Mohl bych vás poprosit o preventivní kontrolu NB ? Žádné větší problémy nemám, pouze pomalá detekce USB zařízení....
Předem děkuji...
Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 30-11-2014
Ran by Akrobat (administrator) on AKROBAT-PC on 30-11-2014 19:44:59
Running from C:\Users\Akrobat\Desktop
Loaded Profile: Akrobat (Available profiles: Akrobat & Katka & Guest)
Platform: Windows 7 Home Premium Service Pack 1 (X64) OS Language: Čeština (Česká republika)
Internet Explorer Version 11
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\MDM.EXE
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Panda Security, S.L.) C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(forum.viry.cz) C:\Users\Akrobat\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ==================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM-x32\...\Run: [PSUAMain] => C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAMain.exe [37624 2014-10-16] (Panda Security, S.L.)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKU\S-1-5-21-3182304834-3978523306-3436111158-1000\...\Run: [Svátky a výro**í<*>] => C:\Program Files (x86)\OKsoftware\Svátky a výro
í\Vyroci.exe <===== ATTENTION (Value Name with invalid characters)
HKU\S-1-5-21-3182304834-3978523306-3436111158-1000\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-3182304834-3978523306-3436111158-1000\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-3182304834-3978523306-3436111158-1000\...\Policies\Explorer: [NoRecentDocsHistory] 1
HKU\S-1-5-21-3182304834-3978523306-3436111158-1000\...\Policies\Explorer: [NoInternetOpenWith] 1
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} => No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 2 (GFS Stub)] -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} => No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 3 (GFS Folder)] -> {16F3DD56-1AF5-4347-846D-7C10C4192619} => No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => No File
BootExecute: autocheck autochk * SmartDefragBootTime.exe
GroupPolicyUsers\S-1-5-21-3182304834-3978523306-3436111158-1017\User: Group Policy restriction detected <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dl ... ar=msnhome
HKU\S-1-5-21-3182304834-3978523306-3436111158-1000\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKU\S-1-5-21-3182304834-3978523306-3436111158-1000\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
HKU\S-1-5-21-3182304834-3978523306-3436111158-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x5DDBD07B18DECA01
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-3182304834-3978523306-3436111158-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKU\S-1-5-21-3182304834-3978523306-3436111158-1000 -> ToolbarSearchProviderProgress {96bd48dd-741b-41ae-ac4a-aff96ba00f7e}
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
DPF: HKLM {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/s ... wflash.cab
DPF: HKLM-x32 {02BCC737-B171-4746-94C9-0D8A0B2C0089} http://office.microsoft.com/sites/produ ... wsdc32.cab
DPF: HKLM-x32 {0742B9EF-8C83-41CA-BFBA-830A59E23533} https://oas.support.microsoft.com/ActiveX/MSDcode.cab
Handler-x32: http - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: http - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: https - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: msdaipp - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_11_9_900_117.dll ()
FF Plugin: @java.com/DTPlugin,version=10.45.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.45.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_9_900_117.dll ()
FF Plugin-x32: @java.com/DTPlugin,version=10.60.2 -> C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.60.2 -> C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE -> C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/OfficeLive,version=1.5 -> C:\Program Files (x86)\Microsoft\Office Live\npOLW.dll (Microsoft Corp.)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3502.0922 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3508.1109 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/WLPG,version=15.4.3538.0513 -> C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF Plugin-x32: @nokia.com/EnablerPlugin -> C:\Program Files (x86)\Nokia\Nokia Suite\npNokiaSuiteEnabler.dll ( )
FF Plugin-x32: @parallelgraphics.com/Cortona -> C:\Program Files (x86)\Common Files\ParallelGraphics\Cortona\npCortona.dll (ParallelGraphics)
FF Plugin-x32: @real.com/nppl3260;version=15.0.1.13 -> c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprjplug;version=15.0.1.13 -> c:\program files (x86)\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpchromebrowserrecordext;version=15.0.1.13 -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprphtml5videoshim;version=15.0.1.13 -> C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin-x32: @real.com/nprpjplug;version=15.0.1.13 -> c:\program files (x86)\real\realplayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF Plugin-x32: @software602.cz/602XML Filler -> C:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll (Software602 a.s.)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
Chrome:
=======
CHR HomePage: Default -> https://www.google.cz/
CHR StartupUrls: Default -> "https://www.google.cz/", "hxxp://www.seznam.cz/"
CHR Profile: C:\Users\Akrobat\AppData\Local\Google\Chrome\User Data\Default
CHR Extension: (Dokumenty Google) - C:\Users\Akrobat\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-08-25]
CHR Extension: (Disk Google) - C:\Users\Akrobat\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-08-25]
CHR Extension: (YouTube) - C:\Users\Akrobat\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-08-25]
CHR Extension: (Vyhledávání Google) - C:\Users\Akrobat\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-08-25]
CHR Extension: (AdBlock) - C:\Users\Akrobat\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-08-25]
CHR Extension: (Peněženka Google) - C:\Users\Akrobat\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2014-08-25]
CHR Extension: (Gmail) - C:\Users\Akrobat\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-08-25]
==================== Services (Whitelisted) =================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S4 602XML Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [85344 2011-10-10] (Software602 a.s.)
S3 ABBYY.Licensing.FineReader.Professional.11.0; C:\Program Files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe [821048 2013-06-17] (ABBYY InfoPoisk LLC)
S2 HPSLPSVC; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S2 HPSLPSVC; C:\Windows\SysWOW64\svchost.exe [20992 2009-07-14] (Microsoft Corporation)
S4 McciCMService; C:\Program Files (x86)\Common Files\Motive\McciCMService.exe [303104 2007-10-15] (Motive Communications, Inc.) [File not signed]
R2 NanoServiceMain; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSANHost.exe [142072 2014-10-13] (Panda Security, S.L.)
R2 PandaAgent; C:\Program Files (x86)\Panda Security\Panda Devices Agent\AgentSvc.exe [66808 2014-10-09] (Panda Security, S.L.)
R2 PSUAService; C:\Program Files (x86)\Panda Security\Panda Security Protection\PSUAService.exe [38136 2014-10-16] (Panda Security, S.L.)
S3 SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [517096 2010-02-19] (Adobe Systems Incorporated) [File not signed]
==================== Drivers (Whitelisted) ====================
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
S0 amdkmafd; C:\Windows\System32\DRIVERS\amdkmafd.sys [21600 2013-03-14] (Advanced Micro Devices, Inc.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 arusb_lhx; C:\Windows\System32\DRIVERS\arusb_lhx.sys [539136 2008-07-24] (Atheros Communications, Inc.) [File not signed]
S3 arusb_win7x; C:\Windows\System32\DRIVERS\arusb_win7x.sys [769024 2009-11-26] (Atheros Communications, Inc.)
S3 cpudrv64; C:\Program Files (x86)\SystemRequirementsLab\cpudrv64.sys [17864 2009-12-18] ()
U5 FontCache3.0.0.0; C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [42856 2010-11-05] (Microsoft Corporation)
S3 FsUsbExDisk; C:\Windows\SysWOW64\FsUsbExDisk.SYS [37344 2013-02-05] () [File not signed]
S3 gHidPnp; C:\Windows\System32\Drivers\gHidPnp.Sys [25600 2011-10-26] ()
S3 gMouUsb; C:\Windows\System32\DRIVERS\gMouUsb.sys [14336 2009-11-02] ()
S3 MREMP50; C:\Program Files (x86)\Common Files\Motive\MREMP50.sys [21248 2008-03-29] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
S3 MRESP50; C:\Program Files (x86)\Common Files\Motive\MRESP50.sys [20096 2008-03-29] (Printing Communications Assoc., Inc. (PCAUSA)) [File not signed]
R0 MxEFUF; C:\Windows\System32\DRIVERS\MxEFUF64.sys [157696 2011-10-20] (Matrox Graphics Inc.)
R1 NNSALPC; C:\Windows\System32\DRIVERS\NNSAlpc.sys [96800 2014-06-04] (Panda Security, S.L.)
R1 NNSHTTP; C:\Windows\System32\DRIVERS\NNSHttp.sys [162336 2014-06-18] (Panda Security, S.L.)
R1 NNSHTTPS; C:\Windows\System32\DRIVERS\NNSHttps.sys [112160 2014-06-04] (Panda Security, S.L.)
R1 NNSIDS; C:\Windows\System32\DRIVERS\NNSIds.sys [115232 2014-06-04] (Panda Security, S.L.)
R1 NNSNAHSL; C:\Windows\System32\DRIVERS\NNSNAHSL.sys [46336 2014-01-16] (Panda Security, S.L.)
R1 NNSPICC; C:\Windows\System32\DRIVERS\NNSPicc.sys [95776 2014-06-04] (Panda Security, S.L.)
R1 NNSPIHSW; C:\Windows\System32\DRIVERS\NNSPihsw.sys [70176 2014-06-04] (Panda Security, S.L.)
R1 NNSPOP3; C:\Windows\System32\DRIVERS\NNSPop3.sys [125984 2014-06-04] (Panda Security, S.L.)
R1 NNSPROT; C:\Windows\System32\DRIVERS\NNSProt.sys [306720 2014-06-04] (Panda Security, S.L.)
R1 NNSPRV; C:\Windows\System32\DRIVERS\NNSPrv.sys [169504 2014-06-04] (Panda Security, S.L.)
R1 NNSSMTP; C:\Windows\System32\DRIVERS\NNSSmtp.sys [115744 2014-06-04] (Panda Security, S.L.)
R1 NNSSTRM; C:\Windows\System32\DRIVERS\NNSStrm.sys [261152 2014-06-04] (Panda Security, S.L.)
R1 NNSTLSC; C:\Windows\System32\DRIVERS\NNSTlsc.sys [109088 2014-06-04] (Panda Security, S.L.)
R3 pimou; C:\Windows\System32\DRIVERS\pimou.sys [22856 2013-03-21] (Christian Gulden)
R2 PSINAflt; C:\Windows\System32\DRIVERS\PSINAflt.sys [163088 2014-10-13] (Panda Security, S.L.)
R2 PSINFile; C:\Windows\System32\DRIVERS\PSINFile.sys [121616 2014-10-13] (Panda Security, S.L.)
R1 PSINKNC; C:\Windows\System32\DRIVERS\psinknc.sys [195616 2014-07-24] (Panda Security, S.L.)
R2 PSINProc; C:\Windows\System32\DRIVERS\PSINProc.sys [122400 2014-07-24] (Panda Security, S.L.)
R2 PSINProt; C:\Windows\System32\DRIVERS\PSINProt.sys [132128 2014-07-24] (Panda Security, S.L.)
R2 PSINReg; C:\Windows\System32\DRIVERS\PSINReg.sys [107792 2014-10-13] (Panda Security, S.L.)
R3 PSKMAD; C:\Windows\System32\DRIVERS\PSKMAD.sys [60400 2014-03-25] (Panda Security, S.L.)
R3 seehcri; C:\Windows\System32\DRIVERS\seehcri.sys [34032 2011-12-14] (Sony Ericsson Mobile Communications)
R0 SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [21184 2014-06-04] (IObit)
S3 SmbDrv; C:\Windows\System32\DRIVERS\Smb_driver.sys [21264 2012-02-23] (Synaptics Incorporated)
R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [31472 2014-09-11] (Synaptics Incorporated)
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [381440 2013-11-11] (Duplex Secure Ltd.)
S1 StarOpen; C:\Windows\SysWow64\Drivers\StarOpen.sys [5632 2006-07-24] () [File not signed]
U3 akg4pl93; C:\Windows\System32\Drivers\akg4pl93.sys [0 ] (Intel Corporation)
S3 dgderdrv; System32\drivers\dgderdrv.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
==================== One Month Created Files and Folders ========
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-30 19:44 - 2014-11-30 19:51 - 00017588 _____ () C:\Users\Akrobat\Desktop\FRST.txt
2014-11-30 19:44 - 2014-11-30 19:45 - 00000000 ____D () C:\FRST
2014-11-30 19:43 - 2014-11-30 19:43 - 00112640 _____ (forum.viry.cz) C:\Users\Akrobat\Desktop\FRSTLauncher.exe
2014-11-30 19:41 - 2014-11-30 19:41 - 02117120 _____ (Farbar) C:\Users\Akrobat\Desktop\FRST64.exe
2014-11-30 18:08 - 2014-11-26 20:40 - 00000000 ____D () C:\Users\Akrobat\Desktop\Firemní akce
2014-11-30 17:29 - 2014-11-30 17:30 - 04184008 _____ (Kaspersky Lab ZAO) C:\Users\Akrobat\Downloads\tdsskiller.exe
2014-11-30 17:05 - 2014-11-30 17:39 - 604637512 _____ () C:\Users\Akrobat\Downloads\Firemní-akce.rar
2014-11-30 16:39 - 2014-11-30 16:39 - 00000126 _____ () C:\Users\Akrobat\Desktop\Nastavení sítě-nové-VDSL-O2.txt
2014-11-29 20:05 - 2014-11-29 20:05 - 00000000 ____D () C:\Users\Katka.Akrobat-PC\Desktop\vánoční písničky pro gagi
2014-11-29 06:33 - 2014-11-29 06:35 - 02148864 _____ () C:\Users\Akrobat\Downloads\adwcleaner_4.102 (1).exe
2014-11-29 06:32 - 2014-11-29 06:35 - 02148864 _____ () C:\Users\Akrobat\Desktop\adwcleaner_4.102.exe
2014-11-29 06:16 - 2014-11-29 07:34 - 00000000 ____D () C:\Users\Akrobat\Desktop\mbar
2014-11-29 06:13 - 2014-11-29 06:13 - 16448208 _____ (Malwarebytes Corp.) C:\Users\Akrobat\Desktop\mbar-1.08.2.1001.exe
2014-11-27 18:16 - 2014-11-27 18:16 - 00000039 _____ () C:\Users\Akrobat\Desktop\aaa.txt
2014-11-27 18:03 - 2014-11-27 18:03 - 03876512 _____ (http://goforfiles.com) C:\Users\Akrobat\Downloads\TomTom_Maps_of_Europe_East_930.5560_Retail_NAViGON.rar_downloader (1).exe
2014-11-27 18:03 - 2014-11-27 18:03 - 03855896 _____ (New Monte Inc) C:\Users\Akrobat\Downloads\TomTom_Maps_of_Europe_East_930.5560_Retail_NAViGON.rar_downloader.exe
2014-11-27 16:48 - 2014-11-27 16:48 - 00000000 ____D () C:\Users\Akrobat\Desktop\Pavel-tchán-TT
2014-11-25 06:42 - 2014-03-25 14:15 - 00060400 _____ (Panda Security, S.L.) C:\Windows\system32\Drivers\PSKMAD.sys
2014-11-23 06:36 - 2014-11-30 18:26 - 00002576 _____ () C:\Windows\setupact.log
2014-11-23 06:36 - 2014-11-23 06:37 - 05054696 _____ () C:\Windows\system32\FNTCACHE.DAT
2014-11-23 06:36 - 2014-11-23 06:36 - 00000000 _____ () C:\Windows\setuperr.log
2014-11-23 06:34 - 2014-11-23 06:34 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Free Antivirus
2014-11-23 06:32 - 2014-11-23 06:34 - 00143064 _____ () C:\Users\Akrobat\AppData\Local\GDIPFONTCACHEV1.DAT
2014-11-23 06:29 - 2014-11-23 06:29 - 01329336 _____ () C:\Users\Akrobat\Downloads\PANDAFREEAV.exe
2014-11-22 16:26 - 2014-11-22 16:26 - 13087456 _____ (Microsoft Corporation) C:\Users\Akrobat\Downloads\Silverlight_x64.exe
2014-11-22 07:32 - 2014-11-22 07:34 - 149971472 _____ () C:\Users\Akrobat\Downloads\avira-free-antivirus-2014_14.0.7.306.exe
2014-11-22 07:17 - 2014-11-22 07:17 - 04583464 _____ (Avira Operations GmbH & Co. KG) C:\Users\Akrobat\Downloads\avira_en_av___ws.exe
2014-11-21 18:42 - 2014-11-21 18:42 - 00000000 __SHD () C:\Users\Akrobat\AppData\Local\EmieBrowserModeList
2014-11-19 18:39 - 2014-11-19 18:42 - 00000000 ____D () C:\Users\Akrobat\Desktop\2014-10-28-výlet na Buchlov
2014-11-19 18:37 - 2014-11-19 18:38 - 00000000 ____D () C:\Users\Akrobat\Desktop\2014-11-17-Modrá
2014-11-15 18:12 - 2014-11-15 18:12 - 00000948 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d000f76724b72c.job
2014-11-13 18:01 - 2014-11-13 18:01 - 00000000 ____D () C:\Users\Akrobat\Downloads\Microsoft-Office-2007-CZ-full
2014-11-13 17:00 - 2014-11-13 17:55 - 511252796 _____ () C:\Users\Akrobat\Downloads\Microsoft-Office-2007-CZ-full.rar
2014-11-12 19:00 - 2014-10-14 03:13 - 03241984 _____ (Microsoft Corporation) C:\Windows\system32\msi.dll
2014-11-12 19:00 - 2014-10-14 02:50 - 02363904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msi.dll
2014-11-12 19:00 - 2014-09-25 03:08 - 00371712 _____ (Microsoft Corporation) C:\Windows\system32\qdvd.dll
2014-11-12 19:00 - 2014-09-25 02:40 - 00519680 _____ (Microsoft Corporation) C:\Windows\SysWOW64\qdvd.dll
2014-11-12 19:00 - 2014-09-09 23:11 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll
2014-11-12 19:00 - 2014-09-09 22:47 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\tzres.dll
2014-11-12 18:59 - 2014-09-05 03:11 - 06584320 _____ (Microsoft Corporation) C:\Windows\system32\mstscax.dll
2014-11-12 18:59 - 2014-09-05 02:52 - 05703168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mstscax.dll
2014-11-12 18:38 - 2014-11-12 18:41 - 00000000 ____D () C:\d51eae53501c5f7c0f17a26c198d
2014-11-12 18:14 - 2014-08-29 03:07 - 03179520 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorets.dll
2014-11-12 18:14 - 2014-08-12 03:02 - 00878080 _____ (Microsoft Corporation) C:\Windows\system32\IMJP10K.DLL
2014-11-12 18:14 - 2014-08-12 02:36 - 00701440 _____ (Microsoft Corporation) C:\Windows\SysWOW64\IMJP10K.DLL
2014-11-12 18:13 - 2014-11-07 20:49 - 00388272 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2014-11-12 18:13 - 2014-11-07 20:23 - 00341168 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iedkcs32.dll
2014-11-12 18:13 - 2014-11-06 05:04 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2014-11-12 18:13 - 2014-11-06 05:03 - 25110016 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2014-11-12 18:13 - 2014-11-06 05:03 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2014-11-12 18:13 - 2014-11-06 04:47 - 00066560 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2014-11-12 18:13 - 2014-11-06 04:46 - 00580096 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2014-11-12 18:13 - 2014-11-06 04:46 - 00048640 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2014-11-12 18:13 - 2014-11-06 04:44 - 00088064 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2014-11-12 18:13 - 2014-11-06 04:43 - 02884096 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2014-11-12 18:13 - 2014-11-06 04:36 - 00054784 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2014-11-12 18:13 - 2014-11-06 04:35 - 00034304 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2014-11-12 18:13 - 2014-11-06 04:31 - 00633856 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2014-11-12 18:13 - 2014-11-06 04:30 - 00144384 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2014-11-12 18:13 - 2014-11-06 04:30 - 00114688 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2014-11-12 18:13 - 2014-11-06 04:29 - 00814080 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2014-11-12 18:13 - 2014-11-06 04:28 - 02724864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb
2014-11-12 18:13 - 2014-11-06 04:23 - 06040064 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2014-11-12 18:13 - 2014-11-06 04:20 - 00968704 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2014-11-12 18:13 - 2014-11-06 04:16 - 00490496 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2014-11-12 18:13 - 2014-11-06 04:13 - 00501248 _____ (Microsoft Corporation) C:\Windows\SysWOW64\vbscript.dll
2014-11-12 18:13 - 2014-11-06 04:13 - 00062464 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iesetup.dll
2014-11-12 18:13 - 2014-11-06 04:12 - 00047616 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieetwproxystub.dll
2014-11-12 18:13 - 2014-11-06 04:10 - 19781632 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll
2014-11-12 18:13 - 2014-11-06 04:10 - 00064000 _____ (Microsoft Corporation) C:\Windows\SysWOW64\MshtmlDac.dll
2014-11-12 18:13 - 2014-11-06 04:07 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-11-12 18:13 - 2014-11-06 04:05 - 02277376 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll
2014-11-12 18:13 - 2014-11-06 04:04 - 00047104 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll
2014-11-12 18:13 - 2014-11-06 04:03 - 00030720 _____ (Microsoft Corporation) C:\Windows\SysWOW64\iernonce.dll
2014-11-12 18:13 - 2014-11-06 04:02 - 00199680 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2014-11-12 18:13 - 2014-11-06 04:00 - 00478208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll
2014-11-12 18:13 - 2014-11-06 04:00 - 00092160 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2014-11-12 18:13 - 2014-11-06 03:59 - 00115712 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieUnatt.exe
2014-11-12 18:13 - 2014-11-06 03:58 - 00620032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9diag.dll
2014-11-12 18:13 - 2014-11-06 03:57 - 00316928 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2014-11-12 18:13 - 2014-11-06 03:48 - 00418304 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtmsft.dll
2014-11-12 18:13 - 2014-11-06 03:42 - 00060416 _____ (Microsoft Corporation) C:\Windows\SysWOW64\JavaScriptCollectionAgent.dll
2014-11-12 18:13 - 2014-11-06 03:41 - 00800768 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2014-11-12 18:13 - 2014-11-06 03:41 - 00716800 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2014-11-12 18:13 - 2014-11-06 03:39 - 01359360 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2014-11-12 18:13 - 2014-11-06 03:38 - 02124288 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2014-11-12 18:13 - 2014-11-06 03:37 - 00168960 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msrating.dll
2014-11-12 18:13 - 2014-11-06 03:36 - 00076288 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll
2014-11-12 18:13 - 2014-11-06 03:34 - 00285696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dxtrans.dll
2014-11-12 18:13 - 2014-11-06 03:30 - 14390272 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2014-11-12 18:13 - 2014-11-06 03:22 - 00688640 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll
2014-11-12 18:13 - 2014-11-06 03:21 - 04298240 _____ (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll
2014-11-12 18:13 - 2014-11-06 03:21 - 02051072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\inetcpl.cpl
2014-11-12 18:13 - 2014-11-06 03:20 - 01155072 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mshtmlmedia.dll
2014-11-12 18:13 - 2014-11-06 03:17 - 02365440 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2014-11-12 18:13 - 2014-11-06 03:04 - 01550336 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2014-11-12 18:13 - 2014-11-06 03:03 - 12819456 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll
2014-11-12 18:13 - 2014-11-06 02:53 - 00799232 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2014-11-12 18:13 - 2014-11-06 02:52 - 01892864 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll
2014-11-12 18:13 - 2014-11-06 02:48 - 01310208 _____ (Microsoft Corporation) C:\Windows\SysWOW64\urlmon.dll
2014-11-12 18:13 - 2014-11-06 02:47 - 00708096 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ieapfltr.dll
2014-11-12 18:13 - 2014-09-04 06:23 - 00424448 _____ (Microsoft Corporation) C:\Windows\system32\rastls.dll
2014-11-12 18:13 - 2014-09-04 06:04 - 00372736 _____ (Microsoft Corporation) C:\Windows\SysWOW64\rastls.dll
2014-11-12 18:13 - 2014-07-17 03:07 - 00455168 _____ (Microsoft Corporation) C:\Windows\system32\winlogon.exe
2014-11-12 18:13 - 2014-07-17 03:07 - 00235520 _____ (Microsoft Corporation) C:\Windows\system32\winsta.dll
2014-11-12 18:13 - 2014-07-17 03:07 - 00150528 _____ (Microsoft Corporation) C:\Windows\system32\rdpcorekmts.dll
2014-11-12 18:13 - 2014-07-17 02:40 - 00157696 _____ (Microsoft Corporation) C:\Windows\SysWOW64\winsta.dll
2014-11-12 18:13 - 2014-07-17 02:21 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\rdpwd.sys
2014-11-12 18:13 - 2014-07-17 02:21 - 00039936 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\tssecsrv.sys
2014-11-12 18:12 - 2014-10-25 02:57 - 00077824 _____ (Microsoft Corporation) C:\Windows\system32\packager.dll
2014-11-12 18:12 - 2014-10-25 02:32 - 00067584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\packager.dll
2014-11-12 18:12 - 2014-10-18 03:05 - 00861696 _____ (Microsoft Corporation) C:\Windows\system32\oleaut32.dll
2014-11-12 18:12 - 2014-10-18 02:33 - 00571904 _____ (Microsoft Corporation) C:\Windows\SysWOW64\oleaut32.dll
2014-11-12 18:12 - 2014-10-14 03:16 - 00155064 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2014-11-12 18:12 - 2014-10-14 03:13 - 00683520 _____ (Microsoft Corporation) C:\Windows\system32\termsrv.dll
2014-11-12 18:12 - 2014-10-14 03:12 - 01460736 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2014-11-12 18:12 - 2014-10-14 03:09 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2014-11-12 18:12 - 2014-10-14 03:07 - 00681984 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2014-11-12 18:12 - 2014-10-14 02:50 - 00022016 _____ (Microsoft Corporation) C:\Windows\SysWOW64\secur32.dll
2014-11-12 18:12 - 2014-10-14 02:49 - 00096768 _____ (Microsoft Corporation) C:\Windows\SysWOW64\sspicli.dll
2014-11-12 18:12 - 2014-10-14 02:47 - 00146432 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msaudite.dll
2014-11-12 18:12 - 2014-10-14 02:46 - 00681984 _____ (Microsoft Corporation) C:\Windows\SysWOW64\adtschema.dll
2014-11-12 18:12 - 2014-10-03 03:12 - 00500224 _____ (Microsoft Corporation) C:\Windows\system32\AUDIOKSE.dll
2014-11-12 18:12 - 2014-10-03 03:11 - 00680960 _____ (Microsoft Corporation) C:\Windows\system32\audiosrv.dll
2014-11-12 18:12 - 2014-10-03 03:11 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\AudioEng.dll
2014-11-12 18:12 - 2014-10-03 03:11 - 00296448 _____ (Microsoft Corporation) C:\Windows\system32\AudioSes.dll
2014-11-12 18:12 - 2014-10-03 03:11 - 00284672 _____ (Microsoft Corporation) C:\Windows\system32\EncDump.dll
2014-11-12 18:12 - 2014-10-03 02:44 - 00442880 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AUDIOKSE.dll
2014-11-12 18:12 - 2014-10-03 02:44 - 00374784 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioEng.dll
2014-11-12 18:12 - 2014-10-03 02:44 - 00195584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\AudioSes.dll
2014-11-12 18:12 - 2014-09-19 10:42 - 00728064 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2014-11-12 18:12 - 2014-09-19 10:42 - 00342016 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2014-11-12 18:12 - 2014-09-19 10:42 - 00314880 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2014-11-12 18:12 - 2014-09-19 10:42 - 00309760 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2014-11-12 18:12 - 2014-09-19 10:42 - 00210944 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2014-11-12 18:12 - 2014-09-19 10:42 - 00086528 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2014-11-12 18:12 - 2014-09-19 10:42 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2014-11-12 18:12 - 2014-09-19 10:23 - 00550912 _____ (Microsoft Corporation) C:\Windows\SysWOW64\kerberos.dll
2014-11-12 18:12 - 2014-09-19 10:23 - 00259584 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msv1_0.dll
2014-11-12 18:12 - 2014-09-19 10:23 - 00248832 _____ (Microsoft Corporation) C:\Windows\SysWOW64\schannel.dll
2014-11-12 18:12 - 2014-09-19 10:23 - 00221184 _____ (Microsoft Corporation) C:\Windows\SysWOW64\ncrypt.dll
2014-11-12 18:12 - 2014-09-19 10:23 - 00172032 _____ (Microsoft Corporation) C:\Windows\SysWOW64\wdigest.dll
2014-11-12 18:12 - 2014-09-19 10:23 - 00065536 _____ (Microsoft Corporation) C:\Windows\SysWOW64\TSpkg.dll
2014-11-12 18:12 - 2014-09-19 10:23 - 00017408 _____ (Microsoft Corporation) C:\Windows\SysWOW64\credssp.dll
2014-11-12 18:12 - 2014-08-21 07:43 - 01882624 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2014-11-12 18:12 - 2014-08-21 07:40 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2014-11-12 18:12 - 2014-08-21 07:26 - 01237504 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3.dll
2014-11-12 18:12 - 2014-08-21 07:23 - 00002048 _____ (Microsoft Corporation) C:\Windows\SysWOW64\msxml3r.dll
2014-11-12 18:12 - 2014-06-18 23:23 - 01943696 _____ (Microsoft Corporation) C:\Windows\system32\dfshim.dll
2014-11-12 18:12 - 2014-06-18 23:23 - 01131664 _____ (Microsoft Corporation) C:\Windows\SysWOW64\dfshim.dll
2014-11-12 18:12 - 2014-06-18 23:23 - 00156824 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscorier.dll
2014-11-12 18:12 - 2014-06-18 23:23 - 00156312 _____ (Microsoft Corporation) C:\Windows\system32\mscorier.dll
2014-11-12 18:12 - 2014-06-18 23:23 - 00081560 _____ (Microsoft Corporation) C:\Windows\SysWOW64\mscories.dll
2014-11-12 18:12 - 2014-06-18 23:23 - 00073880 _____ (Microsoft Corporation) C:\Windows\system32\mscories.dll
2014-11-12 18:10 - 2014-10-10 01:57 - 03198976 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-11-08 16:23 - 2014-11-22 07:20 - 00000000 ____D () C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Panda Cloud Antivirus
2014-11-05 18:21 - 2014-11-05 18:28 - 00000000 ____D () C:\Users\Akrobat\Desktop\Sygic
2014-11-05 18:17 - 2014-11-05 18:17 - 00000000 ____D () C:\Users\Akrobat\Downloads\S-14.6.6
2014-11-05 18:15 - 2014-11-05 18:16 - 72099713 _____ () C:\Users\Akrobat\Downloads\S-14.6.6.part2.rar
2014-11-05 18:07 - 2014-11-05 18:12 - 209715200 _____ () C:\Users\Akrobat\Downloads\S-14.6.6.part1.rar
2014-11-05 18:02 - 2014-11-05 18:04 - 00000000 ____D () C:\Users\Akrobat\Desktop\Kosmos
2014-11-05 17:33 - 2014-11-05 17:33 - 00000000 ____D () C:\Users\Akrobat\Desktop\Dynavix-TomTom
2014-11-05 09:54 - 2014-11-05 09:55 - 00000000 ____D () C:\Users\Katka.Akrobat-PC\Downloads\Nová složka (2)
2014-11-04 20:57 - 2014-11-04 20:58 - 07438052 _____ () C:\Users\Akrobat\Downloads\roxetta-preview-sharing-my-wife.wmv
2014-11-02 12:10 - 2014-11-02 12:10 - 01324544 _____ () C:\Users\Akrobat\Downloads\Patcher 3.4.2.exe
2014-11-02 12:07 - 2014-11-02 12:07 - 01347063 _____ () C:\Users\Akrobat\Downloads\Patcher_AutoMapa+Návod.rar
2014-11-01 08:20 - 2014-11-01 08:20 - 00005104 _____ () C:\Users\Akrobat\Downloads\9bbb1a6346feaec202256d7b96d9153c.dlc
==================== One Month Modified Files and Folders =======
(If an entry is included in the fixlist, the file\folder will be moved.)
2014-11-30 18:33 - 2009-07-14 05:45 - 00023568 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-11-30 18:33 - 2009-07-14 05:45 - 00023568 ____H () C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-11-30 18:30 - 2009-07-14 16:18 - 00672998 _____ () C:\Windows\system32\perfh005.dat
2014-11-30 18:30 - 2009-07-14 16:18 - 00143748 _____ () C:\Windows\system32\perfc005.dat
2014-11-30 18:30 - 2009-07-14 06:13 - 01594374 _____ () C:\Windows\system32\PerfStringBackup.INI
2014-11-30 18:29 - 2014-09-23 04:17 - 00969095 _____ () C:\Windows\WindowsUpdate.log
2014-11-29 07:34 - 2013-11-05 20:38 - 00000000 ____D () C:\ProgramData\Malwarebytes' Anti-Malware (portable)
2014-11-29 06:17 - 2014-06-24 18:59 - 00135384 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2014-11-29 06:16 - 2013-11-05 20:37 - 00096472 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbamchameleon.sys
2014-11-27 18:28 - 2010-04-18 19:41 - 00000000 ____D () C:\Rapidshare
2014-11-23 18:27 - 2013-08-06 14:33 - 00000000 ____D () C:\Users\Katka.Akrobat-PC\AppData\Roaming\.minecraft
2014-11-23 07:33 - 2014-09-23 05:18 - 00143064 _____ () C:\Users\Katka.Akrobat-PC\AppData\Local\GDIPFONTCACHEV1.DAT
2014-11-23 07:33 - 2012-11-10 17:10 - 00000000 ____D () C:\Users\Katka.Akrobat-PC\AppData\Roaming\Panda Security
2014-11-23 06:34 - 2012-03-21 22:46 - 00000000 ____D () C:\Users\Akrobat\AppData\Roaming\Panda Security
2014-11-23 06:34 - 2012-03-21 22:45 - 00000000 ____D () C:\ProgramData\Panda Security
2014-11-23 06:34 - 2012-03-21 22:45 - 00000000 ____D () C:\Program Files (x86)\Panda Security
2014-11-22 07:20 - 2010-04-23 12:43 - 00000000 ____D () C:\Users\Akrobat\AppData\Roaming\DAEMON Tools Lite
2014-11-18 19:15 - 2012-11-06 18:29 - 00000000 ____D () C:\FFOutput
2014-11-16 13:27 - 2011-05-03 14:58 - 00000000 ____D () C:\Katka-fotky
2014-11-15 18:12 - 2014-10-21 03:19 - 00000948 _____ () C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cfecd564d0aff3.job
2014-11-15 17:32 - 2012-12-25 20:28 - 00000000 ____D () C:\Users\Katka.Akrobat-PC\Documents\SelfMV
2014-11-13 16:35 - 2010-04-20 13:22 - 00000000 ____D () C:\Download_PR
2014-11-12 18:31 - 2013-08-15 20:53 - 00000000 ____D () C:\Windows\system32\MRT
2014-11-08 11:22 - 2010-07-27 15:27 - 00000000 ____D () C:\Users\Katka.Akrobat-PC\AppData\Roaming\Skype
2014-11-06 18:15 - 2010-04-20 07:21 - 00000000 ____D () C:\Users\Public\Documents\Pinnacle
2014-11-05 18:00 - 2014-10-15 18:15 - 00000000 ____D () C:\Program Files (x86)\Electronic Arts
2014-11-05 17:59 - 2011-11-13 16:56 - 00000000 ____D () C:\JDownloader
2014-11-01 08:23 - 2011-11-13 16:54 - 00000000 ____D () C:\Program Files (x86)\JDownloader
2014-10-31 23:26 - 2010-04-17 12:34 - 103374192 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
Files to move or delete:
====================
C:\Windows\Tasks\{16C5B1FA-1F88-46AE-A14B-EF5ECEF821B3}.job
Some content of TEMP:
====================
C:\Users\Akrobat\AppData\Local\temp\avgnt.exe
C:\Users\Akrobat\AppData\Local\temp\{715B05FD-5868-4E22-A11A-859537C03AC0}.exe
C:\Users\Katka.Akrobat-PC\AppData\Local\temp\avgnt.exe
==================== Bamital & volsnap Check =================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\System32\winlogon.exe => File is digitally signed
C:\Windows\System32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\System32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\System32\services.exe => File is digitally signed
C:\Windows\System32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\System32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\System32\rpcss.dll => File is digitally signed
C:\Windows\System32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2011-12-18 13:45
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
Drive c: () (Fixed) (Total:222.04 GB) (Free:11.31 GB) NTFS
Available physical RAM: 1272.05 MB
Total physical RAM: 2008.6 MB
Percentage of memory in use: 36%
==================== MBR and Partition Table ==================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 232.9 GB) (Disk ID: 7EF97EF9)
Partition 1: (Active) - (Size=9.8 GB) - (Type=0C)
Partition 2: (Not Active) - (Size=222 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=1.1 GB) - (Type=12)
==================== Scheduled Tasks (whitelisted) ==================
Task: C:\Windows\Tasks\AdobeAAMUpdater-1.0-Akrobat-PC-Akrobat.job => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\updaterstartuputility.exe
Task: C:\Windows\Tasks\Application Starter - f1375f225883e83d52e8db9690775c3c.job => C:\Program Files (x86)\Innovative Solutions\DriverMax\innostp.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cfecd564d0aff3.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d000f76724b72c.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\HP Photosmart 5510 series.exe_{A7403014-F3BF-4320-AF26-85F29E36E812}.job => C:\Program Files\HP\HP Photosmart 5510 series\Bin\HP Photosmart 5510 series.exe
Task: C:\Windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-3182304834-3978523306-3436111158-1000.job => C:\Program Files (x86)\Real\RealUpgrade\realupgrade.exe
Task: C:\Windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-3182304834-3978523306-3436111158-1017.job => C:\Program Files (x86)\Real\RealUpgrade\realupgrade.exe
Task: C:\Windows\Tasks\ReclaimerResumeInstall_Akrobat.job => C:\Users\Akrobat\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.30\agent\rnupgagent.exe
Task: C:\Windows\Tasks\ScanToPCActivationApp.exe_{E76BDC5A-CF0E-4286-A269-418F0AB47FF5}.job => C:\Program Files\HP\HP Photosmart 5510 series\Bin\ScanToPCActivationApp.exe
Task: C:\Windows\Tasks\Toolbox.exe_{64696B23-532B-4717-9B90-FEF251844F9B}.job => C:\Program Files\HP\HP Photosmart 5510 series\Bin\Toolbox.exe
Task: C:\Windows\Tasks\User_Feed_Synchronization-{BDCE70B9-751D-48F5-9874-40A91D6BB061}.job => C:\Windows\system32\msfeedssync.exe
Task: C:\Windows\Tasks\{16C5B1FA-1F88-46AE-A14B-EF5ECEF821B3}.job => c:\program files (x86)\internet explorer\iexplore.exe
==================== Alternate Data Streams (whitelisted) ==================
AlternateDataStreams: C:\ProgramData\Temp:C7D0F96D
==================== Security Center ==================
AV: Panda Free Antivirus (Disabled - Up to date) {3456760B-FDAA-FFFD-06C2-7BB528D2066C}
AS: Panda Free Antivirus (Disabled - Up to date) {8F3797EF-DB90-F073-3C72-40C753554CD1}
AS: Windows Defender (Disabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: Panda Firewall (Disabled) {0C6DF72E-B7C5-FEA5-2D9D-D280D6014117}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\Akrobat\Desktop" je 5011 MB.
***** Startup Programs *****
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Ad-Aware Browsing Protection
"C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe" [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher
"C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0
"C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS4ServiceManager
"C:\Program Files (x86)\ABBYY FineReader 11\Bonus.ScreenshotReader.exe" /autorun [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5ServiceManager
"C:\Windows\system32\ctfmon.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 4
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AGEIA PhysX SysTray
"C:\Program Files (x86)\Innovative Solutions\DriverMax\drivermax.exe" -RESTART [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AutoStartNPSAgent
C:\Program Files (x86)\MyHeritage\Bin\FTBCheckUpdates.exe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Bonus.SSR.FR11
"C:\Program Files (x86)\Windows Live\Family Safety\fsui.exe" -autorun [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe
"C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.autoupdate
C:\Windows\system32\hkcmd.exe [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop
C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite
C:\Windows\system32\igfxtray.exe [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DriverMax_RESTART
C:\Program Files (x86)\Samsung\Kies\KiesAirMessage.exe -startup [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Energy Management
C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EnergyCut
C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EnergyUtility
C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe -tray [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Family Tree Builder Update
C:\Windows\system32\igfxpers.exe [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\fssui
"C:\Program Files (x86)\Software602\Print2PDF\Print2PDF.exe" /server [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor
C:\Program Files\Windows Sidebar\sidebar.exe /autoRun [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray
C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesAirMessage
"C:\Program Files (x86)\real\realplayer\update\realsched.exe" -osboot [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPreload
C:\Program Files (x86)\TO2WCM\McciTrayApp.exe
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent
"C:\Users\Akrobat\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaMServer
%windir%\WindowsMobile\wmdc.exe [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaOviSuite2
"C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXE"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaSuite.exe
"C:\Program Files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXEC:\Program Files\Zoner\Photo Studio 16\Program32\ZPSService.exe" [x]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Persistence
Re�im ECHO je vypnut.
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Print2PDF Print Monitor
Re�im ECHO je vypnut.
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Rainlendar2
Re�im ECHO je vypnut.
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar
Re�im ECHO je vypnut.
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype
Re�im ECHO je vypnut.
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SmartAudio
Re�im ECHO je vypnut.
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched
Re�im ECHO je vypnut.
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard
Re�im ECHO je vypnut.
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe
Re�im ECHO je vypnut.
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TO2WCM_McciTrayApp
Re�im ECHO je vypnut.
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent
Re�im ECHO je vypnut.
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\vProt
Re�im ECHO je vypnut.
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Mobile Device Center
Re�im ECHO je vypnut.
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows7FirewallControl
Re�im ECHO je vypnut.
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zoner Photo Studio Autoupdate
Re�im ECHO je vypnut.
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zoner Photo Studio Service 16
Re�im ECHO je vypnut.
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTTray.exe
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
DefaultOutboundAction REG_DWORD 0x0
DefaultInboundAction REG_DWORD 0x1
DoNotAllowExceptions REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1
DisableUnicastResponsesToMulticastBroadcast REG_DWORD 0x0
DoNotAllowExceptions REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000
==================== End Of Log ==============================
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Preventivka NB
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Preventivka NB
- Přílohy
-
- Addition.rar
- (15.04 KiB) Staženo 68 x
Re: Preventivka NB
Dobry vecer 
Podivame se na virovou stranku, takze Vam v ramci cisteni budou vyprazdneny docasne adresare (vcetne Kose). Nemyslim si, ze by zrovna tento problem byl zpusoben viry, ale procistime a uvidime 
Poustel jste TDSSKiller nebo MBAR? Nasli neco? Pripadne vlozte logy.
Ulozte na plochu AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Podivame se na virovou stranku, takze Vam v ramci cisteni budou vyprazdneny docasne adresare (vcetne Kose). Nemyslim si, ze by zrovna tento problem byl zpusoben viry, ale procistime a uvidime Poustel jste TDSSKiller nebo MBAR? Nasli neco? Pripadne vlozte logy. Ulozte na plochu AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
- ukoncete vsechny programy
- kliknete pravym na ikonu AdwCleaneru a vyberte Spustit jako spravce (v pripade Win XP spustte obycejne dvojklikem)
- kliknete na Scan, pote na Clean
- po restartu na Vas vyskoci log (pripadne jej najdete v C:\AdwCleaner\AdwCleaner [Sx].txt), jehoz obsah mi zkopirujte do pristi odpovedi
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Re: Preventivka NB
Malwarebytes Anti-Rootkit BETA 1.08.2.1001
http://www.malwarebytes.org
Database version: v2014.11.28.10
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.17420
Akrobat :: AKROBAT-PC [administrator]
29.11.2014 6:17:55
mbar-log-2014-11-29 (06-17-55).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Kernel memory modifications detected. Deep Anti-Rootkit Scan engaged.
Objects scanned: 514838
Time elapsed: 44 minute(s), 31 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
Physical Sectors Detected: 0
(No malicious items detected)
(end)
http://www.malwarebytes.org
Database version: v2014.11.28.10
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.17420
Akrobat :: AKROBAT-PC [administrator]
29.11.2014 6:17:55
mbar-log-2014-11-29 (06-17-55).txt
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
Scan options disabled:
Kernel memory modifications detected. Deep Anti-Rootkit Scan engaged.
Objects scanned: 514838
Time elapsed: 44 minute(s), 31 second(s)
Memory Processes Detected: 0
(No malicious items detected)
Memory Modules Detected: 0
(No malicious items detected)
Registry Keys Detected: 0
(No malicious items detected)
Registry Values Detected: 0
(No malicious items detected)
Registry Data Items Detected: 0
(No malicious items detected)
Folders Detected: 0
(No malicious items detected)
Files Detected: 0
(No malicious items detected)
Physical Sectors Detected: 0
(No malicious items detected)
(end)
- Přílohy
-
- TDSSKiller.3.0.0.41_30.11.2014_17.30.41_log.rar
- (46.07 KiB) Staženo 66 x
Re: Preventivka NB
# AdwCleaner v4.102 - Report created 30/11/2014 at 20:39:24
# Updated 23/11/2014 by Xplode
# Database : 2014-11-27.1 [Live]
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Akrobat - AKROBAT-PC
# Running from : C:\Users\Akrobat\Desktop\adwcleaner_4.102.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
***** [ Scheduled Tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKCU\Software\Myfree Codec
Key Deleted : HKLM\SOFTWARE\Myfree Codec
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17420
-\\ Mozilla Firefox v
-\\ Google Chrome v39.0.2171.71
*************************
AdwCleaner[R0].txt - [1061 octets] - [30/09/2014 11:58:46]
AdwCleaner[R1].txt - [1177 octets] - [23/10/2014 17:07:54]
AdwCleaner[R2].txt - [1150 octets] - [30/11/2014 20:36:50]
AdwCleaner[S0].txt - [1131 octets] - [30/09/2014 12:01:09]
AdwCleaner[S1].txt - [1236 octets] - [23/10/2014 17:11:33]
AdwCleaner[S2].txt - [1030 octets] - [30/11/2014 20:39:24]
########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [1090 octets] ##########
# Updated 23/11/2014 by Xplode
# Database : 2014-11-27.1 [Live]
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Akrobat - AKROBAT-PC
# Running from : C:\Users\Akrobat\Desktop\adwcleaner_4.102.exe
# Option : Clean
***** [ Services ] *****
***** [ Files / Folders ] *****
***** [ Scheduled Tasks ] *****
***** [ Shortcuts ] *****
***** [ Registry ] *****
Key Deleted : HKCU\Software\Myfree Codec
Key Deleted : HKLM\SOFTWARE\Myfree Codec
***** [ Browsers ] *****
-\\ Internet Explorer v11.0.9600.17420
-\\ Mozilla Firefox v
-\\ Google Chrome v39.0.2171.71
*************************
AdwCleaner[R0].txt - [1061 octets] - [30/09/2014 11:58:46]
AdwCleaner[R1].txt - [1177 octets] - [23/10/2014 17:07:54]
AdwCleaner[R2].txt - [1150 octets] - [30/11/2014 20:36:50]
AdwCleaner[S0].txt - [1131 octets] - [30/09/2014 12:01:09]
AdwCleaner[S1].txt - [1236 octets] - [23/10/2014 17:11:33]
AdwCleaner[S2].txt - [1030 octets] - [30/11/2014 20:39:24]
########## EOF - C:\AdwCleaner\AdwCleaner[S2].txt - [1090 octets] ##########
Re: Preventivka NB
Pokud nepouzivate Javu, odinstalujte ji. Mate tam i pres rok starou verzi, ktera je velice snadno zneuzitelna. Pokud Javu potrebujete, odinstalujte nasledujici verze a nainstalujte jen verzi novou z http://java.com/verify - Java 7 Update 45
- Java 7 Update 60
- Java(TM) 6 Update 23
- Java(TM) 6 Update 31
Velikost plochy by nemela presahovat 200 MB. Snizuje se pak start i samotny chod celeho PC. Pokud je nektera naplanovana uloha primo Vase tvorba, vyjmete ji z fixlistu (dolni cast skriptu). Pripadne se pred pouzitim fixlistu zeptejte.- Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
- ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
- znovu spustte FRST a kliknete na Fix
- po restartu na Vas vyskoci fixlog (pripadne bude ulozen na Plose), jehoz obsah mi vlozte do pristi odpovedi
Kód: Vybrat vše
Start CloseProcesses: HKU\S-1-5-21-3182304834-3978523306-3436111158-1000\...\Policies\system: [LogonHoursAction] 2 HKU\S-1-5-21-3182304834-3978523306-3436111158-1000\...\Policies\system: [DontDisplayLogonHoursWarnings] 1 HKU\S-1-5-21-3182304834-3978523306-3436111158-1000\...\Policies\Explorer: [NoRecentDocsHistory] 1 HKU\S-1-5-21-3182304834-3978523306-3436111158-1000\...\Policies\Explorer: [NoInternetOpenWith] 1 ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => No File ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} => No File ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 2 (GFS Stub)] -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => No File ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} => No File ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 3 (GFS Folder)] -> {16F3DD56-1AF5-4347-846D-7C10C4192619} => No File ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => No File GroupPolicyUsers\S-1-5-21-3182304834-3978523306-3436111158-1017\User: Group Policy restriction detected <======= ATTENTION HKU\S-1-5-21-3182304834-3978523306-3436111158-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x5DDBD07B18DECA01 HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/ HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION HKU\S-1-5-21-3182304834-3978523306-3436111158-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION S3 dgderdrv; System32\drivers\dgderdrv.sys [X] AlternateDataStreams: C:\ProgramData\Temp:C7D0F96D REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM" /f REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher" /f REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0" /f REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 4" /f REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.autoupdate" /f REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop" /f REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite" /f REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update" /f REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched" /f REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard" /f REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe" /f REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zoner Photo Studio Autoupdate" /f Task: {02078E07-3C7A-4641-84D5-F84EC4E01397} - \{642AA4D4-491D-4412-9CA6-B7A21F4DECA5} No Task File <==== ATTENTION Task: {03C20DF1-9BAA-4B10-BF05-2691E75D7249} - \{619DBDA9-4D50-4216-91CD-2E3ABC60669C} No Task File <==== ATTENTION Task: {0530494C-B7AA-48B1-A205-910B25BB1EED} - \{687FA533-CD24-4B6A-A9D2-4B625C0B90D1} No Task File <==== ATTENTION Task: {0682C8AF-0742-46F7-BFFB-3DF85A8A94B5} - \{D4162E8A-9BF6-44BE-B583-5CF44EF83696} No Task File <==== ATTENTION Task: {34000072-B875-4EEE-A60A-79C298C4C575} - \{5A959D1F-EB8A-488B-B954-A613A262975B} No Task File <==== ATTENTION Task: {4080AD64-8EEE-4CEA-92F3-7183012ABDEC} - \{FB154AC2-F210-41C3-B71B-139C3BB4299A} No Task File <==== ATTENTION Task: {4E49185A-ABA5-42E6-8A57-9BD62B397D67} - \{058EE2F7-7B99-48C3-B289-D539B8E1BF88} No Task File <==== ATTENTION Task: {5883F07F-8B81-4F34-A62F-256A35C83599} - \{A8F4319A-8AB8-4440-B5B8-455648E62D84} No Task File <==== ATTENTION Task: {65AACF10-D473-468E-B380-43780BEEF242} - \{60BE50A7-4699-4058-9D49-CC98C42C47AC} No Task File <==== ATTENTION Task: {6D03716C-65E8-429C-B884-C9C15AF5246C} - \{84797D0C-AD31-4C9B-91D3-0912603383B8} No Task File <==== ATTENTION Task: {75AF26AB-28A6-4715-A431-ED52AB04DBFF} - \{2D052D52-F70B-4683-A8BC-1D44D19EB431} No Task File <==== ATTENTION Task: {77188815-FA7D-4775-9394-61BD21DCE311} - \{1FF88651-A29F-4660-AD51-E1CDAB93661D} No Task File <==== ATTENTION Task: {8381B059-C137-4B6B-A0EB-222AACF5E87D} - \{C4FA117F-5AD6-4582-809B-CFB2F5DA7E7D} No Task File <==== ATTENTION Task: {85A90A64-F8D0-4846-9F2D-2C875D97DB12} - \{78AA32E7-2A81-4FE3-BC40-174FDD5C2570} No Task File <==== ATTENTION Task: {8FF1A356-F1A9-428A-9493-2E4C0155FC4A} - \{E6B35D4F-D3D7-4AF2-B807-29D9D74015AC} No Task File <==== ATTENTION Task: {AC22C5F9-F691-4198-AA71-AB49B4B6E6E6} - \{D993FE8E-20DD-490A-B85D-E09FD1C8AE51} No Task File <==== ATTENTION Task: {ADE990E3-96C5-4AA9-B56A-7F485A3301EF} - \{DFACD288-8D4D-426F-9192-3AEBE0E3C34D} No Task File <==== ATTENTION Task: {BE7D1734-EE8F-4BCC-91F0-A73B34E888DF} - \{29B81FA2-E60E-478C-88E7-2FB79E011728} No Task File <==== ATTENTION Task: {C05CF062-1D0E-4116-8D57-750134D1880E} - \{D2EA10EA-15FD-475C-8F85-5844AF3D3CA0} No Task File <==== ATTENTION Task: {CE1D231F-E619-468B-8DAA-BAC0EFEC6DD6} - \{E5903E9C-AD72-4399-ACAE-D23A99CA3639} No Task File <==== ATTENTION Task: {D380741F-D80A-4306-8A9F-85D6FCBD7DD2} - \{1FD9521C-56E9-4EF6-B94D-F40B225F4EE2} No Task File <==== ATTENTION Task: {E5D77156-D189-42D8-9AE0-C7FA1EAD55CB} - \{109B01B9-5D7E-42BF-B27E-8A88ADD89DEF} No Task File <==== ATTENTION Task: {EF70FC6A-4007-48B1-9E30-A56BF1FF5A90} - \{7DF0ADDF-97B5-4AE2-A015-8F53E489A03D} No Task File <==== ATTENTION Task: {F0EA12EE-465B-4681-BC02-7A40D7E8C1EB} - \{084F0B8F-19E1-46BF-9403-96D0C7473CD8} No Task File <==== ATTENTION Task: {F20FCD59-A0DD-4053-AEA4-0211C8C52957} - \{68B4B6BF-E651-4231-9567-9933ABAA7DCA} No Task File <==== ATTENTION Task: {F5BAE3A6-391E-4E2B-8E59-CC1B14A8022A} - \{412576E3-2033-4E08-9450-37CBDA649775} No Task File <==== ATTENTION Task: {F8027D84-497D-4484-9009-3A7E6BA58DFC} - \{0722FCC6-6D4B-4B00-968E-64150933594D} No Task File <==== ATTENTION C:\Windows\Tasks\AdobeAAMUpdater-1.0-Akrobat-PC-Akrobat.job C:\Windows\Tasks\Application Starter - f1375f225883e83d52e8db9690775c3c.job Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cfecd564d0aff3.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d000f76724b72c.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe Task: C:\Windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-3182304834-3978523306-3436111158-1000.job => C:\Program Files (x86)\Real\RealUpgrade\realupgrade.exe Task: C:\Windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-3182304834-3978523306-3436111158-1017.job => C:\Program Files (x86)\Real\RealUpgrade\realupgrade.exe Task: C:\Windows\Tasks\ReclaimerResumeInstall_Akrobat.job => C:\Users\Akrobat\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.30\agent\rnupgagent.exe C:\Windows\Tasks\User_Feed_Synchronization-{BDCE70B9-751D-48F5-9874-40A91D6BB061}.job C:\Windows\Tasks\{16C5B1FA-1F88-46AE-A14B-EF5ECEF821B3}.job Hosts: EmptyTemp: End
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Re: Preventivka NB
...provedeno....novu Javu nainstaluji....
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 30-11-2014
Ran by Akrobat at 2014-11-30 21:13:05 Run:1
Running from C:\Users\Akrobat\Desktop
Loaded Profile: Akrobat (Available profiles: Akrobat & Katka & Guest)
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
CloseProcesses:
HKU\S-1-5-21-3182304834-3978523306-3436111158-1000\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-3182304834-3978523306-3436111158-1000\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-3182304834-3978523306-3436111158-1000\...\Policies\Explorer: [NoRecentDocsHistory] 1
HKU\S-1-5-21-3182304834-3978523306-3436111158-1000\...\Policies\Explorer: [NoInternetOpenWith] 1
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} => No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 2 (GFS Stub)] -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} => No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 3 (GFS Folder)] -> {16F3DD56-1AF5-4347-846D-7C10C4192619} => No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => No File
GroupPolicyUsers\S-1-5-21-3182304834-3978523306-3436111158-1017\User: Group Policy restriction detected <======= ATTENTION
HKU\S-1-5-21-3182304834-3978523306-3436111158-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x5DDBD07B18DECA01
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-3182304834-3978523306-3436111158-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
S3 dgderdrv; System32\drivers\dgderdrv.sys [X]
AlternateDataStreams: C:\ProgramData\Temp:C7D0F96D
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 4" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.autoupdate" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zoner Photo Studio Autoupdate" /f
Task: {02078E07-3C7A-4641-84D5-F84EC4E01397} - \{642AA4D4-491D-4412-9CA6-B7A21F4DECA5} No Task File <==== ATTENTION
Task: {03C20DF1-9BAA-4B10-BF05-2691E75D7249} - \{619DBDA9-4D50-4216-91CD-2E3ABC60669C} No Task File <==== ATTENTION
Task: {0530494C-B7AA-48B1-A205-910B25BB1EED} - \{687FA533-CD24-4B6A-A9D2-4B625C0B90D1} No Task File <==== ATTENTION
Task: {0682C8AF-0742-46F7-BFFB-3DF85A8A94B5} - \{D4162E8A-9BF6-44BE-B583-5CF44EF83696} No Task File <==== ATTENTION
Task: {34000072-B875-4EEE-A60A-79C298C4C575} - \{5A959D1F-EB8A-488B-B954-A613A262975B} No Task File <==== ATTENTION
Task: {4080AD64-8EEE-4CEA-92F3-7183012ABDEC} - \{FB154AC2-F210-41C3-B71B-139C3BB4299A} No Task File <==== ATTENTION
Task: {4E49185A-ABA5-42E6-8A57-9BD62B397D67} - \{058EE2F7-7B99-48C3-B289-D539B8E1BF88} No Task File <==== ATTENTION
Task: {5883F07F-8B81-4F34-A62F-256A35C83599} - \{A8F4319A-8AB8-4440-B5B8-455648E62D84} No Task File <==== ATTENTION
Task: {65AACF10-D473-468E-B380-43780BEEF242} - \{60BE50A7-4699-4058-9D49-CC98C42C47AC} No Task File <==== ATTENTION
Task: {6D03716C-65E8-429C-B884-C9C15AF5246C} - \{84797D0C-AD31-4C9B-91D3-0912603383B8} No Task File <==== ATTENTION
Task: {75AF26AB-28A6-4715-A431-ED52AB04DBFF} - \{2D052D52-F70B-4683-A8BC-1D44D19EB431} No Task File <==== ATTENTION
Task: {77188815-FA7D-4775-9394-61BD21DCE311} - \{1FF88651-A29F-4660-AD51-E1CDAB93661D} No Task File <==== ATTENTION
Task: {8381B059-C137-4B6B-A0EB-222AACF5E87D} - \{C4FA117F-5AD6-4582-809B-CFB2F5DA7E7D} No Task File <==== ATTENTION
Task: {85A90A64-F8D0-4846-9F2D-2C875D97DB12} - \{78AA32E7-2A81-4FE3-BC40-174FDD5C2570} No Task File <==== ATTENTION
Task: {8FF1A356-F1A9-428A-9493-2E4C0155FC4A} - \{E6B35D4F-D3D7-4AF2-B807-29D9D74015AC} No Task File <==== ATTENTION
Task: {AC22C5F9-F691-4198-AA71-AB49B4B6E6E6} - \{D993FE8E-20DD-490A-B85D-E09FD1C8AE51} No Task File <==== ATTENTION
Task: {ADE990E3-96C5-4AA9-B56A-7F485A3301EF} - \{DFACD288-8D4D-426F-9192-3AEBE0E3C34D} No Task File <==== ATTENTION
Task: {BE7D1734-EE8F-4BCC-91F0-A73B34E888DF} - \{29B81FA2-E60E-478C-88E7-2FB79E011728} No Task File <==== ATTENTION
Task: {C05CF062-1D0E-4116-8D57-750134D1880E} - \{D2EA10EA-15FD-475C-8F85-5844AF3D3CA0} No Task File <==== ATTENTION
Task: {CE1D231F-E619-468B-8DAA-BAC0EFEC6DD6} - \{E5903E9C-AD72-4399-ACAE-D23A99CA3639} No Task File <==== ATTENTION
Task: {D380741F-D80A-4306-8A9F-85D6FCBD7DD2} - \{1FD9521C-56E9-4EF6-B94D-F40B225F4EE2} No Task File <==== ATTENTION
Task: {E5D77156-D189-42D8-9AE0-C7FA1EAD55CB} - \{109B01B9-5D7E-42BF-B27E-8A88ADD89DEF} No Task File <==== ATTENTION
Task: {EF70FC6A-4007-48B1-9E30-A56BF1FF5A90} - \{7DF0ADDF-97B5-4AE2-A015-8F53E489A03D} No Task File <==== ATTENTION
Task: {F0EA12EE-465B-4681-BC02-7A40D7E8C1EB} - \{084F0B8F-19E1-46BF-9403-96D0C7473CD8} No Task File <==== ATTENTION
Task: {F20FCD59-A0DD-4053-AEA4-0211C8C52957} - \{68B4B6BF-E651-4231-9567-9933ABAA7DCA} No Task File <==== ATTENTION
Task: {F5BAE3A6-391E-4E2B-8E59-CC1B14A8022A} - \{412576E3-2033-4E08-9450-37CBDA649775} No Task File <==== ATTENTION
Task: {F8027D84-497D-4484-9009-3A7E6BA58DFC} - \{0722FCC6-6D4B-4B00-968E-64150933594D} No Task File <==== ATTENTION
C:\Windows\Tasks\AdobeAAMUpdater-1.0-Akrobat-PC-Akrobat.job
C:\Windows\Tasks\Application Starter - f1375f225883e83d52e8db9690775c3c.job
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cfecd564d0aff3.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d000f76724b72c.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-3182304834-3978523306-3436111158-1000.job => C:\Program Files (x86)\Real\RealUpgrade\realupgrade.exe
Task: C:\Windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-3182304834-3978523306-3436111158-1017.job => C:\Program Files (x86)\Real\RealUpgrade\realupgrade.exe
Task: C:\Windows\Tasks\ReclaimerResumeInstall_Akrobat.job => C:\Users\Akrobat\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.30\agent\rnupgagent.exe
C:\Windows\Tasks\User_Feed_Synchronization-{BDCE70B9-751D-48F5-9874-40A91D6BB061}.job
C:\Windows\Tasks\{16C5B1FA-1F88-46AE-A14B-EF5ECEF821B3}.job
Hosts:
EmptyTemp:
End
*****************
Processes closed successfully.
HKU\S-1-5-21-3182304834-3978523306-3436111158-1000\Software\Microsoft\Windows\CurrentVersion\Policies\system\\LogonHoursAction => value deleted successfully.
HKU\S-1-5-21-3182304834-3978523306-3436111158-1000\Software\Microsoft\Windows\CurrentVersion\Policies\system\\DontDisplayLogonHoursWarnings => value deleted successfully.
HKU\S-1-5-21-3182304834-3978523306-3436111158-1000\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoRecentDocsHistory => value deleted successfully.
HKU\S-1-5-21-3182304834-3978523306-3436111158-1000\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoInternetOpenWith => value deleted successfully.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\GDriveSharedOverlay" => Key deleted successfully.
"HKCR\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}" => Key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 1 (GFS Unread Stub)" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{99FD978C-D287-4F50-827F-B2C658EDA8E7}" => Key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 2 (GFS Stub)" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{AB5C5600-7E6E-4B06-9197-9ECEF74D31CC}" => Key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{920E6DB1-9907-4370-B3A0-BAFC03D81399}" => Key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 3 (GFS Folder)" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{16F3DD56-1AF5-4347-846D-7C10C4192619}" => Key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 4 (GFS Unread Mark)" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{2916C86E-86A6-43FE-8112-43ABE6BF8DCC}" => Key not found.
C:\Windows\system32\GroupPolicyUsers\S-1-5-21-3182304834-3978523306-3436111158-1017\User => Moved successfully.
C:\Windows\system32\GroupPolicy\GPT.ini => Moved successfully.
HKU\S-1-5-21-3182304834-3978523306-3436111158-1000\Software\Microsoft\Internet Explorer\Main\\Start Page Redirect Cache_TIMESTAMP => value deleted successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
"HKU\S-1-5-21-3182304834-3978523306-3436111158-1000\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
dgderdrv => Service deleted successfully.
C:\ProgramData\Temp => ":C7D0F96D" ADS removed successfully.
========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM" /f =========
Operace byla dokonźena ŁspŘçnŘ.
========= End of Reg: =========
========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher" /f =========
Operace byla dokonźena ŁspŘçnŘ.
========= End of Reg: =========
========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0" /f =========
Operace byla dokonźena ŁspŘçnŘ.
========= End of Reg: =========
========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 4" /f =========
Operace byla dokonźena ŁspŘçnŘ.
========= End of Reg: =========
========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.autoupdate" /f =========
Operace byla dokonźena ŁspŘçnŘ.
========= End of Reg: =========
========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop" /f =========
Operace byla dokonźena ŁspŘçnŘ.
========= End of Reg: =========
========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite" /f =========
Operace byla dokonźena ŁspŘçnŘ.
========= End of Reg: =========
========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update" /f =========
Operace byla dokonźena ŁspŘçnŘ.
========= End of Reg: =========
========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched" /f =========
Operace byla dokonźena ŁspŘçnŘ.
========= End of Reg: =========
========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard" /f =========
Operace byla dokonźena ŁspŘçnŘ.
========= End of Reg: =========
========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe" /f =========
Operace byla dokonźena ŁspŘçnŘ.
========= End of Reg: =========
========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zoner Photo Studio Autoupdate" /f =========
Operace byla dokonźena ŁspŘçnŘ.
========= End of Reg: =========
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{02078E07-3C7A-4641-84D5-F84EC4E01397}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{02078E07-3C7A-4641-84D5-F84EC4E01397}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{642AA4D4-491D-4412-9CA6-B7A21F4DECA5}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{03C20DF1-9BAA-4B10-BF05-2691E75D7249}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{03C20DF1-9BAA-4B10-BF05-2691E75D7249}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{619DBDA9-4D50-4216-91CD-2E3ABC60669C}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0530494C-B7AA-48B1-A205-910B25BB1EED}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0530494C-B7AA-48B1-A205-910B25BB1EED}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{687FA533-CD24-4B6A-A9D2-4B625C0B90D1}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0682C8AF-0742-46F7-BFFB-3DF85A8A94B5}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0682C8AF-0742-46F7-BFFB-3DF85A8A94B5}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{D4162E8A-9BF6-44BE-B583-5CF44EF83696}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{34000072-B875-4EEE-A60A-79C298C4C575}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{34000072-B875-4EEE-A60A-79C298C4C575}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{5A959D1F-EB8A-488B-B954-A613A262975B}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4080AD64-8EEE-4CEA-92F3-7183012ABDEC}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4080AD64-8EEE-4CEA-92F3-7183012ABDEC}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{FB154AC2-F210-41C3-B71B-139C3BB4299A}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4E49185A-ABA5-42E6-8A57-9BD62B397D67}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4E49185A-ABA5-42E6-8A57-9BD62B397D67}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{058EE2F7-7B99-48C3-B289-D539B8E1BF88}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5883F07F-8B81-4F34-A62F-256A35C83599}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5883F07F-8B81-4F34-A62F-256A35C83599}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{A8F4319A-8AB8-4440-B5B8-455648E62D84}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{65AACF10-D473-468E-B380-43780BEEF242}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{65AACF10-D473-468E-B380-43780BEEF242}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{60BE50A7-4699-4058-9D49-CC98C42C47AC}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6D03716C-65E8-429C-B884-C9C15AF5246C}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6D03716C-65E8-429C-B884-C9C15AF5246C}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{84797D0C-AD31-4C9B-91D3-0912603383B8}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{75AF26AB-28A6-4715-A431-ED52AB04DBFF}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{75AF26AB-28A6-4715-A431-ED52AB04DBFF}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{2D052D52-F70B-4683-A8BC-1D44D19EB431}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{77188815-FA7D-4775-9394-61BD21DCE311}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{77188815-FA7D-4775-9394-61BD21DCE311}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{1FF88651-A29F-4660-AD51-E1CDAB93661D}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8381B059-C137-4B6B-A0EB-222AACF5E87D}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8381B059-C137-4B6B-A0EB-222AACF5E87D}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{C4FA117F-5AD6-4582-809B-CFB2F5DA7E7D}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{85A90A64-F8D0-4846-9F2D-2C875D97DB12}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{85A90A64-F8D0-4846-9F2D-2C875D97DB12}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{78AA32E7-2A81-4FE3-BC40-174FDD5C2570}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8FF1A356-F1A9-428A-9493-2E4C0155FC4A}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8FF1A356-F1A9-428A-9493-2E4C0155FC4A}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{E6B35D4F-D3D7-4AF2-B807-29D9D74015AC}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AC22C5F9-F691-4198-AA71-AB49B4B6E6E6}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AC22C5F9-F691-4198-AA71-AB49B4B6E6E6}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{D993FE8E-20DD-490A-B85D-E09FD1C8AE51}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{ADE990E3-96C5-4AA9-B56A-7F485A3301EF}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{ADE990E3-96C5-4AA9-B56A-7F485A3301EF}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{DFACD288-8D4D-426F-9192-3AEBE0E3C34D}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BE7D1734-EE8F-4BCC-91F0-A73B34E888DF}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BE7D1734-EE8F-4BCC-91F0-A73B34E888DF}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{29B81FA2-E60E-478C-88E7-2FB79E011728}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C05CF062-1D0E-4116-8D57-750134D1880E}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C05CF062-1D0E-4116-8D57-750134D1880E}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{D2EA10EA-15FD-475C-8F85-5844AF3D3CA0}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CE1D231F-E619-468B-8DAA-BAC0EFEC6DD6}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CE1D231F-E619-468B-8DAA-BAC0EFEC6DD6}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{E5903E9C-AD72-4399-ACAE-D23A99CA3639}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D380741F-D80A-4306-8A9F-85D6FCBD7DD2}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D380741F-D80A-4306-8A9F-85D6FCBD7DD2}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{1FD9521C-56E9-4EF6-B94D-F40B225F4EE2}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E5D77156-D189-42D8-9AE0-C7FA1EAD55CB}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E5D77156-D189-42D8-9AE0-C7FA1EAD55CB}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{109B01B9-5D7E-42BF-B27E-8A88ADD89DEF}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EF70FC6A-4007-48B1-9E30-A56BF1FF5A90}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EF70FC6A-4007-48B1-9E30-A56BF1FF5A90}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{7DF0ADDF-97B5-4AE2-A015-8F53E489A03D}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F0EA12EE-465B-4681-BC02-7A40D7E8C1EB}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F0EA12EE-465B-4681-BC02-7A40D7E8C1EB}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{084F0B8F-19E1-46BF-9403-96D0C7473CD8}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F20FCD59-A0DD-4053-AEA4-0211C8C52957}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F20FCD59-A0DD-4053-AEA4-0211C8C52957}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{68B4B6BF-E651-4231-9567-9933ABAA7DCA}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F5BAE3A6-391E-4E2B-8E59-CC1B14A8022A}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F5BAE3A6-391E-4E2B-8E59-CC1B14A8022A}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{412576E3-2033-4E08-9450-37CBDA649775}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F8027D84-497D-4484-9009-3A7E6BA58DFC}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F8027D84-497D-4484-9009-3A7E6BA58DFC}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{0722FCC6-6D4B-4B00-968E-64150933594D}" => Key deleted successfully.
C:\Windows\Tasks\AdobeAAMUpdater-1.0-Akrobat-PC-Akrobat.job => Moved successfully.
C:\Windows\Tasks\Application Starter - f1375f225883e83d52e8db9690775c3c.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cfecd564d0aff3.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d000f76724b72c.job => Moved successfully.
C:\Windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-3182304834-3978523306-3436111158-1000.job => Moved successfully.
C:\Windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-3182304834-3978523306-3436111158-1017.job => Moved successfully.
C:\Windows\Tasks\ReclaimerResumeInstall_Akrobat.job => Moved successfully.
C:\Windows\Tasks\User_Feed_Synchronization-{BDCE70B9-751D-48F5-9874-40A91D6BB061}.job => Moved successfully.
C:\Windows\Tasks\{16C5B1FA-1F88-46AE-A14B-EF5ECEF821B3}.job => Moved successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
EmptyTemp: => Removed 75.6 MB temporary data.
The system needed a reboot.
==== End of Fixlog ====
Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 30-11-2014
Ran by Akrobat at 2014-11-30 21:13:05 Run:1
Running from C:\Users\Akrobat\Desktop
Loaded Profile: Akrobat (Available profiles: Akrobat & Katka & Guest)
Boot Mode: Normal
==============================================
Content of fixlist:
*****************
Start
CloseProcesses:
HKU\S-1-5-21-3182304834-3978523306-3436111158-1000\...\Policies\system: [LogonHoursAction] 2
HKU\S-1-5-21-3182304834-3978523306-3436111158-1000\...\Policies\system: [DontDisplayLogonHoursWarnings] 1
HKU\S-1-5-21-3182304834-3978523306-3436111158-1000\...\Policies\Explorer: [NoRecentDocsHistory] 1
HKU\S-1-5-21-3182304834-3978523306-3436111158-1000\...\Policies\Explorer: [NoInternetOpenWith] 1
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 1 (GFS Unread Stub)] -> {99FD978C-D287-4F50-827F-B2C658EDA8E7} => No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 2 (GFS Stub)] -> {AB5C5600-7E6E-4B06-9197-9ECEF74D31CC} => No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)] -> {920E6DB1-9907-4370-B3A0-BAFC03D81399} => No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 3 (GFS Folder)] -> {16F3DD56-1AF5-4347-846D-7C10C4192619} => No File
ShellIconOverlayIdentifiers-x32: [Groove Explorer Icon Overlay 4 (GFS Unread Mark)] -> {2916C86E-86A6-43FE-8112-43ABE6BF8DCC} => No File
GroupPolicyUsers\S-1-5-21-3182304834-3978523306-3436111158-1017\User: Group Policy restriction detected <======= ATTENTION
HKU\S-1-5-21-3182304834-3978523306-3436111158-1000\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 0x5DDBD07B18DECA01
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-3182304834-3978523306-3436111158-1000\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
S3 dgderdrv; System32\drivers\dgderdrv.sys [X]
AlternateDataStreams: C:\ProgramData\Temp:C7D0F96D
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 4" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.autoupdate" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe" /f
REG: reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zoner Photo Studio Autoupdate" /f
Task: {02078E07-3C7A-4641-84D5-F84EC4E01397} - \{642AA4D4-491D-4412-9CA6-B7A21F4DECA5} No Task File <==== ATTENTION
Task: {03C20DF1-9BAA-4B10-BF05-2691E75D7249} - \{619DBDA9-4D50-4216-91CD-2E3ABC60669C} No Task File <==== ATTENTION
Task: {0530494C-B7AA-48B1-A205-910B25BB1EED} - \{687FA533-CD24-4B6A-A9D2-4B625C0B90D1} No Task File <==== ATTENTION
Task: {0682C8AF-0742-46F7-BFFB-3DF85A8A94B5} - \{D4162E8A-9BF6-44BE-B583-5CF44EF83696} No Task File <==== ATTENTION
Task: {34000072-B875-4EEE-A60A-79C298C4C575} - \{5A959D1F-EB8A-488B-B954-A613A262975B} No Task File <==== ATTENTION
Task: {4080AD64-8EEE-4CEA-92F3-7183012ABDEC} - \{FB154AC2-F210-41C3-B71B-139C3BB4299A} No Task File <==== ATTENTION
Task: {4E49185A-ABA5-42E6-8A57-9BD62B397D67} - \{058EE2F7-7B99-48C3-B289-D539B8E1BF88} No Task File <==== ATTENTION
Task: {5883F07F-8B81-4F34-A62F-256A35C83599} - \{A8F4319A-8AB8-4440-B5B8-455648E62D84} No Task File <==== ATTENTION
Task: {65AACF10-D473-468E-B380-43780BEEF242} - \{60BE50A7-4699-4058-9D49-CC98C42C47AC} No Task File <==== ATTENTION
Task: {6D03716C-65E8-429C-B884-C9C15AF5246C} - \{84797D0C-AD31-4C9B-91D3-0912603383B8} No Task File <==== ATTENTION
Task: {75AF26AB-28A6-4715-A431-ED52AB04DBFF} - \{2D052D52-F70B-4683-A8BC-1D44D19EB431} No Task File <==== ATTENTION
Task: {77188815-FA7D-4775-9394-61BD21DCE311} - \{1FF88651-A29F-4660-AD51-E1CDAB93661D} No Task File <==== ATTENTION
Task: {8381B059-C137-4B6B-A0EB-222AACF5E87D} - \{C4FA117F-5AD6-4582-809B-CFB2F5DA7E7D} No Task File <==== ATTENTION
Task: {85A90A64-F8D0-4846-9F2D-2C875D97DB12} - \{78AA32E7-2A81-4FE3-BC40-174FDD5C2570} No Task File <==== ATTENTION
Task: {8FF1A356-F1A9-428A-9493-2E4C0155FC4A} - \{E6B35D4F-D3D7-4AF2-B807-29D9D74015AC} No Task File <==== ATTENTION
Task: {AC22C5F9-F691-4198-AA71-AB49B4B6E6E6} - \{D993FE8E-20DD-490A-B85D-E09FD1C8AE51} No Task File <==== ATTENTION
Task: {ADE990E3-96C5-4AA9-B56A-7F485A3301EF} - \{DFACD288-8D4D-426F-9192-3AEBE0E3C34D} No Task File <==== ATTENTION
Task: {BE7D1734-EE8F-4BCC-91F0-A73B34E888DF} - \{29B81FA2-E60E-478C-88E7-2FB79E011728} No Task File <==== ATTENTION
Task: {C05CF062-1D0E-4116-8D57-750134D1880E} - \{D2EA10EA-15FD-475C-8F85-5844AF3D3CA0} No Task File <==== ATTENTION
Task: {CE1D231F-E619-468B-8DAA-BAC0EFEC6DD6} - \{E5903E9C-AD72-4399-ACAE-D23A99CA3639} No Task File <==== ATTENTION
Task: {D380741F-D80A-4306-8A9F-85D6FCBD7DD2} - \{1FD9521C-56E9-4EF6-B94D-F40B225F4EE2} No Task File <==== ATTENTION
Task: {E5D77156-D189-42D8-9AE0-C7FA1EAD55CB} - \{109B01B9-5D7E-42BF-B27E-8A88ADD89DEF} No Task File <==== ATTENTION
Task: {EF70FC6A-4007-48B1-9E30-A56BF1FF5A90} - \{7DF0ADDF-97B5-4AE2-A015-8F53E489A03D} No Task File <==== ATTENTION
Task: {F0EA12EE-465B-4681-BC02-7A40D7E8C1EB} - \{084F0B8F-19E1-46BF-9403-96D0C7473CD8} No Task File <==== ATTENTION
Task: {F20FCD59-A0DD-4053-AEA4-0211C8C52957} - \{68B4B6BF-E651-4231-9567-9933ABAA7DCA} No Task File <==== ATTENTION
Task: {F5BAE3A6-391E-4E2B-8E59-CC1B14A8022A} - \{412576E3-2033-4E08-9450-37CBDA649775} No Task File <==== ATTENTION
Task: {F8027D84-497D-4484-9009-3A7E6BA58DFC} - \{0722FCC6-6D4B-4B00-968E-64150933594D} No Task File <==== ATTENTION
C:\Windows\Tasks\AdobeAAMUpdater-1.0-Akrobat-PC-Akrobat.job
C:\Windows\Tasks\Application Starter - f1375f225883e83d52e8db9690775c3c.job
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cfecd564d0aff3.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d000f76724b72c.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-3182304834-3978523306-3436111158-1000.job => C:\Program Files (x86)\Real\RealUpgrade\realupgrade.exe
Task: C:\Windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-3182304834-3978523306-3436111158-1017.job => C:\Program Files (x86)\Real\RealUpgrade\realupgrade.exe
Task: C:\Windows\Tasks\ReclaimerResumeInstall_Akrobat.job => C:\Users\Akrobat\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.30\agent\rnupgagent.exe
C:\Windows\Tasks\User_Feed_Synchronization-{BDCE70B9-751D-48F5-9874-40A91D6BB061}.job
C:\Windows\Tasks\{16C5B1FA-1F88-46AE-A14B-EF5ECEF821B3}.job
Hosts:
EmptyTemp:
End
*****************
Processes closed successfully.
HKU\S-1-5-21-3182304834-3978523306-3436111158-1000\Software\Microsoft\Windows\CurrentVersion\Policies\system\\LogonHoursAction => value deleted successfully.
HKU\S-1-5-21-3182304834-3978523306-3436111158-1000\Software\Microsoft\Windows\CurrentVersion\Policies\system\\DontDisplayLogonHoursWarnings => value deleted successfully.
HKU\S-1-5-21-3182304834-3978523306-3436111158-1000\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoRecentDocsHistory => value deleted successfully.
HKU\S-1-5-21-3182304834-3978523306-3436111158-1000\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\\NoInternetOpenWith => value deleted successfully.
"HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\GDriveSharedOverlay" => Key deleted successfully.
"HKCR\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}" => Key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 1 (GFS Unread Stub)" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{99FD978C-D287-4F50-827F-B2C658EDA8E7}" => Key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 2 (GFS Stub)" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{AB5C5600-7E6E-4B06-9197-9ECEF74D31CC}" => Key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 2.5 (GFS Unread Folder)" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{920E6DB1-9907-4370-B3A0-BAFC03D81399}" => Key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 3 (GFS Folder)" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{16F3DD56-1AF5-4347-846D-7C10C4192619}" => Key not found.
"HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\Groove Explorer Icon Overlay 4 (GFS Unread Mark)" => Key deleted successfully.
"HKCR\Wow6432Node\CLSID\{2916C86E-86A6-43FE-8112-43ABE6BF8DCC}" => Key not found.
C:\Windows\system32\GroupPolicyUsers\S-1-5-21-3182304834-3978523306-3436111158-1017\User => Moved successfully.
C:\Windows\system32\GroupPolicy\GPT.ini => Moved successfully.
HKU\S-1-5-21-3182304834-3978523306-3436111158-1000\Software\Microsoft\Internet Explorer\Main\\Start Page Redirect Cache_TIMESTAMP => value deleted successfully.
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main\\Start Page => Value was restored successfully.
"HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
"HKU\S-1-5-21-3182304834-3978523306-3436111158-1000\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
dgderdrv => Service deleted successfully.
C:\ProgramData\Temp => ":C7D0F96D" ADS removed successfully.
========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM" /f =========
Operace byla dokonźena ŁspŘçnŘ.
========= End of Reg: =========
========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher" /f =========
Operace byla dokonźena ŁspŘçnŘ.
========= End of Reg: =========
========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0" /f =========
Operace byla dokonźena ŁspŘçnŘ.
========= End of Reg: =========
========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 4" /f =========
Operace byla dokonźena ŁspŘçnŘ.
========= End of Reg: =========
========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.autoupdate" /f =========
Operace byla dokonźena ŁspŘçnŘ.
========= End of Reg: =========
========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop" /f =========
Operace byla dokonźena ŁspŘçnŘ.
========= End of Reg: =========
========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite" /f =========
Operace byla dokonźena ŁspŘçnŘ.
========= End of Reg: =========
========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update" /f =========
Operace byla dokonźena ŁspŘçnŘ.
========= End of Reg: =========
========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched" /f =========
Operace byla dokonźena ŁspŘçnŘ.
========= End of Reg: =========
========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard" /f =========
Operace byla dokonźena ŁspŘçnŘ.
========= End of Reg: =========
========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe" /f =========
Operace byla dokonźena ŁspŘçnŘ.
========= End of Reg: =========
========= reg delete "HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Zoner Photo Studio Autoupdate" /f =========
Operace byla dokonźena ŁspŘçnŘ.
========= End of Reg: =========
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{02078E07-3C7A-4641-84D5-F84EC4E01397}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{02078E07-3C7A-4641-84D5-F84EC4E01397}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{642AA4D4-491D-4412-9CA6-B7A21F4DECA5}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{03C20DF1-9BAA-4B10-BF05-2691E75D7249}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{03C20DF1-9BAA-4B10-BF05-2691E75D7249}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{619DBDA9-4D50-4216-91CD-2E3ABC60669C}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0530494C-B7AA-48B1-A205-910B25BB1EED}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0530494C-B7AA-48B1-A205-910B25BB1EED}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{687FA533-CD24-4B6A-A9D2-4B625C0B90D1}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{0682C8AF-0742-46F7-BFFB-3DF85A8A94B5}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{0682C8AF-0742-46F7-BFFB-3DF85A8A94B5}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{D4162E8A-9BF6-44BE-B583-5CF44EF83696}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{34000072-B875-4EEE-A60A-79C298C4C575}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{34000072-B875-4EEE-A60A-79C298C4C575}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{5A959D1F-EB8A-488B-B954-A613A262975B}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4080AD64-8EEE-4CEA-92F3-7183012ABDEC}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4080AD64-8EEE-4CEA-92F3-7183012ABDEC}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{FB154AC2-F210-41C3-B71B-139C3BB4299A}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{4E49185A-ABA5-42E6-8A57-9BD62B397D67}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{4E49185A-ABA5-42E6-8A57-9BD62B397D67}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{058EE2F7-7B99-48C3-B289-D539B8E1BF88}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{5883F07F-8B81-4F34-A62F-256A35C83599}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{5883F07F-8B81-4F34-A62F-256A35C83599}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{A8F4319A-8AB8-4440-B5B8-455648E62D84}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{65AACF10-D473-468E-B380-43780BEEF242}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{65AACF10-D473-468E-B380-43780BEEF242}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{60BE50A7-4699-4058-9D49-CC98C42C47AC}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{6D03716C-65E8-429C-B884-C9C15AF5246C}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{6D03716C-65E8-429C-B884-C9C15AF5246C}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{84797D0C-AD31-4C9B-91D3-0912603383B8}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{75AF26AB-28A6-4715-A431-ED52AB04DBFF}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{75AF26AB-28A6-4715-A431-ED52AB04DBFF}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{2D052D52-F70B-4683-A8BC-1D44D19EB431}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{77188815-FA7D-4775-9394-61BD21DCE311}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{77188815-FA7D-4775-9394-61BD21DCE311}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{1FF88651-A29F-4660-AD51-E1CDAB93661D}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8381B059-C137-4B6B-A0EB-222AACF5E87D}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8381B059-C137-4B6B-A0EB-222AACF5E87D}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{C4FA117F-5AD6-4582-809B-CFB2F5DA7E7D}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{85A90A64-F8D0-4846-9F2D-2C875D97DB12}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{85A90A64-F8D0-4846-9F2D-2C875D97DB12}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{78AA32E7-2A81-4FE3-BC40-174FDD5C2570}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{8FF1A356-F1A9-428A-9493-2E4C0155FC4A}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{8FF1A356-F1A9-428A-9493-2E4C0155FC4A}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{E6B35D4F-D3D7-4AF2-B807-29D9D74015AC}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{AC22C5F9-F691-4198-AA71-AB49B4B6E6E6}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{AC22C5F9-F691-4198-AA71-AB49B4B6E6E6}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{D993FE8E-20DD-490A-B85D-E09FD1C8AE51}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{ADE990E3-96C5-4AA9-B56A-7F485A3301EF}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{ADE990E3-96C5-4AA9-B56A-7F485A3301EF}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{DFACD288-8D4D-426F-9192-3AEBE0E3C34D}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{BE7D1734-EE8F-4BCC-91F0-A73B34E888DF}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{BE7D1734-EE8F-4BCC-91F0-A73B34E888DF}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{29B81FA2-E60E-478C-88E7-2FB79E011728}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{C05CF062-1D0E-4116-8D57-750134D1880E}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{C05CF062-1D0E-4116-8D57-750134D1880E}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{D2EA10EA-15FD-475C-8F85-5844AF3D3CA0}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{CE1D231F-E619-468B-8DAA-BAC0EFEC6DD6}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{CE1D231F-E619-468B-8DAA-BAC0EFEC6DD6}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{E5903E9C-AD72-4399-ACAE-D23A99CA3639}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D380741F-D80A-4306-8A9F-85D6FCBD7DD2}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D380741F-D80A-4306-8A9F-85D6FCBD7DD2}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{1FD9521C-56E9-4EF6-B94D-F40B225F4EE2}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{E5D77156-D189-42D8-9AE0-C7FA1EAD55CB}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E5D77156-D189-42D8-9AE0-C7FA1EAD55CB}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{109B01B9-5D7E-42BF-B27E-8A88ADD89DEF}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{EF70FC6A-4007-48B1-9E30-A56BF1FF5A90}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{EF70FC6A-4007-48B1-9E30-A56BF1FF5A90}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{7DF0ADDF-97B5-4AE2-A015-8F53E489A03D}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F0EA12EE-465B-4681-BC02-7A40D7E8C1EB}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F0EA12EE-465B-4681-BC02-7A40D7E8C1EB}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{084F0B8F-19E1-46BF-9403-96D0C7473CD8}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F20FCD59-A0DD-4053-AEA4-0211C8C52957}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F20FCD59-A0DD-4053-AEA4-0211C8C52957}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{68B4B6BF-E651-4231-9567-9933ABAA7DCA}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F5BAE3A6-391E-4E2B-8E59-CC1B14A8022A}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F5BAE3A6-391E-4E2B-8E59-CC1B14A8022A}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{412576E3-2033-4E08-9450-37CBDA649775}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{F8027D84-497D-4484-9009-3A7E6BA58DFC}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{F8027D84-497D-4484-9009-3A7E6BA58DFC}" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{0722FCC6-6D4B-4B00-968E-64150933594D}" => Key deleted successfully.
C:\Windows\Tasks\AdobeAAMUpdater-1.0-Akrobat-PC-Akrobat.job => Moved successfully.
C:\Windows\Tasks\Application Starter - f1375f225883e83d52e8db9690775c3c.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore1cfecd564d0aff3.job => Moved successfully.
C:\Windows\Tasks\GoogleUpdateTaskMachineCore1d000f76724b72c.job => Moved successfully.
C:\Windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-3182304834-3978523306-3436111158-1000.job => Moved successfully.
C:\Windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-3182304834-3978523306-3436111158-1017.job => Moved successfully.
C:\Windows\Tasks\ReclaimerResumeInstall_Akrobat.job => Moved successfully.
C:\Windows\Tasks\User_Feed_Synchronization-{BDCE70B9-751D-48F5-9874-40A91D6BB061}.job => Moved successfully.
C:\Windows\Tasks\{16C5B1FA-1F88-46AE-A14B-EF5ECEF821B3}.job => Moved successfully.
C:\Windows\System32\Drivers\etc\hosts => Moved successfully.
Hosts was reset successfully.
EmptyTemp: => Removed 75.6 MB temporary data.
The system needed a reboot.
==== End of Fixlog ====
Re: Preventivka NB
Takze pouzite utility jeste smazeme.
- Stahnete a spustte DelFix - https://toolslib.net/downloads/viewdownload/2-delfix/
- Oznacte jen moznost "Remove disinfection tools"
- kliknete na Run
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Re: Preventivka NB
Díky moc....
Re: Preventivka NB
Nemate zac, rad jsem pomohl 
Preju Vam hezky zbytek vecera... mejte se a treba zase nekdy
Preju Vam hezky zbytek vecera... mejte se a treba zase nekdy
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Přispějete na provoz fóra?