Preventivní kontrola

Zpráva

sobtik · #1 Příspěvek od **sobtik** » 04 pro 2019 08:03

Dobrý den,
prosím o kontrolu, PC se v poslední době strašně zpomalil. Moc děkuji.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 02-12-2019
Ran by Tobik (administrator) on TOBIK-PC (Acer Extensa 5630) (04-12-2019 07:58:48)
Running from C:\Users\Tobik\Downloads
Loaded Profiles: Tobik (Available Profiles: Tobik)
Platform: Windows 7 Ultimate (X64) Language: Čeština (Česká republika)
Internet Explorer Version 8 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\aswidsagent.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe
(AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.) C:\Program Files (x86)\AVG\Antivirus\AVGUI.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe
(Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BrYNSvc.exe
(Ghisler Software GmbH -> Ghisler Software GmbH) C:\totalcmd\TOTALCMD64.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) C:\Windows\System32\hkcmd.exe
(Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) C:\Windows\System32\igfxpers.exe
(Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) C:\Windows\System32\igfxsrvc.exe
(Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation) C:\Windows\System32\igfxtray.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files (x86)\Mozilla Firefox\firefox.exe

==================== Registry (Whitelisted) ===================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [PLFSetL] => C:\Windows\PLFSetL.exe [94208 2019-05-12] (Microsoft Windows Hardware Compatibility Publisher -> sonix)
HKLM\...\Run: [SNUVCDSM] => C:\Windows\snuvcdsm.exe [27184 2019-05-12] (Chicony Electronics Co., Ltd. -> )
HKLM\...\Run: [IgfxTray] => C:\Windows\system32\igfxtray.exe [159232 2009-09-02] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
HKLM\...\Run: [HotKeysCmds] => C:\Windows\system32\hkcmd.exe [380928 2009-09-02] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
HKLM\...\Run: [Persistence] => C:\Windows\system32\igfxpers.exe [358912 2009-09-02] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
HKLM\...\Run: [AVGUI.exe] => C:\Program Files (x86)\AVG\Antivirus\AvLaunch.exe [316336 2019-12-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [Logitech Download Assistant] => C:\Windows\System32\LogiLDA.dll [1841496 2016-10-14] (Logitech -> Logitech, Inc.)
HKLM-x32\...\Run: [I16A] => C:\Windows\twain_32\Brimi16a\Common\TwDsUiLaunch.exe [86528 2016-08-22] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM-x32\...\Run: [ControlCenter4] => C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [146584 2017-11-07] (Brother Industries, Ltd. -> Brother Industries, Ltd.)
HKLM-x32\...\Run: [BrHelp] => C:\Program Files (x86)\Brother\Brother Help\BrotherHelp.exe [1939968 2014-10-22] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [BrStsMon00] => C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2888704 2017-02-09] (Brother Industries, Ltd.) [File not signed]
HKLM-x32\...\Run: [GrooveMonitor] => C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe [30040 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1166480115-2326838651-3686901258-1001\Sortware\Policies\...\system: [disablecmd] 0
HKLM\Software\...\Authentication\Credential Providers: [{F8A0B131-5F68-486c-8040-7E8FC3C85BB6}] -> c:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDCREDPROV.DLL [2009-08-18] (Microsoft Corporation -> Microsoft Corporation)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION

==================== Scheduled Tasks (Whitelisted) ============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {3161D022-0195-440E-9EE7-136E73369837} - System32\Tasks\Antivirus Emergency Update => C:\Program Files (x86)\AVG\Antivirus\AvEmUpdate.exe [3981232 2019-12-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
Task: {59971EF0-16A6-4C41-A9BE-0C76C3DB964E} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [18458752 2019-10-14] (Piriform Software Ltd -> Piriform Ltd)
Task: {7F12A1B5-01ED-4102-BE69-541BBAFD0E32} - System32\Tasks\AVG\Overseer => C:\Program Files\Common Files\AVG\Overseer\overseer.exe [1905072 2019-12-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
Task: {9F82C5B5-A6CA-402B-BB86-B4F5DB627356} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [608384 2019-10-14] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {A9D07A8C-C703-4AF7-9290-CB7F8EFE5AE6} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1166480115-2326838651-3686901258-1001UA => C:\Users\Tobik\AppData\Local\Google\Update\GoogleUpdate.exe [154920 2019-06-07] (Google Inc -> Google LLC)
Task: {C32AD174-69D9-4FDC-B6AB-4413CBC6BA3E} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1166480115-2326838651-3686901258-1001Core => C:\Users\Tobik\AppData\Local\Google\Update\GoogleUpdate.exe [154920 2019-06-07] (Google Inc -> Google LLC)
Task: {D0129FD1-F212-41B7-9D58-401FE53E780B} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2019-11-27] (Adobe Inc. -> Adobe)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Winsock: Catalog5 08 c:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528 2009-08-18] (Microsoft Corporation -> Microsoft Corporation)
Winsock: Catalog5 09 c:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [134528 2009-08-18] (Microsoft Corporation -> Microsoft Corporation)
Winsock: Catalog5-x64 08 c:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304 2009-08-18] (Microsoft Corporation -> Microsoft Corporation)
Winsock: Catalog5-x64 09 c:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [168304 2009-08-18] (Microsoft Corporation -> Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{D1275426-D7BD-4F89-970C-F07D2324C182}: [DhcpNameServer] 192.168.1.1

Internet Explorer:
==================
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-1166480115-2326838651-3686901258-1001\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> c:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Podpora odkazu pro Adobe PDF Reader -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Adobe PDF Link Helper -> {18DF081C-E8AD-4283-A596-FA578C2EBDC3} -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Incorporated)
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> c:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation -> Microsoft Corporation)
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-12-21] (Microsoft Windows -> Microsoft Corporation)
Filter-x32: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-12-21] (Microsoft Windows -> Microsoft Corporation)
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\system32\urlmon.dll [2010-12-21] (Microsoft Windows -> Microsoft Corporation)
Filter-x32: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\Windows\SysWOW64\urlmon.dll [2010-12-21] (Microsoft Windows -> Microsoft Corporation)

FireFox:
========
FF DefaultProfile: 2cnqikce.default-1571720446916
FF ProfilePath: C:\Users\Tobik\AppData\Roaming\Mozilla\Firefox\Profiles\2cnqikce.default-1571720446916 [2019-12-04]
FF user.js: detected! => C:\Users\Tobik\AppData\Roaming\Mozilla\Firefox\Profiles\2cnqikce.default-1571720446916\user.js [2019-12-02]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2012-09-23] (Adobe Systems, Incorporated -> Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-1166480115-2326838651-3686901258-1001: @tools.google.com/Google Update;version=3 -> C:\Users\Tobik\AppData\Local\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-12-01] (Google Inc -> Google LLC)
FF Plugin HKU\S-1-5-21-1166480115-2326838651-3686901258-1001: @tools.google.com/Google Update;version=9 -> C:\Users\Tobik\AppData\Local\Google\Update\1.3.35.342\npGoogleUpdate3.dll [2019-12-01] (Google Inc -> Google LLC)

Chrome:
=======
CHR Notifications: Default -> hxxps://www.youtube.com
CHR Profile: C:\Users\Tobik\AppData\Local\Google\Chrome\User Data\Default [2019-12-02]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Tobik\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2019-10-08]
CHR Extension: (Chrome Media Router) - C:\Users\Tobik\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2019-10-04]

==================== Services (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AVG Antivirus; C:\Program Files (x86)\AVG\Antivirus\AVGSvc.exe [996928 2019-12-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R3 avgbIDSAgent; C:\Program Files (x86)\AVG\Antivirus\aswidsagent.exe [6133752 2019-12-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R3 BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [295424 2017-02-09] (Brother Industries, Ltd.) [File not signed]
S3 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\mbamservice.exe [6744288 2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
S2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2009-07-14] (Microsoft Windows -> Microsoft Corporation)
R2 wlidsvc; c:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2291568 2009-08-18] (Microsoft Corporation -> Microsoft Corporation)

===================== Drivers (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R3 athr; C:\Windows\System32\DRIVERS\athrx.sys [1542656 2009-10-05] (Microsoft Windows Hardware Compatibility Publisher -> Atheros Communications, Inc.)
R0 avgArDisk; C:\Windows\System32\drivers\avgArDisk.sys [37880 2019-12-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgArPot; C:\Windows\System32\drivers\avgArPot.sys [205600 2019-12-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgbidsdriver; C:\Windows\System32\drivers\avgbidsdriver.sys [275232 2019-12-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgbidsh; C:\Windows\System32\drivers\avgbidsh.sys [210328 2019-12-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgbuniv; C:\Windows\System32\drivers\avgbuniv.sys [65376 2019-12-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgKbd; C:\Windows\System32\drivers\avgKbd.sys [43512 2019-12-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R2 avgMonFlt; C:\Windows\System32\drivers\avgMonFlt.sys [171784 2019-12-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgRdr; C:\Windows\System32\drivers\avgRdr2.sys [111096 2019-12-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgRvrt; C:\Windows\System32\drivers\avgRvrt.sys [84560 2019-12-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgSnx; C:\Windows\System32\drivers\avgSnx.sys [848688 2019-12-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 avgSP; C:\Windows\System32\drivers\avgSP.sys [461216 2019-12-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R2 avgStm; C:\Windows\System32\drivers\avgStm.sys [236288 2019-12-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R0 avgVmm; C:\Windows\System32\drivers\avgVmm.sys [317304 2019-12-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
R1 HWiNFO32; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2019-05-12] (Martin Malik - REALiX -> REALiX(tm))
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [51808 2019-05-12] (Synaptics Incorporated -> Synaptics Incorporated)
R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [1801088 2019-05-12] (Microsoft Windows Hardware Compatibility Publisher -> )
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 cpuz143; \??\C:\Windows\temp\cpuz143\cpuz143_x64.sys [X]
S3 cpuz145; \??\C:\Windows\temp\cpuz145\cpuz145_x64.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One month (created) ===================

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-12-04 07:58 - 2019-12-04 07:59 - 000016161 _____ C:\Users\Tobik\Downloads\FRST.txt
2019-12-04 07:58 - 2019-12-04 07:59 - 000000000 ____D C:\FRST
2019-12-04 07:58 - 2019-12-04 07:58 - 002263040 _____ (Farbar) C:\Users\Tobik\Downloads\FRST64.exe
2019-12-04 07:55 - 2019-12-04 07:55 - 000000000 ____D C:\Intel
2019-12-04 07:25 - 2019-12-04 07:45 - 000000000 ____D C:\Program Files (x86)\Mozilla Firefox
2019-12-03 12:44 - 2019-12-03 12:44 - 000070185 _____ C:\Users\Tobik\Downloads\2019-12-01-5910142143-5910142143-fs.pdf
2019-12-03 09:09 - 2019-12-03 09:09 - 000092917 _____ C:\Users\Tobik\Downloads\e2b896ac3c9e57a11bcad5093367afb4.pdf
2019-12-03 08:53 - 2019-12-03 08:53 - 000123748 _____ C:\Users\Tobik\Downloads\dad84b2396b979fbe753214296f6254e.pdf
2019-12-03 07:05 - 2019-12-03 07:05 - 000046842 _____ C:\Users\Tobik\Downloads\Zálohová_faktura_190800261.pdf
2019-12-03 06:58 - 2019-12-03 06:58 - 000346894 _____ C:\Users\Tobik\Desktop\Sudera - upomínka 2.pdf
2019-12-02 19:36 - 2019-12-02 19:36 - 000001968 _____ C:\Users\Public\Desktop\AVG AntiVirus FREE.lnk
2019-12-02 19:36 - 2019-12-02 19:36 - 000001968 _____ C:\ProgramData\Desktop\AVG AntiVirus FREE.lnk
2019-12-02 19:36 - 2019-12-02 19:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG
2019-12-02 19:32 - 2019-12-02 19:32 - 000037880 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgArDisk.sys
2019-12-02 19:32 - 2019-12-02 19:25 - 000355760 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\avgBoot.exe
2019-12-02 19:27 - 2019-12-02 19:27 - 000000000 ____D C:\Windows\system32\Tasks\AVG
2019-12-02 19:26 - 2019-12-04 07:19 - 000004174 _____ C:\Windows\system32\Tasks\Antivirus Emergency Update
2019-12-02 19:26 - 2019-12-02 19:26 - 000848688 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSnx.sys
2019-12-02 19:26 - 2019-12-02 19:26 - 000461216 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgSP.sys
2019-12-02 19:26 - 2019-12-02 19:26 - 000000000 ____D C:\Program Files\Common Files\AVG
2019-12-02 19:26 - 2019-12-02 19:25 - 000317304 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgVmm.sys
2019-12-02 19:26 - 2019-12-02 19:25 - 000275232 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsdriver.sys
2019-12-02 19:26 - 2019-12-02 19:25 - 000236288 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgStm.sys
2019-12-02 19:26 - 2019-12-02 19:25 - 000210328 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbidsh.sys
2019-12-02 19:26 - 2019-12-02 19:25 - 000205600 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgArPot.sys
2019-12-02 19:26 - 2019-12-02 19:25 - 000171784 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgMonFlt.sys
2019-12-02 19:26 - 2019-12-02 19:25 - 000111096 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRdr2.sys
2019-12-02 19:26 - 2019-12-02 19:25 - 000084560 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgRvrt.sys
2019-12-02 19:26 - 2019-12-02 19:25 - 000065376 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgbuniv.sys
2019-12-02 19:26 - 2019-12-02 19:25 - 000043512 _____ (AVG Technologies CZ, s.r.o.) C:\Windows\system32\Drivers\avgKbd.sys
2019-12-02 17:52 - 2019-12-02 17:52 - 000000000 ____D C:\Windows\system32\appmgmt
2019-12-02 17:48 - 2019-11-27 15:10 - 020520312 _____ (lrepacks.ru ) C:\IObit Driver Booster Pro 7.1.0.533.exe
2019-12-02 14:12 - 2019-12-02 14:12 - 000000000 _____ C:\Windows\system32\last.dump
2019-12-02 13:59 - 2019-12-02 13:59 - 000000000 ____D C:\$AV_AVG
2019-12-02 13:47 - 2011-06-26 07:45 - 000256000 _____ C:\Windows\PEV.exe
2019-12-02 13:44 - 2019-12-04 07:50 - 000000000 ____D C:\Windows\erdnt
2019-12-02 10:55 - 2010-09-14 07:45 - 000367104 _____ (Microsoft Corporation) C:\Windows\system32\wcncsvc.dll
2019-12-02 10:55 - 2010-09-14 07:07 - 000276992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wcncsvc.dll
2019-12-02 10:54 - 2019-12-02 10:54 - 000000000 ____D C:\Windows\SysWOW64\x64
2019-12-02 10:54 - 2009-09-02 18:58 - 001002008 _____ (Intel Corporation) C:\Windows\SysWOW64\igxpun.exe
2019-12-02 10:51 - 2009-10-10 04:17 - 000014336 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\sffp_sd.sys
2019-12-02 10:46 - 2011-01-26 07:53 - 000982912 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgkrnl.sys
2019-12-02 10:46 - 2011-01-26 07:53 - 000265088 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\dxgmms1.sys
2019-12-02 10:46 - 2011-01-26 07:31 - 000144384 _____ (Microsoft Corporation) C:\Windows\system32\cdd.dll
2019-12-02 10:46 - 2010-12-21 07:16 - 001197056 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2019-12-02 10:46 - 2010-12-21 07:16 - 000442880 _____ (Microsoft Corporation) C:\Windows\system32\winhttp.dll
2019-12-02 10:46 - 2010-12-21 07:16 - 000258048 _____ (Microsoft Corporation) C:\Windows\system32\WebClnt.dll
2019-12-02 10:46 - 2010-12-21 07:16 - 000097280 _____ (Microsoft Corporation) C:\Windows\system32\wscsvc.dll
2019-12-02 10:46 - 2010-12-21 07:16 - 000062976 _____ (Microsoft Corporation) C:\Windows\system32\wscapi.dll
2019-12-02 10:46 - 2010-12-21 07:15 - 001498112 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2019-12-02 10:46 - 2010-12-21 07:15 - 000264192 _____ (Microsoft Corporation) C:\Windows\system32\upnp.dll
2019-12-02 10:46 - 2010-12-21 07:15 - 000015360 _____ (Microsoft Corporation) C:\Windows\system32\slwga.dll
2019-12-02 10:46 - 2010-12-21 07:13 - 002003968 _____ (Microsoft Corporation) C:\Windows\system32\msxml6.dll
2019-12-02 10:46 - 2010-12-21 07:13 - 001880576 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2019-12-02 10:46 - 2010-12-21 07:11 - 012369408 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2019-12-02 10:46 - 2010-12-21 07:10 - 000100864 _____ (Microsoft Corporation) C:\Windows\system32\davclnt.dll
2019-12-02 10:46 - 2010-12-21 06:38 - 001228288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2019-12-02 10:46 - 2010-12-21 06:38 - 000981504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2019-12-02 10:46 - 2010-12-21 06:38 - 000350720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winhttp.dll
2019-12-02 10:46 - 2010-12-21 06:38 - 000204800 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WebClnt.dll
2019-12-02 10:46 - 2010-12-21 06:38 - 000204288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\upnp.dll
2019-12-02 10:46 - 2010-12-21 06:38 - 000051200 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wscapi.dll
2019-12-02 10:46 - 2010-12-21 06:38 - 000014336 _____ (Microsoft Corporation) C:\Windows\SysWOW64\slwga.dll
2019-12-02 10:46 - 2010-12-21 06:36 - 001389568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml6.dll
2019-12-02 10:46 - 2010-12-21 06:36 - 001236992 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2019-12-02 10:46 - 2010-12-21 06:35 - 010989056 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2019-12-02 10:46 - 2010-12-21 06:34 - 000080384 _____ (Microsoft Corporation) C:\Windows\SysWOW64\davclnt.dll
2019-12-02 10:46 - 2010-11-04 07:31 - 000247808 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2019-12-02 10:46 - 2010-11-04 07:31 - 000064512 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2019-12-02 10:46 - 2010-11-04 06:48 - 000176640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2019-12-02 10:46 - 2010-11-04 06:48 - 000048128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2019-12-02 10:46 - 2010-11-02 06:18 - 000662528 _____ (Microsoft Corporation) C:\Windows\system32\XpsPrint.dll
2019-12-02 10:46 - 2010-11-02 06:18 - 000470016 _____ (Microsoft Corporation) C:\Windows\system32\XpsGdiConverter.dll
2019-12-02 10:46 - 2010-11-02 06:18 - 000229888 _____ (Microsoft Corporation) C:\Windows\system32\XpsRasterService.dll
2019-12-02 10:46 - 2010-11-02 06:12 - 001837568 _____ (Microsoft Corporation) C:\Windows\system32\d3d10warp.dll
2019-12-02 10:46 - 2010-11-02 06:12 - 001540608 _____ (Microsoft Corporation) C:\Windows\system32\DWrite.dll
2019-12-02 10:46 - 2010-11-02 06:12 - 001133568 _____ (Microsoft Corporation) C:\Windows\system32\FntCache.dll
2019-12-02 10:46 - 2010-11-02 06:12 - 000902656 _____ (Microsoft Corporation) C:\Windows\system32\d2d1.dll
2019-12-02 10:46 - 2010-11-02 06:12 - 000320512 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1core.dll
2019-12-02 10:46 - 2010-11-02 06:12 - 000197120 _____ (Microsoft Corporation) C:\Windows\system32\d3d10_1.dll
2019-12-02 10:46 - 2010-11-02 05:41 - 000442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsPrint.dll
2019-12-02 10:46 - 2010-11-02 05:41 - 000283648 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsGdiConverter.dll
2019-12-02 10:46 - 2010-11-02 05:41 - 000135168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XpsRasterService.dll
2019-12-02 10:46 - 2010-11-02 05:35 - 001170944 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10warp.dll
2019-12-02 10:46 - 2010-11-02 05:35 - 001074176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\DWrite.dll
2019-12-02 10:46 - 2010-11-02 05:35 - 000739840 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d2d1.dll
2019-12-02 10:46 - 2010-11-02 05:35 - 000218624 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1core.dll
2019-12-02 10:46 - 2010-11-02 05:35 - 000161792 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3d10_1.dll
2019-12-02 10:46 - 2010-06-26 06:31 - 001863680 _____ (Microsoft Corporation) C:\Windows\system32\ExplorerFrame.dll
2019-12-02 10:46 - 2010-06-26 06:14 - 001495040 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ExplorerFrame.dll
2019-12-02 10:46 - 2010-05-23 11:15 - 001619456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\WMVDECOD.DLL
2019-12-02 10:46 - 2010-05-23 11:11 - 003181568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mf.dll
2019-12-02 10:46 - 2010-05-23 11:11 - 000196608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mfreadwrite.dll
2019-12-02 10:46 - 2010-05-23 09:37 - 001888256 _____ (Microsoft Corporation) C:\Windows\system32\WMVDECOD.DLL
2019-12-02 10:46 - 2010-05-23 09:35 - 004068864 _____ (Microsoft Corporation) C:\Windows\system32\mf.dll
2019-12-02 10:46 - 2010-05-23 09:35 - 000257024 _____ (Microsoft Corporation) C:\Windows\system32\mfreadwrite.dll
2019-12-02 10:46 - 2010-05-23 09:35 - 000206848 _____ (Microsoft Corporation) C:\Windows\system32\mfps.dll
2019-12-02 10:46 - 2010-03-24 07:59 - 001736608 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2019-12-02 10:46 - 2010-03-24 07:37 - 001289528 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ntdll.dll
2019-12-02 10:46 - 2010-03-04 05:40 - 000184832 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbvideo.sys
2019-12-02 10:46 - 2010-03-04 05:32 - 000243712 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ks.sys
2019-12-02 10:46 - 2010-01-19 10:05 - 000424960 _____ (Microsoft Corporation) C:\Windows\system32\secproc.dll
2019-12-02 10:46 - 2010-01-19 10:05 - 000422912 _____ (Microsoft Corporation) C:\Windows\system32\secproc_isv.dll
2019-12-02 10:46 - 2010-01-19 10:05 - 000121856 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp_isv.dll
2019-12-02 10:46 - 2010-01-19 10:05 - 000121856 _____ (Microsoft Corporation) C:\Windows\system32\secproc_ssp.dll
2019-12-02 10:46 - 2010-01-19 10:00 - 000357888 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_isv.exe
2019-12-02 10:46 - 2010-01-19 10:00 - 000356352 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate.exe
2019-12-02 10:46 - 2010-01-19 10:00 - 000306688 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp.exe
2019-12-02 10:46 - 2010-01-19 10:00 - 000305152 _____ (Microsoft Corporation) C:\Windows\system32\RMActivate_ssp_isv.exe
2019-12-02 10:46 - 2010-01-19 00:29 - 000369152 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc.dll
2019-12-02 10:46 - 2010-01-19 00:29 - 000365568 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_isv.dll
2019-12-02 10:46 - 2010-01-19 00:29 - 000085504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp_isv.dll
2019-12-02 10:46 - 2010-01-19 00:29 - 000085504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secproc_ssp.dll
2019-12-02 10:46 - 2010-01-19 00:28 - 000324608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_isv.exe
2019-12-02 10:46 - 2010-01-19 00:28 - 000320512 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate.exe
2019-12-02 10:46 - 2010-01-19 00:28 - 000280064 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp.exe
2019-12-02 10:46 - 2010-01-19 00:28 - 000277504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\RMActivate_ssp_isv.exe
2019-12-02 10:46 - 2009-10-31 07:34 - 002870272 _____ (Microsoft Corporation) C:\Windows\explorer.exe
2019-12-02 10:46 - 2009-10-31 06:45 - 002614272 _____ (Microsoft Corporation) C:\Windows\SysWOW64\explorer.exe
2019-12-02 10:46 - 2009-10-28 07:24 - 000389632 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2019-12-02 10:44 - 2012-09-06 18:38 - 000295792 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\volsnap.sys
2019-12-02 10:42 - 2010-02-18 09:07 - 014163456 _____ (Microsoft Corporation) C:\Windows\system32\shell32.dll
2019-12-02 10:42 - 2010-02-18 08:34 - 012867072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\shell32.dll
2019-12-02 10:42 - 2009-12-11 11:29 - 000153160 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2019-12-02 10:42 - 2009-12-11 10:24 - 001446912 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2019-12-02 10:42 - 2009-12-11 08:39 - 000022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2019-12-02 10:42 - 2009-12-11 08:36 - 000096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2019-12-01 22:04 - 2019-12-01 22:04 - 008218800 _____ (Malwarebytes) C:\Users\Tobik\Desktop\adwcleaner_8.0.0.exe
2019-12-01 22:03 - 2019-12-01 22:03 - 000015176 _____ C:\Windows\system32\results.xml
2019-12-01 21:21 - 2009-06-16 12:05 - 000053248 _____ (Windows XP Bundled build C-Centric Single User) C:\Windows\SysWOW64\CSVer.dll
2019-12-01 20:36 - 2019-12-01 20:36 - 000000648 _____ C:\Users\Tobik\Desktop\Total Commander 64 bit.lnk
2019-12-01 20:36 - 2019-12-01 20:36 - 000000000 ____D C:\Users\Tobik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander
2019-12-01 20:36 - 2019-12-01 20:36 - 000000000 ____D C:\Users\Tobik\AppData\Local\GHISLER
2019-12-01 20:35 - 2019-12-01 20:36 - 000000000 ____D C:\totalcmd
2019-12-01 20:35 - 2019-12-01 20:35 - 000000000 ____D C:\Users\Tobik\AppData\Roaming\GHISLER
2019-12-01 20:34 - 2019-12-01 20:35 - 007664792 _____ (Ghisler Software GmbH) C:\Users\Tobik\Downloads\tcmd922x32_64.exe
2019-11-28 13:15 - 2019-11-28 13:15 - 000000000 ____D C:\09bbdfd840446038e8c6
2019-11-28 11:33 - 2019-11-28 12:58 - 000000000 ____D C:\Symbols
2019-11-28 08:19 - 2019-12-02 13:37 - 000000000 ____D C:\Windows\Minidump
2019-11-27 16:28 - 2019-11-27 16:28 - 000000000 ____D C:\Users\Default\AppData\Local\Microsoft Help
2019-11-27 16:28 - 2019-11-27 16:28 - 000000000 ____D C:\Users\Default User\AppData\Local\Microsoft Help
2019-11-27 15:49 - 2019-12-02 19:03 - 000004366 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
2019-11-27 15:49 - 2019-11-27 15:49 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2019-11-27 15:49 - 2019-11-27 15:49 - 000466456 _____ (Creative Labs) C:\Windows\system32\wrap_oal.dll
2019-11-27 15:49 - 2019-11-27 15:49 - 000444952 _____ (Creative Labs) C:\Windows\SysWOW64\wrap_oal.dll
2019-11-27 15:49 - 2019-11-27 15:49 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2019-11-27 15:49 - 2019-11-27 15:49 - 000122904 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\system32\OpenAL32.dll
2019-11-27 15:49 - 2019-11-27 15:49 - 000109080 _____ (Portions (C) Creative Labs Inc. and NVIDIA Corp.) C:\Windows\SysWOW64\OpenAL32.dll
2019-11-27 15:49 - 2019-11-27 15:49 - 000000000 ____D C:\Users\Tobik\AppData\Roaming\Macromedia
2019-11-27 15:49 - 2019-11-27 15:49 - 000000000 ____D C:\Program Files (x86)\OpenAL
2019-11-27 15:48 - 2019-11-27 15:49 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2019-11-27 15:48 - 2019-11-27 15:48 - 000000000 ____D C:\Windows\system32\Macromed
2019-11-27 15:47 - 2009-09-04 17:29 - 001892184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_42.dll
2019-11-27 15:47 - 2009-09-04 17:29 - 000453456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_42.dll
2019-11-27 15:46 - 2019-11-27 15:46 - 000001346 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live ID.lnk
2019-11-27 15:46 - 2019-11-27 15:46 - 000000000 ____D C:\Windows\SysWOW64\xlive
2019-11-27 15:46 - 2019-11-27 15:46 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows Marketplace
2019-11-27 15:46 - 2019-11-27 15:46 - 000000000 ____D C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2019-11-27 15:45 - 2019-11-27 16:34 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2019-11-27 15:43 - 2019-11-27 18:50 - 000000000 ____D C:\Program Files\Microsoft Silverlight
2019-11-27 15:43 - 2019-11-27 18:49 - 000000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2019-11-27 15:43 - 2009-03-16 14:18 - 000517448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_4.dll
2019-11-27 15:43 - 2009-03-16 14:18 - 000235352 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_4.dll
2019-11-27 15:43 - 2009-03-16 14:18 - 000069448 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_3.dll
2019-11-27 15:43 - 2009-03-16 14:18 - 000022360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_6.dll
2019-11-27 15:41 - 2008-05-30 14:19 - 000507400 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_1.dll
2019-11-27 15:41 - 2008-05-30 14:17 - 000065032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_0.dll
2019-11-27 15:41 - 2008-05-30 14:17 - 000025608 _____ (Microsoft Corporation) C:\Windows\SysWOW64\X3DAudio1_4.dll
2019-11-27 15:41 - 2007-07-20 00:57 - 000267112 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_9.dll
2019-11-27 15:41 - 2007-07-20 00:54 - 000018280 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_2.dll
2019-11-27 15:41 - 2007-04-04 18:53 - 000081768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_3.dll
2019-11-27 15:41 - 2007-03-12 16:42 - 003495784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_33.dll
2019-11-27 15:41 - 2006-09-28 16:05 - 002414360 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_31.dll
2019-11-27 15:36 - 2019-11-27 15:36 - 024578944 _____ (Piriform Software Ltd) C:\Users\Tobik\Downloads\ccsetup563.exe
2019-11-27 15:27 - 2019-12-02 17:49 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IObit
2019-11-27 12:27 - 2019-11-27 12:28 - 024285294 _____ C:\Users\Tobik\Downloads\IObit_Driver_Booster_Pro_7.1.0.533_Full__4REALTORRENTZ.COM_.zip
2019-11-27 09:37 - 2019-11-27 10:01 - 000000000 ____D C:\Users\Tobik\Desktop\Fotky
2019-11-27 09:37 - 2019-11-27 09:37 - 000000000 ____D C:\Users\Tobik\Desktop\Sádrokartony
2019-11-27 09:37 - 2019-11-27 09:37 - 000000000 ____D C:\Users\Tobik\Desktop\Poruba - Rekupirační jednotka
2019-11-27 07:34 - 2017-12-21 11:33 - 000819384 _____ C:\Users\Tobik\Desktop\D.1.1 ARCHITEKTONICKO-STAVEBNÍ ŘEŠENÍ.pdf
2019-11-27 06:19 - 2019-11-27 06:19 - 000254490 _____ C:\Users\Tobik\Downloads\JLT_CZ_Záruční_list_CB_MSH_Techtrade_RD_Peňiaz_39.pdf
2019-11-27 05:56 - 2019-11-27 05:56 - 007888301 _____ C:\Users\Tobik\Downloads\17792 Šenov u Ostravy (1).zip
2019-11-27 05:56 - 2019-11-27 05:56 - 007888301 _____ C:\Users\Tobik\Desktop\17792 Šenov u Ostravy (1).zip
2019-11-26 12:06 - 2019-11-26 12:06 - 000000000 ____D C:\Windows\system32\EventProviders
2019-11-26 10:43 - 2019-11-26 10:43 - 000068846 _____ C:\Users\Tobik\Downloads\Faktura_190100014.pdf
2019-11-26 10:11 - 2019-11-28 10:41 - 000000000 ____D C:\ProgramData\Install.GS
2019-11-26 09:29 - 2019-11-26 09:29 - 018503315 _____ C:\Users\Tobik\Downloads\22677.pdf
2019-11-26 08:19 - 2019-11-26 08:19 - 000166126 _____ C:\Users\Tobik\Downloads\0-2-0163-19_TĚSNÍCÍ_PŘÍRUBA.pdf
2019-11-26 06:49 - 2019-12-04 07:44 - 000000000 ____D C:\Users\Tobik\Desktop\Programy
2019-11-21 07:04 - 2019-11-21 07:04 - 007888301 _____ C:\Users\Tobik\Downloads\17792 Šenov u Ostravy.zip
2019-11-20 14:56 - 2019-11-20 14:56 - 000309832 _____ C:\Users\Tobik\Downloads\Faktura_190100308.pdf
2019-11-20 14:21 - 2019-11-20 14:21 - 000895316 _____ C:\Users\Tobik\Downloads\IEQ000000502964441113.zip
2019-11-20 14:21 - 2019-11-20 14:21 - 000000000 ____D C:\Users\Tobik\Desktop\Krčmář
2019-11-20 12:33 - 2019-11-20 12:33 - 000002223 _____ C:\Users\Public\Desktop\DWG TrueView 2016 - English.lnk
2019-11-20 12:33 - 2019-11-20 12:33 - 000002223 _____ C:\ProgramData\Desktop\DWG TrueView 2016 - English.lnk
2019-11-20 12:33 - 2019-11-20 12:33 - 000000000 ____D C:\Users\Public\Documents\Autodesk
2019-11-20 12:33 - 2019-11-20 12:33 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Autodesk
2019-11-20 12:33 - 2019-11-20 12:33 - 000000000 ____D C:\ProgramData\Documents\Autodesk
2019-11-20 12:30 - 2019-11-20 12:33 - 000000000 ____D C:\Program Files\Common Files\Autodesk Shared
2019-11-20 12:30 - 2019-11-20 12:30 - 000000000 ____D C:\Users\Tobik\AppData\Local\Autodesk
2019-11-20 12:30 - 2019-11-20 12:30 - 000000000 ____D C:\Program Files\Autodesk
2019-11-20 12:30 - 2010-06-02 04:55 - 000527192 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAudio2_7.dll
2019-11-20 12:30 - 2010-06-02 04:55 - 000518488 _____ (Microsoft Corporation) C:\Windows\system32\XAudio2_7.dll
2019-11-20 12:30 - 2010-06-02 04:55 - 000239960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine3_7.dll
2019-11-20 12:30 - 2010-06-02 04:55 - 000176984 _____ (Microsoft Corporation) C:\Windows\system32\xactengine3_7.dll
2019-11-20 12:30 - 2010-06-02 04:55 - 000077656 _____ (Microsoft Corporation) C:\Windows\system32\XAPOFX1_5.dll
2019-11-20 12:30 - 2010-06-02 04:55 - 000074072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\XAPOFX1_5.dll
2019-11-20 12:30 - 2010-05-26 11:41 - 002526056 _____ (Microsoft Corporation) C:\Windows\system32\D3DCompiler_43.dll
2019-11-20 12:30 - 2010-05-26 11:41 - 002401112 _____ (Microsoft Corporation) C:\Windows\system32\D3DX9_43.dll
2019-11-20 12:30 - 2010-05-26 11:41 - 002106216 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DCompiler_43.dll
2019-11-20 12:30 - 2010-05-26 11:41 - 001998168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\D3DX9_43.dll
2019-11-20 12:30 - 2010-05-26 11:41 - 001907552 _____ (Microsoft Corporation) C:\Windows\system32\d3dcsx_43.dll
2019-11-20 12:30 - 2010-05-26 11:41 - 001868128 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dcsx_43.dll
2019-11-20 12:30 - 2010-05-26 11:41 - 000511328 _____ (Microsoft Corporation) C:\Windows\system32\d3dx10_43.dll
2019-11-20 12:30 - 2010-05-26 11:41 - 000470880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx10_43.dll
2019-11-20 12:30 - 2010-05-26 11:41 - 000276832 _____ (Microsoft Corporation) C:\Windows\system32\d3dx11_43.dll
2019-11-20 12:30 - 2010-05-26 11:41 - 000248672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx11_43.dll
2019-11-20 12:30 - 2006-03-31 12:41 - 003927248 _____ (Microsoft Corporation) C:\Windows\system32\d3dx9_30.dll
2019-11-20 12:30 - 2006-03-31 12:40 - 002388176 _____ (Microsoft Corporation) C:\Windows\SysWOW64\d3dx9_30.dll
2019-11-20 12:30 - 2006-03-31 12:40 - 000352464 _____ (Microsoft Corporation) C:\Windows\system32\xactengine2_1.dll
2019-11-20 12:30 - 2006-03-31 12:39 - 000229584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xactengine2_1.dll
2019-11-20 12:30 - 2006-03-31 12:39 - 000083664 _____ (Microsoft Corporation) C:\Windows\system32\xinput1_1.dll
2019-11-20 12:30 - 2006-03-31 12:39 - 000062672 _____ (Microsoft Corporation) C:\Windows\SysWOW64\xinput1_1.dll
2019-11-20 12:30 - 2006-02-03 08:41 - 000016592 _____ (Microsoft Corporation) C:\Windows\system32\x3daudio1_0.dll
2019-11-20 12:30 - 2006-02-03 08:41 - 000014032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\x3daudio1_0.dll
2019-11-20 12:29 - 2019-11-29 07:00 - 000000000 ____D C:\ProgramData\Package Cache
2019-11-20 12:26 - 2019-11-20 12:33 - 000000000 ____D C:\Users\Tobik\AppData\Roaming\Autodesk
2019-11-20 12:26 - 2019-11-20 12:31 - 000000000 ____D C:\ProgramData\Autodesk
2019-11-20 12:20 - 2019-11-20 12:51 - 000000000 ____D C:\Users\Tobik\Desktop\Splícha
2019-11-20 11:58 - 2019-11-20 11:58 - 002144440 _____ C:\Users\Tobik\Downloads\1500_II.zip
2019-11-20 11:58 - 2019-11-20 11:58 - 002071738 _____ C:\Users\Tobik\Downloads\250_II.zip
2019-11-20 06:14 - 2019-11-20 06:14 - 000000000 ____D C:\Autodesk
2019-11-20 06:08 - 2019-11-20 06:12 - 492486704 _____ (Autodesk, Inc.) C:\Users\Tobik\Downloads\SetupDWGTrueView2016_ENU_64bit.sfx.exe
2019-11-19 16:50 - 2019-11-19 16:50 - 000059468 _____ C:\Users\Tobik\Downloads\3519043063.pdf
2019-11-19 16:50 - 2019-11-19 16:50 - 000059139 _____ C:\Users\Tobik\Downloads\3519043064.pdf
2019-11-19 12:06 - 2019-11-19 12:06 - 000523765 _____ C:\Users\Tobik\Downloads\Scan-0515.pdf
2019-11-19 12:06 - 2019-11-19 12:06 - 000092832 _____ C:\Users\Tobik\Downloads\Faktura_1901402.pdf
2019-11-19 11:51 - 2019-11-19 11:51 - 000000000 ____D C:\Users\Tobik\Desktop\Fojtášek
2019-11-14 13:08 - 2019-11-14 13:08 - 000136414 _____ C:\Users\Tobik\Downloads\8810ee67a46a4152180fbabc95485d1a.PDF
2019-11-13 08:40 - 2019-11-13 08:40 - 000537371 _____ C:\Users\Tobik\Downloads\Scan-0544.pdf
2019-11-13 07:33 - 2019-11-13 07:33 - 000069272 _____ C:\Users\Tobik\Downloads\faktura.pdf
2019-11-12 10:42 - 2019-11-12 10:42 - 000009401 _____ C:\Users\Tobik\Desktop\Polep auta.xlsx
2019-11-11 15:23 - 2019-11-11 15:23 - 006530967 _____ C:\Users\Tobik\Downloads\Vykres zetonu.pdf
2019-11-11 11:06 - 2019-11-11 11:06 - 000143984 _____ C:\Users\Tobik\Downloads\FA-V 3191303811.pdf
2019-11-11 11:04 - 2019-11-11 11:04 - 000577989 _____ C:\Users\Tobik\Downloads\Scan-0538.pdf
2019-11-11 07:01 - 2019-11-21 07:05 - 000000000 ____D C:\Users\Tobik\Desktop\Šenov
2019-11-09 06:37 - 2019-11-09 06:38 - 005276934 _____ C:\Users\Tobik\Downloads\M0078252 (1).pdf
2019-11-09 06:37 - 2019-11-09 06:37 - 005276934 _____ C:\Users\Tobik\Downloads\M0078252.pdf
2019-11-07 09:43 - 2019-11-07 09:43 - 001140363 _____ C:\Users\Tobik\Downloads\F10436_Rev.01.pdf
2019-11-06 15:26 - 2019-11-06 15:26 - 000001875 _____ C:\Users\Public\Desktop\Malwarebytes.lnk
2019-11-06 15:26 - 2019-11-06 15:26 - 000001875 _____ C:\ProgramData\Desktop\Malwarebytes.lnk
2019-11-06 15:26 - 2019-11-06 15:26 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes
2019-11-06 15:26 - 2019-09-30 06:25 - 000153312 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbae64.sys
2019-11-04 09:04 - 2019-11-04 09:04 - 000023076 _____ C:\Users\Tobik\Desktop\Radovan - docházka sk.xlsx
2019-11-04 07:58 - 2019-11-04 07:58 - 000000000 ____D C:\Users\Tobik\AppData\Local\mbamtray
2019-11-04 07:58 - 2019-11-04 07:58 - 000000000 ____D C:\Users\Tobik\AppData\Local\mbam
2019-11-04 07:57 - 2019-11-04 08:00 - 000000000 ____D C:\AdwCleaner
2019-11-04 07:57 - 2019-11-04 07:57 - 000000000 ____D C:\ProgramData\Malwarebytes
2019-11-04 07:57 - 2019-11-04 07:57 - 000000000 ____D C:\Program Files\Malwarebytes
2019-11-04 07:56 - 2019-11-04 07:57 - 000000000 ____D C:\Users\Tobik\Desktop\jkjkk

==================== One month (modified) ==================

(If an entry is included in the fixlist, the file/folder will be moved.)

2019-12-04 07:56 - 2019-05-12 18:26 - 000000000 ____D C:\Users\Tobik\AppData\LocalLow\Mozilla
2019-12-04 07:51 - 2009-07-14 05:45 - 000014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-12-04 07:51 - 2009-07-14 05:45 - 000014016 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-12-04 07:45 - 2019-05-12 18:21 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2019-12-04 07:42 - 2009-07-14 06:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2019-12-04 07:28 - 2019-08-05 11:05 - 000013405 _____ C:\Windows\BRRBCOM.INI
2019-12-03 06:41 - 2019-10-07 11:06 - 000023273 _____ C:\Users\Tobik\Desktop\Vladimír - docházka.xlsx
2019-12-03 06:38 - 2019-09-26 13:45 - 000052736 _____ C:\Users\Tobik\Desktop\Radovan - docházka.xls
2019-12-03 06:26 - 2019-08-05 11:37 - 000000000 ____D C:\Users\Tobik\Desktop\Scan
2019-12-02 20:18 - 2019-05-14 06:42 - 000002421 _____ C:\Users\Tobik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2019-12-02 20:18 - 2019-05-14 06:42 - 000002384 _____ C:\Users\Tobik\Desktop\Google Chrome.lnk
2019-12-02 20:06 - 2009-07-14 03:34 - 000000478 _____ C:\Windows\win.ini
2019-12-02 19:38 - 2019-05-12 19:08 - 000000000 ____D C:\Users\Tobik\AppData\Local\Avg
2019-12-02 19:34 - 2019-05-12 19:09 - 000000000 ____D C:\Program Files (x86)\AVG
2019-12-02 19:34 - 2019-05-12 19:08 - 000000000 ____D C:\ProgramData\Avg
2019-12-02 19:32 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\inf
2019-12-02 19:31 - 2019-05-12 19:15 - 000000000 ____D C:\Users\Tobik\AppData\Roaming\AVG
2019-12-02 19:22 - 2019-05-12 19:08 - 000000000 ____D C:\ProgramData\MFAData
2019-12-02 19:07 - 2009-07-14 16:18 - 000668376 _____ C:\Windows\system32\perfh005.dat
2019-12-02 19:07 - 2009-07-14 16:18 - 000141004 _____ C:\Windows\system32\perfc005.dat
2019-12-02 19:07 - 2009-07-14 06:13 - 001582262 _____ C:\Windows\system32\PerfStringBackup.INI
2019-12-02 19:03 - 2019-06-07 06:39 - 000003566 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-1166480115-2326838651-3686901258-1001UA
2019-12-02 19:03 - 2019-06-07 06:39 - 000003294 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskUserS-1-5-21-1166480115-2326838651-3686901258-1001Core
2019-12-02 19:03 - 2019-05-12 18:22 - 000002772 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2019-12-02 18:34 - 2009-07-14 05:45 - 000488432 _____ C:\Windows\system32\FNTCACHE.DAT
2019-12-02 18:28 - 2019-05-14 06:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office
2019-12-02 16:41 - 2009-07-14 03:34 - 000000215 _____ C:\Windows\system.ini
2019-12-01 21:25 - 2019-05-14 05:56 - 000000000 ____D C:\Users\Tobik\AppData\Local\Microsoft Help
2019-12-01 21:25 - 2009-07-14 04:20 - 000000000 ____D C:\Windows\system32\sysprep
2019-12-01 21:21 - 2019-05-12 18:04 - 000000000 ____D C:\Program Files (x86)\Intel
2019-12-01 20:29 - 2019-05-12 18:26 - 000139320 _____ C:\Users\Tobik\AppData\Local\GDIPFONTCACHEV1.DAT
2019-11-29 07:26 - 2019-08-05 11:07 - 000000000 ____D C:\Program Files (x86)\ControlCenter4
2019-11-29 07:15 - 2019-08-05 11:07 - 000000000 ____D C:\ProgramData\ControlCenter4
2019-11-27 19:32 - 2019-05-14 05:56 - 000000000 ____D C:\Program Files (x86)\Microsoft Office
2019-11-27 16:29 - 2019-05-14 06:01 - 000000000 ____D C:\Program Files (x86)\Microsoft Works
2019-11-27 16:04 - 2009-07-14 06:09 - 000000000 ____D C:\Windows\system32\Tasks\WPD
2019-11-27 15:46 - 2009-07-14 06:32 - 000000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2019-11-27 15:46 - 2009-07-14 04:20 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared
2019-11-27 15:37 - 2019-09-09 05:54 - 000000000 ____D C:\Users\Tobik\Desktop\Odkazy
2019-11-27 15:37 - 2019-05-12 19:32 - 000003870 _____ C:\Windows\system32\Tasks\CCleaner Update
2019-11-27 15:24 - 2019-05-12 18:27 - 000000000 ____D C:\ProgramData\ProductData
2019-11-27 12:35 - 2019-05-12 18:06 - 000000000 ____D C:\Users\Tobik\AppData\Local\VirtualStore
2019-11-26 12:11 - 2019-05-12 19:33 - 000000000 ____D C:\Windows\system32\MRT
2019-11-26 12:07 - 2019-05-12 19:33 - 127230528 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2019-11-26 06:40 - 2009-07-14 06:08 - 000032628 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2019-11-20 12:33 - 2009-07-14 06:32 - 000000000 ____D C:\Windows\Downloaded Program Files
2019-11-14 12:13 - 2019-07-28 17:48 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software

==================== SigCheck ============================

(There is no automatic fix for files that do not pass verification.)

LastRegBack: 2019-12-02 13:07
==================== End of FRST.txt ========================

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 02-12-2019
Ran by Tobik (04-12-2019 08:00:30)
Running from C:\Users\Tobik\Downloads
Windows 7 Ultimate (X64) (2019-05-12 17:04:31)
Boot Mode: Normal
==========================================================

==================== Accounts: =============================

Administrator (S-1-5-21-1166480115-2326838651-3686901258-500 - Administrator - Disabled)
Guest (S-1-5-21-1166480115-2326838651-3686901258-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1166480115-2326838651-3686901258-1002 - Limited - Enabled)
Tobik (S-1-5-21-1166480115-2326838651-3686901258-1001 - Administrator - Enabled) => C:\Users\Tobik

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: AVG Antivirus (Enabled - Up to date) {4FC75CA5-1654-5411-7CFB-1893D506BCF4}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: AVG Antivirus (Enabled - Up to date) {F4A6BD41-306E-5B9F-464B-23E1AE81F649}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 32 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 32.0.0.293 - Adobe)
Adobe Reader XI - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AB0000000001}) (Version: 11.0.00 - Adobe Systems Incorporated)
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678) (HKLM-x32\...\{90120000-0016-0405-0000-0000000FF1CE}_ENTERPRISE_{0A1FAC46-B899-421D-B1A2-470896DC45DB}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669) (HKLM-x32\...\{90120000-0018-0405-0000-0000000FF1CE}_ENTERPRISE_{5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}) (Version: - Microsoft)
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665) (HKLM-x32\...\{90120000-001B-0405-0000-0000000FF1CE}_ENTERPRISE_{E68DD413-B834-4923-8181-0A03B7555187}) (Version: - Microsoft)
Autodesk DWG TrueView 2016 - English (HKLM\...\DWG TrueView 2016 - English) (Version: 20.1.49.0 - Autodesk)
AVG AntiVirus FREE (HKLM-x32\...\AVG Antivirus) (Version: 19.8.3108 - AVG Technologies)
BrLauncher (HKLM-x32\...\{474764AE-5A67-4312-ADD3-449798BD96D1}) (Version: 1.1.21.0 - Brother Industries Ltd.) Hidden
BrLogRx (HKLM-x32\...\{B556F816-FF4D-4BB6-9339-ED28639E2EF3}) (Version: 1.0.2.1 - Brother Industries Ltd.) Hidden
Brother PCFax Driver (HKLM-x32\...\{56BA05BD-7A67-4EF8-85A7-8C6528AEE2AC}) (Version: 1.4.0.0 - Brother Industries Ltd.) Hidden
Brother Printer Driver (HKLM-x32\...\{09CB6C55-291E-4A22-9A6E-85DEC3E91D49}) (Version: 1.4.0.0 - Brother Industries Ltd.) Hidden
Brother Scanner Driver (HKLM-x32\...\{BF250A49-199A-4326-8F6F-8DD12BC1817A}) (Version: 1.0.26.1 - Brother Industries Ltd.) Hidden
BrotherHelpInstaller (HKLM-x32\...\{4E461C2A-EC1C-46D1-AF5B-7FEFD0054AF8}) (Version: 1.0.0.0 - Brother) Hidden
BrSupportTools (HKLM-x32\...\{83626DDE-99CD-4FF2-804E-36BE82143315}) (Version: 1.0.14.0 - Brother Industries Ltd.) Hidden
CCleaner (HKLM\...\CCleaner) (Version: 5.63 - Piriform)
ControlCenter4 (HKLM-x32\...\{96732F18-93C7-4AD8-930C-76B793AA6175}) (Version: 4.4.18.1 - Brother Industries, Ltd.) Hidden
ControlCenter4 CSDK (HKLM-x32\...\{1E89F75C-EF46-406C-9AAC-615B3CCC1D3D}) (Version: 4.3.2.1 - Brother Insutries Ltd.) Hidden
DeviceDetect (HKLM-x32\...\{9C27CE44-0F33-42CC-8A30-4A08369EB7B3}) (Version: 1.3.1.0 - Brother Industries Ltd.) Hidden
DWG TrueView 2016 - English (HKLM\...\{5783F2D7-F028-0409-0100-0060B0CE6BBA}) (Version: 20.1.49.0 - Autodesk) Hidden
Google Chrome (HKU\S-1-5-21-1166480115-2326838651-3686901258-1001\...\Google Chrome) (Version: 78.0.3904.108 - Google LLC)
HowToGuide (HKLM-x32\...\{36580EEB-4EDF-4880-BBD4-097E2C645ECD}) (Version: 1.0.1.0 - Brother Industries Ltd.) Hidden
Intel(R) Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 8.15.10.1892 - Intel Corporation)
Intel(R) Graphics Media Accelerator Driver (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 8.15.10.2869 - Intel Corporation)
Malwarebytes verze 3.8.3.2965 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 3.8.3.2965 - Malwarebytes)
Microsoft .NET Framework 4.5.2 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft .NET Framework 4.5.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.5.51209 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM-x32\...\{F2508213-9989-4E85-A078-72BE483917EF}) (Version: 3.5.88.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM-x32\...\{4CB0307C-565E-4441-86BE-0DF2E4FB828C}) (Version: 3.5.50.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM-x32\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM-x32\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40660 (HKLM-x32\...\{ef6b00ec-13e1-4c25-9064-b2f383cb8412}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40660 (HKLM-x32\...\{61087a79-ac85-455c-934d-1fa22cc64f36}) (Version: 12.0.40660.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.24212 (HKLM-x32\...\{323dad84-0974-4d90-a1c1-e006c7fdbb7d}) (Version: 14.0.24212.0 - Microsoft Corporation)
Microsoft Windows Debugging Symbols (HKLM-x32\...\{0E8D886F-3205-4472-848E-990F400FF218}) (Version: 7601 - Microsoft)
Microsoft Windows Debugging Symbols (HKLM-x32\...\{46EA439E-2D16-49B6-AA80-00DE992FE7CE}) (Version: 7601 - Microsoft)
Microsoft Windows Debugging Symbols (HKLM-x32\...\{5CBDF0C2-6FD1-4A32-9A0A-143D9AB91CCE}) (Version: 7601 - Microsoft)
Microsoft Windows Debugging Symbols (HKLM-x32\...\{68ADAEAA-DABD-45C1-9CC2-F995407549CD}) (Version: 7601 - Microsoft)
Microsoft Windows Debugging Symbols (HKLM-x32\...\{8DD62FB6-083D-40B9-9D7D-48449FDDDED5}) (Version: 7601 - Microsoft)
Microsoft Windows Debugging Symbols (HKLM-x32\...\{C6DB958A-50CC-481B-9ED8-3BAD236F7B49}) (Version: 7601 - Microsoft)
Mozilla Firefox 68.3.0 ESR (x86 cs) (HKLM-x32\...\Mozilla Firefox 68.3.0 ESR (x86 cs)) (Version: 68.3.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 68.3.0.7269 - Mozilla)
NetworkRepairTool (HKLM-x32\...\{947DE453-69FD-4CF6-A682-04D1308C79AF}) (Version: 1.2.15.0 - Brother Industries, Ltd.) Hidden
OpenAL (HKLM-x32\...\OpenAL) (Version: - )
PC-FAXReceive (HKLM-x32\...\{5A00BD65-623B-430A-9EE4-EA2A943B91F9}) (Version: 1.6.14.0 - Brother Insutries Ltd.) Hidden
PCFaxTx (HKLM-x32\...\{3C17737F-A6C4-4528-9A60-06DD0D4B3A63}) (Version: 1.0.18.1 - Brother Industries Ltd.) Hidden
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8581 - Realtek Semiconductor Corp.)
RemoteSetup (HKLM-x32\...\{BDD8C463-1183-4A91-9EC8-BF68E4ECA9B6}) (Version: 3.9.2.1 - Brother Industries Ltd.) Hidden
ScannerUtilityInstaller (HKLM-x32\...\{5B645FE2-19E9-4B15-B5B2-3D8766F6FA27}) (Version: 1.0.0.0 - Brother) Hidden
StatusMonitor (HKLM-x32\...\{B3CADBE5-AEB8-4F1D-B0EB-3EF4FD27FC97}) (Version: 1.18.9.0 - Brother Insutries Ltd.) Hidden
Total Commander 64+32-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.22 - Ghisler Software GmbH)
Tpv výpočty 7.4.4 (HKU\S-1-5-21-1166480115-2326838651-3686901258-1001\...\{9075589A-C578-4333-B1CF-20DED0F3A20B}_is1) (Version: - Radek Jureček)
Update for 2007 Microsoft Office System (KB967642) (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
UsbRepairTool (HKLM-x32\...\{F8762A81-32B5-4144-9F3C-9274F515A651}) (Version: 1.4.0.0 - Brother Industries, Ltd.) Hidden
Windows Live ID Sign-in Assistant (HKLM\...\{9B48B0AC-C813-4174-9042-476A887592C7}) (Version: 6.500.3165.0 - Microsoft Corporation)
WinRAR 5.61 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.61.0 - win.rar GmbH)

==================== Custom CLSID (Whitelisted): ==============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1166480115-2326838651-3686901258-1001_Classes\CLSID\{149DD748-EA85-45A6-93C5-AC50D0260C98}\localserver32 -> C:\Program Files\Autodesk\DWG TrueView 2016 - English\dwgviewr.exe (Autodesk, Inc -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1166480115-2326838651-3686901258-1001_Classes\CLSID\{3faa4380-a399-11cf-a466-00805fe418f6}\InprocServer32 -> C:\Program Files\Autodesk\DWG TrueView 2016 - English\en-US\dwgviewrficn.dll (Autodesk, Inc -> Autodesk, Inc.)
CustomCLSID: HKU\S-1-5-21-1166480115-2326838651-3686901258-1001_Classes\CLSID\{84EB3779-151B-4C71-AEF0-A0FEE9481401}\InprocServer32 -> C:\Users\Tobik\AppData\Local\Google\Update\1.3.35.342\psuser_64.dll (Google Inc -> Google LLC)
CustomCLSID: HKU\S-1-5-21-1166480115-2326838651-3686901258-1001_Classes\CLSID\{A2C6CB58-C076-425C-ACB7-6D19D64428CD}\localserver32 -> C:\Users\Tobik\AppData\Local\Google\Chrome\Application\78.0.3904.108\notification_helper.exe (Google LLC -> Google LLC)
CustomCLSID: HKU\S-1-5-21-1166480115-2326838651-3686901258-1001_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Tobik\AppData\Local\Google\Update\1.3.35.342\psuser_64.dll (Google Inc -> Google LLC)
ShellExecuteHooks-x32: Groove GFS Stub Execution Hook - {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll [2217832 2009-02-26] (Microsoft Corporation -> Microsoft Corporation)
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ShellIconOverlayIdentifiers: [AutoCAD Digital Signatures Icon Overlay Handler] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\Windows\system32\AcSignIcon.dll [2015-02-06] (Autodesk, Inc -> Autodesk, Inc.)
ContextMenuHandlers1: [AcShellExtension.AcContextMenuHandler] -> {2E7A2C6C-B938-40a4-BA1C-C7EC982DC202} => C:\Program Files\Common Files\Autodesk Shared\AcShellEx\AcShellExtension.dll [2015-02-06] (Autodesk, Inc -> Autodesk)
ContextMenuHandlers1: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShell.dll [2019-12-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers5: [igfxcui] -> {3AB1675A-CCFF-11D2-8B20-00A0C93CB1F4} => C:\Windows\system32\igfxpph.dll [2009-09-02] (Microsoft Windows Hardware Compatibility Publisher -> Intel Corporation)
ContextMenuHandlers6: [AVG] -> {472083B1-C522-11CF-8763-00608CC02F24} => C:\Program Files (x86)\AVG\Antivirus\ashShell.dll [2019-12-02] (AVG Technologies USA, Inc. -> AVG Technologies CZ, s.r.o.)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2019-06-26] (Malwarebytes Corporation -> Malwarebytes)

==================== Codecs (Whitelisted) ====================

==================== Shortcuts & WMI ========================

==================== Loaded Modules (Whitelisted) =============

2009-02-27 15:38 - 2009-02-27 15:38 - 000139264 _____ () [File not signed] C:\Program Files (x86)\Brother\BrUtilities\BrLogAPI.dll
2019-08-05 11:06 - 2005-04-22 12:36 - 000143360 _____ () [File not signed] C:\Windows\system32\BrSNMP64.dll
2017-02-09 12:48 - 2017-02-09 12:48 - 000483328 _____ (Brother Industries, Ltd.) [File not signed] C:\Program Files (x86)\Browny02\BrMonitor.dll
2019-08-05 11:06 - 2013-03-08 14:44 - 000087040 _____ (Brother Industries, Ltd.) [File not signed] C:\Windows\system32\BrNetSti.dll
2009-08-18 11:24 - 2009-08-18 11:24 - 000167424 _____ (Microsoft Corporation) [File not signed] c:\Program Files\Common Files\Microsoft Shared\Windows Live\sqmapi.dll
2019-11-27 16:31 - 2019-11-27 16:31 - 000096256 _____ (Microsoft Corporation) [File not signed] C:\Windows\WinSxS\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.762_none_11ecb0ab9b2caf3c\ATL80.DLL

==================== Alternate Data Streams (Whitelisted) ========

==================== Safe Mode (Whitelisted) ==================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"

==================== Association (Whitelisted) =================

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)

HKU\S-1-5-21-1166480115-2326838651-3686901258-1001\Software\Classes\.scr: DWGTrueViewScriptFile => C:\Windows\system32\notepad.exe "%1"

==================== Internet Explorer trusted/restricted ==========

==================== Hosts content: =========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:34 - 2019-12-02 16:41 - 000000027 _____ C:\Windows\system32\drivers\etc\hosts
127.0.0.1 localhost

==================== Other Areas ===========================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1166480115-2326838651-3686901258-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Tobik\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

(If an entry is included in the fixlist, it will be removed.)

MSCONFIG\startupreg: Adobe ARM => "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
MSCONFIG\startupreg: Google Update => C:\Users\Tobik\AppData\Local\Google\Update\1.3.35.302\GoogleUpdateCore.exe
MSCONFIG\startupreg: GrooveMonitor => "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
MSCONFIG\startupreg: RTHDVCPL => "C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s

==================== FirewallRules (Whitelisted) ================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [{A640627F-C7DB-41CD-B87E-643BA6C128A4}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{377C936E-E211-4298-960E-74C61A9F86C3}] => (Allow) C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{BEC669E7-3C76-4850-9A6C-9AECFD144640}] => (Allow) LPort=54925
FirewallRules: [{52BF4E8A-6B63-45DC-BCBF-7DABFB1B2170}] => (Allow) c:\program files (x86)\pc-faxreceive\brengineprocess.exe (Brother Industries, Ltd.) [File not signed]
FirewallRules: [{F9F56A1D-929D-4E23-BD8F-A19570F69424}] => (Allow) c:\program files (x86)\pc-faxreceive\brengineprocess.exe (Brother Industries, Ltd.) [File not signed]

==================== Restore Points =========================

04-12-2019 07:50:34 ComboFix created restore point

==================== Faulty Device Manager Devices ============

==================== Event log errors: ========================

Application errors:
==================
Error: (12/02/2019 06:58:36 PM) (Source: VSS) (EventID: 12292) (User: )
Description: Chyba služby Stínová kopie svazků: Při vytváření třídy zprostředkovatele stínové kopie modelu COM s identifikátorem CLSID {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} [0x80070422, Zvolenou službu nelze spustit, protože není povolena nebo s ní není spojeno žádné povolené zařízení.
] došlo k chybě.

Operace:
Získat rozhraní umožňující volání pro tohoto zprostředkovatele
Zobrazit seznam rozhraní pro všechny zprostředkovatele podporující tento kontext
Dotaz na stínové kopie

Kontext:
ID zprostředkovatele: {b5946137-7b9f-4925-af80-51abd60b20d5}
ID třídy: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
Kontext snímku: 13
Kontext snímku: 13
Kontext spuštění: Coordinator

Error: (12/02/2019 06:58:36 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} a názvem SW_PROV nelze spustit. [0x80070422, Zvolenou službu nelze spustit, protože není povolena nebo s ní není spojeno žádné povolené zařízení.
]

Operace:
Získat rozhraní umožňující volání pro tohoto zprostředkovatele
Zobrazit seznam rozhraní pro všechny zprostředkovatele podporující tento kontext
Dotaz na stínové kopie

Kontext:
ID zprostředkovatele: {b5946137-7b9f-4925-af80-51abd60b20d5}
ID třídy: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
Kontext snímku: 13
Kontext snímku: 13
Kontext spuštění: Coordinator

Error: (12/02/2019 06:43:20 PM) (Source: VSS) (EventID: 12292) (User: )
Description: Chyba služby Stínová kopie svazků: Při vytváření třídy zprostředkovatele stínové kopie modelu COM s identifikátorem CLSID {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} [0x80070422, Zvolenou službu nelze spustit, protože není povolena nebo s ní není spojeno žádné povolené zařízení.
] došlo k chybě.

Operace:
Získat rozhraní umožňující volání pro tohoto zprostředkovatele
Zobrazit seznam rozhraní pro všechny zprostředkovatele podporující tento kontext
Dotaz na stínové kopie

Kontext:
ID zprostředkovatele: {b5946137-7b9f-4925-af80-51abd60b20d5}
ID třídy: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
Kontext snímku: 13
Kontext snímku: 13
Kontext spuštění: Coordinator

Error: (12/02/2019 06:43:20 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} a názvem SW_PROV nelze spustit. [0x80070422, Zvolenou službu nelze spustit, protože není povolena nebo s ní není spojeno žádné povolené zařízení.
]

Operace:
Získat rozhraní umožňující volání pro tohoto zprostředkovatele
Zobrazit seznam rozhraní pro všechny zprostředkovatele podporující tento kontext
Dotaz na stínové kopie

Kontext:
ID zprostředkovatele: {b5946137-7b9f-4925-af80-51abd60b20d5}
ID třídy: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a}
Kontext snímku: 13
Kontext snímku: 13
Kontext spuštění: Coordinator

Error: (12/02/2019 06:04:40 PM) (Source: VSS) (EventID: 12292) (User: )
Description: Chyba služby Stínová kopie svazků: Při vytváření třídy zprostředkovatele stínové kopie modelu COM s identifikátorem CLSID {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} [0x80070422, Zvolenou službu nelze spustit, protože není povolena nebo s ní není spojeno žádné povolené zařízení.
] došlo k chybě.

Operace:
Získat rozhraní umožňující volání pro tohoto zprostředkovatele
Získávání rozhraní správy zprostředkovatele

Kontext:
ID zprostředkovatele: {b5946137-7b9f-4925-af80-51abd60b20d5}
ID třídy: {00000000-0000-0000-0000-000000000000}
Kontext snímku: -1
ID zprostředkovatele: {b5946137-7b9f-4925-af80-51abd60b20d5}

Error: (12/02/2019 06:04:40 PM) (Source: VSS) (EventID: 13) (User: )
Description: Informace služby Stínová kopie svazku: Server COM s identifikátorem CLSID {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} a názvem SW_PROV nelze spustit. [0x80070422, Zvolenou službu nelze spustit, protože není povolena nebo s ní není spojeno žádné povolené zařízení.
]

Operace:
Získat rozhraní umožňující volání pro tohoto zprostředkovatele
Získávání rozhraní správy zprostředkovatele

Kontext:
ID zprostředkovatele: {b5946137-7b9f-4925-af80-51abd60b20d5}
ID třídy: {00000000-0000-0000-0000-000000000000}
Kontext snímku: -1
ID zprostředkovatele: {b5946137-7b9f-4925-af80-51abd60b20d5}

Error: (12/02/2019 06:04:38 PM) (Source: System Restore) (EventID: 8193) (User: )
Description: Vytvoření bodu obnovení se nezdařilo (Proces = C:\Windows\servicing\TrustedInstaller.exe; Popis = Instalační služba modulů systému Windows; Chyba = 0x80042302).

Error: (12/02/2019 06:04:38 PM) (Source: VSS) (EventID: 8193) (User: )
Description: Chyba služby Stínová kopie svazků: Při volání rutiny GetProviderMgmtInterface došlo k neočekávané chybě. hr= 0x8004230f, Při pokusu o zpracování určené operace došlo k neočekávané chybě zprostředkovatele stínové kopie.
.

System errors:
=============
Error: (12/04/2019 07:39:30 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Windows Live ID Sign-in Assistant byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 10000 milisekund: Restartovat službu.

Error: (12/04/2019 07:39:30 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Windows Media Player Network Sharing byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.

Error: (12/04/2019 07:39:30 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba BrYNSvc byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (12/04/2019 07:39:22 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Stavová služba ASP.NET byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 0 milisekund: Restartovat službu.

Error: (12/03/2019 07:29:23 AM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80070643): Aktualizace Windows 7 Service Pack 1 pro systémy pro platformu x64 (KB976932).

Error: (12/03/2019 07:28:15 AM) (Source: Microsoft-Windows-Service Pack Installer) (EventID: 8) (User: NT AUTHORITY)
Description: Instalace aktualizace Service Pack skončila s kódem chyby 0x800f0a13.

Error: (12/02/2019 08:51:44 PM) (Source: Microsoft-Windows-WindowsUpdateClient) (EventID: 20) (User: NT AUTHORITY)
Description: Instalace se nezdařila: Instalování následující aktualizace se nezdařilo z důvodu chyby (0x80070643): Aktualizace Windows 7 Service Pack 1 pro systémy pro platformu x64 (KB976932).

Error: (12/02/2019 08:50:42 PM) (Source: Microsoft-Windows-Service Pack Installer) (EventID: 8) (User: NT AUTHORITY)
Description: Instalace aktualizace Service Pack skončila s kódem chyby 0x800f0a13.

CodeIntegrity:
===================================

Date: 2019-12-02 13:57:52.267
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-12-02 13:57:52.220
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\ComboFix\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-12-02 13:55:53.317
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Users\Tobik\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

Date: 2019-12-02 13:55:53.286
Description:
Windows is unable to verify the image integrity of the file \Device\HarddiskVolume1\Users\Tobik\AppData\Local\Temp\catchme.sys because file hash could not be found on the system. A recent hardware or software change might have installed a file that is signed incorrectly or damaged, or that might be malicious software from an unknown source.

==================== Memory info ===========================

BIOS: Phoenix Technologies LTD V1.32 05/15/2009
Motherboard: Acer Homa
Processor: Pentium(R) Dual-Core CPU T4300 @ 2.10GHz
Percentage of memory in use: 92%
Total physical RAM: 4024.87 MB
Available physical RAM: 318.75 MB
Total Virtual: 8047.88 MB
Available Virtual: 4132 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:232.88 GB) (Free:186.49 GB) NTFS ==>[drive with boot components (obtained from BCD)]

==================== MBR & Partition Table ====================

==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 232.9 GB) (Disk ID: F18AF18A)
Partition 1: (Active) - (Size=232.9 GB) - (Type=07 NTFS)

==================== End of Addition.txt =======================

#2 Příspěvek od **Diallix** » 04 pro 2019 12:02

Dobry den.

Stiahnite si na plochu nastroj AdwCleaner, link. na stiahnutie tu: https://toolslib.net/downloads/finish/1/
Pred spustenim nastroja povypinajte vsetke beziace okna programov, to su vsetke beziace programy pod desktopom.
Kliknite pravym tlacidlom mysi na program -> spustit ako Administrator.
Pokracujte kliknutim na tlacidlo Prehladaj teraz (Scan now) a pockajte, kym sa system doskenuje.
Po skene nechajte oznacene vsetky chlieviky, pripadne najdene hrozieby a pokracujte v dolnom pravom rohu tlacidlom Vycistit Teraz (Clean and Repair).
Po restartovani PC sa spusti nastroj AdwCleaner, kliknite na Zobrazit soubor protokolu.
Spusti sa log, jeho obsah skopirujte sem.

sobtik · #3 Příspěvek od **sobtik** » 04 pro 2019 12:51

# -------------------------------
# Malwarebytes AdwCleaner 8.0.0.0
# -------------------------------
# Build: 11-21-2019
# Database: 2019-11-26.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 12-04-2019
# Duration: 00:00:30
# OS: Windows 7 Ultimate
# Scanned: 35225
# Detected: 0

***** [ Services ] *****

No malicious services found.

***** [ Folders ] *****

No malicious folders found.

***** [ Files ] *****

No malicious files found.

***** [ DLL ] *****

No malicious DLLs found.

***** [ WMI ] *****

No malicious WMI found.

***** [ Shortcuts ] *****

No malicious shortcuts found.

***** [ Tasks ] *****

No malicious tasks found.

***** [ Registry ] *****

No malicious registry entries found.

***** [ Chromium (and derivatives) ] *****

No malicious Chromium entries found.

***** [ Chromium URLs ] *****

No malicious Chromium URLs found.

#4 Příspěvek od **Diallix** » 06 pro 2019 14:17

Do poznamkoveho bloku skopirujte obsah dole:

Kód: Vybrat vše

Start
CloseProcesses:
CreateRestorePoint:

HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-1166480115-2326838651-3686901258-1001\Sortware\Policies\...\system: [disablecmd] 0
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
Task: {A9D07A8C-C703-4AF7-9290-CB7F8EFE5AE6} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1166480115-2326838651-3686901258-1001UA => C:\Users\Tobik\AppData\Local\Google\Update\GoogleUpdate.exe [154920 2019-06-07] (Google Inc -> Google LLC)
Task: {C32AD174-69D9-4FDC-B6AB-4413CBC6BA3E} - System32\Tasks\GoogleUpdateTaskUserS-1-5-21-1166480115-2326838651-3686901258-1001Core => C:\Users\Tobik\AppData\Local\Google\Update\GoogleUpdate.exe [154920 2019-06-07] (Google Inc -> Google LLC)
FF user.js: detected! => C:\Users\Tobik\AppData\Roaming\Mozilla\Firefox\Profiles\2cnqikce.default-1571720446916\user.js [2019-12-02]
S3 catchme; \??\C:\ComboFix\catchme.sys [X]
S3 cpuz143; \??\C:\Windows\temp\cpuz143\cpuz143_x64.sys [X]
S3 cpuz145; \??\C:\Windows\temp\cpuz145\cpuz145_x64.sys [X]
2019-12-02 17:48 - 2019-11-27 15:10 - 020520312 _____ (lrepacks.ru ) C:\IObit Driver Booster Pro 7.1.0.533.exe
ShellIconOverlayIdentifiers: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
ContextMenuHandlers3: [00avg] -> {472083B0-C522-11CF-8763-00608CC02F24} => -> No File
HKU\S-1-5-21-1166480115-2326838651-3686901258-1001\Software\Classes\.scr: DWGTrueViewScriptFile => C:\Windows\system32\notepad.exe "%1"

EmptyTemp:
End

Poznamkovy blok ulozte pod nazvom fixlist.txt do umiestnenia kde je FRST.
Spustite FRST a odkliknite tlacidlo: Fix
Vykona sa funkcionalita po ktorej sa pocitac rebootuje. Po reboote sem vlozte obsah logu: fixlog.txt ulozeneho v umiestneni FRST.

sobtik · #5 Příspěvek od **sobtik** » 21 pro 2019 14:14

Dobrý den,

omlouvám se že píšu až ted. Moc děkuji za pomoc ale PC úplně kleklo a musel jsem koupit nové.

#6 Příspěvek od **Diallix** » 23 pro 2019 08:43

Zdravim. Ok, v poriadku.

VIRY.CZ

Preventivní kontrola

Preventivní kontrola

Re: Preventivní kontrola

Re: Preventivní kontrola

Re: Preventivní kontrola

Re: Preventivní kontrola

Re: Preventivní kontrola