.exe
FirewallRules: [TCP Query User{E8922B58-419C-429D-AEA0-2E44FC2D3B94}C:\program files (x86)\voipconnect.com\voipconnect\voipconnect.exe] => (Allow) C:\program files (x86)\voipconnect.com\voipconnect\voipconnect.exe
FirewallRules: [UDP Query User{7470360D-A531-48BE-A4B5-5B9878D69593}C:\program files (x86)\voipconnect.com\voipconnect\voipconnect.exe] => (Allow) C:\program files (x86)\voipconnect.com\voipconnect\voipconnect.exe
FirewallRules: [TCP Query User{E8E2EE71-CDA3-406D-A213-24218146024A}C:\program files (x86)\voipconnect.com\voipconnect\voipconnect.exe] => (Block) C:\program files (x86)\voipconnect.com\voipconnect\voipconnect.exe
FirewallRules: [UDP Query User{B5F36A5C-021F-4A50-BAA2-0BE24C9AF0C9}C:\program files (x86)\voipconnect.com\voipconnect\voipconnect.exe] => (Block) C:\program files (x86)\voipconnect.com\voipconnect\voipconnect.exe
FirewallRules: [TCP Query User{6D6DFDFC-251A-449D-9690-A7E351D15708}C:\program files (x86)\logitech\vid hd\vid.exe] => (Block) C:\program files (x86)\logitech\vid hd\vid.exe
FirewallRules: [UDP Query User{12A9D677-E90A-4254-98A7-E98FD2F5E665}C:\program files (x86)\logitech\vid hd\vid.exe] => (Block) C:\program files (x86)\logitech\vid hd\vid.exe
FirewallRules: [{89312E52-B171-4FEE-80B3-00F03F59F3B7}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{6333DD0B-7F4B-46D8-A302-4EE9F56E7C93}] => (Allow) C:\Program Files\Bonjour\mDNSResponder.exe
FirewallRules: [{C9E54346-0A86-46F3-ACAB-32E2CF2429F4}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{044CB0AE-A019-4F1B-91D2-1D36357D991C}] => (Allow) C:\Program Files (x86)\Bonjour\mDNSResponder.exe
FirewallRules: [{55FF4FBE-56D4-4613-91CA-70F3785334E7}] => (Allow) C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
FirewallRules: [TCP Query User{35FF7B23-486D-41CC-A30A-E668F550FD61}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{0DC6AE52-C85C-4ADD-8295-B1A4D176A538}C:\program files (x86)\skype\phone\skype.exe] => (Allow) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [TCP Query User{25D03501-A6CC-4211-89B1-B06E5FA8C8D8}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{B5EDE073-B6CB-426A-8A8C-23259FDF990A}C:\program files (x86)\skype\phone\skype.exe] => (Block) C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{DB6E0D62-8AF6-4AD0-8F81-808349ED7C5D}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{251A5A0F-4F24-4828-A5E3-51094A59B1BE}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe
FirewallRules: [UDP Query User{93006562-02DB-438F-9E01-DC989BB5B6C6}C:\program files\videolan\vlc\vlc.exe] => (Allow) C:\program files\videolan\vlc\vlc.exe
FirewallRules: [{E7ED5827-C03D-48D9-86DA-FEC6AF22DAB3}] => (Allow) C:\Program Files\iTunes\iTunes.exe

==================== Restore Points =========================

09-09-2018 09:00:39 Windows Update
09-09-2018 19:00:17 Windowsin varmuuskopiointi
16-09-2018 09:00:18 Windows Update
16-09-2018 19:00:16 Windowsin varmuuskopiointi
19-09-2018 09:01:00 Windows Update

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (09/20/2018 05:46:35 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: AppendDNSNameString: Illegal empty label in name "."

Error: (09/20/2018 05:46:35 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: AppendDNSNameString: Illegal empty label in name "."

Error: (09/20/2018 05:43:13 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: AppendDNSNameString: Illegal empty label in name "."

Error: (09/20/2018 05:43:13 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: AppendDNSNameString: Illegal empty label in name "."

Error: (09/20/2018 05:33:13 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: AppendDNSNameString: Illegal empty label in name "."

Error: (09/20/2018 05:33:13 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: AppendDNSNameString: Illegal empty label in name "."

Error: (09/20/2018 05:23:13 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: AppendDNSNameString: Illegal empty label in name "."

Error: (09/20/2018 05:23:13 PM) (Source: Bonjour Service) (EventID: 100) (User: )
Description: AppendDNSNameString: Illegal empty label in name "."


System errors:
=============
Error: (09/20/2018 02:50:50 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo:
atc

Error: (09/19/2018 09:26:18 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {F9717507-6651-4EDB-BFF7-AE615179BCCF} se v daném časovém limitu neregistroval u služby DCOM.

Error: (09/19/2018 08:19:44 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo:
atc

Error: (09/18/2018 10:17:09 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {F9717507-6651-4EDB-BFF7-AE615179BCCF} se v daném časovém limitu neregistroval u služby DCOM.

Error: (09/18/2018 12:25:34 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo:
atc

Error: (09/18/2018 12:02:30 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {F9717507-6651-4EDB-BFF7-AE615179BCCF} se v daném časovém limitu neregistroval u služby DCOM.

Error: (09/17/2018 05:29:22 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: Zavedení následujícího ovladače pro spouštění počítače nebo systému se nezdařilo:
atc

Error: (09/16/2018 10:07:23 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {F9717507-6651-4EDB-BFF7-AE615179BCCF} se v daném časovém limitu neregistroval u služby DCOM.


Windows Defender:
===================================
Date: 2017-11-21 09:01:16.256
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{6911F078-D3C3-42FA-B361-4FC71BC17ED3}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:NT-HALLINTA\Verkkopalvelu

Date: 2017-07-03 21:28:44.816
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{83DEDBD8-F9C5-4917-B300-1AC58E8CD3E2}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:Toma-PC\Toma

Date: 2017-06-18 21:40:08.297
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{85BEEC49-9641-4BBF-BC93-DDA993E9D48D}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:Toma-PC\Toma

Date: 2017-06-09 21:15:01.136
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{FAD1C810-1610-4BE6-ABDF-91AF0D9DC698}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:Toma-PC\Toma

Date: 2017-06-09 13:48:22.105
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{24FC9C38-9C44-4FA5-8009-FDFF43688CD0}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Úplné prohledávání
Uživatel:Toma-PC\Toma

==================== Memory info ===========================

Processor: AMD Athlon(tm) II X4 610e Processor
Percentage of memory in use: 46%
Total physical RAM: 7935.18 MB
Available physical RAM: 4258.27 MB
Total Virtual: 15868.5 MB
Available Virtual: 10656.47 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:148.95 GB) (Free:61.29 GB) NTFS
Drive e: (Externi HDD Babicka) (Fixed) (Total:931.48 GB) (Free:351.96 GB) NTFS

\\?\Volume{11420ede-a73f-11e5-b0d0-806e6f6e6963}\ (Järjestelmän varaama) (Fixed) (Total:0.1 GB) (Free:0.07 GB) NTFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 149.1 GB) (Disk ID: 028FDAE7)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=149 GB) - (Type=07 NTFS)

========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 931.5 GB) (Disk ID: 8613847A)
Partition 1: (Not Active) - (Size=931.5 GB) - (Type=07 NTFS)

==================== End of Addition.txt ============================


Nahoru
 Profil  
 
 Předmět příspěvku: Re: Chyba zabezpečeného spojení
PříspěvekNapsal: 20 zář 2018 17:04 
Offline
Návštěvník
Návštěvník

Registrován: 16 dub 2010 11:03
Příspěvky: 181
Čéče, udělala jsem, jak se řeklo, jen mi vrtá hlavou:
1. K čemu ten fixlist.txt. , když jsem ho nepoužila? (zdánlivě)
2. Nic jsem nerestartovala, logové se mi beztak vytvořily a uložily samy. Je to tak v pořádku?
Hezký večer!


Nahoru
 Profil  
 
 Předmět příspěvku: Re: Chyba zabezpečeného spojení
PříspěvekNapsal: 21 zář 2018 06:41 
Offline
Moderátor
Moderátor
Uživatelský avatar

Registrován: 09 pro 2006 06:19
Příspěvky: 8701
Bydliště: Jablonec nad Nisou
Přítel EBV promine můj jednorázový vstup do vašeho dialogu :oops:

Milá Tamuri,

zkopírovaný fixlist.txt uložíš do C:\Users\Toma\Desktop\Soubory _VIRY.cz
a dáš Fix podle návodu

pak požadované logy budou v téže složce

_________________
Doporučení:
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím Obrázek

-------------------------------------------------------------------------------------------------
> Podpora fóra <


Nahoru
 Profil  
 
 Předmět příspěvku: Re: Chyba zabezpečeného spojení
PříspěvekNapsal: 21 zář 2018 07:50 
Offline
Návštěvník
Návštěvník

Registrován: 16 dub 2010 11:03
Příspěvky: 181
Díky, Boh... totiž Cernohousi, vono to tam fakt leží, jen si nevzpomínám, že bych ho ukládala (asi je chytřejší, než já!).
Ale jen vstupuj - dvě a půl hlavy jsou lepší, než žádná...


Nahoru
 Profil  
 
 Předmět příspěvku: Re: Chyba zabezpečeného spojení
PříspěvekNapsal: 21 zář 2018 16:14 
Offline
Návštěvník
Návštěvník

Registrován: 07 čer 2013 21:04
Příspěvky: 18
Děkuji Bohouši, já se sem dostanu tak jednou za 2 dny...
Spise nez dve hlavy, ja mam mozna za dve sam o sobe, pac z toho tveho ssl, jiz mam edem na mozku, by to chtelo nekolika hlavou san.

Tamuri, sup sem logy, jeste je dobre vypnout stity antivirovych programu pred provedeni akce s fix tlacitkem.


P.S. pisi bez diakritiky, omluva za to.

_________________
Obrázek


Nahoru
 Profil  
 
 Předmět příspěvku: Re: Chyba zabezpečeného spojení
PříspěvekNapsal: 21 zář 2018 17:49 
Offline
Moderátor
Moderátor
Uživatelský avatar

Registrován: 09 pro 2006 06:19
Příspěvky: 8701
Bydliště: Jablonec nad Nisou
tamuri píše:
Díky, Boh... totiž Cernohousi, vono to tam fakt leží, jen si nevzpomínám, že bych ho ukládala (asi je chytřejší, než já!).
Ale jen vstupuj - dvě a půl hlavy jsou lepší, než žádná...

Nevidím ti přes rameno ale v logu je:
C:\Users\Toma\Desktop\fixlist.txt
Running from C:\Users\Toma\Desktop\Soubory _VIRY.cz

Máš na ploše složku Soubory _VIRY.cz?
tak fixlist.txt musí být ve stejné složce jako je FRST.exe

tak šup a už sem dej výsledný log po fixaci :wink:

Dobrou noc :148:

_________________
Doporučení:
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím Obrázek

-------------------------------------------------------------------------------------------------
> Podpora fóra <


Nahoru
 Profil  
 
 Předmět příspěvku: Re: Chyba zabezpečeného spojení
PříspěvekNapsal: 21 zář 2018 20:04 
Offline
Návštěvník
Návštěvník

Registrován: 16 dub 2010 11:03
Příspěvky: 181
Páč nevím, co po mně ještě vy klucí chcete, tak to zopaknu eště jednou. Pořád je jim těch logů málo...


Nahoru
 Profil  
 
 Předmět příspěvku: Re: Chyba zabezpečeného spojení
PříspěvekNapsal: 21 zář 2018 20:24 
Offline
Návštěvník
Návštěvník

Registrován: 16 dub 2010 11:03
Příspěvky: 181
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 22.04.2018
Ran by Toma (administrator) on TOMA-PC (21-09-2018 21:21:48)
Running from C:\Users\Toma\Desktop\Soubory _VIRY.cz
Loaded Profiles: Toma (Available Profiles: Toma)
Platform: Windows 7 Ultimate Service Pack 1 (X64) Language: Finština (Finsko)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(Logitech Inc.) C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
( ASUSTeK Computer Inc.) C:\Program Files\ASUS\GPU Boost Driver\GpuBoostServer.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AdminService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Bitdefender) C:\Program Files\Bitdefender Agent\ProductAgentService.exe
() C:\Windows\SysWOW64\SecUPDUtilSvc.exe
(SDL) C:\Program Files (x86)\Common Files\SDL\Telemetrics\Sdl.Desktop.ProductTelemetrics.Host.Windows.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Atheros Communications) C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe
(Atheros Commnucations) C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe
(IvoSoft) C:\Program Files\Classic Shell\ClassicStartMenu.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Logitech Inc.) C:\Program Files (x86)\Logitech\Vid HD\Vid.exe
(VoipConnect) C:\Program Files (x86)\VoipConnect.com\VoipConnect\voipconnect.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
() C:\Users\Toma\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
(CyberLink) C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
() C:\Users\Toma\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
(CyberLink Corp.) C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(cyberlink) C:\Program Files (x86)\CyberLink\Shared files\brs.exe
(Logitech Inc.) C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Bitdefender) C:\Program Files\Bitdefender Antivirus Free\vsserv.exe
(Bitdefender) C:\Program Files\Bitdefender Antivirus Free\vsservppl.exe
(Bitdefender) C:\Program Files\Bitdefender Antivirus Free\bdagent.exe
(Bitdefender) C:\Program Files\Bitdefender Antivirus Free\updatesrv.exe
(Bitdefender) C:\Program Files\Bitdefender Antivirus Free\bdredline.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Skype Technologies) C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe
(Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbam.exe

==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [10151968 2010-04-20] (Realtek Semiconductor)
HKLM\...\Run: [AtherosBtStack] => C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [613536 2010-10-27] (Atheros Communications)
HKLM\...\Run: [AthBtTray] => C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [379040 2010-10-27] (Atheros Commnucations)
HKLM\...\Run: [Classic Start Menu] => C:\Program Files\Classic Shell\ClassicStartMenu.exe [163776 2017-08-12] (IvoSoft)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [298296 2018-07-06] (Apple Inc.)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2010-02-10] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Six Engine] => C:\Program Files (x86)\ASUS\EPU\EPU.exe [5309056 2010-06-14] ( ASUSTeK Computer Inc.)
HKLM-x32\...\Run: [CLMLServer] => C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [103720 2009-12-15] (CyberLink)
HKLM-x32\...\Run: [UpdateP2GoShortCut] => C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [222504 2009-05-19] (CyberLink Corp.)
HKLM-x32\...\Run: [RemoteControl9] => C:\Program Files (x86)\CyberLink\PowerDVD9\PDVD9Serv.exe [87336 2009-07-06] (CyberLink Corp.)
HKLM-x32\...\Run: [BDRegion] => C:\Program Files (x86)\Cyberlink\Shared files\brs.exe [75048 2010-05-14] (cyberlink)
HKLM-x32\...\Run: [UpdatePSTShortCut] => "C:\Program Files (x86)\CyberLink\Blu-ray Disc Suite\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Blu-ray Disc Suite" UpdateWithCreateOnce "Software\CyberLink\PowerStarter"
HKLM-x32\...\Run: [LWS] => C:\Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe [205336 2011-11-11] (Logitech Inc.)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1069296 2018-03-27] ()
HKU\S-1-5-21-2865527742-3441578996-859845922-1000\...\Run: [Logitech Vid] => C:\Program Files (x86)\Logitech\Vid HD\Vid.exe [6129496 2011-01-13] (Logitech Inc.)
HKU\S-1-5-21-2865527742-3441578996-859845922-1000\...\Run: [VoipConnect] => C:\Program Files (x86)\VoipConnect.com\VoipConnect\voipconnect.exe [42304056 2018-01-29] (VoipConnect)
HKU\S-1-5-21-2865527742-3441578996-859845922-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [8590760 2015-12-08] (Piriform Ltd)
HKU\S-1-5-21-2865527742-3441578996-859845922-1000\...\Run: [cz.seznam.software.autoupdate] => C:\Users\Toma\AppData\Roaming\Seznam.cz\szninstall.exe [1069296 2018-03-27] ()
HKU\S-1-5-21-2865527742-3441578996-859845922-1000\...\Run: [cz.seznam.software.szndesktop] => C:\Users\Toma\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [109808 2018-03-27] ()
HKU\S-1-5-21-2865527742-3441578996-859845922-1000\...\Run: [Skype] => C:\Program Files (x86)\Skype\Phone\Skype.exe [27832272 2017-08-25] (Skype Technologies S.A.)
HKU\S-1-5-21-2865527742-3441578996-859845922-1000\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\Windows\system32\PhotoScreensaver.scr [477696 2010-11-21] (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{D9D3AF0F-D0D9-4BD0-A48D-37A1112F77AC}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{E6E69474-A415-495A-9473-4040CBC4FED2}: [DhcpNameServer] 10.0.0.138

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Page_URL =
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Default_Search_URL =
HKU\S-1-5-21-2865527742-3441578996-859845922-1000\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.seznam.cz/?clid=12454
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2865527742-3441578996-859845922-1000 -> {1F4B397D-F2D5-414F-B138-B86FF030E495} URL = hxxp://www.zbozi.cz/?q={searchTerms}&r=campmoz&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-2865527742-3441578996-859845922-1000 -> {279B91D7-43A6-4D02-8F5B-3D9A03F01406} URL = hxxp://encyklopedie.seznam.cz/search?q={searchTerms}&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-2865527742-3441578996-859845922-1000 -> {6275EC92-153A-4352-A337-F620999FE8AD} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-2865527742-3441578996-859845922-1000 -> {A8E012C5-7DB5-4CF8-88DB-053C873906F6} URL = hxxp://search.seznam.cz/?q={searchTerms}&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-2865527742-3441578996-859845922-1000 -> {B4FB63C8-6516-49F2-AB53-1F74F74BAAF3} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=cz_en&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-2865527742-3441578996-859845922-1000 -> {C3BFC533-FD28-4712-AFAF-2E9BD0D7DEB0} URL = hxxp://www.novinky.cz/hledej?w={searchTerms}&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-2865527742-3441578996-859845922-1000 -> {DE2BBB5A-A972-4929-BAA4-1E040EFBE85B} URL = hxxp://slovnik.seznam.cz/?q={searchTerms}&lang=en_cz&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-2865527742-3441578996-859845922-1000 -> {E22375DC-BF25-4D95-87A2-65315B47CC9F} URL = hxxp://www.mapy.cz/?query={searchTerms}&sourceid=QuickSearch_29530
SearchScopes: HKU\S-1-5-21-2865527742-3441578996-859845922-1000 -> {E5AB4E9D-6633-4850-87C0-D90C5098B1FE} URL = hxxp://www.firmy.cz/?q={searchTerms}&sourceid=QuickSearch_29530
BHO: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-12] (IvoSoft)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL [2010-12-21] (Microsoft Corporation)
BHO: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_64.dll [2017-08-12] (IvoSoft)
BHO-x32: ExplorerBHO Class -> {449D0D6E-2412-4E61-B68F-1CB625CD9E52} -> C:\Program Files\Classic Shell\ClassicExplorer32.dll [2017-08-12] (IvoSoft)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\ssv.dll [2016-04-02] (Oracle Corporation)
BHO-x32: CIESpeechBHO Class -> {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} -> C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2010-10-27] (Atheros Commnucations)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL [2010-12-21] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\jp2ssv.dll [2016-04-02] (Oracle Corporation)
BHO-x32: ClassicIEBHO Class -> {EA801577-E6AD-4BD5-8F71-4BE0154331A4} -> C:\Program Files\Classic Shell\ClassicIEDLL_32.dll [2017-08-12] (IvoSoft)
Toolbar: HKLM - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll [2017-08-12] (IvoSoft)
Toolbar: HKLM-x32 - Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll [2017-08-12] (IvoSoft)

FireFox:
========
FF DefaultProfile: lp9kdgcx.default
FF ProfilePath: C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default [2018-09-21]
FF Homepage: Mozilla\Firefox\Profiles\lp9kdgcx.default -> about:home
FF Session Restore: Mozilla\Firefox\Profiles\lp9kdgcx.default -> is enabled.
FF Extension: (Adblocker X) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\@adblock57.xpi [2018-04-24]
FF Extension: (Tipli do prohlížeče) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\@tipli-do-prohlizece-.xpi [2018-07-23]
FF Extension: (Český slovník pro kontrolu pravopisu) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\cs@dictionaries.addons.mozilla.org [2016-08-13] [Legacy]
FF Extension: (British English Dictionary) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\en-GB@dictionaries.addons.mozilla.org [2016-01-05] [Legacy] [not signed]
FF Extension: (United States English Spellchecker) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\en-US@dictionaries.addons.mozilla.org [2016-03-18] [Legacy]
FF Extension: (Spanish (Spain) Dictionary) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\es-es@dictionaries.addons.mozilla.org [2018-01-25] [Legacy]
FF Extension: (Dictionnaire français) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\fr-dicollecte@dictionaries.addons.mozilla.org [2018-05-10] [Legacy]
FF Extension: (IrregularVerbs) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\IrregularVerbs@canevas.xul.xpi [2016-04-27] [Legacy]
FF Extension: (Notifier for Gmail™) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\jid0-GjwrPchS3Ugt7xydvqVK4DQk8Ls@jetpack.xpi [2018-05-21]
FF Extension: (Mate Translate – translator, dictionary) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\jid1-TMndP6cdKgxLcQ@jetpack.xpi [2018-07-10]
FF Extension: (Russian spellchecking dictionary) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\ru@dictionaries.addons.mozilla.org [2016-01-05] [Legacy] [not signed]
FF Extension: (S3.Translator) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\s3google@translator.xpi [2018-09-11]
FF Extension: (Seznam doplněk - Esko) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\sko-extension@firma.seznam.cz.xpi [2018-09-06]
FF Extension: (Ukrainian dictionary) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\uk-ua@dictionaries.addons.mozilla.org [2018-08-31] [Legacy]
FF Extension: (X-notifier (for Gmail™,Hotmail,Yahoo,AOL...)) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\{37fa1426-b82d-11db-8314-0800200c9a66}.xpi [2018-09-15]
FF Extension: (ImTranslator: Překladač, Slovník, Hlas) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\{9AA46F4F-4DC7-4c06-97AF-5035170634FE}.xpi [2018-09-19]
FF Extension: (Search By Image (by Google)) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\{ce7e73df-6a44-4028-8079-5927a588c948}.xpi [2017-01-24] [Legacy]
FF Extension: (Adblock Plus) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2018-08-30]
FF Extension: (Seznam doplněk - Email) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}.xpi [2018-09-06]
FF Extension: (No Name) - C:\Users\Toma\AppData\Roaming\Mozilla\Firefox\Profiles\lp9kdgcx.default\extensions\sko-extension@firma.seznam.cz [not found]
FF Extension: (WebCompat Reporter) - C:\Program Files (x86)\Mozilla Firefox\browser\features\webcompat-reporter@mozilla.org.xpi [2018-09-05] [Legacy] [not signed]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_30_0_0_134.dll [2018-07-16] ()
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2018-05-29] (VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_30_0_0_134.dll [2018-07-16] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\dtplugin\npDeployJava1.dll [2016-04-02] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.77.2 -> C:\Program Files (x86)\Java\jre1.8.0_77\bin\plugin2\npjp2.dll [2016-04-02] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-06-29] (Adobe Systems Inc.)

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 Apple Mobile Device Service; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [83768 2018-07-05] (Apple Inc.)
R2 AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [52896 2010-10-27] (Atheros Commnucations) [File not signed]
R2 bdredline; C:\Program Files\Bitdefender Antivirus Free\bdredline.exe [2195280 2018-06-07] (Bitdefender)
S2 CLKMSVC10_9EC60124; C:\Program Files (x86)\CyberLink\PowerDVD9\NavFilter\kmsvc.exe [246256 2010-05-14] (CyberLink)
S3 iumsvc; C:\Program Files (x86)\Intel\Intel(R) Update Manager\bin\iumsvc.exe [177376 2016-08-12] (Intel Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6541008 2018-05-03] (Malwarebytes)
R2 ProductAgentService; C:\Program Files\Bitdefender Agent\ProductAgentService.exe [1284032 2018-07-31] (Bitdefender)
R2 SamsungUPDUtilSvc; C:\Windows\SysWOW64\SecUPDUtilSvc.exe [143664 2015-12-29] ()
R2 Sdl.ProductTelemetrics.v1; C:\Program Files (x86)\Common Files\SDL\Telemetrics\Sdl.Desktop.ProductTelemetrics.Host.Windows.exe [12288 2015-06-17] (SDL) [File not signed]
R2 updatesrv; C:\Program Files\Bitdefender Antivirus Free\updatesrv.exe [239400 2018-06-07] (Bitdefender)
R2 vsserv; C:\Program Files\Bitdefender Antivirus Free\vsserv.exe [239400 2018-06-07] (Bitdefender)
R2 vsservppl; C:\Program Files\Bitdefender Antivirus Free\vsservppl.exe [239400 2018-09-21] (Bitdefender)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 AODDriver; C:\Program Files\ASUS\GPU Boost Driver\amd64\AODDriver.sys [52280 2010-03-12] (Advanced Micro Devices)
R1 AsIO; C:\Windows\SysWow64\drivers\AsIO.sys [13440 2009-08-04] ()
R0 atc; C:\Windows\System32\DRIVERS\atc.sys [1292296 2018-09-21] (BitDefender S.R.L. Bucharest, ROMANIA)
R0 avc3; C:\Windows\System32\DRIVERS\avc3.sys [1723552 2018-05-11] (BitDefender)
R0 BdDci; C:\Windows\System32\DRIVERS\bddci.sys [152648 2018-05-11] (Bitdefender)
R3 edrsensor; C:\Windows\System32\DRIVERS\edrsensor.sys [282008 2018-09-21] (BitDefender S.R.L. Bucharest, ROMANIA)
R0 gzflt; C:\Windows\System32\drivers\gzflt.sys [193184 2018-07-04] (BitDefender LLC)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [259360 2018-09-21] (Malwarebytes)
R3 MTsensor; C:\Windows\System32\DRIVERS\ASACPI.sys [15416 2009-07-16] ()
S3 phantomtap; C:\Windows\System32\DRIVERS\phantomtap.sys [35664 2017-06-23] (The OpenVPN Project)
R2 trufos; C:\Windows\System32\drivers\trufos.sys [609576 2018-09-21] (Bitdefender)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-09-21 12:39 - 2018-09-21 12:39 - 000214735 _____ C:\Users\Toma\Desktop\1537525672687
2018-09-21 08:03 - 2018-09-21 08:03 - 000000000 ___RD C:\Users\Toma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices
2018-09-20 17:53 - 2018-09-20 17:54 - 000000000 ____D C:\Users\Toma\Desktop\Фото с телефона
2018-09-19 10:05 - 2018-09-19 10:05 - 000000000 ____D C:\Users\Toma\AppData\Local\ElevatedDiagnostics
2018-09-16 18:14 - 2018-09-16 18:11 - 065643006 _____ C:\Users\Toma\Desktop\IMG_5492.MOV
2018-09-15 11:27 - 2018-09-15 11:27 - 000059923 _____ C:\Users\Toma\Downloads\Smlouva o Bankovní IDentitě - Tamara Panaková.pdf
2018-09-15 09:17 - 2018-09-15 09:17 - 000282040 _____ C:\Windows\Minidump\091518-16754-01.dmp
2018-09-13 20:58 - 2018-09-13 20:58 - 000282040 _____ C:\Windows\Minidump\091318-16785-01.dmp
2018-09-12 10:24 - 2018-09-12 10:25 - 000023541 _____ C:\Users\Toma\Desktop\Брюки _ДЛИНА.odt
2018-09-11 18:01 - 2018-09-11 18:01 - 000120587 _____ C:\Users\Toma\Desktop\Ponožková natural od p. Ďurovíče.odt
2018-09-11 17:54 - 2018-09-18 12:59 - 001376694 _____ C:\Users\Toma\Desktop\Ďurovíče рrvní dávka samovzorovací ponožkové .odt
2018-09-11 15:04 - 2018-09-11 15:04 - 000282040 _____ C:\Windows\Minidump\091118-17113-01.dmp
2018-09-11 07:53 - 2018-09-15 09:17 - 661174585 _____ C:\Windows\MEMORY.DMP
2018-09-11 07:53 - 2018-09-11 07:53 - 000282040 _____ C:\Windows\Minidump\091118-14835-01.dmp
2018-09-09 18:37 - 2018-09-09 18:37 - 001380588 _____ C:\Users\Toma\Desktop\pl_šatek_Close_To_You_PL.pdf
2018-09-09 18:36 - 2018-09-09 18:36 - 001462602 _____ C:\Users\Toma\Desktop\cz.Šatek Close_To_You_CZ.pdf
2018-09-09 18:13 - 2018-09-09 18:13 - 001380574 _____ C:\Users\Toma\Downloads\Close_To_You_PL.pdf
2018-09-09 18:04 - 2018-09-09 18:04 - 001462590 _____ C:\Users\Toma\Downloads\Close_To_You_CZ.pdf
2018-09-04 21:25 - 2018-09-04 21:25 - 000745782 _____ C:\Users\Toma\Downloads\Echoes_from_Karelia_ver3.pdf
2018-09-04 14:03 - 2018-09-04 14:04 - 007571152 _____ (Malwarebytes) C:\Users\Toma\Downloads\adwcleaner_7.2.3.1.exe
2018-09-04 13:53 - 2018-09-21 08:03 - 000259360 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2018-09-03 00:04 - 2018-09-03 00:04 - 000020599 _____ C:\Users\Toma\Desktop\Пирожки с гречневой кашей.odt
2018-09-02 11:02 - 2018-09-02 11:02 - 001433737 _____ C:\Users\Toma\Downloads\Russian_Double_Heelix(1).pdf
2018-09-02 10:55 - 2018-09-02 10:55 - 004344112 _____ C:\Users\Toma\Desktop\Носочки Двойные спиральки (Джени Стайман).odt
2018-09-02 09:51 - 2018-09-02 09:51 - 001433737 _____ C:\Users\Toma\Downloads\Russian_Double_Heelix.pdf
2018-08-31 13:29 - 2018-08-31 13:29 - 000076611 _____ C:\Users\Toma\Downloads\24506-P%C5%99ehled_nejpodstatn%C4%9Bj%C5%A1%C3%ADch_zm%C4%9Bn.pdf
2018-08-27 18:15 - 2018-08-27 18:10 - 101203024 _____ C:\Users\Toma\Desktop\IMG_5280.MOV
2018-08-25 10:15 - 2018-08-25 10:16 - 000369728 _____ C:\Windows\system32\FNTCACHE.DAT
2018-08-24 12:08 - 2018-08-24 12:08 - 000092560 _____ C:\Users\Toma\AppData\Local\GDIPFONTCACHEV1.DAT
2018-08-24 12:03 - 2018-08-24 12:03 - 000000082 _____ C:\Windows\system32\cc_20180824_120338.reg
2018-08-24 11:59 - 2018-08-24 11:59 - 000000082 _____ C:\Windows\system32\cc_20180824_115930.reg
2018-08-24 11:58 - 2018-08-24 11:58 - 000000082 _____ C:\Windows\system32\cc_20180824_115851.reg
2018-08-24 10:29 - 2018-08-24 10:29 - 000000000 ____D C:\Users\Toma\AppData\Local\mbam

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2018-09-21 21:21 - 2018-05-03 21:41 - 000000000 ____D C:\Users\Toma\AppData\Local\ClassicShell
2018-09-21 21:21 - 2018-04-21 11:55 - 000000000 ____D C:\FRST
2018-09-21 21:21 - 2015-12-29 21:50 - 000000000 ____D C:\Users\Toma\AppData\Roaming\Skype
2018-09-21 21:15 - 2018-02-03 00:22 - 000000000 ____D C:\Program Files\Bitdefender Antivirus Free
2018-09-21 12:15 - 2016-11-16 19:48 - 000000000 ____D C:\Users\Toma\AppData\LocalLow\Mozilla
2018-09-21 10:33 - 2018-05-02 20:46 - 000609576 _____ (Bitdefender) C:\Windows\system32\Drivers\trufos.sys
2018-09-21 10:33 - 2018-02-27 22:48 - 001292296 _____ (BitDefender S.R.L. Bucharest, ROMANIA) C:\Windows\system32\Drivers\atc.sys
2018-09-21 10:33 - 2018-02-03 01:11 - 000282008 _____ (BitDefender S.R.L. Bucharest, ROMANIA) C:\Windows\system32\Drivers\edrsensor.sys
2018-09-21 08:12 - 2009-07-14 06:45 - 000021888 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2018-09-21 08:12 - 2009-07-14 06:45 - 000021888 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2018-09-21 08:08 - 2018-06-05 19:53 - 000000000 ____D C:\Users\Toma\AppData\Roaming\Seznam.cz
2018-09-21 08:07 - 2015-12-21 17:23 - 000719098 _____ C:\Windows\system32\perfh019.dat
2018-09-21 08:07 - 2015-12-21 17:23 - 000151344 _____ C:\Windows\system32\perfc019.dat
2018-09-21 08:07 - 2015-12-21 17:17 - 000671828 _____ C:\Windows\system32\perfh005.dat
2018-09-21 08:07 - 2015-12-21 17:17 - 000142424 _____ C:\Windows\system32\perfc005.dat
2018-09-21 08:07 - 2015-12-21 17:12 - 000386842 _____ C:\Windows\system32\perfh00D.dat
2018-09-21 08:07 - 2015-12-21 17:12 - 000085260 _____ C:\Windows\system32\perfc00D.dat
2018-09-21 08:07 - 2010-11-21 11:10 - 000476000 _____ C:\Windows\system32\perfh00B.dat
2018-09-21 08:07 - 2010-11-21 11:10 - 000102022 _____ C:\Windows\system32\perfc00B.dat
2018-09-21 08:07 - 2009-07-14 07:13 - 003507970 _____ C:\Windows\system32\PerfStringBackup.INI
2018-09-21 08:07 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2018-09-21 08:05 - 2018-02-03 00:22 - 000003648 _____ C:\Windows\System32\Tasks\Bitdefender Agent WatchDog_65D6944A0EF74FDAB96E31112AD39864
2018-09-21 08:03 - 2017-08-21 13:06 - 000000035 _____ C:\Users\Public\Documents\AtherosServiceConfig.ini
2018-09-21 08:03 - 2015-12-31 00:30 - 000000000 _____ C:\Windows\system32\Drivers\lvuvc.hs
2018-09-21 08:03 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2018-09-20 18:36 - 2018-04-22 23:14 - 000000000 ____D C:\Users\Toma\Desktop\Soubory _VIRY.cz
2018-09-20 18:33 - 2015-12-29 21:35 - 000004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2018-09-20 18:33 - 2015-12-29 21:35 - 000002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2018-09-19 19:41 - 2015-12-30 00:12 - 000000000 ____D C:\Users\Toma\Documents\Soubory aplikace Outlook
2018-09-19 16:39 - 2015-12-29 21:36 - 000000000 ____D C:\Users\Toma\AppData\Roaming\vlc
2018-09-15 09:17 - 2017-06-30 13:41 - 000000000 ____D C:\Windows\Minidump
2018-09-10 15:31 - 2018-07-27 19:36 - 000000000 ____D C:\Users\Toma\Desktop\Леинка!
2018-09-09 17:55 - 2018-05-01 00:19 - 000000000 ___RD C:\Users\Toma\Desktop\Nové různé
2018-09-09 08:17 - 2017-06-04 18:13 - 000000000 ___RD C:\Users\Toma\Documents\Scanned Documents
2018-09-06 07:21 - 2017-06-13 23:16 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2018-09-06 07:21 - 2015-12-20 20:24 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2018-09-04 13:53 - 2018-04-25 15:17 - 000152688 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2018-09-02 22:04 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\system32\NDF
2018-09-01 12:59 - 2015-12-21 00:48 - 003433546 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2018-08-24 11:55 - 2016-01-01 01:37 - 000000000 ____D C:\Users\Toma\Desktop\Málo používané
2018-08-24 11:55 - 2015-12-20 20:04 - 000000000 ____D C:\Users\Toma\AppData\Local\CrashDumps

==================== Files in the root of some directories =======

2015-10-21 16:38 - 2015-10-21 16:38 - 118294111 _____ () C:\Program Files (x86)\openoffice1.cab
2015-10-21 16:36 - 2015-10-21 16:36 - 002306048 _____ () C:\Program Files (x86)\openoffice412.msi
2015-10-21 16:36 - 2015-10-21 16:36 - 000478720 _____ () C:\Program Files (x86)\setup.exe
2015-10-21 16:36 - 2015-10-21 16:36 - 000000279 _____ () C:\Program Files (x86)\setup.ini
2016-06-01 22:07 - 2018-08-15 15:16 - 000000349 _____ () C:\Users\Toma\AppData\Roaming\FotoSketcher.ini
2018-04-21 16:40 - 2018-04-21 21:44 - 000029696 _____ () C:\Users\Toma\AppData\Local\MSGBOX.EXE

Some files in TEMP:
====================
2018-06-07 19:04 - 2018-06-07 19:04 - 000465920 _____ (Realtek Semiconductor Corp.) C:\Users\Toma\AppData\Local\Temp\COMAP.EXE
2018-06-30 20:01 - 2018-08-28 19:01 - 062091672 _____ (Skype Technologies S.A.) C:\Users\Toma\AppData\Local\Temp\SkypeSetup.exe
2018-06-12 10:17 - 2018-06-12 10:18 - 041465128 _____ () C:\Users\Toma\AppData\Local\Temp\vlc-3.0.3-win64.exe

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2018-09-15 13:23

==================== End of FRST.txt ============================


Nahoru
 Profil  
 
Zobrazit příspěvky za předchozí:  Seřadit podle  
Odeslat nové téma Toto téma je zamknuté. Nemůžete posílat nové příspěvky ani odpovídat na starší.  [ Příspěvků: 46 ]  Přejít na stránku Předchozí  1, 2, 3, 4  Další

Všechny časy jsou v UTC + 1 hodina


Kdo je online

Uživatelé procházející toto fórum: Žádní registrovaní uživatelé


Nemůžete zakládat nová témata v tomto fóru
Nemůžete odpovídat v tomto fóru
Nemůžete upravovat své příspěvky v tomto fóru
Nemůžete mazat své příspěvky v tomto fóru
Nemůžete přikládat soubory v tomto fóru

Hledat:
Přejít na:  
Založeno na phpBB® Forum Software © phpBB Group
Český překlad – phpBB.cz
Přispějete na provoz fóra?