Dobrý den. V poslední době mě začala ujíždět z ničeho nic myš ,většinou do pravého horního rohu i když je v klidu. Dělala to myš bluetooth a tak jsem jí vyměnil za myš s kabelem a stále to samé. Ujíždí vždy hodně rychle. Prosím vás o kontrolu logů. Předem vám děkuji za pomoc a radu.P.S. Chtěl jsem dát log z FRST a když jsem ho chtěl spustit, Avast nahlásil ohrožení. Viz příloha. Stáhnul jsem tedy novější FRST a bez problémů.
# -------------------------------
# Malwarebytes AdwCleaner 8.0.5.0
# -------------------------------
# Build: 05-25-2020
# Database: 2020-06-15.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Scan
# -------------------------------
# Start: 06-18-2020
# Duration: 00:00:23
# OS: Windows 7 Home Premium
# Scanned: 31836
# Detected: 0
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
No malicious folders found.
***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
No malicious registry entries found.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries found.
***** [ Chromium URLs ] *****
No malicious Chromium URLs found.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries found.
***** [ Firefox URLs ] *****
No malicious Firefox URLs found.
***** [ Hosts File Entries ] *****
No malicious hosts file entries found.
***** [ Preinstalled Software ] *****
No Preinstalled Software found.
AdwCleaner[S00].txt - [1257 octets] - [29/12/2018 15:05:27]
AdwCleaner[S01].txt - [1318 octets] - [16/01/2019 16:53:18]
AdwCleaner[S02].txt - [1379 octets] - [19/01/2019 13:50:31]
AdwCleaner[S03].txt - [1440 octets] - [21/01/2019 08:22:00]
AdwCleaner[S04].txt - [1501 octets] - [21/01/2019 08:34:22]
AdwCleaner[S05].txt - [2233 octets] - [10/03/2019 00:20:09]
AdwCleaner[C05].txt - [2271 octets] - [10/03/2019 00:23:20]
AdwCleaner[S06].txt - [1684 octets] - [10/03/2019 11:06:51]
AdwCleaner[S07].txt - [1913 octets] - [23/03/2019 08:17:33]
AdwCleaner[C07].txt - [2041 octets] - [23/03/2019 08:18:32]
AdwCleaner[S08].txt - [4031 octets] - [27/03/2019 07:41:24]
AdwCleaner[C08].txt - [3815 octets] - [27/03/2019 07:42:50]
AdwCleaner[S09].txt - [1989 octets] - [10/04/2019 09:01:45]
AdwCleaner[S10].txt - [2050 octets] - [23/04/2019 07:20:54]
AdwCleaner[S11].txt - [2111 octets] - [29/04/2019 11:02:29]
AdwCleaner[S12].txt - [2172 octets] - [04/05/2019 08:39:31]
AdwCleaner[S13].txt - [2233 octets] - [23/05/2019 00:21:04]
AdwCleaner[S14].txt - [2294 octets] - [26/05/2019 23:06:39]
AdwCleaner[S15].txt - [2355 octets] - [28/05/2019 16:42:17]
AdwCleaner[S16].txt - [2416 octets] - [19/06/2019 09:27:19]
AdwCleaner[S17].txt - [2477 octets] - [19/06/2019 09:27:45]
AdwCleaner[S18].txt - [2538 octets] - [24/06/2019 06:12:22]
AdwCleaner[S19].txt - [2599 octets] - [24/06/2019 06:12:46]
AdwCleaner[S20].txt - [2660 octets] - [22/07/2019 13:41:20]
AdwCleaner[S21].txt - [2721 octets] - [22/07/2019 13:41:45]
AdwCleaner[S22].txt - [2859 octets] - [31/07/2019 20:51:38]
AdwCleaner[C22].txt - [3055 octets] - [31/07/2019 20:52:26]
AdwCleaner[S23].txt - [2980 octets] - [03/08/2019 09:02:59]
AdwCleaner[S24].txt - [3041 octets] - [03/08/2019 09:05:43]
AdwCleaner[S25].txt - [3102 octets] - [07/08/2019 11:10:31]
AdwCleaner[S26].txt - [3163 octets] - [17/08/2019 09:02:29]
AdwCleaner_Debug.log - [19424 octets] - [21/09/2019 08:13:01]
AdwCleaner[S27].txt - [3286 octets] - [21/09/2019 08:13:26]
AdwCleaner[S28].txt - [3347 octets] - [02/10/2019 10:40:00]
AdwCleaner[S29].txt - [3408 octets] - [19/10/2019 16:29:55]
AdwCleaner[S30].txt - [3470 octets] - [17/11/2019 10:14:55]
AdwCleaner[S31].txt - [3531 octets] - [18/11/2019 01:59:50]
AdwCleaner[S32].txt - [3592 octets] - [14/12/2019 08:36:32]
AdwCleaner[S33].txt - [3653 octets] - [17/12/2019 09:13:44]
AdwCleaner[S34].txt - [3723 octets] - [23/12/2019 08:49:28]
AdwCleaner[C34].txt - [3891 octets] - [23/12/2019 08:49:45]
AdwCleaner[S35].txt - [5005 octets] - [04/01/2020 13:29:44]
AdwCleaner[C35].txt - [4969 octets] - [04/01/2020 13:33:48]
AdwCleaner[S36].txt - [3958 octets] - [09/01/2020 02:04:05]
AdwCleaner[S37].txt - [4019 octets] - [15/01/2020 17:15:30]
AdwCleaner[S38].txt - [4080 octets] - [18/01/2020 23:13:25]
AdwCleaner[S39].txt - [4141 octets] - [21/01/2020 01:01:31]
AdwCleaner[S40].txt - [5608 octets] - [26/01/2020 03:08:50]
AdwCleaner[C40].txt - [4914 octets] - [26/01/2020 03:11:13]
AdwCleaner[S41].txt - [5103 octets] - [26/01/2020 03:23:09]
AdwCleaner[C41].txt - [5347 octets] - [26/01/2020 03:30:09]
AdwCleaner[S42].txt - [4446 octets] - [26/01/2020 14:19:56]
AdwCleaner[S43].txt - [4507 octets] - [27/01/2020 23:06:48]
AdwCleaner[S44].txt - [4568 octets] - [03/02/2020 20:05:16]
AdwCleaner[S45].txt - [4709 octets] - [03/02/2020 20:06:25]
AdwCleaner[S46].txt - [4770 octets] - [09/02/2020 02:09:03]
AdwCleaner[S47].txt - [4831 octets] - [14/02/2020 22:08:43]
AdwCleaner[S48].txt - [4892 octets] - [14/02/2020 22:34:11]
AdwCleaner[S49].txt - [4953 octets] - [17/02/2020 09:11:34]
AdwCleaner[S50].txt - [5014 octets] - [19/02/2020 01:12:28]
AdwCleaner[S51].txt - [5075 octets] - [19/02/2020 01:13:02]
AdwCleaner[S52].txt - [5206 octets] - [27/02/2020 22:16:55]
AdwCleaner[C52].txt - [5376 octets] - [27/02/2020 22:19:09]
AdwCleaner[S53].txt - [5334 octets] - [04/03/2020 01:43:31]
AdwCleaner[C53].txt - [5504 octets] - [04/03/2020 01:44:13]
AdwCleaner[S54].txt - [5380 octets] - [09/03/2020 02:12:15]
AdwCleaner[S55].txt - [5646 octets] - [20/03/2020 00:21:29]
AdwCleaner[C55].txt - [5760 octets] - [20/03/2020 00:24:11]
AdwCleaner[S56].txt - [5563 octets] - [05/04/2020 02:22:05]
AdwCleaner[S57].txt - [5624 octets] - [09/04/2020 01:15:45]
AdwCleaner[S58].txt - [5685 octets] - [12/04/2020 22:53:34]
AdwCleaner[S59].txt - [5746 octets] - [22/04/2020 02:28:41]
AdwCleaner[S60].txt - [5807 octets] - [22/04/2020 02:29:14]
AdwCleaner[S61].txt - [5868 octets] - [27/04/2020 21:07:51]
AdwCleaner[S62].txt - [5929 octets] - [02/05/2020 02:59:01]
AdwCleaner[S63].txt - [5990 octets] - [14/05/2020 22:51:57]
AdwCleaner[S64].txt - [6051 octets] - [14/05/2020 22:54:26]
AdwCleaner[S65].txt - [6188 octets] - [21/05/2020 22:35:54]
AdwCleaner[S66].txt - [6249 octets] - [21/05/2020 22:40:07]
AdwCleaner[C66].txt - [6419 octets] - [21/05/2020 22:40:21]
AdwCleaner[S67].txt - [6295 octets] - [25/05/2020 01:58:48]
AdwCleaner[S68].txt - [6356 octets] - [18/06/2020 23:34:08]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[S69].txt ##########
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 06-06-2020
Ran by Oťáček (18-06-2020 23:28:17)
Running from C:\Users\Oťáček\Desktop\UTILITY\FRST-OlderVersion
Windows 7 Home Premium Service Pack 1 (X64) (2017-04-10 12:12:37)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-51665161-4008308083-3026018605-500 - Administrator - Disabled)
Guest (S-1-5-21-51665161-4008308083-3026018605-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-51665161-4008308083-3026018605-1002 - Limited - Enabled)
Oťáček (S-1-5-21-51665161-4008308083-3026018605-1000 - Administrator - Enabled) => C:\Users\Oťáček
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Avast Antivirus (Enabled - Up to date) {EB19B86E-3998-C706-90EF-92B41EB091AF}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {5078598A-1FA2-C888-AA5F-A9C66537DB12}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKLM-x32\...\uTorrent) (Version: 3.1.3.26837 - emc, uTorrent.CZ)
Abrosoft FantaMorph 5.3.5 (HKLM-x32\...\Abrosoft FantaMorph 5_is1) (Version: 5.3.5 - Abrosoft)
Adobe Flash Player 32 ActiveX (HKLM-x32\...\Adobe Flash Player ActiveX) (Version: 32.0.0.387 - Adobe)
Adobe Flash Player 32 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 32.0.0.387 - Adobe)
Adobe Flash Player 32 PPAPI (HKLM-x32\...\Adobe Flash Player PPAPI) (Version: 32.0.0.387 - Adobe)
Adobe Photoshop CS6 (HKLM-x32\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.3 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.3.5.205 - Adobe, Inc.)
AirDroid 3.5.4.0 (HKLM-x32\...\AirDroid) (Version: 3.5.4.0 - Sand Studio)
AMD Catalyst Install Manager (HKLM\...\{37FCE154-7F59-74F0-3A35-BF503CEB230B}) (Version: 8.0.877.0 - Advanced Micro Devices, Inc.)
AMD Catalyst Install Manager (HKLM\...\{FAF03106-1653-15E1-3C0C-E7AE4FAE6EBF}) (Version: 8.0.877.0 - Advanced Micro Devices, Inc.)
AMP Font Viewer (HKLM-x32\...\AMP Font Viewer) (Version: - )
Ashampoo Burning Studio 20 (HKLM-x32\...\{91B33C97-155F-C10C-D4D6-CABA03805EE4}_is1) (Version: 20.0.2 - Ashampoo GmbH & Co. KG)
Asmedia ASM104x USB 3.0 Host Controller Driver (HKLM-x32\...\{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}) (Version: 1.16.2.0 - Asmedia Technology)
Audacity 2.4.1 (HKLM-x32\...\Audacity_is1) (Version: 2.4.1 - Audacity Team)
Avast Free Antivirus (HKLM-x32\...\Avast Antivirus) (Version: 20.3.2405 - Avast Software)
AVS Video Editor 7.4.1 (HKLM-x32\...\AVS Video Editor_is1) (Version: 7.4.1.281 - Online Media Technologies Ltd.)
BusinessCards MX (HKLM-x32\...\{0D5B5ED2-3E38-4585-B1F3-64B2A9EA95D6}_is1) (Version: 5.0 - MOJOSOFT)
CCleaner (HKLM\...\CCleaner) (Version: 5.67 - Piriform)
CD Recovery Toolbox Free 2.2 (HKLM-x32\...\CD Recovery Toolbox Free_is1) (Version: - File Master LLC)
Cisco EAP-FAST Module (HKLM-x32\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.)
Cisco LEAP Module (HKLM-x32\...\{AF312B06-5C5C-468E-89B3-BE6DE2645722}) (Version: 1.0.19 - Cisco Systems, Inc.)
Cisco PEAP Module (HKLM-x32\...\{0A4EF0E6-A912-4CDE-A7F3-6E56E7C13A2F}) (Version: 1.1.6 - Cisco Systems, Inc.)
Doplněk Microsoft Save as PDF or XPS pro aplikace sady Microsoft Office 2007 (HKLM-x32\...\{90120000-00B2-0405-0000-0000000FF1CE}) (Version: 12.0.4518.1025 - Microsoft Corporation)
dwdinst (HKLM-x32\...\{7B05BE2F-B871-45D1-81DC-82E4634BF209}) (Version: 1.0.0.0 - HanWIS GmbH)
eM Client (HKLM-x32\...\{2A4CAF55-4B18-4B61-BE9E-94A54209F547}) (Version: 7.0.27943.0 - eM Client Inc.)
Folder Size (64-bit) (HKLM\...\{F24FF688-7138-4CCF-A83F-71E9FB01170E}) (Version: 2.6 - Brio)
FontExpert 2015 Font Manager (HKLM-x32\...\FontExpert 2015) (Version: 13.0.0.1 - Proxima Software)
FormApps Signing Extension (HKLM-x32\...\{2246B06F-AED2-42BA-A6D7-B72F591C1116}) (Version: 2.19.1.39 - Software602 a.s.)
FormatFactory 4.4.0.0 (HKLM-x32\...\FormatFactory) (Version: 4.4.0.0 - Free Time)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 83.0.4103.106 - Google LLC)
Google Update Helper (HKLM-x32\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.35.451 - Google LLC) Hidden
GreenCloud Printer 7.8.4.0 (HKLM\...\{F36B43F0-3BE6-48BA-A22D-3C098092BB3F}_is1) (Version: 7.8.4.0 - ObviousIdea)
GreenScreenWizard 6.9 (HKLM-x32\...\Green Screen Wizard Pro 6.9_is1) (Version: - GreenScreen Wizard LLC)
HD Tune Pro 5.70 (HKLM-x32\...\HD Tune Pro_is1) (Version: - EFD Software)
HydraVision (HKLM-x32\...\{DA54D3F7-4915-1A37-7EA8-2741F05B77AC}) (Version: 4.2.234.0 - Advanced Micro Devices, Inc.) Hidden
iData RAW Partition Recovery version 1.0.0.8 (HKLM-x32\...\{8F3CD5EF-6D71-43CC-B1B9-F65C16692284}}_is1) (Version: 1.0.0.8 - iData Recovery)
Infix PDF Editor verze 5.2.7.0 (HKLM-x32\...\D42C36B3-E36B-43EC-A8B4-B613D7B92782_is1) (Version: 5.2.7.0 - Iceni Technology)
Inkscape 0.92.3 (HKLM-x32\...\Inkscape) (Version: 0.92.3 - Inkscape Project)
Intel® Chipset Device Software (HKLM-x32\...\{49bc1e38-39b4-4728-9e75-cbe67ba9a329}) (Version: 10.1.1.42 - Intel(R) Corporation) Hidden
IrfanView 4.54 (64-bit) (HKLM\...\IrfanView64) (Version: 4.54 - Irfan Skiljan)
Java 8 Update 251 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180251F0}) (Version: 8.0.2510.8 - Oracle Corporation)
Knoll Light Factory EZ Studio 15 (HKLM-x32\...\Knoll Light Factory EZ Studio 15) (Version: - )
LAME v3.99.3 (for Windows) (HKLM-x32\...\LAME_is1) (Version: - )
Malwarebytes version 4.1.0.56 (HKLM\...\{35065F43-4BB2-439A-BFF7-0F1014F2E0CD}_is1) (Version: 4.1.0.56 - Malwarebytes)
Microsoft .NET Framework 4.8 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft .NET Framework 4.8 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.8.03761 - Microsoft Corporation)
Microsoft LifeCam (HKLM\...\{6965A8D2-465D-4F98-9FAA-0E9E2348F329}) (Version: 3.22.270.0 - Microsoft Corporation)
Microsoft Office Enterprise 2007 (HKLM-x32\...\{90120000-0030-0000-0000-0000000FF1CE}) (Version: - )
Microsoft Office Professional Plus 2016 - cs-cz (HKLM\...\ProplusRetail - cs-cz) (Version: 16.0.12527.20720 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Support and Recovery Assistant (HKU\S-1-5-21-51665161-4008308083-3026018605-1000\...\f9a89bd2a46a7606) (Version: 17.0.4478.3 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{6E8E85E8-CE4B-4FF5-91F7-04999C9FAE6A}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (x64) (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 (HKLM\...\{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729 (HKLM-x32\...\{CA8A885F-E95B-3FC6-BB91-F4D9377C7686}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.30501 (HKLM-x32\...\{050d4fc8-5d48-4b8f-8972-47c82c46020f}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM-x32\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Microsoft Visual C++ 2015-2019 Redistributable (x64) - 14.24.28127 (HKLM-x32\...\{282975d8-55fe-4991-bbbb-06a72581ce58}) (Version: 14.24.28127.4 - Microsoft Corporation)
Microsoft Visual C++ Run Time Lib Setup (HKLM-x32\...\{AAF4238F-7C29-451D-9925-C753271A5728}) (Version: - )
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
MozBackup 1.5.1 (HKLM-x32\...\MozBackup) (Version: - Pavel Cvrcek)
Mozilla Firefox 77.0.1 (x64 cs) (HKLM\...\Mozilla Firefox 77.0.1 (x64 cs)) (Version: 77.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 68.5.0 - Mozilla)
Mozilla Thunderbird 68.9.0 (x64 cs) (HKLM\...\Mozilla Thunderbird 68.9.0 (x64 cs)) (Version: 68.9.0 - Mozilla)
MPC-HC 1.7.13 (64-bit) (HKLM\...\{2ACBF1FA-F5C3-4B19-A774-B22A31F231B9}_is1) (Version: 1.7.13 - MPC-HC Team)
MSXML 4.0 SP2 (KB954430) (HKLM-x32\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM-x32\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
netis Wireless LAN Driver and Utility (HKLM-x32\...\{9C049509-055C-4CFF-A116-1D12312225EB}) (Version: 1.01.0243 - REALTEK Semiconductor Corp.)
Office 16 Click-to-Run Extensibility Component (HKLM\...\{90160000-008C-0000-1000-0000000FF1CE}) (Version: 16.0.12527.20720 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (HKLM\...\{90160000-007E-0000-1000-0000000FF1CE}) (Version: 16.0.12527.20720 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (HKLM\...\{90160000-008C-0405-1000-0000000FF1CE}) (Version: 16.0.12527.20720 - Microsoft Corporation) Hidden
Opera Stable 68.0.3618.165 (HKU\S-1-5-21-51665161-4008308083-3026018605-1000\...\Opera 68.0.3618.165) (Version: 68.0.3618.165 - Opera Software)
PDF Settings CS6 (HKLM-x32\...\{BFEAAE77-BD7F-4534-B286-9C5CB4697EB1}) (Version: 11.0 - Adobe Systems Incorporated) Hidden
PhotoFiltre Studio X (HKU\S-1-5-21-51665161-4008308083-3026018605-1000\...\PhotoFiltre Studio X) (Version: - )
POPFile Data (Oťáček) (HKU\S-1-5-21-51665161-4008308083-3026018605-1000\...\POPFile_Data) (Version: - )
PowerISO (HKLM-x32\...\PowerISO) (Version: 7.6 - Power Software Ltd)
Process Liquidator (HKLM-x32\...\{7F3BF5FA-6BD7-4E26-8FEA-C87DD9F7F723}_is1) (Version: 2.1.0.0 - 12Bytes)
Rajče průvodce verze 1.59.54.269 (HKLM-x32\...\rajce.net_is1) (Version: - rajce.net)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.8581 - Realtek Semiconductor Corp.)
Revo Uninstaller Pro 3.0.5 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 3.0.5 - VS Revo Group, Ltd.)
Samsung USB Driver for Mobile Phones (HKLM\...\{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}) (Version: 1.5.63.0 - Samsung Electronics Co., Ltd.)
ScanToPDF 3.1.4 (HKLM-x32\...\ScanToPDF) (Version: 3.1.4 - O Imaging Corporation)
Skype verze 8.56 (HKLM-x32\...\Skype_is1) (Version: 8.56 - Skype Technologies S.A.)
Smart View (HKLM-x32\...\{1800D8A5-F7B2-4C20-868E-1CF55CBBDF21}) (Version: 1.0.0.0 - Samsung )
Snagit 11 (HKLM-x32\...\{1FB78CB6-F4EA-474F-8B0B-100EFACF3558}) (Version: 11.4.0 - TechSmith Corporation)
Subtitle Workshop 2.51 (HKLM-x32\...\SubtitleWorkshop) (Version: - )
swMSM (HKLM-x32\...\{612C34C7-5E90-47D8-9B5C-0F717DD82726}) (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
TinEye Internet Explorer plugin 1.0 (HKLM-x32\...\{9B8ACEA2-BA21-4A91-A950-144FED3ED133}) (Version: 1.0.0 - Idée Inc.)
Tisk Obalek 3.2.1.2 (HKLM-x32\...\Tisk Obalek_is1) (Version: 3.2.1.2 - Mgr. Radovan Kraus)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 9.0a - Ghisler Software GmbH)
VdhCoApp 1.2.4 (HKLM\...\weh-iss-net.downloadhelper.coapp_is1) (Version: - DownloadHelper)
Verbatim GREEN BUTTON 1.68 (HKLM-x32\...\Verbatim GREEN BUTTON_is1) (Version: - Verbatim)
Verbatim Hard Drive Formatter 1.41 (HKLM-x32\...\Verbatim Hard Drive Formatter_is1) (Version: - Verbatim)
Verbatim Product Update 1.06 (HKLM-x32\...\Verbatim Product Update_is1) (Version: - Verbatim)
Viber (HKLM-x32\...\{EAF077BA-8EA4-4CEC-A215-4ACAE713A8BF}) (Version: 6.9.0.1048 - Viber Media Inc.) Hidden
Viber (HKU\S-1-5-21-51665161-4008308083-3026018605-1000\...\{a85cbe05-cc32-4419-ad8f-7ff7bc41bc05}) (Version: 6.9.0.1048 - Viber Media Inc.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.10 - VideoLAN)
VSFilter 2.41.322 (0c3a1ea) Nightly (64-bit) (HKLM\...\vsfilter64_is1) (Version: 2.41.322 - MPC-HC Team)
VSO ConvertXToDVD 6 (HKLM-x32\...\{8FC36FA6-C508-44FB-B137-1CB46D8258B2}_is1) (Version: 6.0.0.80 - VSO Software)
Windows Installer Clean Up (HKLM-x32\...\{121634B0-2F4B-11D3-ADA3-00C04F52DD52}) (Version: 3.00.00.0000 - Microsoft Corporation)
WinRAR 5.70 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.70.0 - win.rar GmbH)
Wise Duplicate Finder 1.2.9 (HKLM-x32\...\Wise Duplicate Finder_is1) (Version: 1.2.9 - WiseCleaner.com, Inc.)
Wise Folder Hider 3.38 (HKLM-x32\...\Wise Folder Hider_is1) (Version: 3.38 - WiseCleaner.com, Inc.)
Zoner Photo Studio 17 (HKLM\...\ZonerPhotoStudio17_CZ_is1) (Version: 17.0.1.1 - ZONER software)
==================== Custom CLSID (Whitelisted): ==============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-51665161-4008308083-3026018605-1000_Classes\CLSID\{BCAFD618-3FAE-4EFE-BF4E-4C43A7E1320B}\InprocServer32 -> C:\Program Files\Zoner\Photo Studio 17\Program64\SHELLEXT.DLL (ZONER software, a.s. -> ZONER software)
ShellIconOverlayIdentifiers: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => E:\Avast 2019\ashShell.dll [2020-05-19] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => E:\Avast 2019\ashShell.dll [2020-05-19] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers1: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2020-02-09] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers1: [SnagItMainShellExt] -> {CF74B903-3389-469c-B3B6-0204D204FCBD} => C:\Program Files (x86)\TechSmith\Snagit 11\DLLx64\SnagitShellExt64.dll [2014-03-03] (TechSmith Corporation -> TechSmith Corporation)
ContextMenuHandlers1: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1: [WondershareVideoConverterFileOpreation] -> {FEB746CA-95C2-485F-B386-C30D4E56D22E} => C:\Windows\SysWOW64\WSCM64.dll [2015-02-27] () [File not signed]
ContextMenuHandlers3: [00asw] -> {472083B0-C522-11CF-8763-00608CC02F24} => E:\Avast 2019\ashShell.dll [2020-05-19] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers3: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-02-13] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers4: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2020-02-09] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers4: [SnagItMainShellExt] -> {CF74B903-3389-469c-B3B6-0204D204FCBD} => C:\Program Files (x86)\TechSmith\Snagit 11\DLLx64\SnagitShellExt64.dll [2014-03-03] (TechSmith Corporation -> TechSmith Corporation)
ContextMenuHandlers5: [ACE] -> {5E2121EE-0300-11D4-8D3B-444553540000} => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiacm64.dll [2013-04-29] (Advanced Micro Devices, Inc.) [File not signed]
ContextMenuHandlers6: [avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => E:\Avast 2019\ashShell.dll [2020-05-19] (Avast Software s.r.o. -> AVAST Software)
ContextMenuHandlers6: [MBAMShlExt] -> {57CE581A-0CB6-4266-9CA0-19364C90A0B3} => C:\Program Files\Malwarebytes\Anti-Malware\mbshlext.dll [2020-02-13] (Malwarebytes Corporation -> Malwarebytes)
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers6: [PowerISO] -> {967B2D40-8B7D-4127-9049-61EA0C2C6DCE} => C:\Program Files\PowerISO\PWRISOSH.DLL [2020-02-09] (Power Software Limited -> Power Software Ltd)
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2012-12-29] (VS Revo Group -> VS Revo Group)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-64E4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers6-x32: [WinRAR32] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext32.dll [2019-02-24] (win.rar GmbH -> Alexander Roshal)
ContextMenuHandlers1_S-1-5-21-51665161-4008308083-3026018605-1000: [ZONERMenu] -> {BCAFD618-3FAE-4EFE-BF4E-4C43A7E1320B} => C:\Program Files\Zoner\Photo Studio 17\Program64\SHELLEXT.DLL [2014-09-12] (ZONER software, a.s. -> ZONER software)
ContextMenuHandlers2_S-1-5-21-51665161-4008308083-3026018605-1000: [ZONERMenu] -> {BCAFD618-3FAE-4EFE-BF4E-4C43A7E1320B} => C:\Program Files\Zoner\Photo Studio 17\Program64\SHELLEXT.DLL [2014-09-12] (ZONER software, a.s. -> ZONER software)
ContextMenuHandlers4_S-1-5-21-51665161-4008308083-3026018605-1000: [ZONERMenu] -> {BCAFD618-3FAE-4EFE-BF4E-4C43A7E1320B} => C:\Program Files\Zoner\Photo Studio 17\Program64\SHELLEXT.DLL [2014-09-12] (ZONER software, a.s. -> ZONER software)
==================== Codecs (Whitelisted) ====================
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
Shortcut: C:\Users\Oťáček\Desktop\MailCliеnt.exe – zástupce.lnk -> C:\Program Files (x86)\eM Client\MailCliеnt.exe (eM Client s.r.o.) <==== Cyrillic
ShortcutWithArgument: C:\Users\Oťáček\Desktop\Aliexpress česky.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=jeggofhlgndddenkjfloklflmjjjfdbe
ShortcutWithArgument: C:\Users\Oťáček\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\Aliexpress česky.lnk -> C:\Program Files (x86)\Google\Chrome\Application\chrome_proxy.exe (Google LLC) -> --profile-directory=Default --app-id=jeggofhlgndddenkjfloklflmjjjfdbe
ShortcutWithArgument: C:\Users\Oťáček\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\ImplicitAppShortcuts\317a04e56c79342d\Google Chrome.lnk -> F:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default
==================== Loaded Modules (Whitelisted) =============
2019-03-19 10:29 - 2012-08-08 22:56 - 000863232 ____N ( Realtek Semiconductor Corp.) [File not signed] C:\Program Files (x86)\netis\USB Wireless LAN Utility\P2PLib.dll
2019-03-19 10:29 - 2013-02-27 18:17 - 000221184 ____N () [File not signed] C:\Program Files (x86)\netis\USB Wireless LAN Utility\EnumDevLib.dll
2014-03-03 15:36 - 2014-03-03 15:36 - 001298432 ____N () [File not signed] C:\Program Files (x86)\TechSmith\Snagit 11\PDFLib.dll
2014-03-03 15:40 - 2014-03-03 15:40 - 000110592 ____N () [File not signed] C:\Program Files (x86)\TechSmith\Snagit 11\SDKRecorder.dll
2014-03-03 15:41 - 2014-03-03 15:41 - 000128512 ____N () [File not signed] C:\Program Files (x86)\TechSmith\Snagit 11\VideoRecording.dll
2017-04-13 09:25 - 2012-03-06 16:05 - 000054784 _____ () [File not signed] C:\Windows\System32\gcprpm.dll
2017-04-13 09:25 - 2012-03-06 16:05 - 000019456 _____ () [File not signed] C:\Windows\system32\spool\DRIVERS\x64\3\gcprui.dll
2018-02-15 18:35 - 2015-02-27 15:38 - 000721263 _____ () [File not signed] C:\Windows\SysWOW64\WSCM64.dll
2013-04-29 23:02 - 2013-04-29 23:02 - 000005120 ____N (Advanced Micro Devices, Inc.) [File not signed] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\atiamcsy.dll
2014-03-03 15:32 - 2014-03-03 15:32 - 000480256 ____N (hxxp://hunspell.sourceforge.net/) [File not signed] C:\Program Files (x86)\TechSmith\Snagit 11\libhunspell.dll
2014-03-03 15:32 - 2014-03-03 15:32 - 000066192 ____N (LEAD Technologies, Inc -> LEAD Technologies, Inc.) [File not signed] C:\Program Files (x86)\TechSmith\Snagit 11\LFJbg15U.DLL
2014-03-03 15:32 - 2014-03-03 15:32 - 000126096 ____N (LEAD Technologies, Inc -> LEAD Technologies, Inc.) [File not signed] C:\Program Files (x86)\TechSmith\Snagit 11\LFPng15U.DLL
2014-03-03 15:32 - 2014-03-03 15:32 - 000212112 ____N (LEAD Technologies, Inc -> LEAD Technologies, Inc.) [File not signed] C:\Program Files (x86)\TechSmith\Snagit 11\Ltimgclr15u.dll
2014-03-03 15:32 - 2014-03-03 15:32 - 000208016 ____N (LEAD Technologies, Inc -> LEAD Technologies, Inc.) [File not signed] C:\Program Files (x86)\TechSmith\Snagit 11\Ltimgefx15u.dll
2014-03-03 15:32 - 2014-03-03 15:32 - 000134288 ____N (LEAD Technologies, Inc -> LEAD Technologies, Inc.) [File not signed] C:\Program Files (x86)\TechSmith\Snagit 11\Ltimgutl15u.dll
2014-03-03 15:32 - 2014-03-03 15:32 - 000122000 ____N (LEAD Technologies, Inc -> LEAD Technologies, Inc.) [File not signed] C:\Program Files (x86)\TechSmith\Snagit 11\Lttwn15u.dll
2020-04-14 16:24 - 2020-04-14 16:24 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\AppVIsvSubsystems64.dll
2020-04-14 16:24 - 2020-04-14 16:24 - 000000000 ____L (Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\c2r64.dll
2019-03-19 10:29 - 2013-12-23 12:26 - 000528384 ____N (Realtek Semiconductor Corp.) [File not signed] C:\Program Files (x86)\netis\USB Wireless LAN Utility\RtlLib.dll
2019-03-19 10:29 - 2012-09-13 10:25 - 000200704 ____N (Realtek) [File not signed] C:\Program Files (x86)\netis\USB Wireless LAN Utility\IpLib.dll
2019-03-19 10:29 - 2012-05-07 15:23 - 000040960 ____N (Realtek) [File not signed] C:\Program Files (x86)\netis\USB Wireless LAN Utility\RtlICS.dll
2019-03-19 10:29 - 2014-02-27 21:12 - 000272384 ____N (Realtek) [File not signed] C:\Program Files (x86)\netis\USB Wireless LAN Utility\RtlIhvOid.dll
2019-03-19 10:29 - 2012-06-22 17:01 - 000044544 ____N (Realtek) [File not signed] C:\Program Files (x86)\netis\USB Wireless LAN Utility\RtlQRCode.dll
2014-03-03 15:59 - 2014-04-25 18:42 - 008360816 ____N (TechSmith Corporation) [File not signed] C:\Program Files (x86)\TechSmith\Snagit 11\SnagItEditorRes.dll
2014-03-03 15:59 - 2014-04-25 18:42 - 007454064 ____N (TechSmith Corporation) [File not signed] C:\Program Files (x86)\TechSmith\Snagit 11\SnagItres.dll
2014-03-03 15:31 - 2014-03-03 15:31 - 000165888 ____N (TechSmith Corporation) [File not signed] C:\Program Files (x86)\TechSmith\Snagit 11\TSCREC3.dll
2014-03-03 15:32 - 2014-03-03 15:32 - 000076288 ____N (TechSmith Corporation) [File not signed] C:\Program Files (x86)\TechSmith\Snagit 11\UpdaterInterop.dll
2019-03-19 10:29 - 2009-07-23 18:32 - 001122304 ____N (The OpenSSL Project, hxxp://www.openssl.org/) [File not signed] C:\Program Files (x86)\netis\USB Wireless LAN Utility\LIBEAY32.dll
2020-05-18 20:34 - 2015-05-24 03:44 - 000124456 _____ (ООО ”ИДЕАЛЬНЫЙ СОФТ” - Ideal Soft LLC -> Idol Software) [File not signed] C:\Program Files\MPC-HC\CrashReporter\crashrpt.dll
==================== Alternate Data Streams (Whitelisted) ========
==================== Safe Mode (Whitelisted) ==================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) =================
==================== Internet Explorer trusted/restricted ==========
==================== Hosts content: =========================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2020-02-23 11:25 - 2020-03-17 23:32 - 000001180 _____ C:\Windows\system32\drivers\etc\hosts
127.0.0.1 https://www.bestgamesvault.com
0.0.0.0 www.bandicam.co.kr
0.0.0.0 www.bandicam.com
0.0.0.0 bandicam.com
0.0.0.0 www.bandicam.co.kr
0.0.0.0 www.bandicam.com
0.0.0.0 bandicam.com
0.0.0.0 www.bandicam.co.kr
0.0.0.0 www.bandicam.com
0.0.0.0 bandicam.com
0.0.0.0 www.bandicam.co.kr
0.0.0.0 www.bandicam.com
0.0.0.0 bandicam.com
==================== Other Areas ===========================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\Program Files (x86)\AMD APP\bin\x86_64;C:\Program Files (x86)\Common Files\Oracle\Java\javapath;C:\ProgramData\Oracle\Java\javapath;C:\Program Files (x86)\AMD APP\bin\x86_64;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static
HKU\S-1-5-21-51665161-4008308083-3026018605-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Oťáček\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 213.46.172.36 - 213.46.172.37
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 0) (ConsentPromptBehaviorUser: 3) (EnableLUA: 0)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
(If an entry is included in the fixlist, it will be removed.)
MSCONFIG\Services: gupdate => 2
MSCONFIG\Services: gupdatem => 3
MSCONFIG\Services: TeamViewer => 2
MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
MSCONFIG\startupreg: AdobeCS6ServiceManager => "C:\Program Files (x86)\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
MSCONFIG\startupreg: AirDroid 3 => C:\Program Files (x86)\AirDroid\AirDroid.exe /start
MSCONFIG\startupreg: AMD AVT => Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files (x86)\AMD AVT\bin\kdbsync.exe" aml
MSCONFIG\startupreg: BCSSync => "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: CCleaner Smart Cleaning => "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
MSCONFIG\startupreg: DelaypluginInstall => C:\ProgramData\Wondershare\Video Converter Ultimate\DelayPluginI.exe
MSCONFIG\startupreg: eM Client => "C:\Program Files (x86)\eM Client\MailClient.exe" /startup
MSCONFIG\startupreg: FontExpertType1Loader => C:\Program Files (x86)\FontExpert\Type1Loader.exe
MSCONFIG\startupreg: HDDtoGOLaunch => C:\Users\Oťáček\AppData\Roaming\CoSoSys\HDDtoGO\HDDtoGOLaunch.exe
MSCONFIG\startupreg: KiesTrayAgent => C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
MSCONFIG\startupreg: LifeCam => "C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe"
MSCONFIG\startupreg: PWRISOVM.EXE => C:\Program Files\PowerISO\PWRISOVM.EXE -startup
MSCONFIG\startupreg: RTHDVCPL => "C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
MSCONFIG\startupreg: Samsung PanelMgr => C:\Windows\Samsung\PanelMgr\SSMMgr.exe /autorun
MSCONFIG\startupreg: Skype for Desktop => C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe
MSCONFIG\startupreg: StartCCC => "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
MSCONFIG\startupreg: SwitchBoard => C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
MSCONFIG\startupreg: Viber => "C:\Users\Oťáček\AppData\Local\Viber\Viber.exe" StartMinimized
MSCONFIG\startupreg: Wondershare Helper Compact.exe => C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe
==================== FirewallRules (Whitelisted) ================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [{9A6F0209-D19B-4299-8666-EC5C8470DD4C}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe (Microsoft Corporation) [File not signed]
FirewallRules: [{E28311D5-3189-49D3-9CB8-AB39EA708E59}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeCam.exe (Microsoft Corporation) [File not signed]
FirewallRules: [{A96AAC25-E7AA-47B7-A4BC-42E422A721D3}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe (Microsoft Corporation) [File not signed]
FirewallRules: [{CF53A994-8A54-4307-A7F3-C86AE88491CF}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeEnC2.exe (Microsoft Corporation) [File not signed]
FirewallRules: [{3B954530-6AF4-4DB6-9AF1-B0190470DB36}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{FC62EE05-B3BC-4CD1-BAF9-A96390137FB9}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeExp.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{20C3F74D-FF94-4107-89B4-9E667176F7CB}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{BF9F4863-97C3-4C4A-91D9-06F31142589E}] => (Allow) C:\Program Files (x86)\Microsoft LifeCam\LifeTray.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{3B652D7E-1ED7-40B1-8222-F834CF8A4085}] => (Allow) C:\Program Files\Zoner\Photo Studio 17\Program32\MediaServer.exe (ZONER software, a.s. -> ZONER software)
FirewallRules: [{8C0DE59C-565B-494E-A3CE-6DC015372205}] => (Allow) C:\Users\Oťáček\AppData\Local\Apowersoft\Online Phone Manager\Online Phone Manager.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{15EB7E9D-877E-4E4A-A7A4-555F8F8E7EED}] => (Allow) C:\Users\Oťáček\AppData\Local\Apowersoft\Online Phone Manager\Online Phone Manager.exe (Apowersoft Ltd -> Apowersoft)
FirewallRules: [{49109BE4-33B3-4E6A-97A1-E4A5F313EB48}] => (Allow) C:\Users\Oťáček\AppData\Local\Apowersoft\Online Phone Manager\ApowersoftAndroidDaemon.exe () [File not signed]
FirewallRules: [{8EF52979-9291-40A5-8FD2-C8235F698732}] => (Allow) C:\Users\Oťáček\AppData\Local\Apowersoft\Online Phone Manager\ApowersoftAndroidDaemon.exe () [File not signed]
FirewallRules: [{37D422F0-1732-4107-BCCD-027642664CFC}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{F98E4A55-A359-44DF-A434-DC6DF0E44BCB}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [{47D6CDE9-CA6D-481A-8604-F7125BF9D06D}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{14A8C9E6-9A06-4D9E-A31D-BDEFDAE010C8}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [{EF15DBE4-C27E-4ED4-8251-4AAC1043C10C}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Package\PTInstOnline.exe (Free Time Co., Ltd. -> Free Time)
FirewallRules: [{1714B9C1-6B5C-4821-8AE6-C91F2A3CE04D}] => (Allow) F:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (chen jun hao -> Free Time) [File not signed]
FirewallRules: [{7207DF57-2BF4-4FE8-988E-487980F02640}] => (Allow) F:\Program Files (x86)\FormatFactory\FormatFactory.exe (chen jun hao -> Free Time) [File not signed]
FirewallRules: [TCP Query User{F7095C8D-2717-4DC8-A34E-7DF9EED0AED8}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe (SAND STUDIO CORPORATION LIMITED -> Sand Studio)
FirewallRules: [UDP Query User{32B2203D-2DC2-4F95-9729-AAE978859F3E}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe (SAND STUDIO CORPORATION LIMITED -> Sand Studio)
FirewallRules: [TCP Query User{B9D00C3A-CC73-4D41-9B07-2E7303C06C37}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe (SAND STUDIO CORPORATION LIMITED -> Sand Studio)
FirewallRules: [UDP Query User{3EAD46FC-A5D6-43B7-8E52-988F13F20361}C:\program files (x86)\airdroid\airdroid.exe] => (Allow) C:\program files (x86)\airdroid\airdroid.exe (SAND STUDIO CORPORATION LIMITED -> Sand Studio)
FirewallRules: [{4CAA0FAE-2644-4691-8591-FB27879628EB}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [{894286C4-8909-4294-A981-8730E3AA489F}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{58C09C3B-25BB-4534-B8D6-7C8742AA1EC3}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{7FE6D0D7-D9E9-4445-AED0-48177F28935D}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [{34284434-F5AA-46BF-A39F-6DC33504CA3F}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Package\PTInstOnline.exe (Free Time Co., Ltd. -> Free Time)
FirewallRules: [{3C05952F-16F5-4C80-8E82-53287114997F}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [{5A631CC0-AA9E-488F-9FCA-5D290D8FB144}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{021C069F-D8AE-4400-8F5E-E292B55C3DBB}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [{1844EB57-5E0B-45E7-AA4C-7A9EBFA06D96}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{D64F19D8-4C71-4D6A-A999-ED187160DE88}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Package\PTInstOnline.exe (Free Time Co., Ltd. -> Free Time)
FirewallRules: [{51E130F7-CFA0-4683-A459-BA13627A2500}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [{39CD88CE-B157-42B2-8AD8-D0EC8357FCC6}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{EE4F85A6-6B86-4720-9FE8-45B08014AD0F}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{A6ADA8EE-7DFB-4FC8-AB44-032765047F8C}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [TCP Query User{A8595D0D-BC20-428B-ADE5-178A223B0724}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [UDP Query User{018DB134-0E56-47F5-8B03-CA77AD573AA4}C:\program files\videolan\vlc\vlc.exe] => (Block) C:\program files\videolan\vlc\vlc.exe (VideoLAN -> VideoLAN)
FirewallRules: [{BE835B07-093D-4169-8230-911BB9C35B58}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{4A3D4108-87C4-4BC4-A833-7F343E545ED9}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [{FA814444-8341-4514-B32B-81C5A3829F4A}] => (Allow) C:\Program Files (x86)\FormatFactory\FFModules\Encoder\Doc\EBookCodec.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.)
FirewallRules: [{34996ED0-FB52-4147-AF33-0978A54FECCC}] => (Allow) C:\Program Files (x86)\FormatFactory\FormatFactory.exe (Free Time Co., Ltd. -> Free Time Co., Ltd.) [File not signed]
FirewallRules: [{D9965A42-40F7-4621-BABE-A00AAC37BA24}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [{9260761F-7BE2-4725-B4C5-BA41F14F8DBB}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation -> Mozilla Corporation)
FirewallRules: [TCP Query User{7C3AFAD1-3ECC-4935-B2A5-04B5C15F79B9}F:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) F:\program files (x86)\google\chrome\application\chrome.exe (Google Inc -> Google Inc.)
FirewallRules: [UDP Query User{81BE284B-8C0B-42DC-BFFB-31E89FCB0CF1}F:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) F:\program files (x86)\google\chrome\application\chrome.exe (Google Inc -> Google Inc.)
FirewallRules: [{A397107B-23FD-444A-A2DC-92AA4F712F91}] => (Allow) C:\Program Files (x86)\netis\USB Wireless LAN Utility\RtWLan.exe (Realtek Semiconductor Corp.) [File not signed]
FirewallRules: [{FF123FB9-9A02-4186-AC59-9C43FD53FBA5}] => (Allow) C:\Program Files (x86)\netis\USB Wireless LAN Utility\RTLDHCP.exe (Realtek Semiconductor Corp -> Realtek)
FirewallRules: [{29308BCA-4AE2-4126-8563-0EEC698919AE}] => (Allow) C:\Program Files (x86)\netis\USB Wireless LAN Utility\RTLDHCP.exe (Realtek Semiconductor Corp -> Realtek)
FirewallRules: [{1441ACA2-712F-4CD7-988B-C063BFC3008D}] => (Allow) C:\Program Files (x86)\netis\USB Wireless LAN Utility\RTLDHCP.exe (Realtek Semiconductor Corp -> Realtek)
FirewallRules: [{F350E590-3BFA-4AC9-A8DA-519CCFEDDD3D}] => (Allow) C:\Program Files (x86)\netis\USB Wireless LAN Utility\RTLDHCP.exe (Realtek Semiconductor Corp -> Realtek)
FirewallRules: [{FE707B5E-32F2-47F2-9FCE-8D5BF6F14BBE}] => (Allow) C:\Program Files (x86)\netis\USB Wireless LAN Utility\RTLDHCP.exe (Realtek Semiconductor Corp -> Realtek)
FirewallRules: [{A1C8335C-9990-4CA0-85E2-C6E74E65A4F8}] => (Allow) C:\Program Files (x86)\netis\USB Wireless LAN Utility\RTLDHCP.exe (Realtek Semiconductor Corp -> Realtek)
FirewallRules: [{A56C19DE-6D46-4228-9968-364E8FC3F0D1}] => (Allow) C:\Program Files (x86)\netis\USB Wireless LAN Utility\RTLDHCP.exe (Realtek Semiconductor Corp -> Realtek)
FirewallRules: [TCP Query User{8E9861CF-8002-4F1E-99F6-EB3B14412A30}C:\program files (x86)\smart view\smart view.exe] => (Allow) C:\program files (x86)\smart view\smart view.exe () [File not signed]
FirewallRules: [UDP Query User{B699AD97-FF17-4260-A4E4-98E30200385D}C:\program files (x86)\smart view\smart view.exe] => (Allow) C:\program files (x86)\smart view\smart view.exe () [File not signed]
FirewallRules: [TCP Query User{7B5BE066-70B0-461C-BF3C-001C3DFE3A1B}F:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) F:\program files (x86)\google\chrome\application\chrome.exe (Google Inc -> Google Inc.)
FirewallRules: [UDP Query User{141D5200-174A-4EC1-BA6B-A72925194FD6}F:\program files (x86)\google\chrome\application\chrome.exe] => (Allow) F:\program files (x86)\google\chrome\application\chrome.exe (Google Inc -> Google Inc.)
FirewallRules: [{DE807617-92DC-4506-ACED-4214B20F3401}] => (Block) C:\Program Files (x86)\Common Files\Wondershare\Wondershare Helper Compact\WSHelper.exe (Wondershare software CO., LIMITED -> Wondershare)
FirewallRules: [{EF2A35C2-A594-46BB-9FA2-2508304EC22C}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [{6D0A8D98-CF57-453D-BE9F-36ABD6DB31E8}] => (Allow) C:\Program Files (x86)\Microsoft\Skype for Desktop\Skype.exe (Skype Software Sarl -> Skype Technologies S.A.)
FirewallRules: [TCP Query User{ED2AA70A-653A-4B0C-AAD2-D1504468990B}C:\users\oťáček\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\oťáček\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [UDP Query User{96DA9ED8-C5AC-49D9-BEF8-60CE32AB5911}C:\users\oťáček\appdata\roaming\utorrent\utorrent.exe] => (Allow) C:\users\oťáček\appdata\roaming\utorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{E9644745-BCD8-4D42-9894-E6C12719B6BD}] => (Allow) C:\Users\Oťáček\AppData\Roaming\uTorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{4430278E-3A6B-49BA-9281-BC195FF2F338}] => (Allow) C:\Users\Oťáček\AppData\Roaming\uTorrent\utorrent.exe (uTorrent.CZ -> BitTorrent, Inc.) [File not signed]
FirewallRules: [{1B4F7268-E02D-4A4C-B54D-A3B55AF9EB7D}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe (Microsoft Corporation -> Microsoft Corporation)
FirewallRules: [{B7E39505-1329-43D4-BEDB-F9D7721B68BF}] => (Allow) C:\Users\Oťáček\AppData\Local\Programs\Opera\68.0.3618.125\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{AE071FEC-F1DC-49A8-BF94-5227811710DA}] => (Allow) C:\Users\Oťáček\AppData\Local\Programs\Opera\68.0.3618.165\opera.exe (Opera Software AS -> Opera Software)
FirewallRules: [{A76C4448-FF53-4415-9C53-EF4383FA29F8}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google LLC -> Google LLC)
==================== Restore Points =========================
ATTENTION: System Restore is disabled (Total:48.83 GB) (Free:3.92 GB) (8%)
==================== Faulty Device Manager Devices ============
Name:
Description:
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
==================== Event log errors: ========================
Application errors:
==================
Error: (06/15/2020 01:38:46 PM) (Source: FolderSize) (EventID: 0) (User: )
Description: Event-ID 0
Error: (06/14/2020 09:36:19 AM) (Source: FolderSize) (EventID: 0) (User: )
Description: Event-ID 0
Error: (06/14/2020 09:34:02 AM) (Source: ESENT) (EventID: 454) (User: )
Description: taskhost (2772) WebCacheLocal: Při zotavení či obnovení databáze došlo k neočekávané chybě -551.
Error: (06/14/2020 09:34:02 AM) (Source: ESENT) (EventID: 517) (User: )
Description: taskhost (2772) WebCacheLocal: Obnovení databáze se nezdařilo a došlo k chybě -551, protože byly zjištěny odkazy na databázi C:\Users\Oťáček\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat, která se neshoduje s aktuální sadou protokolů. Databázový stroj nepovolí dokončení obnovení pro tuto instanci, dokud nebude znovu vytvořena instance neshodné databáze. Pokud databáze již skutečně není k dispozici nebo není již nadále požadována, získáte pokyny týkající se odstranění této chyby ve znalostní bázi Microsoft Knowledge Base nebo po klepnutí na odkaz Další informace na konci této zprávy.
Error: (06/14/2020 09:34:02 AM) (Source: ESENT) (EventID: 465) (User: )
Description: taskhost (2772) WebCacheLocal: Při částečném obnovení byl zjištěn poškozený soubor protokolu C:\Users\Oťáček\AppData\Local\Microsoft\Windows\WebCache\V01.log. Záznam s chybou kontrolního součtu je umístěn na pozici END. Data neodpovídající záznamům protokolu se poprvé vyskytla v sektoru 993 (0x000003E1). Soubor je poškozený a nelze jej použít.
Error: (06/14/2020 09:34:02 AM) (Source: ESENT) (EventID: 465) (User: )
Description: taskhost (2772) WebCacheLocal: Při částečném obnovení byl zjištěn poškozený soubor protokolu C:\Users\Oťáček\AppData\Local\Microsoft\Windows\WebCache\V01.log. Záznam s chybou kontrolního součtu je umístěn na pozici END. Data neodpovídající záznamům protokolu se poprvé vyskytla v sektoru 993 (0x000003E1). Soubor je poškozený a nelze jej použít.
Error: (06/14/2020 09:34:02 AM) (Source: ESENT) (EventID: 465) (User: )
Description: taskhost (2772) WebCacheLocal: Při částečném obnovení byl zjištěn poškozený soubor protokolu C:\Users\Oťáček\AppData\Local\Microsoft\Windows\WebCache\V01.log. Záznam s chybou kontrolního součtu je umístěn na pozici END. Data neodpovídající záznamům protokolu se poprvé vyskytla v sektoru 993 (0x000003E1). Soubor je poškozený a nelze jej použít.
System errors:
=============
Error: (06/18/2020 11:24:49 PM) (Source: DCOM) (EventID: 10010) (User: )
Description: Server {AB8902B4-09CA-4BB6-B78D-A8F59079A8D5} se v daném časovém limitu neregistroval u služby DCOM.
Error: (06/17/2020 12:16:06 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Při čekání na odezvu transakce služby ShellHWDetection bylo dosaženo časového limitu (30000 ms).
Error: (06/17/2020 12:11:53 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Realtek DHCP Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (06/17/2020 12:11:06 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba DgiVecp neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedené zařízení.
Error: (06/17/2020 12:10:54 PM) (Source: Ntfs) (EventID: 55) (User: )
Description: Struktura systému souborů disku je poškozená a je nepoužitelná.
Je nutné na svazek I: spustit nástroj chkdsk.
Error: (06/15/2020 01:24:04 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Realtek DHCP Service byla neočekávaně ukončena. Tento stav nastal již 1krát.
Error: (06/15/2020 01:22:46 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba DgiVecp neuspěla při spuštění v důsledku následující chyby:
Systém nemůže nalézt uvedené zařízení.
Error: (06/15/2020 01:22:42 PM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (13:20:41, 15.6.2020) bylo neočekávané.
CodeIntegrity:
===================================
Date: 2020-03-01 08:01:29.148
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\winsxs\wow64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.23677_none_c012509e16735ef9\appidapi.dll because the set of per-page image hashes could not be found on the system.
Date: 2020-03-01 08:01:28.982
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\winsxs\wow64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.23677_none_c012509e16735ef9\appidapi.dll because the set of per-page image hashes could not be found on the system.
Date: 2020-03-01 08:01:28.819
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\winsxs\wow64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.23677_none_c012509e16735ef9\appidapi.dll because the set of per-page image hashes could not be found on the system.
Date: 2020-03-01 08:01:28.655
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\winsxs\wow64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.23677_none_c012509e16735ef9\appidapi.dll because the set of per-page image hashes could not be found on the system.
Date: 2020-03-01 08:01:28.179
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\winsxs\wow64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.23392_none_bff7a9a2168820b3\appidapi.dll because the set of per-page image hashes could not be found on the system.
Date: 2020-03-01 08:01:28.013
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\winsxs\wow64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.23392_none_bff7a9a2168820b3\appidapi.dll because the set of per-page image hashes could not be found on the system.
Date: 2020-03-01 08:01:27.848
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\winsxs\wow64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.23392_none_bff7a9a2168820b3\appidapi.dll because the set of per-page image hashes could not be found on the system.
Date: 2020-03-01 08:01:27.683
Description:
Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume4\Windows\winsxs\wow64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.23392_none_bff7a9a2168820b3\appidapi.dll because the set of per-page image hashes could not be found on the system.
==================== Memory info ===========================
BIOS: American Megatrends Inc. 1305 02/11/2011
Motherboard: ASUSTeK Computer INC. P8H67-M EVO
Processor: Intel(R) Core(TM) i3-2100 CPU @ 3.10GHz
Percentage of memory in use: 89%
Total physical RAM: 8173.24 MB
Available physical RAM: 895.98 MB
Total Virtual: 16644.62 MB
Available Virtual: 8518.71 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:48.83 GB) (Free:3.92 GB) NTFS ==>[drive with boot components (obtained from BCD)]
Drive d: (Rezervováno systémem) (Fixed) (Total:0.1 GB) (Free:0.03 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive e: (HDD) (Fixed) (Total:882.68 GB) (Free:34.75 GB) NTFS
Drive f: () (Fixed) (Total:465.66 GB) (Free:147.1 GB) NTFS
Drive h: (ADATA HV100) (Fixed) (Total:1862.56 GB) (Free:64.66 GB) FAT32
Drive i: (VERBATIM HD) (Fixed) (Total:1863.01 GB) (Free:989.17 GB) NTFS
==================== MBR & Partition Table ====================
==========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 931.5 GB) (Disk ID: DD32DD32)
Partition 1: (Active) - (Size=48.8 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=882.7 GB) - (Type=07 NTFS)
==========================================================
Disk: 1 (MBR Code: Windows 7/8/10) (Size: 465.8 GB) (Disk ID: 0EC61270)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=465.7 GB) - (Type=07 NTFS)
==========================================================
Disk: 2 (Size: 1863 GB) (Disk ID: D4C7FBB0)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=07 NTFS)
==========================================================
Disk: 3 (Size: 1863 GB) (Disk ID: 87A12B7E)
Partition 1: (Not Active) - (Size=1863 GB) - (Type=0C)
==================== End of Addition.txt =======================
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 06-06-2020
Ran by Oťáček (administrator) on OŤÁČEK-PC (18-06-2020 23:26:06)
Running from C:\Users\Oťáček\Desktop\UTILITY\FRST-OlderVersion
Loaded Profiles: Oťáček
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
() [File not signed] C:\Windows\runSW.exe
(Avast Software s.r.o. -> AVAST Software) E:\Avast 2019\aswEngSrv.exe
(Avast Software s.r.o. -> AVAST Software) E:\Avast 2019\aswidsagent.exe
(Avast Software s.r.o. -> AVAST Software) E:\Avast 2019\AvastSvc.exe
(Avast Software s.r.o. -> AVAST Software) E:\Avast 2019\AvastUI.exe <2>
(Brio) [File not signed] C:\Program Files\FolderSize\FolderSize.exe
(Brio) [File not signed] C:\Program Files\FolderSize\FolderSizeSvc.exe
(Crystal Rich Ltd -> Crystal Rich Ltd) E:\Stažené soubory\SOFTWARE\USB Safely Remove 5.4.6.1244 Final + Portable\Portable\App\USBSafelyRemove\USBSRService.exe
(Fotis Zafiropoulos -> MPC-HC Team) C:\Program Files\MPC-HC\mpc-hc64.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler.exe
(Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.35.452\GoogleCrashHandler64.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe
(Malwarebytes Inc -> Malwarebytes) C:\Program Files\Malwarebytes\Anti-Malware\mbamtray.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft LifeCam\MSCamS64.exe
(Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\WINWORD.EXE
(Microsoft Corporation -> Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atieclxx.exe
(Microsoft Windows Hardware Compatibility Publisher -> AMD) C:\Windows\System32\atiesrxx.exe
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe <10>
(Mozilla Corporation -> Mozilla Corporation) C:\Program Files\Mozilla Thunderbird\thunderbird.exe
(Oracle America, Inc. -> Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Piriform Software Ltd -> Piriform Software Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Realtek Semiconductor Corp -> Realtek) C:\Program Files (x86)\netis\USB Wireless LAN Utility\RTLDHCP.exe
(Realtek Semiconductor Corp.) [File not signed] C:\Program Files (x86)\netis\USB Wireless LAN Utility\RtWLan.exe
(Realtek) [File not signed] C:\Program Files (x86)\netis\USB Wireless LAN Utility\RtlService.exe
(Realtek) [File not signed] C:\Windows\SwUSB.exe
(Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.) C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe
(Samsung Electronics CO., LTD. -> Samsung Electronics) C:\Windows\System32\spool\drivers\x64\3\us007sm.exe
(TechSmith Corporation -> TechSmith Corporation) C:\Program Files (x86)\TechSmith\Snagit 11\Snagit32.exe
(TechSmith Corporation -> TechSmith Corporation) C:\Program Files (x86)\TechSmith\Snagit 11\SnagitEditor.exe
(TechSmith Corporation -> TechSmith Corporation) C:\Program Files (x86)\TechSmith\Snagit 11\SnagPriv.exe
(TechSmith Corporation) [File not signed] C:\Program Files (x86)\TechSmith\Snagit 11\TscHelp.exe
(Two Pilots) [File not signed] C:\Windows\VPDAgent_x64.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe
(Wondershare Technology Co.,Ltd -> Wondershare) C:\Program Files (x86)\Wondershare\WAF3\3.0.0.308\WsAppService3.exe
==================== Registry (Whitelisted) ===================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [AvastUI.exe] => E:\Avast 2019\AvLaunch.exe [108728 2020-05-19] (Avast Software s.r.o. -> AVAST Software)
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [646776 2020-03-12] (Oracle America, Inc. -> Oracle Corporation)
HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restriction <==== ATTENTION
HKU\S-1-5-21-51665161-4008308083-3026018605-1000\...\Run: [CCleaner Smart Cleaning] => C:\Program Files\CCleaner\CCleaner64.exe [29072568 2020-05-22] (Piriform Software Ltd -> Piriform Software Ltd)
HKU\S-1-5-21-51665161-4008308083-3026018605-1000\...\Run: [Folder Size] => C:\Program Files\FolderSize\FolderSize.exe [169472 2013-02-13] (Brio) [File not signed]
HKLM\...\Windows x64\Print Processors\hpzppw71: C:\Windows\System32\spool\prtprocs\x64\hpzppw71.dll [230400 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Windows x64\Print Processors\SSP2MPC: C:\Windows\System32\spool\prtprocs\x64\ssp2mpc.dll [33792 2009-09-01] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Server 2003 DDK provider)
HKLM\...\Windows x64\Print Processors\us005PC: C:\Windows\System32\spool\prtprocs\x64\us005pc.dll [52248 2019-03-24] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Windows x64\Print Processors\us007PC: C:\Windows\System32\spool\prtprocs\x64\us007pc.dll [52240 2019-12-23] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Codename Longhorn DDK provider)
HKLM\...\Print\Monitors\gcprm: C:\Windows\system32\gcprpm.dll [54784 2012-03-06] () [File not signed]
HKLM\...\Print\Monitors\LIDIL hpzllw71: C:\Windows\system32\hpzllw71.dll [53248 2009-07-14] (Microsoft Windows -> Hewlett-Packard Corporation)
HKLM\...\Print\Monitors\SSP2M Langmon: C:\Windows\system32\ssp2ml6.dll [22016 2008-01-11] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\us005 Langmon: C:\Windows\system32\us005lm.dll [31256 2019-03-24] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\...\Print\Monitors\us007 Langmon: C:\Windows\system32\us007lm.dll [31248 2019-12-23] (Microsoft Windows Hardware Compatibility Publisher -> )
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files (x86)\Google\Chrome\Application\83.0.4103.106\Installer\chrmstp.exe [2020-06-17] (Google LLC -> Google LLC)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Mozilla Thunderbird.lnk [2020-02-18]
ShortcutTarget: Mozilla Thunderbird.lnk -> C:\Program Files\Mozilla Thunderbird\thunderbird.exe (Mozilla Corporation -> Mozilla Corporation)
Startup: C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Snagit 11.lnk [2017-04-10]
ShortcutTarget: Snagit 11.lnk -> C:\Program Files (x86)\TechSmith\Snagit 11\Snagit32.exe (TechSmith Corporation -> TechSmith Corporation)
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
==================== Scheduled Tasks (Whitelisted) ============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {059CF24B-F4F1-475A-9AFF-C809DA61BF54} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-02-11] (Google LLC -> Google LLC)
Task: {0B12FE04-7852-4238-8BA0-BCA203763ACE} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158552 2020-06-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {11F27765-264A-41F2-929A-9AC291E5530B} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [24690360 2020-05-22] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {14B9D031-2025-4737-8E7C-BD951A7C1D4F} - System32\Tasks\Microsoft\Windows Live\SOXE\Extractor Definitions Update Task => {3519154C-227E-47F3-9CC9-12C3F05817F1}
Task: {1EFED60A-4B05-447B-A045-B53B04BF8C1A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-02-11] (Google LLC -> Google LLC)
Task: {211F0999-E43B-4F8A-8B7F-504B1A76E4A9} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe
Task: {385AD0A4-9CF9-491F-91A4-710A445B5C5B} - System32\Tasks\{6DE89C25-20BA-4765-9231-9BF4BD3465CE} => C:\Windows\system32\pcalua.exe -a "C:\Program Files (x86)\TechSmith\Snagit 11\SnagitPI.exe" -d "C:\Program Files (x86)\TechSmith\Snagit 11"
Task: {3A956C00-22D2-4345-95AB-3222711853F5} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24608136 2020-05-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {3B0BE2BF-0DB1-494B-BE38-551BAD84D9CB} - System32\Tasks\Opera scheduled Autoupdate 1579022060 => C:\Users\Oťáček\AppData\Local\Programs\Opera\launcher.exe [1517592 2020-06-10] (Opera Software AS -> Opera Software)
Task: {40DDB543-8B81-4ADD-8A8A-1582A5402083} - \{0D29414D-C650-4E48-A71F-2385CD7D5081} -> No File <==== ATTENTION
Task: {4AD55C2E-80EE-46C8-87D1-59ECACC85157} - \{23D73F70-966E-4707-A9DB-38B51B5C055B} -> No File <==== ATTENTION
Task: {57DB1BB6-48B3-4064-BB4F-8BA2B71F84BA} - \{E07198F9-D10E-4297-BC1B-C4BD667BA93B} -> No File <==== ATTENTION
Task: {60D52DA3-95A5-4A4F-9AF2-1003E451A999} - System32\Tasks\Avast Emergency Update => E:\Avast 2019\AvEmUpdate.exe [3339472 2020-05-19] (Avast Software s.r.o. -> AVAST Software)
Task: {63673011-F893-4D81-B48B-0AAEC5EFD1F8} - System32\Tasks\UMonitor Task => C:\Windows\SysWOW64\UMonit64.exe
Task: {8AB70ED9-471A-4103-AAB1-31AE9CCA5FF3} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1660520 2020-02-28] (Avast Software s.r.o. -> Avast Software)
Task: {9D2344E9-4391-4C29-AA8F-5718502945EF} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [335416 2020-06-10] (Adobe Inc. -> Adobe)
Task: {A180BB23-80E0-45FB-BB28-9176AD2BB913} - System32\Tasks\{5EE25878-0AE3-4A6F-B3E1-ED5808655F45} => C:\Windows\system32\pcalua.exe -a "E:\Stažené soubory\NetFx20SP2_x86.exe" -d "E:\Stažené soubory"
Task: {A1B3B221-5909-44B6-8713-D55BCFA380DB} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files\Microsoft Office\root\Office16\sdxhelper.exe [158552 2020-06-16] (Microsoft Corporation -> Microsoft Corporation)
Task: {A64B9CF0-EFF6-4252-9FC2-571A9960FAE5} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [24608136 2020-05-31] (Microsoft Corporation -> Microsoft Corporation)
Task: {B2AB7818-F9FE-4AA6-8718-267E114C56B9} - \{B82F74A0-6BF7-40C6-938C-B68715545F09} -> No File <==== ATTENTION
Task: {B5EBB0B2-FFC1-4DB8-90DE-473183F062BE} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6158240 2020-05-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {B9ED2FD8-D125-406A-BFAF-42E8E710CB41} - System32\Tasks\Opera scheduled assistant Autoupdate 1582795558 => C:\Users\Oťáček\AppData\Local\Programs\Opera\launcher.exe [1517592 2020-06-10] (Opera Software AS -> Opera Software)
Task: {C700FD45-9E2D-434E-9D1C-88B8C3AB5C91} - \{7A6B60DC-727E-441E-A432-8D3357118DB9} -> No File <==== ATTENTION
Task: {D3871F9A-AD1D-402E-9EFA-44509969FA14} - System32\Tasks\Adobe Flash Player NPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_387_Plugin.exe [1459256 2020-06-10] (Adobe Inc. -> Adobe)
Task: {E009A427-567E-4E5A-8092-2EFEBE30601A} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [6158240 2020-05-18] (Microsoft Corporation -> Microsoft Corporation)
Task: {EC009CEF-CFDD-4B90-8488-90D7158D2B08} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_32_0_0_387_pepper.exe [1454648 2020-06-10] (Adobe Inc. -> Adobe)
Task: {EDF3DB7E-0040-4B7E-A77D-D1A1E538CCE8} - System32\Tasks\eM Client Database Backup (S-1-5-21-51665161-4008308083-3026018605-1000) => C:\Program Files (x86)\eM Client\DbBackup.exe [139624 2016-10-21] (eM Client, s.r.o. -> )
Task: {F77BC73A-DA45-488E-B3EC-8C08FD12E8B8} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [686384 2020-05-22] (Piriform Software Ltd -> Piriform Software Ltd)
Task: {FE7A2D7C-9F72-4F37-BD69-16A4A358265D} - System32\Tasks\{E5787AEB-33BE-4341-B850-9DF77BFF64E0} => C:\Windows\system32\pcalua.exe -a "E:\Stažené soubory\dotnetfx35.exe" -d "E:\Stažené soubory"
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\Windows\Tasks\AutoKMS.job => C:\Windows\AutoKMS.exe
Task: C:\Windows\Tasks\AutoKMSDaily.job => C:\Windows\AutoKMS.exe
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt
Tcpip\Parameters: [DhcpNameServer] 213.46.172.36 213.46.172.37
Tcpip\..\Interfaces\{53702BC7-8C9E-41D1-94E4-1B2AEFB2F16B}: [DhcpNameServer] 213.46.172.36 213.46.172.37
Tcpip\..\Interfaces\{555B09F5-81C2-4DDA-83D1-5057F55A238F}: [DhcpNameServer] 213.46.172.36 213.46.172.37
Tcpip\..\Interfaces\{F84325AE-0BB8-4C06-854F-EAC454957FA1}: [DhcpNameServer] 192.168.42.129
Internet Explorer:
==================
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\Office16\URLREDIR.DLL [2020-05-18] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2020-04-15] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\ssv.dll [2020-04-22] (Oracle America, Inc. -> Oracle Corporation)
BHO-x32: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\URLREDIR.DLL [2020-05-18] (Microsoft Corporation -> Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\jp2ssv.dll [2020-04-22] (Oracle America, Inc. -> Oracle Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-04-15] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-04-15] (Microsoft Corporation -> Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-04-15] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-04-15] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-04-15] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-04-15] (Microsoft Corporation -> Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2020-04-15] (Microsoft Corporation -> Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2020-04-15] (Microsoft Corporation -> Microsoft Corporation)
FireFox:
========
FF DefaultProfile: gko5uglf.default-1581863657544
FF ProfilePath: C:\Users\Oťáček\AppData\Roaming\Mozilla\Firefox\Profiles\gko5uglf.default-1581863657544 [2020-06-18]
FF DownloadDir: E:\Stažené soubory
FF Homepage: Mozilla\Firefox\Profiles\gko5uglf.default-1581863657544 -> hxxps://www.seznam.cz/?clid=22668
FF NewTab: Mozilla\Firefox\Profiles\gko5uglf.default-1581863657544 -> about:newtab
FF NetworkProxy: Mozilla\Firefox\Profiles\gko5uglf.default-1581863657544 -> type", 0
FF Session Restore: Mozilla\Firefox\Profiles\gko5uglf.default-1581863657544 -> is enabled.
FF Notifications: Mozilla\Firefox\Profiles\gko5uglf.default-1581863657544 -> hxxps://web.whatsapp.com; hxxps://www.youtube.com; hxxps://push.trafroll.com; hxxps://cz.xhamsterlive.com; hxxps://eurozpravy.cz; hxxps://cs.xhamsterlive.com; hxxps://cs.stripchat.com; hxxps://www.viry.cz
FF Extension: (Tampermonkey) - C:\Users\Oťáček\AppData\Roaming\Mozilla\Firefox\Profiles\gko5uglf.default-1581863657544\Extensions\firefox@tampermonkey.net.xpi [2020-06-09]
FF Extension: (clean-youtube) - C:\Users\Oťáček\AppData\Roaming\Mozilla\Firefox\Profiles\gko5uglf.default-1581863657544\Extensions\jid1-q4sG8pYhq8KGHs@jetpack.xpi [2019-07-04]
FF Extension: (Dark Background and Light Text) - C:\Users\Oťáček\AppData\Roaming\Mozilla\Firefox\Profiles\gko5uglf.default-1581863657544\Extensions\jid1-QoFqdK4qzUfGWQ@jetpack.xpi [2020-02-28]
FF Extension: (DuckDuckGo Privacy Essentials) - C:\Users\Oťáček\AppData\Roaming\Mozilla\Firefox\Profiles\gko5uglf.default-1581863657544\Extensions\jid1-ZAdIEUB7XOzOJw@jetpack.xpi [2020-06-03]
FF Extension: (S3.Translator) - C:\Users\Oťáček\AppData\Roaming\Mozilla\Firefox\Profiles\gko5uglf.default-1581863657544\Extensions\s3google@translator.xpi [2018-10-21]
FF Extension: (Tab Session Manager) - C:\Users\Oťáček\AppData\Roaming\Mozilla\Firefox\Profiles\gko5uglf.default-1581863657544\Extensions\Tab-Session-Manager@sienori.xpi [2020-04-05]
FF Extension: (TinEye Reverse Image Search) - C:\Users\Oťáček\AppData\Roaming\Mozilla\Firefox\Profiles\gko5uglf.default-1581863657544\Extensions\tineye@ideeinc.com.xpi [2020-01-22]
FF Extension: (Adblock) - C:\Users\Oťáček\AppData\Roaming\Mozilla\Firefox\Profiles\gko5uglf.default-1581863657544\Extensions\{5eb79492-b597-47fe-a446-5db692b6eec8}.xpi [2020-02-28]
FF Extension: (404 Bookmarks) - C:\Users\Oťáček\AppData\Roaming\Mozilla\Firefox\Profiles\gko5uglf.default-1581863657544\Extensions\{5f8d31ba-47fb-4b70-bf8d-d2113f6da22f}.xpi [2019-12-16]
FF Extension: (Flash and Video Download) - C:\Users\Oťáček\AppData\Roaming\Mozilla\Firefox\Profiles\gko5uglf.default-1581863657544\Extensions\{adeadebb-fedc-4180-a7f4-cfdd87496551}.xpi [2020-06-09]
FF Extension: (Video DownloadHelper) - C:\Users\Oťáček\AppData\Roaming\Mozilla\Firefox\Profiles\gko5uglf.default-1581863657544\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}.xpi [2020-03-30]
FF Extension: (Bookmark Manager and Viewer) - C:\Users\Oťáček\AppData\Roaming\Mozilla\Firefox\Profiles\gko5uglf.default-1581863657544\Extensions\{beb1b1c0-32b9-47d8-bbd1-f65bed4e7c22}.xpi [2019-01-13]
FF Extension: (Aliexpress SuperStar česky, Historie cen a koruny) - C:\Users\Oťáček\AppData\Roaming\Mozilla\Firefox\Profiles\gko5uglf.default-1581863657544\Extensions\{ea692a27-4873-406e-bbc6-010c2dd9e9b5}.xpi [2020-05-11]
FF SearchPlugin: C:\Users\Oťáček\AppData\Roaming\Mozilla\Firefox\Profiles\gko5uglf.default-1581863657544\searchplugins\google-avast.xml [2019-02-22]
FF SearchPlugin: C:\Users\Oťáček\AppData\Roaming\Mozilla\Firefox\Profiles\gko5uglf.default-1581863657544\searchplugins\seznam-avast.xml [2019-02-25]
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_32_0_0_387.dll [2020-06-10] (Adobe Inc. -> )
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2020-04-15] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=3.0.10 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.7.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2020-04-23] (VideoLAN -> VideoLAN)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_32_0_0_387.dll [2020-06-10] (Adobe Inc. -> )
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1235205.dll [2019-03-15] (Adobe Systems, Inc.) [File not signed]
FF Plugin-x32: @java.com/DTPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\dtplugin\npDeployJava1.dll [2020-04-22] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.251.2 -> C:\Program Files (x86)\Java\jre1.8.0_251\bin\plugin2\npjp2.dll [2020-04-22] (Oracle America, Inc. -> Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] (Microsoft Corporation -> Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2020-04-15] (Microsoft Corporation -> Microsoft Corporation)
Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Oťáček\AppData\Local\Google\Chrome\User Data\Default [2020-06-16]
CHR DownloadDir: E:\Stažené soubory
CHR Notifications: Default -> hxxps://cs.xhamsterlive.com
CHR HomePage: Default -> hxxp://www.seznam.cz/
CHR Session Restore: Default -> is enabled.
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Oťáček\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2020-04-15]
CHR Extension: (Chrome Media Router) - C:\Users\Oťáček\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2020-05-27]
==================== Services (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R2 Agent; C:\Windows\VPDAgent_x64.exe [168960 2013-08-28] (Two Pilots) [File not signed]
R2 AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [238080 2013-04-30] (Microsoft Windows Hardware Compatibility Publisher -> AMD)
R3 aswbIDSAgent; E:\Avast 2019\aswidsagent.exe [6350752 2020-05-19] (Avast Software s.r.o. -> AVAST Software)
R2 avast! Antivirus; E:\Avast 2019\AvastSvc.exe [348968 2020-05-19] (Avast Software s.r.o. -> AVAST Software)
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [11111816 2020-05-31] (Microsoft Corporation -> Microsoft Corporation)
R2 FolderSize; C:\Program Files\FolderSize\FolderSizeSvc.exe [163840 2013-02-13] (Brio) [File not signed]
R2 MBAMService; C:\Program Files\Malwarebytes\Anti-Malware\MBAMService.exe [6933272 2020-03-15] (Malwarebytes Inc -> Malwarebytes)
R2 RealtekWlanU; C:\Program Files (x86)\netis\USB Wireless LAN Utility\RtlService.exe [36864 2010-04-16] (Realtek) [File not signed]
S2 RTLDHCPService; C:\Program Files (x86)\netis\USB Wireless LAN Utility\RTLDHCP.exe [261848 2013-11-12] (Realtek Semiconductor Corp -> Realtek)
R2 RunSwUSB; C:\Windows\runSW.exe [36864 2014-04-15] () [File not signed]
R2 ss_conn_service; C:\Program Files (x86)\Samsung\USB Drivers\27_ssconn\conn\ss_conn_service.exe [752224 2017-01-16] (Samsung Electronics CO., LTD. -> DEVGURU Co., LTD.)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Test Signing Certificate -> Adobe Systems Incorporated) [File not signed]
R2 USBSafelyRemoveService; E:\Stažené soubory\SOFTWARE\USB Safely Remove 5.4.6.1244 Final + Portable\Portable\App\USBSafelyRemove\USBSRService.exe [1666416 2017-06-08] (Crystal Rich Ltd -> Crystal Rich Ltd)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Windows -> Microsoft Corporation)
R2 WsAppService; C:\Program Files (x86)\Wondershare\WAF\2.4.3.237\WsAppService.exe [495720 2018-07-04] (Wondershare Technology Co.,Ltd -> Wondershare)
R2 WsAppService3; C:\Program Files (x86)\Wondershare\WAF3\3.0.0.308\WsAppService3.exe [83232 2019-06-26] (Wondershare Technology Co.,Ltd -> Wondershare)
===================== Drivers (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 amdkmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [11922944 2013-04-30] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
R3 amdkmdap; C:\Windows\System32\DRIVERS\atikmpag.sys [359936 2013-04-30] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
S3 Apowersoft_AudioDevice; C:\Windows\System32\drivers\Apowersoft_AudioDevice.sys [31920 2014-04-09] (APOWERSOFT LIMITED -> Wondershare)
S3 asmthub3; C:\Windows\System32\DRIVERS\asmthub3.sys [138568 2012-08-20] (MCCI Corporation -> ASMedia Technology Inc)
R0 aswArDisk; C:\Windows\System32\drivers\aswArDisk.sys [37136 2020-05-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswArPot; C:\Windows\System32\drivers\aswArPot.sys [205880 2020-05-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswbidsdriver; C:\Windows\System32\drivers\aswbidsdriver.sys [234560 2020-05-19] (Avast Software s.r.o. -> AVAST Software)
R0 aswbidsh; C:\Windows\System32\drivers\aswbidsh.sys [178760 2020-05-19] (Avast Software s.r.o. -> AVAST Software)
R0 aswbuniv; C:\Windows\System32\drivers\aswbuniv.sys [60480 2020-05-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswKbd; C:\Windows\System32\drivers\aswKbd.sys [42784 2020-05-19] (Avast Software s.r.o. -> AVAST Software)
R2 aswMonFlt; C:\Windows\System32\drivers\aswMonFlt.sys [175704 2020-05-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswNetHub; C:\Windows\System32\drivers\aswNetHub.sys [501472 2020-05-19] (Avast Software s.r.o. -> AVAST Software)
R3 aswNetNd6; C:\Windows\System32\DRIVERS\aswNetNd6.sys [38152 2020-04-09] (AVAST Software s.r.o. -> AVAST Software)
R1 aswRdr; C:\Windows\System32\drivers\aswRdr2.sys [109272 2020-05-19] (Avast Software s.r.o. -> AVAST Software)
R0 aswRvrt; C:\Windows\System32\drivers\aswRvrt.sys [84856 2020-05-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswSnx; C:\Windows\System32\drivers\aswSnx.sys [851592 2020-05-19] (Avast Software s.r.o. -> AVAST Software)
R1 aswSP; C:\Windows\System32\drivers\aswSP.sys [460992 2020-05-19] (Avast Software s.r.o. -> AVAST Software)
R2 aswStm; C:\Windows\System32\drivers\aswStm.sys [235488 2020-05-19] (Avast Software s.r.o. -> AVAST Software)
R0 aswVmm; C:\Windows\System32\drivers\aswVmm.sys [319112 2020-05-28] (Avast Software s.r.o. -> AVAST Software)
R3 AtiHDAudioService; C:\Windows\System32\drivers\AtihdW76.sys [104976 2016-04-01] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices)
S3 atikmdag; C:\Windows\System32\DRIVERS\atikmdag.sys [11922944 2013-04-30] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices, Inc.)
S2 DgiVecp; C:\Windows\system32\Drivers\DgiVecp.sys [53816 2009-06-09] (Samsung Electronics CO., LTD. -> Samsung Electronics Co., Ltd.)
S3 dg_ssudbus; C:\Windows\System32\DRIVERS\ssudbus.sys [131984 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 GeneStor; C:\Windows\System32\DRIVERS\GeneStor.sys [215608 2016-08-22] (GENESYS LOGIC, INC. -> GenesysLogic)
R1 HWiNFO32-BackupByDriverBoosterPortable; C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [27552 2018-03-24] (Martin Malik - REALiX -> REALiX(tm))
S3 MarvinBus; C:\Windows\System32\DRIVERS\MarvinBus64.sys [261120 2005-09-23] (Pinnacle Systems GmbH) [File not signed]
R2 MBAMChameleon; C:\Windows\System32\Drivers\MbamChameleon.sys [214496 2020-05-10] (Malwarebytes Inc -> Malwarebytes)
R3 MBAMSwissArmy; C:\Windows\System32\Drivers\mbamswissarmy.sys [248968 2020-06-05] (Malwarebytes Inc -> Malwarebytes)
S3 pwdrvio; C:\Windows\system32\pwdrvio.sys [19152 2013-09-30] (MiniTool Solution Ltd -> )
S3 pwdspio; C:\Windows\system32\pwdspio.sys [12504 2013-09-30] (MiniTool Solution Ltd -> )
S3 RtlWlanu; C:\Windows\System32\DRIVERS\rtwlanu.sys [3733208 2019-03-24] (Realtek Semiconductor Corp -> Realtek Semiconductor Corporation)
S3 ssudmdm; C:\Windows\System32\DRIVERS\ssudmdm.sys [166288 2017-05-18] (Samsung Electronics Co., Ltd. -> Samsung Electronics Co., Ltd.)
S3 tenCapture; C:\Windows\System32\DRIVERS\tenCapture.sys [23736 2012-07-20] (Web Solution Mart -> Hajo Krabbenhöft)
R3 VAD_DEV; C:\Windows\System32\drivers\vad.sys [24992 2012-03-27] (Wondershare Software Co., Ltd. -> Windows (R) DDK provider) [File not signed]
S3 WDC_SAM; C:\Windows\System32\DRIVERS\wdcsam64_prewin8.sys [31920 2018-02-26] (Microsoft Windows Hardware Compatibility Publisher -> Western Digital Technologies)
R2 WiseFs; C:\Windows\WiseFs64.sys [14256 2017-04-11] (Lespeed Technology Ltd. -> WiseCleaner.com) [File not signed]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ===================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-06-18 10:30 - 2020-06-18 10:30 - 000001019 _____ C:\Users\Oťáček\Desktop\MozBackup.exe – zástupce.lnk
2020-06-07 12:41 - 2020-06-07 12:41 - 000001082 _____ C:\Users\Oťáček\Desktop\SubtitleEdit.exe – zástupce (2).lnk
2020-06-06 10:35 - 2020-06-06 10:35 - 027605848 _____ (TeamViewer Germany GmbH) C:\Users\Oťáček\Desktop\TeamViewer_Setup (2).exe
2020-06-05 22:27 - 2020-06-06 08:15 - 000000000 ____D C:\Program Files\Mozilla Firefox
2020-06-05 13:30 - 2020-06-05 13:30 - 000248968 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamswissarmy.sys
2020-06-04 10:55 - 2020-06-08 09:46 - 000000000 ____D C:\Program Files\Mozilla Thunderbird
2020-05-31 20:47 - 2020-05-31 20:55 - 000000000 ____D C:\Users\Oťáček\AppData\Roaming\audacity
2020-05-31 20:47 - 2020-05-31 20:47 - 000001019 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Audacity.lnk
2020-05-31 20:47 - 2020-05-31 20:47 - 000001007 _____ C:\Users\Public\Desktop\Audacity.lnk
2020-05-31 20:47 - 2020-05-31 20:47 - 000001007 _____ C:\ProgramData\Desktop\Audacity.lnk
2020-05-31 20:47 - 2020-05-31 20:47 - 000000000 ____D C:\Users\Oťáček\Documents\Audacity
2020-05-31 20:47 - 2020-05-31 20:47 - 000000000 ____D C:\Users\Oťáček\AppData\Local\Audacity
2020-05-31 20:47 - 2020-05-31 20:47 - 000000000 ____D C:\Program Files (x86)\Audacity
2020-05-28 22:44 - 2020-05-31 11:23 - 005989376 _____ C:\Users\Oťáček\Documents\Hvězdy našeho mládí.pps
2020-05-26 23:39 - 2020-05-26 23:39 - 000000000 ____D C:\Users\Oťáček\Documents\výsledky
2020-05-24 11:03 - 2020-05-24 11:03 - 001208832 _____ C:\Users\Oťáček\Documents\Prezentace1.pps
2020-05-24 10:42 - 2020-05-24 11:36 - 007375018 _____ C:\Users\Oťáček\Documents\Prezentace1.mp4
2020-05-21 14:11 - 2020-05-21 15:25 - 000000124 _____ C:\Users\Oťáček\Desktop\Nový textový dokument.txt
2020-05-21 10:17 - 2020-05-19 10:15 - 000337560 _____ (AVAST Software) C:\Windows\system32\aswBoot.exe
2020-05-21 06:56 - 2020-05-21 06:56 - 000532912 _____ C:\Users\Oťáček\Documents\Gastro Motol výsledky 08.2011.pdf
2020-05-19 10:15 - 2020-05-19 10:15 - 000235488 _____ (AVAST Software) C:\Windows\system32\Drivers\aswStm.sys
2020-05-19 10:15 - 2020-05-19 10:15 - 000175704 _____ (AVAST Software) C:\Windows\system32\Drivers\aswMonFlt.sys
==================== One month (modified) ==================
(If an entry is included in the fixlist, the file/folder will be moved.)
2020-06-18 23:26 - 2017-11-01 13:35 - 000000000 ____D C:\FRST
2020-06-18 23:25 - 2020-02-19 20:20 - 000000000 ____D C:\Users\Oťáček\Documents\Logy
2020-06-18 23:24 - 2020-02-28 16:34 - 000000000 ____D C:\Users\Oťáček\AppData\Roaming\uTorrent
2020-06-18 23:23 - 2018-03-13 13:08 - 000000000 ____D C:\Users\Oťáček\Desktop\UTILITY
2020-06-18 23:22 - 2020-03-21 00:14 - 000003388 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA
2020-06-18 23:22 - 2020-03-21 00:14 - 000003260 _____ C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore
2020-06-18 23:22 - 2020-03-18 03:20 - 000003014 _____ C:\Windows\system32\Tasks\UMonitor Task
2020-06-18 23:22 - 2020-03-17 22:14 - 000003116 _____ C:\Windows\system32\Tasks\{E5787AEB-33BE-4341-B850-9DF77BFF64E0}
2020-06-18 23:22 - 2020-03-17 22:06 - 000003124 _____ C:\Windows\system32\Tasks\{5EE25878-0AE3-4A6F-B3E1-ED5808655F45}
2020-06-18 23:22 - 2020-03-04 09:11 - 000004308 _____ C:\Windows\system32\Tasks\Opera scheduled assistant Autoupdate 1582795558
2020-06-18 23:22 - 2020-02-23 20:15 - 000003208 _____ C:\Windows\system32\Tasks\{6DE89C25-20BA-4765-9231-9BF4BD3465CE}
2020-06-18 23:22 - 2020-01-14 19:14 - 000004072 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1579022060
2020-06-18 23:22 - 2019-03-09 01:18 - 000004544 _____ C:\Windows\system32\Tasks\Adobe Flash Player PPAPI Notifier
2020-06-18 23:22 - 2019-03-08 23:46 - 000004408 _____ C:\Windows\system32\Tasks\Adobe Flash Player Updater
2020-06-18 23:22 - 2018-10-27 18:55 - 000003870 _____ C:\Windows\system32\Tasks\CCleaner Update
2020-06-18 23:22 - 2018-10-27 18:55 - 000002794 _____ C:\Windows\system32\Tasks\CCleanerSkipUAC
2020-06-18 23:22 - 2018-03-13 22:41 - 000004532 _____ C:\Windows\system32\Tasks\Adobe Flash Player NPAPI Notifier
2020-06-18 23:22 - 2017-04-10 16:45 - 000000000 ____D C:\Windows\system32\Tasks\AVAST Software
2020-06-18 23:22 - 2017-04-10 14:16 - 000003978 _____ C:\Windows\system32\Tasks\User_Feed_Synchronization-{F4B66E77-4023-4CA3-A918-E9DABCC6A041}
2020-06-18 23:14 - 2009-07-14 06:45 - 000019520 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2020-06-18 23:14 - 2009-07-14 06:45 - 000019520 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2020-06-18 22:59 - 2017-04-10 14:13 - 000000000 ___RD C:\Users\Oťáček\Obrázky
2020-06-18 11:00 - 2017-04-10 16:10 - 000000000 ____D C:\Users\Oťáček\AppData\LocalLow\Mozilla
2020-06-17 20:22 - 2020-02-11 14:28 - 000002224 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2020-06-17 20:22 - 2020-02-11 14:28 - 000002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2020-06-17 20:22 - 2020-02-11 14:28 - 000002183 _____ C:\ProgramData\Desktop\Google Chrome.lnk
2020-06-17 14:01 - 2017-04-21 07:30 - 000180391 _____ C:\Windows\system32\gcpr
2020-06-17 13:46 - 2020-03-27 16:10 - 000000000 ____D C:\Users\Oťáček\AppData\Roaming\TeamViewer
2020-06-17 12:17 - 2020-02-28 12:16 - 000000000 ____D C:\Users\Oťáček\Downloads\opera autoupdate
2020-06-17 12:15 - 2018-02-26 11:24 - 000000000 ____D C:\Users\Oťáček\AppData\Local\AVAST Software
2020-06-17 12:11 - 2009-07-14 07:08 - 000000006 ____H C:\Windows\Tasks\SA.DAT
2020-06-16 00:10 - 2020-04-14 16:30 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2020-06-16 00:10 - 2009-07-14 05:20 - 000000000 ____D C:\Program Files\Common Files\Microsoft Shared
2020-06-16 00:08 - 2020-04-14 16:24 - 000000000 ____D C:\Program Files\Microsoft Office
2020-06-15 13:32 - 2017-04-11 23:03 - 000000000 ____D C:\Windows\SysWOW64\Macromed
2020-06-15 13:30 - 2017-04-30 18:44 - 000039424 ___SH C:\Users\Oťáček\Thumbs.db
2020-06-15 13:22 - 2017-04-10 16:19 - 000000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service
2020-06-15 01:00 - 2009-07-14 05:20 - 000000000 ____D C:\Windows\inf
2020-06-14 09:37 - 2020-05-18 20:35 - 000000000 ____D C:\Users\Oťáček\AppData\Roaming\MPC-HC
2020-06-14 09:25 - 2019-07-31 07:11 - 000000822 _____ C:\Users\Public\Desktop\CCleaner.lnk
2020-06-14 09:25 - 2019-07-31 07:11 - 000000822 _____ C:\ProgramData\Desktop\CCleaner.lnk
2020-06-13 07:05 - 2017-09-04 22:09 - 000001943 _____ C:\Users\Public\Desktop\AirDroid.lnk
2020-06-13 07:05 - 2017-09-04 22:09 - 000001943 _____ C:\ProgramData\Desktop\AirDroid.lnk
2020-06-12 16:10 - 2017-05-16 16:01 - 000000047 _____ C:\trl.cfg
2020-06-10 18:18 - 2017-04-11 23:04 - 000842296 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerApp.exe
2020-06-10 18:18 - 2017-04-11 23:04 - 000175160 _____ (Adobe) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2020-06-10 18:18 - 2017-04-11 23:04 - 000000000 ____D C:\Windows\system32\Macromed
2020-06-09 06:41 - 2017-05-10 16:19 - 000000000 ____D C:\Users\Oťáček\Documents\Scaner
2020-06-08 09:58 - 2020-04-07 22:43 - 000000000 ____D C:\Users\Oťáček\dwhelper
2020-06-08 09:31 - 2017-04-11 11:35 - 000000000 ____D C:\Users\Oťáček\AppData\Local\CrashDumps
2020-06-06 23:06 - 2017-09-04 22:09 - 000000000 ____D C:\Users\Oťáček\AppData\Roaming\AirDroid
2020-06-01 20:28 - 2009-07-14 17:18 - 000759582 _____ C:\Windows\system32\perfh005.dat
2020-06-01 20:28 - 2009-07-14 17:18 - 000177416 _____ C:\Windows\system32\perfc005.dat
2020-06-01 20:28 - 2009-07-14 07:13 - 001818714 _____ C:\Windows\system32\PerfStringBackup.INI
2020-05-31 20:54 - 2017-04-10 14:13 - 000000000 ____D C:\Users\Oťáček
2020-05-31 15:28 - 2017-04-13 18:15 - 000000000 ____D C:\Program Files (x86)\rajce
2020-05-28 18:19 - 2019-03-28 11:16 - 000319112 _____ (AVAST Software) C:\Windows\system32\Drivers\aswVmm.sys
2020-05-25 16:11 - 2017-08-15 19:36 - 000000000 ____D C:\Users\Oťáček\AppData\Roaming\ViberPC
2020-05-25 16:11 - 2017-08-12 21:49 - 000000000 ____D C:\Users\Oťáček\Documents\ViberDownloads
2020-05-24 11:47 - 2018-04-30 11:23 - 000000000 ____D C:\Users\Oťáček\AppData\Roaming\vlc
2020-05-24 11:47 - 2017-04-17 17:51 - 000058368 _____ C:\Users\Oťáček\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2020-05-24 11:06 - 2020-05-12 10:33 - 000032256 ___SH C:\Users\Oťáček\Documents\Thumbs.db
2020-05-21 17:19 - 2019-10-03 08:24 - 000004120 _____ C:\Windows\system32\Tasks\Avast Emergency Update
2020-05-21 17:02 - 2019-06-13 16:51 - 000000000 _____ C:\Windows\system32\last.dump
2020-05-21 16:41 - 2019-10-04 14:46 - 000000685 _____ C:\Users\Public\Desktop\Avast Free Antivirus.lnk
2020-05-21 16:41 - 2019-10-04 14:46 - 000000685 _____ C:\ProgramData\Desktop\Avast Free Antivirus.lnk
2020-05-19 10:15 - 2020-04-09 00:57 - 000501472 _____ (AVAST Software) C:\Windows\system32\Drivers\aswNetHub.sys
2020-05-19 10:15 - 2019-03-28 11:16 - 000460992 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSP.sys
2020-05-19 10:15 - 2019-03-28 11:16 - 000109272 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRdr2.sys
2020-05-19 10:15 - 2019-03-28 11:16 - 000084856 _____ (AVAST Software) C:\Windows\system32\Drivers\aswRvrt.sys
2020-05-19 10:15 - 2019-03-28 11:16 - 000042784 _____ (AVAST Software) C:\Windows\system32\Drivers\aswKbd.sys
2020-05-19 10:14 - 2019-03-28 11:16 - 000851592 _____ (AVAST Software) C:\Windows\system32\Drivers\aswSnx.sys
2020-05-19 10:14 - 2019-03-28 11:16 - 000234560 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsdriver.sys
2020-05-19 10:14 - 2019-03-28 11:16 - 000205880 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArPot.sys
2020-05-19 10:14 - 2019-03-28 11:16 - 000178760 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbidsh.sys
2020-05-19 10:14 - 2019-03-28 11:16 - 000060480 _____ (AVAST Software) C:\Windows\system32\Drivers\aswbuniv.sys
2020-05-19 10:14 - 2019-03-28 11:16 - 000037136 _____ (AVAST Software) C:\Windows\system32\Drivers\aswArDisk.sys
==================== Files in the root of some directories ========
2017-05-19 08:47 - 2017-05-19 08:47 - 000000132 _____ () C:\Users\Oťáček\AppData\Roaming\Adobe Formát PNG CS6 – předvolby
2018-03-13 11:11 - 2018-03-13 11:11 - 000195236 _____ () C:\Users\Oťáček\AppData\Roaming\DMGR_1N1I1F1S1T1I0M1F1Q2Y1I1P1B0C1F1Q1P.txt
2019-01-08 14:02 - 2019-01-08 14:02 - 000000078 _____ () C:\Users\Oťáček\AppData\Roaming\FC.dat
2017-07-03 20:29 - 2017-07-03 20:29 - 000099384 _____ () C:\Users\Oťáček\AppData\Roaming\inst.exe
2019-11-04 14:31 - 2019-11-04 14:31 - 000000078 _____ () C:\Users\Oťáček\AppData\Roaming\IP.dat
2020-04-13 22:00 - 2020-04-13 22:00 - 000000275 _____ () C:\Users\Oťáček\AppData\Roaming\mplex-log.log
2017-05-13 15:13 - 2017-09-23 12:52 - 000000643 _____ () C:\Users\Oťáček\AppData\Roaming\OŤÁČEK-PC.MTBF.txt
2017-07-03 20:29 - 2017-07-03 20:29 - 000007859 _____ () C:\Users\Oťáček\AppData\Roaming\pcouffin.cat
2017-07-03 20:29 - 2017-07-03 20:29 - 000001167 _____ () C:\Users\Oťáček\AppData\Roaming\pcouffin.inf
2017-07-03 20:29 - 2017-07-03 20:29 - 000000055 _____ () C:\Users\Oťáček\AppData\Roaming\pcouffin.log
2017-07-03 20:29 - 2017-07-03 20:29 - 000082816 _____ (VSO Software) C:\Users\Oťáček\AppData\Roaming\pcouffin.sys
2017-04-17 17:51 - 2020-05-24 11:47 - 000058368 _____ () C:\Users\Oťáček\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2020-03-06 13:08 - 2018-09-04 13:15 - 000000218 _____ () C:\Users\Oťáček\AppData\Local\recently-used.xbel
2018-09-06 11:04 - 2020-03-18 11:55 - 000007604 _____ () C:\Users\Oťáček\AppData\Local\Resmon.ResmonCfg
==================== SigCheck ============================
(There is no automatic fix for files that do not pass verification.)
LastRegBack: 2020-06-16 00:33
==================== End of FRST.txt ========================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu-Ujíždí myš
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
jarda.otta
- Návštěvník
- Příspěvky: 520
- Registrován: 25 bře 2005 21:21
Prosím o kontrolu-Ujíždí myš
- Přílohy
-
- 2020-06-18_23-24-36.jpg (27.86 KiB) Zobrazeno 1014 x
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu-Ujíždí myš
Zdravím!
Po dobu práce s FRST vypněte antivir. Otevřte poznámkový blok a zkopírujte do něj:
Po dobu práce s FRST vypněte antivir. Otevřte poznámkový blok a zkopírujte do něj:
Uložte do C:\Users\Oťáček\Desktop\UTILITY\FRST-OlderVersion jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.Start
CloseProcesses:
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {059CF24B-F4F1-475A-9AFF-C809DA61BF54} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-02-11] (Google LLC -> Google LLC)
Task: {1EFED60A-4B05-447B-A045-B53B04BF8C1A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-02-11] (Google LLC -> Google LLC)
Task: {40DDB543-8B81-4ADD-8A8A-1582A5402083} - \{0D29414D-C650-4E48-A71F-2385CD7D5081} -> No File <==== ATTENTION
Task: {4AD55C2E-80EE-46C8-87D1-59ECACC85157} - \{23D73F70-966E-4707-A9DB-38B51B5C055B} -> No File <==== ATTENTION
Task: {57DB1BB6-48B3-4064-BB4F-8BA2B71F84BA} - \{E07198F9-D10E-4297-BC1B-C4BD667BA93B} -> No File <==== ATTENTION
Task: {B2AB7818-F9FE-4AA6-8718-267E114C56B9} - \{B82F74A0-6BF7-40C6-938C-B68715545F09} -> No File <==== ATTENTION
Task: {C700FD45-9E2D-434E-9D1C-88B8C3AB5C91} - \{7A6B60DC-727E-441E-A432-8D3357118DB9} -> No File <==== ATTENTION
Task: C:\Windows\Tasks\AutoKMS.job => C:\Windows\AutoKMS.exe
Task: C:\Windows\Tasks\AutoKMSDaily.job => C:\Windows\AutoKMS.exe
C:\Windows\AutoKMS.exe
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
C:\Users\Oťáček\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
EmptyTemp:
End
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
jarda.otta
- Návštěvník
- Příspěvky: 520
- Registrován: 25 bře 2005 21:21
Re: Prosím o kontrolu-Ujíždí myš
Nevím sice jak se vypíná antivir Avast, ale jediná možnost byla vypnout všechny webové štíty do restartu pc. Log se po restartu neobjevil, ale našel jsem ho v té složce jak je frst. Zde je ten fixlog:
Fix result of Farbar Recovery Scan Tool (x64) Version: 20-06-2020
Ran by Oťáček (21-06-2020 09:11:53) Run:7
Running from C:\Users\Oťáček\Desktop\UTILITY\FRST-OlderVersion
Loaded Profiles: Oťáček
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {059CF24B-F4F1-475A-9AFF-C809DA61BF54} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-02-11] (Google LLC -> Google LLC)
Task: {1EFED60A-4B05-447B-A045-B53B04BF8C1A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-02-11] (Google LLC -> Google LLC)
Task: {40DDB543-8B81-4ADD-8A8A-1582A5402083} - \{0D29414D-C650-4E48-A71F-2385CD7D5081} -> No File <==== ATTENTION
Task: {4AD55C2E-80EE-46C8-87D1-59ECACC85157} - \{23D73F70-966E-4707-A9DB-38B51B5C055B} -> No File <==== ATTENTION
Task: {57DB1BB6-48B3-4064-BB4F-8BA2B71F84BA} - \{E07198F9-D10E-4297-BC1B-C4BD667BA93B} -> No File <==== ATTENTION
Task: {B2AB7818-F9FE-4AA6-8718-267E114C56B9} - \{B82F74A0-6BF7-40C6-938C-B68715545F09} -> No File <==== ATTENTION
Task: {C700FD45-9E2D-434E-9D1C-88B8C3AB5C91} - \{7A6B60DC-727E-441E-A432-8D3357118DB9} -> No File <==== ATTENTION
Task: C:\Windows\Tasks\AutoKMS.job => C:\Windows\AutoKMS.exe
Task: C:\Windows\Tasks\AutoKMSDaily.job => C:\Windows\AutoKMS.exe
C:\Windows\AutoKMS.exe
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
C:\Users\O���ek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\Offline Files => removed successfully
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\Offline Files => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{059CF24B-F4F1-475A-9AFF-C809DA61BF54}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{059CF24B-F4F1-475A-9AFF-C809DA61BF54}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1EFED60A-4B05-447B-A045-B53B04BF8C1A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1EFED60A-4B05-447B-A045-B53B04BF8C1A}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{40DDB543-8B81-4ADD-8A8A-1582A5402083}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{40DDB543-8B81-4ADD-8A8A-1582A5402083}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{0D29414D-C650-4E48-A71F-2385CD7D5081}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4AD55C2E-80EE-46C8-87D1-59ECACC85157}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4AD55C2E-80EE-46C8-87D1-59ECACC85157}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{23D73F70-966E-4707-A9DB-38B51B5C055B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{57DB1BB6-48B3-4064-BB4F-8BA2B71F84BA}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{57DB1BB6-48B3-4064-BB4F-8BA2B71F84BA}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{E07198F9-D10E-4297-BC1B-C4BD667BA93B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B2AB7818-F9FE-4AA6-8718-267E114C56B9}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B2AB7818-F9FE-4AA6-8718-267E114C56B9}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{B82F74A0-6BF7-40C6-938C-B68715545F09}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C700FD45-9E2D-434E-9D1C-88B8C3AB5C91}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C700FD45-9E2D-434E-9D1C-88B8C3AB5C91}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{7A6B60DC-727E-441E-A432-8D3357118DB9}" => removed successfully
C:\Windows\Tasks\AutoKMS.job => moved successfully
C:\Windows\Tasks\AutoKMSDaily.job => moved successfully
"C:\Windows\AutoKMS.exe" => not found
HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
"C:\Users\O���ek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini" => not found
=========== EmptyTemp: ==========
BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 66776006 B
Java, Flash, Steam htmlcache => 1128 B
Windows/system/drivers => 13199416 B
Edge => 0 B
Chrome => 38466140 B
Firefox => 477863557 B
Opera => 13885578 B
Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 0 B
systemprofile32 => 128 B
LocalService => 128 B
NetworkService => 128 B
Oťáček => 882386319 B
DefaultAppPool => 882386319 B
RecycleBin => 170617372 B
EmptyTemp: => 2.4 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 09:13:37 ====
Fix result of Farbar Recovery Scan Tool (x64) Version: 20-06-2020
Ran by Oťáček (21-06-2020 09:11:53) Run:7
Running from C:\Users\Oťáček\Desktop\UTILITY\FRST-OlderVersion
Loaded Profiles: Oťáček
Boot Mode: Normal
==============================================
fixlist content:
*****************
Start
CloseProcesses:
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
FF HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restriction <==== ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <==== ATTENTION
Task: {059CF24B-F4F1-475A-9AFF-C809DA61BF54} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-02-11] (Google LLC -> Google LLC)
Task: {1EFED60A-4B05-447B-A045-B53B04BF8C1A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [156104 2020-02-11] (Google LLC -> Google LLC)
Task: {40DDB543-8B81-4ADD-8A8A-1582A5402083} - \{0D29414D-C650-4E48-A71F-2385CD7D5081} -> No File <==== ATTENTION
Task: {4AD55C2E-80EE-46C8-87D1-59ECACC85157} - \{23D73F70-966E-4707-A9DB-38B51B5C055B} -> No File <==== ATTENTION
Task: {57DB1BB6-48B3-4064-BB4F-8BA2B71F84BA} - \{E07198F9-D10E-4297-BC1B-C4BD667BA93B} -> No File <==== ATTENTION
Task: {B2AB7818-F9FE-4AA6-8718-267E114C56B9} - \{B82F74A0-6BF7-40C6-938C-B68715545F09} -> No File <==== ATTENTION
Task: {C700FD45-9E2D-434E-9D1C-88B8C3AB5C91} - \{7A6B60DC-727E-441E-A432-8D3357118DB9} -> No File <==== ATTENTION
Task: C:\Windows\Tasks\AutoKMS.job => C:\Windows\AutoKMS.exe
Task: C:\Windows\Tasks\AutoKMSDaily.job => C:\Windows\AutoKMS.exe
C:\Windows\AutoKMS.exe
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
C:\Users\O���ek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
EmptyTemp:
End
*****************
Processes closed successfully.
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\Offline Files => removed successfully
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\Offline Files => removed successfully
HKLM\SOFTWARE\Policies\Mozilla => removed successfully
HKLM\SOFTWARE\Policies\Google => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{059CF24B-F4F1-475A-9AFF-C809DA61BF54}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{059CF24B-F4F1-475A-9AFF-C809DA61BF54}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1EFED60A-4B05-447B-A045-B53B04BF8C1A}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1EFED60A-4B05-447B-A045-B53B04BF8C1A}" => removed successfully
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA => moved successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{40DDB543-8B81-4ADD-8A8A-1582A5402083}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{40DDB543-8B81-4ADD-8A8A-1582A5402083}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{0D29414D-C650-4E48-A71F-2385CD7D5081}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4AD55C2E-80EE-46C8-87D1-59ECACC85157}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4AD55C2E-80EE-46C8-87D1-59ECACC85157}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{23D73F70-966E-4707-A9DB-38B51B5C055B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{57DB1BB6-48B3-4064-BB4F-8BA2B71F84BA}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{57DB1BB6-48B3-4064-BB4F-8BA2B71F84BA}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{E07198F9-D10E-4297-BC1B-C4BD667BA93B}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{B2AB7818-F9FE-4AA6-8718-267E114C56B9}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{B2AB7818-F9FE-4AA6-8718-267E114C56B9}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{B82F74A0-6BF7-40C6-938C-B68715545F09}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C700FD45-9E2D-434E-9D1C-88B8C3AB5C91}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C700FD45-9E2D-434E-9D1C-88B8C3AB5C91}" => removed successfully
"HKLM\Software\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{7A6B60DC-727E-441E-A432-8D3357118DB9}" => removed successfully
C:\Windows\Tasks\AutoKMS.job => moved successfully
C:\Windows\Tasks\AutoKMSDaily.job => moved successfully
"C:\Windows\AutoKMS.exe" => not found
HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE => removed successfully
"C:\Users\O���ek\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini" => not found
=========== EmptyTemp: ==========
BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 66776006 B
Java, Flash, Steam htmlcache => 1128 B
Windows/system/drivers => 13199416 B
Edge => 0 B
Chrome => 38466140 B
Firefox => 477863557 B
Opera => 13885578 B
Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 0 B
systemprofile32 => 128 B
LocalService => 128 B
NetworkService => 128 B
Oťáček => 882386319 B
DefaultAppPool => 882386319 B
RecycleBin => 170617372 B
EmptyTemp: => 2.4 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 09:13:37 ====
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu-Ujíždí myš
Avast se vypína tak, jak popisujete. Smazáno. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
jarda.otta
- Návštěvník
- Příspěvky: 520
- Registrován: 25 bře 2005 21:21
Re: Prosím o kontrolu-Ujíždí myš
Díky Vám moc za pomoc. Zdá se, že problém vyřešen. Myška se uklidnila.Bylo to nějakou havětí? Samozřejmě posílám příspěvek a jsem Vám vděčnej za pomoc. Díky. Jste machři a smekám.
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu-Ujíždí myš
Jeden troják a pár zbytků. Vše smazáno. Za příspěvek děkujeme! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?