Ahoj.
Prosím o kontrolu logu.
Logfile of random's system information tool 1.10 (written by random/random)
Run by Slamak at 2017-03-07 19:42:26
Microsoft Windows 10 Home
System drive C: has 369 GB (40%) free of 934 GB
Total RAM: 3909 MB (42% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:42:31, on 7. 3. 2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0000)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
C:\Program Files (x86)\eM Client\MailClient.exe
C:\Windows\SysWOW64\C2MP\TrayMenu.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
C:\Program Files (x86)\AVG Web TuneUp\vprot.exe
C:\Program Files (x86)\eM Client\MailClient.exe
C:\Program Files (x86)\PROFIT\PROFIT.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
C:\Program Files\trend micro\Slamak.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = https://www.seznam.cz/?clid=22668
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.seznam.cz/?sourceid=quick ... earchTerms}
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.seznam.cz/?clid=22668
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll
O4 - HKLM\..\Run: [RadioController] "C:\Program Files (x86)\RadioController\RfBtnHelper.exe" Start_Run
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvLaunch.exe" /gui
O4 - HKLM\..\Run: [ControlCenter4] C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe /autorun
O4 - HKLM\..\Run: [BrStsMon00] C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe /AUTORUN
O4 - HKLM\..\Run: [Family Tree Builder Update] C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [AvgUi] "C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe" /lps=fmw
O4 - HKLM\..\Run: [vProt] "C:\Program Files (x86)\AVG Web TuneUp\vprot.exe"
O4 - HKCU\..\Run: [eM Client] "C:\Program Files (x86)\eM Client\MailClient.exe" /startup
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
O4 - HKCU\..\Run: [ProgLauncher] C:\Program Files (x86)\ProgDVB\ProgLauncher.exe
O4 - HKCU\..\Run: [GEN] "C:\Users\Slamak\AppData\Local\Programs\GEN\GEN.exe"
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Slamak\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\amd64] C:\WINDOWS\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Slamak\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\amd64"
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O4 - Global Startup: Acer Backup Manager Tray.lnk = C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
O4 - Global Startup: TrayMenu.lnk = C:\Windows\SysWOW64\C2MP\TrayMenu.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - (no file)
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: aswbIDSAgent - AVAST Software s.r.o. - C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Avast Firewall Service (avast! Firewall) - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: AVG Service (avgsvc) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Device Fast-lane Service (DeviceFastLaneService) - Acer Incorporated - C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
O23 - Service: Elan Service (ETDService) - ELAN Microelectronics Corp. - C:\Program Files\Elantech\ETDService.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Freemake Improver - Freemake - C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: NTI IScheduleSvc - NTI Corporation - C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
O23 - Service: Protexis Licensing V2 x64 (PSI_SVC_2_x64) - arvato digital services llc - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: Dritek RF Button Command Service (RfButtonDriverService) - Dritek System INC. - C:\Windows\RfBtnSvc64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: AVG PC TuneUp Service (TuneUp.UtilitiesSvc) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: vToolbarUpdater40.3.7 - Unknown owner - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.7\ToolbarUpdater.exe
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: WtuSystemSupport - Unknown owner - C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe
--
End of file - 11708 bytes
======Listing Processes======
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k NetworkService
"C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe"
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
dashost.exe {8dbb4ea9-3be2-4451-829dc1ca259c4608}
C:\WINDOWS\System32\spoolsv.exe
"C:\Program Files\Elantech\ETDService.exe"
C:\WINDOWS\System32\svchost.exe -k utcsvc
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe"
"C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe"
"c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe"
C:\Windows\RfBtnSvc64.exe
C:\WINDOWS\system32\svchost.exe -k appmodel
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.7\ToolbarUpdater.exe"
"C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\svchost.exe -k SDRSVC
C:\WINDOWS\System32\WinLogon.exe -SpecialSession
"dwm.exe"
"C:\Program Files\Elantech\ETDCtrl.exe"
"C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe" /TUStart /pid:2576
sihost.exe
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
taskhostw.exe {222A245B-E637-4AE9-A93F-A59CA119A75E}
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\Explorer.EXE
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Program Files\Acer\Acer Power Management\ePowerTray.exe"
"C:\Program Files\Elantech\ETDCtrlHelper.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\eM Client\MailClient.exe" /startup
"C:\Windows\SysWOW64\C2MP\TrayMenu.exe" vlc.ico
AvastUI.exe /nogui
/fmw.trayonly
"C:\Program Files (x86)\AVG Web TuneUp\vprot.exe"
C:\WINDOWS\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe"
"fontdrvhost.exe"
"C:\Program Files (x86)\eM Client\MailClient.exe" --type=renderer --no-sandbox --disable-direct-write --disable-databases --lang=en-US --lang=en-US --log-file="C:\Users\Slamak\AppData\Roaming\eM Client\Logs\cef.log" --log-severity=error --uncaught-exception-stack-size=8 --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --content-image-texture-target=3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553,3553 --video-image-texture-target=3553 --disable-gpu-compositing --channel="7152.4.2118484789\398962061" /prefetch:1
"C:\Program Files (x86)\PROFIT\PROFIT.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe" -contentproc --channel="11088.0.883246759\1658385219" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" 11088 "\\.\pipe\gecko-crash-server-pipe.11088" tab
C:\WINDOWS\splwow64.exe 8192
"C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe" "C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe" "C:\Users\Slamak\Documents\exporty profit\Faktura 20170224.pdf"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe" "C:\Users\Slamak\Documents\exporty profit\Faktura 20170224.pdf"
"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe" --type=renderer /prefetch:1 "C:\Users\Slamak\Documents\exporty profit\Faktura 20170224.pdf"
"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --locale=cs_cz --backgroundcolor=16448250
"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=renderer --disable-3d-apis --disable-databases --disable-direct-npapi-requests --disable-file-system --disable-notifications --disable-shared-workers --disable-direct-write --lang=en-US --lang=en-US --log-severity=disable --product-version="ReaderServices/15.23.20053 Chrome/45.0.2454.85" --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --disable-webrtc-hw-encoding --disable-gpu-compositing --channel="8472.11.1766867245\1218127447" --allow-no-sandbox-job /prefetch:673131151
"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=renderer --disable-3d-apis --disable-databases --disable-direct-npapi-requests --disable-file-system --disable-notifications --disable-shared-workers --disable-direct-write --lang=en-US --lang=en-US --log-severity=disable --product-version="ReaderServices/15.23.20053 Chrome/45.0.2454.85" --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --disable-webrtc-hw-encoding --disable-gpu-compositing --channel="8472.12.1911591790\2022050300" --allow-no-sandbox-job /prefetch:673131151
"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=renderer --disable-3d-apis --disable-databases --disable-direct-npapi-requests --disable-file-system --disable-notifications --disable-shared-workers --disable-direct-write --lang=en-US --lang=en-US --log-severity=disable --product-version="ReaderServices/15.23.20053 Chrome/45.0.2454.85" --enable-pinch --device-scale-factor=1 --enable-delegated-renderer --num-raster-threads=1 --gpu-rasterization-msaa-sample-count=8 --content-image-texture-target=3553 --video-image-texture-target=3553 --disable-accelerated-video-decode --disable-webrtc-hw-encoding --disable-gpu-compositing --channel="8472.13.789711574\276909693" --allow-no-sandbox-job /prefetch:673131151
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe51_ Global\UsGthrCtrlFltPipeMssGthrPipe51 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 644 648 656 8192 652
C:\Windows\System32\smartscreen.exe -Embedding
"C:\Users\Slamak\Downloads\RSITx64.exe"
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\Slamak\AppData\Roaming\Mozilla\Firefox\Profiles\gjyzp0az.default
prefs.js - "browser.startup.homepage" - "https://www.seznam.cz/"
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF48
"sp@avast.com"=C:\Program Files\AVAST Software\Avast\SafePrice\FF48
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 24.0.0.221 Plugin
"Path"=C:\WINDOWS\SysWoW64\Macromed\Flash\NPSWF32_24_0_0_221.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin]
"Description"=
"Path"=C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\40.3.7\\npsitesafety.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.111.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.111.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/WLPG,version=16.4.3528.0331]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 24.0.0.221 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF64_24_0_0_221.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll
C:\Users\Slamak\AppData\Roaming\Mozilla\Firefox\Profiles\gjyzp0az.default\searchplugins\
avg-secure-search.xml
seznam-avast.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll [2016-12-12 473152]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-12-12 186944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2015-06-01 183216]
"HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2015-06-01 411056]
"Persistence"=C:\WINDOWS\system32\igfxpers.exe [2015-06-01 453552]
"ETDCtrl"=C:\Program Files\Elantech\ETDCtrl.exe [2015-10-07 3242696]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2012-06-11 12503184]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"eM Client"=C:\Program Files (x86)\eM Client\MailClient.exe [2016-10-21 24742760]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2014-03-04 3696912]
"GoogleDriveSync"=C:\Program Files (x86)\Google\Drive\googledrivesync.exe [2016-11-30 23818360]
"ProgLauncher"=C:\Program Files (x86)\ProgDVB\ProgLauncher.exe [2016-08-26 400584]
"GEN"=C:\Users\Slamak\AppData\Local\Programs\GEN\GEN.exe [2016-12-16 520102]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Uninstall C:\Users\Slamak\AppData\Local\Microsoft\OneDrive\17.3.6201.1019_1\amd64"=C:\WINDOWS\system32\cmd.exe [2016-07-16 232960]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"RadioController"=C:\Program Files (x86)\RadioController\RfBtnHelper.exe [2013-02-08 111216]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvLaunch.exe [2017-03-02 205512]
"ControlCenter4"=C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [2012-09-06 143360]
"BrStsMon00"=C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2012-06-06 3076096]
"Family Tree Builder Update"=C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe [2016-07-14 14517936]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-09-22 587288]
"AvgUi"=C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [2016-12-06 240400]
"vProt"=C:\Program Files (x86)\AVG Web TuneUp\vprot.exe [2017-03-02 2183752]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Acer Backup Manager Tray.lnk - C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe
TrayMenu.lnk - C:\Windows\SysWOW64\C2MP\TrayMenu.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxdev.dll [2015-06-01 451584]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\iai2c.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Ahcache.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\CoreMessagingRegistrar]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SpbCx.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\StateRepository]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\TileDataModelSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\uefi.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UserManager]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{F2E7DD72-6468-4E36-B6F1-6488F42C1B52}]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DSCAutomationHostEnabled"=2
"DisableTaskMgr"=0
"SoftwareSASGeneration"=1
"ConsentPromptBehaviorAdmin"=0
"PromptOnSecureDesktop"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\acpanel_win.exe]
"Debugger=""C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\chrome.exe]
"Debugger=""C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dtlite.exe]
"Debugger=""C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\googledrivesync.exe]
"Debugger=""C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\myheritage.exe]
"Debugger=""C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\progdvbnet.exe]
"Debugger=""C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\progguide.exe]
"Debugger=""C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\progtv.exe]
"Debugger=""C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\skineditor.exe]
"Debugger=""C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\sptdinst-x64.exe]
"Debugger=""C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\uninstall.exe]
"Debugger=""C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"msacm.ac3acm"=ac3acm.acm
"msacm.l3codecp"=l3codecp.acm
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2017-03-07 19:42:26 ----D---- C:\rsit
2017-03-02 23:49:28 ----D---- C:\Program Files\Common Files\AVG Secure Search
2017-03-02 23:49:21 ----D---- C:\ProgramData\AVG Web TuneUp
2017-03-02 23:49:21 ----D---- C:\Program Files\AVG Web TuneUp
2017-03-02 23:49:12 ----D---- C:\Program Files (x86)\AVG Web TuneUp
2017-03-02 22:50:34 ----A---- C:\WINDOWS\system32\TURegOpt.exe
2017-03-02 22:45:04 ----D---- C:\Program Files (x86)\AVG
2017-03-02 19:45:25 ----A---- C:\WINDOWS\system32\drivers\aswbuniva.sys
2017-03-02 19:45:25 ----A---- C:\WINDOWS\system32\drivers\aswbloga.sys
2017-03-02 19:45:25 ----A---- C:\WINDOWS\system32\drivers\aswbidsha.sys
2017-03-02 19:45:25 ----A---- C:\WINDOWS\system32\drivers\aswbidsdrivera.sys
2017-03-02 19:44:51 ----A---- C:\WINDOWS\system32\aswBoot.exe
2017-02-24 15:39:05 ----D---- C:\Users\Slamak\AppData\Roaming\Electrum
2017-02-24 15:37:16 ----D---- C:\Program Files (x86)\Electrum
2017-02-24 15:15:08 ----D---- C:\Users\Slamak\AppData\Roaming\MultiBitHD
======List of files/folders modified in the last 1 month======
2017-03-07 19:42:29 ----D---- C:\Program Files\trend micro
2017-03-07 19:41:47 ----D---- C:\WINDOWS\Temp
2017-03-07 19:00:02 ----AD---- C:\Program Files (x86)\PROFIT
2017-03-07 18:59:20 ----D---- C:\WINDOWS\system32\sru
2017-03-07 18:58:06 ----D---- C:\WINDOWS\System32
2017-03-07 18:58:04 ----D---- C:\Users\Slamak\AppData\Roaming\eM Client
2017-03-07 17:13:58 ----D---- C:\WINDOWS\LiveKernelReports
2017-03-07 17:11:01 ----D---- C:\WINDOWS\system32\NDF
2017-03-07 16:51:24 ----D---- C:\WINDOWS\AppReadiness
2017-03-07 16:51:23 ----HD---- C:\Program Files\WindowsApps
2017-03-07 16:50:25 ----D---- C:\WINDOWS\Prefetch
2017-03-07 12:16:29 ----AD---- C:\Users\Slamak\AppData\Roaming\Oracle
2017-03-07 08:18:45 ----D---- C:\WINDOWS\system32\drivers
2017-03-06 18:02:58 ----D---- C:\Users\Slamak\AppData\Roaming\FileZilla
2017-03-06 18:01:11 ----AD---- C:\Program Files (x86)\FileZilla FTP Client
2017-03-06 17:57:15 ----D---- C:\WINDOWS\system32\SleepStudy
2017-03-06 11:53:50 ----HD---- C:\ProgramData
2017-03-06 11:20:03 ----RD---- C:\WINDOWS\Microsoft.NET
2017-03-06 10:34:04 ----A---- C:\WINDOWS\SYSWOW64\log.txt
2017-03-04 13:15:23 ----D---- C:\ProgramData\AlawarWrapper
2017-03-04 10:20:33 ----D---- C:\FOTOONLINE
2017-03-03 21:47:11 ----D---- C:\ProgramData\AVAST Software
2017-03-03 20:32:21 ----D---- C:\WINDOWS\system32\WDI
2017-03-02 23:50:34 ----D---- C:\WINDOWS\system32\Tasks
2017-03-02 23:49:28 ----D---- C:\Program Files\Common Files
2017-03-02 23:49:28 ----AD---- C:\Program Files (x86)\Mozilla Firefox
2017-03-02 23:49:24 ----D---- C:\Program Files (x86)\Common Files
2017-03-02 23:49:21 ----RD---- C:\Program Files
2017-03-02 23:49:12 ----RD---- C:\Program Files (x86)
2017-03-02 23:35:31 ----D---- C:\Users\Slamak\AppData\Roaming\Skype
2017-03-02 23:35:31 ----D---- C:\ProgramData\Temp
2017-03-02 23:34:47 ----DC---- C:\WINDOWS\Panther
2017-03-02 23:34:47 ----D---- C:\WINDOWS\system32\Sysprep
2017-03-02 23:34:47 ----D---- C:\WINDOWS\INF
2017-03-02 23:34:47 ----D---- C:\Windows
2017-03-02 22:50:41 ----SHD---- C:\WINDOWS\Installer
2017-03-02 22:47:08 ----AD---- C:\ProgramData\AVG
2017-03-02 22:45:57 ----D---- C:\WINDOWS\WinSxS
2017-03-02 22:45:44 ----AD---- C:\WINDOWS\SysWOW64
2017-03-02 22:44:15 ----HD---- C:\ProgramData\Common Files
2017-03-02 20:21:40 ----D---- C:\temp
2017-03-02 20:17:17 ----D---- C:\WINDOWS\system32\catroot2
2017-03-02 20:00:03 ----D---- C:\Program Files (x86)\7-Zip
2017-03-02 19:45:00 ----D---- C:\WINDOWS\system32\config
2017-03-02 11:30:41 ----SHD---- C:\System Volume Information
2017-02-28 07:07:41 ----D---- C:\WINDOWS\system32\Macromed
2017-02-28 07:07:38 ----D---- C:\WINDOWS\SYSWOW64\Macromed
2017-02-27 06:48:22 ----D---- C:\Program Files (x86)\NTI
2017-02-27 06:48:21 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2017-02-27 06:43:11 ----D---- C:\Garmin
2017-02-27 06:42:53 ----D---- C:\ProgramData\Skype
2017-02-27 06:40:46 ----AD---- C:\ProgramData\Nero
2017-02-27 06:35:05 ----D---- C:\Users\Slamak\AppData\Roaming\Foxit Software
2017-02-27 06:34:20 ----D---- C:\ProgramData\Foxit Software
2017-02-24 15:17:58 ----D---- C:\Users\Slamak\AppData\Roaming\Bitcoin
2017-02-24 07:24:23 ----D---- C:\WINDOWS\system32\MRT
2017-02-24 07:19:49 ----AC---- C:\WINDOWS\system32\MRT.exe
2017-02-23 18:38:12 ----D---- C:\WINDOWS\CbsTemp
2017-02-10 20:15:29 ----D---- C:\Users\Slamak\AppData\Roaming\M-Photo
2017-02-09 10:49:07 ----AD---- C:\Program Files (x86)\eM Client
2017-02-08 10:04:15 ----D---- C:\WINDOWS\rescache
2017-02-08 08:56:47 ----RSD---- C:\WINDOWS\assembly
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 aswbidsh;aswbidsh; C:\WINDOWS\system32\drivers\aswbidsha.sys [2017-03-02 189768]
R0 aswblog;aswblog; C:\WINDOWS\system32\drivers\aswbloga.sys [2017-03-02 334600]
R0 aswbuniv;aswbuniv; C:\WINDOWS\system32\drivers\aswbuniva.sys [2017-03-02 48528]
R0 aswRvrt;aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [2017-03-02 75704]
R0 aswVmm;aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [2017-03-02 337592]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2012-08-16 645952]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\WINDOWS\system32\drivers\iorate.sys [2016-11-02 48992]
R1 aswbidsdriver;aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdrivera.sys [2017-03-02 309272]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2017-03-02 32088]
R1 aswNetSec;aswNetSec; C:\WINDOWS\system32\drivers\aswNetSec.sys [2017-03-02 461640]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2017-03-02 100640]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2017-03-02 993608]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2017-03-02 547904]
R1 dtsoftbus01;@oem3.inf,%DTSoftBus.SVCDESC%;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [2014-09-29 283064]
R1 FileCrypt;@%systemroot%\system32\drivers\filecrypt.sys,-100; C:\WINDOWS\system32\drivers\filecrypt.sys [2016-07-16 88576]
R1 GpuEnergyDrv;@%SystemRoot%\system32\drivers\gpuenergydrv.sys,-100; C:\WINDOWS\System32\drivers\gpuenergydrv.sys [2016-07-16 8192]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2017-03-02 126600]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2017-03-02 162528]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2016-07-16 70144]
R2 MMCSS;@%systemroot%\system32\drivers\mmcss.sys,-100; C:\WINDOWS\system32\drivers\mmcss.sys [2016-07-16 48128]
R2 storqosflt;@%SystemRoot%\System32\drivers\storqosflt.sys,-101; C:\WINDOWS\system32\drivers\storqosflt.sys [2016-07-16 78336]
R3 b57xdbd;@oem13.inf,%bcmxd_16bf_svcd%;Broadcom xD Picture Bus Driver Service; C:\WINDOWS\System32\drivers\b57xdbd.sys [2012-08-13 72280]
R3 b57xdmp;@oem13.inf,%BXD_SVCDESC%;Broadcom xD Picture vstorp client drv; C:\WINDOWS\System32\drivers\b57xdmp.sys [2012-08-13 21080]
R3 BCM43XX;@netbc64.inf,%BCM43XX_Service_DispName%;Broadcom 802.11 – ovladač síťového adaptéru; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [2016-07-16 7585280]
R3 bScsiMSa;bScsiMSa; C:\WINDOWS\System32\drivers\bScsiMSa.sys [2012-06-19 55384]
R3 bScsiSDa;bScsiSDa; C:\WINDOWS\System32\drivers\bScsiSDa.sys [2012-08-14 70744]
R3 ETD;@oem21.inf,%PS2.DeviceDesc%;ELAN Input Device; C:\WINDOWS\system32\DRIVERS\ETD.sys [2015-10-07 525512]
R3 igfx;igfx; C:\WINDOWS\system32\DRIVERS\igdkmd64.sys [2015-06-01 5384176]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RTKVHD64.sys [2012-06-12 4060560]
R3 IntcDAud;@oem26.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\WINDOWS\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
R3 k57nd60a;@netk57a.inf,%SvcDispName%;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\WINDOWS\System32\drivers\k57nd60a.sys [2016-07-16 446464]
R3 MEIx64;@oem24.inf,%HECI_SvcDesc%;Intel(R) Management Engine Interface ; C:\WINDOWS\System32\drivers\HECIx64.sys [2012-07-02 62784]
R3 NTIDrvr;NTIDrvr; \??\C:\Windows\system32\drivers\NTIDrvr.sys [2010-04-20 18432]
R3 Ps2Kb2Hid;@oem10.inf,%Ps2Kb2Hid.SVCDESC%;PS/2 Keyboard to HID Driver; C:\WINDOWS\System32\drivers\aPs2Kb2Hid.sys [2013-02-08 26736]
R3 StillCam;@sti.inf,%StillCam.SvcDesc%;Ovladač digitálního fotoaparátu pro sériový port; C:\WINDOWS\system32\DRIVERS\serscan.sys [2016-07-16 12800]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [2017-02-21 32304]
S0 LSI_SAS2i;LSI_SAS2i; C:\WINDOWS\System32\drivers\lsi_sas2i.sys [2016-07-16 105824]
S0 LSI_SAS3i;LSI_SAS3i; C:\WINDOWS\System32\drivers\lsi_sas3i.sys [2016-07-16 101216]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2016-10-05 64352]
S0 percsas2i;percsas2i; C:\WINDOWS\System32\drivers\percsas2i.sys [2016-07-16 58720]
S0 percsas3i;percsas3i; C:\WINDOWS\System32\drivers\percsas3i.sys [2016-07-16 61792]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2016-07-16 88416]
S0 storufs;@storufs.inf,%UfsServiceDesc%;Microsoft Universal Flash Storage (UFS) Driver; C:\WINDOWS\System32\drivers\storufs.sys [2016-07-16 32096]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2016-07-16 18432]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2016-07-16 15360]
S3 aswHwid;aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [2017-03-02 38296]
S3 bcmfn;@bcmfn.inf,%bcmfn.SVCDESC%;bcmfn Service; C:\WINDOWS\System32\drivers\bcmfn.sys [2016-07-16 9728]
S3 buttonconverter;@buttonconverter.inf,%btnconv.SvcDesc%;Service for Portable Device Control devices; C:\WINDOWS\System32\drivers\buttonconverter.sys [2016-07-16 38912]
S3 CapImg;@capimg.inf,%CapImgHid_Service%;HID driver for CapImg touch screen; C:\WINDOWS\System32\drivers\capimg.sys [2016-09-10 118272]
S3 genericusbfn;@genericusbfn.inf,%genericusbfn.ServiceName%;Generic USB Function Class; C:\WINDOWS\System32\drivers\genericusbfn.sys [2016-07-16 20480]
S3 grmnusb;grmnusb; C:\WINDOWS\system32\drivers\grmnusb.sys [2012-04-18 19304]
S3 hidinterrupt;@hidinterrupt.inf,%HID_Interrupt.SvcDesc%;Common Driver for HID Buttons implemented with interrupts; C:\WINDOWS\System32\drivers\hidinterrupt.sys [2016-07-16 50016]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2016-08-06 73568]
S3 CH341SER_A64;CH341SER_A64; C:\WINDOWS\System32\Drivers\CH341S64.SYS [2015-02-06 59904]
S3 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2016-07-16 346976]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2016-07-16 2104160]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2016-07-16 33280]
S3 iai2c;@iai2c.inf,%iai2c.SVCDESC%;Intel(R) Serial IO I2C Host Controller; C:\WINDOWS\System32\drivers\iai2c.sys [2016-07-16 81408]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2016-07-16 64512]
S3 iaLPSS2i_I2C;@iaLPSS2i_I2C_SKL.inf,%iaLPSS2i_I2C.SVCDESC%;Intel(R) Serial IO I2C Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_I2C.sys [2016-07-16 176384]
S3 ibbus;@mlx4_bus.inf,%Ibbus.ServiceDesc%;Mellanox InfiniBand Bus/AL (Filter Driver); C:\WINDOWS\System32\drivers\ibbus.sys [2016-07-16 526176]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2016-07-16 35840]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2016-07-16 120320]
S3 IT9135BDA;@oem15.inf,%IT9135Devcie.FriendlyName%;IT9135 BDA Devices; C:\WINDOWS\System32\Drivers\IT9135BDA.sys [2010-02-03 113280]
S3 mlx4_bus;@mlx4_bus.inf,%MLX4BUS.ServiceDesc%;Mellanox ConnectX Bus Enumerator; C:\WINDOWS\System32\drivers\mlx4_bus.sys [2016-07-16 842584]
S3 ndfltr;@mlx4_bus.inf,%ndfltr.ServiceDesc%;NetworkDirect Service; C:\WINDOWS\System32\drivers\ndfltr.sys [2016-07-16 108896]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2016-07-16 90624]
S3 ReFSv1;ReFSv1; C:\WINDOWS\system32\drivers\ReFSv1.sys [2016-07-16 928608]
S3 scmdisk0101;@scmdisk0101.inf,%scmdisk0101.SvcDesc%;Microsoft NVDIMM-N disk driver; C:\WINDOWS\System32\drivers\scmdisk0101.sys [2016-07-16 123904]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-12-19 82640]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2017-03-02 262736]
R2 avast! Firewall;Avast Firewall Service; C:\Program Files\AVAST Software\Avast\afwServ.exe [2017-03-02 278784]
R2 avgsvc;AVG Service; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [2016-12-06 1146128]
R2 CDPSvc;@%SystemRoot%\system32\cdpsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 CDPUserSvc_3047cfa;CDPUserSvc_3047cfa; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 CoreMessagingRegistrar;@%SystemRoot%\system32\coremessaging.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 DiagTrack;@%SystemRoot%\system32\diagtrack.dll,-3001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R2 DoSvc;@%systemroot%\system32\dosvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 ETDService;Elan Service; C:\Program Files\Elantech\ETDService.exe [2015-10-07 144072]
R2 Freemake Improver;Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [2014-05-07 108032]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-04-20 635104]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-07-18 165760]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-07-18 276864]
R2 NTI IScheduleSvc;NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [2012-11-03 259136]
R2 OneSyncSvc_3047cfa;Hostitel synchronizace_3047cfa; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 PSI_SVC_2_x64;Protexis Licensing V2 x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [2010-11-30 336824]
R2 RfButtonDriverService;Dritek RF Button Command Service; C:\Windows\RfBtnSvc64.exe [2013-02-08 96880]
R2 tiledatamodelsvc;@%SystemRoot%\system32\tileobjserver.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2017-02-21 5906704]
R3 aswbIDSAgent;aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [2017-03-02 7147320]
R3 DsSvc;@%SystemRoot%\system32\dssvc.dll,-10003; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 ePowerSvc;ePower Service; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [2012-10-23 658064]
R3 LicenseManager;@%SystemRoot%\system32\licensemanagersvc.dll,-200; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
R3 StateRepository;@%SystemRoot%\system32\windows.staterepository.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
R3 TimeBrokerSvc;@%windir%\system32\TimeBrokerServer.dll,-1001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S2 MapsBroker;@%SystemRoot%\System32\moshost.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S2 OneSyncSvc;@%SystemRoot%\system32\APHostRes.dll,-10002; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-02-28 270936]
S3 AJRouter;@%SystemRoot%\system32\AJRouter.dll,-2; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 ClipSVC;@%SystemRoot%\system32\ClipSVC.dll,-103; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 cphs;Intel(R) Content Protection HECI Service; C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe [2015-06-01 290224]
S3 DcpSvc;@%SystemRoot%\system32\dcpsvc.dll,-3001; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 DeviceFastLaneService;Device Fast-lane Service; C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [2012-11-16 469648]
S3 DevQueryBroker;@%SystemRoot%\system32\DevQueryBroker.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 diagnosticshub.standardcollector.service;@%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000; C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe [2016-07-16 93184]
S3 DmEnrollmentSvc;@%systemroot%\system32\Windows.Internal.Management.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 dmwappushservice;@%SystemRoot%\system32\dmwappushsvc.dll,-200; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 embeddedmode;@%SystemRoot%\system32\embeddedmodesvc.dll,-201; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 EntAppSvc;@EnterpriseAppMgmtSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2013-02-08 655624]
S3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2017-02-07 43696]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 icssvc;@%SystemRoot%\System32\tetheringservice.dll,-4097; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 MessagingService;@%SystemRoot%\system32\MessagingService.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 MessagingService_3047cfa;Služba zasílání zpráv_3047cfa; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 NetSetupSvc;@%SystemRoot%\system32\NetSetupSvc.dll,-3; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 NgcCtnrSvc;@%SystemRoot%\System32\NgcCtnrSvc.dll,-1; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 NgcSvc;@%SystemRoot%\System32\ngcsvc.dll,-100; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 PhoneSvc;@%SystemRoot%\system32\PhoneserviceRes.dll,-10000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 PimIndexMaintenanceSvc;@%SystemRoot%\system32\UserDataAccessRes.dll,-15001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 PimIndexMaintenanceSvc_3047cfa;Data kontaktů_3047cfa; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 RetailDemo;@%SystemRoot%\System32\RDXService.dll,-256; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S3 SensorDataService;@%SystemRoot%\system32\SensorDataService.exe,-101; C:\WINDOWS\System32\SensorDataService.exe [2016-09-07 1312768]
S3 SensorService;@%SystemRoot%\System32\sensorservice.dll,-1000; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 SmsRouter;@%SystemRoot%\System32\SmsRouterSvc.dll,-10001; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
S3 TieringEngineService;@%SystemRoot%\system32\TieringEngineService.exe,-702; C:\WINDOWS\system32\TieringEngineService.exe [2016-07-16 287744]
S4 BrcmCardReader;Broadcom Card Reader Service; C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe [2012-08-21 176640]
S4 BrYNSvc;BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [2012-06-05 266240]
S4 CCDMonitorService;CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2012-10-26 2449552]
S4 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2012-12-10 350544]
S4 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-26 144200]
S4 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-26 144200]
S4 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2017-01-28 172488]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; C:\WINDOWS\System32\svchost.exe [2016-07-16 44496]
S4 tzautoupdate;@%SystemRoot%\system32\tzautoupdate.dll,-200; C:\WINDOWS\system32\svchost.exe [2016-07-16 44496]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o preventivku
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Prosím o preventivku
Ahoj.
-poprosim te pomoci tohoto navodu sem vlozit log (FRST.txt i Addition.txt) z FRST:
http://forum.viry.cz/viewtopic.php?f=30&t=133101
-poprosim te pomoci tohoto navodu sem vlozit log (FRST.txt i Addition.txt) z FRST:
http://forum.viry.cz/viewtopic.php?f=30&t=133101
Re: Prosím o preventivku
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 08-03-2017
Ran by Slamak (09-03-2017 13:34:33)
Running from C:\Users\Slamak\Desktop
Windows 10 Home Version 1607 (X64) (2016-09-21 03:53:19)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-3621977129-2832859686-462106091-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3621977129-2832859686-462106091-503 - Limited - Disabled)
Guest (S-1-5-21-3621977129-2832859686-462106091-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3621977129-2832859686-462106091-1003 - Limited - Enabled)
Slamak (S-1-5-21-3621977129-2832859686-462106091-1001 - Administrator - Enabled) => C:\Users\Slamak
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: Avast Antivirus (Enabled) {B693136B-F6EE-DD1C-A0EF-229B8B0B29C4}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 16.04 (HKLM-x32\...\{23170F69-40C1-2701-1604-000001000000}) (Version: 16.04.00.0 - Igor Pavlov)
7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version: - )
AC-3 ACM Codec 2.2 (HKLM-x32\...\AC3ACM) (Version: 2.2 - fccHandler)
AC-3 ACM Codec x64 2.2 (HKLM\...\AC3ACM) (Version: 2.2 - fccHandler)
Acer Backup Manager (HKLM-x32\...\InstallShield_{9DDDF20E-9FD1-4434-A43E-E7889DBC9420}) (Version: 4.0.0.0071 - NTI Corporation)
Acer Device Fast-lane (HKLM\...\{3F62D2FD-13C1-49A2-8B5D-47623D9460D7}) (Version: 1.00.3011 - Acer Incorporated)
Acer Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.3011 - Acer Incorporated)
Acer Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.3015 - Acer Incorporated)
AcerCloud (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 2.01.3125 - Acer Incorporated)
AcerCloud Docs (HKLM-x32\...\{CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}) (Version: 1.00.3204 - Acer Incorporated)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 15.023.20070 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 24.0.0.180 - Adobe Systems Incorporated)
Adobe Flash Player 24 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 24.0.0.221 - Adobe Systems Incorporated)
Akrem studio (HKLM-x32\...\Akrem studio_Akrem studio) (Version: - )
Arduino (HKLM-x32\...\Arduino) (Version: 1.6.4 - Arduino LLC)
Avast Internet Security (HKLM-x32\...\Avast Antivirus) (Version: 17.2.2288 - AVAST Software)
AVG (HKLM\...\AvgZen) (Version: 1.113.2.50020 - AVG Technologies)
AVG PC TuneUp (HKLM-x32\...\AVG PC TuneUp) (Version: 16.74.2.60831 - AVG Technologies)
AVG PC TuneUp (x32 Version: 16.74.1 - AVG Technologies) Hidden
AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 4.3.7.452 - AVG Technologies)
AVG Zen (Version: 1.113.1 - AVG Technologies) Hidden
Backup Manager v4 (x32 Version: 4.0.0.0071 - NTI Corporation) Hidden
BlazeHDTV 6.0 (HKLM-x32\...\BlazeHDTV 6.0_is1) (Version: - )
Broadcom 802.11 Network Adapter (HKLM\...\Broadcom 802.11 Network Adapter) (Version: 6.30.59.96 - Broadcom Corporation)
Broadcom Card Reader Driver Installer (HKLM\...\{F0A7DF2F-0BE0-470F-B137-D7A19F977189}) (Version: 15.4.7.1 - Broadcom Corporation)
Brother MFL-Pro Suite DCP-7055W (HKLM-x32\...\{3ACCCFB3-7B17-4E9F-ACB0-46868FCD4487}) (Version: 1.1.3.0 - Brother Industries, Ltd.)
clear.fi Media (HKLM-x32\...\{E9AF1707-3F3A-49E2-8345-4F2D629D0876}) (Version: 2.01.3112 - Acer Incorporated)
clear.fi Photo (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 2.01.3109 - Acer Incorporated)
clear.fi SDK - Video 2 (x32 Version: 2.1.2128 - CyberLink Corp.) Hidden
clear.fi SDK- Movie 2 (x32 Version: 2.1.2112 - CyberLink Corp.) Hidden
Corel Graphics - Windows Shell Extension (HKLM\...\_{B16BB34E-B7BF-47DF-8658-BEABCF40CD6A}) (Version: 16.1.0.843 - Corel Corporation)
Corel Graphics - Windows Shell Extension (Version: 16.1.843 - Corel Corporation) Hidden
Corel Graphics - Windows Shell Extension 32 Bit (Version: 16.1.843 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Capture (x64) (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Common (x64) (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Connect (x64) (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Custom Data (x64) (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - CZ (x64) (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Draw (x64) (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Filters (x64) (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - FontNav (x64) (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - IPM (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - PHOTO-PAINT (x64) (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Redist (x64) (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Setup Files (x64) (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - VBA (x64) (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - VideoBrowser (x64) (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - VSTA (x64) (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Writing Tools (x64) (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 (64-Bit) (HKLM\...\_{BDBFAC49-8877-472F-876B-75ADB7DBC955}) (Version: 16.1.0.843 - Corel Corporation)
CorelDRAW Graphics Suite X6 (x64) (Version: 16.1 - Corel Corporation) Hidden
CyberLink MediaEspresso 6.5 (HKLM-x32\...\InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}) (Version: 6.5.3318_45364 - CyberLink Corp.)
CzechRep_by_Dave_Luv (HKLM-x32\...\CzechRep_by_Dave_Luv) (Version: - )
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
DesignPro 5 (HKLM-x32\...\InstallShield_{F82C6574-AD88-4B40-A432-970BC77F1BD2}) (Version: 5.5.708 - Avery Dennison)
DesignPro 5 (x32 Version: 5.5.708 - Avery Dennison) Hidden
ELAN Touchpad 11.15.0.18_X64 (HKLM\...\Elantech) (Version: 11.15.0.18 - ELAN Microelectronic Corp.)
Electrum (HKU\S-1-5-21-3621977129-2832859686-462106091-1001\...\Electrum) (Version: 2.7.18 - Electrum Technologies GmbH)
eM Client (HKLM-x32\...\{2A4CAF55-4B18-4B61-BE9E-94A54209F547}) (Version: 7.0.27943.0 - eM Client Inc.)
FileZilla Client 3.24.1 (HKLM-x32\...\FileZilla Client) (Version: 3.24.1 - Tim Kosse)
FMW 1 (Version: 1.143.3 - AVG Technologies) Hidden
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
FOTOKNIHY ONLINE (HKLM-x32\...\FOTOKNIHY ONLINE_FOTOKNIHY ONLINE) (Version: - )
Freemake Video Converter verze 4.1.4 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.4 - Ellora Assets Corporation)
GOM Player (HKLM-x32\...\GOM Player) (Version: 2.3.12.5268 - Gretech Corporation)
Google Drive (HKLM-x32\...\{07A12123-B717-496B-B471-48AF6407B433}) (Version: 1.32.4066.7445 - Google, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 56.0.2924.87 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
Identity Card (HKLM-x32\...\{3D9CB654-99AD-4301-89C6-0D12A790767C}) (Version: 2.00.3004 - Acer Incorporated)
Intel(R) C++ Redistributables for Windows* on Intel(R) 64 (HKLM-x32\...\{D2437C5C-2D8C-40D2-8059-689AD7239FA3}) (Version: 11.1.048 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.3347 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.5.4.1001 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Java 8 Update 111 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)
K-Lite Mega Codec Pack 11.7.5 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 11.7.5 - )
Launch Manager (HKLM-x32\...\LManager) (Version: 7.0.10 - Acer Inc.)
Light Image Resizer 4.0.4.3 (HKLM-x32\...\{EBE030DD-D404-4D92-85E9-8C3624820808}_is1) (Version: 4.0.4.3 - ObviousIdea)
Live Updater (HKLM-x32\...\{EE26E302-876A-48D9-9058-3129E5B99999}) (Version: 2.00.8102 - Acer Incorporated)
Microsoft Expression Web 4 (HKLM-x32\...\Web_4.0.1460.0) (Version: 4.0.1460.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 - ENU (HKLM-x32\...\{AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 Runtime (HKLM-x32\...\{299C0434-4F4E-341F-A916-4E07AEB35E79}) (Version: 9.0.30729 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 52.0 (x86 cs) (HKLM-x32\...\Mozilla Firefox 52.0 (x86 cs)) (Version: 52.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 52.0.0.6270 - Mozilla)
MSVC90_x64 (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (x32 Version: 1.0.1.2 - Nokia) Hidden
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MyHeritage Family Tree Builder (HKLM-x32\...\Family Tree Builder) (Version: 8.0.0.8309 - MyHeritage.com)
Noční můra z hlubin: Volání Sirény (HKU\S-1-5-21-3621977129-2832859686-462106091-1001\...\Noční můra z hlubin: Volání Sirény) (Version: 1.0.0.0 - Alawar Entertainment Inc.)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.9.1 - Notepad++ Team)
NVIDIA PhysX v8.05.26 (HKLM-x32\...\{11AE6807-50D2-4F59-82B3-2C3E695E94C2}) (Version: 8.05.26 - NVIDIA Corporation)
Office Addin (HKLM-x32\...\{6D2BBE1D-E600-4695-BA37-0B0E605542CC}) (Version: 2.01.3202 - Acer)
Office Addin 2003 (HKLM-x32\...\{1FCC073B-CC01-4443-AD20-E559F66E6E83}) (Version: 2.01.3202 - Acer)
OpenOffice 4.0.1 (HKLM-x32\...\{220C463A-2890-4C7F-B97C-C49FE175B849}) (Version: 4.01.9714 - Apache Software Foundation)
PlayDance verze 1.0.980 (HKLM-x32\...\{EC8642E4-7CE3-4379-9114-6E34DEF98D58}_is1) (Version: 1.0.980 - VISO SPORT s.r.o.)
PROFIT 2017.02 (HKLM-x32\...\{670A9A20-E29D-40C3-9937-2AFF89C3AC82}_is1) (Version: - LPsoft)
ProgDVB (HKLM-x32\...\ProgDVB) (Version: 7.x - Prog)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6657 - Realtek Semiconductor Corp.)
SafeZone Stable 3.55.2393.561 (x32 Version: 3.55.2393.561 - Avast Software) Hidden
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
StepMania (remove only) (HKLM-x32\...\StepMania) (Version: - )
StepMania 5 (HKLM-x32\...\StepMania 5) (Version: 5.0.12 - StepMania)
Visual Studio 2005 Tools for Office Second Edition Runtime (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Office Runtime) (Version: - Microsoft Corporation)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Visual Studio Tools for the Office system 3.0 Runtime (HKLM-x32\...\Visual Studio Tools for the Office system 3.0 Runtime) (Version: - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (HKLM-x32\...\{8FB53850-246A-3507-8ADE-0060093FFEA6}.KB949258) (Version: 1 - Microsoft Corporation)
VLC Codec Pack 2.0.5 (HKLM-x32\...\VLC - Codec Pack) (Version: 2.0.5 - VLC Codec Pack)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)
World of Tanks (HKU\S-1-5-21-3621977129-2832859686-462106091-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812eu}_is1) (Version: - Wargaming.net)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {07A00522-35A8-4318-B4F9-58BCA82B4C36} - System32\Tasks\{181CE5D4-D103-47A7-9F24-61B5D5C555D7} => pcalua.exe -a C:\Users\Slamak\Downloads\DDRinstall.exe -d C:\Users\Slamak\Downloads
Task: {0C92BE8B-8802-4838-A651-3E1FED69C3A7} - \WPD\SqmUpload_S-1-5-21-3621977129-2832859686-462106091-1001 -> No File <==== ATTENTION
Task: {1350A46E-6849-45AB-89F5-E8828B4AF74A} - System32\Tasks\AVG EUpdate Task => avgsetupx.exe
Task: {17660AAA-27C1-41C3-BAC5-ECE9E2DAFC4F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-12-19] (Adobe Systems Incorporated)
Task: {22836ED9-6809-4E92-885D-2A28D0D37D49} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-26] (Google Inc.)
Task: {2295B629-0AA4-49AC-AC9A-EB6EF400D834} - System32\Tasks\SafeZone scheduled Autoupdate 1453580228 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-02-15] (Avast Software)
Task: {2B7492F1-AF9E-41CE-B94C-BC7B98EAEAEB} - System32\Tasks\ALU => C:\Program Files (x86)\Acer\Live Updater\updater.exe [2016-07-06] ()
Task: {2C3BA65C-6C05-412E-9958-FB59802B8A7D} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {30CEB371-1E08-4188-8984-BCBF880E86C5} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-02-28] (Adobe Systems Incorporated)
Task: {32FD5AA6-2DB8-4649-80F0-3D4AC5D8902A} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2017-01-28] (AVAST Software)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => %SystemRoot%\System32\AutoWorkplace.exe
Task: {39A9F29C-FF8C-4356-AE0E-F09700CA4A9C} - System32\Tasks\Program k provádění aktualizací online Adobe => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-12-19] (Adobe Systems Incorporated)
Task: {3A94C1D7-491B-4481-8490-783C66B364D0} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe [2016-07-06] ()
Task: {3DF40C49-D25A-484D-B896-B4C162C57ACA} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {3F707190-9AF4-470E-9D7F-7B56FAA62CAB} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {40A9C6E6-7422-4660-9971-5FC1201A25FC} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2017-03-02] (AVAST Software)
Task: {585EC883-F50D-4365-8BB2-421EA561C8F9} - System32\Tasks\DeviceDetector => C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe [2012-09-20] (CyberLink)
Task: {5CA3F87C-0732-4C56-8776-EC268B7CE83C} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {603C1784-2BBA-4721-9C6D-461FBDC03746} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {61BD3CD7-ABE6-444C-AAA2-C5A66B123018} - System32\Tasks\eM Client Database Backup => C:\Program Files (x86)\eM Client\DbBackup.exe [2016-10-21] ()
Task: {6C6256BD-8C35-4E21-B9EC-1B8157A45CCC} - System32\Tasks\{EDB6CCAF-7385-4F0D-81BB-3907F76463EA} => pcalua.exe -a "C:\Program Files (x86)\WildGames\Uninstall.exe"
Task: {73204F3A-D3BD-4274-BC78-9742E0156205} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {7510DD46-9F1F-47BC-AC21-68BF7D20F90F} - System32\Tasks\{46AC75F9-7279-44FE-B6C8-0D1DB47FE976} => pcalua.exe -a C:\Users\Slamak\Downloads\AZ_AlbumMaker_setup(1).exe -d C:\Users\Slamak\Downloads
Task: {787CA109-09DA-4015-9AA6-2E15CA21A204} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {880E63BE-025F-4980-99B1-BE34455CFCF1} - System32\Tasks\{1A614DCE-B283-40EF-8D8F-3F54D8AD6629} => pcalua.exe -a "C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe" -c scenario=install baseurl="C:\Program Files\Microsoft Office 15" platform=x86 version=15.0.4719.1002 culture=cs-cz productstoremove=O365HomePremRetail_cs-cz_x-none
Task: {A3F8FC3E-F268-45C5-8D4E-78B70C46CCE7} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {C71FF138-48D9-46A8-8610-ADB2640C55D5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-26] (Google Inc.)
Task: {C836D59B-3725-4582-A701-1D3602BD53BD} - System32\Tasks\avastBCLRestartS-1-5-21-3621977129-2832859686-462106091-1001 => Firefox.exe
Task: {D83AE1A5-FF67-4E3C-8DA7-602DF40ECF18} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {E2645371-307B-4252-8393-D1F4C609C258} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-09-22] (Oracle Corporation)
Task: {E404C4BD-2ED7-422E-8E53-5374AFFC1D98} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {E79DD6A7-60B0-4E62-BBCB-2D65C360B4B9} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2017-02-24] (Microsoft Corporation)
Task: {F477C497-7AE6-4D99-ABC8-1ED9726E8AF6} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTray.exe [2012-10-23] (Acer Incorporated)
Task: {F98005B3-AB4A-4501-9986-C1D99B05FF7F} - System32\Tasks\GEN_Interval => C:\Users\Slamak\AppData\Local\Programs\GEN\GEN.exe [2016-12-16] ( ) <==== ATTENTION
Task: {FE8F005A-A304-43BF-90EB-C97D9CA429BD} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
Shortcut: C:\Users\Slamak\Favorites\Acer\Acer.lnk -> hxxp://www.acer.com
Shortcut: C:\Users\Slamak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StepMania\Go To StepMania web site.lnk -> hxxp://www.stepmania.com
==================== Loaded Modules (Whitelisted) ==============
2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-12-14 07:36 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2017-03-02 23:49 - 2017-03-02 23:49 - 00981576 _____ () C:\PROGRAM FILES (X86)\AVG WEB TUNEUP\WTUSYSTEMSUPPORT.EXE
2016-12-14 07:36 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-09-21 22:03 - 2016-09-07 05:56 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-01-11 20:43 - 2016-12-21 08:09 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2017-01-11 20:43 - 2016-12-21 07:54 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-01-11 20:43 - 2016-12-21 07:48 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-01-11 20:43 - 2016-12-21 07:48 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-01-11 20:43 - 2016-12-21 07:48 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-01-11 20:43 - 2016-12-21 07:53 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-06-01 21:00 - 2017-03-09 01:16 - 00112264 _____ () C:\WINDOWS\SYSTEM32\IccLibDll_x64.dll
2013-02-24 21:04 - 2013-02-24 21:04 - 00704008 _____ () C:\WINDOWS\SYSWOW64\C2MP\TRAYMENU.EXE
2017-03-02 23:49 - 2017-03-02 23:49 - 02183752 _____ () C:\PROGRAM FILES (X86)\AVG WEB TUNEUP\VPROT.EXE
2017-02-15 15:51 - 2017-02-15 15:51 - 03865088 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1702.312.0_x64__8wekyb3d8bbwe\Calculator.exe
2017-03-02 23:49 - 2017-03-02 23:49 - 00981576 _____ () C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe
2012-11-03 01:38 - 2012-11-03 01:38 - 00465384 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\sqlite3.dll
2012-11-03 01:37 - 2012-11-03 01:37 - 00125504 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\MailConverter32.dll
2012-11-03 01:38 - 2012-11-03 01:38 - 00155712 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\VolumeSnapshot.dll
2012-11-03 01:37 - 2012-11-03 01:37 - 00118336 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\Online.dll
2012-11-03 01:37 - 2012-11-03 01:37 - 01081408 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\ACE.dll
2012-11-03 01:37 - 2012-11-03 01:37 - 00052288 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\OsSettingPort.dll
2012-11-03 01:37 - 2012-11-03 01:37 - 00727616 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\OutlookShadow.dll
2017-03-02 22:45 - 2017-03-02 22:44 - 48920064 _____ () C:\Program Files (x86)\AVG\UiDll\2623\libcef.dll
2013-02-24 21:04 - 2013-02-24 21:04 - 00704008 _____ () C:\Windows\SysWOW64\C2MP\TrayMenu.exe
2017-03-02 19:44 - 2017-03-02 19:44 - 00170216 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-07-03 13:08 - 2016-07-03 13:08 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2017-03-02 19:43 - 2017-03-02 19:43 - 00290352 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
2017-03-02 19:44 - 2017-03-02 19:44 - 00655056 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2017-03-02 23:49 - 2017-03-02 23:49 - 02183752 _____ () C:\Program Files (x86)\AVG Web TuneUp\vprot.exe
2013-02-08 21:09 - 2012-06-25 18:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2016-12-14 07:36 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\Slamak\Desktop\eli.jpeg:3or4kl4x13tuuug3Byamue2s4b [85]
AlternateDataStreams: C:\Users\Slamak\Desktop\eli.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-08-22 14:25 - 2016-09-20 08:13 - 00000828 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3621977129-2832859686-462106091-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Slamak\AppData\Roaming\Microsoft\Windows Photo Viewer\Tapeta programu Windows Prohlížeč fotografií.jpg
DNS Servers: 10.154.240.3 - 10.154.240.66
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
HKLM\...\StartupApproved\StartupFolder: => "Acer Backup Manager Tray.lnk"
HKLM\...\StartupApproved\StartupFolder: => "McAfee Security Scan Plus.lnk"
HKLM\...\StartupApproved\Run: => "ETDCtrl"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "WindowsDefender"
HKLM\...\StartupApproved\Run32: => "mcui_exe"
HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "Norton Online Backup"
HKLM\...\StartupApproved\Run32: => "RadioController"
HKLM\...\StartupApproved\Run32: => "NtVdmSrv"
HKLM\...\StartupApproved\Run32: => "LManager"
HKLM\...\StartupApproved\Run32: => "Monitor"
HKLM\...\StartupApproved\Run32: => "seznam-listicka-distribuce"
HKLM\...\StartupApproved\Run32: => "ControlCenter4"
HKLM\...\StartupApproved\Run32: => "BrStsMon00"
HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
HKLM\...\StartupApproved\Run32: => "ETDCtrl"
HKLM\...\StartupApproved\Run32: => "Family Tree Builder Update"
HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
HKU\S-1-5-21-3621977129-2832859686-462106091-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-3621977129-2832859686-462106091-1001\...\StartupApproved\Run: => "DAEMON Tools Lite"
HKU\S-1-5-21-3621977129-2832859686-462106091-1001\...\StartupApproved\Run: => "cz.seznam.software.autoupdate"
HKU\S-1-5-21-3621977129-2832859686-462106091-1001\...\StartupApproved\Run: => "cz.seznam.software.szndesktop"
HKU\S-1-5-21-3621977129-2832859686-462106091-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-3621977129-2832859686-462106091-1001\...\StartupApproved\Run: => "Adobe Acrobat Synchronizer"
HKU\S-1-5-21-3621977129-2832859686-462106091-1001\...\StartupApproved\Run: => "GoogleDriveSync"
HKU\S-1-5-21-3621977129-2832859686-462106091-1001\...\StartupApproved\Run: => "ProgLauncher"
HKU\S-1-5-21-3621977129-2832859686-462106091-1001\...\StartupApproved\Run: => "GEN"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{DA525EAC-6852-482F-AA63-74E18CFA687B}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{983CF36B-CB3D-4385-971B-FD79973B6783}] => (Allow) LPort=1900
FirewallRules: [{C20889E0-6A14-404A-BE8A-6309D99072A4}] => (Allow) LPort=2869
FirewallRules: [{9431EEC7-ED77-47CF-A15D-FF8F6E28B0B1}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [UDP Query User{1EF1063B-344D-4257-81B2-F94ECA4C15BB}C:\program files (x86)\java\jre7\bin\java.exe] => (Block) C:\program files (x86)\java\jre7\bin\java.exe
FirewallRules: [TCP Query User{54DC1741-7570-4420-B713-C0B174C039A9}C:\program files (x86)\java\jre7\bin\java.exe] => (Block) C:\program files (x86)\java\jre7\bin\java.exe
FirewallRules: [{3BCF9347-E346-46E0-B33F-A4BC67D2A2EF}] => (Allow) E:\xampp\mysql\bin\mysqld.exe
FirewallRules: [{064AD829-5C27-47EF-AE3D-2FC9FA0C2312}] => (Allow) E:\xampp\mysql\bin\mysqld.exe
FirewallRules: [{7B39F568-61F0-4193-875D-D29EFB358C9F}] => (Allow) E:\xampp\apache\bin\httpd.exe
FirewallRules: [{13F9C526-59E9-4DE2-BA2C-2320D4C8DBD7}] => (Allow) E:\xampp\apache\bin\httpd.exe
FirewallRules: [UDP Query User{99F5D564-1C52-4ED1-90FF-F546A28BC91E}E:\xampp\apache\bin\httpd.exe] => (Allow) E:\xampp\apache\bin\httpd.exe
FirewallRules: [TCP Query User{4CD18BA7-7FEA-4FC5-9849-F5C422EECF5C}E:\xampp\apache\bin\httpd.exe] => (Allow) E:\xampp\apache\bin\httpd.exe
FirewallRules: [UDP Query User{209C1F0F-6329-458A-B4A6-7DD85D1F1A77}E:\xampp\mysql\bin\mysqld.exe] => (Allow) E:\xampp\mysql\bin\mysqld.exe
FirewallRules: [TCP Query User{A9789E06-29D9-4BCA-AC6E-1484948C3FFD}E:\xampp\mysql\bin\mysqld.exe] => (Allow) E:\xampp\mysql\bin\mysqld.exe
FirewallRules: [UDP Query User{76C5B11D-E3B1-4EA6-9084-3A45E83D0B0E}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [TCP Query User{54138E86-28AE-4ED8-8835-64438D0A2B9D}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [{7C0852DB-1D41-4918-AFCA-448A793918F7}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\ccd.exe
FirewallRules: [{E2CD2A1C-03FB-455B-9231-AC5C53314E76}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\ccd.exe
FirewallRules: [{9842AC32-6485-453D-8FFC-A38E68AE5A84}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\WindowsUpnp.exe
FirewallRules: [{49D6C8F0-2D7A-42CB-86BB-547F812FEF5C}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\WindowsUpnp.exe
FirewallRules: [{E8C9F16C-DD0C-45EC-B7CE-D1FA42A123A6}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\DMCDaemon.exe
FirewallRules: [{B98B703E-E1A4-4826-A256-1E06246CFF86}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\DMCDaemon.exe
FirewallRules: [{4438A42E-CA01-487A-A81F-96AD350C6535}] => (Allow) C:\Program Files (x86)\Acer\clear.fi SDK21\Video\VideoPlayer.exe
FirewallRules: [{A85D8387-645E-44E9-94E1-34AA456EB606}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\WindowsUpnpMV.exe
FirewallRules: [{BFCFDD45-68EB-4105-8726-73306E3B622A}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\WindowsUpnpMV.exe
FirewallRules: [{33049DF9-DBBD-4769-9505-68649786D112}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\DMCDaemon.exe
FirewallRules: [{1DCA56D4-AD07-48B8-8297-ABD1F86884C0}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\DMCDaemon.exe
FirewallRules: [{DDC7E40F-1333-444F-B1B6-E83D9E46BDD7}] => (Allow) C:\Program Files (x86)\NTI\Acer Backup Manager\FileExplorer.exe
FirewallRules: [{0765CE9F-2F1D-46EF-BA2D-8035F6F32525}] => (Allow) C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
FirewallRules: [{787E5484-3AEB-4774-A241-823C0F3D7FC3}] => (Allow) C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManager.exe
FirewallRules: [TCP Query User{BE1DCC74-2862-4763-B8E4-73A2264E94C1}C:\program files (x86)\java\jre7\bin\java.exe] => (Block) C:\program files (x86)\java\jre7\bin\java.exe
FirewallRules: [UDP Query User{5CEF367C-579E-4CA3-8269-AA0A5F195804}C:\program files (x86)\java\jre7\bin\java.exe] => (Block) C:\program files (x86)\java\jre7\bin\java.exe
FirewallRules: [{93A5B1E3-0F5F-41E7-AEED-71D9A29FE05E}] => (Allow) LPort=54925
FirewallRules: [{ED95B026-8EE2-48BA-A20C-78F41E095F3D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{2B889CF8-37E5-4CC8-A046-2198B81E3151}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{B3F197BA-31E7-477E-9BB3-4180D5FEAA98}] => (Allow) C:\Program Files (x86)\Hry.cz\Nightmares from the Deep The Sirens Call\Nocnimurazhlubin_VolaniSireny.exe
FirewallRules: [TCP Query User{82F58A0E-8AC8-483F-85FE-1DD266BB7CF0}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{328DF6A7-3A5F-49FD-9071-2666B4016B18}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{B1029764-1F37-4419-9554-D6C613B735F8}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{EA82611E-15D4-4328-8C80-B987426B92D8}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{63BEB568-CDE7-4A80-98B3-911641C9829E}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe
FirewallRules: [{30CB0268-27E1-4B48-B980-938917BA621B}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe
FirewallRules: [{FE085ABC-22CA-4390-8736-2CA26E883E36}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe
FirewallRules: [{952311B2-4BB1-4F48-912D-75986740EF7F}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe
FirewallRules: [{6853868E-3294-4265-B6FC-0B31B1EEAF5A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{F6F4E9A0-1709-4F31-9BD2-A1E011E8D7EE}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.561\SZBrowser.exe
==================== Restore Points =========================
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (03/09/2017 01:37:49 PM) (Source: VSS) (EventID: 12292) (User: )
Description: Chyba služby Stínová kopie svazků: Při vytváření třídy zprostředkovatele stínové kopie modelu COM s identifikátorem CLSID {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} [0x80070422, Zvolenou službu nelze spustit, protože není povolena nebo s ní není spojeno žádné povolené zařízení.
] došlo k chybě.
Operace:
Získat rozhraní umožňující volání pro tohoto zprostředkovatele
Zobrazit seznam rozhraní pro všechny zprostředkovatele podporující tento kontext
Dotaz na stínové kopie
Kontext:
ID zprostředkovatele: {b5946137-7b9f-4925-af80-51abd60b20d5}
ID třídy: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
Kontext snímku: 13
Kontext snímku: 13
Kontext spuštění: Coordinator
Error: (03/09/2017 01:37:49 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} a názvem SW_PROV nelze spustit. [0x80070422, Zvolenou službu nelze spustit, protože není povolena nebo s ní není spojeno žádné povolené zařízení.
]
Operace:
Získat rozhraní umožňující volání pro tohoto zprostředkovatele
Zobrazit seznam rozhraní pro všechny zprostředkovatele podporující tento kontext
Dotaz na stínové kopie
Kontext:
ID zprostředkovatele: {b5946137-7b9f-4925-af80-51abd60b20d5}
ID třídy: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
Kontext snímku: 13
Kontext snímku: 13
Kontext spuštění: Coordinator
Error: (03/09/2017 01:08:20 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -k netsvcs; Popis = Windows Update; Chyba = 0x8004230f).
Error: (03/09/2017 01:08:15 PM) (Source: VSS) (EventID: 12292) (User: )
Description: Chyba služby Stínová kopie svazků: Při vytváření třídy zprostředkovatele stínové kopie modelu COM s identifikátorem CLSID {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} [0x80070422, Zvolenou službu nelze spustit, protože není povolena nebo s ní není spojeno žádné povolené zařízení.
] došlo k chybě.
Operace:
Získat rozhraní umožňující volání pro tohoto zprostředkovatele
Zkontrolovat, zda poskytovatel podporuje svazek
Přidat svazek k sadě stínových kopií
Kontext:
ID zprostředkovatele: {b5946137-7b9f-4925-af80-51abd60b20d5}
ID třídy: {00000000-0000-0000-0000-000000000000}
Kontext snímku: 4194317
Kontext spuštění: Coordinator
ID zprostředkovatele: {b5946137-7b9f-4925-af80-51abd60b20d5}
Název svazku: \\?\Volume{1e8a02e0-dd41-4ffc-806f-931e1bf7dbfa}\
Kontext spuštění: Coordinator
Error: (03/09/2017 01:08:15 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} a názvem SW_PROV nelze spustit. [0x80070422, Zvolenou službu nelze spustit, protože není povolena nebo s ní není spojeno žádné povolené zařízení.
]
Operace:
Získat rozhraní umožňující volání pro tohoto zprostředkovatele
Zkontrolovat, zda poskytovatel podporuje svazek
Přidat svazek k sadě stínových kopií
Kontext:
ID zprostředkovatele: {b5946137-7b9f-4925-af80-51abd60b20d5}
ID třídy: {00000000-0000-0000-0000-000000000000}
Kontext snímku: 4194317
Kontext spuštění: Coordinator
ID zprostředkovatele: {b5946137-7b9f-4925-af80-51abd60b20d5}
Název svazku: \\?\Volume{1e8a02e0-dd41-4ffc-806f-931e1bf7dbfa}\
Kontext spuštění: Coordinator
Error: (03/09/2017 01:07:50 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Spyware Terminator Driver Filter.
System Error:
Systém nemůže nalézt uvedený soubor.
.
Error: (03/09/2017 01:07:50 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).
System Error:
Přístup byl odepřen.
.
Error: (03/09/2017 01:07:10 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny GetProviderMgmtInterface došlo k neočekávané chybě. hr= 0x8004230f, Při pokusu o zpracování určené operace došlo k neočekávané chybě zprostředkovatele stínové kopie.
.
Error: (03/09/2017 01:07:10 PM) (Source: VSS) (EventID: 12292) (User: )
Description: Chyba služby Stínová kopie svazků: Při vytváření třídy zprostředkovatele stínové kopie modelu COM s identifikátorem CLSID {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} [0x80070422, Zvolenou službu nelze spustit, protože není povolena nebo s ní není spojeno žádné povolené zařízení.
] došlo k chybě.
Operace:
Získat rozhraní umožňující volání pro tohoto zprostředkovatele
Získávání rozhraní správy zprostředkovatele
Kontext:
ID zprostředkovatele: {b5946137-7b9f-4925-af80-51abd60b20d5}
ID třídy: {00000000-0000-0000-0000-000000000000}
Kontext snímku: -1
ID zprostředkovatele: {b5946137-7b9f-4925-af80-51abd60b20d5}
Error: (03/09/2017 01:07:10 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} a názvem SW_PROV nelze spustit. [0x80070422, Zvolenou službu nelze spustit, protože není povolena nebo s ní není spojeno žádné povolené zařízení.
]
Operace:
Získat rozhraní umožňující volání pro tohoto zprostředkovatele
Získávání rozhraní správy zprostředkovatele
Kontext:
ID zprostředkovatele: {b5946137-7b9f-4925-af80-51abd60b20d5}
ID třídy: {00000000-0000-0000-0000-000000000000}
Kontext snímku: -1
ID zprostředkovatele: {b5946137-7b9f-4925-af80-51abd60b20d5}
System errors:
=============
Error: (03/09/2017 12:45:51 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {784E29F4-5EBE-4279-9948-1E8FE941646D} se v daném časovém limitu neregistroval u služby DCOM.
Error: (03/09/2017 12:43:22 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
a APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (03/09/2017 12:43:05 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby RfButtonDriverService bylo dosaženo časového limitu (30000 ms).
Error: (03/09/2017 12:40:06 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (7:31:16, 09.03.2017) bylo neočekávané.
Error: (03/09/2017 07:35:14 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (03/09/2017 06:37:48 AM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {784E29F4-5EBE-4279-9948-1E8FE941646D} se v daném časovém limitu neregistroval u služby DCOM.
Error: (03/08/2017 11:46:25 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby Appinfo bylo dosaženo časového limitu (30000 ms).
Error: (03/08/2017 11:44:30 PM) (Source: DCOM) (EventID: 10010) (User: SlamakAcer)
Description: Server App se v daném časovém limitu neregistroval u služby DCOM.
Error: (03/08/2017 11:43:08 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (03/08/2017 11:16:16 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 4003) (User: NT AUTHORITY)
Description: Služba Automatická konfigurace sítě WLAN zjistila při resetování nebo zotavení adaptéru omezené připojení.
Kód: 8 0x0 0x0
==================== Memory info ===========================
Processor: Intel(R) Pentium(R) CPU B960 @ 2.20GHz
Percentage of memory in use: 51%
Total physical RAM: 3909.28 MB
Available physical RAM: 1893.71 MB
Total Virtual: 4613.28 MB
Available Virtual: 2547.96 MB
==================== Drives ================================
Drive c: (Acer) (Fixed) (Total:911.75 GB) (Free:355.94 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 4B1BB8FD)
Partition: GPT.
==================== End of Addition.txt ============================
Ran by Slamak (09-03-2017 13:34:33)
Running from C:\Users\Slamak\Desktop
Windows 10 Home Version 1607 (X64) (2016-09-21 03:53:19)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-3621977129-2832859686-462106091-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-3621977129-2832859686-462106091-503 - Limited - Disabled)
Guest (S-1-5-21-3621977129-2832859686-462106091-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3621977129-2832859686-462106091-1003 - Limited - Enabled)
Slamak (S-1-5-21-3621977129-2832859686-462106091-1001 - Administrator - Enabled) => C:\Users\Slamak
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: Avast Antivirus (Enabled) {B693136B-F6EE-DD1C-A0EF-229B8B0B29C4}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
7-Zip 16.04 (HKLM-x32\...\{23170F69-40C1-2701-1604-000001000000}) (Version: 16.04.00.0 - Igor Pavlov)
7-Zip 9.20 (HKLM-x32\...\7-Zip) (Version: - )
AC-3 ACM Codec 2.2 (HKLM-x32\...\AC3ACM) (Version: 2.2 - fccHandler)
AC-3 ACM Codec x64 2.2 (HKLM\...\AC3ACM) (Version: 2.2 - fccHandler)
Acer Backup Manager (HKLM-x32\...\InstallShield_{9DDDF20E-9FD1-4434-A43E-E7889DBC9420}) (Version: 4.0.0.0071 - NTI Corporation)
Acer Device Fast-lane (HKLM\...\{3F62D2FD-13C1-49A2-8B5D-47623D9460D7}) (Version: 1.00.3011 - Acer Incorporated)
Acer Power Management (HKLM\...\{91F52DE4-B789-42B0-9311-A349F10E5479}) (Version: 7.00.3011 - Acer Incorporated)
Acer Recovery Management (HKLM\...\{07F2005A-8CAC-4A4B-83A2-DA98A722CA61}) (Version: 6.00.3015 - Acer Incorporated)
AcerCloud (HKLM-x32\...\{A5AD0B17-F34D-49BE-A157-C8B3D52ACD13}) (Version: 2.01.3125 - Acer Incorporated)
AcerCloud Docs (HKLM-x32\...\{CA4FE8B0-298C-4E5D-A486-F33B126D6A0A}) (Version: 1.00.3204 - Acer Incorporated)
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 15.023.20070 - Adobe Systems Incorporated)
Adobe AIR (HKLM-x32\...\Adobe AIR) (Version: 24.0.0.180 - Adobe Systems Incorporated)
Adobe Flash Player 24 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 24.0.0.221 - Adobe Systems Incorporated)
Akrem studio (HKLM-x32\...\Akrem studio_Akrem studio) (Version: - )
Arduino (HKLM-x32\...\Arduino) (Version: 1.6.4 - Arduino LLC)
Avast Internet Security (HKLM-x32\...\Avast Antivirus) (Version: 17.2.2288 - AVAST Software)
AVG (HKLM\...\AvgZen) (Version: 1.113.2.50020 - AVG Technologies)
AVG PC TuneUp (HKLM-x32\...\AVG PC TuneUp) (Version: 16.74.2.60831 - AVG Technologies)
AVG PC TuneUp (x32 Version: 16.74.1 - AVG Technologies) Hidden
AVG Web TuneUp (HKLM-x32\...\AVG Web TuneUp) (Version: 4.3.7.452 - AVG Technologies)
AVG Zen (Version: 1.113.1 - AVG Technologies) Hidden
Backup Manager v4 (x32 Version: 4.0.0.0071 - NTI Corporation) Hidden
BlazeHDTV 6.0 (HKLM-x32\...\BlazeHDTV 6.0_is1) (Version: - )
Broadcom 802.11 Network Adapter (HKLM\...\Broadcom 802.11 Network Adapter) (Version: 6.30.59.96 - Broadcom Corporation)
Broadcom Card Reader Driver Installer (HKLM\...\{F0A7DF2F-0BE0-470F-B137-D7A19F977189}) (Version: 15.4.7.1 - Broadcom Corporation)
Brother MFL-Pro Suite DCP-7055W (HKLM-x32\...\{3ACCCFB3-7B17-4E9F-ACB0-46868FCD4487}) (Version: 1.1.3.0 - Brother Industries, Ltd.)
clear.fi Media (HKLM-x32\...\{E9AF1707-3F3A-49E2-8345-4F2D629D0876}) (Version: 2.01.3112 - Acer Incorporated)
clear.fi Photo (HKLM-x32\...\{B5AD89F2-03D3-4206-8487-018298007DD0}) (Version: 2.01.3109 - Acer Incorporated)
clear.fi SDK - Video 2 (x32 Version: 2.1.2128 - CyberLink Corp.) Hidden
clear.fi SDK- Movie 2 (x32 Version: 2.1.2112 - CyberLink Corp.) Hidden
Corel Graphics - Windows Shell Extension (HKLM\...\_{B16BB34E-B7BF-47DF-8658-BEABCF40CD6A}) (Version: 16.1.0.843 - Corel Corporation)
Corel Graphics - Windows Shell Extension (Version: 16.1.843 - Corel Corporation) Hidden
Corel Graphics - Windows Shell Extension 32 Bit (Version: 16.1.843 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Capture (x64) (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Common (x64) (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Connect (x64) (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Custom Data (x64) (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - CZ (x64) (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Draw (x64) (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Filters (x64) (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - FontNav (x64) (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - IPM (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - PHOTO-PAINT (x64) (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Redist (x64) (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Setup Files (x64) (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - VBA (x64) (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - VideoBrowser (x64) (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - VSTA (x64) (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 - Writing Tools (x64) (Version: 16.1 - Corel Corporation) Hidden
CorelDRAW Graphics Suite X6 (64-Bit) (HKLM\...\_{BDBFAC49-8877-472F-876B-75ADB7DBC955}) (Version: 16.1.0.843 - Corel Corporation)
CorelDRAW Graphics Suite X6 (x64) (Version: 16.1 - Corel Corporation) Hidden
CyberLink MediaEspresso 6.5 (HKLM-x32\...\InstallShield_{E3739848-5329-48E3-8D28-5BBD6E8BE384}) (Version: 6.5.3318_45364 - CyberLink Corp.)
CzechRep_by_Dave_Luv (HKLM-x32\...\CzechRep_by_Dave_Luv) (Version: - )
D3DX10 (x32 Version: 15.4.2368.0902 - Microsoft) Hidden
DAEMON Tools Lite (HKLM-x32\...\DAEMON Tools Lite) (Version: 4.49.1.0356 - Disc Soft Ltd)
DesignPro 5 (HKLM-x32\...\InstallShield_{F82C6574-AD88-4B40-A432-970BC77F1BD2}) (Version: 5.5.708 - Avery Dennison)
DesignPro 5 (x32 Version: 5.5.708 - Avery Dennison) Hidden
ELAN Touchpad 11.15.0.18_X64 (HKLM\...\Elantech) (Version: 11.15.0.18 - ELAN Microelectronic Corp.)
Electrum (HKU\S-1-5-21-3621977129-2832859686-462106091-1001\...\Electrum) (Version: 2.7.18 - Electrum Technologies GmbH)
eM Client (HKLM-x32\...\{2A4CAF55-4B18-4B61-BE9E-94A54209F547}) (Version: 7.0.27943.0 - eM Client Inc.)
FileZilla Client 3.24.1 (HKLM-x32\...\FileZilla Client) (Version: 3.24.1 - Tim Kosse)
FMW 1 (Version: 1.143.3 - AVG Technologies) Hidden
Fotogalerie (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
FOTOKNIHY ONLINE (HKLM-x32\...\FOTOKNIHY ONLINE_FOTOKNIHY ONLINE) (Version: - )
Freemake Video Converter verze 4.1.4 (HKLM-x32\...\Freemake Video Converter_is1) (Version: 4.1.4 - Ellora Assets Corporation)
GOM Player (HKLM-x32\...\GOM Player) (Version: 2.3.12.5268 - Gretech Corporation)
Google Drive (HKLM-x32\...\{07A12123-B717-496B-B471-48AF6407B433}) (Version: 1.32.4066.7445 - Google, Inc.)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 56.0.2924.87 - Google Inc.)
Google Update Helper (x32 Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
Identity Card (HKLM-x32\...\{3D9CB654-99AD-4301-89C6-0D12A790767C}) (Version: 2.00.3004 - Acer Incorporated)
Intel(R) C++ Redistributables for Windows* on Intel(R) 64 (HKLM-x32\...\{D2437C5C-2D8C-40D2-8059-689AD7239FA3}) (Version: 11.1.048 - Intel Corporation)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.1.0.1252 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 9.17.10.3347 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM-x32\...\{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}) (Version: 11.5.4.1001 - Intel Corporation)
Intel(R) SDK for OpenCL - CPU Only Runtime Package (HKLM-x32\...\{FCB3772C-B7D0-4933-B1A9-3707EBACC573}) (Version: 2.0.0.37149 - Intel Corporation)
Java 8 Update 111 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180111F0}) (Version: 8.0.1110.14 - Oracle Corporation)
K-Lite Mega Codec Pack 11.7.5 (HKLM-x32\...\KLiteCodecPack_is1) (Version: 11.7.5 - )
Launch Manager (HKLM-x32\...\LManager) (Version: 7.0.10 - Acer Inc.)
Light Image Resizer 4.0.4.3 (HKLM-x32\...\{EBE030DD-D404-4D92-85E9-8C3624820808}_is1) (Version: 4.0.4.3 - ObviousIdea)
Live Updater (HKLM-x32\...\{EE26E302-876A-48D9-9058-3129E5B99999}) (Version: 2.00.8102 - Acer Incorporated)
Microsoft Expression Web 4 (HKLM-x32\...\Web_4.0.1460.0) (Version: 4.0.1460.0 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50901.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM-x32\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}) (Version: 8.0.59192 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 - ENU (HKLM-x32\...\{AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual Studio Tools for Applications 2.0 Runtime (HKLM-x32\...\{299C0434-4F4E-341F-A916-4E07AEB35E79}) (Version: 9.0.30729 - Microsoft Corporation)
Movie Maker (x32 Version: 16.4.3528.0331 - Microsoft Corporation) Hidden
Mozilla Firefox 52.0 (x86 cs) (HKLM-x32\...\Mozilla Firefox 52.0 (x86 cs)) (Version: 52.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 52.0.0.6270 - Mozilla)
MSVC90_x64 (Version: 1.0.1.2 - Nokia) Hidden
MSVC90_x86 (x32 Version: 1.0.1.2 - Nokia) Hidden
MSXML 4.0 SP3 Parser (HKLM-x32\...\{196467F1-C11F-4F76-858B-5812ADC83B94}) (Version: 4.30.2100.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM-x32\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MyHeritage Family Tree Builder (HKLM-x32\...\Family Tree Builder) (Version: 8.0.0.8309 - MyHeritage.com)
Noční můra z hlubin: Volání Sirény (HKU\S-1-5-21-3621977129-2832859686-462106091-1001\...\Noční můra z hlubin: Volání Sirény) (Version: 1.0.0.0 - Alawar Entertainment Inc.)
Notepad++ (HKLM-x32\...\Notepad++) (Version: 6.9.1 - Notepad++ Team)
NVIDIA PhysX v8.05.26 (HKLM-x32\...\{11AE6807-50D2-4F59-82B3-2C3E695E94C2}) (Version: 8.05.26 - NVIDIA Corporation)
Office Addin (HKLM-x32\...\{6D2BBE1D-E600-4695-BA37-0B0E605542CC}) (Version: 2.01.3202 - Acer)
Office Addin 2003 (HKLM-x32\...\{1FCC073B-CC01-4443-AD20-E559F66E6E83}) (Version: 2.01.3202 - Acer)
OpenOffice 4.0.1 (HKLM-x32\...\{220C463A-2890-4C7F-B97C-C49FE175B849}) (Version: 4.01.9714 - Apache Software Foundation)
PlayDance verze 1.0.980 (HKLM-x32\...\{EC8642E4-7CE3-4379-9114-6E34DEF98D58}_is1) (Version: 1.0.980 - VISO SPORT s.r.o.)
PROFIT 2017.02 (HKLM-x32\...\{670A9A20-E29D-40C3-9937-2AFF89C3AC82}_is1) (Version: - LPsoft)
ProgDVB (HKLM-x32\...\ProgDVB) (Version: 7.x - Prog)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.6657 - Realtek Semiconductor Corp.)
SafeZone Stable 3.55.2393.561 (x32 Version: 3.55.2393.561 - Avast Software) Hidden
Shared C Run-time for x64 (HKLM\...\{EF79C448-6946-4D71-8134-03407888C054}) (Version: 10.0.0 - McAfee)
StepMania (remove only) (HKLM-x32\...\StepMania) (Version: - )
StepMania 5 (HKLM-x32\...\StepMania 5) (Version: 5.0.12 - StepMania)
Visual Studio 2005 Tools for Office Second Edition Runtime (HKLM-x32\...\Microsoft Visual Studio 2005 Tools for Office Runtime) (Version: - Microsoft Corporation)
Visual Studio 2012 x64 Redistributables (HKLM\...\{8C775E70-A791-4DA8-BCC3-6AB7136F4484}) (Version: 14.0.0.1 - AVG Technologies)
Visual Studio 2012 x86 Redistributables (HKLM-x32\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
Visual Studio Tools for the Office system 3.0 Runtime (HKLM-x32\...\Visual Studio Tools for the Office system 3.0 Runtime) (Version: - Microsoft Corporation)
Visual Studio Tools for the Office system 3.0 Runtime Service Pack 1 (KB949258) (HKLM-x32\...\{8FB53850-246A-3507-8ADE-0060093FFEA6}.KB949258) (Version: 1 - Microsoft Corporation)
VLC Codec Pack 2.0.5 (HKLM-x32\...\VLC - Codec Pack) (Version: 2.0.5 - VLC Codec Pack)
Windows Live Essentials (HKLM-x32\...\WinLiveSuite) (Version: 16.4.3528.0331 - Microsoft Corporation)
WinRAR 5.11 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.11.0 - win.rar GmbH)
World of Tanks (HKU\S-1-5-21-3621977129-2832859686-462106091-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812eu}_is1) (Version: - Wargaming.net)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {07A00522-35A8-4318-B4F9-58BCA82B4C36} - System32\Tasks\{181CE5D4-D103-47A7-9F24-61B5D5C555D7} => pcalua.exe -a C:\Users\Slamak\Downloads\DDRinstall.exe -d C:\Users\Slamak\Downloads
Task: {0C92BE8B-8802-4838-A651-3E1FED69C3A7} - \WPD\SqmUpload_S-1-5-21-3621977129-2832859686-462106091-1001 -> No File <==== ATTENTION
Task: {1350A46E-6849-45AB-89F5-E8828B4AF74A} - System32\Tasks\AVG EUpdate Task => avgsetupx.exe
Task: {17660AAA-27C1-41C3-BAC5-ECE9E2DAFC4F} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-12-19] (Adobe Systems Incorporated)
Task: {22836ED9-6809-4E92-885D-2A28D0D37D49} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-26] (Google Inc.)
Task: {2295B629-0AA4-49AC-AC9A-EB6EF400D834} - System32\Tasks\SafeZone scheduled Autoupdate 1453580228 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2017-02-15] (Avast Software)
Task: {2B7492F1-AF9E-41CE-B94C-BC7B98EAEAEB} - System32\Tasks\ALU => C:\Program Files (x86)\Acer\Live Updater\updater.exe [2016-07-06] ()
Task: {2C3BA65C-6C05-412E-9958-FB59802B8A7D} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {30CEB371-1E08-4188-8984-BCBF880E86C5} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2017-02-28] (Adobe Systems Incorporated)
Task: {32FD5AA6-2DB8-4649-80F0-3D4AC5D8902A} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2017-01-28] (AVAST Software)
Task: {352E6CA0-7314-4DF4-89C4-682368D80D57} - System32\Tasks\Microsoft\Windows\Workplace Join\Automatic-Workplace-Join => %SystemRoot%\System32\AutoWorkplace.exe
Task: {39A9F29C-FF8C-4356-AE0E-F09700CA4A9C} - System32\Tasks\Program k provádění aktualizací online Adobe => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-12-19] (Adobe Systems Incorporated)
Task: {3A94C1D7-491B-4481-8490-783C66B364D0} - System32\Tasks\ALUAgent => C:\Program Files (x86)\Acer\Live Updater\liveupdater_agent.exe [2016-07-06] ()
Task: {3DF40C49-D25A-484D-B896-B4C162C57ACA} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {3F707190-9AF4-470E-9D7F-7B56FAA62CAB} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {40A9C6E6-7422-4660-9971-5FC1201A25FC} - System32\Tasks\Avast Emergency Update => C:\Program Files\AVAST Software\Avast\AvEmUpdate.exe [2017-03-02] (AVAST Software)
Task: {585EC883-F50D-4365-8BB2-421EA561C8F9} - System32\Tasks\DeviceDetector => C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe [2012-09-20] (CyberLink)
Task: {5CA3F87C-0732-4C56-8776-EC268B7CE83C} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {603C1784-2BBA-4721-9C6D-461FBDC03746} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {61BD3CD7-ABE6-444C-AAA2-C5A66B123018} - System32\Tasks\eM Client Database Backup => C:\Program Files (x86)\eM Client\DbBackup.exe [2016-10-21] ()
Task: {6C6256BD-8C35-4E21-B9EC-1B8157A45CCC} - System32\Tasks\{EDB6CCAF-7385-4F0D-81BB-3907F76463EA} => pcalua.exe -a "C:\Program Files (x86)\WildGames\Uninstall.exe"
Task: {73204F3A-D3BD-4274-BC78-9742E0156205} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {7510DD46-9F1F-47BC-AC21-68BF7D20F90F} - System32\Tasks\{46AC75F9-7279-44FE-B6C8-0D1DB47FE976} => pcalua.exe -a C:\Users\Slamak\Downloads\AZ_AlbumMaker_setup(1).exe -d C:\Users\Slamak\Downloads
Task: {787CA109-09DA-4015-9AA6-2E15CA21A204} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {880E63BE-025F-4980-99B1-BE34455CFCF1} - System32\Tasks\{1A614DCE-B283-40EF-8D8F-3F54D8AD6629} => pcalua.exe -a "C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe" -c scenario=install baseurl="C:\Program Files\Microsoft Office 15" platform=x86 version=15.0.4719.1002 culture=cs-cz productstoremove=O365HomePremRetail_cs-cz_x-none
Task: {A3F8FC3E-F268-45C5-8D4E-78B70C46CCE7} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {C71FF138-48D9-46A8-8610-ADB2640C55D5} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-08-26] (Google Inc.)
Task: {C836D59B-3725-4582-A701-1D3602BD53BD} - System32\Tasks\avastBCLRestartS-1-5-21-3621977129-2832859686-462106091-1001 => Firefox.exe
Task: {D83AE1A5-FF67-4E3C-8DA7-602DF40ECF18} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {E2645371-307B-4252-8393-D1F4C609C258} - System32\Tasks\Java Platform SE Auto Updater => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-09-22] (Oracle Corporation)
Task: {E404C4BD-2ED7-422E-8E53-5374AFFC1D98} - \Microsoft\Windows\Setup\gwx\refreshgwxconfig -> No File <==== ATTENTION
Task: {E79DD6A7-60B0-4E62-BBCB-2D65C360B4B9} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2017-02-24] (Microsoft Corporation)
Task: {F477C497-7AE6-4D99-ABC8-1ED9726E8AF6} - System32\Tasks\Power Management => C:\Program Files\Acer\Acer Power Management\ePowerTray.exe [2012-10-23] (Acer Incorporated)
Task: {F98005B3-AB4A-4501-9986-C1D99B05FF7F} - System32\Tasks\GEN_Interval => C:\Users\Slamak\AppData\Local\Programs\GEN\GEN.exe [2016-12-16] ( ) <==== ATTENTION
Task: {FE8F005A-A304-43BF-90EB-C97D9CA429BD} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
Shortcut: C:\Users\Slamak\Favorites\Acer\Acer.lnk -> hxxp://www.acer.com
Shortcut: C:\Users\Slamak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StepMania\Go To StepMania web site.lnk -> hxxp://www.stepmania.com
==================== Loaded Modules (Whitelisted) ==============
2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-12-14 07:36 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2017-03-02 23:49 - 2017-03-02 23:49 - 00981576 _____ () C:\PROGRAM FILES (X86)\AVG WEB TUNEUP\WTUSYSTEMSUPPORT.EXE
2016-12-14 07:36 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-09-21 22:03 - 2016-09-07 05:56 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2017-01-11 20:43 - 2016-12-21 08:09 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2017-01-11 20:43 - 2016-12-21 07:54 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2017-01-11 20:43 - 2016-12-21 07:48 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2017-01-11 20:43 - 2016-12-21 07:48 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2017-01-11 20:43 - 2016-12-21 07:48 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2017-01-11 20:43 - 2016-12-21 07:53 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2015-06-01 21:00 - 2017-03-09 01:16 - 00112264 _____ () C:\WINDOWS\SYSTEM32\IccLibDll_x64.dll
2013-02-24 21:04 - 2013-02-24 21:04 - 00704008 _____ () C:\WINDOWS\SYSWOW64\C2MP\TRAYMENU.EXE
2017-03-02 23:49 - 2017-03-02 23:49 - 02183752 _____ () C:\PROGRAM FILES (X86)\AVG WEB TUNEUP\VPROT.EXE
2017-02-15 15:51 - 2017-02-15 15:51 - 03865088 _____ () C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1702.312.0_x64__8wekyb3d8bbwe\Calculator.exe
2017-03-02 23:49 - 2017-03-02 23:49 - 00981576 _____ () C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe
2012-11-03 01:38 - 2012-11-03 01:38 - 00465384 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\sqlite3.dll
2012-11-03 01:37 - 2012-11-03 01:37 - 00125504 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\MailConverter32.dll
2012-11-03 01:38 - 2012-11-03 01:38 - 00155712 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\VolumeSnapshot.dll
2012-11-03 01:37 - 2012-11-03 01:37 - 00118336 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\Online.dll
2012-11-03 01:37 - 2012-11-03 01:37 - 01081408 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\ACE.dll
2012-11-03 01:37 - 2012-11-03 01:37 - 00052288 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\OsSettingPort.dll
2012-11-03 01:37 - 2012-11-03 01:37 - 00727616 _____ () C:\Program Files (x86)\NTI\Acer Backup Manager\OutlookShadow.dll
2017-03-02 22:45 - 2017-03-02 22:44 - 48920064 _____ () C:\Program Files (x86)\AVG\UiDll\2623\libcef.dll
2013-02-24 21:04 - 2013-02-24 21:04 - 00704008 _____ () C:\Windows\SysWOW64\C2MP\TrayMenu.exe
2017-03-02 19:44 - 2017-03-02 19:44 - 00170216 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-07-03 13:08 - 2016-07-03 13:08 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2017-03-02 19:43 - 2017-03-02 19:43 - 00290352 _____ () C:\Program Files\AVAST Software\Avast\gaming_mode_ui.dll
2017-03-02 19:44 - 2017-03-02 19:44 - 00655056 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2017-03-02 23:49 - 2017-03-02 23:49 - 02183752 _____ () C:\Program Files (x86)\AVG Web TuneUp\vprot.exe
2013-02-08 21:09 - 2012-06-25 18:41 - 01198912 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2016-12-14 07:36 - 2016-12-09 11:29 - 02681200 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\Slamak\Desktop\eli.jpeg:3or4kl4x13tuuug3Byamue2s4b [85]
AlternateDataStreams: C:\Users\Slamak\Desktop\eli.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2013-08-22 14:25 - 2016-09-20 08:13 - 00000828 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-3621977129-2832859686-462106091-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Slamak\AppData\Roaming\Microsoft\Windows Photo Viewer\Tapeta programu Windows Prohlížeč fotografií.jpg
DNS Servers: 10.154.240.3 - 10.154.240.66
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
HKLM\...\StartupApproved\StartupFolder: => "Acer Backup Manager Tray.lnk"
HKLM\...\StartupApproved\StartupFolder: => "McAfee Security Scan Plus.lnk"
HKLM\...\StartupApproved\Run: => "ETDCtrl"
HKLM\...\StartupApproved\Run: => "AdobeAAMUpdater-1.0"
HKLM\...\StartupApproved\Run: => "WindowsDefender"
HKLM\...\StartupApproved\Run32: => "mcui_exe"
HKLM\...\StartupApproved\Run32: => "Adobe ARM"
HKLM\...\StartupApproved\Run32: => "SunJavaUpdateSched"
HKLM\...\StartupApproved\Run32: => "Norton Online Backup"
HKLM\...\StartupApproved\Run32: => "RadioController"
HKLM\...\StartupApproved\Run32: => "NtVdmSrv"
HKLM\...\StartupApproved\Run32: => "LManager"
HKLM\...\StartupApproved\Run32: => "Monitor"
HKLM\...\StartupApproved\Run32: => "seznam-listicka-distribuce"
HKLM\...\StartupApproved\Run32: => "ControlCenter4"
HKLM\...\StartupApproved\Run32: => "BrStsMon00"
HKLM\...\StartupApproved\Run32: => "Acrobat Assistant 8.0"
HKLM\...\StartupApproved\Run32: => "ETDCtrl"
HKLM\...\StartupApproved\Run32: => "Family Tree Builder Update"
HKLM\...\StartupApproved\Run32: => "Wondershare Helper Compact.exe"
HKU\S-1-5-21-3621977129-2832859686-462106091-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-3621977129-2832859686-462106091-1001\...\StartupApproved\Run: => "DAEMON Tools Lite"
HKU\S-1-5-21-3621977129-2832859686-462106091-1001\...\StartupApproved\Run: => "cz.seznam.software.autoupdate"
HKU\S-1-5-21-3621977129-2832859686-462106091-1001\...\StartupApproved\Run: => "cz.seznam.software.szndesktop"
HKU\S-1-5-21-3621977129-2832859686-462106091-1001\...\StartupApproved\Run: => "CCleaner Monitoring"
HKU\S-1-5-21-3621977129-2832859686-462106091-1001\...\StartupApproved\Run: => "Adobe Acrobat Synchronizer"
HKU\S-1-5-21-3621977129-2832859686-462106091-1001\...\StartupApproved\Run: => "GoogleDriveSync"
HKU\S-1-5-21-3621977129-2832859686-462106091-1001\...\StartupApproved\Run: => "ProgLauncher"
HKU\S-1-5-21-3621977129-2832859686-462106091-1001\...\StartupApproved\Run: => "GEN"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{DA525EAC-6852-482F-AA63-74E18CFA687B}] => (Allow) %systemroot%\system32\alg.exe
FirewallRules: [{983CF36B-CB3D-4385-971B-FD79973B6783}] => (Allow) LPort=1900
FirewallRules: [{C20889E0-6A14-404A-BE8A-6309D99072A4}] => (Allow) LPort=2869
FirewallRules: [{9431EEC7-ED77-47CF-A15D-FF8F6E28B0B1}] => (Allow) C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
FirewallRules: [UDP Query User{1EF1063B-344D-4257-81B2-F94ECA4C15BB}C:\program files (x86)\java\jre7\bin\java.exe] => (Block) C:\program files (x86)\java\jre7\bin\java.exe
FirewallRules: [TCP Query User{54DC1741-7570-4420-B713-C0B174C039A9}C:\program files (x86)\java\jre7\bin\java.exe] => (Block) C:\program files (x86)\java\jre7\bin\java.exe
FirewallRules: [{3BCF9347-E346-46E0-B33F-A4BC67D2A2EF}] => (Allow) E:\xampp\mysql\bin\mysqld.exe
FirewallRules: [{064AD829-5C27-47EF-AE3D-2FC9FA0C2312}] => (Allow) E:\xampp\mysql\bin\mysqld.exe
FirewallRules: [{7B39F568-61F0-4193-875D-D29EFB358C9F}] => (Allow) E:\xampp\apache\bin\httpd.exe
FirewallRules: [{13F9C526-59E9-4DE2-BA2C-2320D4C8DBD7}] => (Allow) E:\xampp\apache\bin\httpd.exe
FirewallRules: [UDP Query User{99F5D564-1C52-4ED1-90FF-F546A28BC91E}E:\xampp\apache\bin\httpd.exe] => (Allow) E:\xampp\apache\bin\httpd.exe
FirewallRules: [TCP Query User{4CD18BA7-7FEA-4FC5-9849-F5C422EECF5C}E:\xampp\apache\bin\httpd.exe] => (Allow) E:\xampp\apache\bin\httpd.exe
FirewallRules: [UDP Query User{209C1F0F-6329-458A-B4A6-7DD85D1F1A77}E:\xampp\mysql\bin\mysqld.exe] => (Allow) E:\xampp\mysql\bin\mysqld.exe
FirewallRules: [TCP Query User{A9789E06-29D9-4BCA-AC6E-1484948C3FFD}E:\xampp\mysql\bin\mysqld.exe] => (Allow) E:\xampp\mysql\bin\mysqld.exe
FirewallRules: [UDP Query User{76C5B11D-E3B1-4EA6-9084-3A45E83D0B0E}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [TCP Query User{54138E86-28AE-4ED8-8835-64438D0A2B9D}C:\program files (x86)\java\jre7\bin\javaw.exe] => (Block) C:\program files (x86)\java\jre7\bin\javaw.exe
FirewallRules: [{7C0852DB-1D41-4918-AFCA-448A793918F7}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\ccd.exe
FirewallRules: [{E2CD2A1C-03FB-455B-9231-AC5C53314E76}] => (Allow) C:\Program Files (x86)\Acer\Acer Cloud\ccd.exe
FirewallRules: [{9842AC32-6485-453D-8FFC-A38E68AE5A84}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\WindowsUpnp.exe
FirewallRules: [{49D6C8F0-2D7A-42CB-86BB-547F812FEF5C}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\WindowsUpnp.exe
FirewallRules: [{E8C9F16C-DD0C-45EC-B7CE-D1FA42A123A6}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\DMCDaemon.exe
FirewallRules: [{B98B703E-E1A4-4826-A256-1E06246CFF86}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Photo\DMCDaemon.exe
FirewallRules: [{4438A42E-CA01-487A-A81F-96AD350C6535}] => (Allow) C:\Program Files (x86)\Acer\clear.fi SDK21\Video\VideoPlayer.exe
FirewallRules: [{A85D8387-645E-44E9-94E1-34AA456EB606}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\WindowsUpnpMV.exe
FirewallRules: [{BFCFDD45-68EB-4105-8726-73306E3B622A}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\WindowsUpnpMV.exe
FirewallRules: [{33049DF9-DBBD-4769-9505-68649786D112}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\DMCDaemon.exe
FirewallRules: [{1DCA56D4-AD07-48B8-8297-ABD1F86884C0}] => (Allow) C:\Program Files (x86)\Acer\clear.fi Media\DMCDaemon.exe
FirewallRules: [{DDC7E40F-1333-444F-B1B6-E83D9E46BDD7}] => (Allow) C:\Program Files (x86)\NTI\Acer Backup Manager\FileExplorer.exe
FirewallRules: [{0765CE9F-2F1D-46EF-BA2D-8035F6F32525}] => (Allow) C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
FirewallRules: [{787E5484-3AEB-4774-A241-823C0F3D7FC3}] => (Allow) C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManager.exe
FirewallRules: [TCP Query User{BE1DCC74-2862-4763-B8E4-73A2264E94C1}C:\program files (x86)\java\jre7\bin\java.exe] => (Block) C:\program files (x86)\java\jre7\bin\java.exe
FirewallRules: [UDP Query User{5CEF367C-579E-4CA3-8269-AA0A5F195804}C:\program files (x86)\java\jre7\bin\java.exe] => (Block) C:\program files (x86)\java\jre7\bin\java.exe
FirewallRules: [{93A5B1E3-0F5F-41E7-AEED-71D9A29FE05E}] => (Allow) LPort=54925
FirewallRules: [{ED95B026-8EE2-48BA-A20C-78F41E095F3D}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{2B889CF8-37E5-4CC8-A046-2198B81E3151}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{B3F197BA-31E7-477E-9BB3-4180D5FEAA98}] => (Allow) C:\Program Files (x86)\Hry.cz\Nightmares from the Deep The Sirens Call\Nocnimurazhlubin_VolaniSireny.exe
FirewallRules: [TCP Query User{82F58A0E-8AC8-483F-85FE-1DD266BB7CF0}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [UDP Query User{328DF6A7-3A5F-49FD-9071-2666B4016B18}C:\program files (x86)\mozilla firefox\firefox.exe] => (Block) C:\program files (x86)\mozilla firefox\firefox.exe
FirewallRules: [{B1029764-1F37-4419-9554-D6C613B735F8}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{EA82611E-15D4-4328-8C80-B987426B92D8}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
FirewallRules: [{63BEB568-CDE7-4A80-98B3-911641C9829E}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe
FirewallRules: [{30CB0268-27E1-4B48-B980-938917BA621B}] => (Allow) C:\Games\World_of_Tanks\WoTLauncher.exe
FirewallRules: [{FE085ABC-22CA-4390-8736-2CA26E883E36}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe
FirewallRules: [{952311B2-4BB1-4F48-912D-75986740EF7F}] => (Allow) C:\Games\World_of_Tanks\worldoftanks.exe
FirewallRules: [{6853868E-3294-4265-B6FC-0B31B1EEAF5A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
FirewallRules: [{F6F4E9A0-1709-4F31-9BD2-A1E011E8D7EE}] => (Allow) C:\Program Files\AVAST Software\SZBrowser\3.55.2393.561\SZBrowser.exe
==================== Restore Points =========================
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (03/09/2017 01:37:49 PM) (Source: VSS) (EventID: 12292) (User: )
Description: Chyba služby Stínová kopie svazků: Při vytváření třídy zprostředkovatele stínové kopie modelu COM s identifikátorem CLSID {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} [0x80070422, Zvolenou službu nelze spustit, protože není povolena nebo s ní není spojeno žádné povolené zařízení.
] došlo k chybě.
Operace:
Získat rozhraní umožňující volání pro tohoto zprostředkovatele
Zobrazit seznam rozhraní pro všechny zprostředkovatele podporující tento kontext
Dotaz na stínové kopie
Kontext:
ID zprostředkovatele: {b5946137-7b9f-4925-af80-51abd60b20d5}
ID třídy: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
Kontext snímku: 13
Kontext snímku: 13
Kontext spuštění: Coordinator
Error: (03/09/2017 01:37:49 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} a názvem SW_PROV nelze spustit. [0x80070422, Zvolenou službu nelze spustit, protože není povolena nebo s ní není spojeno žádné povolené zařízení.
]
Operace:
Získat rozhraní umožňující volání pro tohoto zprostředkovatele
Zobrazit seznam rozhraní pro všechny zprostředkovatele podporující tento kontext
Dotaz na stínové kopie
Kontext:
ID zprostředkovatele: {b5946137-7b9f-4925-af80-51abd60b20d5}
ID třídy: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
Kontext snímku: 13
Kontext snímku: 13
Kontext spuštění: Coordinator
Error: (03/09/2017 01:08:20 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\WINDOWS\SYSTEM32\SVCHOST.EXE -k netsvcs; Popis = Windows Update; Chyba = 0x8004230f).
Error: (03/09/2017 01:08:15 PM) (Source: VSS) (EventID: 12292) (User: )
Description: Chyba služby Stínová kopie svazků: Při vytváření třídy zprostředkovatele stínové kopie modelu COM s identifikátorem CLSID {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} [0x80070422, Zvolenou službu nelze spustit, protože není povolena nebo s ní není spojeno žádné povolené zařízení.
] došlo k chybě.
Operace:
Získat rozhraní umožňující volání pro tohoto zprostředkovatele
Zkontrolovat, zda poskytovatel podporuje svazek
Přidat svazek k sadě stínových kopií
Kontext:
ID zprostředkovatele: {b5946137-7b9f-4925-af80-51abd60b20d5}
ID třídy: {00000000-0000-0000-0000-000000000000}
Kontext snímku: 4194317
Kontext spuštění: Coordinator
ID zprostředkovatele: {b5946137-7b9f-4925-af80-51abd60b20d5}
Název svazku: \\?\Volume{1e8a02e0-dd41-4ffc-806f-931e1bf7dbfa}\
Kontext spuštění: Coordinator
Error: (03/09/2017 01:08:15 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} a názvem SW_PROV nelze spustit. [0x80070422, Zvolenou službu nelze spustit, protože není povolena nebo s ní není spojeno žádné povolené zařízení.
]
Operace:
Získat rozhraní umožňující volání pro tohoto zprostředkovatele
Zkontrolovat, zda poskytovatel podporuje svazek
Přidat svazek k sadě stínových kopií
Kontext:
ID zprostředkovatele: {b5946137-7b9f-4925-af80-51abd60b20d5}
ID třídy: {00000000-0000-0000-0000-000000000000}
Kontext snímku: 4194317
Kontext spuštění: Coordinator
ID zprostředkovatele: {b5946137-7b9f-4925-af80-51abd60b20d5}
Název svazku: \\?\Volume{1e8a02e0-dd41-4ffc-806f-931e1bf7dbfa}\
Kontext spuštění: Coordinator
Error: (03/09/2017 01:07:50 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Spyware Terminator Driver Filter.
System Error:
Systém nemůže nalézt uvedený soubor.
.
Error: (03/09/2017 01:07:50 PM) (Source: Microsoft-Windows-CAPI2) (EventID: 513) (User: )
Description: Služba Šifrování selhala při volání OnIdentity() v objektu System Writer.
Details:
AddLegacyDriverFiles: Unable to back up image of binary Protokol Microsoft LLDP (Link-Layer Discovery Protocol).
System Error:
Přístup byl odepřen.
.
Error: (03/09/2017 01:07:10 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny GetProviderMgmtInterface došlo k neočekávané chybě. hr= 0x8004230f, Při pokusu o zpracování určené operace došlo k neočekávané chybě zprostředkovatele stínové kopie.
.
Error: (03/09/2017 01:07:10 PM) (Source: VSS) (EventID: 12292) (User: )
Description: Chyba služby Stínová kopie svazků: Při vytváření třídy zprostředkovatele stínové kopie modelu COM s identifikátorem CLSID {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} [0x80070422, Zvolenou službu nelze spustit, protože není povolena nebo s ní není spojeno žádné povolené zařízení.
] došlo k chybě.
Operace:
Získat rozhraní umožňující volání pro tohoto zprostředkovatele
Získávání rozhraní správy zprostředkovatele
Kontext:
ID zprostředkovatele: {b5946137-7b9f-4925-af80-51abd60b20d5}
ID třídy: {00000000-0000-0000-0000-000000000000}
Kontext snímku: -1
ID zprostředkovatele: {b5946137-7b9f-4925-af80-51abd60b20d5}
Error: (03/09/2017 01:07:10 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} a názvem SW_PROV nelze spustit. [0x80070422, Zvolenou službu nelze spustit, protože není povolena nebo s ní není spojeno žádné povolené zařízení.
]
Operace:
Získat rozhraní umožňující volání pro tohoto zprostředkovatele
Získávání rozhraní správy zprostředkovatele
Kontext:
ID zprostředkovatele: {b5946137-7b9f-4925-af80-51abd60b20d5}
ID třídy: {00000000-0000-0000-0000-000000000000}
Kontext snímku: -1
ID zprostředkovatele: {b5946137-7b9f-4925-af80-51abd60b20d5}
System errors:
=============
Error: (03/09/2017 12:45:51 PM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {784E29F4-5EBE-4279-9948-1E8FE941646D} se v daném časovém limitu neregistroval u služby DCOM.
Error: (03/09/2017 12:43:22 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{8D8F4F83-3594-4F07-8369-FC3C3CAE4919}
a APPID
{F72671A9-012C-4725-9D2F-2A4D32D65169}
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (03/09/2017 12:43:05 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby RfButtonDriverService bylo dosaženo časového limitu (30000 ms).
Error: (03/09/2017 12:40:06 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (7:31:16, 09.03.2017) bylo neočekávané.
Error: (03/09/2017 07:35:14 AM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (03/09/2017 06:37:48 AM) (Source: DCOM) (EventID: 10010) (User: NT AUTHORITY)
Description: Server {784E29F4-5EBE-4279-9948-1E8FE941646D} se v daném časovém limitu neregistroval u služby DCOM.
Error: (03/08/2017 11:46:25 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby Appinfo bylo dosaženo časového limitu (30000 ms).
Error: (03/08/2017 11:44:30 PM) (Source: DCOM) (EventID: 10010) (User: SlamakAcer)
Description: Server App se v daném časovém limitu neregistroval u služby DCOM.
Error: (03/08/2017 11:43:08 PM) (Source: DCOM) (EventID: 10016) (User: NT AUTHORITY)
Description: Nastavení oprávnění specifické pro aplikaci neuděluje oprávnění Místní Aktivace pro serverovou aplikaci COM s identifikátorem CLSID
{D63B10C5-BB46-4990-A94F-E40B9D520160}
a APPID
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
uživateli NT AUTHORITY\SYSTEM (SID: S-1-5-18) z adresy LocalHost (pomocí LRPC) běžící v kontejneru aplikací Není k dispozici – SID (Není k dispozici). Toto oprávnění zabezpečení lze změnit pomocí nástroje správy Služba komponent.
Error: (03/08/2017 11:16:16 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 4003) (User: NT AUTHORITY)
Description: Služba Automatická konfigurace sítě WLAN zjistila při resetování nebo zotavení adaptéru omezené připojení.
Kód: 8 0x0 0x0
==================== Memory info ===========================
Processor: Intel(R) Pentium(R) CPU B960 @ 2.20GHz
Percentage of memory in use: 51%
Total physical RAM: 3909.28 MB
Available physical RAM: 1893.71 MB
Total Virtual: 4613.28 MB
Available Virtual: 2547.96 MB
==================== Drives ================================
Drive c: (Acer) (Fixed) (Total:911.75 GB) (Free:355.94 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: 4B1BB8FD)
Partition: GPT.
==================== End of Addition.txt ============================
Re: Prosím o preventivku
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 08-03-2017
Ran by Slamak (administrator) on SLAMAKACER (09-03-2017 13:30:39)
Running from C:\Users\Slamak\Desktop
Loaded Profiles: Slamak (Available Profiles: Slamak)
Platform: Windows 10 Home Version 1607 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Freemake) C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(Dritek System INC.) C:\Windows\RfBtnSvc64.exe
(arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
(AVG Secure Search) C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.7\ToolbarUpdater.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(CyberLink) C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(Intel Corporation) C:\Windows\System32\SET4086.tmp
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Intel Corporation) C:\Windows\System32\SET4115.tmp
(Intel Corporation) C:\Windows\System32\SET46A7.tmp
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
() C:\Windows\SysWOW64\C2MP\TrayMenu.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
() C:\Program Files (x86)\AVG Web TuneUp\vprot.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
() C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1702.312.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(forum.viry.cz) C:\Users\Slamak\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3242696 2015-10-07] (ELAN Microelectronics Corp.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12503184 2012-06-11] (Realtek Semiconductor)
HKLM-x32\...\Run: [RadioController] => C:\Program Files (x86)\RadioController\RfBtnHelper.exe [111216 2013-02-08] (Dritek System Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [205512 2017-03-02] (AVAST Software)
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [143360 2012-09-06] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3076096 2012-06-06] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [Family Tree Builder Update] => C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe [14517936 2016-07-14] (MyHeritage)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [240400 2016-12-06] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [vProt] => C:\Program Files (x86)\AVG Web TuneUp\vprot.exe [2183752 2017-03-02] ()
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-3621977129-2832859686-462106091-1001\...\Run: [eM Client] => C:\Program Files (x86)\eM Client\MailClient.exe [24742760 2016-10-21] (eM Client s.r.o.)
HKU\S-1-5-21-3621977129-2832859686-462106091-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-3621977129-2832859686-462106091-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [23818360 2016-11-30] (Google)
HKU\S-1-5-21-3621977129-2832859686-462106091-1001\...\Run: [ProgLauncher] => C:\Program Files (x86)\ProgDVB\ProgLauncher.exe [400584 2016-08-26] ()
HKU\S-1-5-21-3621977129-2832859686-462106091-1001\...\Run: [GEN] => C:\Users\Slamak\AppData\Local\Programs\GEN\GEN.exe [520102 2016-12-16] ( )
HKU\S-1-5-21-3621977129-2832859686-462106091-1001\...\MountPoints2: {2da06656-ba23-11e6-bf9c-20898455de28} - "E:\LG_PC_Programs.exe"
IFEO\acpanel_win.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\AcroRd32.exe: [Debugger] "C:\PROGRAM FILES (X86)\AVG\AVG PC TUNEUP\TUAutoReactivator64.EXE"
IFEO\chrome.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\dtlite.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\googledrivesync.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\javacpl.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\javaw.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\javaws.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\myheritage.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\progdvbnet.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\progguide.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\progtv.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\skineditor.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\sptdinst-x64.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\uninstall.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-03-02] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-03-02] (AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Acer Backup Manager Tray.lnk [2012-11-22]
ShortcutTarget: Acer Backup Manager Tray.lnk -> C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe (NTI Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TrayMenu.lnk [2013-11-26]
ShortcutTarget: TrayMenu.lnk -> C:\Windows\SysWOW64\C2MP\TrayMenu.exe ()
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.154.240.3 10.154.240.66
Tcpip\..\Interfaces\{5ebae234-8da9-4cf8-be43-1d89008d74f4}: [DhcpNameServer] 10.154.240.3 10.154.240.66
Tcpip\..\Interfaces\{f77bfe06-ae58-4493-81ba-fffbdc2587a6}: [DhcpNameServer] 10.154.240.3 10.154.240.66
Internet Explorer:
==================
HKU\S-1-5-21-3621977129-2832859686-462106091-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
HKU\S-1-5-21-3621977129-2832859686-462106091-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/?clid=22668
SearchScopes: HKLM -> DefaultScope {6A9BB02B-2030-4929-AE57-F965133B84E3} URL =
SearchScopes: HKLM-x32 -> DefaultScope {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKLM-x32 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3621977129-2832859686-462106091-1001 -> DefaultScope {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3621977129-2832859686-462106091-1001 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3621977129-2832859686-462106091-1001 -> {3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} URL = hxxp://www.mystart.com/results.php?gen=ms&pr=v ... earchTerms}
SearchScopes: HKU\S-1-5-21-3621977129-2832859686-462106091-1001 -> {6A9BB02B-2030-4929-AE57-F965133B84E3} URL =
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll [2016-12-12] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-12-12] (Oracle Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - No File
FireFox:
========
FF ProfilePath: C:\Users\Slamak\AppData\Roaming\Mozilla\Firefox\Profiles\gjyzp0az.default [2017-03-09]
FF user.js: detected! => C:\Users\Slamak\AppData\Roaming\Mozilla\Firefox\Profiles\gjyzp0az.default\user.js [2017-03-02]
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\gjyzp0az.default -> AVG Secure Search
FF DefaultSearchUrl: Mozilla\Firefox\Profiles\gjyzp0az.default -> hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}&
FF SearchEngineOrder.1: Mozilla\Firefox\Profiles\gjyzp0az.default -> Seznam
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\gjyzp0az.default -> Seznam
FF Homepage: Mozilla\Firefox\Profiles\gjyzp0az.default -> hxxps://www.seznam.cz/
FF Extension: (AVG Web TuneUp) - C:\Users\Slamak\AppData\Roaming\Mozilla\Firefox\Profiles\gjyzp0az.default\Extensions\avg@toolbar.xpi [2017-03-02]
FF Extension: (Avast Passwords) - C:\Users\Slamak\AppData\Roaming\Mozilla\Firefox\Profiles\gjyzp0az.default\Extensions\jid1-r1tDuNiNb4SEww@jetpack.xpi [2017-02-10]
FF Extension: (Password Exporter) - C:\Users\Slamak\AppData\Roaming\Mozilla\Firefox\Profiles\gjyzp0az.default\Extensions\{B17C1C5A-04B1-11DB-9804-B622A1EF5492}.xpi [2016-04-05]
FF Extension: (SHA-1 deprecation staged rollout) - C:\Users\Slamak\AppData\Roaming\Mozilla\Firefox\Profiles\gjyzp0az.default\features\{75e0d707-62cb-4894-9810-fc43e0edf06f}\disableSHA1rollout@mozilla.org.xpi [2017-03-03]
FF SearchPlugin: C:\Users\Slamak\AppData\Roaming\Mozilla\Firefox\Profiles\gjyzp0az.default\searchplugins\avg-secure-search.xml [2017-03-02]
FF SearchPlugin: C:\Users\Slamak\AppData\Roaming\Mozilla\Firefox\Profiles\gjyzp0az.default\searchplugins\seznam-avast.xml [2015-02-17]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF48
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF48 [2017-03-02]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF48
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF48 [2017-03-02]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF48
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF48
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_24_0_0_221.dll [2017-02-28] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [No File]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWoW64\Macromed\Flash\NPSWF32_24_0_0_221.dll [2017-02-28] ()
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\40.3.7\\npsitesafety.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-12-12] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-12-12] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-12-23] (Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.seznam.cz/?clid=13906
CHR StartupUrls: Default -> "hxxp://websearch.just-browse.info/"
CHR DefaultSearchURL: Default -> hxxps://www.google.com/search?q={searchTerms}&i ... hannel=rcs
CHR DefaultSearchKeyword: Default -> google.com_
CHR DefaultSuggestURL: Default -> hxxps://www.google.com/complete/search?q={searchTerms}
CHR Profile: C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default [2017-03-02]
CHR Extension: (CacheList) - C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\amhhdbdhoghppijbjfdkiaconkmfbbpa [2016-11-09]
CHR Extension: (Dokumenty Google) - C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-11]
CHR Extension: (Disk Google) - C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-24]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2017-02-10]
CHR Extension: (Video AdBlock for Chrome) - C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd [2016-02-02]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2017-02-10]
CHR Extension: (YouTube) - C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-02]
CHR Extension: (Vyhledávání Google) - C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-07]
CHR Extension: (Avast Online Security) - C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\daanglpcpkjjlkhcbladppjphglbigam [2016-12-12]
CHR Extension: (MyStart New Tab) - C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa [2016-11-23]
CHR Extension: (Adobe Acrobat) - C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-02-10]
CHR Extension: (Avast Passwords) - C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2017-02-15]
CHR Extension: (Avast SafePrice) - C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2016-11-15]
CHR Extension: (Dokumenty Google offline) - C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-07-06]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-02-10]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2017-02-10]
CHR Extension: (Save the Penguin) - C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\pinohkicpolgdfgajpflbaoimmnaeibb [2017-02-24]
CHR Extension: (Gmail) - C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-04]
CHR Extension: (Chrome Media Router) - C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-15]
CHR Extension: (Geoseznam) - C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkejgpgaflkeonkliblcplomemekogop [2016-07-06]
CHR HKU\S-1-5-21-3621977129-2832859686-462106091-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bknbnapaddjdnbilpmlacdkjdkjmbjhd] - hxxp://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-3621977129-2832859686-462106091-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [bknbnapaddjdnbilpmlacdkjdkjmbjhd] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [daanglpcpkjjlkhcbladppjphglbigam] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [dogdoihocdkadpalbghcpfafbojcfofa] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7147320 2017-03-02] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [262736 2017-03-02] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [278784 2017-03-02] (AVAST Software)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1146128 2016-12-06] (AVG Technologies CZ, s.r.o.)
S4 BrcmCardReader; C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe [176640 2012-08-21] (Broadcom Corp.) [File not signed]
S4 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [266240 2012-06-05] (Brother Industries, Ltd.) [File not signed]
S4 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2449552 2012-10-26] (Acer Incorporated)
S3 DeviceFastLaneService; C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [469648 2012-11-16] (Acer Incorporated)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [658064 2012-10-23] (Acer Incorporated)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [144072 2015-10-07] (ELAN Microelectronics Corp.)
R2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [108032 2014-05-07] (Freemake) [File not signed]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-18] (Intel Corporation)
R2 NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [259136 2012-11-03] (NTI Corporation)
R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [336824 2010-11-30] (arvato digital services llc)
R2 RfButtonDriverService; C:\Windows\RfBtnSvc64.exe [96880 2013-02-08] (Dritek System INC.)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [5906704 2017-02-21] (AVG Technologies CZ, s.r.o.)
R2 vToolbarUpdater40.3.7; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.7\ToolbarUpdater.exe [1354312 2017-03-02] (AVG Secure Search)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
R2 WtuSystemSupport; C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe [981576 2017-03-02] ()
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdrivera.sys [309272 2017-03-02] (AVAST Software s.r.o.)
R0 aswbidsh; C:\WINDOWS\system32\drivers\aswbidsha.sys [189768 2017-03-02] (AVAST Software s.r.o.)
R0 aswblog; C:\WINDOWS\system32\drivers\aswbloga.sys [334600 2017-03-02] (AVAST Software s.r.o.)
R0 aswbuniv; C:\WINDOWS\system32\drivers\aswbuniva.sys [48528 2017-03-02] (AVAST Software s.r.o.)
S3 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [38296 2017-03-02] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [32088 2017-03-02] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [126600 2017-03-02] (AVAST Software)
R1 aswNetSec; C:\WINDOWS\system32\drivers\aswNetSec.sys [461640 2017-03-02] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [100640 2017-03-02] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [75704 2017-03-02] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [993608 2017-03-02] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [547904 2017-03-02] (AVAST Software)
S2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [162528 2017-03-02] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [337592 2017-03-02] (AVAST Software)
R3 BCM43XX; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [7585280 2016-07-16] (Broadcom Corporation)
S3 CH341SER_A64; C:\WINDOWS\System32\Drivers\CH341S64.SYS [59904 2015-02-06] (www.winchiphead.com)
R1 dtsoftbus01; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [283064 2014-09-29] (Disc Soft Ltd)
S3 IT9135BDA; C:\WINDOWS\System32\Drivers\IT9135BDA.sys [113280 2010-02-03] (ITE )
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 Ps2Kb2Hid; C:\WINDOWS\System32\drivers\aPs2Kb2Hid.sys [26736 2013-02-08] (Dritek System Inc.)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [32304 2017-02-21] (AVG Netherlands B.V.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-03-09 13:30 - 2017-03-09 13:32 - 00026615 _____ C:\Users\Slamak\Desktop\FRST.txt
2017-03-09 13:30 - 2017-03-09 13:30 - 00000000 ____D C:\FRST
2017-03-09 13:25 - 2017-03-09 13:29 - 00112640 _____ (forum.viry.cz) C:\Users\Slamak\Desktop\FRSTLauncher.exe
2017-03-09 13:21 - 2017-03-09 13:29 - 02423808 _____ (Farbar) C:\Users\Slamak\Desktop\FRST64.exe
2017-03-09 13:12 - 2017-03-09 13:12 - 00000000 ____D C:\WINDOWS\LastGood
2017-03-09 13:12 - 2017-03-09 13:12 - 00000000 ____D C:\Intel
2017-03-09 12:56 - 2017-03-09 12:56 - 00000000 ____D C:\ProgramData\SWCUTemp
2017-03-09 07:34 - 2017-03-09 07:34 - 00045507 _____ C:\Users\Slamak\Downloads\Clearing_1615949511_9003553635.pdf
2017-03-09 07:33 - 2017-03-09 07:33 - 00045085 _____ C:\Users\Slamak\Downloads\Clearing_1615949511_9003523660.pdf
2017-03-09 07:32 - 2017-03-09 07:32 - 00046489 _____ C:\Users\Slamak\Downloads\Clearing_1615949511_9003493135.pdf
2017-03-09 07:32 - 2017-03-09 07:32 - 00045309 _____ C:\Users\Slamak\Downloads\Clearing_1615949511_9003461411(1).pdf
2017-03-09 07:24 - 2017-03-09 07:24 - 00052736 _____ C:\Users\Slamak\Downloads\GOPAY_112643542-170130-170205.xls
2017-03-09 07:14 - 2017-03-09 07:14 - 00074317 _____ C:\Users\Slamak\Downloads\zasilkovna-2017-03-09-3022.pdf
2017-03-09 07:07 - 2017-03-09 07:07 - 00471823 _____ C:\Users\Slamak\Downloads\171019421(1).pdf
2017-03-09 07:06 - 2017-03-09 07:06 - 00471991 _____ C:\Users\Slamak\Downloads\171010674.pdf
2017-03-09 07:06 - 2017-03-09 07:06 - 00471668 _____ C:\Users\Slamak\Downloads\171013755.pdf
2017-03-09 07:06 - 2017-03-09 07:06 - 00470862 _____ C:\Users\Slamak\Downloads\171016549(1).pdf
2017-03-09 06:55 - 2017-03-09 06:55 - 00074320 _____ C:\Users\Slamak\Downloads\zasilkovna-2017-03-09-1329.pdf
2017-03-09 01:17 - 2017-03-09 01:17 - 12935296 _____ (Intel Corporation) C:\WINDOWS\system32\igdumd64.dll
2017-03-09 01:17 - 2017-03-09 01:17 - 11330576 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumd32.dll
2017-03-09 01:17 - 2017-03-09 01:17 - 01086408 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll
2017-03-09 01:17 - 2017-03-09 01:17 - 00975184 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll
2017-03-09 01:17 - 2017-03-09 01:17 - 00558728 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
2017-03-09 01:17 - 2017-03-09 01:17 - 00553424 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
2017-03-09 01:17 - 2017-03-09 01:17 - 00242800 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
2017-03-09 01:17 - 2017-03-09 01:17 - 00206000 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
2017-03-09 01:17 - 2017-03-09 01:17 - 00051184 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
2017-03-09 01:16 - 2017-03-09 01:16 - 13046920 _____ (Intel Corporation) C:\WINDOWS\system32\ig4icd64.dll
2017-03-09 01:16 - 2017-03-09 01:16 - 10829448 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig4icd32.dll
2017-03-09 01:16 - 2017-03-09 01:16 - 05925984 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUI.exe
2017-03-09 01:16 - 2017-03-09 01:16 - 03529352 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll
2017-03-09 01:16 - 2017-03-09 01:16 - 03139208 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll
2017-03-09 01:16 - 2017-03-09 01:16 - 00593544 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll
2017-03-09 01:16 - 2017-03-09 01:16 - 00560776 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll
2017-03-09 01:16 - 2017-03-09 01:16 - 00536664 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
2017-03-09 01:16 - 2017-03-09 01:16 - 00460936 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdev.dll
2017-03-09 01:16 - 2017-03-09 01:16 - 00458376 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrell.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00457864 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfra.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00457864 _____ (Intel Corporation) C:\WINDOWS\system32\igfxresn.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00457352 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrus.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00457344 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrom.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00456840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsky.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00456840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptg.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00456840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrplk.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00456840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnld.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00456840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrita.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00456840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhrv.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00456840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdeu.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00456328 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhun.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00456328 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfin.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00455816 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtrk.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00455816 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsve.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00455816 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrslv.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00455816 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptb.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00455816 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnor.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00455304 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtha.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00455304 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdan.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00453768 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrheb.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00453768 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrara.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00450184 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrjpn.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00449160 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrkor.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00447112 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcht.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00446600 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrchs.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00428680 _____ (Intel Corporation) C:\WINDOWS\system32\igfxTMM.dll
2017-03-09 01:16 - 2017-03-09 01:16 - 00402568 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpph.dll
2017-03-09 01:16 - 2017-03-09 01:16 - 00348808 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxdv32.dll
2017-03-09 01:16 - 2017-03-09 01:16 - 00304264 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrenu.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00300128 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
2017-03-09 01:16 - 2017-03-09 01:16 - 00276064 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2017-03-09 01:16 - 2017-03-09 01:16 - 00206944 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe
2017-03-09 01:16 - 2017-03-09 01:16 - 00193160 _____ (Intel Corporation) C:\WINDOWS\system32\gfxSrvc.dll
2017-03-09 01:16 - 2017-03-09 01:16 - 00160392 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdo.dll
2017-03-09 01:16 - 2017-03-09 01:16 - 00145032 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcpl.cpl
2017-03-09 01:16 - 2017-03-09 01:16 - 00134280 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v4459.dll
2017-03-09 01:16 - 2017-03-09 01:16 - 00119432 _____ C:\WINDOWS\system32\igdde64.dll
2017-03-09 01:16 - 2017-03-09 01:16 - 00099464 _____ C:\WINDOWS\SysWOW64\igdde32.dll
2017-03-09 01:16 - 2017-03-09 01:16 - 00043144 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll
2017-03-09 01:16 - 2017-03-09 01:16 - 00027784 _____ ( ) C:\WINDOWS\system32\IGFXDEVLib.dll
2017-03-08 21:46 - 2017-03-08 21:46 - 00022725 _____ C:\Users\Slamak\Downloads\2017-02-01–2017-02-28_Transakce.zip
2017-03-08 21:19 - 2017-03-09 13:06 - 00000000 ____D C:\Program Files (x86)\Spyware Terminator
2017-03-08 21:18 - 2017-03-08 21:18 - 09647696 _____ (Crawler Group ) C:\Users\Slamak\Downloads\SpywareTerminatorSetup.exe
2017-03-08 20:52 - 2017-03-08 20:52 - 00001284 _____ C:\Users\Slamak\Desktop\Faktury přijaté 2017 – zástupce.lnk
2017-03-08 20:51 - 2017-03-08 20:51 - 00001194 _____ C:\Users\Slamak\Desktop\Texty shop – zástupce.lnk
2017-03-07 21:08 - 2017-03-07 21:08 - 00074321 _____ C:\Users\Slamak\Downloads\zasilkovna-2017-03-07-2146.pdf
2017-03-07 19:42 - 2017-03-07 19:42 - 00000000 ____D C:\rsit
2017-03-07 19:41 - 2017-03-07 19:42 - 01222144 _____ C:\Users\Slamak\Downloads\RSITx64.exe
2017-03-07 19:36 - 2017-03-07 19:36 - 00010853 _____ C:\Users\Slamak\Downloads\output(13).pdf
2017-03-07 19:32 - 2017-03-07 19:32 - 00075667 _____ C:\Users\Slamak\Downloads\zasilkovna-2017-03-07-1174.pdf
2017-03-07 12:16 - 2017-03-07 12:16 - 00000000 ____D C:\Users\Slamak\fUTkALeaTxM
2017-03-07 08:35 - 2017-03-07 08:35 - 00472563 _____ C:\Users\Slamak\Downloads\171022412.pdf
2017-03-06 18:01 - 2017-03-06 18:01 - 00000000 ____D C:\Users\Slamak\AppData\Local\FileZilla
2017-03-06 17:03 - 2017-03-06 17:03 - 00206521 _____ C:\Users\Slamak\Downloads\492092659.PDF
2017-03-06 17:02 - 2017-03-06 17:02 - 00089630 _____ C:\Users\Slamak\Downloads\492092658.PDF
2017-03-06 15:07 - 2017-03-06 15:11 - 00272470 _____ C:\Users\Slamak\Documents\kaplicka v opre.odt
2017-03-06 11:12 - 2017-03-06 11:12 - 00009093 _____ C:\Users\Slamak\Downloads\output(12).pdf
2017-03-06 07:16 - 2017-03-06 07:16 - 00074336 _____ C:\Users\Slamak\Downloads\zasilkovna-2017-03-06-8252.pdf
2017-03-05 19:40 - 2017-03-05 19:40 - 00009089 _____ C:\Users\Slamak\Downloads\output(11).pdf
2017-03-05 19:38 - 2017-03-05 19:38 - 00074319 _____ C:\Users\Slamak\Downloads\zasilkovna-2017-03-05-1407.pdf
2017-03-05 19:36 - 2017-03-05 19:36 - 00075244 _____ C:\Users\Slamak\Downloads\zasilkovna-2017-03-05-1743.pdf
2017-03-05 18:48 - 2017-03-05 18:48 - 00005615 _____ C:\Users\Slamak\Downloads\ordersXML(1).xml
2017-03-04 23:17 - 2017-03-04 23:17 - 00148566 _____ C:\Users\Slamak\Downloads\T8940540.pdf
2017-03-04 20:49 - 2017-03-04 20:50 - 01185889 _____ C:\Users\Slamak\Downloads\2015_Guidelines_Beer.pdf
2017-03-04 18:25 - 2017-03-04 18:25 - 00008568 _____ C:\Users\Slamak\Downloads\ordersXML.xml
2017-03-04 16:43 - 2017-03-04 16:58 - 1900460032 _____ C:\Users\Slamak\Downloads\Jokri.avi
2017-03-04 16:42 - 2017-03-04 16:49 - 824785610 _____ C:\Users\Slamak\Downloads\Zilionáři-2016-cz-dab.,super-kvalita.avi
2017-03-04 12:45 - 2017-03-04 12:51 - 914463076 _____ C:\Users\Slamak\Downloads\(cetnici-z-luhacovic)-09-dopis-ze-zahrobi--16'--DVBT_CZ-(romin).avi
2017-03-03 12:49 - 2017-03-03 12:49 - 00362130 _____ C:\Users\Slamak\Downloads\cenik-italie-novy.pdf
2017-03-03 07:23 - 2017-03-03 07:23 - 00074767 _____ C:\Users\Slamak\Downloads\zasilkovna-2017-03-03-8242.pdf
2017-03-02 23:49 - 2017-03-02 23:49 - 00000000 ____D C:\Users\Slamak\AppData\Local\AVG Web TuneUp
2017-03-02 23:49 - 2017-03-02 23:49 - 00000000 ____D C:\ProgramData\AVG Web TuneUp
2017-03-02 23:49 - 2017-03-02 23:49 - 00000000 ____D C:\Program Files\Common Files\AVG Secure Search
2017-03-02 23:49 - 2017-03-02 23:49 - 00000000 ____D C:\Program Files\AVG Web TuneUp
2017-03-02 23:49 - 2017-03-02 23:49 - 00000000 ____D C:\Program Files (x86)\AVG Web TuneUp
2017-03-02 23:36 - 2017-03-07 20:34 - 00003154 _____ C:\WINDOWS\System32\Tasks\Java Platform SE Auto Updater
2017-03-02 22:50 - 2017-03-02 22:50 - 00002594 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp.lnk
2017-03-02 22:50 - 2017-02-21 09:29 - 00053008 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\TURegOpt.exe
2017-03-02 22:47 - 2017-03-02 22:47 - 00000979 _____ C:\Users\Slamak\Desktop\zalohy PROFIT – zástupce.lnk
2017-03-02 22:47 - 2017-03-02 22:47 - 00000943 _____ C:\Users\Public\Desktop\AVG.lnk
2017-03-02 22:47 - 2017-03-02 22:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Zen
2017-03-02 22:45 - 2017-03-08 13:58 - 00003668 _____ C:\WINDOWS\System32\Tasks\AVG EUpdate Task
2017-03-02 22:45 - 2017-03-02 22:50 - 00000000 ____D C:\Program Files (x86)\AVG
2017-03-02 22:44 - 2017-03-02 23:48 - 00000000 ____D C:\Users\Slamak\AppData\Local\AvgSetupLog
2017-03-02 22:43 - 2017-03-02 22:44 - 03143000 _____ (AVG Technologies CZ, s.r.o.) C:\Users\Slamak\Downloads\AVG_Performance_1129.exe
2017-03-02 22:42 - 2017-03-02 22:42 - 00733304 _____ () C:\Users\Slamak\Downloads\ccleaner-seznam-listicka.exe
2017-03-02 20:32 - 2017-03-02 20:36 - 773026364 _____ C:\Users\Slamak\Downloads\Bezva ženska na krku .2016 komedie cz avi.avi
2017-03-02 19:45 - 2017-03-06 10:37 - 00004268 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2017-03-02 19:45 - 2017-03-02 19:43 - 00334600 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbloga.sys
2017-03-02 19:45 - 2017-03-02 19:43 - 00309272 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsdrivera.sys
2017-03-02 19:45 - 2017-03-02 19:43 - 00189768 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsha.sys
2017-03-02 19:45 - 2017-03-02 19:43 - 00048528 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbuniva.sys
2017-03-02 19:44 - 2017-03-02 19:44 - 00398408 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2017-03-02 07:28 - 2017-03-02 07:28 - 00074295 _____ C:\Users\Slamak\Downloads\zasilkovna-2017-03-02-1836.pdf
2017-03-02 07:28 - 2017-03-02 07:28 - 00074295 _____ C:\Users\Slamak\Downloads\zasilkovna-2017-03-02-1512.pdf
2017-03-02 07:28 - 2017-03-02 07:28 - 00008998 _____ C:\Users\Slamak\Downloads\output(10).pdf
2017-03-01 10:53 - 2017-03-01 10:53 - 00216324 _____ C:\Users\Slamak\Downloads\newsletter_3.pdf
2017-03-01 06:53 - 2017-03-01 06:53 - 00014515 _____ C:\Users\Slamak\Downloads\output(9).pdf
2017-03-01 06:50 - 2017-03-01 06:50 - 00075723 _____ C:\Users\Slamak\Downloads\zasilkovna-2017-03-01-1997.pdf
2017-03-01 01:56 - 2017-03-01 01:56 - 00085710 _____ C:\Users\Slamak\Downloads\Obchodni podminky www.vyrobtesipivo.cz(1).pdf
2017-03-01 00:14 - 2012-01-19 02:27 - 00000000 ____D C:\Users\Slamak\Documents\tni_product_reviews
2017-03-01 00:11 - 2017-03-01 00:11 - 00012813 _____ C:\Users\Slamak\Downloads\tni_product_reviews RECENZE.zip
2017-02-28 23:17 - 2017-02-28 23:17 - 00402839 _____ C:\Users\Slamak\Downloads\sanicleantl.pdf
2017-02-28 22:26 - 2017-02-28 22:26 - 00305226 _____ C:\Users\Slamak\Downloads\PBW_SDS_EN.pdf
2017-02-28 22:26 - 2017-02-28 22:26 - 00238727 _____ C:\Users\Slamak\Downloads\Star_San_HB_SDS_EN.pdf
2017-02-28 21:56 - 2017-02-28 21:56 - 00471823 _____ C:\Users\Slamak\Downloads\171019421.pdf
2017-02-28 16:32 - 2017-02-28 16:33 - 176296836 _____ C:\Users\Slamak\Downloads\RINO-–-Příběh-špióna.part2.rar
2017-02-28 16:31 - 2017-02-28 16:46 - 2086666240 _____ C:\Users\Slamak\Downloads\RINO-–-Příběh-špióna.part1.rar
2017-02-27 21:06 - 2017-02-27 21:06 - 00009189 _____ C:\Users\Slamak\Downloads\output(8).pdf
2017-02-27 20:25 - 2017-02-27 20:25 - 00429571 _____ C:\Users\Slamak\Downloads\Vyklad_pojmu_Prikaz-platce-prostrednictvim-prijemce.pdf
2017-02-27 19:53 - 2017-02-27 19:53 - 00076944 _____ C:\Users\Slamak\Downloads\zasilkovna-2017-02-27-1307.pdf
2017-02-27 19:53 - 2017-02-27 19:53 - 00017279 _____ C:\Users\Slamak\Downloads\output(7).pdf
2017-02-27 19:24 - 2017-02-27 19:24 - 00050584 _____ C:\Users\Slamak\Downloads\4117048648.pdf
2017-02-27 19:24 - 2017-02-27 19:24 - 00048491 _____ C:\Users\Slamak\Downloads\4017047847.pdf
2017-02-27 19:21 - 2017-02-27 19:21 - 00050611 _____ C:\Users\Slamak\Downloads\4117048644.pdf
2017-02-27 19:21 - 2017-02-27 19:21 - 00048203 _____ C:\Users\Slamak\Downloads\4017047844.pdf
2017-02-27 16:14 - 2017-02-27 16:14 - 00003004 _____ C:\Users\Slamak\Downloads\438894670_1_Autentizační údaje(2).pdf
2017-02-27 11:41 - 2017-02-27 11:42 - 00020893 _____ C:\Users\Slamak\Desktop\Order Stanislav Krejci - vyrobtesipivo.cz.ods
2017-02-27 10:36 - 2017-02-27 10:36 - 00235513 _____ C:\Users\Slamak\Desktop\Brouwland_price_list_C20_July_2016_EN.xlsx
2017-02-25 21:04 - 2017-02-25 21:05 - 00530051 _____ C:\Users\Slamak\Downloads\Cenik-01012017.pdf
2017-02-24 21:59 - 2017-02-24 21:59 - 06971584 _____ (Tim Kosse) C:\Users\Slamak\Downloads\FileZilla_3.24.1_win64-setup.exe
2017-02-24 19:35 - 2017-02-24 19:36 - 00061322 _____ C:\Users\Slamak\Downloads\050.270.8 en 050.514.9_SPEC_EN_Bavarian Wheat M20.pdf
2017-02-24 19:35 - 2017-02-24 19:35 - 00083215 _____ C:\Users\Slamak\Downloads\050.270.8.pdf
2017-02-24 17:08 - 2017-02-24 17:08 - 00003534 _____ C:\WINDOWS\System32\Tasks\GEN_Interval
2017-02-24 15:39 - 2017-02-25 20:21 - 00000000 ____D C:\Users\Slamak\AppData\Roaming\Electrum
2017-02-24 15:37 - 2017-02-24 15:37 - 00001080 _____ C:\Users\Slamak\Desktop\Electrum.lnk
2017-02-24 15:37 - 2017-02-24 15:37 - 00000000 ____D C:\Users\Slamak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Electrum
2017-02-24 15:37 - 2017-02-24 15:37 - 00000000 ____D C:\Program Files (x86)\Electrum
2017-02-24 15:36 - 2017-02-24 15:37 - 40635455 _____ (Electrum) C:\Users\Slamak\Downloads\electrum-2.7.18-setup.exe
2017-02-24 15:19 - 2017-02-24 16:16 - 00000074 _____ C:\Users\Slamak\Desktop\Bitcoin.txt
2017-02-24 15:18 - 2017-02-24 15:18 - 00000000 ____D C:\Users\Slamak\Documents\Bitcoin
2017-02-24 15:15 - 2017-02-24 15:16 - 00000000 ____D C:\Users\Slamak\AppData\Roaming\MultiBitHD
2017-02-24 14:29 - 2017-02-24 14:35 - 52950656 _____ (LPsoft ) C:\Users\Slamak\Downloads\PROFIT_201702_setup.exe
2017-02-24 12:53 - 2017-02-24 12:53 - 10262944 _____ C:\Users\Slamak\Downloads\Mangrove Jack's Data Sheets-20170224T115302Z-001.zip
2017-02-24 07:05 - 2017-02-24 07:05 - 00074302 _____ C:\Users\Slamak\Downloads\zasilkovna-2017-02-24-1356.pdf
2017-02-23 22:02 - 2017-02-23 22:02 - 00342006 _____ C:\Users\Slamak\Downloads\Kompakt_70l.pdf
2017-02-23 19:59 - 2017-02-23 19:59 - 01816415 _____ C:\Users\Slamak\Downloads\Mangrove Jack's Traditional Series Beer Pouches-20170223T185854Z-001.zip
2017-02-23 19:57 - 2017-02-23 19:58 - 03333638 _____ C:\Users\Slamak\Downloads\Mangrove Jack's Craft Series Yeast-20170223T185729Z-001.zip
2017-02-23 19:40 - 2017-02-23 19:40 - 00075600 _____ C:\Users\Slamak\Downloads\zasilkovna-2017-02-23-1254.pdf
2017-02-23 19:37 - 2017-02-23 19:37 - 00011004 _____ C:\Users\Slamak\Downloads\output(6).pdf
2017-02-22 20:46 - 2017-02-22 20:47 - 00100268 _____ C:\Users\Slamak\Desktop\661-1132 Baška Chorvatsko dovolená 2017.htm
2017-02-22 20:46 - 2017-02-22 20:47 - 00000000 ____D C:\Users\Slamak\Desktop\661-1132 Baška Chorvatsko dovolená 2017_soubory
2017-02-22 13:34 - 2017-02-22 13:34 - 07422592 _____ C:\Users\Slamak\Downloads\Katalog_podzim-zima_2016_web.pdf
2017-02-22 06:57 - 2017-02-22 06:57 - 00074805 _____ C:\Users\Slamak\Downloads\zasilkovna-2017-02-22-6332.pdf
2017-02-22 06:57 - 2017-02-22 06:57 - 00009026 _____ C:\Users\Slamak\Downloads\output(5).pdf
2017-02-21 18:59 - 2017-02-21 18:59 - 00470854 _____ C:\Users\Slamak\Downloads\171016549.pdf
2017-02-21 07:20 - 2017-02-21 07:20 - 00010994 _____ C:\Users\Slamak\Downloads\output(4).pdf
2017-02-21 07:16 - 2017-02-21 07:16 - 00074898 _____ C:\Users\Slamak\Downloads\zasilkovna-2017-02-21-9210.pdf
2017-02-20 22:55 - 2017-02-20 22:55 - 00000444 _____ C:\Users\Slamak\Downloads\csv-ukazka.csv
2017-02-20 16:18 - 2017-02-20 16:39 - 3003922830 _____ C:\Users\Slamak\Downloads\ČETNÍCI-Z-LUHAČOVIC-07.Padělek-FHD-(2017)-CZ-(78PT).avi
2017-02-20 16:14 - 2017-02-20 16:22 - 1063945388 _____ C:\Users\Slamak\Downloads\Bohéma S01E06 - Dvojí tvá_e - TVrip CZserial.avi
2017-02-20 15:59 - 2017-02-20 15:59 - 00010990 _____ C:\Users\Slamak\Downloads\output(3).pdf
2017-02-19 22:04 - 2017-02-19 22:04 - 00045633 _____ C:\Users\Slamak\Downloads\PDFReport.aspx
2017-02-19 21:49 - 2017-02-19 21:49 - 00009029 _____ C:\Users\Slamak\Downloads\output(2).pdf
2017-02-19 21:29 - 2017-02-19 21:29 - 00009065 _____ C:\Users\Slamak\Downloads\output(1).pdf
2017-02-19 19:54 - 2017-02-19 19:54 - 00011061 _____ C:\Users\Slamak\Downloads\output.pdf
2017-02-19 18:59 - 2017-02-19 18:59 - 00176219 _____ C:\Users\Slamak\Downloads\plna-moc.pdf
2017-02-19 18:58 - 2017-02-19 18:58 - 00106568 _____ C:\Users\Slamak\Downloads\merkblatt_deutsch.pdf
2017-02-19 18:57 - 2017-02-19 18:57 - 00206467 _____ C:\Users\Slamak\Downloads\Zustimmung mail.pdf
2017-02-19 18:57 - 2017-02-19 18:57 - 00090301 _____ C:\Users\Slamak\Downloads\StAb-Bau-Fragebg. 2002 - tschech..pdf
2017-02-19 18:56 - 2017-02-19 18:56 - 00018825 _____ C:\Users\Slamak\Downloads\Baustellenübersicht D-CZ.docx(1).pdf
2017-02-19 18:55 - 2017-02-19 18:55 - 00158712 _____ C:\Users\Slamak\Downloads\Fragenbogen CZ.pdf
2017-02-19 18:54 - 2017-02-19 18:55 - 00018825 _____ C:\Users\Slamak\Downloads\Baustellenübersicht D-CZ.docx.pdf
2017-02-19 18:54 - 2017-02-19 18:54 - 00381701 _____ C:\Users\Slamak\Downloads\Ansässigkeitsbescheinigung CZ.pdf
2017-02-18 22:13 - 2017-02-18 22:14 - 67620545 _____ C:\Users\Slamak\Downloads\backup_2017-02-18_22-13.zip
2017-02-18 20:53 - 2017-02-18 20:53 - 00107323 _____ C:\Users\Slamak\Desktop\Pojistka.pdf
2017-02-18 20:51 - 2017-02-18 20:51 - 00102558 _____ C:\Users\Slamak\Downloads\490435551.PDF
2017-02-18 20:15 - 2017-02-18 20:15 - 01377244 _____ C:\Users\Slamak\Downloads\testovaci-ssl-certifikat-thawte.pdf
2017-02-17 07:12 - 2017-02-17 07:12 - 03620092 _____ C:\Users\Slamak\Downloads\UPDATED PRICE LIST VYROBTESIPIVO 08.02.2017.pdf
2017-02-16 16:21 - 2017-02-16 16:32 - 1515676186 _____ C:\Users\Slamak\Downloads\vencep.avi
2017-02-16 16:13 - 2017-02-16 16:30 - 1651857408 _____ C:\Users\Slamak\Downloads\Star Trek Do neznáma.avi
2017-02-14 20:31 - 2017-02-14 21:02 - 1380786652 _____ C:\Users\Slamak\Downloads\Díra u Hanušovic 2014 CZ Film DVDRip.avi
2017-02-14 20:28 - 2017-02-14 20:52 - 1573277696 _____ C:\Users\Slamak\Downloads\Mist_i cz.avi
2017-02-14 20:27 - 2017-02-14 20:54 - 833598328 _____ C:\Users\Slamak\Downloads\Celebrity s.r.o-2016-cz.film-KOMEDIE.avi
2017-02-14 20:25 - 2017-02-14 20:45 - 1156334218 _____ C:\Users\Slamak\Downloads\Brainstorm (2008) _esko Komedie Drama Psychologický.avi
2017-02-14 10:24 - 2017-02-14 10:31 - 1067954768 _____ C:\Users\Slamak\Downloads\Bohema-5.dil-6-Vyhrat-za-kazdou-cenu---12.2.2017.avi
2017-02-13 15:18 - 2017-02-13 15:18 - 00108871 _____ C:\Users\Slamak\Downloads\FAKTURA-56091(1).pdf
2017-02-13 12:55 - 2017-02-13 12:55 - 00290332 _____ C:\Users\Slamak\Downloads\MSDS-Desam Solid (09-2015) Schulke.pdf
2017-02-12 18:58 - 2017-02-12 19:13 - 788600518 _____ C:\Users\Slamak\Downloads\Život-je-život--(cz-komedie-2015).avi
2017-02-12 15:17 - 2017-02-12 15:30 - 2135052994 _____ C:\Users\Slamak\Downloads\Spectre.2015.BRRip.XviD.AC3-RARBG.CZ.dub.avi
2017-02-11 21:16 - 2017-02-11 21:16 - 00108871 _____ C:\Users\Slamak\Downloads\FAKTURA-56091.pdf
2017-02-11 20:28 - 2017-02-12 20:05 - 641228800 _____ C:\Users\Slamak\Downloads\Vejška-Vejška (2014) Komedie.avi
2017-02-11 20:19 - 2017-02-11 22:20 - 973083570 _____ C:\Users\Slamak\Downloads\Učitelka-2016-CZ.avi
2017-02-10 18:00 - 2017-02-10 18:12 - 986710788 _____ C:\Users\Slamak\Downloads\TMNKRJ0104CZ.avi
2017-02-10 17:47 - 2017-02-10 18:10 - 1968880122 _____ C:\Users\Slamak\Downloads\SO.avi
2017-02-10 17:45 - 2017-02-10 17:45 - 00002651 _____ C:\Users\Slamak\Downloads\wtft.srt
2017-02-10 17:44 - 2017-02-10 18:00 - 1563710248 _____ C:\Users\Slamak\Downloads\wtft.avi
2017-02-09 11:34 - 2017-02-09 11:34 - 00003771 _____ C:\Users\Slamak\Downloads\769293281.p12
2017-02-09 11:18 - 2017-02-09 11:18 - 00029779 _____ C:\Users\Slamak\Downloads\438894670_0_00009999_eet_p001_1700371327(1).pdf
2017-02-09 11:18 - 2017-02-09 11:18 - 00003004 _____ C:\Users\Slamak\Downloads\438894670_1_Autentizační údaje(1).pdf
2017-02-09 11:15 - 2017-02-09 11:15 - 00126637 _____ C:\Users\Slamak\Downloads\439931224_0_Inventura OSVČ.pdf
2017-02-08 14:41 - 2017-02-08 15:00 - 2197162543 _____ C:\Users\Slamak\Downloads\Bohéma---část-3(6).mkv
2017-02-08 14:41 - 2017-02-08 14:52 - 795502122 _____ C:\Users\Slamak\Downloads\(bohema)-04-a-prece-se-toci--16'--DVBT_CZ-(romin).avi
2017-02-08 14:11 - 2017-02-08 14:35 - 1929284985 _____ C:\Users\Slamak\Downloads\Bohéma---část-2(6).mkv
2017-02-08 14:09 - 2017-02-08 14:29 - 1834849522 _____ C:\Users\Slamak\Downloads\Bohéma---část-1(6).mkv
2017-02-08 14:01 - 2017-02-08 14:01 - 00280457 _____ C:\Users\Slamak\Downloads\FakturaPrint_1000035368_3_7100003665_FA2017000291.pdf
2017-02-08 09:48 - 2017-02-08 09:48 - 03620092 _____ C:\Users\Slamak\Desktop\ENOLANDIA VYROBTESIPIVO 08.02.2017.pdf
2017-02-08 09:00 - 2017-02-08 09:00 - 00029779 _____ C:\Users\Slamak\Downloads\438894670_0_00009999_eet_p001_1700371327.pdf
2017-02-08 09:00 - 2017-02-08 09:00 - 00003004 _____ C:\Users\Slamak\Downloads\438894670_1_Autentizační údaje.pdf
2017-02-07 20:08 - 2017-02-10 20:15 - 00000000 ____D C:\Users\Slamak\AppData\Roaming\M-Photo
2017-02-07 19:37 - 2017-02-07 19:37 - 00001854 _____ C:\Users\Public\Desktop\FOTOKNIHY ONLINE.lnk
2017-02-07 19:37 - 2017-02-07 19:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FOTOKNIHY ONLINE
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-03-09 13:12 - 2016-07-16 12:45 - 00000000 ____D C:\WINDOWS\INF
2017-03-09 13:09 - 2016-11-18 17:41 - 00000000 ____D C:\Users\Slamak\AppData\LocalLow\Mozilla
2017-03-09 12:54 - 2014-09-21 13:05 - 00000000 ____D C:\Users\Slamak\AppData\Roaming\eM Client
2017-03-09 12:42 - 2016-09-21 04:05 - 00000000 ____D C:\Users\Slamak
2017-03-09 12:40 - 2016-09-21 04:34 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-03-09 12:40 - 2016-09-21 03:57 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-03-09 12:40 - 2013-10-05 13:32 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-03-09 12:29 - 2016-09-21 04:34 - 00003542 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2017-03-09 12:29 - 2016-09-21 04:34 - 00002992 _____ C:\WINDOWS\System32\Tasks\Program k provádění aktualizací online Adobe
2017-03-09 12:29 - 2014-10-18 16:12 - 00000000 ____D C:\Users\Slamak\Documents\eM Client
2017-03-09 12:20 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-03-09 12:20 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-03-09 07:25 - 2014-01-12 13:41 - 00000000 ____D C:\Users\Slamak\Documents\Profit zálohy
2017-03-09 06:45 - 2016-05-29 21:30 - 00071809 _____ C:\Users\Slamak\Desktop\Pivni_vypocty2.ods
2017-03-09 06:45 - 2013-12-29 08:50 - 00000000 ____D C:\Users\Slamak\Documents\exporty profit
2017-03-09 06:40 - 2015-07-30 12:28 - 00000000 ____D C:\Program Files (x86)\PROFIT
2017-03-09 01:17 - 2015-06-01 21:01 - 13182528 _____ (Intel Corporation) C:\WINDOWS\system32\igd10umd64.dll
2017-03-09 01:17 - 2015-06-01 21:01 - 11460448 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10umd32.dll
2017-03-09 01:16 - 2015-06-01 21:00 - 09025672 _____ (Intel Corporation) C:\WINDOWS\system32\igfxress.dll
2017-03-09 01:16 - 2015-06-01 21:00 - 05382856 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys
2017-03-09 01:16 - 2015-06-01 21:00 - 00463960 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
2017-03-09 01:16 - 2015-06-01 21:00 - 00456328 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcsy.lrc
2017-03-09 01:16 - 2015-06-01 21:00 - 00420960 _____ (Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
2017-03-09 01:16 - 2015-06-01 21:00 - 00193112 _____ (Intel Corporation) C:\WINDOWS\system32\igfxtray.exe
2017-03-09 01:16 - 2015-06-01 21:00 - 00128648 _____ (Intel Corporation) C:\WINDOWS\system32\hccutils.dll
2017-03-09 01:16 - 2015-06-01 21:00 - 00112264 _____ C:\WINDOWS\system32\IccLibDll_x64.dll
2017-03-09 01:16 - 2015-06-01 21:00 - 00082056 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.dll
2017-03-08 21:35 - 2013-10-12 21:31 - 00000000 ____D C:\Users\Slamak\AppData\Local\CrashDumps
2017-03-08 21:11 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\NDF
2017-03-08 20:52 - 2013-10-05 14:12 - 00000000 ____D C:\Users\Slamak\Documents\Dokumenty Eshop
2017-03-08 20:36 - 2014-02-11 20:05 - 00000000 ____D C:\Users\Slamak\Documents\zalohy PROFIT
2017-03-08 13:50 - 2014-09-24 20:25 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-03-07 19:42 - 2014-11-16 21:45 - 00000000 ____D C:\Program Files\trend micro
2017-03-07 18:59 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-03-07 12:16 - 2014-06-27 19:35 - 00000000 ____D C:\Users\Slamak\AppData\Roaming\Oracle
2017-03-06 18:02 - 2013-10-05 14:32 - 00000000 ____D C:\Users\Slamak\AppData\Roaming\FileZilla
2017-03-06 18:01 - 2013-10-05 14:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2017-03-06 18:01 - 2013-10-05 14:32 - 00000000 ____D C:\Program Files (x86)\FileZilla FTP Client
2017-03-06 12:15 - 2014-12-20 21:12 - 00000000 ___RD C:\Users\Slamak\Documents\Scanned Documents
2017-03-06 07:33 - 2016-07-16 07:04 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2017-03-04 13:15 - 2015-02-25 18:13 - 00000000 ____D C:\ProgramData\AlawarWrapper
2017-03-04 10:20 - 2014-09-12 20:51 - 00000000 ____D C:\FOTOONLINE
2017-03-03 21:47 - 2014-12-26 06:16 - 00000000 ____D C:\ProgramData\AVAST Software
2017-03-03 20:25 - 2014-12-13 12:24 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2017-03-03 20:17 - 2016-09-21 04:34 - 00003458 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2017-03-03 20:17 - 2016-09-21 04:34 - 00003234 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2017-03-03 20:14 - 2016-01-08 08:18 - 00004608 _____ C:\6XSourceFilter.grf
2017-03-03 13:58 - 2017-01-26 19:40 - 00028200 _____ C:\Users\Slamak\Desktop\Nákupy.ods
2017-03-02 23:39 - 2016-09-21 04:34 - 00003188 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2017-03-02 23:35 - 2013-10-22 19:50 - 00000000 ____D C:\Users\Slamak\AppData\Roaming\Skype
2017-03-02 23:35 - 2013-10-05 17:54 - 00000000 ____D C:\Users\Slamak\AppData\Local\Microsoft Help
2017-03-02 23:35 - 2012-11-22 13:05 - 00000000 ____D C:\ProgramData\Temp
2017-03-02 23:34 - 2016-09-21 04:55 - 00000000 ___DC C:\WINDOWS\Panther
2017-03-02 23:34 - 2016-07-16 07:04 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2017-03-02 22:50 - 2014-05-17 16:17 - 00000000 ____D C:\Users\Slamak\AppData\Local\AVG
2017-03-02 22:47 - 2013-12-27 07:47 - 00000000 ____D C:\ProgramData\AVG
2017-03-02 20:21 - 2016-06-15 17:24 - 00000000 ____D C:\temp
2017-03-02 20:19 - 2016-09-21 04:34 - 00004012 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1453580228
2017-03-02 20:19 - 2016-07-16 07:04 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2017-03-02 20:19 - 2016-01-23 21:17 - 00001092 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2017-03-02 20:00 - 2015-09-24 18:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2017-03-02 20:00 - 2015-09-24 18:49 - 00000000 ____D C:\Program Files (x86)\7-Zip
2017-03-02 19:44 - 2014-12-26 06:19 - 00547904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2017-03-02 19:44 - 2014-12-26 06:19 - 00337592 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2017-03-02 19:44 - 2014-12-26 06:19 - 00162528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2017-03-02 19:44 - 2014-12-26 06:19 - 00126600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2017-03-02 19:44 - 2014-12-26 06:19 - 00100640 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2017-03-02 19:44 - 2014-12-26 06:19 - 00075704 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2017-03-02 19:44 - 2014-12-26 06:19 - 00038296 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2017-03-02 19:43 - 2016-02-24 08:26 - 00461640 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetSec.sys
2017-03-02 19:43 - 2015-03-08 12:36 - 00032088 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2017-03-02 19:43 - 2014-12-26 06:19 - 00993608 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2017-03-01 10:57 - 2013-10-05 13:37 - 00001228 _____ C:\Users\Slamak\AppData\Roaming\Microsoft\Windows\Start Menu\GOM Player.lnk
2017-03-01 00:02 - 2013-10-05 22:37 - 00000000 ____D C:\Users\Slamak\Documents\ESHOP
2017-02-28 07:08 - 2014-08-25 07:57 - 00000000 ____D C:\Users\Slamak\AppData\Local\Adobe
2017-02-28 07:07 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-02-28 07:07 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\Macromed
2017-02-27 07:43 - 2016-11-03 14:47 - 00000287 _____ C:\Users\Slamak\Desktop\Nový textový dokument (2).txt
2017-02-27 06:48 - 2012-11-22 13:04 - 00000000 ____D C:\Program Files (x86)\NTI
2017-02-27 06:48 - 2012-11-22 13:02 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-02-27 06:43 - 2014-12-24 19:39 - 00000000 ____D C:\Garmin
2017-02-27 06:42 - 2013-10-22 19:50 - 00000000 ____D C:\ProgramData\Skype
2017-02-27 06:40 - 2014-05-29 14:00 - 00000000 ____D C:\ProgramData\Nero
2017-02-27 06:35 - 2017-01-30 22:06 - 00000000 ____D C:\Users\Slamak\AppData\Roaming\Foxit Software
2017-02-27 06:35 - 2014-12-29 10:17 - 00000000 ___RD C:\Users\Slamak\OneDrive
2017-02-27 06:34 - 2017-01-30 22:06 - 00000000 ____D C:\ProgramData\Foxit Software
2017-02-24 15:17 - 2017-01-02 19:21 - 00000000 ____D C:\Users\Slamak\AppData\Roaming\Bitcoin
2017-02-24 14:36 - 2015-07-30 12:28 - 00001142 _____ C:\ProgramData\Microsoft\Windows\Start Menu\PROFIT.lnk
2017-02-24 14:36 - 2015-07-30 12:28 - 00001052 _____ C:\Users\Public\Desktop\PROFIT.lnk
2017-02-24 14:36 - 2015-07-30 12:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LPsoft PROFIT
2017-02-24 07:24 - 2013-11-02 18:58 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-02-24 07:19 - 2013-11-02 18:58 - 138020592 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-02-23 18:38 - 2016-07-16 12:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-02-22 13:41 - 2016-04-13 18:39 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-02-09 11:32 - 2016-11-21 15:12 - 00014938 _____ C:\Users\Slamak\Desktop\tisk Andrea.odt
2017-02-09 10:49 - 2014-09-21 13:04 - 00000000 ____D C:\Program Files (x86)\eM Client
2017-02-09 10:48 - 2014-09-21 13:05 - 00001039 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eM Client.lnk
2017-02-08 10:04 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\rescache
2017-02-07 20:02 - 2016-07-16 23:25 - 00640672 _____ C:\WINDOWS\system32\perfh005.dat
2017-02-07 20:02 - 2016-07-16 23:25 - 00140950 _____ C:\WINDOWS\system32\perfc005.dat
2017-02-07 20:00 - 2016-12-28 18:46 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2017-02-07 20:00 - 2016-12-28 18:46 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2017-02-07 19:49 - 2016-12-28 18:45 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2017-02-07 19:46 - 2016-12-28 18:46 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2017-02-07 19:46 - 2016-12-28 18:46 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2017-02-07 19:42 - 2016-12-28 18:46 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2017-02-07 19:35 - 2014-09-12 20:51 - 19942509 _____ C:\WINDOWS\SysWOW64\FOTOKNIHY ONLINE_FOTOKNIHY ONLINE_uninstaller.exe
2017-02-07 15:14 - 2013-12-28 14:38 - 00002276 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
==================== Files in the root of some directories =======
2014-03-05 20:33 - 2014-05-21 19:10 - 0000056 _____ () C:\Users\Slamak\AppData\Local\Images.fl
2014-01-11 19:50 - 2016-09-11 18:29 - 0007602 _____ () C:\Users\Slamak\AppData\Local\Resmon.ResmonCfg
Some files in TEMP:
====================
2017-02-27 06:33 - 2016-12-22 18:03 - 3698888 _____ (Foxit Corporation) C:\Users\Slamak\AppData\Local\Temp\FoxitUpdater.exe
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
Light Image Resizer 4.0.4.3 (HKLM-x32\...\{EBE030DD-D404-4D92-85E9-8C3624820808}_is1) (Version: 4.0.4.3 - ObviousIdea)
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: Avast Antivirus (Enabled) {B693136B-F6EE-DD1C-A0EF-229B8B0B29C4}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Slamak\Desktop" je 26 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
==================== End Of Log ==============================
Ran by Slamak (administrator) on SLAMAKACER (09-03-2017 13:30:39)
Running from C:\Users\Slamak\Desktop
Loaded Profiles: Slamak (Available Profiles: Slamak)
Platform: Windows 10 Home Version 1607 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDService.exe
(Freemake) C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe
(Dritek System INC.) C:\Windows\RfBtnSvc64.exe
(arvato digital services llc) C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
(NTI Corporation) C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe
(AVG Secure Search) C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.7\ToolbarUpdater.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrl.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesApp64.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerTray.exe
(CyberLink) C:\Program Files (x86)\CyberLink\MediaEspresso\DeviceDetector\DeviceDetector.exe
(ELAN Microelectronics Corp.) C:\Program Files\Elantech\ETDCtrlHelper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Framework\Common\avguix.exe
(Intel Corporation) C:\Windows\System32\SET4086.tmp
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe
(Intel Corporation) C:\Windows\System32\SET4115.tmp
(Intel Corporation) C:\Windows\System32\SET46A7.tmp
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Acer Incorporated) C:\Program Files\Acer\Acer Power Management\ePowerEvent.exe
() C:\Windows\SysWOW64\C2MP\TrayMenu.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
() C:\Program Files (x86)\AVG Web TuneUp\vprot.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
() C:\Program Files\WindowsApps\Microsoft.WindowsCalculator_10.1702.312.0_x64__8wekyb3d8bbwe\Calculator.exe
(Microsoft Corporation) C:\Windows\ImmersiveControlPanel\SystemSettings.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(forum.viry.cz) C:\Users\Slamak\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [ETDCtrl] => C:\Program Files\Elantech\ETDCtrl.exe [3242696 2015-10-07] (ELAN Microelectronics Corp.)
HKLM\...\Run: [RTHDVCPL] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [12503184 2012-06-11] (Realtek Semiconductor)
HKLM-x32\...\Run: [RadioController] => C:\Program Files (x86)\RadioController\RfBtnHelper.exe [111216 2013-02-08] (Dritek System Inc.)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvLaunch.exe [205512 2017-03-02] (AVAST Software)
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [143360 2012-09-06] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [3076096 2012-06-06] (Brother Industries, Ltd.)
HKLM-x32\...\Run: [Family Tree Builder Update] => C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe [14517936 2016-07-14] (MyHeritage)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-09-22] (Oracle Corporation)
HKLM-x32\...\Run: [AvgUi] => C:\Program Files (x86)\AVG\Framework\Common\avguirna.exe [240400 2016-12-06] (AVG Technologies CZ, s.r.o.)
HKLM-x32\...\Run: [vProt] => C:\Program Files (x86)\AVG Web TuneUp\vprot.exe [2183752 2017-03-02] ()
Winlogon\Notify\igfxcui: C:\WINDOWS\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-3621977129-2832859686-462106091-1001\...\Run: [eM Client] => C:\Program Files (x86)\eM Client\MailClient.exe [24742760 2016-10-21] (eM Client s.r.o.)
HKU\S-1-5-21-3621977129-2832859686-462106091-1001\...\Run: [DAEMON Tools Lite] => C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [3696912 2014-03-04] (Disc Soft Ltd)
HKU\S-1-5-21-3621977129-2832859686-462106091-1001\...\Run: [GoogleDriveSync] => C:\Program Files (x86)\Google\Drive\googledrivesync.exe [23818360 2016-11-30] (Google)
HKU\S-1-5-21-3621977129-2832859686-462106091-1001\...\Run: [ProgLauncher] => C:\Program Files (x86)\ProgDVB\ProgLauncher.exe [400584 2016-08-26] ()
HKU\S-1-5-21-3621977129-2832859686-462106091-1001\...\Run: [GEN] => C:\Users\Slamak\AppData\Local\Programs\GEN\GEN.exe [520102 2016-12-16] ( )
HKU\S-1-5-21-3621977129-2832859686-462106091-1001\...\MountPoints2: {2da06656-ba23-11e6-bf9c-20898455de28} - "E:\LG_PC_Programs.exe"
IFEO\acpanel_win.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\AcroRd32.exe: [Debugger] "C:\PROGRAM FILES (X86)\AVG\AVG PC TUNEUP\TUAutoReactivator64.EXE"
IFEO\chrome.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\dtlite.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\googledrivesync.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\javacpl.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\javaw.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\javaws.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\myheritage.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\progdvbnet.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\progguide.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\progtv.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\skineditor.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\sptdinst-x64.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
IFEO\uninstall.exe: [Debugger] "C:\Program Files (x86)\AVG\AVG PC TuneUp\TUAutoReactivator64.exe"
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files (x86)\Google\Drive\googledrivesync64.dll [2016-11-30] (Google)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-03-02] (AVAST Software)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2017-03-02] (AVAST Software)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Acer Backup Manager Tray.lnk [2012-11-22]
ShortcutTarget: Acer Backup Manager Tray.lnk -> C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe (NTI Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\TrayMenu.lnk [2013-11-26]
ShortcutTarget: TrayMenu.lnk -> C:\Windows\SysWOW64\C2MP\TrayMenu.exe ()
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 10.154.240.3 10.154.240.66
Tcpip\..\Interfaces\{5ebae234-8da9-4cf8-be43-1d89008d74f4}: [DhcpNameServer] 10.154.240.3 10.154.240.66
Tcpip\..\Interfaces\{f77bfe06-ae58-4493-81ba-fffbdc2587a6}: [DhcpNameServer] 10.154.240.3 10.154.240.66
Internet Explorer:
==================
HKU\S-1-5-21-3621977129-2832859686-462106091-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
HKU\S-1-5-21-3621977129-2832859686-462106091-1001\Software\Microsoft\Internet Explorer\Main,Start Page = hxxps://www.seznam.cz/?clid=22668
SearchScopes: HKLM -> DefaultScope {6A9BB02B-2030-4929-AE57-F965133B84E3} URL =
SearchScopes: HKLM-x32 -> DefaultScope {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKLM-x32 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3621977129-2832859686-462106091-1001 -> DefaultScope {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3621977129-2832859686-462106091-1001 -> {15C4DF55-4B67-495A-A3D3-A497C4A49EE0} URL = hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}
SearchScopes: HKU\S-1-5-21-3621977129-2832859686-462106091-1001 -> {3BD44F0E-0596-4008-AEE0-45D47E3A8F0E} URL = hxxp://www.mystart.com/results.php?gen=ms&pr=v ... earchTerms}
SearchScopes: HKU\S-1-5-21-3621977129-2832859686-462106091-1001 -> {6A9BB02B-2030-4929-AE57-F965133B84E3} URL =
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\ssv.dll [2016-12-12] (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\jp2ssv.dll [2016-12-12] (Oracle Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - No File
FireFox:
========
FF ProfilePath: C:\Users\Slamak\AppData\Roaming\Mozilla\Firefox\Profiles\gjyzp0az.default [2017-03-09]
FF user.js: detected! => C:\Users\Slamak\AppData\Roaming\Mozilla\Firefox\Profiles\gjyzp0az.default\user.js [2017-03-02]
FF DefaultSearchEngine: Mozilla\Firefox\Profiles\gjyzp0az.default -> AVG Secure Search
FF DefaultSearchUrl: Mozilla\Firefox\Profiles\gjyzp0az.default -> hxxp://search.seznam.cz/?sourceid=quicksearch_22668&q={searchTerms}&
FF SearchEngineOrder.1: Mozilla\Firefox\Profiles\gjyzp0az.default -> Seznam
FF SelectedSearchEngine: Mozilla\Firefox\Profiles\gjyzp0az.default -> Seznam
FF Homepage: Mozilla\Firefox\Profiles\gjyzp0az.default -> hxxps://www.seznam.cz/
FF Extension: (AVG Web TuneUp) - C:\Users\Slamak\AppData\Roaming\Mozilla\Firefox\Profiles\gjyzp0az.default\Extensions\avg@toolbar.xpi [2017-03-02]
FF Extension: (Avast Passwords) - C:\Users\Slamak\AppData\Roaming\Mozilla\Firefox\Profiles\gjyzp0az.default\Extensions\jid1-r1tDuNiNb4SEww@jetpack.xpi [2017-02-10]
FF Extension: (Password Exporter) - C:\Users\Slamak\AppData\Roaming\Mozilla\Firefox\Profiles\gjyzp0az.default\Extensions\{B17C1C5A-04B1-11DB-9804-B622A1EF5492}.xpi [2016-04-05]
FF Extension: (SHA-1 deprecation staged rollout) - C:\Users\Slamak\AppData\Roaming\Mozilla\Firefox\Profiles\gjyzp0az.default\features\{75e0d707-62cb-4894-9810-fc43e0edf06f}\disableSHA1rollout@mozilla.org.xpi [2017-03-03]
FF SearchPlugin: C:\Users\Slamak\AppData\Roaming\Mozilla\Firefox\Profiles\gjyzp0az.default\searchplugins\avg-secure-search.xml [2017-03-02]
FF SearchPlugin: C:\Users\Slamak\AppData\Roaming\Mozilla\Firefox\Profiles\gjyzp0az.default\searchplugins\seznam-avast.xml [2015-02-17]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF48
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF48 [2017-03-02]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF48
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF48 [2017-03-02]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF48
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF48
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF64_24_0_0_221.dll [2017-02-28] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [No File]
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\WINDOWS\SysWoW64\Macromed\Flash\NPSWF32_24_0_0_221.dll [2017-02-28] ()
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\40.3.7\\npsitesafety.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-06-07] (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\dtplugin\npDeployJava1.dll [2016-12-12] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.111.2 -> C:\Program Files (x86)\Java\jre1.8.0_111\bin\plugin2\npjp2.dll [2016-12-12] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50901.0\npctrl.dll [2016-08-31] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=16.4.3528.0331 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll [2014-03-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-12-23] (Adobe Systems Inc.)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.seznam.cz/?clid=13906
CHR StartupUrls: Default -> "hxxp://websearch.just-browse.info/"
CHR DefaultSearchURL: Default -> hxxps://www.google.com/search?q={searchTerms}&i ... hannel=rcs
CHR DefaultSearchKeyword: Default -> google.com_
CHR DefaultSuggestURL: Default -> hxxps://www.google.com/complete/search?q={searchTerms}
CHR Profile: C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default [2017-03-02]
CHR Extension: (CacheList) - C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\amhhdbdhoghppijbjfdkiaconkmfbbpa [2016-11-09]
CHR Extension: (Dokumenty Google) - C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-02-11]
CHR Extension: (Disk Google) - C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-24]
CHR Extension: (Seznam Lištička - Email) - C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\bgjpfhpjcgdppjbgnpnjllokbmcdllig [2017-02-10]
CHR Extension: (Video AdBlock for Chrome) - C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd [2016-02-02]
CHR Extension: (Seznam Lištička - Slovník) - C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2017-02-10]
CHR Extension: (YouTube) - C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-02]
CHR Extension: (Vyhledávání Google) - C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-07]
CHR Extension: (Avast Online Security) - C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\daanglpcpkjjlkhcbladppjphglbigam [2016-12-12]
CHR Extension: (MyStart New Tab) - C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa [2016-11-23]
CHR Extension: (Adobe Acrobat) - C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-02-10]
CHR Extension: (Avast Passwords) - C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\emhginjpijfggbofeediiojmdlmlkoik [2017-02-15]
CHR Extension: (Avast SafePrice) - C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2016-11-15]
CHR Extension: (Dokumenty Google offline) - C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-07-06]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-02-10]
CHR Extension: (Seznam Lištička - Rychlá volba) - C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\olfeabkoenfaoljndfecamgilllcpiak [2017-02-10]
CHR Extension: (Save the Penguin) - C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\pinohkicpolgdfgajpflbaoimmnaeibb [2017-02-24]
CHR Extension: (Gmail) - C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-04-04]
CHR Extension: (Chrome Media Router) - C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-02-15]
CHR Extension: (Geoseznam) - C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkejgpgaflkeonkliblcplomemekogop [2016-07-06]
CHR HKU\S-1-5-21-3621977129-2832859686-462106091-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [bknbnapaddjdnbilpmlacdkjdkjmbjhd] - hxxp://clients2.google.com/service/update2/crx
CHR HKU\S-1-5-21-3621977129-2832859686-462106091-1001\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [lmjegmlicamnimmfhcmpkclmigmmcbeh] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [bknbnapaddjdnbilpmlacdkjdkjmbjhd] - hxxp://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [daanglpcpkjjlkhcbladppjphglbigam] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [dogdoihocdkadpalbghcpfafbojcfofa] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx <not found>
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S3 aswbIDSAgent; C:\Program Files\AVAST Software\Avast\x64\aswidsagenta.exe [7147320 2017-03-02] (AVAST Software s.r.o.)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [262736 2017-03-02] (AVAST Software)
R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [278784 2017-03-02] (AVAST Software)
R2 avgsvc; C:\Program Files (x86)\AVG\Framework\Common\avgsvca.exe [1146128 2016-12-06] (AVG Technologies CZ, s.r.o.)
S4 BrcmCardReader; C:\Program Files\Broadcom\MemoryCard\BrcmCardReader.exe [176640 2012-08-21] (Broadcom Corp.) [File not signed]
S4 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [266240 2012-06-05] (Brother Industries, Ltd.) [File not signed]
S4 CCDMonitorService; C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [2449552 2012-10-26] (Acer Incorporated)
S3 DeviceFastLaneService; C:\Program Files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [469648 2012-11-16] (Acer Incorporated)
R3 ePowerSvc; C:\Program Files\Acer\Acer Power Management\ePowerSvc.exe [658064 2012-10-23] (Acer Incorporated)
R2 ETDService; C:\Program Files\Elantech\ETDService.exe [144072 2015-10-07] (ELAN Microelectronics Corp.)
R2 Freemake Improver; C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [108032 2014-05-07] (Freemake) [File not signed]
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [165760 2012-07-18] (Intel Corporation)
R2 NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [259136 2012-11-03] (NTI Corporation)
R2 PSI_SVC_2_x64; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [336824 2010-11-30] (arvato digital services llc)
R2 RfButtonDriverService; C:\Windows\RfBtnSvc64.exe [96880 2013-02-08] (Dritek System INC.)
R2 TuneUp.UtilitiesSvc; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [5906704 2017-02-21] (AVG Technologies CZ, s.r.o.)
R2 vToolbarUpdater40.3.7; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\40.3.7\ToolbarUpdater.exe [1354312 2017-03-02] (AVG Secure Search)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
R2 WtuSystemSupport; C:\Program Files (x86)\AVG Web TuneUp\WtuSystemSupport.exe [981576 2017-03-02] ()
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R1 aswbidsdriver; C:\WINDOWS\system32\drivers\aswbidsdrivera.sys [309272 2017-03-02] (AVAST Software s.r.o.)
R0 aswbidsh; C:\WINDOWS\system32\drivers\aswbidsha.sys [189768 2017-03-02] (AVAST Software s.r.o.)
R0 aswblog; C:\WINDOWS\system32\drivers\aswbloga.sys [334600 2017-03-02] (AVAST Software s.r.o.)
R0 aswbuniv; C:\WINDOWS\system32\drivers\aswbuniva.sys [48528 2017-03-02] (AVAST Software s.r.o.)
S3 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [38296 2017-03-02] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [32088 2017-03-02] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [126600 2017-03-02] (AVAST Software)
R1 aswNetSec; C:\WINDOWS\system32\drivers\aswNetSec.sys [461640 2017-03-02] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [100640 2017-03-02] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\drivers\aswRvrt.sys [75704 2017-03-02] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [993608 2017-03-02] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [547904 2017-03-02] (AVAST Software)
S2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [162528 2017-03-02] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\drivers\aswVmm.sys [337592 2017-03-02] (AVAST Software)
R3 BCM43XX; C:\WINDOWS\system32\DRIVERS\bcmwl63a.sys [7585280 2016-07-16] (Broadcom Corporation)
S3 CH341SER_A64; C:\WINDOWS\System32\Drivers\CH341S64.SYS [59904 2015-02-06] (www.winchiphead.com)
R1 dtsoftbus01; C:\WINDOWS\System32\drivers\dtsoftbus01.sys [283064 2014-09-29] (Disc Soft Ltd)
S3 IT9135BDA; C:\WINDOWS\System32\Drivers\IT9135BDA.sys [113280 2010-02-03] (ITE )
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 Ps2Kb2Hid; C:\WINDOWS\System32\drivers\aPs2Kb2Hid.sys [26736 2013-02-08] (Dritek System Inc.)
R3 TuneUpUtilitiesDrv; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [32304 2017-02-21] (AVG Netherlands B.V.)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-03-09 13:30 - 2017-03-09 13:32 - 00026615 _____ C:\Users\Slamak\Desktop\FRST.txt
2017-03-09 13:30 - 2017-03-09 13:30 - 00000000 ____D C:\FRST
2017-03-09 13:25 - 2017-03-09 13:29 - 00112640 _____ (forum.viry.cz) C:\Users\Slamak\Desktop\FRSTLauncher.exe
2017-03-09 13:21 - 2017-03-09 13:29 - 02423808 _____ (Farbar) C:\Users\Slamak\Desktop\FRST64.exe
2017-03-09 13:12 - 2017-03-09 13:12 - 00000000 ____D C:\WINDOWS\LastGood
2017-03-09 13:12 - 2017-03-09 13:12 - 00000000 ____D C:\Intel
2017-03-09 12:56 - 2017-03-09 12:56 - 00000000 ____D C:\ProgramData\SWCUTemp
2017-03-09 07:34 - 2017-03-09 07:34 - 00045507 _____ C:\Users\Slamak\Downloads\Clearing_1615949511_9003553635.pdf
2017-03-09 07:33 - 2017-03-09 07:33 - 00045085 _____ C:\Users\Slamak\Downloads\Clearing_1615949511_9003523660.pdf
2017-03-09 07:32 - 2017-03-09 07:32 - 00046489 _____ C:\Users\Slamak\Downloads\Clearing_1615949511_9003493135.pdf
2017-03-09 07:32 - 2017-03-09 07:32 - 00045309 _____ C:\Users\Slamak\Downloads\Clearing_1615949511_9003461411(1).pdf
2017-03-09 07:24 - 2017-03-09 07:24 - 00052736 _____ C:\Users\Slamak\Downloads\GOPAY_112643542-170130-170205.xls
2017-03-09 07:14 - 2017-03-09 07:14 - 00074317 _____ C:\Users\Slamak\Downloads\zasilkovna-2017-03-09-3022.pdf
2017-03-09 07:07 - 2017-03-09 07:07 - 00471823 _____ C:\Users\Slamak\Downloads\171019421(1).pdf
2017-03-09 07:06 - 2017-03-09 07:06 - 00471991 _____ C:\Users\Slamak\Downloads\171010674.pdf
2017-03-09 07:06 - 2017-03-09 07:06 - 00471668 _____ C:\Users\Slamak\Downloads\171013755.pdf
2017-03-09 07:06 - 2017-03-09 07:06 - 00470862 _____ C:\Users\Slamak\Downloads\171016549(1).pdf
2017-03-09 06:55 - 2017-03-09 06:55 - 00074320 _____ C:\Users\Slamak\Downloads\zasilkovna-2017-03-09-1329.pdf
2017-03-09 01:17 - 2017-03-09 01:17 - 12935296 _____ (Intel Corporation) C:\WINDOWS\system32\igdumd64.dll
2017-03-09 01:17 - 2017-03-09 01:17 - 11330576 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igdumd32.dll
2017-03-09 01:17 - 2017-03-09 01:17 - 01086408 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmrt64.dll
2017-03-09 01:17 - 2017-03-09 01:17 - 00975184 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmrt32.dll
2017-03-09 01:17 - 2017-03-09 01:17 - 00558728 _____ (Intel Corporation) C:\WINDOWS\system32\iglhsip64.dll
2017-03-09 01:17 - 2017-03-09 01:17 - 00553424 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhsip32.dll
2017-03-09 01:17 - 2017-03-09 01:17 - 00242800 _____ (Intel Corporation) C:\WINDOWS\system32\iglhcp64.dll
2017-03-09 01:17 - 2017-03-09 01:17 - 00206000 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\iglhcp32.dll
2017-03-09 01:17 - 2017-03-09 01:17 - 00051184 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
2017-03-09 01:16 - 2017-03-09 01:16 - 13046920 _____ (Intel Corporation) C:\WINDOWS\system32\ig4icd64.dll
2017-03-09 01:16 - 2017-03-09 01:16 - 10829448 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\ig4icd32.dll
2017-03-09 01:16 - 2017-03-09 01:16 - 05925984 _____ (Intel Corporation) C:\WINDOWS\system32\GfxUI.exe
2017-03-09 01:16 - 2017-03-09 01:16 - 03529352 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcmjit64.dll
2017-03-09 01:16 - 2017-03-09 01:16 - 03139208 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxcmjit32.dll
2017-03-09 01:16 - 2017-03-09 01:16 - 00593544 _____ (Intel Corporation) C:\WINDOWS\system32\igfx11cmrt64.dll
2017-03-09 01:16 - 2017-03-09 01:16 - 00560776 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfx11cmrt32.dll
2017-03-09 01:16 - 2017-03-09 01:16 - 00536664 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
2017-03-09 01:16 - 2017-03-09 01:16 - 00460936 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdev.dll
2017-03-09 01:16 - 2017-03-09 01:16 - 00458376 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrell.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00457864 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfra.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00457864 _____ (Intel Corporation) C:\WINDOWS\system32\igfxresn.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00457352 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrus.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00457344 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrrom.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00456840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsky.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00456840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptg.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00456840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrplk.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00456840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnld.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00456840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrita.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00456840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhrv.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00456840 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdeu.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00456328 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrhun.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00456328 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfin.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00455816 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtrk.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00455816 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrsve.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00455816 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrslv.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00455816 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptb.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00455816 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrnor.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00455304 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrtha.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00455304 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdan.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00453768 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrheb.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00453768 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrara.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00450184 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrjpn.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00449160 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrkor.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00447112 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcht.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00446600 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrchs.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00428680 _____ (Intel Corporation) C:\WINDOWS\system32\igfxTMM.dll
2017-03-09 01:16 - 2017-03-09 01:16 - 00402568 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpph.dll
2017-03-09 01:16 - 2017-03-09 01:16 - 00348808 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxdv32.dll
2017-03-09 01:16 - 2017-03-09 01:16 - 00304264 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrenu.lrc
2017-03-09 01:16 - 2017-03-09 01:16 - 00300128 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\IntelCpHeciSvc.exe
2017-03-09 01:16 - 2017-03-09 01:16 - 00276064 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2017-03-09 01:16 - 2017-03-09 01:16 - 00206944 _____ (Intel Corporation) C:\WINDOWS\system32\difx64.exe
2017-03-09 01:16 - 2017-03-09 01:16 - 00193160 _____ (Intel Corporation) C:\WINDOWS\system32\gfxSrvc.dll
2017-03-09 01:16 - 2017-03-09 01:16 - 00160392 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdo.dll
2017-03-09 01:16 - 2017-03-09 01:16 - 00145032 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcpl.cpl
2017-03-09 01:16 - 2017-03-09 01:16 - 00134280 _____ (Intel Corporation) C:\WINDOWS\system32\igfxCoIn_v4459.dll
2017-03-09 01:16 - 2017-03-09 01:16 - 00119432 _____ C:\WINDOWS\system32\igdde64.dll
2017-03-09 01:16 - 2017-03-09 01:16 - 00099464 _____ C:\WINDOWS\SysWOW64\igdde32.dll
2017-03-09 01:16 - 2017-03-09 01:16 - 00043144 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igfxexps32.dll
2017-03-09 01:16 - 2017-03-09 01:16 - 00027784 _____ ( ) C:\WINDOWS\system32\IGFXDEVLib.dll
2017-03-08 21:46 - 2017-03-08 21:46 - 00022725 _____ C:\Users\Slamak\Downloads\2017-02-01–2017-02-28_Transakce.zip
2017-03-08 21:19 - 2017-03-09 13:06 - 00000000 ____D C:\Program Files (x86)\Spyware Terminator
2017-03-08 21:18 - 2017-03-08 21:18 - 09647696 _____ (Crawler Group ) C:\Users\Slamak\Downloads\SpywareTerminatorSetup.exe
2017-03-08 20:52 - 2017-03-08 20:52 - 00001284 _____ C:\Users\Slamak\Desktop\Faktury přijaté 2017 – zástupce.lnk
2017-03-08 20:51 - 2017-03-08 20:51 - 00001194 _____ C:\Users\Slamak\Desktop\Texty shop – zástupce.lnk
2017-03-07 21:08 - 2017-03-07 21:08 - 00074321 _____ C:\Users\Slamak\Downloads\zasilkovna-2017-03-07-2146.pdf
2017-03-07 19:42 - 2017-03-07 19:42 - 00000000 ____D C:\rsit
2017-03-07 19:41 - 2017-03-07 19:42 - 01222144 _____ C:\Users\Slamak\Downloads\RSITx64.exe
2017-03-07 19:36 - 2017-03-07 19:36 - 00010853 _____ C:\Users\Slamak\Downloads\output(13).pdf
2017-03-07 19:32 - 2017-03-07 19:32 - 00075667 _____ C:\Users\Slamak\Downloads\zasilkovna-2017-03-07-1174.pdf
2017-03-07 12:16 - 2017-03-07 12:16 - 00000000 ____D C:\Users\Slamak\fUTkALeaTxM
2017-03-07 08:35 - 2017-03-07 08:35 - 00472563 _____ C:\Users\Slamak\Downloads\171022412.pdf
2017-03-06 18:01 - 2017-03-06 18:01 - 00000000 ____D C:\Users\Slamak\AppData\Local\FileZilla
2017-03-06 17:03 - 2017-03-06 17:03 - 00206521 _____ C:\Users\Slamak\Downloads\492092659.PDF
2017-03-06 17:02 - 2017-03-06 17:02 - 00089630 _____ C:\Users\Slamak\Downloads\492092658.PDF
2017-03-06 15:07 - 2017-03-06 15:11 - 00272470 _____ C:\Users\Slamak\Documents\kaplicka v opre.odt
2017-03-06 11:12 - 2017-03-06 11:12 - 00009093 _____ C:\Users\Slamak\Downloads\output(12).pdf
2017-03-06 07:16 - 2017-03-06 07:16 - 00074336 _____ C:\Users\Slamak\Downloads\zasilkovna-2017-03-06-8252.pdf
2017-03-05 19:40 - 2017-03-05 19:40 - 00009089 _____ C:\Users\Slamak\Downloads\output(11).pdf
2017-03-05 19:38 - 2017-03-05 19:38 - 00074319 _____ C:\Users\Slamak\Downloads\zasilkovna-2017-03-05-1407.pdf
2017-03-05 19:36 - 2017-03-05 19:36 - 00075244 _____ C:\Users\Slamak\Downloads\zasilkovna-2017-03-05-1743.pdf
2017-03-05 18:48 - 2017-03-05 18:48 - 00005615 _____ C:\Users\Slamak\Downloads\ordersXML(1).xml
2017-03-04 23:17 - 2017-03-04 23:17 - 00148566 _____ C:\Users\Slamak\Downloads\T8940540.pdf
2017-03-04 20:49 - 2017-03-04 20:50 - 01185889 _____ C:\Users\Slamak\Downloads\2015_Guidelines_Beer.pdf
2017-03-04 18:25 - 2017-03-04 18:25 - 00008568 _____ C:\Users\Slamak\Downloads\ordersXML.xml
2017-03-04 16:43 - 2017-03-04 16:58 - 1900460032 _____ C:\Users\Slamak\Downloads\Jokri.avi
2017-03-04 16:42 - 2017-03-04 16:49 - 824785610 _____ C:\Users\Slamak\Downloads\Zilionáři-2016-cz-dab.,super-kvalita.avi
2017-03-04 12:45 - 2017-03-04 12:51 - 914463076 _____ C:\Users\Slamak\Downloads\(cetnici-z-luhacovic)-09-dopis-ze-zahrobi--16'--DVBT_CZ-(romin).avi
2017-03-03 12:49 - 2017-03-03 12:49 - 00362130 _____ C:\Users\Slamak\Downloads\cenik-italie-novy.pdf
2017-03-03 07:23 - 2017-03-03 07:23 - 00074767 _____ C:\Users\Slamak\Downloads\zasilkovna-2017-03-03-8242.pdf
2017-03-02 23:49 - 2017-03-02 23:49 - 00000000 ____D C:\Users\Slamak\AppData\Local\AVG Web TuneUp
2017-03-02 23:49 - 2017-03-02 23:49 - 00000000 ____D C:\ProgramData\AVG Web TuneUp
2017-03-02 23:49 - 2017-03-02 23:49 - 00000000 ____D C:\Program Files\Common Files\AVG Secure Search
2017-03-02 23:49 - 2017-03-02 23:49 - 00000000 ____D C:\Program Files\AVG Web TuneUp
2017-03-02 23:49 - 2017-03-02 23:49 - 00000000 ____D C:\Program Files (x86)\AVG Web TuneUp
2017-03-02 23:36 - 2017-03-07 20:34 - 00003154 _____ C:\WINDOWS\System32\Tasks\Java Platform SE Auto Updater
2017-03-02 22:50 - 2017-03-02 22:50 - 00002594 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG PC TuneUp.lnk
2017-03-02 22:50 - 2017-02-21 09:29 - 00053008 _____ (AVG Technologies CZ, s.r.o.) C:\WINDOWS\system32\TURegOpt.exe
2017-03-02 22:47 - 2017-03-02 22:47 - 00000979 _____ C:\Users\Slamak\Desktop\zalohy PROFIT – zástupce.lnk
2017-03-02 22:47 - 2017-03-02 22:47 - 00000943 _____ C:\Users\Public\Desktop\AVG.lnk
2017-03-02 22:47 - 2017-03-02 22:47 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG Zen
2017-03-02 22:45 - 2017-03-08 13:58 - 00003668 _____ C:\WINDOWS\System32\Tasks\AVG EUpdate Task
2017-03-02 22:45 - 2017-03-02 22:50 - 00000000 ____D C:\Program Files (x86)\AVG
2017-03-02 22:44 - 2017-03-02 23:48 - 00000000 ____D C:\Users\Slamak\AppData\Local\AvgSetupLog
2017-03-02 22:43 - 2017-03-02 22:44 - 03143000 _____ (AVG Technologies CZ, s.r.o.) C:\Users\Slamak\Downloads\AVG_Performance_1129.exe
2017-03-02 22:42 - 2017-03-02 22:42 - 00733304 _____ () C:\Users\Slamak\Downloads\ccleaner-seznam-listicka.exe
2017-03-02 20:32 - 2017-03-02 20:36 - 773026364 _____ C:\Users\Slamak\Downloads\Bezva ženska na krku .2016 komedie cz avi.avi
2017-03-02 19:45 - 2017-03-06 10:37 - 00004268 _____ C:\WINDOWS\System32\Tasks\Avast Emergency Update
2017-03-02 19:45 - 2017-03-02 19:43 - 00334600 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbloga.sys
2017-03-02 19:45 - 2017-03-02 19:43 - 00309272 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsdrivera.sys
2017-03-02 19:45 - 2017-03-02 19:43 - 00189768 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbidsha.sys
2017-03-02 19:45 - 2017-03-02 19:43 - 00048528 _____ (AVAST Software s.r.o.) C:\WINDOWS\system32\Drivers\aswbuniva.sys
2017-03-02 19:44 - 2017-03-02 19:44 - 00398408 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2017-03-02 07:28 - 2017-03-02 07:28 - 00074295 _____ C:\Users\Slamak\Downloads\zasilkovna-2017-03-02-1836.pdf
2017-03-02 07:28 - 2017-03-02 07:28 - 00074295 _____ C:\Users\Slamak\Downloads\zasilkovna-2017-03-02-1512.pdf
2017-03-02 07:28 - 2017-03-02 07:28 - 00008998 _____ C:\Users\Slamak\Downloads\output(10).pdf
2017-03-01 10:53 - 2017-03-01 10:53 - 00216324 _____ C:\Users\Slamak\Downloads\newsletter_3.pdf
2017-03-01 06:53 - 2017-03-01 06:53 - 00014515 _____ C:\Users\Slamak\Downloads\output(9).pdf
2017-03-01 06:50 - 2017-03-01 06:50 - 00075723 _____ C:\Users\Slamak\Downloads\zasilkovna-2017-03-01-1997.pdf
2017-03-01 01:56 - 2017-03-01 01:56 - 00085710 _____ C:\Users\Slamak\Downloads\Obchodni podminky www.vyrobtesipivo.cz(1).pdf
2017-03-01 00:14 - 2012-01-19 02:27 - 00000000 ____D C:\Users\Slamak\Documents\tni_product_reviews
2017-03-01 00:11 - 2017-03-01 00:11 - 00012813 _____ C:\Users\Slamak\Downloads\tni_product_reviews RECENZE.zip
2017-02-28 23:17 - 2017-02-28 23:17 - 00402839 _____ C:\Users\Slamak\Downloads\sanicleantl.pdf
2017-02-28 22:26 - 2017-02-28 22:26 - 00305226 _____ C:\Users\Slamak\Downloads\PBW_SDS_EN.pdf
2017-02-28 22:26 - 2017-02-28 22:26 - 00238727 _____ C:\Users\Slamak\Downloads\Star_San_HB_SDS_EN.pdf
2017-02-28 21:56 - 2017-02-28 21:56 - 00471823 _____ C:\Users\Slamak\Downloads\171019421.pdf
2017-02-28 16:32 - 2017-02-28 16:33 - 176296836 _____ C:\Users\Slamak\Downloads\RINO-–-Příběh-špióna.part2.rar
2017-02-28 16:31 - 2017-02-28 16:46 - 2086666240 _____ C:\Users\Slamak\Downloads\RINO-–-Příběh-špióna.part1.rar
2017-02-27 21:06 - 2017-02-27 21:06 - 00009189 _____ C:\Users\Slamak\Downloads\output(8).pdf
2017-02-27 20:25 - 2017-02-27 20:25 - 00429571 _____ C:\Users\Slamak\Downloads\Vyklad_pojmu_Prikaz-platce-prostrednictvim-prijemce.pdf
2017-02-27 19:53 - 2017-02-27 19:53 - 00076944 _____ C:\Users\Slamak\Downloads\zasilkovna-2017-02-27-1307.pdf
2017-02-27 19:53 - 2017-02-27 19:53 - 00017279 _____ C:\Users\Slamak\Downloads\output(7).pdf
2017-02-27 19:24 - 2017-02-27 19:24 - 00050584 _____ C:\Users\Slamak\Downloads\4117048648.pdf
2017-02-27 19:24 - 2017-02-27 19:24 - 00048491 _____ C:\Users\Slamak\Downloads\4017047847.pdf
2017-02-27 19:21 - 2017-02-27 19:21 - 00050611 _____ C:\Users\Slamak\Downloads\4117048644.pdf
2017-02-27 19:21 - 2017-02-27 19:21 - 00048203 _____ C:\Users\Slamak\Downloads\4017047844.pdf
2017-02-27 16:14 - 2017-02-27 16:14 - 00003004 _____ C:\Users\Slamak\Downloads\438894670_1_Autentizační údaje(2).pdf
2017-02-27 11:41 - 2017-02-27 11:42 - 00020893 _____ C:\Users\Slamak\Desktop\Order Stanislav Krejci - vyrobtesipivo.cz.ods
2017-02-27 10:36 - 2017-02-27 10:36 - 00235513 _____ C:\Users\Slamak\Desktop\Brouwland_price_list_C20_July_2016_EN.xlsx
2017-02-25 21:04 - 2017-02-25 21:05 - 00530051 _____ C:\Users\Slamak\Downloads\Cenik-01012017.pdf
2017-02-24 21:59 - 2017-02-24 21:59 - 06971584 _____ (Tim Kosse) C:\Users\Slamak\Downloads\FileZilla_3.24.1_win64-setup.exe
2017-02-24 19:35 - 2017-02-24 19:36 - 00061322 _____ C:\Users\Slamak\Downloads\050.270.8 en 050.514.9_SPEC_EN_Bavarian Wheat M20.pdf
2017-02-24 19:35 - 2017-02-24 19:35 - 00083215 _____ C:\Users\Slamak\Downloads\050.270.8.pdf
2017-02-24 17:08 - 2017-02-24 17:08 - 00003534 _____ C:\WINDOWS\System32\Tasks\GEN_Interval
2017-02-24 15:39 - 2017-02-25 20:21 - 00000000 ____D C:\Users\Slamak\AppData\Roaming\Electrum
2017-02-24 15:37 - 2017-02-24 15:37 - 00001080 _____ C:\Users\Slamak\Desktop\Electrum.lnk
2017-02-24 15:37 - 2017-02-24 15:37 - 00000000 ____D C:\Users\Slamak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Electrum
2017-02-24 15:37 - 2017-02-24 15:37 - 00000000 ____D C:\Program Files (x86)\Electrum
2017-02-24 15:36 - 2017-02-24 15:37 - 40635455 _____ (Electrum) C:\Users\Slamak\Downloads\electrum-2.7.18-setup.exe
2017-02-24 15:19 - 2017-02-24 16:16 - 00000074 _____ C:\Users\Slamak\Desktop\Bitcoin.txt
2017-02-24 15:18 - 2017-02-24 15:18 - 00000000 ____D C:\Users\Slamak\Documents\Bitcoin
2017-02-24 15:15 - 2017-02-24 15:16 - 00000000 ____D C:\Users\Slamak\AppData\Roaming\MultiBitHD
2017-02-24 14:29 - 2017-02-24 14:35 - 52950656 _____ (LPsoft ) C:\Users\Slamak\Downloads\PROFIT_201702_setup.exe
2017-02-24 12:53 - 2017-02-24 12:53 - 10262944 _____ C:\Users\Slamak\Downloads\Mangrove Jack's Data Sheets-20170224T115302Z-001.zip
2017-02-24 07:05 - 2017-02-24 07:05 - 00074302 _____ C:\Users\Slamak\Downloads\zasilkovna-2017-02-24-1356.pdf
2017-02-23 22:02 - 2017-02-23 22:02 - 00342006 _____ C:\Users\Slamak\Downloads\Kompakt_70l.pdf
2017-02-23 19:59 - 2017-02-23 19:59 - 01816415 _____ C:\Users\Slamak\Downloads\Mangrove Jack's Traditional Series Beer Pouches-20170223T185854Z-001.zip
2017-02-23 19:57 - 2017-02-23 19:58 - 03333638 _____ C:\Users\Slamak\Downloads\Mangrove Jack's Craft Series Yeast-20170223T185729Z-001.zip
2017-02-23 19:40 - 2017-02-23 19:40 - 00075600 _____ C:\Users\Slamak\Downloads\zasilkovna-2017-02-23-1254.pdf
2017-02-23 19:37 - 2017-02-23 19:37 - 00011004 _____ C:\Users\Slamak\Downloads\output(6).pdf
2017-02-22 20:46 - 2017-02-22 20:47 - 00100268 _____ C:\Users\Slamak\Desktop\661-1132 Baška Chorvatsko dovolená 2017.htm
2017-02-22 20:46 - 2017-02-22 20:47 - 00000000 ____D C:\Users\Slamak\Desktop\661-1132 Baška Chorvatsko dovolená 2017_soubory
2017-02-22 13:34 - 2017-02-22 13:34 - 07422592 _____ C:\Users\Slamak\Downloads\Katalog_podzim-zima_2016_web.pdf
2017-02-22 06:57 - 2017-02-22 06:57 - 00074805 _____ C:\Users\Slamak\Downloads\zasilkovna-2017-02-22-6332.pdf
2017-02-22 06:57 - 2017-02-22 06:57 - 00009026 _____ C:\Users\Slamak\Downloads\output(5).pdf
2017-02-21 18:59 - 2017-02-21 18:59 - 00470854 _____ C:\Users\Slamak\Downloads\171016549.pdf
2017-02-21 07:20 - 2017-02-21 07:20 - 00010994 _____ C:\Users\Slamak\Downloads\output(4).pdf
2017-02-21 07:16 - 2017-02-21 07:16 - 00074898 _____ C:\Users\Slamak\Downloads\zasilkovna-2017-02-21-9210.pdf
2017-02-20 22:55 - 2017-02-20 22:55 - 00000444 _____ C:\Users\Slamak\Downloads\csv-ukazka.csv
2017-02-20 16:18 - 2017-02-20 16:39 - 3003922830 _____ C:\Users\Slamak\Downloads\ČETNÍCI-Z-LUHAČOVIC-07.Padělek-FHD-(2017)-CZ-(78PT).avi
2017-02-20 16:14 - 2017-02-20 16:22 - 1063945388 _____ C:\Users\Slamak\Downloads\Bohéma S01E06 - Dvojí tvá_e - TVrip CZserial.avi
2017-02-20 15:59 - 2017-02-20 15:59 - 00010990 _____ C:\Users\Slamak\Downloads\output(3).pdf
2017-02-19 22:04 - 2017-02-19 22:04 - 00045633 _____ C:\Users\Slamak\Downloads\PDFReport.aspx
2017-02-19 21:49 - 2017-02-19 21:49 - 00009029 _____ C:\Users\Slamak\Downloads\output(2).pdf
2017-02-19 21:29 - 2017-02-19 21:29 - 00009065 _____ C:\Users\Slamak\Downloads\output(1).pdf
2017-02-19 19:54 - 2017-02-19 19:54 - 00011061 _____ C:\Users\Slamak\Downloads\output.pdf
2017-02-19 18:59 - 2017-02-19 18:59 - 00176219 _____ C:\Users\Slamak\Downloads\plna-moc.pdf
2017-02-19 18:58 - 2017-02-19 18:58 - 00106568 _____ C:\Users\Slamak\Downloads\merkblatt_deutsch.pdf
2017-02-19 18:57 - 2017-02-19 18:57 - 00206467 _____ C:\Users\Slamak\Downloads\Zustimmung mail.pdf
2017-02-19 18:57 - 2017-02-19 18:57 - 00090301 _____ C:\Users\Slamak\Downloads\StAb-Bau-Fragebg. 2002 - tschech..pdf
2017-02-19 18:56 - 2017-02-19 18:56 - 00018825 _____ C:\Users\Slamak\Downloads\Baustellenübersicht D-CZ.docx(1).pdf
2017-02-19 18:55 - 2017-02-19 18:55 - 00158712 _____ C:\Users\Slamak\Downloads\Fragenbogen CZ.pdf
2017-02-19 18:54 - 2017-02-19 18:55 - 00018825 _____ C:\Users\Slamak\Downloads\Baustellenübersicht D-CZ.docx.pdf
2017-02-19 18:54 - 2017-02-19 18:54 - 00381701 _____ C:\Users\Slamak\Downloads\Ansässigkeitsbescheinigung CZ.pdf
2017-02-18 22:13 - 2017-02-18 22:14 - 67620545 _____ C:\Users\Slamak\Downloads\backup_2017-02-18_22-13.zip
2017-02-18 20:53 - 2017-02-18 20:53 - 00107323 _____ C:\Users\Slamak\Desktop\Pojistka.pdf
2017-02-18 20:51 - 2017-02-18 20:51 - 00102558 _____ C:\Users\Slamak\Downloads\490435551.PDF
2017-02-18 20:15 - 2017-02-18 20:15 - 01377244 _____ C:\Users\Slamak\Downloads\testovaci-ssl-certifikat-thawte.pdf
2017-02-17 07:12 - 2017-02-17 07:12 - 03620092 _____ C:\Users\Slamak\Downloads\UPDATED PRICE LIST VYROBTESIPIVO 08.02.2017.pdf
2017-02-16 16:21 - 2017-02-16 16:32 - 1515676186 _____ C:\Users\Slamak\Downloads\vencep.avi
2017-02-16 16:13 - 2017-02-16 16:30 - 1651857408 _____ C:\Users\Slamak\Downloads\Star Trek Do neznáma.avi
2017-02-14 20:31 - 2017-02-14 21:02 - 1380786652 _____ C:\Users\Slamak\Downloads\Díra u Hanušovic 2014 CZ Film DVDRip.avi
2017-02-14 20:28 - 2017-02-14 20:52 - 1573277696 _____ C:\Users\Slamak\Downloads\Mist_i cz.avi
2017-02-14 20:27 - 2017-02-14 20:54 - 833598328 _____ C:\Users\Slamak\Downloads\Celebrity s.r.o-2016-cz.film-KOMEDIE.avi
2017-02-14 20:25 - 2017-02-14 20:45 - 1156334218 _____ C:\Users\Slamak\Downloads\Brainstorm (2008) _esko Komedie Drama Psychologický.avi
2017-02-14 10:24 - 2017-02-14 10:31 - 1067954768 _____ C:\Users\Slamak\Downloads\Bohema-5.dil-6-Vyhrat-za-kazdou-cenu---12.2.2017.avi
2017-02-13 15:18 - 2017-02-13 15:18 - 00108871 _____ C:\Users\Slamak\Downloads\FAKTURA-56091(1).pdf
2017-02-13 12:55 - 2017-02-13 12:55 - 00290332 _____ C:\Users\Slamak\Downloads\MSDS-Desam Solid (09-2015) Schulke.pdf
2017-02-12 18:58 - 2017-02-12 19:13 - 788600518 _____ C:\Users\Slamak\Downloads\Život-je-život--(cz-komedie-2015).avi
2017-02-12 15:17 - 2017-02-12 15:30 - 2135052994 _____ C:\Users\Slamak\Downloads\Spectre.2015.BRRip.XviD.AC3-RARBG.CZ.dub.avi
2017-02-11 21:16 - 2017-02-11 21:16 - 00108871 _____ C:\Users\Slamak\Downloads\FAKTURA-56091.pdf
2017-02-11 20:28 - 2017-02-12 20:05 - 641228800 _____ C:\Users\Slamak\Downloads\Vejška-Vejška (2014) Komedie.avi
2017-02-11 20:19 - 2017-02-11 22:20 - 973083570 _____ C:\Users\Slamak\Downloads\Učitelka-2016-CZ.avi
2017-02-10 18:00 - 2017-02-10 18:12 - 986710788 _____ C:\Users\Slamak\Downloads\TMNKRJ0104CZ.avi
2017-02-10 17:47 - 2017-02-10 18:10 - 1968880122 _____ C:\Users\Slamak\Downloads\SO.avi
2017-02-10 17:45 - 2017-02-10 17:45 - 00002651 _____ C:\Users\Slamak\Downloads\wtft.srt
2017-02-10 17:44 - 2017-02-10 18:00 - 1563710248 _____ C:\Users\Slamak\Downloads\wtft.avi
2017-02-09 11:34 - 2017-02-09 11:34 - 00003771 _____ C:\Users\Slamak\Downloads\769293281.p12
2017-02-09 11:18 - 2017-02-09 11:18 - 00029779 _____ C:\Users\Slamak\Downloads\438894670_0_00009999_eet_p001_1700371327(1).pdf
2017-02-09 11:18 - 2017-02-09 11:18 - 00003004 _____ C:\Users\Slamak\Downloads\438894670_1_Autentizační údaje(1).pdf
2017-02-09 11:15 - 2017-02-09 11:15 - 00126637 _____ C:\Users\Slamak\Downloads\439931224_0_Inventura OSVČ.pdf
2017-02-08 14:41 - 2017-02-08 15:00 - 2197162543 _____ C:\Users\Slamak\Downloads\Bohéma---část-3(6).mkv
2017-02-08 14:41 - 2017-02-08 14:52 - 795502122 _____ C:\Users\Slamak\Downloads\(bohema)-04-a-prece-se-toci--16'--DVBT_CZ-(romin).avi
2017-02-08 14:11 - 2017-02-08 14:35 - 1929284985 _____ C:\Users\Slamak\Downloads\Bohéma---část-2(6).mkv
2017-02-08 14:09 - 2017-02-08 14:29 - 1834849522 _____ C:\Users\Slamak\Downloads\Bohéma---část-1(6).mkv
2017-02-08 14:01 - 2017-02-08 14:01 - 00280457 _____ C:\Users\Slamak\Downloads\FakturaPrint_1000035368_3_7100003665_FA2017000291.pdf
2017-02-08 09:48 - 2017-02-08 09:48 - 03620092 _____ C:\Users\Slamak\Desktop\ENOLANDIA VYROBTESIPIVO 08.02.2017.pdf
2017-02-08 09:00 - 2017-02-08 09:00 - 00029779 _____ C:\Users\Slamak\Downloads\438894670_0_00009999_eet_p001_1700371327.pdf
2017-02-08 09:00 - 2017-02-08 09:00 - 00003004 _____ C:\Users\Slamak\Downloads\438894670_1_Autentizační údaje.pdf
2017-02-07 20:08 - 2017-02-10 20:15 - 00000000 ____D C:\Users\Slamak\AppData\Roaming\M-Photo
2017-02-07 19:37 - 2017-02-07 19:37 - 00001854 _____ C:\Users\Public\Desktop\FOTOKNIHY ONLINE.lnk
2017-02-07 19:37 - 2017-02-07 19:37 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FOTOKNIHY ONLINE
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-03-09 13:12 - 2016-07-16 12:45 - 00000000 ____D C:\WINDOWS\INF
2017-03-09 13:09 - 2016-11-18 17:41 - 00000000 ____D C:\Users\Slamak\AppData\LocalLow\Mozilla
2017-03-09 12:54 - 2014-09-21 13:05 - 00000000 ____D C:\Users\Slamak\AppData\Roaming\eM Client
2017-03-09 12:42 - 2016-09-21 04:05 - 00000000 ____D C:\Users\Slamak
2017-03-09 12:40 - 2016-09-21 04:34 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-03-09 12:40 - 2016-09-21 03:57 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-03-09 12:40 - 2013-10-05 13:32 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2017-03-09 12:29 - 2016-09-21 04:34 - 00003542 _____ C:\WINDOWS\System32\Tasks\Adobe Acrobat Update Task
2017-03-09 12:29 - 2016-09-21 04:34 - 00002992 _____ C:\WINDOWS\System32\Tasks\Program k provádění aktualizací online Adobe
2017-03-09 12:29 - 2014-10-18 16:12 - 00000000 ____D C:\Users\Slamak\Documents\eM Client
2017-03-09 12:20 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-03-09 12:20 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-03-09 07:25 - 2014-01-12 13:41 - 00000000 ____D C:\Users\Slamak\Documents\Profit zálohy
2017-03-09 06:45 - 2016-05-29 21:30 - 00071809 _____ C:\Users\Slamak\Desktop\Pivni_vypocty2.ods
2017-03-09 06:45 - 2013-12-29 08:50 - 00000000 ____D C:\Users\Slamak\Documents\exporty profit
2017-03-09 06:40 - 2015-07-30 12:28 - 00000000 ____D C:\Program Files (x86)\PROFIT
2017-03-09 01:17 - 2015-06-01 21:01 - 13182528 _____ (Intel Corporation) C:\WINDOWS\system32\igd10umd64.dll
2017-03-09 01:17 - 2015-06-01 21:01 - 11460448 _____ (Intel Corporation) C:\WINDOWS\SysWOW64\igd10umd32.dll
2017-03-09 01:16 - 2015-06-01 21:00 - 09025672 _____ (Intel Corporation) C:\WINDOWS\system32\igfxress.dll
2017-03-09 01:16 - 2015-06-01 21:00 - 05382856 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igdkmd64.sys
2017-03-09 01:16 - 2015-06-01 21:00 - 00463960 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
2017-03-09 01:16 - 2015-06-01 21:00 - 00456328 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcsy.lrc
2017-03-09 01:16 - 2015-06-01 21:00 - 00420960 _____ (Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
2017-03-09 01:16 - 2015-06-01 21:00 - 00193112 _____ (Intel Corporation) C:\WINDOWS\system32\igfxtray.exe
2017-03-09 01:16 - 2015-06-01 21:00 - 00128648 _____ (Intel Corporation) C:\WINDOWS\system32\hccutils.dll
2017-03-09 01:16 - 2015-06-01 21:00 - 00112264 _____ C:\WINDOWS\system32\IccLibDll_x64.dll
2017-03-09 01:16 - 2015-06-01 21:00 - 00082056 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.dll
2017-03-08 21:35 - 2013-10-12 21:31 - 00000000 ____D C:\Users\Slamak\AppData\Local\CrashDumps
2017-03-08 21:11 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\NDF
2017-03-08 20:52 - 2013-10-05 14:12 - 00000000 ____D C:\Users\Slamak\Documents\Dokumenty Eshop
2017-03-08 20:36 - 2014-02-11 20:05 - 00000000 ____D C:\Users\Slamak\Documents\zalohy PROFIT
2017-03-08 13:50 - 2014-09-24 20:25 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox
2017-03-07 19:42 - 2014-11-16 21:45 - 00000000 ____D C:\Program Files\trend micro
2017-03-07 18:59 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-03-07 12:16 - 2014-06-27 19:35 - 00000000 ____D C:\Users\Slamak\AppData\Roaming\Oracle
2017-03-06 18:02 - 2013-10-05 14:32 - 00000000 ____D C:\Users\Slamak\AppData\Roaming\FileZilla
2017-03-06 18:01 - 2013-10-05 14:32 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client
2017-03-06 18:01 - 2013-10-05 14:32 - 00000000 ____D C:\Program Files (x86)\FileZilla FTP Client
2017-03-06 12:15 - 2014-12-20 21:12 - 00000000 ___RD C:\Users\Slamak\Documents\Scanned Documents
2017-03-06 07:33 - 2016-07-16 07:04 - 00524288 _____ C:\WINDOWS\system32\config\BBI
2017-03-04 13:15 - 2015-02-25 18:13 - 00000000 ____D C:\ProgramData\AlawarWrapper
2017-03-04 10:20 - 2014-09-12 20:51 - 00000000 ____D C:\FOTOONLINE
2017-03-03 21:47 - 2014-12-26 06:16 - 00000000 ____D C:\ProgramData\AVAST Software
2017-03-03 20:25 - 2014-12-13 12:24 - 00000914 _____ C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2017-03-03 20:17 - 2016-09-21 04:34 - 00003458 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2017-03-03 20:17 - 2016-09-21 04:34 - 00003234 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
2017-03-03 20:14 - 2016-01-08 08:18 - 00004608 _____ C:\6XSourceFilter.grf
2017-03-03 13:58 - 2017-01-26 19:40 - 00028200 _____ C:\Users\Slamak\Desktop\Nákupy.ods
2017-03-02 23:39 - 2016-09-21 04:34 - 00003188 _____ C:\WINDOWS\System32\Tasks\Adobe Flash Player Updater
2017-03-02 23:35 - 2013-10-22 19:50 - 00000000 ____D C:\Users\Slamak\AppData\Roaming\Skype
2017-03-02 23:35 - 2013-10-05 17:54 - 00000000 ____D C:\Users\Slamak\AppData\Local\Microsoft Help
2017-03-02 23:35 - 2012-11-22 13:05 - 00000000 ____D C:\ProgramData\Temp
2017-03-02 23:34 - 2016-09-21 04:55 - 00000000 ___DC C:\WINDOWS\Panther
2017-03-02 23:34 - 2016-07-16 07:04 - 00000000 ____D C:\WINDOWS\system32\Sysprep
2017-03-02 22:50 - 2014-05-17 16:17 - 00000000 ____D C:\Users\Slamak\AppData\Local\AVG
2017-03-02 22:47 - 2013-12-27 07:47 - 00000000 ____D C:\ProgramData\AVG
2017-03-02 20:21 - 2016-06-15 17:24 - 00000000 ____D C:\temp
2017-03-02 20:19 - 2016-09-21 04:34 - 00004012 _____ C:\WINDOWS\System32\Tasks\SafeZone scheduled Autoupdate 1453580228
2017-03-02 20:19 - 2016-07-16 07:04 - 00032768 _____ C:\WINDOWS\system32\config\ELAM
2017-03-02 20:19 - 2016-01-23 21:17 - 00001092 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2017-03-02 20:00 - 2015-09-24 18:49 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7-Zip
2017-03-02 20:00 - 2015-09-24 18:49 - 00000000 ____D C:\Program Files (x86)\7-Zip
2017-03-02 19:44 - 2014-12-26 06:19 - 00547904 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2017-03-02 19:44 - 2014-12-26 06:19 - 00337592 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswVmm.sys
2017-03-02 19:44 - 2014-12-26 06:19 - 00162528 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswStm.sys
2017-03-02 19:44 - 2014-12-26 06:19 - 00126600 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2017-03-02 19:44 - 2014-12-26 06:19 - 00100640 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr2.sys
2017-03-02 19:44 - 2014-12-26 06:19 - 00075704 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRvrt.sys
2017-03-02 19:44 - 2014-12-26 06:19 - 00038296 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswHwid.sys
2017-03-02 19:43 - 2016-02-24 08:26 - 00461640 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNetSec.sys
2017-03-02 19:43 - 2015-03-08 12:36 - 00032088 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys
2017-03-02 19:43 - 2014-12-26 06:19 - 00993608 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2017-03-01 10:57 - 2013-10-05 13:37 - 00001228 _____ C:\Users\Slamak\AppData\Roaming\Microsoft\Windows\Start Menu\GOM Player.lnk
2017-03-01 00:02 - 2013-10-05 22:37 - 00000000 ____D C:\Users\Slamak\Documents\ESHOP
2017-02-28 07:08 - 2014-08-25 07:57 - 00000000 ____D C:\Users\Slamak\AppData\Local\Adobe
2017-02-28 07:07 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\SysWOW64\Macromed
2017-02-28 07:07 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\system32\Macromed
2017-02-27 07:43 - 2016-11-03 14:47 - 00000287 _____ C:\Users\Slamak\Desktop\Nový textový dokument (2).txt
2017-02-27 06:48 - 2012-11-22 13:04 - 00000000 ____D C:\Program Files (x86)\NTI
2017-02-27 06:48 - 2012-11-22 13:02 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2017-02-27 06:43 - 2014-12-24 19:39 - 00000000 ____D C:\Garmin
2017-02-27 06:42 - 2013-10-22 19:50 - 00000000 ____D C:\ProgramData\Skype
2017-02-27 06:40 - 2014-05-29 14:00 - 00000000 ____D C:\ProgramData\Nero
2017-02-27 06:35 - 2017-01-30 22:06 - 00000000 ____D C:\Users\Slamak\AppData\Roaming\Foxit Software
2017-02-27 06:35 - 2014-12-29 10:17 - 00000000 ___RD C:\Users\Slamak\OneDrive
2017-02-27 06:34 - 2017-01-30 22:06 - 00000000 ____D C:\ProgramData\Foxit Software
2017-02-24 15:17 - 2017-01-02 19:21 - 00000000 ____D C:\Users\Slamak\AppData\Roaming\Bitcoin
2017-02-24 14:36 - 2015-07-30 12:28 - 00001142 _____ C:\ProgramData\Microsoft\Windows\Start Menu\PROFIT.lnk
2017-02-24 14:36 - 2015-07-30 12:28 - 00001052 _____ C:\Users\Public\Desktop\PROFIT.lnk
2017-02-24 14:36 - 2015-07-30 12:28 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LPsoft PROFIT
2017-02-24 07:24 - 2013-11-02 18:58 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-02-24 07:19 - 2013-11-02 18:58 - 138020592 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-02-23 18:38 - 2016-07-16 12:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-02-22 13:41 - 2016-04-13 18:39 - 00002457 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-02-09 11:32 - 2016-11-21 15:12 - 00014938 _____ C:\Users\Slamak\Desktop\tisk Andrea.odt
2017-02-09 10:49 - 2014-09-21 13:04 - 00000000 ____D C:\Program Files (x86)\eM Client
2017-02-09 10:48 - 2014-09-21 13:05 - 00001039 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\eM Client.lnk
2017-02-08 10:04 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\rescache
2017-02-07 20:02 - 2016-07-16 23:25 - 00640672 _____ C:\WINDOWS\system32\perfh005.dat
2017-02-07 20:02 - 2016-07-16 23:25 - 00140950 _____ C:\WINDOWS\system32\perfc005.dat
2017-02-07 20:00 - 2016-12-28 18:46 - 01166520 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationNative_v0300.dll
2017-02-07 20:00 - 2016-12-28 18:46 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\system32\TsWpfWrp.exe
2017-02-07 19:49 - 2016-12-28 18:45 - 00124624 _____ (Microsoft Corporation) C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2017-02-07 19:46 - 2016-12-28 18:46 - 00778936 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationNative_v0300.dll
2017-02-07 19:46 - 2016-12-28 18:46 - 00035480 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\TsWpfWrp.exe
2017-02-07 19:42 - 2016-12-28 18:46 - 00103120 _____ (Microsoft Corporation) C:\WINDOWS\SysWOW64\PresentationCFFRasterizerNative_v0300.dll
2017-02-07 19:35 - 2014-09-12 20:51 - 19942509 _____ C:\WINDOWS\SysWOW64\FOTOKNIHY ONLINE_FOTOKNIHY ONLINE_uninstaller.exe
2017-02-07 15:14 - 2013-12-28 14:38 - 00002276 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
==================== Files in the root of some directories =======
2014-03-05 20:33 - 2014-05-21 19:10 - 0000056 _____ () C:\Users\Slamak\AppData\Local\Images.fl
2014-01-11 19:50 - 2016-09-11 18:29 - 0007602 _____ () C:\Users\Slamak\AppData\Local\Resmon.ResmonCfg
Some files in TEMP:
====================
2017-02-27 06:33 - 2016-12-22 18:03 - 3698888 _____ (Foxit Corporation) C:\Users\Slamak\AppData\Local\Temp\FoxitUpdater.exe
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\wininit.exe => File is digitally signed
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\SysWOW64\explorer.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\SysWOW64\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\SysWOW64\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\SysWOW64\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\dnsapi.dll => File is digitally signed
C:\WINDOWS\SysWOW64\dnsapi.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
Light Image Resizer 4.0.4.3 (HKLM-x32\...\{EBE030DD-D404-4D92-85E9-8C3624820808}_is1) (Version: 4.0.4.3 - ObviousIdea)
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: Avast Antivirus (Enabled - Up to date) {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
FW: Avast Antivirus (Enabled) {B693136B-F6EE-DD1C-A0EF-229B8B0B29C4}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Slamak\Desktop" je 26 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
==================== End Of Log ==============================
Re: Prosím o preventivku
zkus prosim otestovat tento soubory na www.virustotal.com- pokud uz byl soubor otestovany, zvol Reanalyse.
C:\Users\Slamak\AppData\Local\Programs\GEN\GEN.exe
Na plose, tam kde mas umisteny FRST vytvor TXT soubor, ktery pojmenujes fixlist.txt a do nej vloz nasledujici text:( Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopíruj).
start
CreateRestorePoint:
CloseProcesses:
Hosts:
EmptyTemp:
HKU\S-1-5-21-3621977129-2832859686-462106091-1001\...\MountPoints2: {2da06656-ba23-11e6-bf9c-20898455de28} - "E:\LG_PC_Programs.exe"
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [No File]
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\40.3.7\\npsitesafety.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
2017-03-03 20:17 - 2016-09-21 04:34 - 00003458 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2017-03-03 20:17 - 2016-09-21 04:34 - 00003234 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
Task: {0C92BE8B-8802-4838-A651-3E1FED69C3A7} - \WPD\SqmUpload_S-1-5-21-3621977129-2832859686-462106091-1001 -> No File <==== ATTENTION
Task: {2C3BA65C-6C05-412E-9958-FB59802B8A7D} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {3DF40C49-D25A-484D-B896-B4C162C57ACA} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {3F707190-9AF4-470E-9D7F-7B56FAA62CAB} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {5CA3F87C-0732-4C56-8776-EC268B7CE83C} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {603C1784-2BBA-4721-9C6D-461FBDC03746} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {73204F3A-D3BD-4274-BC78-9742E0156205} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {787CA109-09DA-4015-9AA6-2E15CA21A204} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {A3F8FC3E-F268-45C5-8D4E-78B70C46CCE7} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {D83AE1A5-FF67-4E3C-8DA7-602DF40ECF18} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {E40Task: {F98005B3-AB4A-4501-9986-C1D99B05FF7F} - System32\Tasks\GEN_Interval => C:\Users\Slamak\AppData\Local\Programs\GEN\GEN.exe [2016-12-16] ( ) <==== ATTENTION
Task: {FE8F005A-A304-43BF-90EB-C97D9CA429BD} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
AlternateDataStreams: C:\Users\Slamak\Desktop\eli.jpeg:3or4kl4x13tuuug3Byamue2s4b [85]
AlternateDataStreams: C:\Users\Slamak\Desktop\eli.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\Slamak\Desktop\eli.jpeg:3or4kl4x13tuuug3Byamue2s4b [85]
end
Re: Prosím o preventivku
Fix result of Farbar Recovery Scan Tool (x64) Version: 08-03-2017
Ran by Slamak (09-03-2017 19:23:30) Run:1
Running from C:\Users\Slamak\Desktop
Loaded Profiles: Slamak (Available Profiles: Slamak)
Boot Mode: Normal
==============================================
fixlist content:
*****************
start
CreateRestorePoint:
CloseProcesses:
Hosts:
EmptyTemp:
HKU\S-1-5-21-3621977129-2832859686-462106091-1001\...\MountPoints2: {2da06656-ba23-11e6-bf9c-20898455de28} - "E:\LG_PC_Programs.exe"
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [No File]
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\40.3.7\\npsitesafety.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
2017-03-03 20:17 - 2016-09-21 04:34 - 00003458 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2017-03-03 20:17 - 2016-09-21 04:34 - 00003234 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
Task: {0C92BE8B-8802-4838-A651-3E1FED69C3A7} - \WPD\SqmUpload_S-1-5-21-3621977129-2832859686-462106091-1001 -> No File <==== ATTENTION
Task: {2C3BA65C-6C05-412E-9958-FB59802B8A7D} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {3DF40C49-D25A-484D-B896-B4C162C57ACA} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {3F707190-9AF4-470E-9D7F-7B56FAA62CAB} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {5CA3F87C-0732-4C56-8776-EC268B7CE83C} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {603C1784-2BBA-4721-9C6D-461FBDC03746} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {73204F3A-D3BD-4274-BC78-9742E0156205} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {787CA109-09DA-4015-9AA6-2E15CA21A204} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {A3F8FC3E-F268-45C5-8D4E-78B70C46CCE7} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {D83AE1A5-FF67-4E3C-8DA7-602DF40ECF18} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {E40Task: {F98005B3-AB4A-4501-9986-C1D99B05FF7F} - System32\Tasks\GEN_Interval => C:\Users\Slamak\AppData\Local\Programs\GEN\GEN.exe [2016-12-16] ( ) <==== ATTENTION
Task: {FE8F005A-A304-43BF-90EB-C97D9CA429BD} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
AlternateDataStreams: C:\Users\Slamak\Desktop\eli.jpeg:3or4kl4x13tuuug3Byamue2s4b [85]
AlternateDataStreams: C:\Users\Slamak\Desktop\eli.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\Slamak\Desktop\eli.jpeg:3or4kl4x13tuuug3Byamue2s4b [85]
end
*****************
Error: (0) Failed to create a restore point.
Processes closed successfully.
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
HKU\S-1-5-21-3621977129-2832859686-462106091-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{2da06656-ba23-11e6-bf9c-20898455de28} => key removed successfully
HKCR\CLSID\{2da06656-ba23-11e6-bf9c-20898455de28} => key not found.
HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect => key removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin => key removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp => key removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf => key removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0C92BE8B-8802-4838-A651-3E1FED69C3A7} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0C92BE8B-8802-4838-A651-3E1FED69C3A7} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\WPD\SqmUpload_S-1-5-21-3621977129-2832859686-462106091-1001 => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{2C3BA65C-6C05-412E-9958-FB59802B8A7D} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2C3BA65C-6C05-412E-9958-FB59802B8A7D} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3DF40C49-D25A-484D-B896-B4C162C57ACA} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3DF40C49-D25A-484D-B896-B4C162C57ACA} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3F707190-9AF4-470E-9D7F-7B56FAA62CAB} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3F707190-9AF4-470E-9D7F-7B56FAA62CAB} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5CA3F87C-0732-4C56-8776-EC268B7CE83C} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5CA3F87C-0732-4C56-8776-EC268B7CE83C} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{603C1784-2BBA-4721-9C6D-461FBDC03746} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{603C1784-2BBA-4721-9C6D-461FBDC03746} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{73204F3A-D3BD-4274-BC78-9742E0156205} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{73204F3A-D3BD-4274-BC78-9742E0156205} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{787CA109-09DA-4015-9AA6-2E15CA21A204} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{787CA109-09DA-4015-9AA6-2E15CA21A204} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A3F8FC3E-F268-45C5-8D4E-78B70C46CCE7} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A3F8FC3E-F268-45C5-8D4E-78B70C46CCE7} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D83AE1A5-FF67-4E3C-8DA7-602DF40ECF18} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D83AE1A5-FF67-4E3C-8DA7-602DF40ECF18} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\Task: {E40{F98005B3-AB4A-4501-9986-C1D99B05FF7F} => key not found.
C:\WINDOWS\Task: {E40System32\Tasks\GEN_Interval => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GEN_Interval => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FE8F005A-A304-43BF-90EB-C97D9CA429BD} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FE8F005A-A304-43BF-90EB-C97D9CA429BD} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd => key removed successfully
C:\Users\Slamak\Desktop\eli.jpeg => ":3or4kl4x13tuuug3Byamue2s4b" ADS could not remove.
C:\Users\Slamak\Desktop\eli.jpeg => ":{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}" ADS removed successfully.
C:\Users\Slamak\Desktop\eli.jpeg => ":3or4kl4x13tuuug3Byamue2s4b" ADS removed successfully.
=========== EmptyTemp: ==========
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 96427797 B
Java, Flash, Steam htmlcache => 31325 B
Windows/system/drivers => 51983658 B
Edge => 9500 B
Chrome => 1450643 B
Firefox => 378133563 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
systemprofile32 => 0 B
LocalService => 15804 B
NetworkService => 7268 B
Slamak => 4841946844 B
RecycleBin => 4427697104 B
EmptyTemp: => 9.1 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 19:29:04 ====
Ran by Slamak (09-03-2017 19:23:30) Run:1
Running from C:\Users\Slamak\Desktop
Loaded Profiles: Slamak (Available Profiles: Slamak)
Boot Mode: Normal
==============================================
fixlist content:
*****************
start
CreateRestorePoint:
CloseProcesses:
Hosts:
EmptyTemp:
HKU\S-1-5-21-3621977129-2832859686-462106091-1001\...\MountPoints2: {2da06656-ba23-11e6-bf9c-20898455de28} - "E:\LG_PC_Programs.exe"
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [No File]
FF Plugin-x32: @avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin -> C:\Program Files (x86)\Common Files\AVG Secure Search\SiteSafetyInstaller\40.3.7\\npsitesafety.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
FF Plugin-x32: @foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf -> C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll [No File]
2017-03-03 20:17 - 2016-09-21 04:34 - 00003458 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA
2017-03-03 20:17 - 2016-09-21 04:34 - 00003234 _____ C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore
Task: {0C92BE8B-8802-4838-A651-3E1FED69C3A7} - \WPD\SqmUpload_S-1-5-21-3621977129-2832859686-462106091-1001 -> No File <==== ATTENTION
Task: {2C3BA65C-6C05-412E-9958-FB59802B8A7D} - \Microsoft\Windows\Setup\gwx\launchtrayprocess -> No File <==== ATTENTION
Task: {3DF40C49-D25A-484D-B896-B4C162C57ACA} - \Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d -> No File <==== ATTENTION
Task: {3F707190-9AF4-470E-9D7F-7B56FAA62CAB} - \Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d -> No File <==== ATTENTION
Task: {5CA3F87C-0732-4C56-8776-EC268B7CE83C} - \Microsoft\Windows\Setup\gwx\refreshgwxcontent -> No File <==== ATTENTION
Task: {603C1784-2BBA-4721-9C6D-461FBDC03746} - \Microsoft\Windows\Setup\GWXTriggers\Time-5d -> No File <==== ATTENTION
Task: {73204F3A-D3BD-4274-BC78-9742E0156205} - \Microsoft\Windows\Setup\GWXTriggers\Logon-5d -> No File <==== ATTENTION
Task: {787CA109-09DA-4015-9AA6-2E15CA21A204} - \Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent -> No File <==== ATTENTION
Task: {A3F8FC3E-F268-45C5-8D4E-78B70C46CCE7} - \Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d -> No File <==== ATTENTION
Task: {D83AE1A5-FF67-4E3C-8DA7-602DF40ECF18} - \Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B -> No File <==== ATTENTION
Task: {E40Task: {F98005B3-AB4A-4501-9986-C1D99B05FF7F} - System32\Tasks\GEN_Interval => C:\Users\Slamak\AppData\Local\Programs\GEN\GEN.exe [2016-12-16] ( ) <==== ATTENTION
Task: {FE8F005A-A304-43BF-90EB-C97D9CA429BD} - \Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd -> No File <==== ATTENTION
AlternateDataStreams: C:\Users\Slamak\Desktop\eli.jpeg:3or4kl4x13tuuug3Byamue2s4b [85]
AlternateDataStreams: C:\Users\Slamak\Desktop\eli.jpeg:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d} [0]
AlternateDataStreams: C:\Users\Slamak\Desktop\eli.jpeg:3or4kl4x13tuuug3Byamue2s4b [85]
end
*****************
Error: (0) Failed to create a restore point.
Processes closed successfully.
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
HKU\S-1-5-21-3621977129-2832859686-462106091-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{2da06656-ba23-11e6-bf9c-20898455de28} => key removed successfully
HKCR\CLSID\{2da06656-ba23-11e6-bf9c-20898455de28} => key not found.
HKLM\Software\MozillaPlugins\adobe.com/AdobeAAMDetect => key removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin => key removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xdp => key removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/vnd.xfdf => key removed successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
C:\WINDOWS\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0C92BE8B-8802-4838-A651-3E1FED69C3A7} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0C92BE8B-8802-4838-A651-3E1FED69C3A7} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\WPD\SqmUpload_S-1-5-21-3621977129-2832859686-462106091-1001 => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{2C3BA65C-6C05-412E-9958-FB59802B8A7D} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2C3BA65C-6C05-412E-9958-FB59802B8A7D} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\launchtrayprocess => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3DF40C49-D25A-484D-B896-B4C162C57ACA} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3DF40C49-D25A-484D-B896-B4C162C57ACA} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfIdle-5d => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3F707190-9AF4-470E-9D7F-7B56FAA62CAB} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3F707190-9AF4-470E-9D7F-7B56FAA62CAB} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\OutOfSleep-5d => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5CA3F87C-0732-4C56-8776-EC268B7CE83C} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5CA3F87C-0732-4C56-8776-EC268B7CE83C} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxcontent => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{603C1784-2BBA-4721-9C6D-461FBDC03746} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{603C1784-2BBA-4721-9C6D-461FBDC03746} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Time-5d => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{73204F3A-D3BD-4274-BC78-9742E0156205} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{73204F3A-D3BD-4274-BC78-9742E0156205} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Logon-5d => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{787CA109-09DA-4015-9AA6-2E15CA21A204} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{787CA109-09DA-4015-9AA6-2E15CA21A204} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\gwx\refreshgwxconfigandcontent => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{A3F8FC3E-F268-45C5-8D4E-78B70C46CCE7} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A3F8FC3E-F268-45C5-8D4E-78B70C46CCE7} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\MachineUnlock-5d => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D83AE1A5-FF67-4E3C-8DA7-602DF40ECF18} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D83AE1A5-FF67-4E3C-8DA7-602DF40ECF18} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\refreshgwxconfig-B => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\Task: {E40{F98005B3-AB4A-4501-9986-C1D99B05FF7F} => key not found.
C:\WINDOWS\Task: {E40System32\Tasks\GEN_Interval => not found.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GEN_Interval => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{FE8F005A-A304-43BF-90EB-C97D9CA429BD} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{FE8F005A-A304-43BF-90EB-C97D9CA429BD} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Microsoft\Windows\Setup\GWXTriggers\Telemetry-4xd => key removed successfully
C:\Users\Slamak\Desktop\eli.jpeg => ":3or4kl4x13tuuug3Byamue2s4b" ADS could not remove.
C:\Users\Slamak\Desktop\eli.jpeg => ":{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}" ADS removed successfully.
C:\Users\Slamak\Desktop\eli.jpeg => ":3or4kl4x13tuuug3Byamue2s4b" ADS removed successfully.
=========== EmptyTemp: ==========
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 96427797 B
Java, Flash, Steam htmlcache => 31325 B
Windows/system/drivers => 51983658 B
Edge => 9500 B
Chrome => 1450643 B
Firefox => 378133563 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 0 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 128 B
systemprofile32 => 0 B
LocalService => 15804 B
NetworkService => 7268 B
Slamak => 4841946844 B
RecycleBin => 4427697104 B
EmptyTemp: => 9.1 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 19:29:04 ====
Re: Prosím o preventivku
Podarilo se ti otestovat soubor GEN.exe na virustotal.com?
Stáhni AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Ulož na plochu
Ukonči všechny programy
Klikni nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vlož.
nasledne tento tool MBAM: http://forum.viry.cz/viewtopic.php?f=29&t=144868
-Nainstaluj,dej úplný sken
-Log zkopíruj sem
Stáhni AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/Ulož na plochu
Ukonči všechny programy
Klikni nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vlož.
nasledne tento tool MBAM: http://forum.viry.cz/viewtopic.php?f=29&t=144868-Nainstaluj,dej úplný sken
-Log zkopíruj sem
Re: Prosím o preventivku
SHA256: 6d4e95b33a527b711defb076aeccd5ea51f1d6bb7d6cc47b00712faa06f31ab4
File name: GEN.exe
Detection ratio: 8 / 59
Analysis date: 2017-03-10 06:22:14 UTC ( 0 minut ago )
Qihoo-360 Win32/Virus.Downloader.2a7 20170310
Kaspersky not-a-virus:Downloader.Win32.Bloader.h 20170309
ZoneAlarm by Check Point not-a-virus:Downloader.Win32.Bloader.h 20170310
Symantec ML.Attribute.HighConfidence 20170309
CAT-QuickHeal Downloader.Bloader 20170309
VBA32 Downloader.Bloader 20170309
McAfee-GW-Edition BehavesLike.Win32.Downloader.hc 20170309
McAfee Artemis!7820B7558DB5 20170310
File name: GEN.exe
Detection ratio: 8 / 59
Analysis date: 2017-03-10 06:22:14 UTC ( 0 minut ago )
Qihoo-360 Win32/Virus.Downloader.2a7 20170310
Kaspersky not-a-virus:Downloader.Win32.Bloader.h 20170309
ZoneAlarm by Check Point not-a-virus:Downloader.Win32.Bloader.h 20170310
Symantec ML.Attribute.HighConfidence 20170309
CAT-QuickHeal Downloader.Bloader 20170309
VBA32 Downloader.Bloader 20170309
McAfee-GW-Edition BehavesLike.Win32.Downloader.hc 20170309
McAfee Artemis!7820B7558DB5 20170310
Re: Prosím o preventivku
# AdwCleaner v6.044 - Log vytvořen 10/03/2017 v 13:48:27
# Aktualizováno dne 28/02/2017 z Malwarebytes
# Databáze : 2017-03-09.3 [Server]
# Operační systém : Windows 10 Home (X64)
# Uživatelské jméno : Slamak - SLAMAKACER
# Spuštěno z : C:\Users\Slamak\Desktop\adwcleaner_6.044.exe
# Mod: Čištění
# Podpora : https://www.malwarebytes.com/support
***** [ Služby ] *****
[-] Služba smazána: vToolbarUpdater40.3.7
[-] Služba smazána: WtuSystemSupport
***** [ Složky ] *****
[-] Složka smazána: C:\Users\Slamak\AppData\Local\avg web tuneup
[-] Složka smazána: C:\Users\Slamak\AppData\Roaming\OpenCandy
[-] Složka smazána: C:\Program Files\avg web tuneup
[-] Složka smazána: C:\Program Files\Common Files\AVG Secure Search
[-] Složka smazána: C:\ProgramData\avg web tuneup
[-] Složka smazána: C:\Program Files (x86)\avg web tuneup
[-] Složka smazána: C:\Program Files (x86)\Common Files\AVG Secure Search
[-] Složka smazána: C:\WINDOWS\SysWoW64\C2MP
[-] Složka smazána: C:\Users\Slamak\AppData\Local\Programs\GEN
[-] Složka smazána: C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd
***** [ Soubory ] *****
[-] Soubor smazán: C:\Users\Slamak\AppData\Roaming\Mozilla\Firefox\Profiles\gjyzp0az.default\extensions\Avg@toolbar.xpi
[-] Soubor smazán: C:\Users\Slamak\AppData\Roaming\Mozilla\Firefox\Profiles\gjyzp0az.default\searchplugins\avg-secure-search.xml
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Zástupci ] *****
***** [ Naplánované úlohy ] *****
[-] Úloha smazána: GEN_Interval
***** [ Registry ] *****
[-] Klíč smazán: HKLM\SOFTWARE\Classes\ScriptHelper.GenericWnd
[-] Klíč smazán: HKLM\SOFTWARE\Classes\ScriptHelper.GenericWnd.1
[-] Klíč smazán: HKLM\SOFTWARE\Classes\ScriptHelper.NativeApi
[-] Klíč smazán: HKLM\SOFTWARE\Classes\ScriptHelper.NativeApi.1
[-] Klíč smazán: HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
[-] Klíč smazán: HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\ScriptHelper.GenericWnd
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\ScriptHelper.GenericWnd.1
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\ScriptHelper.NativeApi
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\ScriptHelper.NativeApi.1
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{CA3A5461-96B5-46DD-9341-5350D3C94615}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CCB24E92-62C4-4C53-95D2-65F9EED476BC}
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Klíč smazán: HKLM\SOFTWARE\AVG Tuneup
[-] Klíč smazán: HKU\S-1-5-21-3621977129-2832859686-462106091-1001\Software\Microsoft\Internet Explorer\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}
[#] Klíč smazán po restartu: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}
[#] Klíč smazán po restartu: [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}
[-] Hodnota smazána: HKU\S-1-5-21-3621977129-2832859686-462106091-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [Pokki]
[-] Hodnota smazána: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
[-] Hodnota smazána: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32 [vProt]
[-] Klíč smazán: HKLM\SOFTWARE\Google\Chrome\NativeMessagingHosts\avgsh
[-] Klíč smazán: HKCU\Software\Google\Chrome\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd
[-] Klíč smazán: HKLM\SOFTWARE\Google\Chrome\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd
[#] Klíč smazán po restartu: [x64] HKCU\Software\Google\Chrome\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd
***** [ Prohlížeče ] *****
[-] Firefox předvolby vyčištěny: "browser.search.defaultenginename" - "AVG Secure Search"
[-] Firefox předvolby vyčištěny: "browser.search.hiddenOneOffs" - "AVG Secure Search,DuckDuckGo,HeurĂ©ka,Mapy.cz,Wikipedie (cs)"
[-] Firefox předvolby vyčištěny: "extensions.toolbar.mindspark._ceMembers_.lastActivePing" - "1480604062971"
[-] Firefox předvolby vyčištěny: "extensions.toolbar.mindspark.hp.enabled" - true
[-] Firefox předvolby vyčištěny: "extensions.toolbar.mindspark.hp.enabled.guid" - "easypdfcombine@mindspark.com"
[-] Firefox předvolby vyčištěny: "extensions.toolbar.mindspark.lastInstalled" - "easypdfcombine@mindspark.com"
[-] [C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Smazáno: slunecnice.cz
[-] [C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Smazáno: check point software technologies ltd
[-] [C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Smazáno: ask.com
[-] [C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Smazáno: search.conduit.com
[-] [C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Smazáno: mpc
[-] [C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Smazáno: blekko
[-] [C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default] [extension] Smazáno: bknbnapaddjdnbilpmlacdkjdkjmbjhd
*************************
:: "Tracing" klíče smazány
:: Winsock nastavení vyčištěno
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [6168 Bajty] - [10/03/2017 13:48:27]
C:\AdwCleaner\AdwCleaner[S0].txt - [6626 Bajty] - [10/03/2017 13:45:55]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [6314 Bajty] ##########
# Aktualizováno dne 28/02/2017 z Malwarebytes
# Databáze : 2017-03-09.3 [Server]
# Operační systém : Windows 10 Home (X64)
# Uživatelské jméno : Slamak - SLAMAKACER
# Spuštěno z : C:\Users\Slamak\Desktop\adwcleaner_6.044.exe
# Mod: Čištění
# Podpora : https://www.malwarebytes.com/support
***** [ Služby ] *****
[-] Služba smazána: vToolbarUpdater40.3.7
[-] Služba smazána: WtuSystemSupport
***** [ Složky ] *****
[-] Složka smazána: C:\Users\Slamak\AppData\Local\avg web tuneup
[-] Složka smazána: C:\Users\Slamak\AppData\Roaming\OpenCandy
[-] Složka smazána: C:\Program Files\avg web tuneup
[-] Složka smazána: C:\Program Files\Common Files\AVG Secure Search
[-] Složka smazána: C:\ProgramData\avg web tuneup
[-] Složka smazána: C:\Program Files (x86)\avg web tuneup
[-] Složka smazána: C:\Program Files (x86)\Common Files\AVG Secure Search
[-] Složka smazána: C:\WINDOWS\SysWoW64\C2MP
[-] Složka smazána: C:\Users\Slamak\AppData\Local\Programs\GEN
[-] Složka smazána: C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd
***** [ Soubory ] *****
[-] Soubor smazán: C:\Users\Slamak\AppData\Roaming\Mozilla\Firefox\Profiles\gjyzp0az.default\extensions\Avg@toolbar.xpi
[-] Soubor smazán: C:\Users\Slamak\AppData\Roaming\Mozilla\Firefox\Profiles\gjyzp0az.default\searchplugins\avg-secure-search.xml
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Zástupci ] *****
***** [ Naplánované úlohy ] *****
[-] Úloha smazána: GEN_Interval
***** [ Registry ] *****
[-] Klíč smazán: HKLM\SOFTWARE\Classes\ScriptHelper.GenericWnd
[-] Klíč smazán: HKLM\SOFTWARE\Classes\ScriptHelper.GenericWnd.1
[-] Klíč smazán: HKLM\SOFTWARE\Classes\ScriptHelper.NativeApi
[-] Klíč smazán: HKLM\SOFTWARE\Classes\ScriptHelper.NativeApi.1
[-] Klíč smazán: HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
[-] Klíč smazán: HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\ScriptHelper.GenericWnd
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\ScriptHelper.GenericWnd.1
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\ScriptHelper.NativeApi
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\ScriptHelper.NativeApi.1
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi
[#] Klíč smazán po restartu: [x64] HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{933B95E2-E7B7-4AD9-B952-7AC336682AE3}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\CLSID\{CA3A5461-96B5-46DD-9341-5350D3C94615}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6}
[-] Klíč smazán: HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94}
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CCB24E92-62C4-4C53-95D2-65F9EED476BC}
[-] Klíč smazán: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{B2BC04DF-EFBD-409A-95CA-36874E5AB92A}
[-] Klíč smazán: HKLM\SOFTWARE\AVG Tuneup
[-] Klíč smazán: HKU\S-1-5-21-3621977129-2832859686-462106091-1001\Software\Microsoft\Internet Explorer\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}
[#] Klíč smazán po restartu: HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}
[#] Klíč smazán po restartu: [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}
[-] Hodnota smazána: HKU\S-1-5-21-3621977129-2832859686-462106091-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [Pokki]
[-] Hodnota smazána: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt]
[-] Hodnota smazána: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run32 [vProt]
[-] Klíč smazán: HKLM\SOFTWARE\Google\Chrome\NativeMessagingHosts\avgsh
[-] Klíč smazán: HKCU\Software\Google\Chrome\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd
[-] Klíč smazán: HKLM\SOFTWARE\Google\Chrome\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd
[#] Klíč smazán po restartu: [x64] HKCU\Software\Google\Chrome\Extensions\bknbnapaddjdnbilpmlacdkjdkjmbjhd
***** [ Prohlížeče ] *****
[-] Firefox předvolby vyčištěny: "browser.search.defaultenginename" - "AVG Secure Search"
[-] Firefox předvolby vyčištěny: "browser.search.hiddenOneOffs" - "AVG Secure Search,DuckDuckGo,HeurĂ©ka,Mapy.cz,Wikipedie (cs)"
[-] Firefox předvolby vyčištěny: "extensions.toolbar.mindspark._ceMembers_.lastActivePing" - "1480604062971"
[-] Firefox předvolby vyčištěny: "extensions.toolbar.mindspark.hp.enabled" - true
[-] Firefox předvolby vyčištěny: "extensions.toolbar.mindspark.hp.enabled.guid" - "easypdfcombine@mindspark.com"
[-] Firefox předvolby vyčištěny: "extensions.toolbar.mindspark.lastInstalled" - "easypdfcombine@mindspark.com"
[-] [C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Smazáno: slunecnice.cz
[-] [C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Smazáno: check point software technologies ltd
[-] [C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Smazáno: ask.com
[-] [C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Smazáno: search.conduit.com
[-] [C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Smazáno: mpc
[-] [C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Web data] [Search Provider] Smazáno: blekko
[-] [C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default] [extension] Smazáno: bknbnapaddjdnbilpmlacdkjdkjmbjhd
*************************
:: "Tracing" klíče smazány
:: Winsock nastavení vyčištěno
*************************
C:\AdwCleaner\AdwCleaner[C0].txt - [6168 Bajty] - [10/03/2017 13:48:27]
C:\AdwCleaner\AdwCleaner[S0].txt - [6626 Bajty] - [10/03/2017 13:45:55]
########## EOF - C:\AdwCleaner\AdwCleaner[C0].txt - [6314 Bajty] ##########
Re: Prosím o preventivku
jeste log z MBAM poprosim
Re: Prosím o preventivku
Dělám na tom.
Notebook se vždy uspí a po dokončení testu program nenabídne možnost uložit log.
Notebook se vždy uspí a po dokončení testu program nenabídne možnost uložit log.
Re: Prosím o preventivku
Tak se povedlo:
Malwarebytes
www.malwarebytes.com
-Podrobnosti logovacího souboru-
Datum skenování: 12.03.17
Čas skenování: 18:15
Logovací soubor: log mbam.txt
Správce: Ano
-Informace o softwaru-
Verze: 3.0.6.1469
Verze komponentů: 1.0.75
Aktualizovat verzi balíku komponent: 1.0.1485
Licence: Bezplatný
-Systémová informace-
OS: Windows 10
CPU: x64
Systém souborů: NTFS
Uživatel: SlamakAcer\Slamak
-Shrnutí skenování-
Typ skenování: Vlastní skenování
Výsledek: Dokončeno
Skenované objekty: 403610
Uplynulý čas: 4 hod, 16 min, 37 sek
-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Povoleno
Heuristika: Povoleno
Potenciálně nežádoucí program: Povoleno
Potenciálně nežádoucí modifikace: Povoleno
-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)
Modul: 0
(Nebyly zjištěny žádné škodlivé položky)
Klíč registru: 5
PUP.Optional.VMNToolBar, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{CCB24E92-62C4-4C53-95D2-65F9EED476BC}, Žádná uživatelská akce, [13323], [168980],1.0.1485
PUP.Optional.MyStartToolbar, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{62155D33-3CE2-401E-8967-5A270628A3D5}, Žádná uživatelská akce, [10491], [186512],1.0.1485
PUP.Optional.MyStartToolbar, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{62155D33-3CE2-401E-8967-5A270628A3D5}, Žádná uživatelská akce, [10491], [186512],1.0.1485
PUP.Optional.Geniv, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{F98005B3-AB4A-4501-9986-C1D99B05FF7F}, Žádná uživatelská akce, [2345], [260516],1.0.1485
RiskWare.IFEOHijack, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\CHROME.EXE, Žádná uživatelská akce, [878], [249055],1.0.1485
Hodnota v registru: 4
PUP.Optional.MyStartToolbar, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{62155D33-3CE2-401E-8967-5A270628A3D5}|APPPATH, Žádná uživatelská akce, [10491], [186512],1.0.1485
PUP.Optional.MyStartToolbar, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{62155D33-3CE2-401E-8967-5A270628A3D5}|APPPATH, Žádná uživatelská akce, [10491], [186512],1.0.1485
PUP.Optional.Geniv, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{F98005B3-AB4A-4501-9986-C1D99B05FF7F}|PATH, Žádná uživatelská akce, [2345], [260516],1.0.1485
RiskWare.IFEOHijack, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\CHROME.EXE|DEBUGGER, Žádná uživatelská akce, [878], [249055],1.0.1485
Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)
Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)
Adresář: 15
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\background\js\modules, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\images, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\content-scripts, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\background\js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\js\config, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\background, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\_metadata, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\newtab, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\icons, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\api, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa, Žádná uživatelská akce, [1105], [178639],1.0.1485
Soubor: 93
PUP.Optional.Uniblue, C:\ADWCLEANER\QUARANTINE\FILES\ZSVNZPRKFXMXEJWKHSCBNHIUVGHBPGRB\09AD61C7490749A2928AE2CB8D7ED51D\PCMECHANICPMROW_P1V1.EXE, Žádná uživatelská akce, [1485], [327228],1.0.1485
RiskWare.GameHack, C:\PROGRAM FILES (X86)\SNIPER ELITE 3\STEAM_API.DLL, Žádná uživatelská akce, [556], [305544],1.0.1485
RiskWare.GameHack, C:\PROGRAM FILES (X86)\SNIPER ELITE 3\STEAM_API64.DLL, Žádná uživatelská akce, [556], [305544],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\api\alarms.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\api\apps.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\api\bookmarks.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\api\broker.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\api\browser.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\api\default-search.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\api\most-visited.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\api\permissions.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\api\pstorage.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\api\recently-closed.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\api\runtime.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\api\shim.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\api\social.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\api\storage.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\api\tabs.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\api\windows.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\background\js\modules\action-button.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\background\js\modules\analytics.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\background\js\modules\apps.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\background\js\modules\content-scripts.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\background\js\modules\custom.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\background\js\modules\feeds.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\background\js\modules\heartbeat.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\background\js\modules\install.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\background\js\modules\newtab-loader.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\background\js\modules\social-live-feeds.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\background\js\modules\uninstall.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\background\js\modules\update.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\background\js\index.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\background\js\main.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\background\index.html, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\content-scripts\event-handler.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\content-scripts\installed.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\icons\128.png, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\icons\16.png, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\icons\19.png, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\icons\32.png, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\icons\38.png, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\icons\48.png, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\icons\64.png, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\js\config\ext.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\js\config\one-watcher.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\js\config\one.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\js\ajax.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\js\analytics.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\js\config.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\js\constants.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\js\dom.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\js\event-handler.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\js\google-analytics.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\js\indexeddb.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\js\ko-mapper.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\js\mystart-one-campaign.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\js\proto.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\js\require-config.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\js\social.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\js\tools.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\images\ui-icons_444444_256x240-back.png, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\images\ui-icons_444444_256x240.png, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\images\ui-icons_555555_256x240.png, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\images\ui-icons_777620_256x240.png, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\images\ui-icons_777777_256x240.png, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\images\ui-icons_cc0000_256x240.png, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\images\ui-icons_ffffff_256x240.png, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\facebook-sdk.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\facebook.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\fingerprint2.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\hammer.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\jquery-actual.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\jquery-browser.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\jquery-ui.css, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\jquery-ui.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\jquery.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\knockout.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\moment.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\perfect-scrollbar.css, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\perfect-scrollbar.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\piwik.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\require-json.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\require-text.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\require.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\rsvp.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\youtube-api.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\youtube.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\newtab\index.html, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\_metadata\verified_contents.json, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\config-package.json, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\manifest.json, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MindSpark.Generic, C:\USERS\SLAMAK\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\GJYZP0AZ.DEFAULT\PREFS.JS, Žádná uživatelská akce, [1050], [319354],1.0.1485
PUP.Optional.Bundler, C:\USERS\SLAMAK\DOWNLOADS\CCLEANER-SEZNAM-LISTICKA.EXE, Žádná uživatelská akce, [223], [88479],1.0.1485
Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)
(end)
Malwarebytes
www.malwarebytes.com
-Podrobnosti logovacího souboru-
Datum skenování: 12.03.17
Čas skenování: 18:15
Logovací soubor: log mbam.txt
Správce: Ano
-Informace o softwaru-
Verze: 3.0.6.1469
Verze komponentů: 1.0.75
Aktualizovat verzi balíku komponent: 1.0.1485
Licence: Bezplatný
-Systémová informace-
OS: Windows 10
CPU: x64
Systém souborů: NTFS
Uživatel: SlamakAcer\Slamak
-Shrnutí skenování-
Typ skenování: Vlastní skenování
Výsledek: Dokončeno
Skenované objekty: 403610
Uplynulý čas: 4 hod, 16 min, 37 sek
-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Povoleno
Heuristika: Povoleno
Potenciálně nežádoucí program: Povoleno
Potenciálně nežádoucí modifikace: Povoleno
-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)
Modul: 0
(Nebyly zjištěny žádné škodlivé položky)
Klíč registru: 5
PUP.Optional.VMNToolBar, HKLM\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\EXT\PREAPPROVED\{CCB24E92-62C4-4C53-95D2-65F9EED476BC}, Žádná uživatelská akce, [13323], [168980],1.0.1485
PUP.Optional.MyStartToolbar, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{62155D33-3CE2-401E-8967-5A270628A3D5}, Žádná uživatelská akce, [10491], [186512],1.0.1485
PUP.Optional.MyStartToolbar, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{62155D33-3CE2-401E-8967-5A270628A3D5}, Žádná uživatelská akce, [10491], [186512],1.0.1485
PUP.Optional.Geniv, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{F98005B3-AB4A-4501-9986-C1D99B05FF7F}, Žádná uživatelská akce, [2345], [260516],1.0.1485
RiskWare.IFEOHijack, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\CHROME.EXE, Žádná uživatelská akce, [878], [249055],1.0.1485
Hodnota v registru: 4
PUP.Optional.MyStartToolbar, HKLM\SOFTWARE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{62155D33-3CE2-401E-8967-5A270628A3D5}|APPPATH, Žádná uživatelská akce, [10491], [186512],1.0.1485
PUP.Optional.MyStartToolbar, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\INTERNET EXPLORER\LOW RIGHTS\ELEVATIONPOLICY\{62155D33-3CE2-401E-8967-5A270628A3D5}|APPPATH, Žádná uživatelská akce, [10491], [186512],1.0.1485
PUP.Optional.Geniv, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TASKS\{F98005B3-AB4A-4501-9986-C1D99B05FF7F}|PATH, Žádná uživatelská akce, [2345], [260516],1.0.1485
RiskWare.IFEOHijack, HKLM\SOFTWARE\WOW6432NODE\MICROSOFT\WINDOWS NT\CURRENTVERSION\IMAGE FILE EXECUTION OPTIONS\CHROME.EXE|DEBUGGER, Žádná uživatelská akce, [878], [249055],1.0.1485
Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)
Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)
Adresář: 15
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\background\js\modules, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\images, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\content-scripts, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\background\js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\js\config, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\background, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\_metadata, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\newtab, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\icons, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\api, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa, Žádná uživatelská akce, [1105], [178639],1.0.1485
Soubor: 93
PUP.Optional.Uniblue, C:\ADWCLEANER\QUARANTINE\FILES\ZSVNZPRKFXMXEJWKHSCBNHIUVGHBPGRB\09AD61C7490749A2928AE2CB8D7ED51D\PCMECHANICPMROW_P1V1.EXE, Žádná uživatelská akce, [1485], [327228],1.0.1485
RiskWare.GameHack, C:\PROGRAM FILES (X86)\SNIPER ELITE 3\STEAM_API.DLL, Žádná uživatelská akce, [556], [305544],1.0.1485
RiskWare.GameHack, C:\PROGRAM FILES (X86)\SNIPER ELITE 3\STEAM_API64.DLL, Žádná uživatelská akce, [556], [305544],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\api\alarms.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\api\apps.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\api\bookmarks.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\api\broker.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\api\browser.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\api\default-search.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\api\most-visited.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\api\permissions.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\api\pstorage.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\api\recently-closed.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\api\runtime.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\api\shim.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\api\social.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\api\storage.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\api\tabs.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\api\windows.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\background\js\modules\action-button.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\background\js\modules\analytics.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\background\js\modules\apps.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\background\js\modules\content-scripts.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\background\js\modules\custom.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\background\js\modules\feeds.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\background\js\modules\heartbeat.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\background\js\modules\install.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\background\js\modules\newtab-loader.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\background\js\modules\social-live-feeds.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\background\js\modules\uninstall.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\background\js\modules\update.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\background\js\index.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\background\js\main.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\background\index.html, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\content-scripts\event-handler.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\content-scripts\installed.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\icons\128.png, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\icons\16.png, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\icons\19.png, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\icons\32.png, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\icons\38.png, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\icons\48.png, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\icons\64.png, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\js\config\ext.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\js\config\one-watcher.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\js\config\one.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\js\ajax.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\js\analytics.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\js\config.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\js\constants.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\js\dom.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\js\event-handler.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\js\google-analytics.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\js\indexeddb.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\js\ko-mapper.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\js\mystart-one-campaign.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\js\proto.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\js\require-config.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\js\social.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\js\tools.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\images\ui-icons_444444_256x240-back.png, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\images\ui-icons_444444_256x240.png, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\images\ui-icons_555555_256x240.png, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\images\ui-icons_777620_256x240.png, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\images\ui-icons_777777_256x240.png, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\images\ui-icons_cc0000_256x240.png, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\images\ui-icons_ffffff_256x240.png, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\facebook-sdk.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\facebook.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\fingerprint2.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\hammer.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\jquery-actual.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\jquery-browser.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\jquery-ui.css, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\jquery-ui.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\jquery.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\knockout.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\moment.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\perfect-scrollbar.css, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\perfect-scrollbar.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\piwik.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\require-json.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\require-text.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\require.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\rsvp.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\youtube-api.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\lib\vendor\youtube.js, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\newtab\index.html, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\_metadata\verified_contents.json, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\config-package.json, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MyStart, C:\Users\Slamak\AppData\Local\Google\Chrome\User Data\Default\Extensions\dogdoihocdkadpalbghcpfafbojcfofa\2.14.42_0\manifest.json, Žádná uživatelská akce, [1105], [178639],1.0.1485
PUP.Optional.MindSpark.Generic, C:\USERS\SLAMAK\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\GJYZP0AZ.DEFAULT\PREFS.JS, Žádná uživatelská akce, [1050], [319354],1.0.1485
PUP.Optional.Bundler, C:\USERS\SLAMAK\DOWNLOADS\CCLEANER-SEZNAM-LISTICKA.EXE, Žádná uživatelská akce, [223], [88479],1.0.1485
Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)
(end)
Re: Prosím o preventivku
muzes znovu spustit a dat vse odstranit.
Re: Prosím o preventivku
Vše odstraněno.
Re: Prosím o preventivku
poprosim te z tohoto odkazu http://www.gmer.net/gmer.zip si stahni antirootkit GMER
Po stazeni aplikaci rozbal a spust, probehne rychly sken a otevre se hlavni okno programu:
pokud kliknes tlacitko Save vpravo dole, muzes vyexportovat prvni log, ktery mi vloz zde.
aby si se dostal k "hlavnimu" skenu a ziskani logu z nej, ponech v pravem sloupci zafajfkovane vse krome polozky IAT/EAT a klikni na tlacitko Scan
Vyckej konce skenu (coz trva tak kolem peti, deseti minut; v nekterych pripadech ovsem muze delka skenu presahnout i dve hodiny!!!), pote opet klikni na tlacitko Save a vyexportuj log cislo 2, ktery sem take vloz.
Po stazeni aplikaci rozbal a spust, probehne rychly sken a otevre se hlavni okno programu:
pokud kliknes tlacitko Save vpravo dole, muzes vyexportovat prvni log, ktery mi vloz zde.
aby si se dostal k "hlavnimu" skenu a ziskani logu z nej, ponech v pravem sloupci zafajfkovane vse krome polozky IAT/EAT a klikni na tlacitko Scan
Vyckej konce skenu (coz trva tak kolem peti, deseti minut; v nekterych pripadech ovsem muze delka skenu presahnout i dve hodiny!!!), pote opet klikni na tlacitko Save a vyexportuj log cislo 2, ktery sem take vloz.
Přispějete na provoz fóra?