Hezký den, prosila bych o preventivní konrolu. PC je trochu pomalejší. Děkuji
Logfile of random's system information tool 1.10 (written by random/random)
Run by Irena at 2017-01-17 08:58:49
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 57 GB (50%) free of 114 GB
Total RAM: 3767 MB (14% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:14:53, on 17.1.2017
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18538)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\avpui.exe
C:\Program Files (x86)\Greenshot\Greenshot.exe
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
C:\Program Files (x86)\Winstep\Nexus-Ultimate.exe
C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
C:\Users\Irena\AppData\Roaming\Spotify\SpotifyWebHelper.exe
C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Program Files (x86)\Creative\THX TruStudio PRO\THXAudioCP\THXAudio.exe
C:\Program Files (x86)\Genius\Manticore\MTHid.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
E:\Stažené\GSAutoClicker-Setup.exe
C:\Program Files (x86)\GhostMouse\GhostMouse.exe
C:\Users\Irena\AppData\Roaming\uTorrent\utorrent.exe
C:\Program Files\trend micro\Irena.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkI ... id=UE07DHP
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 200.88.117.178:3128
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O1 - Hosts: ::1 localhost
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - E:\Stažené\imd\IDMIECC.dll
O2 - BHO: ScriptInjectionPluginBrowserHelperObject - {03993315-5CE9-4F00-8790-D14A94F1D91A} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\IEExt\ie_plugin.dll
O2 - BHO: True Key Helper - {0F4B8786-5502-4803-8EBC-F652A1153BB6} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll
O3 - Toolbar: Kaspersky Protection Toolbar - {001032CB-B0AC-4F2C-A650-AD4B2B26E5DA} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\IEExt\ie_plugin.dll
O3 - Toolbar: True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll
O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe -r
O4 - HKLM\..\Run: [NUSB3MON] "C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [THX Audio Control Panel] "C:\Program Files (x86)\Creative\THX TruStudio PRO\THXAudioCP\THXAudio.exe" /r
O4 - HKLM\..\Run: [UpdReg] C:\Windows\UpdReg.EXE
O4 - HKLM\..\Run: [Manticore] C:\Program Files (x86)\Genius\Manticore\MThid.exe
O4 - HKLM\..\Run: [Adobe Creative Cloud] "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
O4 - HKCU\..\Run: [Greenshot] "C:\Program Files (x86)\Greenshot\Greenshot.exe"
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Nexus-Ultimate] C:\Program Files (x86)\Winstep\Nexus-Ultimate.exe autostart
O4 - HKCU\..\Run: [Sony PC Companion] "C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Irena\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [SPReview] "C:\Windows\System32\SPReview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601 (User 'Default user')
O4 - Startup: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk = C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Stáhnout s IDM - E:\Stažené\imd\IEExt.htm
O8 - Extra context menu item: Stáhnout s IDM všechny odkazy - E:\Stažené\imd\IEGetAll.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {9819CC0E-9669-4D01-9CD7-2C66DA43AC6C} - (no file)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {6C269571-C6D7-4818-BCA4-32A035E8C884} (Creative Software AutoUpdate) - http://ccfiles.creative.com/Web/softwar ... TSUEng.cab
O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} (Creative Software AutoUpdate Support Package 2) - http://ccfiles.creative.com/Web/softwar ... PIDPDE.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwar ... /CTPID.cab
O17 - HKLM\System\CS2\Services\Tcpip\Parameters: NameServer = 8.8.8.8,8.8.8.4
O17 - HKLM\System\CS3\Services\Tcpip\Parameters: NameServer = 8.8.8.8,8.8.8.4
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 8.8.8.8,8.8.8.4
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: McAfee Application Installer Cleanup (0053201484505016) (0053201484505016mcinstcleanup) - McAfee, Inc. - C:\Windows\TEMP\005320~1.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AdobeUpdateService - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Služba Kaspersky Anti-Virus 16.0.1 (AVP16.0.1) - AO Kaspersky Lab - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\avp.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: HmaOpenVpn Service (HmaOpenVpnService) - The OpenVPN Project - C:\Program Files (x86)\HMA! Pro VPN\bin\openvpnserv.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: klvssbrigde64 - AO Kaspersky Lab - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\x64\vssbridge64.exe
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Intel Security True Key (TrueKey) - McAfee, Inc. - C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
O23 - Service: Intel Security True Key Scheduler (TrueKeyScheduler) - McAfee, Inc. - C:\Program Files\TrueKey\McTkSchedulerService.exe
O23 - Service: TrueKeyServiceHelper - McAfee, Inc. - C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 13830 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe"
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\avp.exe" -r
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"taskhost.exe"
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\avpui.exe" -hidden
"C:\Program Files\TrueKey\McTkSchedulerService.exe"
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe"
"C:\Windows\System32\rundll32.exe" C:\Windows\system32\THXCfg64.dll,RunDLLEntry THXCfg64
"C:\Program Files (x86)\Greenshot\Greenshot.exe"
"C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe"
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\Winstep\Nexus-Ultimate.exe" autostart
"C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe" /Background
"C:\Users\Irena\AppData\Roaming\Spotify\SpotifyWebHelper.exe"
"C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" -r
"C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe"
"C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
"C:\Program Files (x86)\Creative\THX TruStudio PRO\THXAudioCP\THXAudio.exe" /r
"C:\Program Files (x86)\Genius\Manticore\MTHid.exe"
"C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
"C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe" "-launchedbyvulcan"
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe" --onOSstartup=true --showwindow=false --waitForRegistration=true
"C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe" --type=renderer --no-sandbox --user-agent="Mozilla/5.0 (Windows NT 6.1.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Safari/537.36 CreativeCloud/2.0.1.82" --lang=en-US --lang=en-US --locales-dir-path="C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\locales" --log-severity=disable --channel="4760.0.227959968\869506732" /prefetch:673131151
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe"
"C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe" --type=renderer --no-sandbox --user-agent="Mozilla/5.0 (Windows NT 6.1.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Safari/537.36 CreativeCloud/2.0.1.82" --lang=en-US --lang=en-US --locales-dir-path="C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\locales" --log-severity=disable --channel="4760.1.1702427535\1997065928" /prefetch:673131151
"C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe" --type=gpu-process --channel="4760.2.1903762469\1691562279" --no-sandbox --lang=en-US --locales-dir-path="C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\locales" --log-severity=disable --supports-dual-gpus=false --gpu-vendor-id=0x8086 --gpu-device-id=0x0046 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=8.15.10.2104 --lang=en-US --locales-dir-path="C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\locales" --log-severity=disable /prefetch:822062411
"C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" /UPDATERESULTS:""
"C:\Windows\system32\NOTEPAD.EXE" C:\Users\Irena\Documents\klikačky.txt
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe"
"E:\Stažené\GSAutoClicker-Setup.exe"
"C:\Program Files (x86)\GhostMouse\GhostMouse.exe"
"C:\Users\Irena\AppData\Roaming\uTorrent\utorrent.exe"
taskeng.exe {AB951B32-33C9-4589-B8D4-7A5C63CA7C0F}
"E:\Stažené\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
taskhost.exe $(Arg0)
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\SUPERAntiSpyware Scheduled Task 047dda4b-5890-49ac-bbad-e15081768895.job - C:\Program Files\SUPERAntiSpyware\SASTask.exe "C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" /TASK:047dda4b-5890-49ac-bbad-e15081768895
C:\Windows\tasks\SUPERAntiSpyware Scheduled Task 463e4ff6-d48d-43af-8a8b-42ebface9fc2.job - C:\Program Files\SUPERAntiSpyware\SASTask.exe "C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" /TASK:463e4ff6-d48d-43af-8a8b-42ebface9fc2
=========Mozilla firefox=========
ProfilePath - C:\Users\Irena\AppData\Roaming\Mozilla\Firefox\Profiles\mri6u4z3.default-1411303732472
prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 24.0.0.194 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_24_0_0_194.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.31.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.31.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\adobe.com/AdobeExManDetect]
"Description"=
"Path"=C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 24.0.0.194 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_24_0_0_194.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll
C:\Users\Irena\AppData\Roaming\Mozilla\Firefox\Profiles\mri6u4z3.default-1411303732472\extensions\
{ea614400-e918-4741-9a97-7a972ff7c30b}
C:\Users\Irena\AppData\Roaming\Mozilla\Firefox\Profiles\mri6u4z3.default-1411303732472\searchplugins\
hma-proxy.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDM integration (IDMIEHlprObj Class) - E:\Stažené\imd\IDMIECC64.dll [2015-02-21 484376]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{03993315-5CE9-4F00-8790-D14A94F1D91A}]
Kaspersky Protection - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\x64\IEExt\ie_plugin.dll [2016-12-02 972976]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDM integration (IDMIEHlprObj Class) - E:\Stažené\imd\IDMIECC.dll [2015-02-21 422424]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{03993315-5CE9-4F00-8790-D14A94F1D91A}]
Kaspersky Protection - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\IEExt\ie_plugin.dll [2016-12-02 751336]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0F4B8786-5502-4803-8EBC-F652A1153BB6}]
True Key Helper - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-12-10 1052384]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll [2015-02-06 460712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-02-06 172968]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{001032CB-B0AC-4F2C-A650-AD4B2B26E5DA} - Kaspersky Protection Toolbar - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\x64\IEExt\ie_plugin.dll [2016-12-02 972976]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{001032CB-B0AC-4F2C-A650-AD4B2B26E5DA} - Kaspersky Protection Toolbar - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\IEExt\ie_plugin.dll [2016-12-02 751336]
{4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - True Key - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-12-10 1052384]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2010-04-06 166424]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2010-04-06 391192]
"Persistence"=C:\Windows\system32\igfxpers.exe [2010-04-06 413720]
"CDAServer"=C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [2012-03-09 462712]
"THXCfg64"=C:\Windows\system32\THXCfg64.dll [2009-10-15 17920]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2015-03-30 500936]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"zASRockInstantBoot"= []
"Greenshot"=C:\Program Files (x86)\Greenshot\Greenshot.exe [2010-07-12 548864]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2014-01-28 5626136]
"AdobeBridge"= []
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1475584]
"Nexus"= []
"Nexus-Ultimate"=C:\Program Files (x86)\Winstep\Nexus-Ultimate.exe [2011-10-10 14558848]
"Sony PC Companion"=C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [2015-09-23 457088]
"Spotify Web Helper"=C:\Users\Irena\AppData\Roaming\Spotify\SpotifyWebHelper.exe [2016-10-17 1529456]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"HDAudDeck"=C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2010-04-26 2417776]
"NUSB3MON"=C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [2010-01-22 106496]
"AdobeCS6ServiceManager"=C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [2012-03-09 1073312]
"GrooveMonitor"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
"THX Audio Control Panel"=C:\Program Files (x86)\Creative\THX TruStudio PRO\THXAudioCP\THXAudio.exe [2010-03-24 1345024]
"UpdReg"=C:\Windows\UpdReg.EXE [2000-05-11 90112]
"Manticore"=C:\Program Files (x86)\Genius\Manticore\MThid.exe [2013-10-29 293376]
"Adobe Creative Cloud"=C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2015-05-08 2584240]
C:\Users\Irena\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2010-03-31 269824]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=l3codeca.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.LAGS"=lagarith.dll
"VIDC.X264"=x264vfw64.dll
"VIDC.XVID"=xvidvfw.dll
"VIDC.FFDS"=ff_vfw.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.l3codecp"=l3codecp.acm
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2017-01-17 08:58:51 ----D---- C:\Program Files\trend micro
2017-01-17 08:58:49 ----D---- C:\rsit
2017-01-08 11:56:57 ----D---- C:\Users\Irena\AppData\Roaming\SimpleTV V03
2017-01-03 13:10:59 ----D---- C:\ProgramData\~0
======List of files/folders modified in the last 1 month======
2017-01-17 09:14:44 ----D---- C:\Users\Irena\AppData\Roaming\uTorrent
2017-01-17 08:59:08 ----D---- C:\Windows\Temp
2017-01-17 08:58:51 ----RD---- C:\Program Files
2017-01-17 07:42:40 ----D---- C:\ProgramData\Kaspersky Lab
2017-01-15 19:41:52 ----D---- C:\Windows\system32\config
2017-01-15 19:36:26 ----D---- C:\Windows\System32
2017-01-15 19:36:26 ----D---- C:\Windows\inf
2017-01-15 19:36:26 ----A---- C:\Windows\system32\PerfStringBackup.INI
2017-01-15 19:35:17 ----D---- C:\Windows
2017-01-15 19:34:19 ----D---- C:\Program Files (x86)
2017-01-15 19:33:43 ----HD---- C:\ProgramData
2017-01-15 19:33:19 ----SHD---- C:\Windows\Installer
2017-01-15 19:32:54 ----SHD---- C:\Config.Msi
2017-01-15 19:32:05 ----D---- C:\Windows\system32\Tasks
2017-01-15 19:32:04 ----D---- C:\Windows\Tasks
2017-01-15 19:31:15 ----D---- C:\Program Files\TrueKey
2017-01-15 19:29:46 ----A---- C:\Windows\win.ini
2017-01-15 19:28:15 ----D---- C:\Windows\Prefetch
2017-01-15 19:27:36 ----A---- C:\Windows\SYSWOW64\log.txt
2017-01-15 19:27:34 ----SHD---- C:\System Volume Information
2017-01-15 19:26:38 ----D---- C:\Users\Irena\AppData\Roaming\DMCache
2017-01-15 19:24:39 ----D---- C:\Windows\debug
2017-01-15 03:02:18 ----D---- C:\Windows\system32\MRT
2017-01-15 03:02:04 ----AC---- C:\Windows\system32\MRT.exe
2017-01-15 01:43:03 ----D---- C:\Windows\system32\catroot2
2017-01-15 01:42:40 ----D---- C:\Windows\winsxs
2017-01-10 11:47:53 ----D---- C:\Windows\SysWOW64
2017-01-10 11:47:41 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2017-01-10 11:47:36 ----D---- C:\Windows\system32\Macromed
2017-01-10 11:47:30 ----D---- C:\Windows\SYSWOW64\Macromed
2017-01-08 12:43:45 ----D---- C:\Users\Irena\AppData\Roaming\vlc
2017-01-07 08:26:07 ----D---- C:\Program Files\SUPERAntiSpyware
2017-01-03 13:23:02 ----D---- C:\Windows\system32\DriverStore
2017-01-01 10:01:29 ----D---- C:\Users\Irena\AppData\Roaming\IDM
2016-12-27 13:17:08 ----D---- C:\ProgramData\Ashampoo
2016-12-21 09:08:20 ----D---- C:\Program Files (x86)\McAfee
2016-12-19 03:37:05 ----D---- C:\Windows\Microsoft.NET
2016-12-19 03:32:30 ----RSD---- C:\Windows\assembly
2016-12-19 03:02:36 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2016-12-18 04:38:42 ----D---- C:\Windows\rescache
2016-12-18 03:25:47 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2016-12-18 03:25:47 ----D---- C:\Program Files (x86)\Mozilla Firefox
2016-12-18 03:24:54 ----D---- C:\Windows\SYSWOW64\en-US
2016-12-18 03:24:54 ----D---- C:\Windows\SYSWOW64\cs-CZ
2016-12-18 03:24:54 ----D---- C:\Windows\system32\drivers
2016-12-18 03:24:54 ----D---- C:\Program Files\Internet Explorer
2016-12-18 03:24:54 ----D---- C:\Program Files (x86)\Internet Explorer
2016-12-18 03:24:53 ----D---- C:\Windows\system32\en-US
2016-12-18 03:24:53 ----D---- C:\Windows\system32\cs-CZ
2016-12-18 03:24:53 ----D---- C:\Windows\system32\Boot
2016-12-18 03:24:53 ----D---- C:\Windows\AppPatch
2016-12-18 03:09:18 ----D---- C:\ProgramData\Microsoft Help
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 cm_km;Kaspersky Lab ZAO Cryptographic Module x64 (Weak); C:\Windows\system32\DRIVERS\cm_km.sys [2015-07-05 389816]
R0 kl1;kl1; C:\Windows\system32\DRIVERS\kl1.sys [2015-09-11 478392]
R0 klbackupdisk;Kaspersky Lab klbackupdisk; C:\Windows\system32\DRIVERS\klbackupdisk.sys [2015-06-06 53432]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 klbackupflt;Kaspersky Lab klbackupflt; C:\Windows\system32\DRIVERS\klbackupflt.sys [2015-12-01 79240]
R1 klhk;Kaspersky Lab service driver; C:\Windows\system32\DRIVERS\klhk.sys [2016-12-02 236432]
R1 KLIF;Kaspersky Lab Driver; C:\Windows\system32\DRIVERS\klif.sys [2016-08-16 1001304]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter; C:\Windows\system32\DRIVERS\klim6.sys [2016-05-05 50776]
R1 klpd;Kaspersky Lab format recognizer driver; C:\Windows\system32\DRIVERS\klpd.sys [2015-12-07 45960]
R1 kltdi;kltdi; C:\Windows\system32\DRIVERS\kltdi.sys [2015-06-11 65208]
R1 Klwtp;KLwtp - WFP callout traffic inspector; C:\Windows\system32\DRIVERS\klwtp.sys [2016-08-16 110424]
R1 kneps;kneps; C:\Windows\system32\DRIVERS\kneps.sys [2015-12-02 194440]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 IDMWFP;IDMWFP; C:\Windows\system32\DRIVERS\idmwfp.sys [2015-04-18 195056]
R2 kldisk;kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [2015-12-01 78200]
R2 SSPORT;SSPORT; \??\C:\Windows\system32\Drivers\SSPORT.sys [2013-04-10 11576]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2010-02-09 1586688]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 hmatap;HMA TAP-Windows Adapter V9; C:\Windows\system32\DRIVERS\hmatap.sys [2016-09-01 27136]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2010-03-31 10322848]
R3 Impcd;Impcd; C:\Windows\system32\DRIVERS\Impcd.sys [2010-02-26 158976]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-02-02 271872]
R3 klflt;Kaspersky Lab Kernel DLL; C:\Windows\system32\DRIVERS\klflt.sys [2015-12-11 182152]
R3 klids;klids; \??\C:\ProgramData\Kaspersky Lab\AVP16.0.1\Bases\klids.sys [2017-01-15 182360]
R3 klkbdflt;Kaspersky Lab KLKBDFLT; C:\Windows\system32\DRIVERS\klkbdflt.sys [2015-11-11 52608]
R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\Windows\system32\DRIVERS\klmouflt.sys [2015-06-07 41648]
R3 nusb3hub;NEC Electronics USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\nusb3hub.sys [2010-01-22 77824]
R3 nusb3xhc;NEC Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\nusb3xhc.sys [2010-01-22 180224]
R3 nuviocir;Nuvoton W836x7HG CIR Device Driver; C:\Windows\system32\DRIVERS\nuviocir_win7_x64.sys [2009-06-26 32768]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-03-04 346144]
R3 tap0901;TAP-Windows Adapter V9; C:\Windows\system32\DRIVERS\tap0901.sys [2016-05-23 27136]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service; C:\Windows\system32\drivers\viahduaa.sys [2010-04-24 1320048]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 ALSysIO;ALSysIO; \??\C:\Users\Irena\AppData\Local\Temp\ALSysIO64.sys []
S3 BTCFilterService;USB Networking Driver Filter Service; C:\Windows\system32\DRIVERS\motfilt.sys []
S3 motccgp;Motorola USB Composite Device Driver; C:\Windows\system32\DRIVERS\motccgp.sys []
S3 motccgpfl;MotCcgpFlService; C:\Windows\system32\DRIVERS\motccgpfl.sys []
S3 MotoSwitchService;MotoSwitch Service; C:\Windows\system32\DRIVERS\motswch.sys []
S3 Motousbnet;Motorola USB Networking Driver Service; C:\Windows\system32\DRIVERS\Motousbnet.sys []
S3 motusbdevice;Motorola USB Dev Driver; C:\Windows\system32\DRIVERS\motusbdevice.sys []
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2013-10-10 144152]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2014-12-19 81088]
R2 AdobeUpdateService;AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [2015-04-20 603312]
R2 AVP16.0.1;Služba Kaspersky Anti-Virus 16.0.1; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\avp.exe [2015-12-22 236928]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2009-12-09 268824]
R2 TrueKey;Intel Security True Key; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [2016-11-30 995800]
R2 TrueKeyScheduler;Intel Security True Key Scheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [2016-11-30 16248]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-12-09 2320920]
S2 0053201484505016mcinstcleanup;McAfee Application Installer Cleanup (0053201484505016); C:\Windows\TEMP\005320~1.EXE [2016-03-02 922152]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2016-11-29 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2016-11-29 125112]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-01-10 270936]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2015-01-23 1045256]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30 144200]
S3 HmaOpenVpnService;HmaOpenVpn Service; C:\Program Files (x86)\HMA! Pro VPN\bin\openvpnserv.exe [2016-09-06 46688]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2016-11-12 114688]
S3 klvssbrigde64;klvssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\x64\vssbridge64.exe [2015-12-22 152488]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files (x86)\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-12-14 172488]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Sony PC Companion;Sony PC Companion; C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2015-06-10 155520]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 TrueKeyServiceHelper;TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [2016-11-30 86864]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2014-05-25 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2016-11-29 51384]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-11-29 135848]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-11-29 135848]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2016-11-29 135848]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu logu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Prosím o kontrolu logu
Ahoj.
-poprosim te pomoci tohoto navodu sem vlozit log (FRST.txt i Addition.txt) z FRST:
http://forum.viry.cz/viewtopic.php?f=30&t=133101
-poprosim te pomoci tohoto navodu sem vlozit log (FRST.txt i Addition.txt) z FRST:
http://forum.viry.cz/viewtopic.php?f=30&t=133101
Re: Prosím o kontrolu logu
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 15-01-2017
Ran by Irena (administrator) on IRENA-PC (17-01-2017 12:29:44)
Running from C:\Users\Irena\Desktop
Loaded Profiles: Irena (Available Profiles: Irena)
Platform: Windows 7 Professional Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\avp.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\avpui.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McT95E4.tmp
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
() C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
() C:\Program Files (x86)\Greenshot\Greenshot.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Winstep Software Technologies) C:\Program Files (x86)\Winstep\Nexus-Ultimate.exe
(Sony) C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
(Spotify Ltd) C:\Users\Irena\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
() C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
(NEC Electronics Corporation) C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\THX TruStudio PRO\THXAudioCP\THXAudio.exe
(KYE) C:\Program Files (x86)\Genius\Manticore\MTHid.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [462712 2012-03-09] ()
HKLM\...\Run: [THXCfg64] => C:\Windows\system32\RunDLL32.exe C:\Windows\system32\THXCfg64.dll,RunDLLEntry THXCfg64
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500936 2015-03-30] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2417776 2010-04-26] (VIA)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [106496 2010-01-22] (NEC Electronics Corporation)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [THX Audio Control Panel] => C:\Program Files (x86)\Creative\THX TruStudio PRO\THXAudioCP\THXAudio.exe [1345024 2010-03-24] (Creative Technology Ltd)
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM-x32\...\Run: [Manticore] => C:\Program Files (x86)\Genius\Manticore\MThid.exe [293376 2013-10-29] (KYE)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2584240 2015-05-08] (Adobe Systems Incorporated)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-786237660-2314719749-2023029921-1000\...\Run: [zASRockInstantBoot] => [X]
HKU\S-1-5-21-786237660-2314719749-2023029921-1000\...\Run: [Greenshot] => C:\Program Files (x86)\Greenshot\Greenshot.exe [548864 2010-07-12] ()
HKU\S-1-5-21-786237660-2314719749-2023029921-1000\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [5626136 2014-01-28] (SUPERAntiSpyware)
HKU\S-1-5-21-786237660-2314719749-2023029921-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-786237660-2314719749-2023029921-1000\...\Run: [Nexus] => [X]
HKU\S-1-5-21-786237660-2314719749-2023029921-1000\...\Run: [Nexus-Ultimate] => C:\Program Files (x86)\Winstep\Nexus-Ultimate.exe [14558848 2011-10-10] (Winstep Software Technologies)
HKU\S-1-5-21-786237660-2314719749-2023029921-1000\...\Run: [Sony PC Companion] => C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [457088 2015-09-23] (Sony)
HKU\S-1-5-21-786237660-2314719749-2023029921-1000\...\Run: [Spotify Web Helper] => C:\Users\Irena\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1529456 2016-10-17] (Spotify Ltd)
HKU\S-1-5-21-786237660-2314719749-2023029921-1000\...\MountPoints2: {4e90b226-700e-11e4-a65f-7071bc7f8190} - G:\Startme.exe
HKU\S-1-5-21-786237660-2314719749-2023029921-1000\...\MountPoints2: {8542cbf2-e8c4-11e3-908a-7071bc7f8190} - F:\MotorolaDeviceManagerSetup.exe -a
HKU\S-1-5-21-786237660-2314719749-2023029921-1000\...\MountPoints2: {b4ff1601-f5cd-11e5-9a5b-7071bc7f8190} - G:\MotorolaDeviceManagerSetup.exe -a
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2014-12-17] (Microsoft Corporation)
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-04-16] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-04-16] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-04-16] ()
ShellIconOverlayIdentifiers: [IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => E:\Stažené\imd\IDMShellExt64.dll [2014-04-21] (Tonec Inc.)
Startup: C:\Users\Irena\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk [2016-03-17]
ShortcutTarget: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk -> C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
ProxyServer: [S-1-5-21-786237660-2314719749-2023029921-1000] => 200.88.117.178:3128
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 8.8.8.8
Tcpip\Parameters: [NameServer] 8.8.8.8,8.8.8.4
Tcpip\..\Interfaces\{ADDD3B8F-E7D9-46B6-95C0-8AE9FEAE1E56}: [DhcpNameServer] 8.8.8.8
Tcpip\..\Interfaces\{EC4A9C6A-B0C7-4A05-8878-7A3B3F3B4151}: [DhcpNameServer] 8.8.8.8
Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-786237660-2314719749-2023029921-1000 -> {830B975A-3B24-494B-B1B0-55931B543442} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_16194
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> E:\Stažené\imd\IDMIECC64.dll [2015-02-21] (Internet Download Manager, Tonec Inc.)
BHO: Kaspersky Protection -> {03993315-5CE9-4F00-8790-D14A94F1D91A} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\x64\IEExt\ie_plugin.dll [2016-12-02] (AO Kaspersky Lab)
BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> E:\Stažené\imd\IDMIECC.dll [2015-02-21] (Internet Download Manager, Tonec Inc.)
BHO-x32: Kaspersky Protection -> {03993315-5CE9-4F00-8790-D14A94F1D91A} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\IEExt\ie_plugin.dll [2016-12-02] (AO Kaspersky Lab)
BHO-x32: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-12-10] (Intel Security)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll [2015-02-06] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-02-06] (Oracle Corporation)
Toolbar: HKLM - Kaspersky Protection Toolbar - {001032CB-B0AC-4F2C-A650-AD4B2B26E5DA} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\x64\IEExt\ie_plugin.dll [2016-12-02] (AO Kaspersky Lab)
Toolbar: HKLM-x32 - Kaspersky Protection Toolbar - {001032CB-B0AC-4F2C-A650-AD4B2B26E5DA} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\IEExt\ie_plugin.dll [2016-12-02] (AO Kaspersky Lab)
Toolbar: HKLM-x32 - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-12-10] (Intel Security)
DPF: HKLM-x32 {6C269571-C6D7-4818-BCA4-32A035E8C884} hxxp://ccfiles.creative.com/Web/softwareupdate/su/ocx/15102/CTSUEng.cab
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/130321/CTPID.cab
FireFox:
========
FF DefaultProfile: mri6u4z3.default-1411303732472
FF ProfilePath: C:\Users\Irena\AppData\Roaming\Mozilla\Firefox\Profiles\mri6u4z3.default-1411303732472 [2017-01-17]
FF user.js: detected! => C:\Users\Irena\AppData\Roaming\Mozilla\Firefox\Profiles\mri6u4z3.default-1411303732472\user.js [2014-11-25]
FF Homepage: Mozilla\Firefox\Profiles\mri6u4z3.default-1411303732472 -> hxxp://www.seznam.cz/
FF Extension: (Perfect View) - C:\Users\Irena\AppData\Roaming\Mozilla\Firefox\Profiles\mri6u4z3.default-1411303732472\Extensions\perfectview@pjs.nl.xpi [2016-12-01]
FF Extension: (Tab Mix Plus) - C:\Users\Irena\AppData\Roaming\Mozilla\Firefox\Profiles\mri6u4z3.default-1411303732472\Extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi [2017-01-12]
FF Extension: (Seznam lištička) - C:\Users\Irena\AppData\Roaming\Mozilla\Firefox\Profiles\mri6u4z3.default-1411303732472\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2016-07-13]
FF SearchPlugin: C:\Users\Irena\AppData\Roaming\Mozilla\Firefox\Profiles\mri6u4z3.default-1411303732472\searchplugins\hma-proxy.xml [2015-09-08]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_ACF0E80077C511E59DED005056C00008@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\FFExt\light_plugin_firefox\addon.xpi
FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\FFExt\light_plugin_firefox\addon.xpi [2016-12-02]
FF HKU\S-1-5-21-786237660-2314719749-2023029921-1000\...\Firefox\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Irena\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\Irena\AppData\Roaming\IDM\idmmzcc5 [2017-01-07] [not signed]
FF HKU\S-1-5-21-786237660-2314719749-2023029921-1000\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Irena\AppData\Roaming\IDM\idmmzcc5
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_24_0_0_194.dll [2017-01-10] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2015-05-08] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_24_0_0_194.dll [2017-01-10] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-02-06] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-02-06] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-05-01] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2015-05-08] (Adobe Systems)
FF Plugin-x32: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll [No File]
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www-searching.com/?pid=s&s=G2Pzamobl2140,e543a9eb-54ac-4dcc-9f9b-74fbc8cd9b9e,&vp=ch&prd=set_ch
CHR StartupUrls: Default -> "hxxp://www-searching.com/?pid=s&s=G2Pzamobl2140,e543a9eb-54ac-4dcc-9f9b-74fbc8cd9b9e,&vp=ch&prd=set_ch"
CHR DefaultSearchURL: Default -> hxxp://www-searching.com/search.aspx?site=shyos&prd=set_ch&q={searchTerms}&s=G2Pzamobl2140,e543a9eb-54ac-4dcc-9f9b-74fbc8cd9b9e,
CHR DefaultSearchKeyword: Default -> www-searching.com
CHR DefaultSuggestURL: Default -> hxxp://api.searchpredict.com/api/?rqtype=ffplugin&siteID=8661&dbCode=1&command={searchTerms}
CHR Profile: C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default [2017-01-17]
CHR Extension: (Easy Auto Refresh) - C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default\Extensions\aabcgdmkeabbnleenpncegpcngjpnjkc [2016-11-17]
CHR Extension: (Dokumenty Google) - C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-02-24]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2016-12-19]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2016-11-28]
CHR Extension: (YouTube) - C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-02-24]
CHR Extension: (Slinky Elegantní) - C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmanlajnpdncmhfkiccmbgeocgbncfln [2016-02-24]
CHR Extension: (Vyhledávání Google) - C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-02-24]
CHR Extension: (ZenMate - IP & Browser Check) - C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchhalahcjpkabdgonjhoogdcipienhf [2016-06-18]
CHR Extension: (Image Viewer) - C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcljlcpbfbkapegpifkodjdmdllgdlmk [2016-02-24]
CHR Extension: (Ochrana Kaspersky) - C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default\Extensions\lpeeaghdjmhlakojjcgfdhgcejdaefmi [2016-08-10]
CHR Extension: (Project Naptha) - C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default\Extensions\molncoemjfmpgdkbdlbjmhlcgniigdnf [2016-08-21]
CHR Extension: (IDM Integration Module) - C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2016-12-10]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-03]
CHR Extension: (Gmail) - C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-02-24]
CHR Extension: (Chrome Media Router) - C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-05]
CHR HKLM\...\Chrome\Extension: [jeaohhlajejodfjadcponpnjgkiikocn] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx <not found>
CHR HKLM\...\Chrome\Extension: [lpeeaghdjmhlakojjcgfdhgcejdaefmi] - hxxps://chrome.google.com/webstore/detail/lpeeaghdjmhlakojjcgfdhgcejdaefmi
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - E:\Stažené\imd\IDMGCExt.crx [2015-04-20]
CHR HKLM-x32\...\Chrome\Extension: [lpeeaghdjmhlakojjcgfdhgcejdaefmi] - hxxps://chrome.google.com/webstore/detail/lpeeaghdjmhlakojjcgfdhgcejdaefmi
CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - E:\Stažené\imd\IDMGCExt.crx [2015-04-20]
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [144152 2013-10-10] (SUPERAntiSpyware.com)
S2 0053201484505016mcinstcleanup; C:\Windows\TEMP\005320~1.EXE [922152 2016-03-02] (McAfee, Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [603312 2015-04-20] (Adobe Systems Incorporated)
R2 AVP16.0.1; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\avp.exe [236928 2015-12-22] (AO Kaspersky Lab)
S3 HmaOpenVpnService; C:\Program Files (x86)\HMA! Pro VPN\bin\openvpnserv.exe [46688 2016-09-06] (The OpenVPN Project)
S3 klvssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\x64\vssbridge64.exe [152488 2015-12-22] (AO Kaspersky Lab)
R2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [995800 2016-11-30] (McAfee, Inc.)
R2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [16248 2016-11-30] (McAfee, Inc.)
S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [86864 2016-11-30] (McAfee, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [389816 2015-07-05] (Kaspersky Lab ZAO)
R3 hmatap; C:\Windows\System32\DRIVERS\hmatap.sys [27136 2016-09-01] (The OpenVPN Project)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [478392 2015-09-11] (Kaspersky Lab ZAO)
R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [53432 2015-06-06] (Kaspersky Lab ZAO)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [79240 2015-12-01] (AO Kaspersky Lab)
R2 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [78200 2015-12-01] (AO Kaspersky Lab)
R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [182152 2015-12-11] (AO Kaspersky Lab)
R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [236432 2016-12-02] (AO Kaspersky Lab)
R3 klids; C:\ProgramData\Kaspersky Lab\AVP16.0.1\Bases\klids.sys [182360 2017-01-15] (AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [1001304 2016-08-16] (AO Kaspersky Lab)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [50776 2016-05-05] (AO Kaspersky Lab)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [52608 2015-11-11] (AO Kaspersky Lab)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [41648 2015-06-07] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [45960 2015-12-07] (AO Kaspersky Lab)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [65208 2015-06-11] (Kaspersky Lab ZAO)
R1 Klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [110424 2016-08-16] (AO Kaspersky Lab)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [194440 2015-12-02] (AO Kaspersky Lab)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
S3 ALSysIO; \??\C:\Users\Irena\AppData\Local\Temp\ALSysIO64.sys [X]
S3 BTCFilterService; system32\DRIVERS\motfilt.sys [X]
S3 motccgp; system32\DRIVERS\motccgp.sys [X]
S3 motccgpfl; system32\DRIVERS\motccgpfl.sys [X]
S3 MotoSwitchService; system32\DRIVERS\motswch.sys [X]
S3 Motousbnet; system32\DRIVERS\Motousbnet.sys [X]
S3 motusbdevice; system32\DRIVERS\motusbdevice.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-01-17 12:29 - 2017-01-17 12:35 - 00024072 _____ C:\Users\Irena\Desktop\FRST.txt
2017-01-17 12:28 - 2017-01-17 12:29 - 00000000 ____D C:\FRST
2017-01-17 12:01 - 2017-01-17 12:01 - 02419200 _____ (Farbar) C:\Users\Irena\Desktop\FRST64.exe
2017-01-17 08:58 - 2017-01-17 09:14 - 00000000 ____D C:\rsit
2017-01-17 08:58 - 2017-01-17 09:14 - 00000000 ____D C:\Program Files\trend micro
2017-01-15 19:26 - 2017-01-15 19:26 - 00001264 _____ C:\Users\Irena\Documents\cc_20170115_192615.reg
2017-01-12 18:55 - 2017-01-12 18:55 - 00015954 _____ C:\Users\Irena\Downloads\index (2).php
2017-01-09 14:18 - 2017-01-09 14:19 - 00443219 _____ C:\Users\Irena\Downloads\pracovni_smlouva_rok_2017_ORIGINAL.pdf
2017-01-09 14:16 - 2017-01-09 14:16 - 00443219 _____ C:\Users\Irena\Downloads\images.pdf
2017-01-09 13:47 - 2017-01-09 13:47 - 00116918 _____ C:\Users\Irena\Downloads\pracovni_smlouva_pro_rok_2017_ORIGINAL.pdf
2017-01-09 11:44 - 2017-01-09 11:44 - 00023687 _____ C:\Users\Irena\Downloads\pracovni_smlouva_rok_2017_ORIGINAL.odt
2017-01-08 19:28 - 2017-01-14 20:08 - 00043036 _____ C:\Users\Irena\Documents\Adipy.rms
2017-01-08 12:36 - 2012-10-12 00:35 - 00007005 _____ C:\Users\Irena\Downloads\Playlist 10-2012.m3u
2017-01-08 12:36 - 2011-01-02 16:21 - 00000000 ____D C:\Users\Irena\Downloads\iptv-cz,sk+zahranicni tv
2017-01-08 11:56 - 2017-01-08 12:42 - 00000000 ____D C:\Users\Irena\AppData\Roaming\SimpleTV V03
2017-01-03 13:10 - 2017-01-15 19:33 - 00000000 ____D C:\ProgramData\~0
2017-01-03 13:10 - 2017-01-15 19:31 - 00000000 ____D C:\Users\Irena\AppData\Local\IIIQF
2016-12-30 19:25 - 2016-12-30 19:25 - 00000468 _____ C:\Users\Irena\Documents\btc.txt
2016-12-27 11:44 - 2016-12-27 11:44 - 11009270 _____ C:\Users\Irena\Downloads\Kygo - Firestone Feat Conrad 320Kbps.mp3
2016-12-25 11:07 - 2016-12-25 11:07 - 00000000 _____ C:\Users\Irena\Downloads\David Deyl - Přímý zásah (Audio).mp3
2016-12-25 11:06 - 2016-12-25 11:07 - 09680000 _____ C:\Users\Irena\Downloads\Calvin Harris - Pray to God ft. HAIM.mp3
2016-12-25 11:01 - 2016-12-25 11:01 - 02762709 _____ C:\Users\Irena\Downloads\no-limit-2-unlimited.mp3
2016-12-25 10:58 - 2016-12-25 10:58 - 02865109 _____ C:\Users\Irena\Downloads\dj-bobo-there-is-a-party-king-white-remix-2013.mp3
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-01-17 12:06 - 2014-05-26 06:24 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2017-01-17 12:01 - 2014-05-26 17:20 - 00000000 ____D C:\Users\Irena\AppData\Roaming\uTorrent
2017-01-17 11:47 - 2014-05-27 18:27 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2017-01-17 11:47 - 2014-05-27 10:47 - 00000510 _____ C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 047dda4b-5890-49ac-bbad-e15081768895.job
2017-01-17 09:25 - 2016-11-18 19:45 - 00000000 ____D C:\Users\Irena\AppData\LocalLow\Mozilla
2017-01-17 02:00 - 2014-05-27 10:47 - 00000510 _____ C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 463e4ff6-d48d-43af-8a8b-42ebface9fc2.job
2017-01-15 19:36 - 2009-07-14 16:18 - 00668542 _____ C:\Windows\system32\perfh005.dat
2017-01-15 19:36 - 2009-07-14 16:18 - 00141202 _____ C:\Windows\system32\perfc005.dat
2017-01-15 19:36 - 2009-07-14 06:13 - 01583226 _____ C:\Windows\system32\PerfStringBackup.INI
2017-01-15 19:36 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2017-01-15 19:35 - 2009-07-14 05:45 - 00025616 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-01-15 19:35 - 2009-07-14 05:45 - 00025616 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-01-15 19:31 - 2016-10-13 08:54 - 00000000 ____D C:\Program Files\TrueKey
2017-01-15 19:30 - 2016-10-13 09:05 - 00001190 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\True Key.lnk
2017-01-15 19:29 - 2009-07-14 03:34 - 00000643 _____ C:\Windows\win.ini
2017-01-15 19:27 - 2014-06-19 19:05 - 00000000 ____D C:\Users\Irena\AppData\Local\Adobe
2017-01-15 19:27 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-01-15 19:26 - 2014-05-26 05:38 - 00000000 ____D C:\Users\Irena\AppData\Roaming\DMCache
2017-01-15 19:23 - 2015-09-22 22:27 - 00049208 _____ C:\Users\Irena\Documents\klikačky.txt
2017-01-15 03:10 - 2014-05-25 14:53 - 00000000 ____D C:\Windows\system32\MRT
2017-01-15 03:02 - 2014-05-25 14:53 - 135657872 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-01-10 11:47 - 2014-05-27 18:27 - 00802904 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-01-10 11:47 - 2014-05-27 18:27 - 00144472 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-01-10 11:47 - 2014-05-27 18:27 - 00003852 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-01-10 11:47 - 2014-05-27 18:27 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2017-01-10 11:47 - 2014-05-27 18:27 - 00000000 ____D C:\Windows\system32\Macromed
2017-01-08 12:43 - 2015-06-14 15:04 - 00000000 ____D C:\Users\Irena\AppData\Roaming\vlc
2017-01-07 08:26 - 2014-05-27 10:46 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
2017-01-01 10:01 - 2014-05-26 05:38 - 00000000 ____D C:\Users\Irena\AppData\Roaming\IDM
2016-12-30 14:10 - 2014-06-28 12:45 - 00016751 _____ C:\Users\Irena\Documents\Pomůcky web.txt
2016-12-27 13:17 - 2015-05-02 11:39 - 00000000 ____D C:\ProgramData\Ashampoo
2016-12-27 12:35 - 2016-11-29 13:35 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-12-21 09:08 - 2016-10-13 09:04 - 00000000 ____D C:\Program Files (x86)\McAfee
2016-12-19 03:37 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\Microsoft.NET
2016-12-19 03:32 - 2009-07-14 04:20 - 00000000 __RSD C:\Windows\assembly
2016-12-19 03:02 - 2014-08-13 15:16 - 01557940 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2016-12-18 04:38 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2016-12-18 03:26 - 2009-07-14 03:34 - 00189440 ____H C:\Users\Default\NTUSER.DAT.LOG1
2016-12-18 03:25 - 2016-11-16 07:18 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-12-18 03:25 - 2014-05-23 15:56 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-12-18 03:25 - 2009-07-14 05:45 - 05127240 _____ C:\Windows\system32\FNTCACHE.DAT
2016-12-18 03:24 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\en-US
2016-12-18 03:24 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\cs-CZ
2016-12-18 03:24 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\en-US
2016-12-18 03:24 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\drivers
2016-12-18 03:24 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\cs-CZ
2016-12-18 03:24 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\Boot
2016-12-18 03:24 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\AppPatch
2016-12-18 03:24 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Internet Explorer
2016-12-18 03:24 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files (x86)\Internet Explorer
2016-12-18 03:09 - 2014-06-01 17:51 - 00000000 ____D C:\ProgramData\Microsoft Help
==================== Files in the root of some directories =======
2014-05-31 12:13 - 2015-05-21 16:41 - 0000132 _____ () C:\Users\Irena\AppData\Roaming\Adobe Formát PNG CS6 – předvolby
2016-02-25 10:52 - 2016-02-25 10:52 - 0005120 _____ () C:\Users\Irena\AppData\Roaming\GiftBag.db
2014-07-10 15:09 - 2015-07-01 14:39 - 0001480 _____ () C:\Users\Irena\AppData\Local\Adobe Uložit pro web 13.0 Prefs
2014-11-20 13:05 - 2015-02-11 16:52 - 28140712 _____ (Sony Mobile Communications ) C:\Users\Irena\AppData\Local\pcc.exe
2014-08-12 16:02 - 2014-08-12 16:02 - 0000017 _____ () C:\Users\Irena\AppData\Local\resmon.resmoncfg
Files to move or delete:
====================
C:\Users\Public\AlexaNSISPlugin.7072.dll
Some files in TEMP:
====================
C:\Users\Irena\AppData\Local\Temp\SAS6_Update.exe
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2017-01-03 13:45
==================== End of FRST.txt ============================
Ran by Irena (administrator) on IRENA-PC (17-01-2017 12:29:44)
Running from C:\Users\Irena\Desktop
Loaded Profiles: Irena (Available Profiles: Irena)
Platform: Windows 7 Professional Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(SUPERAntiSpyware.com) C:\Program Files\SUPERAntiSpyware\SASCore64.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\avp.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\avpui.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McT95E4.tmp
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
() C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
() C:\Program Files (x86)\Greenshot\Greenshot.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Winstep Software Technologies) C:\Program Files (x86)\Winstep\Nexus-Ultimate.exe
(Sony) C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe
(Spotify Ltd) C:\Users\Irena\AppData\Roaming\Spotify\SpotifyWebHelper.exe
(VIA) C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe
() C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
(NEC Electronics Corporation) C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
(Creative Technology Ltd) C:\Program Files (x86)\Creative\THX TruStudio PRO\THXAudioCP\THXAudio.exe
(KYE) C:\Program Files (x86)\Genius\Manticore\MTHid.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
(SUPERAntiSpyware) C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(McAfee, Inc.) C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [CDAServer] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe [462712 2012-03-09] ()
HKLM\...\Run: [THXCfg64] => C:\Windows\system32\RunDLL32.exe C:\Windows\system32\THXCfg64.dll,RunDLLEntry THXCfg64
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [500936 2015-03-30] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [HDAudDeck] => C:\Program Files (x86)\VIA\VIAudioi\VDeck\VDeck.exe [2417776 2010-04-26] (VIA)
HKLM-x32\...\Run: [NUSB3MON] => C:\Program Files (x86)\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [106496 2010-01-22] (NEC Electronics Corporation)
HKLM-x32\...\Run: [AdobeCS6ServiceManager] => C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe [1073312 2012-03-09] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation)
HKLM-x32\...\Run: [THX Audio Control Panel] => C:\Program Files (x86)\Creative\THX TruStudio PRO\THXAudioCP\THXAudio.exe [1345024 2010-03-24] (Creative Technology Ltd)
HKLM-x32\...\Run: [UpdReg] => C:\Windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.)
HKLM-x32\...\Run: [Manticore] => C:\Program Files (x86)\Genius\Manticore\MThid.exe [293376 2013-10-29] (KYE)
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2584240 2015-05-08] (Adobe Systems Incorporated)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-786237660-2314719749-2023029921-1000\...\Run: [zASRockInstantBoot] => [X]
HKU\S-1-5-21-786237660-2314719749-2023029921-1000\...\Run: [Greenshot] => C:\Program Files (x86)\Greenshot\Greenshot.exe [548864 2010-07-12] ()
HKU\S-1-5-21-786237660-2314719749-2023029921-1000\...\Run: [SUPERAntiSpyware] => C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [5626136 2014-01-28] (SUPERAntiSpyware)
HKU\S-1-5-21-786237660-2314719749-2023029921-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-786237660-2314719749-2023029921-1000\...\Run: [Nexus] => [X]
HKU\S-1-5-21-786237660-2314719749-2023029921-1000\...\Run: [Nexus-Ultimate] => C:\Program Files (x86)\Winstep\Nexus-Ultimate.exe [14558848 2011-10-10] (Winstep Software Technologies)
HKU\S-1-5-21-786237660-2314719749-2023029921-1000\...\Run: [Sony PC Companion] => C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanion.exe [457088 2015-09-23] (Sony)
HKU\S-1-5-21-786237660-2314719749-2023029921-1000\...\Run: [Spotify Web Helper] => C:\Users\Irena\AppData\Roaming\Spotify\SpotifyWebHelper.exe [1529456 2016-10-17] (Spotify Ltd)
HKU\S-1-5-21-786237660-2314719749-2023029921-1000\...\MountPoints2: {4e90b226-700e-11e4-a65f-7071bc7f8190} - G:\Startme.exe
HKU\S-1-5-21-786237660-2314719749-2023029921-1000\...\MountPoints2: {8542cbf2-e8c4-11e3-908a-7071bc7f8190} - F:\MotorolaDeviceManagerSetup.exe -a
HKU\S-1-5-21-786237660-2314719749-2023029921-1000\...\MountPoints2: {b4ff1601-f5cd-11e5-9a5b-7071bc7f8190} - G:\MotorolaDeviceManagerSetup.exe -a
HKU\S-1-5-18\...\RunOnce: [SPReview] => C:\Windows\System32\SPReview\SPReview.exe [301568 2014-12-17] (Microsoft Corporation)
Lsa: [Notification Packages] scecli C:\Program Files\TrueKey\McAfeeTrueKeyPasswordFilter
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-04-16] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-04-16] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2015-04-16] ()
ShellIconOverlayIdentifiers: [IDM Shell Extension] -> {CDC95B92-E27C-4745-A8C5-64A52A78855D} => E:\Stažené\imd\IDMShellExt64.dll [2014-04-21] (Tonec Inc.)
Startup: C:\Users\Irena\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk [2016-03-17]
ShortcutTarget: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk -> C:\Program Files (x86)\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
ProxyServer: [S-1-5-21-786237660-2314719749-2023029921-1000] => 200.88.117.178:3128
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 8.8.8.8
Tcpip\Parameters: [NameServer] 8.8.8.8,8.8.8.4
Tcpip\..\Interfaces\{ADDD3B8F-E7D9-46B6-95C0-8AE9FEAE1E56}: [DhcpNameServer] 8.8.8.8
Tcpip\..\Interfaces\{EC4A9C6A-B0C7-4A05-8878-7A3B3F3B4151}: [DhcpNameServer] 8.8.8.8
Internet Explorer:
==================
SearchScopes: HKU\S-1-5-21-786237660-2314719749-2023029921-1000 -> {830B975A-3B24-494B-B1B0-55931B543442} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_16194
BHO: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> E:\Stažené\imd\IDMIECC64.dll [2015-02-21] (Internet Download Manager, Tonec Inc.)
BHO: Kaspersky Protection -> {03993315-5CE9-4F00-8790-D14A94F1D91A} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\x64\IEExt\ie_plugin.dll [2016-12-02] (AO Kaspersky Lab)
BHO-x32: IDM integration (IDMIEHlprObj Class) -> {0055C089-8582-441B-A0BF-17B458C2A3A8} -> E:\Stažené\imd\IDMIECC.dll [2015-02-21] (Internet Download Manager, Tonec Inc.)
BHO-x32: Kaspersky Protection -> {03993315-5CE9-4F00-8790-D14A94F1D91A} -> C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\IEExt\ie_plugin.dll [2016-12-02] (AO Kaspersky Lab)
BHO-x32: True Key Helper -> {0F4B8786-5502-4803-8EBC-F652A1153BB6} -> C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-12-10] (Intel Security)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\ssv.dll [2015-02-06] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\jp2ssv.dll [2015-02-06] (Oracle Corporation)
Toolbar: HKLM - Kaspersky Protection Toolbar - {001032CB-B0AC-4F2C-A650-AD4B2B26E5DA} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\x64\IEExt\ie_plugin.dll [2016-12-02] (AO Kaspersky Lab)
Toolbar: HKLM-x32 - Kaspersky Protection Toolbar - {001032CB-B0AC-4F2C-A650-AD4B2B26E5DA} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\IEExt\ie_plugin.dll [2016-12-02] (AO Kaspersky Lab)
Toolbar: HKLM-x32 - True Key - {4BAAC1B8-0800-42C9-8FA6-08B211F356B8} - C:\Program Files\Intel Security\True Key\MSIE\truekey_ie.dll [2016-12-10] (Intel Security)
DPF: HKLM-x32 {6C269571-C6D7-4818-BCA4-32A035E8C884} hxxp://ccfiles.creative.com/Web/softwareupdate/su/ocx/15102/CTSUEng.cab
DPF: HKLM-x32 {D4B68B83-8710-488B-A692-D74B50BA558E} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
DPF: HKLM-x32 {F6ACF75C-C32C-447B-9BEF-46B766368D29} hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/130321/CTPID.cab
FireFox:
========
FF DefaultProfile: mri6u4z3.default-1411303732472
FF ProfilePath: C:\Users\Irena\AppData\Roaming\Mozilla\Firefox\Profiles\mri6u4z3.default-1411303732472 [2017-01-17]
FF user.js: detected! => C:\Users\Irena\AppData\Roaming\Mozilla\Firefox\Profiles\mri6u4z3.default-1411303732472\user.js [2014-11-25]
FF Homepage: Mozilla\Firefox\Profiles\mri6u4z3.default-1411303732472 -> hxxp://www.seznam.cz/
FF Extension: (Perfect View) - C:\Users\Irena\AppData\Roaming\Mozilla\Firefox\Profiles\mri6u4z3.default-1411303732472\Extensions\perfectview@pjs.nl.xpi [2016-12-01]
FF Extension: (Tab Mix Plus) - C:\Users\Irena\AppData\Roaming\Mozilla\Firefox\Profiles\mri6u4z3.default-1411303732472\Extensions\{dc572301-7619-498c-a57d-39143191b318}.xpi [2017-01-12]
FF Extension: (Seznam lištička) - C:\Users\Irena\AppData\Roaming\Mozilla\Firefox\Profiles\mri6u4z3.default-1411303732472\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2016-07-13]
FF SearchPlugin: C:\Users\Irena\AppData\Roaming\Mozilla\Firefox\Profiles\mri6u4z3.default-1411303732472\searchplugins\hma-proxy.xml [2015-09-08]
FF HKLM-x32\...\Firefox\Extensions: [light_plugin_ACF0E80077C511E59DED005056C00008@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\FFExt\light_plugin_firefox\addon.xpi
FF Extension: (Kaspersky Protection) - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\FFExt\light_plugin_firefox\addon.xpi [2016-12-02]
FF HKU\S-1-5-21-786237660-2314719749-2023029921-1000\...\Firefox\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Irena\AppData\Roaming\IDM\idmmzcc5
FF Extension: (IDM CC) - C:\Users\Irena\AppData\Roaming\IDM\idmmzcc5 [2017-01-07] [not signed]
FF HKU\S-1-5-21-786237660-2314719749-2023029921-1000\...\SeaMonkey\Extensions: [mozilla_cc@internetdownloadmanager.com] - C:\Users\Irena\AppData\Roaming\IDM\idmmzcc5
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_24_0_0_194.dll [2017-01-10] ()
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2015-05-08] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_24_0_0_194.dll [2017-01-10] ()
FF Plugin-x32: @java.com/DTPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\dtplugin\npDeployJava1.dll [2015-02-06] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.31.2 -> C:\Program Files (x86)\Java\jre1.8.0_31\bin\plugin2\npjp2.dll [2015-02-06] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2015-05-01] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2015-05-08] (Adobe Systems)
FF Plugin-x32: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll [No File]
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www-searching.com/?pid=s&s=G2Pzamobl2140,e543a9eb-54ac-4dcc-9f9b-74fbc8cd9b9e,&vp=ch&prd=set_ch
CHR StartupUrls: Default -> "hxxp://www-searching.com/?pid=s&s=G2Pzamobl2140,e543a9eb-54ac-4dcc-9f9b-74fbc8cd9b9e,&vp=ch&prd=set_ch"
CHR DefaultSearchURL: Default -> hxxp://www-searching.com/search.aspx?site=shyos&prd=set_ch&q={searchTerms}&s=G2Pzamobl2140,e543a9eb-54ac-4dcc-9f9b-74fbc8cd9b9e,
CHR DefaultSearchKeyword: Default -> www-searching.com
CHR DefaultSuggestURL: Default -> hxxp://api.searchpredict.com/api/?rqtype=ffplugin&siteID=8661&dbCode=1&command={searchTerms}
CHR Profile: C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default [2017-01-17]
CHR Extension: (Easy Auto Refresh) - C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default\Extensions\aabcgdmkeabbnleenpncegpcngjpnjkc [2016-11-17]
CHR Extension: (Dokumenty Google) - C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2016-02-24]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2016-12-19]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2016-11-28]
CHR Extension: (YouTube) - C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-02-24]
CHR Extension: (Slinky Elegantní) - C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmanlajnpdncmhfkiccmbgeocgbncfln [2016-02-24]
CHR Extension: (Vyhledávání Google) - C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-02-24]
CHR Extension: (ZenMate - IP & Browser Check) - C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default\Extensions\dchhalahcjpkabdgonjhoogdcipienhf [2016-06-18]
CHR Extension: (Image Viewer) - C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default\Extensions\kcljlcpbfbkapegpifkodjdmdllgdlmk [2016-02-24]
CHR Extension: (Ochrana Kaspersky) - C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default\Extensions\lpeeaghdjmhlakojjcgfdhgcejdaefmi [2016-08-10]
CHR Extension: (Project Naptha) - C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default\Extensions\molncoemjfmpgdkbdlbjmhlcgniigdnf [2016-08-21]
CHR Extension: (IDM Integration Module) - C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default\Extensions\ngpampappnmepgilojfohadhhmbhlaek [2016-12-10]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-03]
CHR Extension: (Gmail) - C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-02-24]
CHR Extension: (Chrome Media Router) - C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-05]
CHR HKLM\...\Chrome\Extension: [jeaohhlajejodfjadcponpnjgkiikocn] - C:\Program Files (x86)\Internet Download Manager\IDMGCExt.crx <not found>
CHR HKLM\...\Chrome\Extension: [lpeeaghdjmhlakojjcgfdhgcejdaefmi] - hxxps://chrome.google.com/webstore/detail/lpeeaghdjmhlakojjcgfdhgcejdaefmi
CHR HKLM\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - E:\Stažené\imd\IDMGCExt.crx [2015-04-20]
CHR HKLM-x32\...\Chrome\Extension: [lpeeaghdjmhlakojjcgfdhgcejdaefmi] - hxxps://chrome.google.com/webstore/detail/lpeeaghdjmhlakojjcgfdhgcejdaefmi
CHR HKLM-x32\...\Chrome\Extension: [ngpampappnmepgilojfohadhhmbhlaek] - E:\Stažené\imd\IDMGCExt.crx [2015-04-20]
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 !SASCORE; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [144152 2013-10-10] (SUPERAntiSpyware.com)
S2 0053201484505016mcinstcleanup; C:\Windows\TEMP\005320~1.EXE [922152 2016-03-02] (McAfee, Inc.)
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [603312 2015-04-20] (Adobe Systems Incorporated)
R2 AVP16.0.1; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\avp.exe [236928 2015-12-22] (AO Kaspersky Lab)
S3 HmaOpenVpnService; C:\Program Files (x86)\HMA! Pro VPN\bin\openvpnserv.exe [46688 2016-09-06] (The OpenVPN Project)
S3 klvssbrigde64; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\x64\vssbridge64.exe [152488 2015-12-22] (AO Kaspersky Lab)
R2 TrueKey; C:\Program Files\TrueKey\McAfee.TrueKey.Service.exe [995800 2016-11-30] (McAfee, Inc.)
R2 TrueKeyScheduler; C:\Program Files\TrueKey\McTkSchedulerService.exe [16248 2016-11-30] (McAfee, Inc.)
S3 TrueKeyServiceHelper; C:\Program Files\TrueKey\McAfee.TrueKey.ServiceHelper.exe [86864 2016-11-30] (McAfee, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [389816 2015-07-05] (Kaspersky Lab ZAO)
R3 hmatap; C:\Windows\System32\DRIVERS\hmatap.sys [27136 2016-09-01] (The OpenVPN Project)
R0 kl1; C:\Windows\System32\DRIVERS\kl1.sys [478392 2015-09-11] (Kaspersky Lab ZAO)
R0 klbackupdisk; C:\Windows\System32\DRIVERS\klbackupdisk.sys [53432 2015-06-06] (Kaspersky Lab ZAO)
R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [79240 2015-12-01] (AO Kaspersky Lab)
R2 kldisk; C:\Windows\System32\DRIVERS\kldisk.sys [78200 2015-12-01] (AO Kaspersky Lab)
R3 klflt; C:\Windows\System32\DRIVERS\klflt.sys [182152 2015-12-11] (AO Kaspersky Lab)
R1 klhk; C:\Windows\System32\DRIVERS\klhk.sys [236432 2016-12-02] (AO Kaspersky Lab)
R3 klids; C:\ProgramData\Kaspersky Lab\AVP16.0.1\Bases\klids.sys [182360 2017-01-15] (AO Kaspersky Lab)
R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [1001304 2016-08-16] (AO Kaspersky Lab)
R1 KLIM6; C:\Windows\System32\DRIVERS\klim6.sys [50776 2016-05-05] (AO Kaspersky Lab)
R3 klkbdflt; C:\Windows\System32\DRIVERS\klkbdflt.sys [52608 2015-11-11] (AO Kaspersky Lab)
R3 klmouflt; C:\Windows\System32\DRIVERS\klmouflt.sys [41648 2015-06-07] (Kaspersky Lab ZAO)
R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [45960 2015-12-07] (AO Kaspersky Lab)
R1 kltdi; C:\Windows\System32\DRIVERS\kltdi.sys [65208 2015-06-11] (Kaspersky Lab ZAO)
R1 Klwtp; C:\Windows\System32\DRIVERS\klwtp.sys [110424 2016-08-16] (AO Kaspersky Lab)
R1 kneps; C:\Windows\System32\DRIVERS\kneps.sys [194440 2015-12-02] (AO Kaspersky Lab)
R1 SASDIFSV; C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [14928 2011-07-22] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
R1 SASKUTIL; C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [12368 2011-07-12] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
S3 ALSysIO; \??\C:\Users\Irena\AppData\Local\Temp\ALSysIO64.sys [X]
S3 BTCFilterService; system32\DRIVERS\motfilt.sys [X]
S3 motccgp; system32\DRIVERS\motccgp.sys [X]
S3 motccgpfl; system32\DRIVERS\motccgpfl.sys [X]
S3 MotoSwitchService; system32\DRIVERS\motswch.sys [X]
S3 Motousbnet; system32\DRIVERS\Motousbnet.sys [X]
S3 motusbdevice; system32\DRIVERS\motusbdevice.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-01-17 12:29 - 2017-01-17 12:35 - 00024072 _____ C:\Users\Irena\Desktop\FRST.txt
2017-01-17 12:28 - 2017-01-17 12:29 - 00000000 ____D C:\FRST
2017-01-17 12:01 - 2017-01-17 12:01 - 02419200 _____ (Farbar) C:\Users\Irena\Desktop\FRST64.exe
2017-01-17 08:58 - 2017-01-17 09:14 - 00000000 ____D C:\rsit
2017-01-17 08:58 - 2017-01-17 09:14 - 00000000 ____D C:\Program Files\trend micro
2017-01-15 19:26 - 2017-01-15 19:26 - 00001264 _____ C:\Users\Irena\Documents\cc_20170115_192615.reg
2017-01-12 18:55 - 2017-01-12 18:55 - 00015954 _____ C:\Users\Irena\Downloads\index (2).php
2017-01-09 14:18 - 2017-01-09 14:19 - 00443219 _____ C:\Users\Irena\Downloads\pracovni_smlouva_rok_2017_ORIGINAL.pdf
2017-01-09 14:16 - 2017-01-09 14:16 - 00443219 _____ C:\Users\Irena\Downloads\images.pdf
2017-01-09 13:47 - 2017-01-09 13:47 - 00116918 _____ C:\Users\Irena\Downloads\pracovni_smlouva_pro_rok_2017_ORIGINAL.pdf
2017-01-09 11:44 - 2017-01-09 11:44 - 00023687 _____ C:\Users\Irena\Downloads\pracovni_smlouva_rok_2017_ORIGINAL.odt
2017-01-08 19:28 - 2017-01-14 20:08 - 00043036 _____ C:\Users\Irena\Documents\Adipy.rms
2017-01-08 12:36 - 2012-10-12 00:35 - 00007005 _____ C:\Users\Irena\Downloads\Playlist 10-2012.m3u
2017-01-08 12:36 - 2011-01-02 16:21 - 00000000 ____D C:\Users\Irena\Downloads\iptv-cz,sk+zahranicni tv
2017-01-08 11:56 - 2017-01-08 12:42 - 00000000 ____D C:\Users\Irena\AppData\Roaming\SimpleTV V03
2017-01-03 13:10 - 2017-01-15 19:33 - 00000000 ____D C:\ProgramData\~0
2017-01-03 13:10 - 2017-01-15 19:31 - 00000000 ____D C:\Users\Irena\AppData\Local\IIIQF
2016-12-30 19:25 - 2016-12-30 19:25 - 00000468 _____ C:\Users\Irena\Documents\btc.txt
2016-12-27 11:44 - 2016-12-27 11:44 - 11009270 _____ C:\Users\Irena\Downloads\Kygo - Firestone Feat Conrad 320Kbps.mp3
2016-12-25 11:07 - 2016-12-25 11:07 - 00000000 _____ C:\Users\Irena\Downloads\David Deyl - Přímý zásah (Audio).mp3
2016-12-25 11:06 - 2016-12-25 11:07 - 09680000 _____ C:\Users\Irena\Downloads\Calvin Harris - Pray to God ft. HAIM.mp3
2016-12-25 11:01 - 2016-12-25 11:01 - 02762709 _____ C:\Users\Irena\Downloads\no-limit-2-unlimited.mp3
2016-12-25 10:58 - 2016-12-25 10:58 - 02865109 _____ C:\Users\Irena\Downloads\dj-bobo-there-is-a-party-king-white-remix-2013.mp3
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-01-17 12:06 - 2014-05-26 06:24 - 00000000 ____D C:\ProgramData\Kaspersky Lab
2017-01-17 12:01 - 2014-05-26 17:20 - 00000000 ____D C:\Users\Irena\AppData\Roaming\uTorrent
2017-01-17 11:47 - 2014-05-27 18:27 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2017-01-17 11:47 - 2014-05-27 10:47 - 00000510 _____ C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 047dda4b-5890-49ac-bbad-e15081768895.job
2017-01-17 09:25 - 2016-11-18 19:45 - 00000000 ____D C:\Users\Irena\AppData\LocalLow\Mozilla
2017-01-17 02:00 - 2014-05-27 10:47 - 00000510 _____ C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 463e4ff6-d48d-43af-8a8b-42ebface9fc2.job
2017-01-15 19:36 - 2009-07-14 16:18 - 00668542 _____ C:\Windows\system32\perfh005.dat
2017-01-15 19:36 - 2009-07-14 16:18 - 00141202 _____ C:\Windows\system32\perfc005.dat
2017-01-15 19:36 - 2009-07-14 06:13 - 01583226 _____ C:\Windows\system32\PerfStringBackup.INI
2017-01-15 19:36 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\inf
2017-01-15 19:35 - 2009-07-14 05:45 - 00025616 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-01-15 19:35 - 2009-07-14 05:45 - 00025616 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-01-15 19:31 - 2016-10-13 08:54 - 00000000 ____D C:\Program Files\TrueKey
2017-01-15 19:30 - 2016-10-13 09:05 - 00001190 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\True Key.lnk
2017-01-15 19:29 - 2009-07-14 03:34 - 00000643 _____ C:\Windows\win.ini
2017-01-15 19:27 - 2014-06-19 19:05 - 00000000 ____D C:\Users\Irena\AppData\Local\Adobe
2017-01-15 19:27 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-01-15 19:26 - 2014-05-26 05:38 - 00000000 ____D C:\Users\Irena\AppData\Roaming\DMCache
2017-01-15 19:23 - 2015-09-22 22:27 - 00049208 _____ C:\Users\Irena\Documents\klikačky.txt
2017-01-15 03:10 - 2014-05-25 14:53 - 00000000 ____D C:\Windows\system32\MRT
2017-01-15 03:02 - 2014-05-25 14:53 - 135657872 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-01-10 11:47 - 2014-05-27 18:27 - 00802904 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerApp.exe
2017-01-10 11:47 - 2014-05-27 18:27 - 00144472 _____ (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2017-01-10 11:47 - 2014-05-27 18:27 - 00003852 _____ C:\Windows\System32\Tasks\Adobe Flash Player Updater
2017-01-10 11:47 - 2014-05-27 18:27 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2017-01-10 11:47 - 2014-05-27 18:27 - 00000000 ____D C:\Windows\system32\Macromed
2017-01-08 12:43 - 2015-06-14 15:04 - 00000000 ____D C:\Users\Irena\AppData\Roaming\vlc
2017-01-07 08:26 - 2014-05-27 10:46 - 00000000 ____D C:\Program Files\SUPERAntiSpyware
2017-01-01 10:01 - 2014-05-26 05:38 - 00000000 ____D C:\Users\Irena\AppData\Roaming\IDM
2016-12-30 14:10 - 2014-06-28 12:45 - 00016751 _____ C:\Users\Irena\Documents\Pomůcky web.txt
2016-12-27 13:17 - 2015-05-02 11:39 - 00000000 ____D C:\ProgramData\Ashampoo
2016-12-27 12:35 - 2016-11-29 13:35 - 00192216 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2016-12-21 09:08 - 2016-10-13 09:04 - 00000000 ____D C:\Program Files (x86)\McAfee
2016-12-19 03:37 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\Microsoft.NET
2016-12-19 03:32 - 2009-07-14 04:20 - 00000000 __RSD C:\Windows\assembly
2016-12-19 03:02 - 2014-08-13 15:16 - 01557940 _____ C:\Windows\SysWOW64\PerfStringBackup.INI
2016-12-18 04:38 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\rescache
2016-12-18 03:26 - 2009-07-14 03:34 - 00189440 ____H C:\Users\Default\NTUSER.DAT.LOG1
2016-12-18 03:25 - 2016-11-16 07:18 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2016-12-18 03:25 - 2014-05-23 15:56 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2016-12-18 03:25 - 2009-07-14 05:45 - 05127240 _____ C:\Windows\system32\FNTCACHE.DAT
2016-12-18 03:24 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\en-US
2016-12-18 03:24 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\SysWOW64\cs-CZ
2016-12-18 03:24 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\en-US
2016-12-18 03:24 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\drivers
2016-12-18 03:24 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\cs-CZ
2016-12-18 03:24 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\Boot
2016-12-18 03:24 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\AppPatch
2016-12-18 03:24 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files\Internet Explorer
2016-12-18 03:24 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files (x86)\Internet Explorer
2016-12-18 03:09 - 2014-06-01 17:51 - 00000000 ____D C:\ProgramData\Microsoft Help
==================== Files in the root of some directories =======
2014-05-31 12:13 - 2015-05-21 16:41 - 0000132 _____ () C:\Users\Irena\AppData\Roaming\Adobe Formát PNG CS6 – předvolby
2016-02-25 10:52 - 2016-02-25 10:52 - 0005120 _____ () C:\Users\Irena\AppData\Roaming\GiftBag.db
2014-07-10 15:09 - 2015-07-01 14:39 - 0001480 _____ () C:\Users\Irena\AppData\Local\Adobe Uložit pro web 13.0 Prefs
2014-11-20 13:05 - 2015-02-11 16:52 - 28140712 _____ (Sony Mobile Communications ) C:\Users\Irena\AppData\Local\pcc.exe
2014-08-12 16:02 - 2014-08-12 16:02 - 0000017 _____ () C:\Users\Irena\AppData\Local\resmon.resmoncfg
Files to move or delete:
====================
C:\Users\Public\AlexaNSISPlugin.7072.dll
Some files in TEMP:
====================
C:\Users\Irena\AppData\Local\Temp\SAS6_Update.exe
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2017-01-03 13:45
==================== End of FRST.txt ============================
Re: Prosím o kontrolu logu
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 15-01-2017
Ran by Irena (17-01-2017 12:39:31)
Running from C:\Users\Irena\Desktop
Windows 7 Professional Service Pack 1 (X64) (2014-05-23 13:38:54)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-786237660-2314719749-2023029921-500 - Administrator - Disabled)
Guest (S-1-5-21-786237660-2314719749-2023029921-501 - Limited - Enabled)
HomeGroupUser$ (S-1-5-21-786237660-2314719749-2023029921-1007 - Limited - Enabled)
Irena (S-1-5-21-786237660-2314719749-2023029921-1000 - Administrator - Enabled) => C:\Users\Irena
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Kaspersky Internet Security (Enabled - Up to date) {86367591-4BE4-AE08-2FD9-7FCB8259CD98}
AS: Kaspersky Internet Security (Enabled - Up to date) {3D579475-6DDE-A186-1569-44B9F9DE8725}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security (Enabled) {BE0DF4B4-018B-AF50-0486-D6FE7C8A8AE3}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-786237660-2314719749-2023029921-1000\...\uTorrent) (Version: 3.4.1.31395 - BitTorrent Inc.)
7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version: - )
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 23.0.0.257 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.0.1.88 - Adobe Systems Incorporated)
Adobe Flash Player 24 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 24.0.0.194 - Adobe Systems Incorporated)
Adobe Photoshop CC 2014 (HKLM-x32\...\{D7A4F897-B20A-42D0-862D-CB5F6DB7391D}) (Version: 15.2.2 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.11) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.11 - Adobe Systems Incorporated)
Ashampoo Burning Studio 15 v.15.0.2 (HKLM-x32\...\{91B33C97-5B38-0A92-D04A-A0F26F3F87D4}_is1) (Version: 15.0.2 - Ashampoo GmbH & Co. KG)
ASRock InstantBoot v1.24 (HKLM-x32\...\ASRock InstantBoot_is1) (Version: - )
Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 7.0 - Atheros)
BalĂÄŤek ovladaÄŤe systĂ©mu Windows - Intel hdc (07/25/2013 9.1.9.1005) (HKLM\...\312825BF7EA19ED109FF6BE962115F5B03076E44) (Version: 07/25/2013 9.1.9.1005 - Intel)
BalĂÄŤek ovladaÄŤe systĂ©mu Windows - Intel hdc (07/25/2013 9.1.9.1005) (HKLM\...\45E15243FF229D0F06670A5B262CA9C7887085F6) (Version: 07/25/2013 9.1.9.1005 - Intel)
BalĂÄŤek ovladaÄŤe systĂ©mu Windows - Intel System (07/25/2013 9.1.9.1005) (HKLM\...\03558EE026C7D1019B4A138DD4B58B8AE39211C4) (Version: 07/25/2013 9.1.9.1005 - Intel)
BalĂÄŤek ovladaÄŤe systĂ©mu Windows - Intel System (07/25/2013 9.1.9.1005) (HKLM\...\BF1AD0105EBDCA6E730BE93DE583343339830A7A) (Version: 07/25/2013 9.1.9.1005 - Intel)
BalĂÄŤek ovladaÄŤe systĂ©mu Windows - Intel System (07/25/2013 9.1.9.1005) (HKLM\...\CAC45647A959F237CE25C052FDB9A4A914C34830) (Version: 07/25/2013 9.1.9.1005 - Intel)
BalĂÄŤek ovladaÄŤe systĂ©mu Windows - Intel USB (07/25/2013 9.1.9.1005) (HKLM\...\A86AAC18EC59E9369A037083AC25A97B89713EC8) (Version: 07/25/2013 9.1.9.1005 - Intel)
BS.Player PRO (HKLM-x32\...\BSPlayerp) (Version: 2.70.1080 - AB Team, d.o.o.)
CCleaner (HKLM\...\CCleaner) (Version: 5.00 - Piriform)
CIR Tool Kit (HKLM-x32\...\{245BDABA-CD34-4A57-8BE7-F2784A4E0BA4}) (Version: 2.1.2009.0619 - Nuvoton Technology Corp)
Common Desktop Agent (Version: 1.62.0 - OEM) Hidden
Čarodějka v1.0 (HKLM-x32\...\{Carodejka}_is1) (Version: - Špidla Data Processing, s.r.o.)
FreeMouseAutoClicker 3.7 (HKLM-x32\...\{292F00C5-25EF-4FBE-9873-13EF1F69DEED}_is1) (Version: - Advanced Mouse Auto Clicker ltd.)
GhostMouse (HKLM-x32\...\GhostMouse_is1) (Version: Free V3.2.3 - ghost-mouse.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 55.0.2883.87 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
Greenshot (HKLM-x32\...\Greenshot_is1) (Version: - )
HMA! Pro VPN 3.2.9.6 (HKLM-x32\...\HMA! Pro VPN) (Version: 3.2.9.6 - Privax Ltd)
Intel Security True Key (HKLM\...\TrueKey) (Version: 4.11.110.1 - Intel Security)
Intel(R) C++ Redistributables for Windows* on Intel(R) 64 (HKLM-x32\...\{D2437C5C-2D8C-40D2-8059-689AD7239FA3}) (Version: 11.1.048 - Intel Corporation)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Graphics Media Accelerator Driver (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2104 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation)
Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version: - Tonec Inc.)
Java 8 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{F575F386-57EF-4943-B003-A13F13B05EEB}) (Version: 16.0.1.445 - Kaspersky Lab)
Kaspersky Internet Security (x32 Version: 16.0.1.445 - Kaspersky Lab) Hidden
K-Lite Mega Codec Pack 10.6.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.6.0 - )
Malwarebytes Anti-Malware verze 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Manticore Gaming Keyboard (HKLM-x32\...\{0DAEFA4F-E394-4D1F-8F1A-6A2180561290}}_is1) (Version: - )
Microsoft .NET Framework 4.6 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218 (HKLM-x32\...\{E503B4BF-F7BB-3D5F-8BC8-F694B1CFF942}) (Version: 9.0.21022.218 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2012 (HKLM-x32\...\{89ca2a32-2b52-4595-8dfd-6fe4757958d0}) (Version: 11.0.51108 - Microsoft Corporation)
Mozilla Firefox 50.1.0 (x86 cs) (HKLM-x32\...\Mozilla Firefox 50.1.0 (x86 cs)) (Version: 50.1.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 50.1.0.6186 - Mozilla)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MyTools Library (HKLM-x32\...\{90CDBCDF-781C-42DD-AB9A-835E59C03800}) (Version: 0.0 - MyTools) <==== ATTENTION
NEC Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{D7BF9739-8A68-4335-BBEE-37752AD9E86B}) (Version: 1.0.19.0 - NEC Electronics Corporation)
NEC Electronics USB 3.0 Host Controller Driver (x32 Version: 1.0.19.0 - NEC Electronics Corporation) Hidden
Nexus Ultimate 11.6 (HKLM-x32\...\Nexus Ultimate_is1) (Version: - )
OpenVPN Tap Adapter 9.0.0.8 (HKLM-x32\...\OpenVPN Tap Adapter) (Version: - )
OverPlay VPN (HKU\S-1-5-21-786237660-2314719749-2023029921-1000\...\006adc251e9a903c) (Version: 2.0.0.72 - OverPlay.net, LP.)
Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x64 Hosting Support - PTB (Version: 11.0.51108 - Microsoft Corporation) Hidden
Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x86 Hosting Support - PTB (x32 Version: 11.0.51108 - Microsoft Corporation) Hidden
Platform (x32 Version: 1.34 - VIA Technologies, Inc.) Hidden
Realtek Ethernet Controller Driver For Windows 7 (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.17.304.2010 - Realtek)
Samsung C410 Series (HKLM-x32\...\Samsung C410 Series) (Version: 1.01 (20.5.2013) - Samsung Electronics Co., Ltd.)
Samsung Easy Printer Manager (HKLM-x32\...\Samsung Easy Printer Manager) (Version: 1.03.23.00(3.5.2013) - Samsung Electronics Co., Ltd.)
Samsung Printer Live Update (HKLM-x32\...\Samsung Printer Live Update) (Version: 1.01.00:04(2013-04-22) - Samsung Electronics Co., Ltd.)
Sony PC Companion 2.10.303 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.303 - Sony)
Spotify (HKU\S-1-5-21-786237660-2314719749-2023029921-1000\...\Spotify) (Version: 1.0.38.171.g5e1cd7b2 - Spotify AB)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 5.7.1018 - SUPERAntiSpyware.com)
SUPERAntiSpyware 5.7.1018 (HKLM-x32\...\SUPERAntiSpyware 5.7.1018) (Version: 5.7.1018 - skoda.josef@gmail.com)
THX TruStudio PRO (HKLM-x32\...\{388B7C7C-998D-4CA3-8A3B-04771F82E95E}) (Version: 1.0 - Creative Technology Limited)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.51a - Ghisler Software GmbH)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VIA Platforma OvladaÄŤe zaĹ™ĂzenĂ (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Zobrazit uĹľivatelskou pĹ™ĂruÄŤku (HKLM-x32\...\View User Guide) (Version: 3.60.02.0 - )
Языковой пакет для поддержки размещения набора ŃредŃтв Microsoft Visual Studio Tools для работы Ń ĐżŃ€Đ¸Đ»ĐľĐ¶ĐµĐ˝Đ¸ŃŹĐĽĐ¸ 2012 (x64) - RUS (Version: 11.0.51108 - Microsoft Corporation) Hidden
Языковой пакет для поддержки размещения набора ŃредŃтв Microsoft Visual Studio Tools для работы Ń ĐżŃ€Đ¸Đ»ĐľĐ¶ĐµĐ˝Đ¸ŃŹĐĽĐ¸ 2012 (x86) - RUS (x32 Version: 11.0.51108 - Microsoft Corporation) Hidden
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-786237660-2314719749-2023029921-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0DC719DC-F157-4AA6-99B8-EDEFA47C7679} - System32\Tasks\SUPERAntiSpyware Scheduled Task 047dda4b-5890-49ac-bbad-e15081768895 => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-11-07] (SUPERAdBlocker.com)
Task: {25E48AFD-376E-41AC-8B2B-7E1035D6836D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-11-21] (Piriform Ltd)
Task: {30741FDA-7341-4EB5-A026-4ECF25A08D09} - System32\Tasks\AdobeAAMUpdater-1.0-Irena-PC-Irena => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2015-03-30] (Adobe Systems Incorporated)
Task: {3535942E-12D3-4614-810D-739879ED7210} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
Task: {46D4A0BB-8A5D-4D84-B1FB-E2511ACC5FA3} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-01-10] (Adobe Systems Incorporated)
Task: {56AEC3FF-0AB1-4A6D-BB1A-07942041D9DA} - System32\Tasks\{7813A804-1070-451F-891A-34FECB778501} => pcalua.exe -a C:\Users\Irena\InstalaÄŤky\FreeRapid-0.9u4\frd.exe -d C:\Users\Irena\InstalaÄŤky\FreeRapid-0.9u4
Task: {56FEC69F-64BC-4EAD-95F3-73E60A4F4C2E} - System32\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901} => C:\Program Files\Common Files\AV\Kaspersky Lab\upgrade_launcher.exe [2015-11-12] (AO Kaspersky Lab)
Task: {653BFF55-A94F-4D6A-8EB4-DAF8EDD17FF1} - System32\Tasks\{4C71FE10-A067-5617-ACE2-70DE53101911} => Regsvr32.exe /s /n /i:"/rt" "C:\PROGRA~3\e40a79a2\bc77e9fc.dll" <==== ATTENTION
Task: {70AE5FC5-7A87-4CDE-8439-9603AB151358} - System32\Tasks\RunAsStdUser Task => C:\Users\Irena\AppData\Local\Temp\{6D480CF3-EAA2-41EC-884B-EA0C6DAF8D65}\nDock.exe <==== ATTENTION
Task: {AFEA4174-8504-47DE-9E49-D8F49FC432C1} - System32\Tasks\Oxy => C:\Users\Irena\AppData\Roaming\Oxy\Updater.exe <==== ATTENTION
Task: {D6011014-9F27-41B5-92F6-EF06E63CA443} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee Anti-Virus And Anti-Spyware\upgrade.exe [2016-05-18] (McAfee, Inc.)
Task: {DB62742F-C1AA-466D-9782-55C95356C92B} - System32\Tasks\SUPERAntiSpyware Scheduled Task 463e4ff6-d48d-43af-8a8b-42ebface9fc2 => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-11-07] (SUPERAdBlocker.com)
Task: {DDE7BD21-B626-42DB-B1C7-4F285C302618} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {E53B2AA9-D1E2-43B9-8763-B289B783D617} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 047dda4b-5890-49ac-bbad-e15081768895.job => C:\Program Files\SUPERAntiSpyware\SASTask.exe C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
Task: C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 463e4ff6-d48d-43af-8a8b-42ebface9fc2.job => C:\Program Files\SUPERAntiSpyware\SASTask.exe C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\Irena\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder\WarThunder.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://go.playmmogames.com/aff_c?offer_id=1508&aff_id=1034&source=2&click_id=e361498d90df662afd7257762765908b4fc164e7
ShortcutWithArgument: C:\Users\Irena\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\WarThunder.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://go.playmmogames.com/aff_c?offer_id=1508&aff_id=1034&source=2&click_id=e361498d90df662afd7257762765908b4fc164e7
ShortcutWithArgument: C:\Users\Irena\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\WorldofTanks.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --app=hxxp://go.playmmogames.com/aff_c?offer_id=174&aff_id=1034 --start-fullscreen
==================== Loaded Modules (Whitelisted) ==============
2014-08-18 20:49 - 2013-05-06 07:07 - 00034304 _____ () C:\Windows\System32\sst8clm.dll
2015-04-16 16:42 - 2015-04-16 16:42 - 00997536 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2012-03-09 08:58 - 2012-03-09 08:58 - 00462712 _____ () C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
2012-03-09 08:58 - 2012-03-09 08:58 - 00057208 _____ () C:\Program Files\Common Files\Common Desktop Agent\CDASrvPS.dll
2014-05-27 09:47 - 2010-07-12 06:52 - 00548864 _____ () C:\Program Files (x86)\Greenshot\Greenshot.exe
2014-05-23 14:48 - 2010-04-26 08:01 - 00078448 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\QsApoApi64.dll
2014-05-23 14:48 - 2010-04-26 08:01 - 00386160 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Dts2ApoApi64.dll
2014-05-23 14:48 - 2010-04-26 08:01 - 00105584 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\VMicApi.dll
2014-05-23 14:48 - 2010-04-26 08:01 - 64112752 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Skin.dll
2014-11-20 13:06 - 2015-06-10 10:13 - 00113024 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
2015-04-16 16:41 - 2015-04-16 16:41 - 05842080 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
2015-12-22 01:47 - 2015-12-22 01:47 - 00794920 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\kpcengine.2.3.dll
2014-05-27 09:47 - 2010-07-12 06:52 - 00028672 _____ () C:\Program Files (x86)\Greenshot\GreenshotPlugin.dll
2014-11-20 13:06 - 2012-04-30 10:57 - 00039936 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\TMonitorAPI.dll
2014-11-20 13:06 - 2015-10-20 17:44 - 00242176 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\MExplorer.dll
2011-07-07 13:54 - 2011-07-07 13:54 - 00233984 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\Report.dll
2015-03-23 18:19 - 2015-03-23 18:19 - 02620416 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\libxt.dll
2014-11-20 13:06 - 2015-04-21 12:22 - 00053248 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\VObject.dll
2014-10-30 14:36 - 2014-10-30 14:36 - 00648704 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\PhoneUpdate.dll
2015-01-23 12:34 - 2010-01-27 14:34 - 00178688 _____ () C:\Windows\SysWOW64\APOMngr.DLL
2015-04-17 13:33 - 2013-01-15 16:06 - 00061952 _____ () C:\Program Files (x86)\Genius\Manticore\HidDevice.dll
2015-04-17 13:33 - 2011-10-11 16:32 - 00054784 _____ () C:\Program Files (x86)\Genius\Manticore\KBHook1.dll
2015-04-20 06:16 - 2015-04-20 06:16 - 36732592 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll
2015-04-20 06:16 - 2015-04-20 06:16 - 00746672 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libglesv2.dll
2015-04-20 06:16 - 2015-04-20 06:16 - 00136368 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libegl.dll
2016-12-09 20:46 - 2016-12-08 08:29 - 01829208 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libglesv2.dll
2016-12-09 20:46 - 2016-12-08 08:29 - 00085848 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libegl.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2014-05-30 22:27 - 2016-10-13 09:36 - 00001205 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
127.0.0.1 activate.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 adobe-dns.adobe.com
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-786237660-2314719749-2023029921-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Irena\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 8.8.8.8
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [SPPSVC-In-TCP] => %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{C0A90262-6A7D-4B3D-9CE9-D65B54638A64}] => LPort=9091
FirewallRules: [{AD63B039-232F-4F8A-975B-564AB056D9C4}] => C:\Users\Irena\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{CF5251FA-AD34-493A-AF29-130F1CB856CE}] => C:\Users\Irena\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{4F47759E-DECE-4FD7-88A0-41A9F2D00206}] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
FirewallRules: [{801904B8-AEB1-4F0E-8C76-8221C761E54F}] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
FirewallRules: [{02B697B9-2AF0-4927-B5E9-58A648912D5F}] => C:\Program Files (x86)\Samsung\Easy Printer Manager\IDS.Application.exe
FirewallRules: [{370D48BA-171F-4350-B2B5-1517E8CDFB4D}] => C:\Program Files (x86)\Samsung\Easy Printer Manager\IDS.Application.exe
FirewallRules: [{59DC57F0-86E1-4E9A-A232-16A56B7ACC8E}] => C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe
FirewallRules: [{AE86DF93-04FF-4066-9C7A-BD67B99FBB45}] => C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe
FirewallRules: [{AF0CE1A8-D090-4377-B9A1-6D286C5E942E}] => C:\Program Files (x86)\Samsung\Easy Printer Manager\IDSAlert.exe
FirewallRules: [{AE91D06E-67E4-4C7A-BAC2-7D846344C28A}] => C:\Program Files (x86)\Samsung\Easy Printer Manager\IDSAlert.exe
FirewallRules: [{654EA53F-693F-4D9B-8295-F11C07594618}] => C:\Program Files (x86)\Samsung\Easy Printer Manager\uninstall.exe
FirewallRules: [{AE006FE7-E722-43F6-B8C0-F341C9C43665}] => C:\Program Files (x86)\Samsung\Easy Printer Manager\uninstall.exe
FirewallRules: [{A7EE75EF-411E-4B36-9AC7-C6EE0E51C03A}] => C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe
FirewallRules: [{900168AB-E850-4771-A05C-2EF4063F3BA7}] => C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe
FirewallRules: [{404117BE-B631-49BC-8449-5DB8791A06D9}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{95E66A34-81A2-49A1-A949-1477DA35CAE3}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{88B16457-1012-43F6-90DD-6CD088CE9729}C:\program files (x86)\java\jre1.8.0_31\launch4j-tmp\frd.exe] => C:\program files (x86)\java\jre1.8.0_31\launch4j-tmp\frd.exe
FirewallRules: [UDP Query User{7097B2F5-E305-4B7D-873C-A881AA42AE3E}C:\program files (x86)\java\jre1.8.0_31\launch4j-tmp\frd.exe] => C:\program files (x86)\java\jre1.8.0_31\launch4j-tmp\frd.exe
FirewallRules: [{559C1906-B42D-4CED-B727-829770E49107}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{6585670F-E9D3-4B9A-8CBB-A6F6A738EB12}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{B85376D4-5840-4219-93F8-8DF40A12E06B}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Restore Points =========================
06-01-2017 20:11:21 Windows Update
15-01-2017 01:41:13 Windows Update
15-01-2017 03:00:12 Windows Update
==================== Faulty Device Manager Devices =============
Name: Adaptér tunelového režimu Microsoft Teredo
Description: Adaptér tunelového režimu Microsoft Teredo
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
==================== Event log errors: =========================
Application errors:
==================
Error: (01/15/2017 03:01:19 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrovánà selhala při volánà OnIdentity() v objektu System Writer.
Details:
AddWin32ServiceFiles: Unable to back up image of service McAfee Application Installer Cleanup (0060251482307707) since QueryServiceConfig API failed
System Error:
Systém nemůže nalézt uvedený soubor.
.
Error: (01/15/2017 01:41:19 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrovánà selhala při volánà OnIdentity() v objektu System Writer.
Details:
AddWin32ServiceFiles: Unable to back up image of service McAfee Application Installer Cleanup (0060251482307707) since QueryServiceConfig API failed
System Error:
Systém nemůže nalézt uvedený soubor.
.
Error: (01/10/2017 06:46:19 PM) (Source: .NET Runtime) (EventID: 1022) (User: )
Description: .NET Runtime version 4.0.30319.0 - Došlo k chybÄ› pĹ™i inicializaci infrastruktury pĹ™ipojenĂ profilovacĂho rozhranĂ API. Tento proces neumoĹľnĂ pĹ™ipojenĂ profileru. HRESULT: 0x80004005. ID procesu (desĂtkovÄ›): 10496. ID zprávy: [0x2509].
Error: (01/10/2017 05:10:06 PM) (Source: .NET Runtime) (EventID: 1022) (User: )
Description: .NET Runtime version 4.0.30319.0 - Došlo k chybÄ› pĹ™i inicializaci infrastruktury pĹ™ipojenĂ profilovacĂho rozhranĂ API. Tento proces neumoĹľnĂ pĹ™ipojenĂ profileru. HRESULT: 0x80004005. ID procesu (desĂtkovÄ›): 4124. ID zprávy: [0x2509].
Error: (01/10/2017 05:00:10 PM) (Source: .NET Runtime) (EventID: 1022) (User: )
Description: .NET Runtime version 4.0.30319.0 - Došlo k chybÄ› pĹ™i inicializaci infrastruktury pĹ™ipojenĂ profilovacĂho rozhranĂ API. Tento proces neumoĹľnĂ pĹ™ipojenĂ profileru. HRESULT: 0x80004005. ID procesu (desĂtkovÄ›): 17372. ID zprávy: [0x2509].
Error: (01/06/2017 08:11:25 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrovánà selhala při volánà OnIdentity() v objektu System Writer.
Details:
AddWin32ServiceFiles: Unable to back up image of service McAfee Application Installer Cleanup (0060251482307707) since QueryServiceConfig API failed
System Error:
Systém nemůže nalézt uvedený soubor.
.
Error: (01/06/2017 06:57:05 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Generovánà kontextu aktivace pro c:\program files (x86)\Adobe\adobe creative cloud\Utils\Creative Cloud Uninstaller.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti poĹľadovaná aplikacĂ je v konfliktu s jinou verzĂ součásti, která je jiĹľ aktivnĂ.
Konfliktnà součásti:
Součást 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
Součást 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Error: (01/06/2017 01:21:06 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program bsplayer.exe verze 2.7.0.1080 pĹ™estal spolupracovat se systĂ©mem Windows a byl ukonÄŤen. Chcete-li zjistit, zda je k dispozici vĂce informacĂ o tomto problĂ©mu, vyhledejte historii problĂ©mu v ovládacĂm panelu Centrum akcĂ.
ID procesu: 460
ÄŚas spuštÄ›nĂ: 01d2681718bf23c2
ÄŚas ukonÄŤenĂ: 28
Cesta k aplikaci: C:\Program Files (x86)\Webteh\BSplayerPro\bsplayer.exe
ID hlášenĂ: 94fe1d98-d40a-11e6-913a-7071bc7f8190
Error: (01/05/2017 03:03:55 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Generovánà kontextu aktivace pro c:\program files (x86)\Adobe\adobe creative cloud\Utils\Creative Cloud Uninstaller.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti poĹľadovaná aplikacĂ je v konfliktu s jinou verzĂ součásti, která je jiĹľ aktivnĂ.
Konfliktnà součásti:
Součást 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
Součást 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Error: (01/05/2017 02:22:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybujĂcĂ aplikace: plugin-container.exe, verze: 50.1.0.6186, ÄŤasovĂ© razĂtko: 0x584a057c
Název chybujĂcĂho modulu: mozglue.dll, verze: 50.1.0.6186, ÄŤasovĂ© razĂtko: 0x5849ff8b
Kód výjimky: 0x80000003
Posun chyby: 0x0000ec79
ID chybujĂcĂho procesu: 0x1264
ÄŚas spuštÄ›nĂ chybujĂcĂ aplikace: 0x01d266b880e0c695
Cesta k chybujĂcĂ aplikaci: C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
Cesta k chybujĂcĂmu modulu: C:\Program Files (x86)\Mozilla Firefox\mozglue.dll
ID zprávy: fbf4d552-d349-11e6-913a-7071bc7f8190
System errors:
=============
Error: (01/15/2017 07:27:00 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdaĹ™ila: InstalovánĂ následujĂcĂ aktualizace se nezdaĹ™ilo z dĹŻvodu chyby (0x80080005): Leden 2017, mÄ›sĂÄŤnĂ kumulativnĂ aktualizace zabezpeÄŤenĂ pro zvýšenĂ kvality pro Windows 7 pro procesory x64 (KB3212646).
Error: (01/15/2017 03:10:43 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {752073A1-23F2-4396-85F0-8FDB879ED0ED} se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/30/2016 07:51:51 AM) (Source: bowser) (EventID: 8003) (User: )
Description: HlavnĂ prohledávaÄŤ pĹ™ijal oznámenĂ serveru od poÄŤĂtaÄŤe HOME,
který se považuje za hlavnà prohledávač domény pro přenos NetBT_Tcpip_{EC4A9C6A-B0C7-4A05-8878-7A3B3F3B4151}.
Hlavnà prohledávač bude ukončen nebo bude vyvolána volba.
Error: (12/18/2016 03:09:22 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: SluĹľba Windows Search neuspÄ›la pĹ™i spuštÄ›nĂ v dĹŻsledku následujĂcĂ chyby:
SluĹľba neodpovÄ›dÄ›la na Ĺ™ĂdicĂ nebo zahajovacĂ poĹľadavek dostateÄŤnÄ› vÄŤas.
Error: (12/18/2016 03:09:22 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekánà na připojenà služby Windows Search bylo dosaženo časového limitu (30000 ms).
Error: (12/16/2016 04:36:04 AM) (Source: BROWSER) (EventID: 8032) (User: )
Description: SluĹľbÄ› Browser se pĹ™i pĹ™enosu \Device\NetBT_Tcpip_{EC4A9C6A-B0C7-4A05-8878-7A3B3F3B4151} pĹ™Ăliš ÄŤasto nezdaĹ™ilo naÄŤĂst záloĹľnĂ seznam.
Záložnà prohledávač bude ukončen.
Error: (12/14/2016 01:58:56 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: SluĹľba Windows Search byla neÄŤekanÄ› ukonÄŤena. Stalo se to 1 krát. NásledujĂcĂ opravná akce bude spuštÄ›na za 30000 milisekund: Restartovat sluĹľbu.
Error: (12/14/2016 01:58:56 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: SluĹľba Windows Search ukonÄŤena s chybou %%-1073473535, specifickou pro sluĹľbu.
Error: (12/13/2016 11:35:27 AM) (Source: NetBT) (EventID: 4321) (User: )
Description: Název WORKGROUP :1d nelze zaregistrovat v rozhranàs IP adresou 192.168.0.103.
PoÄŤĂtaÄŤ s IP adresou 192.168.0.101 nepovolil zĂskánĂ názvu
tĂmto poÄŤĂtaÄŤem.
Error: (12/09/2016 01:38:10 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: SluĹľba Windows Search neuspÄ›la pĹ™i spuštÄ›nĂ v dĹŻsledku následujĂcĂ chyby:
SluĹľba neodpovÄ›dÄ›la na Ĺ™ĂdicĂ nebo zahajovacĂ poĹľadavek dostateÄŤnÄ› vÄŤas.
CodeIntegrity:
===================================
Date: 2015-03-11 00:31:06.886
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-03-11 00:31:06.885
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-03-11 00:31:06.882
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-03-11 00:31:06.878
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-03-11 00:31:06.876
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-03-11 00:31:06.874
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-03-09 01:24:02.956
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-03-09 01:24:02.954
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-03-09 01:24:02.951
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-03-09 01:24:02.947
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i3 CPU M 350 @ 2.27GHz
Percentage of memory in use: 71%
Total physical RAM: 3767.05 MB
Available physical RAM: 1065.33 MB
Total Virtual: 7532.29 MB
Available Virtual: 3102.77 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:111.69 GB) (Free:55.17 GB) NTFS
Drive d: (Disk) (CDROM) (Total:4.31 GB) (Free:0 GB) CDFS
Drive e: (Místní disk) (Fixed) (Total:465.76 GB) (Free:257.36 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: 89FED6D2)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111.7 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: B5BDF682)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)
==================== End of Addition.txt ============================
Ran by Irena (17-01-2017 12:39:31)
Running from C:\Users\Irena\Desktop
Windows 7 Professional Service Pack 1 (X64) (2014-05-23 13:38:54)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-786237660-2314719749-2023029921-500 - Administrator - Disabled)
Guest (S-1-5-21-786237660-2314719749-2023029921-501 - Limited - Enabled)
HomeGroupUser$ (S-1-5-21-786237660-2314719749-2023029921-1007 - Limited - Enabled)
Irena (S-1-5-21-786237660-2314719749-2023029921-1000 - Administrator - Enabled) => C:\Users\Irena
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Kaspersky Internet Security (Enabled - Up to date) {86367591-4BE4-AE08-2FD9-7FCB8259CD98}
AS: Kaspersky Internet Security (Enabled - Up to date) {3D579475-6DDE-A186-1569-44B9F9DE8725}
AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Kaspersky Internet Security (Enabled) {BE0DF4B4-018B-AF50-0486-D6FE7C8A8AE3}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-786237660-2314719749-2023029921-1000\...\uTorrent) (Version: 3.4.1.31395 - BitTorrent Inc.)
7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version: - )
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 23.0.0.257 - Adobe Systems Incorporated)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.0.1.88 - Adobe Systems Incorporated)
Adobe Flash Player 24 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 24.0.0.194 - Adobe Systems Incorporated)
Adobe Photoshop CC 2014 (HKLM-x32\...\{D7A4F897-B20A-42D0-862D-CB5F6DB7391D}) (Version: 15.2.2 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.11) - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.11 - Adobe Systems Incorporated)
Ashampoo Burning Studio 15 v.15.0.2 (HKLM-x32\...\{91B33C97-5B38-0A92-D04A-A0F26F3F87D4}_is1) (Version: 15.0.2 - Ashampoo GmbH & Co. KG)
ASRock InstantBoot v1.24 (HKLM-x32\...\ASRock InstantBoot_is1) (Version: - )
Atheros Client Installation Program (HKLM-x32\...\{28006915-2739-4EBE-B5E8-49B25D32EB33}) (Version: 7.0 - Atheros)
BalĂÄŤek ovladaÄŤe systĂ©mu Windows - Intel hdc (07/25/2013 9.1.9.1005) (HKLM\...\312825BF7EA19ED109FF6BE962115F5B03076E44) (Version: 07/25/2013 9.1.9.1005 - Intel)
BalĂÄŤek ovladaÄŤe systĂ©mu Windows - Intel hdc (07/25/2013 9.1.9.1005) (HKLM\...\45E15243FF229D0F06670A5B262CA9C7887085F6) (Version: 07/25/2013 9.1.9.1005 - Intel)
BalĂÄŤek ovladaÄŤe systĂ©mu Windows - Intel System (07/25/2013 9.1.9.1005) (HKLM\...\03558EE026C7D1019B4A138DD4B58B8AE39211C4) (Version: 07/25/2013 9.1.9.1005 - Intel)
BalĂÄŤek ovladaÄŤe systĂ©mu Windows - Intel System (07/25/2013 9.1.9.1005) (HKLM\...\BF1AD0105EBDCA6E730BE93DE583343339830A7A) (Version: 07/25/2013 9.1.9.1005 - Intel)
BalĂÄŤek ovladaÄŤe systĂ©mu Windows - Intel System (07/25/2013 9.1.9.1005) (HKLM\...\CAC45647A959F237CE25C052FDB9A4A914C34830) (Version: 07/25/2013 9.1.9.1005 - Intel)
BalĂÄŤek ovladaÄŤe systĂ©mu Windows - Intel USB (07/25/2013 9.1.9.1005) (HKLM\...\A86AAC18EC59E9369A037083AC25A97B89713EC8) (Version: 07/25/2013 9.1.9.1005 - Intel)
BS.Player PRO (HKLM-x32\...\BSPlayerp) (Version: 2.70.1080 - AB Team, d.o.o.)
CCleaner (HKLM\...\CCleaner) (Version: 5.00 - Piriform)
CIR Tool Kit (HKLM-x32\...\{245BDABA-CD34-4A57-8BE7-F2784A4E0BA4}) (Version: 2.1.2009.0619 - Nuvoton Technology Corp)
Common Desktop Agent (Version: 1.62.0 - OEM) Hidden
Čarodějka v1.0 (HKLM-x32\...\{Carodejka}_is1) (Version: - Špidla Data Processing, s.r.o.)
FreeMouseAutoClicker 3.7 (HKLM-x32\...\{292F00C5-25EF-4FBE-9873-13EF1F69DEED}_is1) (Version: - Advanced Mouse Auto Clicker ltd.)
GhostMouse (HKLM-x32\...\GhostMouse_is1) (Version: Free V3.2.3 - ghost-mouse.com)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 55.0.2883.87 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
Greenshot (HKLM-x32\...\Greenshot_is1) (Version: - )
HMA! Pro VPN 3.2.9.6 (HKLM-x32\...\HMA! Pro VPN) (Version: 3.2.9.6 - Privax Ltd)
Intel Security True Key (HKLM\...\TrueKey) (Version: 4.11.110.1 - Intel Security)
Intel(R) C++ Redistributables for Windows* on Intel(R) 64 (HKLM-x32\...\{D2437C5C-2D8C-40D2-8059-689AD7239FA3}) (Version: 11.1.048 - Intel Corporation)
Intel(R) Control Center (HKLM-x32\...\{F8A9085D-4C7A-41a9-8A77-C8998A96C421}) (Version: 1.2.1.1007 - Intel Corporation)
Intel(R) Graphics Media Accelerator Driver (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2104 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 6.0.0.1179 - Intel Corporation)
Internet Download Manager (HKLM-x32\...\Internet Download Manager) (Version: - Tonec Inc.)
Java 8 Update 31 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F83218031F0}) (Version: 8.0.310 - Oracle Corporation)
Kaspersky Internet Security (HKLM-x32\...\InstallWIX_{F575F386-57EF-4943-B003-A13F13B05EEB}) (Version: 16.0.1.445 - Kaspersky Lab)
Kaspersky Internet Security (x32 Version: 16.0.1.445 - Kaspersky Lab) Hidden
K-Lite Mega Codec Pack 10.6.0 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 10.6.0 - )
Malwarebytes Anti-Malware verze 2.2.1.1043 (HKLM-x32\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Manticore Gaming Keyboard (HKLM-x32\...\{0DAEFA4F-E394-4D1F-8F1A-6A2180561290}}_is1) (Version: - )
Microsoft .NET Framework 4.6 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft .NET Framework 4.6 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.00081 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218 (HKLM-x32\...\{E503B4BF-F7BB-3D5F-8BC8-F694B1CFF942}) (Version: 9.0.21022.218 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.21005 (HKLM-x32\...\{7f51bdb9-ee21-49ee-94d6-90afc321780e}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.21005 (HKLM-x32\...\{ce085a78-074e-4823-8dc1-8a721b94b76d}) (Version: 12.0.21005.1 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2012 (HKLM-x32\...\{89ca2a32-2b52-4595-8dfd-6fe4757958d0}) (Version: 11.0.51108 - Microsoft Corporation)
Mozilla Firefox 50.1.0 (x86 cs) (HKLM-x32\...\Mozilla Firefox 50.1.0 (x86 cs)) (Version: 50.1.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 50.1.0.6186 - Mozilla)
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MyTools Library (HKLM-x32\...\{90CDBCDF-781C-42DD-AB9A-835E59C03800}) (Version: 0.0 - MyTools) <==== ATTENTION
NEC Electronics USB 3.0 Host Controller Driver (HKLM-x32\...\InstallShield_{D7BF9739-8A68-4335-BBEE-37752AD9E86B}) (Version: 1.0.19.0 - NEC Electronics Corporation)
NEC Electronics USB 3.0 Host Controller Driver (x32 Version: 1.0.19.0 - NEC Electronics Corporation) Hidden
Nexus Ultimate 11.6 (HKLM-x32\...\Nexus Ultimate_is1) (Version: - )
OpenVPN Tap Adapter 9.0.0.8 (HKLM-x32\...\OpenVPN Tap Adapter) (Version: - )
OverPlay VPN (HKU\S-1-5-21-786237660-2314719749-2023029921-1000\...\006adc251e9a903c) (Version: 2.0.0.72 - OverPlay.net, LP.)
Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x64 Hosting Support - PTB (Version: 11.0.51108 - Microsoft Corporation) Hidden
Pacote de Idiomas do Microsoft Visual Studio Tools for Applications 2012 x86 Hosting Support - PTB (x32 Version: 11.0.51108 - Microsoft Corporation) Hidden
Platform (x32 Version: 1.34 - VIA Technologies, Inc.) Hidden
Realtek Ethernet Controller Driver For Windows 7 (HKLM-x32\...\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}) (Version: 7.17.304.2010 - Realtek)
Samsung C410 Series (HKLM-x32\...\Samsung C410 Series) (Version: 1.01 (20.5.2013) - Samsung Electronics Co., Ltd.)
Samsung Easy Printer Manager (HKLM-x32\...\Samsung Easy Printer Manager) (Version: 1.03.23.00(3.5.2013) - Samsung Electronics Co., Ltd.)
Samsung Printer Live Update (HKLM-x32\...\Samsung Printer Live Update) (Version: 1.01.00:04(2013-04-22) - Samsung Electronics Co., Ltd.)
Sony PC Companion 2.10.303 (HKLM-x32\...\{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}) (Version: 2.10.303 - Sony)
Spotify (HKU\S-1-5-21-786237660-2314719749-2023029921-1000\...\Spotify) (Version: 1.0.38.171.g5e1cd7b2 - Spotify AB)
SUPERAntiSpyware (HKLM\...\{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}) (Version: 5.7.1018 - SUPERAntiSpyware.com)
SUPERAntiSpyware 5.7.1018 (HKLM-x32\...\SUPERAntiSpyware 5.7.1018) (Version: 5.7.1018 - skoda.josef@gmail.com)
THX TruStudio PRO (HKLM-x32\...\{388B7C7C-998D-4CA3-8A3B-04771F82E95E}) (Version: 1.0 - Creative Technology Limited)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.51a - Ghisler Software GmbH)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VIA Platforma OvladaÄŤe zaĹ™ĂzenĂ (HKLM-x32\...\InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}) (Version: 1.34 - VIA Technologies, Inc.)
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Zobrazit uĹľivatelskou pĹ™ĂruÄŤku (HKLM-x32\...\View User Guide) (Version: 3.60.02.0 - )
Языковой пакет для поддержки размещения набора ŃредŃтв Microsoft Visual Studio Tools для работы Ń ĐżŃ€Đ¸Đ»ĐľĐ¶ĐµĐ˝Đ¸ŃŹĐĽĐ¸ 2012 (x64) - RUS (Version: 11.0.51108 - Microsoft Corporation) Hidden
Языковой пакет для поддержки размещения набора ŃредŃтв Microsoft Visual Studio Tools для работы Ń ĐżŃ€Đ¸Đ»ĐľĐ¶ĐµĐ˝Đ¸ŃŹĐĽĐ¸ 2012 (x86) - RUS (x32 Version: 11.0.51108 - Microsoft Corporation) Hidden
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-786237660-2314719749-2023029921-1000_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {0DC719DC-F157-4AA6-99B8-EDEFA47C7679} - System32\Tasks\SUPERAntiSpyware Scheduled Task 047dda4b-5890-49ac-bbad-e15081768895 => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-11-07] (SUPERAdBlocker.com)
Task: {25E48AFD-376E-41AC-8B2B-7E1035D6836D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-11-21] (Piriform Ltd)
Task: {30741FDA-7341-4EB5-A026-4ECF25A08D09} - System32\Tasks\AdobeAAMUpdater-1.0-Irena-PC-Irena => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2015-03-30] (Adobe Systems Incorporated)
Task: {3535942E-12D3-4614-810D-739879ED7210} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
Task: {46D4A0BB-8A5D-4D84-B1FB-E2511ACC5FA3} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-01-10] (Adobe Systems Incorporated)
Task: {56AEC3FF-0AB1-4A6D-BB1A-07942041D9DA} - System32\Tasks\{7813A804-1070-451F-891A-34FECB778501} => pcalua.exe -a C:\Users\Irena\InstalaÄŤky\FreeRapid-0.9u4\frd.exe -d C:\Users\Irena\InstalaÄŤky\FreeRapid-0.9u4
Task: {56FEC69F-64BC-4EAD-95F3-73E60A4F4C2E} - System32\Tasks\Kaspersky_Upgrade_Launcher_{278ADC42-419D-4547-A6CA-5B74BE0AD901} => C:\Program Files\Common Files\AV\Kaspersky Lab\upgrade_launcher.exe [2015-11-12] (AO Kaspersky Lab)
Task: {653BFF55-A94F-4D6A-8EB4-DAF8EDD17FF1} - System32\Tasks\{4C71FE10-A067-5617-ACE2-70DE53101911} => Regsvr32.exe /s /n /i:"/rt" "C:\PROGRA~3\e40a79a2\bc77e9fc.dll" <==== ATTENTION
Task: {70AE5FC5-7A87-4CDE-8439-9603AB151358} - System32\Tasks\RunAsStdUser Task => C:\Users\Irena\AppData\Local\Temp\{6D480CF3-EAA2-41EC-884B-EA0C6DAF8D65}\nDock.exe <==== ATTENTION
Task: {AFEA4174-8504-47DE-9E49-D8F49FC432C1} - System32\Tasks\Oxy => C:\Users\Irena\AppData\Roaming\Oxy\Updater.exe <==== ATTENTION
Task: {D6011014-9F27-41B5-92F6-EF06E63CA443} - System32\Tasks\McAfee Remediation (Prepare) => C:\Program Files\Common Files\AV\McAfee Anti-Virus And Anti-Spyware\upgrade.exe [2016-05-18] (McAfee, Inc.)
Task: {DB62742F-C1AA-466D-9782-55C95356C92B} - System32\Tasks\SUPERAntiSpyware Scheduled Task 463e4ff6-d48d-43af-8a8b-42ebface9fc2 => C:\Program Files\SUPERAntiSpyware\SASTask.exe [2013-11-07] (SUPERAdBlocker.com)
Task: {DDE7BD21-B626-42DB-B1C7-4F285C302618} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {E53B2AA9-D1E2-43B9-8763-B289B783D617} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 047dda4b-5890-49ac-bbad-e15081768895.job => C:\Program Files\SUPERAntiSpyware\SASTask.exe C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
Task: C:\Windows\Tasks\SUPERAntiSpyware Scheduled Task 463e4ff6-d48d-43af-8a8b-42ebface9fc2.job => C:\Program Files\SUPERAntiSpyware\SASTask.exe C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\Irena\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WarThunder\WarThunder.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://go.playmmogames.com/aff_c?offer_id=1508&aff_id=1034&source=2&click_id=e361498d90df662afd7257762765908b4fc164e7
ShortcutWithArgument: C:\Users\Irena\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\WarThunder.lnk -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) -> hxxp://go.playmmogames.com/aff_c?offer_id=1508&aff_id=1034&source=2&click_id=e361498d90df662afd7257762765908b4fc164e7
ShortcutWithArgument: C:\Users\Irena\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\WorldofTanks.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --app=hxxp://go.playmmogames.com/aff_c?offer_id=174&aff_id=1034 --start-fullscreen
==================== Loaded Modules (Whitelisted) ==============
2014-08-18 20:49 - 2013-05-06 07:07 - 00034304 _____ () C:\Windows\System32\sst8clm.dll
2015-04-16 16:42 - 2015-04-16 16:42 - 00997536 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2012-03-09 08:58 - 2012-03-09 08:58 - 00462712 _____ () C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
2012-03-09 08:58 - 2012-03-09 08:58 - 00057208 _____ () C:\Program Files\Common Files\Common Desktop Agent\CDASrvPS.dll
2014-05-27 09:47 - 2010-07-12 06:52 - 00548864 _____ () C:\Program Files (x86)\Greenshot\Greenshot.exe
2014-05-23 14:48 - 2010-04-26 08:01 - 00078448 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\QsApoApi64.dll
2014-05-23 14:48 - 2010-04-26 08:01 - 00386160 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Dts2ApoApi64.dll
2014-05-23 14:48 - 2010-04-26 08:01 - 00105584 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\VMicApi.dll
2014-05-23 14:48 - 2010-04-26 08:01 - 64112752 ____R () C:\Program Files (x86)\VIA\VIAudioi\VDeck\Skin.dll
2014-11-20 13:06 - 2015-06-10 10:13 - 00113024 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\PCCompanionInfo.exe
2015-04-16 16:41 - 2015-04-16 16:41 - 05842080 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
2015-12-22 01:47 - 2015-12-22 01:47 - 00794920 _____ () C:\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 16.0.1\kpcengine.2.3.dll
2014-05-27 09:47 - 2010-07-12 06:52 - 00028672 _____ () C:\Program Files (x86)\Greenshot\GreenshotPlugin.dll
2014-11-20 13:06 - 2012-04-30 10:57 - 00039936 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\TMonitorAPI.dll
2014-11-20 13:06 - 2015-10-20 17:44 - 00242176 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\MExplorer.dll
2011-07-07 13:54 - 2011-07-07 13:54 - 00233984 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\Report.dll
2015-03-23 18:19 - 2015-03-23 18:19 - 02620416 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\libxt.dll
2014-11-20 13:06 - 2015-04-21 12:22 - 00053248 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\VObject.dll
2014-10-30 14:36 - 2014-10-30 14:36 - 00648704 _____ () C:\Program Files (x86)\Sony\Sony PC Companion\PhoneUpdate.dll
2015-01-23 12:34 - 2010-01-27 14:34 - 00178688 _____ () C:\Windows\SysWOW64\APOMngr.DLL
2015-04-17 13:33 - 2013-01-15 16:06 - 00061952 _____ () C:\Program Files (x86)\Genius\Manticore\HidDevice.dll
2015-04-17 13:33 - 2011-10-11 16:32 - 00054784 _____ () C:\Program Files (x86)\Genius\Manticore\KBHook1.dll
2015-04-20 06:16 - 2015-04-20 06:16 - 36732592 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libcef.dll
2015-04-20 06:16 - 2015-04-20 06:16 - 00746672 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libglesv2.dll
2015-04-20 06:16 - 2015-04-20 06:16 - 00136368 _____ () C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\libegl.dll
2016-12-09 20:46 - 2016-12-08 08:29 - 01829208 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libglesv2.dll
2016-12-09 20:46 - 2016-12-08 08:29 - 00085848 _____ () C:\Program Files (x86)\Google\Chrome\Application\55.0.2883.87\libegl.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ==========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2014-05-30 22:27 - 2016-10-13 09:36 - 00001205 ____A C:\Windows\system32\Drivers\etc\hosts
127.0.0.1 localhost
127.0.0.1 activate.adobe.com
127.0.0.1 3dns-3.adobe.com
127.0.0.1 adobe-dns-2.adobe.com
127.0.0.1 adobe-dns-3.adobe.com
127.0.0.1 ereg.wip3.adobe.com
127.0.0.1 activate-sea.adobe.com
127.0.0.1 wip3.adobe.com
127.0.0.1 wwis-dubc1-vip60.adobe.com
127.0.0.1 activate-sjc0.adobe.com
127.0.0.1 practivate.adobe.com
127.0.0.1 ereg.adobe.com
127.0.0.1 activate.wip3.adobe.com
127.0.0.1 3dns-2.adobe.com
127.0.0.1 adobe-dns.adobe.com
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-786237660-2314719749-2023029921-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Irena\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 8.8.8.8
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [SPPSVC-In-TCP] => %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{C0A90262-6A7D-4B3D-9CE9-D65B54638A64}] => LPort=9091
FirewallRules: [{AD63B039-232F-4F8A-975B-564AB056D9C4}] => C:\Users\Irena\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{CF5251FA-AD34-493A-AF29-130F1CB856CE}] => C:\Users\Irena\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{4F47759E-DECE-4FD7-88A0-41A9F2D00206}] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
FirewallRules: [{801904B8-AEB1-4F0E-8C76-8221C761E54F}] => C:\Program Files\Common Files\Common Desktop Agent\CDASrv.exe
FirewallRules: [{02B697B9-2AF0-4927-B5E9-58A648912D5F}] => C:\Program Files (x86)\Samsung\Easy Printer Manager\IDS.Application.exe
FirewallRules: [{370D48BA-171F-4350-B2B5-1517E8CDFB4D}] => C:\Program Files (x86)\Samsung\Easy Printer Manager\IDS.Application.exe
FirewallRules: [{59DC57F0-86E1-4E9A-A232-16A56B7ACC8E}] => C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe
FirewallRules: [{AE86DF93-04FF-4066-9C7A-BD67B99FBB45}] => C:\Program Files (x86)\Samsung\Easy Printer Manager\OrderSupplies.exe
FirewallRules: [{AF0CE1A8-D090-4377-B9A1-6D286C5E942E}] => C:\Program Files (x86)\Samsung\Easy Printer Manager\IDSAlert.exe
FirewallRules: [{AE91D06E-67E4-4C7A-BAC2-7D846344C28A}] => C:\Program Files (x86)\Samsung\Easy Printer Manager\IDSAlert.exe
FirewallRules: [{654EA53F-693F-4D9B-8295-F11C07594618}] => C:\Program Files (x86)\Samsung\Easy Printer Manager\uninstall.exe
FirewallRules: [{AE006FE7-E722-43F6-B8C0-F341C9C43665}] => C:\Program Files (x86)\Samsung\Easy Printer Manager\uninstall.exe
FirewallRules: [{A7EE75EF-411E-4B36-9AC7-C6EE0E51C03A}] => C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe
FirewallRules: [{900168AB-E850-4771-A05C-2EF4063F3BA7}] => C:\Program Files (x86)\Samsung\Easy Printer Manager\CDAS2PC\CDAS2PC.exe
FirewallRules: [{404117BE-B631-49BC-8449-5DB8791A06D9}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{95E66A34-81A2-49A1-A949-1477DA35CAE3}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [TCP Query User{88B16457-1012-43F6-90DD-6CD088CE9729}C:\program files (x86)\java\jre1.8.0_31\launch4j-tmp\frd.exe] => C:\program files (x86)\java\jre1.8.0_31\launch4j-tmp\frd.exe
FirewallRules: [UDP Query User{7097B2F5-E305-4B7D-873C-A881AA42AE3E}C:\program files (x86)\java\jre1.8.0_31\launch4j-tmp\frd.exe] => C:\program files (x86)\java\jre1.8.0_31\launch4j-tmp\frd.exe
FirewallRules: [{559C1906-B42D-4CED-B727-829770E49107}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{6585670F-E9D3-4B9A-8CBB-A6F6A738EB12}] => C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{B85376D4-5840-4219-93F8-8DF40A12E06B}] => C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
==================== Restore Points =========================
06-01-2017 20:11:21 Windows Update
15-01-2017 01:41:13 Windows Update
15-01-2017 03:00:12 Windows Update
==================== Faulty Device Manager Devices =============
Name: Adaptér tunelového režimu Microsoft Teredo
Description: Adaptér tunelového režimu Microsoft Teredo
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
==================== Event log errors: =========================
Application errors:
==================
Error: (01/15/2017 03:01:19 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrovánà selhala při volánà OnIdentity() v objektu System Writer.
Details:
AddWin32ServiceFiles: Unable to back up image of service McAfee Application Installer Cleanup (0060251482307707) since QueryServiceConfig API failed
System Error:
Systém nemůže nalézt uvedený soubor.
.
Error: (01/15/2017 01:41:19 AM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrovánà selhala při volánà OnIdentity() v objektu System Writer.
Details:
AddWin32ServiceFiles: Unable to back up image of service McAfee Application Installer Cleanup (0060251482307707) since QueryServiceConfig API failed
System Error:
Systém nemůže nalézt uvedený soubor.
.
Error: (01/10/2017 06:46:19 PM) (Source: .NET Runtime) (EventID: 1022) (User: )
Description: .NET Runtime version 4.0.30319.0 - Došlo k chybÄ› pĹ™i inicializaci infrastruktury pĹ™ipojenĂ profilovacĂho rozhranĂ API. Tento proces neumoĹľnĂ pĹ™ipojenĂ profileru. HRESULT: 0x80004005. ID procesu (desĂtkovÄ›): 10496. ID zprávy: [0x2509].
Error: (01/10/2017 05:10:06 PM) (Source: .NET Runtime) (EventID: 1022) (User: )
Description: .NET Runtime version 4.0.30319.0 - Došlo k chybÄ› pĹ™i inicializaci infrastruktury pĹ™ipojenĂ profilovacĂho rozhranĂ API. Tento proces neumoĹľnĂ pĹ™ipojenĂ profileru. HRESULT: 0x80004005. ID procesu (desĂtkovÄ›): 4124. ID zprávy: [0x2509].
Error: (01/10/2017 05:00:10 PM) (Source: .NET Runtime) (EventID: 1022) (User: )
Description: .NET Runtime version 4.0.30319.0 - Došlo k chybÄ› pĹ™i inicializaci infrastruktury pĹ™ipojenĂ profilovacĂho rozhranĂ API. Tento proces neumoĹľnĂ pĹ™ipojenĂ profileru. HRESULT: 0x80004005. ID procesu (desĂtkovÄ›): 17372. ID zprávy: [0x2509].
Error: (01/06/2017 08:11:25 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrovánà selhala při volánà OnIdentity() v objektu System Writer.
Details:
AddWin32ServiceFiles: Unable to back up image of service McAfee Application Installer Cleanup (0060251482307707) since QueryServiceConfig API failed
System Error:
Systém nemůže nalézt uvedený soubor.
.
Error: (01/06/2017 06:57:05 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Generovánà kontextu aktivace pro c:\program files (x86)\Adobe\adobe creative cloud\Utils\Creative Cloud Uninstaller.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti poĹľadovaná aplikacĂ je v konfliktu s jinou verzĂ součásti, která je jiĹľ aktivnĂ.
Konfliktnà součásti:
Součást 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
Součást 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Error: (01/06/2017 01:21:06 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program bsplayer.exe verze 2.7.0.1080 pĹ™estal spolupracovat se systĂ©mem Windows a byl ukonÄŤen. Chcete-li zjistit, zda je k dispozici vĂce informacĂ o tomto problĂ©mu, vyhledejte historii problĂ©mu v ovládacĂm panelu Centrum akcĂ.
ID procesu: 460
ÄŚas spuštÄ›nĂ: 01d2681718bf23c2
ÄŚas ukonÄŤenĂ: 28
Cesta k aplikaci: C:\Program Files (x86)\Webteh\BSplayerPro\bsplayer.exe
ID hlášenĂ: 94fe1d98-d40a-11e6-913a-7071bc7f8190
Error: (01/05/2017 03:03:55 PM) (Source: SideBySide) (EventID: 80) (User: )
Description: Generovánà kontextu aktivace pro c:\program files (x86)\Adobe\adobe creative cloud\Utils\Creative Cloud Uninstaller.exe se nezdařilo. Chyba v souboru manifestu nebo zásad na řádku .
Verze součásti poĹľadovaná aplikacĂ je v konfliktu s jinou verzĂ součásti, která je jiĹľ aktivnĂ.
Konfliktnà součásti:
Součást 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_41e855142bd5705d.manifest.
Součást 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.18837_none_fa3b1e3d17594757.manifest.
Error: (01/05/2017 02:22:20 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybujĂcĂ aplikace: plugin-container.exe, verze: 50.1.0.6186, ÄŤasovĂ© razĂtko: 0x584a057c
Název chybujĂcĂho modulu: mozglue.dll, verze: 50.1.0.6186, ÄŤasovĂ© razĂtko: 0x5849ff8b
Kód výjimky: 0x80000003
Posun chyby: 0x0000ec79
ID chybujĂcĂho procesu: 0x1264
ÄŚas spuštÄ›nĂ chybujĂcĂ aplikace: 0x01d266b880e0c695
Cesta k chybujĂcĂ aplikaci: C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
Cesta k chybujĂcĂmu modulu: C:\Program Files (x86)\Mozilla Firefox\mozglue.dll
ID zprávy: fbf4d552-d349-11e6-913a-7071bc7f8190
System errors:
=============
Error: (01/15/2017 07:27:00 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdaĹ™ila: InstalovánĂ následujĂcĂ aktualizace se nezdaĹ™ilo z dĹŻvodu chyby (0x80080005): Leden 2017, mÄ›sĂÄŤnĂ kumulativnĂ aktualizace zabezpeÄŤenĂ pro zvýšenĂ kvality pro Windows 7 pro procesory x64 (KB3212646).
Error: (01/15/2017 03:10:43 AM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {752073A1-23F2-4396-85F0-8FDB879ED0ED} se v daném časovém limitu neregistroval u služby DCOM.
Error: (12/30/2016 07:51:51 AM) (Source: bowser) (EventID: 8003) (User: )
Description: HlavnĂ prohledávaÄŤ pĹ™ijal oznámenĂ serveru od poÄŤĂtaÄŤe HOME,
který se považuje za hlavnà prohledávač domény pro přenos NetBT_Tcpip_{EC4A9C6A-B0C7-4A05-8878-7A3B3F3B4151}.
Hlavnà prohledávač bude ukončen nebo bude vyvolána volba.
Error: (12/18/2016 03:09:22 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: SluĹľba Windows Search neuspÄ›la pĹ™i spuštÄ›nĂ v dĹŻsledku následujĂcĂ chyby:
SluĹľba neodpovÄ›dÄ›la na Ĺ™ĂdicĂ nebo zahajovacĂ poĹľadavek dostateÄŤnÄ› vÄŤas.
Error: (12/18/2016 03:09:22 AM) (Source: Service Control Manager) (EventID: 7009) (User: )
Description: Při čekánà na připojenà služby Windows Search bylo dosaženo časového limitu (30000 ms).
Error: (12/16/2016 04:36:04 AM) (Source: BROWSER) (EventID: 8032) (User: )
Description: SluĹľbÄ› Browser se pĹ™i pĹ™enosu \Device\NetBT_Tcpip_{EC4A9C6A-B0C7-4A05-8878-7A3B3F3B4151} pĹ™Ăliš ÄŤasto nezdaĹ™ilo naÄŤĂst záloĹľnĂ seznam.
Záložnà prohledávač bude ukončen.
Error: (12/14/2016 01:58:56 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: SluĹľba Windows Search byla neÄŤekanÄ› ukonÄŤena. Stalo se to 1 krát. NásledujĂcĂ opravná akce bude spuštÄ›na za 30000 milisekund: Restartovat sluĹľbu.
Error: (12/14/2016 01:58:56 PM) (Source: Service Control Manager) (EventID: 7024) (User: )
Description: SluĹľba Windows Search ukonÄŤena s chybou %%-1073473535, specifickou pro sluĹľbu.
Error: (12/13/2016 11:35:27 AM) (Source: NetBT) (EventID: 4321) (User: )
Description: Název WORKGROUP :1d nelze zaregistrovat v rozhranàs IP adresou 192.168.0.103.
PoÄŤĂtaÄŤ s IP adresou 192.168.0.101 nepovolil zĂskánĂ názvu
tĂmto poÄŤĂtaÄŤem.
Error: (12/09/2016 01:38:10 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: SluĹľba Windows Search neuspÄ›la pĹ™i spuštÄ›nĂ v dĹŻsledku následujĂcĂ chyby:
SluĹľba neodpovÄ›dÄ›la na Ĺ™ĂdicĂ nebo zahajovacĂ poĹľadavek dostateÄŤnÄ› vÄŤas.
CodeIntegrity:
===================================
Date: 2015-03-11 00:31:06.886
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-03-11 00:31:06.885
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-03-11 00:31:06.882
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-03-11 00:31:06.878
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-03-11 00:31:06.876
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-03-11 00:31:06.874
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-03-09 01:24:02.956
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-03-09 01:24:02.954
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-03-09 01:24:02.951
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Windows\ELAMBKUP\klelam.sys because the set of per-page image hashes could not be found on the system.
Date: 2015-03-09 01:24:02.947
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\Program Files (x86)\Kaspersky Lab\Kaspersky Internet Security 15.0.0\KLELAMX64\klelam.sys because the set of per-page image hashes could not be found on the system.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i3 CPU M 350 @ 2.27GHz
Percentage of memory in use: 71%
Total physical RAM: 3767.05 MB
Available physical RAM: 1065.33 MB
Total Virtual: 7532.29 MB
Available Virtual: 3102.77 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:111.69 GB) (Free:55.17 GB) NTFS
Drive d: (Disk) (CDROM) (Total:4.31 GB) (Free:0 GB) CDFS
Drive e: (Místní disk) (Fixed) (Total:465.76 GB) (Free:257.36 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 111.8 GB) (Disk ID: 89FED6D2)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=111.7 GB) - (Type=07 NTFS)
========================================================
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: B5BDF682)
Partition 1: (Not Active) - (Size=465.8 GB) - (Type=07 NTFS)
==================== End of Addition.txt ============================
Re: Prosím o kontrolu logu
Na plose, tam kde mas umisteny FRST vytvor TXT soubor, ktery pojmenujes fixlist.txt a do nej vloz nasledujici text:( Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopíruj).
Start
CreateRestorePoint:
CloseProcesses:
HKU\S-1-5-21-786237660-2314719749-2023029921-1000\...\Run: [zASRockInstantBoot] => [X]
HKU\S-1-5-21-786237660-2314719749-2023029921-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-786237660-2314719749-2023029921-1000\...\Run: [Nexus] => [X]
HKU\S-1-5-21-786237660-2314719749-2023029921-1000\...\MountPoints2: {4e90b226-700e-11e4-a65f-7071bc7f8190} - G:\Startme.exe
ProxyServer: [S-1-5-21-786237660-2314719749-2023029921-1000] => 200.88.117.178:3128
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll [No File]
CHR HomePage: Default -> hxxp://www-searching.com/?pid=s&s=G2Pza ... prd=set_ch
CHR StartupUrls: Default -> "hxxp://www-searching.com/?pid=s&s=G2Pzamobl2140,e543a9eb-54ac-4dcc-9f9b-74fbc8cd9b9e,&vp=ch&prd=set_ch"
CHR DefaultSearchURL: Default -> hxxp://www-searching.com/search.aspx?si ... =set_ch&q={searchTerms}&s=G2Pzamobl2140,e543a9eb-54ac-4dcc-9f9b-74fbc8cd9b9e,
CHR DefaultSearchKeyword: Default -> www-searching.com
CHR DefaultSuggestURL: Default -> hxxp://api.searchpredict.com/api/?rqtyp ... 1&command={searchTerms}
S3 ALSysIO; \??\C:\Users\Irena\AppData\Local\Temp\ALSysIO64.sys [X]
S3 BTCFilterService; system32\DRIVERS\motfilt.sys [X]
S3 motccgp; system32\DRIVERS\motccgp.sys [X]
S3 motccgpfl; system32\DRIVERS\motccgpfl.sys [X]
S3 MotoSwitchService; system32\DRIVERS\motswch.sys [X]
S3 Motousbnet; system32\DRIVERS\Motousbnet.sys [X]
S3 motusbdevice; system32\DRIVERS\motusbdevice.sys [X]
Task: {653BFF55-A94F-4D6A-8EB4-DAF8EDD17FF1} - System32\Tasks\{4C71FE10-A067-5617-ACE2-70DE53101911} => Regsvr32.exe /s /n /i:"/rt" "C:\PROGRA~3\e40a79a2\bc77e9fc.dll" <==== ATTENTION
Task: {70AE5FC5-7A87-4CDE-8439-9603AB151358} - System32\Tasks\RunAsStdUser Task => C:\Users\Irena\AppData\Local\Temp\{6D480CF3-EAA2-41EC-884B-EA0C6DAF8D65}\nDock.exe <==== ATTENTION
Task: {AFEA4174-8504-47DE-9E49-D8F49FC432C1} - System32\Tasks\Oxy => C:\Users\Irena\AppData\Roaming\Oxy\Updater.exe <==== ATTENTION
C:\Users\Irena\AppData\Roaming\Oxy\Updater.exe
C:\Users\Irena\AppData\Local\Temp\{6D480CF3-EAA2-41EC-884B-EA0C6DAF8D65}\nDock.exe
Task: {DDE7BD21-B626-42DB-B1C7-4F285C302618} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {E53B2AA9-D1E2-43B9-8763-B289B783D617} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {DDE7BD21-B626-42DB-B1C7-4F285C302618} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {E53B2AA9-D1E2-43B9-8763-B289B783D617} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Hosts:
EmptyTemp:
End
Re: Prosím o kontrolu logu
Provedeno, tady je log.
Fix result of Farbar Recovery Scan Tool (x64) Version: 15-01-2017
Ran by Irena (17-01-2017 15:42:56) Run:1
Running from C:\Users\Irena\Desktop
Loaded Profiles: Irena (Available Profiles: Irena)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CreateRestorePoint:
CloseProcesses:
HKU\S-1-5-21-786237660-2314719749-2023029921-1000\...\Run: [zASRockInstantBoot] => [X]
HKU\S-1-5-21-786237660-2314719749-2023029921-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-786237660-2314719749-2023029921-1000\...\Run: [Nexus] => [X]
HKU\S-1-5-21-786237660-2314719749-2023029921-1000\...\MountPoints2: {4e90b226-700e-11e4-a65f-7071bc7f8190} - G:\Startme.exe
ProxyServer: [S-1-5-21-786237660-2314719749-2023029921-1000] => 200.88.117.178:3128
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll [No File]
CHR HomePage: Default -> hxxp://www-searching.com/?pid=s&s=G2Pza ... prd=set_ch
CHR StartupUrls: Default -> "hxxp://www-searching.com/?pid=s&s=G2Pzamobl2140,e543a9eb-54ac-4dcc-9f9b-74fbc8cd9b9e,&vp=ch&prd=set_ch"
CHR DefaultSearchURL: Default -> hxxp://www-searching.com/search.aspx?si ... =set_ch&q={searchTerms}&s=G2Pzamobl2140,e543a9eb-54ac-4dcc-9f9b-74fbc8cd9b9e,
CHR DefaultSearchKeyword: Default -> www-searching.com
CHR DefaultSuggestURL: Default -> hxxp://api.searchpredict.com/api/?rqtyp ... 1&command={searchTerms}
S3 ALSysIO; \??\C:\Users\Irena\AppData\Local\Temp\ALSysIO64.sys [X]
S3 BTCFilterService; system32\DRIVERS\motfilt.sys [X]
S3 motccgp; system32\DRIVERS\motccgp.sys [X]
S3 motccgpfl; system32\DRIVERS\motccgpfl.sys [X]
S3 MotoSwitchService; system32\DRIVERS\motswch.sys [X]
S3 Motousbnet; system32\DRIVERS\Motousbnet.sys [X]
S3 motusbdevice; system32\DRIVERS\motusbdevice.sys [X]
Task: {653BFF55-A94F-4D6A-8EB4-DAF8EDD17FF1} - System32\Tasks\{4C71FE10-A067-5617-ACE2-70DE53101911} => Regsvr32.exe /s /n /i:"/rt" "C:\PROGRA~3\e40a79a2\bc77e9fc.dll" <==== ATTENTION
Task: {70AE5FC5-7A87-4CDE-8439-9603AB151358} - System32\Tasks\RunAsStdUser Task => C:\Users\Irena\AppData\Local\Temp\{6D480CF3-EAA2-41EC-884B-EA0C6DAF8D65}\nDock.exe <==== ATTENTION
Task: {AFEA4174-8504-47DE-9E49-D8F49FC432C1} - System32\Tasks\Oxy => C:\Users\Irena\AppData\Roaming\Oxy\Updater.exe <==== ATTENTION
C:\Users\Irena\AppData\Roaming\Oxy\Updater.exe
C:\Users\Irena\AppData\Local\Temp\{6D480CF3-EAA2-41EC-884B-EA0C6DAF8D65}\nDock.exe
Task: {DDE7BD21-B626-42DB-B1C7-4F285C302618} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {E53B2AA9-D1E2-43B9-8763-B289B783D617} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {DDE7BD21-B626-42DB-B1C7-4F285C302618} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {E53B2AA9-D1E2-43B9-8763-B289B783D617} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Hosts:
EmptyTemp:
End
*****************
Restore point was successfully created.
Processes closed successfully.
HKU\S-1-5-21-786237660-2314719749-2023029921-1000\Software\Microsoft\Windows\CurrentVersion\Run\\zASRockInstantBoot => value removed successfully
HKU\S-1-5-21-786237660-2314719749-2023029921-1000\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeBridge => value removed successfully
HKU\S-1-5-21-786237660-2314719749-2023029921-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Nexus => value removed successfully
HKU\S-1-5-21-786237660-2314719749-2023029921-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4e90b226-700e-11e4-a65f-7071bc7f8190} => key removed successfully
HKCR\CLSID\{4e90b226-700e-11e4-a65f-7071bc7f8190} => key not found.
HKU\S-1-5-21-786237660-2314719749-2023029921-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer => value removed successfully
HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE => key removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE => key removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\adobe.com/AdobeExManDetect => key removed successfully
Chrome HomePage => removed successfully
Chrome StartupUrls => removed successfully
Chrome DefaultSearchURL => removed successfully
Chrome DefaultSearchKeyword => removed successfully
Chrome DefaultSuggestURL => removed successfully
HKLM\System\CurrentControlSet\Services\ALSysIO => key removed successfully
ALSysIO => service removed successfully
HKLM\System\CurrentControlSet\Services\BTCFilterService => key removed successfully
BTCFilterService => service removed successfully
HKLM\System\CurrentControlSet\Services\motccgp => key removed successfully
motccgp => service removed successfully
HKLM\System\CurrentControlSet\Services\motccgpfl => key removed successfully
motccgpfl => service removed successfully
HKLM\System\CurrentControlSet\Services\MotoSwitchService => key removed successfully
MotoSwitchService => service removed successfully
HKLM\System\CurrentControlSet\Services\Motousbnet => key removed successfully
Motousbnet => service removed successfully
HKLM\System\CurrentControlSet\Services\motusbdevice => key removed successfully
motusbdevice => service removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{653BFF55-A94F-4D6A-8EB4-DAF8EDD17FF1} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{653BFF55-A94F-4D6A-8EB4-DAF8EDD17FF1} => key removed successfully
C:\Windows\System32\Tasks\{4C71FE10-A067-5617-ACE2-70DE53101911} => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{4C71FE10-A067-5617-ACE2-70DE53101911} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{70AE5FC5-7A87-4CDE-8439-9603AB151358} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{70AE5FC5-7A87-4CDE-8439-9603AB151358} => key removed successfully
C:\Windows\System32\Tasks\RunAsStdUser Task => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\RunAsStdUser Task => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AFEA4174-8504-47DE-9E49-D8F49FC432C1} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AFEA4174-8504-47DE-9E49-D8F49FC432C1} => key removed successfully
C:\Windows\System32\Tasks\Oxy => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Oxy => key removed successfully
"C:\Users\Irena\AppData\Roaming\Oxy\Updater.exe" => not found.
"C:\Users\Irena\AppData\Local\Temp\{6D480CF3-EAA2-41EC-884B-EA0C6DAF8D65}\nDock.exe" => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DDE7BD21-B626-42DB-B1C7-4F285C302618} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DDE7BD21-B626-42DB-B1C7-4F285C302618} => key removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E53B2AA9-D1E2-43B9-8763-B289B783D617} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E53B2AA9-D1E2-43B9-8763-B289B783D617} => key removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DDE7BD21-B626-42DB-B1C7-4F285C302618} => key not found.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E53B2AA9-D1E2-43B9-8763-B289B783D617} => key not found.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore => key not found.
Could not move "C:\Windows\System32\Drivers\etc\hosts" => Scheduled to move on reboot.
=========== EmptyTemp: ==========
BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 9264628 B
Java, Flash, Steam htmlcache => 1075 B
Windows/system/drivers => -88891 B
Edge => 0 B
Chrome => 501072994 B
Firefox => 430228536 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 66228 B
Public => 0 B
ProgramData => 0 B
systemprofile => 77560703 B
systemprofile32 => 82807 B
LocalService => 132244 B
NetworkService => 66228 B
Irena => 37326795 B
RecycleBin => 36791731 B
EmptyTemp: => 1 GB temporary data Removed.
================================
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 17-01-2017 15:48:58)
C:\Windows\System32\Drivers\etc\hosts => Is moved successfully
Could not restore Hosts.
==== End of Fixlog 15:48:58 ====
Fix result of Farbar Recovery Scan Tool (x64) Version: 15-01-2017
Ran by Irena (17-01-2017 15:42:56) Run:1
Running from C:\Users\Irena\Desktop
Loaded Profiles: Irena (Available Profiles: Irena)
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CreateRestorePoint:
CloseProcesses:
HKU\S-1-5-21-786237660-2314719749-2023029921-1000\...\Run: [zASRockInstantBoot] => [X]
HKU\S-1-5-21-786237660-2314719749-2023029921-1000\...\Run: [AdobeBridge] => [X]
HKU\S-1-5-21-786237660-2314719749-2023029921-1000\...\Run: [Nexus] => [X]
HKU\S-1-5-21-786237660-2314719749-2023029921-1000\...\MountPoints2: {4e90b226-700e-11e4-a65f-7071bc7f8190} - G:\Startme.exe
ProxyServer: [S-1-5-21-786237660-2314719749-2023029921-1000] => 200.88.117.178:3128
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: adobe.com/AdobeExManDetect -> C:\Program Files (x86)\Adobe\Adobe Extension Manager CS6\npAdobeExManDetectX86.dll [No File]
CHR HomePage: Default -> hxxp://www-searching.com/?pid=s&s=G2Pza ... prd=set_ch
CHR StartupUrls: Default -> "hxxp://www-searching.com/?pid=s&s=G2Pzamobl2140,e543a9eb-54ac-4dcc-9f9b-74fbc8cd9b9e,&vp=ch&prd=set_ch"
CHR DefaultSearchURL: Default -> hxxp://www-searching.com/search.aspx?si ... =set_ch&q={searchTerms}&s=G2Pzamobl2140,e543a9eb-54ac-4dcc-9f9b-74fbc8cd9b9e,
CHR DefaultSearchKeyword: Default -> www-searching.com
CHR DefaultSuggestURL: Default -> hxxp://api.searchpredict.com/api/?rqtyp ... 1&command={searchTerms}
S3 ALSysIO; \??\C:\Users\Irena\AppData\Local\Temp\ALSysIO64.sys [X]
S3 BTCFilterService; system32\DRIVERS\motfilt.sys [X]
S3 motccgp; system32\DRIVERS\motccgp.sys [X]
S3 motccgpfl; system32\DRIVERS\motccgpfl.sys [X]
S3 MotoSwitchService; system32\DRIVERS\motswch.sys [X]
S3 Motousbnet; system32\DRIVERS\Motousbnet.sys [X]
S3 motusbdevice; system32\DRIVERS\motusbdevice.sys [X]
Task: {653BFF55-A94F-4D6A-8EB4-DAF8EDD17FF1} - System32\Tasks\{4C71FE10-A067-5617-ACE2-70DE53101911} => Regsvr32.exe /s /n /i:"/rt" "C:\PROGRA~3\e40a79a2\bc77e9fc.dll" <==== ATTENTION
Task: {70AE5FC5-7A87-4CDE-8439-9603AB151358} - System32\Tasks\RunAsStdUser Task => C:\Users\Irena\AppData\Local\Temp\{6D480CF3-EAA2-41EC-884B-EA0C6DAF8D65}\nDock.exe <==== ATTENTION
Task: {AFEA4174-8504-47DE-9E49-D8F49FC432C1} - System32\Tasks\Oxy => C:\Users\Irena\AppData\Roaming\Oxy\Updater.exe <==== ATTENTION
C:\Users\Irena\AppData\Roaming\Oxy\Updater.exe
C:\Users\Irena\AppData\Local\Temp\{6D480CF3-EAA2-41EC-884B-EA0C6DAF8D65}\nDock.exe
Task: {DDE7BD21-B626-42DB-B1C7-4F285C302618} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {E53B2AA9-D1E2-43B9-8763-B289B783D617} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {DDE7BD21-B626-42DB-B1C7-4F285C302618} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Task: {E53B2AA9-D1E2-43B9-8763-B289B783D617} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-30] (Google Inc.)
Hosts:
EmptyTemp:
End
*****************
Restore point was successfully created.
Processes closed successfully.
HKU\S-1-5-21-786237660-2314719749-2023029921-1000\Software\Microsoft\Windows\CurrentVersion\Run\\zASRockInstantBoot => value removed successfully
HKU\S-1-5-21-786237660-2314719749-2023029921-1000\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeBridge => value removed successfully
HKU\S-1-5-21-786237660-2314719749-2023029921-1000\Software\Microsoft\Windows\CurrentVersion\Run\\Nexus => value removed successfully
HKU\S-1-5-21-786237660-2314719749-2023029921-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4e90b226-700e-11e4-a65f-7071bc7f8190} => key removed successfully
HKCR\CLSID\{4e90b226-700e-11e4-a65f-7071bc7f8190} => key not found.
HKU\S-1-5-21-786237660-2314719749-2023029921-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings\\ProxyServer => value removed successfully
HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE => key removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE => key removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\adobe.com/AdobeExManDetect => key removed successfully
Chrome HomePage => removed successfully
Chrome StartupUrls => removed successfully
Chrome DefaultSearchURL => removed successfully
Chrome DefaultSearchKeyword => removed successfully
Chrome DefaultSuggestURL => removed successfully
HKLM\System\CurrentControlSet\Services\ALSysIO => key removed successfully
ALSysIO => service removed successfully
HKLM\System\CurrentControlSet\Services\BTCFilterService => key removed successfully
BTCFilterService => service removed successfully
HKLM\System\CurrentControlSet\Services\motccgp => key removed successfully
motccgp => service removed successfully
HKLM\System\CurrentControlSet\Services\motccgpfl => key removed successfully
motccgpfl => service removed successfully
HKLM\System\CurrentControlSet\Services\MotoSwitchService => key removed successfully
MotoSwitchService => service removed successfully
HKLM\System\CurrentControlSet\Services\Motousbnet => key removed successfully
Motousbnet => service removed successfully
HKLM\System\CurrentControlSet\Services\motusbdevice => key removed successfully
motusbdevice => service removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{653BFF55-A94F-4D6A-8EB4-DAF8EDD17FF1} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{653BFF55-A94F-4D6A-8EB4-DAF8EDD17FF1} => key removed successfully
C:\Windows\System32\Tasks\{4C71FE10-A067-5617-ACE2-70DE53101911} => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{4C71FE10-A067-5617-ACE2-70DE53101911} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{70AE5FC5-7A87-4CDE-8439-9603AB151358} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{70AE5FC5-7A87-4CDE-8439-9603AB151358} => key removed successfully
C:\Windows\System32\Tasks\RunAsStdUser Task => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\RunAsStdUser Task => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AFEA4174-8504-47DE-9E49-D8F49FC432C1} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AFEA4174-8504-47DE-9E49-D8F49FC432C1} => key removed successfully
C:\Windows\System32\Tasks\Oxy => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Oxy => key removed successfully
"C:\Users\Irena\AppData\Roaming\Oxy\Updater.exe" => not found.
"C:\Users\Irena\AppData\Local\Temp\{6D480CF3-EAA2-41EC-884B-EA0C6DAF8D65}\nDock.exe" => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{DDE7BD21-B626-42DB-B1C7-4F285C302618} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DDE7BD21-B626-42DB-B1C7-4F285C302618} => key removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{E53B2AA9-D1E2-43B9-8763-B289B783D617} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E53B2AA9-D1E2-43B9-8763-B289B783D617} => key removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{DDE7BD21-B626-42DB-B1C7-4F285C302618} => key not found.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA => key not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E53B2AA9-D1E2-43B9-8763-B289B783D617} => key not found.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore => key not found.
Could not move "C:\Windows\System32\Drivers\etc\hosts" => Scheduled to move on reboot.
=========== EmptyTemp: ==========
BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 9264628 B
Java, Flash, Steam htmlcache => 1075 B
Windows/system/drivers => -88891 B
Edge => 0 B
Chrome => 501072994 B
Firefox => 430228536 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 66228 B
Public => 0 B
ProgramData => 0 B
systemprofile => 77560703 B
systemprofile32 => 82807 B
LocalService => 132244 B
NetworkService => 66228 B
Irena => 37326795 B
RecycleBin => 36791731 B
EmptyTemp: => 1 GB temporary data Removed.
================================
Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 17-01-2017 15:48:58)
C:\Windows\System32\Drivers\etc\hosts => Is moved successfully
Could not restore Hosts.
==== End of Fixlog 15:48:58 ====
Re: Prosím o kontrolu logu
Spusť prosim tuto utilitu:Stáhni AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Ulož na plochu
Ukonči všechny programy
Klikni nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vlož.
potom jeste pro jistotu stahni MBAM: http://forum.viry.cz/viewtopic.php?f=29&t=144868-Nainstaluj,dej úplný sken
NIC NEMAZ
-MBAM má občas falešné detekce,proto budeme mazat až po kontrole logu.
-Log zkopíruj sem.
Re: Prosím o kontrolu logu
AdwCleaner log
# AdwCleaner v6.042 - Log vytvořen 18/01/2017 v 08:28:59
# Aktualizováno dne 06/01/2017 z Malwarebytes
# Databáze : 2017-01-17.2 [Server]
# Operační systém : Windows 7 Professional Service Pack 1 (X64)
# Uživatelské jméno : Irena - IRENA-PC
# Spuštěno z : C:\Users\Irena\Desktop\adwcleaner_6.042.exe
# Mod: Čištění
# Podpora : https://www.malwarebytes.com/support
***** [ Služby ] *****
***** [ Složky ] *****
[-] Složka smazána: C:\Program Files (x86)\MTV20160128
[-] Složka smazána: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyTools
[-] Složka smazána: C:\Program Files (x86)\MyTools
[-] Složka smazána: C:\ProgramData\e40a79a2
[-] Složka smazána: C:\Users\Irena\AppData\Roaming\Oxy
[-] Složka smazána: C:\Users\Irena\AppData\Roaming\Tencent
[-] Složka smazána: C:\Program Files\DriverTuner
[-] Složka smazána: C:\Program Files\Common Files\Tencent
[-] Složka smazána: C:\Users\Irena\AppData\Local\VirtualStore\Program Files (x86)\Tencent
[-] Složka smazána: C:\ProgramData\Allmyapps
[-] Složka smazána: C:\ProgramData\TXQMPC
[-] Složka smazána: C:\ProgramData\Tencent
[#] Složka smazána po restartu: C:\ProgramData\Application Data\Allmyapps
[#] Složka smazána po restartu: C:\ProgramData\Application Data\TXQMPC
[#] Složka smazána po restartu: C:\ProgramData\Application Data\Tencent
[-] Složka smazána: C:\Program Files (x86)\RegClean Pro
[-] Složka smazána: C:\Program Files (x86)\Tencent
[-] Složka smazána: C:\Program Files (x86)\Common Files\Tencent
[-] Složka smazána: C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\Solvusoft
[-] Složka smazána: C:\Users\Irena\AppData\Roaming\Mozilla\Firefox\Profiles\CCACCBF1-7AB4-4CF5-B32D-668C686A539F
[-] Složka smazána: C:\Users\Irena\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1
***** [ Soubory ] *****
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Zástupci ] *****
***** [ Naplánované úlohy ] *****
***** [ Registry ] *****
[-] Klíč smazán: HKLM\SOFTWARE\MyTools
[#] Klíč smazán po restartu: HKLM\SOFTWARE\MyTools_is1
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762}
[-] Klíč smazán: HKU\S-1-5-21-786237660-2314719749-2023029921-1000\Software\Alexa Internet
[-] Klíč smazán: HKU\S-1-5-21-786237660-2314719749-2023029921-1000\Software\Conduit
[-] Klíč smazán: HKU\S-1-5-21-786237660-2314719749-2023029921-1000\Software\distromatic
[-] Klíč smazán: HKU\S-1-5-21-786237660-2314719749-2023029921-1000\Software\DriverTuner
[-] Klíč smazán: HKU\S-1-5-21-786237660-2314719749-2023029921-1000\Software\DriverTuner_Init
[-] Klíč smazán: HKU\S-1-5-21-786237660-2314719749-2023029921-1000\Software\Escolade
[#] Klíč smazán po restartu: HKCU\Software\Alexa Internet
[#] Klíč smazán po restartu: HKCU\Software\Conduit
[#] Klíč smazán po restartu: HKCU\Software\distromatic
[#] Klíč smazán po restartu: HKCU\Software\DriverTuner
[#] Klíč smazán po restartu: HKCU\Software\DriverTuner_Init
[#] Klíč smazán po restartu: HKCU\Software\Escolade
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\11598763487076930564
[#] Klíč smazán po restartu: [x64] HKCU\Software\Alexa Internet
[#] Klíč smazán po restartu: [x64] HKCU\Software\Conduit
[#] Klíč smazán po restartu: [x64] HKCU\Software\distromatic
[#] Klíč smazán po restartu: [x64] HKCU\Software\DriverTuner
[#] Klíč smazán po restartu: [x64] HKCU\Software\DriverTuner_Init
[#] Klíč smazán po restartu: [x64] HKCU\Software\Escolade
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
***** [ Prohlížeče ] *****
[-] Firefox předvolby vyčištěny: "browser.search.hiddenOneOffs" - "MyStartab Engine,Seznam,DuckDuckGo,Heuréka,HMA Proxy,Mapy.cz,Search Module,Wikipedie (cs),MyStartab Engine Two"
[-] [C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Smazáno: default-search.net
[-] [C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Smazáno: bechiro s.l.
[-] [C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Smazáno: slunecnice.cz
[-] [C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Smazáno: search.conduit.com
[-] [C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Smazáno: babylon.com
[-] [C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Smazáno: mystart.incredibar.com/mb201
[-] [C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Smazáno: ask.com
[-] [C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Smazáno: www-searching.com
*************************
:: "Tracing" klíče smazány
:: Winsock nastavení vyčištěno
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [5126 Bajty] - [18/01/2017 08:28:59]
C:\AdwCleaner\AdwCleaner[S0].txt - [5155 Bajty] - [18/01/2017 08:27:51]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [5272 Bajty] ##########
# AdwCleaner v6.042 - Log vytvořen 18/01/2017 v 08:28:59
# Aktualizováno dne 06/01/2017 z Malwarebytes
# Databáze : 2017-01-17.2 [Server]
# Operační systém : Windows 7 Professional Service Pack 1 (X64)
# Uživatelské jméno : Irena - IRENA-PC
# Spuštěno z : C:\Users\Irena\Desktop\adwcleaner_6.042.exe
# Mod: Čištění
# Podpora : https://www.malwarebytes.com/support
***** [ Služby ] *****
***** [ Složky ] *****
[-] Složka smazána: C:\Program Files (x86)\MTV20160128
[-] Složka smazána: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\MyTools
[-] Složka smazána: C:\Program Files (x86)\MyTools
[-] Složka smazána: C:\ProgramData\e40a79a2
[-] Složka smazána: C:\Users\Irena\AppData\Roaming\Oxy
[-] Složka smazána: C:\Users\Irena\AppData\Roaming\Tencent
[-] Složka smazána: C:\Program Files\DriverTuner
[-] Složka smazána: C:\Program Files\Common Files\Tencent
[-] Složka smazána: C:\Users\Irena\AppData\Local\VirtualStore\Program Files (x86)\Tencent
[-] Složka smazána: C:\ProgramData\Allmyapps
[-] Složka smazána: C:\ProgramData\TXQMPC
[-] Složka smazána: C:\ProgramData\Tencent
[#] Složka smazána po restartu: C:\ProgramData\Application Data\Allmyapps
[#] Složka smazána po restartu: C:\ProgramData\Application Data\TXQMPC
[#] Složka smazána po restartu: C:\ProgramData\Application Data\Tencent
[-] Složka smazána: C:\Program Files (x86)\RegClean Pro
[-] Složka smazána: C:\Program Files (x86)\Tencent
[-] Složka smazána: C:\Program Files (x86)\Common Files\Tencent
[-] Složka smazána: C:\Windows\SysWOW64\config\systemprofile\AppData\Roaming\Solvusoft
[-] Složka smazána: C:\Users\Irena\AppData\Roaming\Mozilla\Firefox\Profiles\CCACCBF1-7AB4-4CF5-B32D-668C686A539F
[-] Složka smazána: C:\Users\Irena\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1
***** [ Soubory ] *****
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Zástupci ] *****
***** [ Naplánované úlohy ] *****
***** [ Registry ] *****
[-] Klíč smazán: HKLM\SOFTWARE\MyTools
[#] Klíč smazán po restartu: HKLM\SOFTWARE\MyTools_is1
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{459DD0F7-0D55-D3DC-67BC-E6BE37E9D762}
[-] Klíč smazán: HKU\S-1-5-21-786237660-2314719749-2023029921-1000\Software\Alexa Internet
[-] Klíč smazán: HKU\S-1-5-21-786237660-2314719749-2023029921-1000\Software\Conduit
[-] Klíč smazán: HKU\S-1-5-21-786237660-2314719749-2023029921-1000\Software\distromatic
[-] Klíč smazán: HKU\S-1-5-21-786237660-2314719749-2023029921-1000\Software\DriverTuner
[-] Klíč smazán: HKU\S-1-5-21-786237660-2314719749-2023029921-1000\Software\DriverTuner_Init
[-] Klíč smazán: HKU\S-1-5-21-786237660-2314719749-2023029921-1000\Software\Escolade
[#] Klíč smazán po restartu: HKCU\Software\Alexa Internet
[#] Klíč smazán po restartu: HKCU\Software\Conduit
[#] Klíč smazán po restartu: HKCU\Software\distromatic
[#] Klíč smazán po restartu: HKCU\Software\DriverTuner
[#] Klíč smazán po restartu: HKCU\Software\DriverTuner_Init
[#] Klíč smazán po restartu: HKCU\Software\Escolade
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\11598763487076930564
[#] Klíč smazán po restartu: [x64] HKCU\Software\Alexa Internet
[#] Klíč smazán po restartu: [x64] HKCU\Software\Conduit
[#] Klíč smazán po restartu: [x64] HKCU\Software\distromatic
[#] Klíč smazán po restartu: [x64] HKCU\Software\DriverTuner
[#] Klíč smazán po restartu: [x64] HKCU\Software\DriverTuner_Init
[#] Klíč smazán po restartu: [x64] HKCU\Software\Escolade
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
***** [ Prohlížeče ] *****
[-] Firefox předvolby vyčištěny: "browser.search.hiddenOneOffs" - "MyStartab Engine,Seznam,DuckDuckGo,Heuréka,HMA Proxy,Mapy.cz,Search Module,Wikipedie (cs),MyStartab Engine Two"
[-] [C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Smazáno: default-search.net
[-] [C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Smazáno: bechiro s.l.
[-] [C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Smazáno: slunecnice.cz
[-] [C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Smazáno: search.conduit.com
[-] [C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Smazáno: babylon.com
[-] [C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Smazáno: mystart.incredibar.com/mb201
[-] [C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Smazáno: ask.com
[-] [C:\Users\Irena\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Smazáno: www-searching.com
*************************
:: "Tracing" klíče smazány
:: Winsock nastavení vyčištěno
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [5126 Bajty] - [18/01/2017 08:28:59]
C:\AdwCleaner\AdwCleaner[S0].txt - [5155 Bajty] - [18/01/2017 08:27:51]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [5272 Bajty] ##########
Re: Prosím o kontrolu logu
A ještě MBAM.
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 18.1.2017
Čas skenování: 8:34
Protokol: MBAM.txt
Správce: Ano
Verze: 2.2.1.1043
Databáze malwaru: v2017.01.18.03
Databáze rootkitů: v2016.11.20.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto
OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: Irena
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 306394
Uplynulý čas: 8 min, 46 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 12
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\07B51C13962E8BF49BAFEA042FB2D4A6, , [7fdccbb24761a88e8ec75523cd3355ab],
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\186D389D270858A4C8FADCDAC6035E94, , [85d64b32456345f1c095ed8b7a867f81],
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\2ED7E00B721712A4FA8BEAC0C097B2A6, , [c19accb14a5e7abcf75e1167aa56837d],
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\31036AD7276C7154FB17E0492323197E, , [6fec522b53551a1c0e474533798751af],
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\53A68272C76F4494DA9263A8898F3BC4, , [401b611c7335a393470e0573936dd32d],
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\5F2625D37BFC9EE49A9870C9134575A1, , [61fa81fcc7e11b1bed687305926ecf31],
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\6526DDC3E4053B84CA3349CF9A29E406, , [104bdba2e4c4d16569ecf682da2636ca],
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\8E64601C02B9B8A49B2094D918AAB059, , [fa61bdc0654362d42a2bf78110f018e8],
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\A139670AC5F063A409103EC6C72644F6, , [401b2a53b8f002341c39b5c3ce324bb5],
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\A8107D1477279A04C9C3396464CBF7C0, , [72e9413cd8d0b581b99c324632ce59a7],
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\AF70C113ECEA42B46B60F3B0F849D237, , [4f0cc5b80c9ce25492c36b0d946c56aa],
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\FDA820609ED99FE429BB97DBAF654779, , [ff5c225bd1d78caa6aebf97f6f9144bc],
Hodnoty registru: 12
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\07B51C13962E8BF49BAFEA042FB2D4A6|00000000000000000000000000000000, C?\Program Files (x86)\Solvusoft\Tray\SuiteClient.dll, , [7fdccbb24761a88e8ec75523cd3355ab]
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\186D389D270858A4C8FADCDAC6035E94|00000000000000000000000000000000, C?\Program Files (x86)\Solvusoft\SuiteService.exe, , [85d64b32456345f1c095ed8b7a867f81]
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\2ED7E00B721712A4FA8BEAC0C097B2A6|00000000000000000000000000000000, C:\ProgramData\Solvusoft\Programs Bar\, , [c19accb14a5e7abcf75e1167aa56837d]
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\31036AD7276C7154FB17E0492323197E|00000000000000000000000000000000, C?\Program Files (x86)\Solvusoft\MachineId.exe, , [6fec522b53551a1c0e474533798751af]
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\53A68272C76F4494DA9263A8898F3BC4|00000000000000000000000000000000, C?\Program Files (x86)\Solvusoft\SolvusoftLauncher.exe, , [401b611c7335a393470e0573936dd32d]
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\5F2625D37BFC9EE49A9870C9134575A1|00000000000000000000000000000000, C?\Program Files (x86)\Solvusoft\sfhtml.dll, , [61fa81fcc7e11b1bed687305926ecf31]
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\6526DDC3E4053B84CA3349CF9A29E406|00000000000000000000000000000000, C?\Program Files (x86)\Solvusoft\LogFilesCollector.exe, , [104bdba2e4c4d16569ecf682da2636ca]
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\8E64601C02B9B8A49B2094D918AAB059|00000000000000000000000000000000, C?\Program Files (x86)\Solvusoft\Tray\SolvusoftTray.exe, , [fa61bdc0654362d42a2bf78110f018e8]
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\A139670AC5F063A409103EC6C72644F6|00000000000000000000000000000000, C?\Program Files (x86)\Solvusoft\Tray\MsgSys.exe, , [401b2a53b8f002341c39b5c3ce324bb5]
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\A8107D1477279A04C9C3396464CBF7C0|00000000000000000000000000000000, C?\Program Files (x86)\Solvusoft\ShortcutLauncher.exe, , [72e9413cd8d0b581b99c324632ce59a7]
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\AF70C113ECEA42B46B60F3B0F849D237|00000000000000000000000000000000, C?\Program Files (x86)\Solvusoft\Tray\sfhtml.dll, , [4f0cc5b80c9ce25492c36b0d946c56aa]
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\FDA820609ED99FE429BB97DBAF654779|00000000000000000000000000000000, C?\Program Files (x86)\Solvusoft\MachineIdGateway.dll, , [ff5c225bd1d78caa6aebf97f6f9144bc]
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 0
(Nenalezeny žádné škodlivé položky)
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
Malwarebytes Anti-Malware
www.malwarebytes.org
Datum skenování: 18.1.2017
Čas skenování: 8:34
Protokol: MBAM.txt
Správce: Ano
Verze: 2.2.1.1043
Databáze malwaru: v2017.01.18.03
Databáze rootkitů: v2016.11.20.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Ochrana programu: Vypnuto
OS: Windows 7 Service Pack 1
CPU: x64
Souborový systém: NTFS
Uživatel: Irena
Typ skenu: Sken hrozeb
Výsledek: Dokončeno
Prohledaných objektů: 306394
Uplynulý čas: 8 min, 46 sek
Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristika: Zapnuto
PUP: Zapnuto
PUM: Zapnuto
Procesy: 0
(Nenalezeny žádné škodlivé položky)
Moduly: 0
(Nenalezeny žádné škodlivé položky)
Klíče registru: 12
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\07B51C13962E8BF49BAFEA042FB2D4A6, , [7fdccbb24761a88e8ec75523cd3355ab],
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\186D389D270858A4C8FADCDAC6035E94, , [85d64b32456345f1c095ed8b7a867f81],
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\2ED7E00B721712A4FA8BEAC0C097B2A6, , [c19accb14a5e7abcf75e1167aa56837d],
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\31036AD7276C7154FB17E0492323197E, , [6fec522b53551a1c0e474533798751af],
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\53A68272C76F4494DA9263A8898F3BC4, , [401b611c7335a393470e0573936dd32d],
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\5F2625D37BFC9EE49A9870C9134575A1, , [61fa81fcc7e11b1bed687305926ecf31],
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\6526DDC3E4053B84CA3349CF9A29E406, , [104bdba2e4c4d16569ecf682da2636ca],
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\8E64601C02B9B8A49B2094D918AAB059, , [fa61bdc0654362d42a2bf78110f018e8],
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\A139670AC5F063A409103EC6C72644F6, , [401b2a53b8f002341c39b5c3ce324bb5],
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\A8107D1477279A04C9C3396464CBF7C0, , [72e9413cd8d0b581b99c324632ce59a7],
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\AF70C113ECEA42B46B60F3B0F849D237, , [4f0cc5b80c9ce25492c36b0d946c56aa],
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\FDA820609ED99FE429BB97DBAF654779, , [ff5c225bd1d78caa6aebf97f6f9144bc],
Hodnoty registru: 12
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\07B51C13962E8BF49BAFEA042FB2D4A6|00000000000000000000000000000000, C?\Program Files (x86)\Solvusoft\Tray\SuiteClient.dll, , [7fdccbb24761a88e8ec75523cd3355ab]
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\186D389D270858A4C8FADCDAC6035E94|00000000000000000000000000000000, C?\Program Files (x86)\Solvusoft\SuiteService.exe, , [85d64b32456345f1c095ed8b7a867f81]
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\2ED7E00B721712A4FA8BEAC0C097B2A6|00000000000000000000000000000000, C:\ProgramData\Solvusoft\Programs Bar\, , [c19accb14a5e7abcf75e1167aa56837d]
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\31036AD7276C7154FB17E0492323197E|00000000000000000000000000000000, C?\Program Files (x86)\Solvusoft\MachineId.exe, , [6fec522b53551a1c0e474533798751af]
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\53A68272C76F4494DA9263A8898F3BC4|00000000000000000000000000000000, C?\Program Files (x86)\Solvusoft\SolvusoftLauncher.exe, , [401b611c7335a393470e0573936dd32d]
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\5F2625D37BFC9EE49A9870C9134575A1|00000000000000000000000000000000, C?\Program Files (x86)\Solvusoft\sfhtml.dll, , [61fa81fcc7e11b1bed687305926ecf31]
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\6526DDC3E4053B84CA3349CF9A29E406|00000000000000000000000000000000, C?\Program Files (x86)\Solvusoft\LogFilesCollector.exe, , [104bdba2e4c4d16569ecf682da2636ca]
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\8E64601C02B9B8A49B2094D918AAB059|00000000000000000000000000000000, C?\Program Files (x86)\Solvusoft\Tray\SolvusoftTray.exe, , [fa61bdc0654362d42a2bf78110f018e8]
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\A139670AC5F063A409103EC6C72644F6|00000000000000000000000000000000, C?\Program Files (x86)\Solvusoft\Tray\MsgSys.exe, , [401b2a53b8f002341c39b5c3ce324bb5]
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\A8107D1477279A04C9C3396464CBF7C0|00000000000000000000000000000000, C?\Program Files (x86)\Solvusoft\ShortcutLauncher.exe, , [72e9413cd8d0b581b99c324632ce59a7]
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\AF70C113ECEA42B46B60F3B0F849D237|00000000000000000000000000000000, C?\Program Files (x86)\Solvusoft\Tray\sfhtml.dll, , [4f0cc5b80c9ce25492c36b0d946c56aa]
PUP.Optional.Solvusoft, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INSTALLER\USERDATA\S-1-5-18\COMPONENTS\FDA820609ED99FE429BB97DBAF654779|00000000000000000000000000000000, C?\Program Files (x86)\Solvusoft\MachineIdGateway.dll, , [ff5c225bd1d78caa6aebf97f6f9144bc]
Data registru: 0
(Nenalezeny žádné škodlivé položky)
Složky: 0
(Nenalezeny žádné škodlivé položky)
Soubory: 0
(Nenalezeny žádné škodlivé položky)
Fyzické sektory: 0
(Nenalezeny žádné škodlivé položky)
(end)
Re: Prosím o kontrolu logu
muzes znovu spustit MBAM ->scan a dat vse smazat.Re: Prosím o kontrolu logu
Smazáno . PC zatím šlape o dost líp, tak snad to bude v poho.
Pokud je to vše, tak moc děkuji za pomoc
Pokud je to vše, tak moc děkuji za pomoc
Re: Prosím o kontrolu logu
Asi to bude vsechno.
nemas zac.
Poprosim kolegy, pokud je to vse aby to uzamkli.
nemas zac.
Poprosim kolegy, pokud je to vse aby to uzamkli.
-
cernohous13
- VIP in memoriam
- Příspěvky: 8721
- Registrován: 09 pro 2006 06:19
- Bydliště: Jablonec nad Nisou
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
No problemo - při potížích si chenny založí nové téma 
Doporučení:
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
V průběhu léčení prováděj nové instalace a odinstalace jen na můj pokyn.
Důkladně prostuduj a proveď celou operaci podle mé odpovědi.
V případě nejasností se zeptej - vysvětlím
-------------------------------------------------------------------------------------------------
> Podpora fóra <
Přispějete na provoz fóra?