Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Problém s flash diskem

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
Uživatelský avatar
Šmíďák
Návštěvník
Návštěvník
Příspěvky: 144
Registrován: 15 říj 2012 13:42
Bydliště: Brno

Problém s flash diskem

#1 Příspěvek od Šmíďák »

Dobrý den,

mám silné podezření, že jsem si dnes na flash disku natáhl z infikovaného počítače virus. Na flash disku se okamžitě všechny přípony souborů mění na .ink, což je fakt na nic. Z opatrnosti tedy nepřipojuji k počítači žádné externí úložné zařízení, nevím, zda-li bych to na něj taky nepřenesl. Tento log je bez připojené flashky. Předem děkuji za kontrolu.

Šmíďák



Logfile of random's system information tool 1.10 (written by random/random)
Run by Jindřich at 2016-09-19 22:28:42
Microsoft Windows 8.1
System drive C: has 67 GB (33%) free of 203 GB
Total RAM: 8113 MB (69% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:28:45, on 19. 9. 2016
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.9600.18123)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe
C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Lenovo\Lenovo Smart Voice\LsvTrayLoad.exe
C:\Program Files (x86)\Lenovo\Lenovo Smart Voice\LsvController.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Lenovo\CCSDK\WinGather.exe
C:\Users\Jindřich\Programy\Firefox\firefox.exe
C:\Program Files\trend micro\Jindřich.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com/?pc=LCJB
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Microsoft OneDrive for Business Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL
O4 - HKLM\..\Run: [StatusAlerts] "C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe" /enum:on /alerts:on /notifications:on /fl:on /fr:on /appData:on /tmcp:on
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [Pokki] C:\Windows\system32\rundll32.exe "%LOCALAPPDATA%\Pokki\Engine\Launcher.dll",RunLaunchPlatform
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Users\Jindřich\Programy\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Users\Jindřich\Programy\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [smycWTeXSeDFCWU] wscript.exe //B "C:\Users\JINDIC~1\AppData\Local\Temp\smycWTeXSeDFCWU.wSf"
O4 - HKCU\..\RunOnce: [Uninstall C:\Users\Jindřich\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\amd64] C:\windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jindřich\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\amd64"
O4 - Startup: smycWTeXSeDFCWU.wSf
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\Users\JINDIC~1\Programy\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\Users\JINDIC~1\Programy\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office\Root\Office16\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIE.dll
O9 - Extra button: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra 'Tools' menuitem: Lync Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O18 - Protocol: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: CCSDK - Unknown owner - C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Users\Jindřich\Programy\DAEMON Tools Lite\DiscSoftBusService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Hi-Rez Studios Authenticate and Update Service (HiPatchService) - Hi-Rez Studios - C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
O23 - Service: HP DS Service - Hewlett-Packard Company - C:\Program Files (x86)\HP\HPBDSService\HPBDSService.exe
O23 - Service: HP LaserJet Service - HP - C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\windows\system32\igfxCUIService.exe (file missing)
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Capability Licensing Service TCP IP Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe
O23 - Service: Intel(R) ME Service - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Lenovo EasyPlus Hotspot - Lenovo - C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe
O23 - Service: Lenovo System Agent Service - LENOVO INCORPORATED. - C:\Program Files\Lenovo\iMController\SystemAgentService.exe
O23 - Service: Lenovo WiFiHotspot Service (LenovoWiFiHotspotSvr) - Unknown owner - C:\Windows\System32\LenovoWiFiHotspotSvr.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: LsvUIService - Lenovo - C:\Program Files (x86)\Lenovo\Lenovo Smart Voice\LsvUIService.exe
O23 - Service: Maxthon Core Update Service (MaxthonUpdateSvc) - Maxthon - C:\Program Files (x86)\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: PGService - PointGrab LTD - C:\Program Files (x86)\Lenovo\Motion Control\PGService.exe
O23 - Service: PG_Service_Launcher - PointGrab LTD - C:\Program Files (x86)\Lenovo\Motion Control\PG_Service_Launcher.exe
O23 - Service: Lenovo PhoneCompanionPusher Service (PhoneCompanionPusher) - Lenovo - C:\Program Files\Lenovo Yoga PhoneCompanion\PhoneCompanionPusher.exe
O23 - Service: Lenovo PhoneCompanionVap Service (PhoneCompanionVap) - Lenovo - C:\Program Files\Lenovo Yoga PhoneCompanion\PhoneCompanionVap.exe
O23 - Service: PnkBstrA - Unknown owner - C:\windows\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\windows\system32\PnkBstrB.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: Cyberlink RichVideo64 Service(CRVS) (RichVideo64) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo64.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: TunngleService - Tunngle.net GmbH - C:\Users\Patejl\Programy\Tunngle\TnglCtrl.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
O23 - Service: ymc - Lenovo - C:\ProgramData\LenovoTransition\Server\x64\ymc.exe
O23 - Service: YogaPicks.AppService - Unknown owner - C:\Program Files (x86)\Lenovo\Yoga Picks\Service\x64\YogaPicks.AppService.exe
O23 - Service: Intel(R) PROSet/Wireless Zero Configuration Service (ZeroConfigService) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe

--
End of file - 14113 bytes

======Listing Processes======





wininit.exe

winlogon.exe

C:\windows\system32\lsass.exe
C:\windows\system32\svchost.exe -k DcomLaunch
C:\windows\system32\svchost.exe -k RPCSS
C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted
"dwm.exe"
C:\windows\system32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\igfxCUIService.exe
C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\system32\WLANExt.exe 772743095232
\??\C:\windows\system32\conhost.exe 0x4
C:\windows\System32\spoolsv.exe
C:\windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe" /service
C:\windows\System32\svchost.exe -k utcsvc
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe"
dashost.exe {acabab5f-e5ec-4b40-9d9862d2a11eba42}
"C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files\Lenovo\iMController\SystemAgentService.exe"
C:\Windows\System32\LenovoWiFiHotspotSvr.exe
"C:\Program Files (x86)\Lenovo\Lenovo Smart Voice\LsvUIService.exe"
"C:\Program Files (x86)\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe"
"C:\Program Files (x86)\Lenovo\Motion Control\PGService.exe"
"C:\Program Files (x86)\Lenovo\Motion Control\PG_Service_Launcher.exe"
"C:\Program Files\Lenovo Yoga PhoneCompanion\PhoneCompanionPusher.exe"
"C:\Program Files (x86)\Lenovo\Motion Control\WebcamSplitterServer.exe" -Embedding
C:\windows\SysWOW64\PnkBstrA.exe
C:\windows\SysWOW64\PnkBstrB.exe
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
"C:\Program Files\CyberLink\Shared files\RichVideo64.exe"
C:\windows\system32\svchost.exe -k imgsvc
C:\ProgramData\LenovoTransition\Server\x64\ymc.exe
"C:\Program Files (x86)\Lenovo\Yoga Picks\Service\x64\YogaPicks.AppService.exe"
"C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe"
C:\windows\system32\wbem\unsecapp.exe -Embedding
C:\windows\system32\wbem\wmiprvse.exe
C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-891ac744-d79b-4ce5-8e0f-5d6ea131b2a4 -SystemEventPortName:HostProcess-e4da4535-6e06-480d-92d7-2b8447c08621 -IoCancelEventPortName:HostProcess-957cbf57-c3d6-4dcd-be7b-436c72293d23 -NonStateChangingEventPortName:HostProcess-ef23ef68-191e-45d2-bf00-e38e3568e66e -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:1b39075e-cbf2-48ad-a747-d519535c44ec -DeviceGroupId:WudfDefaultDevicePool
C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\windows\Explorer.EXE
taskhostex.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
igfxHK.exe
igfxTray.exe
"C:\windows\system32\igfxEM.exe" -Embedding
C:\windows\system32\SearchIndexer.exe /Embedding
C:\Windows\System32\skydrive.exe -Embedding
/QuitInfo:0000000000000B98;0000000000000B90;
/loadhooks /Parent:00000000000013ac
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"

"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /LENOVO_DOLBYDRAGON
"C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /LENOVO_MICPKEY
"C:\Windows\RTFTrack.exe"
"C:\Program Files\Lenovo Yoga PhoneCompanion\Yoga Phone Companion.exe"
"C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe"
"C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe"
C:\windows\system32\wbem\wmiprvse.exe
"C:\Windows\System32\wscript.exe" //B "C:\Users\JINDIC~1\AppData\Local\Temp\smycWTeXSeDFCWU.wSf"
"C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe" /enum:on /alerts:on /notifications:on /fl:on /fr:on /appData:on /tmcp:on
"C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
C:\Users\Jindřich\Programy\CCleaner\CCleaner.exe /MONITOR /uac
"C:\Program Files (x86)\Lenovo\Lenovo Smart Voice\LsvTrayLoad.exe" /AutoRun
"C:\Program Files (x86)\Lenovo\Lenovo Smart Voice\LsvController.exe" -run
C:\windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe"
adb fork-server server
"C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe"
"C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\Lenovo\CCSDK\WinGather.exe" 1 1 1 1
"C:\Windows\System32\SettingSyncHost.exe" -Embedding
C:\windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files\Microsoft Office\Root\VFS\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\CSISYNCCLIENT.EXE" -Embedding
"C:\Users\Jindřich\Programy\Firefox\firefox.exe"
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\windows\System32\vds.exe
C:\Windows\System32\RuntimeBroker.exe -Embedding
"C:\Users\Jindřich\Programy\Totalcmd\TOTALCMD64.EXE"
"C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\LiveComm.exe" -ServerName:Microsoft.WindowsLive.Platform.Server
"C:\windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe5_ Global\UsGthrCtrlFltPipeMssGthrPipe5 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
taskeng.exe {AD82F0D9-6FE9-4CA6-9348-9258C5EFD49F}
"C:\Users\Jindřich\Downloads\RSITx64.exe"

======Scheduled tasks folder======

C:\windows\tasks\Adobe Flash Player Updater.job - C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
C:\windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\windows\tasks\GoogleUpdateTaskMachineCore1d0f19cbf91c392.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\Jindřich\AppData\Roaming\Mozilla\Firefox\Profiles\5kd5qg9f.default

prefs.js - "browser.startup.homepage" - "www.centrum.cz"

"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
"sp@avast.com"=C:\Program Files\AVAST Software\Avast\SafePrice\FF


[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 23.0.0.162 Plugin
"Path"=C:\windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_162.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5]
"Description"=Intel IPT WebApi plugin
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater]
"Description"=This plugin updates Intel WebAPI component
"Path"=C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Users\Jindřich\Programy\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 23.0.0.162 Plugin
"Path"=C:\windows\system32\Macromed\Flash\NPSWF64_23_0_0_162.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.66.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Users\Jindřich\Programy\Java\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.66.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Users\Jindřich\Programy\Java\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL


======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2016-07-31 231104]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Users\Jindřich\Programy\Java\bin\ssv.dll [2015-10-22 551520]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-09-10 948792]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files\Microsoft Office\root\Office16\GROOVEEX.DLL [2016-07-31 2095912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Users\Jindřich\Programy\Java\bin\jp2ssv.dll [2015-10-22 212576]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2016-07-31 170688]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-09-10 713440]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft OneDrive for Business Browser Helper - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2016-07-31 1538344]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe [2014-03-26 36352]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2014-01-22 13667032]
"RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-01-13 1374936]
"RtHDVBg_LENOVO_DOLBYDRAGON"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-01-13 1374936]
"RtHDVBg_LENOVO_MICPKEY"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2014-01-13 1374936]
"RtsFT"=C:\windows\RTFTrack.exe [2013-10-17 6340312]
"Yoga PhoneCompanion"=C:\Program Files\Lenovo Yoga PhoneCompanion\Yoga Phone Companion.exe [2015-02-09 844304]
"Energy Manager"=C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [2015-02-09 15813616]
"Lenovo Utility"=C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe [2015-02-09 80880]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Pokki"=C:\Users\Jindřich\AppData\Local\Pokki\Engine\Launcher.dll [2014-04-29 1893144]
"DAEMON Tools Lite Automount"=C:\Users\Jindřich\Programy\DAEMON Tools Lite\DTAgent.exe [2015-06-18 4468056]
"CCleaner Monitoring"=C:\Users\Jindřich\Programy\CCleaner\CCleaner64.exe [2016-07-13 8891608]
"smycWTeXSeDFCWU"=wscript.exe //B C:\Users\JINDIC~1\AppData\Local\Temp\smycWTeXSeDFCWU.wSf []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Uninstall C:\Users\Jindřich\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\amd64"=C:\windows\system32\cmd.exe [2014-10-29 357376]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StatusAlerts"=C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe [2013-04-18 313656]
"HP Software Update"=C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [2013-05-30 96056]
""= []
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2015-10-06 597040]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2016-09-12 9107616]

C:\Users\Jindřich\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
smycWTeXSeDFCWU.wSf

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McNaiAnn]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableTaskMgr"=0
"SoftwareSASGeneration"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0
"NoFolderOptions"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"VIDC.YUY2"=msyuv.dll
"vidc.i420"=iyuv_32.dll
"msacm.msgsm610"=msgsm32.acm
"msacm.msg711"=msg711.acm
"VIDC.YVYU"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"wavemapper"=msacm32.drv
"midimapper"=midimap.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"vidc.msvc"=msvidc32.dll
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2016-09-19 22:28:42 ----D---- C:\rsit
2016-09-19 22:28:42 ----D---- C:\Program Files\trend micro
2016-09-19 17:50:44 ----D---- C:\Users\Jindřich\AppData\Roaming\Softplicity
2016-09-15 02:39:52 ----A---- C:\windows\system32\glcndFilter.dll
2016-09-15 02:39:48 ----A---- C:\windows\system32\Windows.Data.Pdf.dll
2016-09-15 02:39:45 ----A---- C:\windows\SYSWOW64\glcndFilter.dll
2016-09-15 02:39:41 ----A---- C:\windows\SYSWOW64\Windows.Data.Pdf.dll
2016-09-15 02:39:35 ----A---- C:\windows\SYSWOW64\oleaut32.dll
2016-09-15 02:39:35 ----A---- C:\windows\system32\oleaut32.dll
2016-09-15 02:39:30 ----A---- C:\windows\system32\drivers\srv2.sys
2016-09-15 02:39:30 ----A---- C:\windows\system32\drivers\srv.sys
2016-09-15 02:39:29 ----A---- C:\windows\system32\drivers\srvnet.sys
2016-09-15 02:39:21 ----A---- C:\windows\SYSWOW64\schannel.dll
2016-09-15 02:39:21 ----A---- C:\windows\system32\schannel.dll
2016-09-15 02:38:04 ----A---- C:\windows\system32\mshtml.dll
2016-09-15 02:37:42 ----A---- C:\windows\SYSWOW64\mshtml.dll
2016-09-15 02:37:31 ----A---- C:\windows\system32\jscript9.dll
2016-09-15 02:37:20 ----A---- C:\windows\system32\ieframe.dll
2016-09-15 02:37:06 ----A---- C:\windows\system32\actxprxy.dll
2016-09-15 02:37:01 ----A---- C:\windows\SYSWOW64\ieframe.dll
2016-09-15 02:36:59 ----A---- C:\windows\SYSWOW64\jscript9.dll
2016-09-15 02:36:56 ----A---- C:\windows\SYSWOW64\actxprxy.dll
2016-09-15 02:36:54 ----A---- C:\windows\system32\wininet.dll
2016-09-15 02:36:53 ----A---- C:\windows\SYSWOW64\wininet.dll
2016-09-15 02:36:53 ----A---- C:\windows\system32\vbscript.dll
2016-09-15 02:36:52 ----A---- C:\windows\SYSWOW64\vbscript.dll
2016-09-15 02:36:50 ----A---- C:\windows\SYSWOW64\iertutil.dll
2016-09-15 02:36:50 ----A---- C:\windows\system32\iertutil.dll
2016-09-15 02:36:48 ----A---- C:\windows\system32\urlmon.dll
2016-09-15 02:36:48 ----A---- C:\windows\system32\msfeeds.dll
2016-09-15 02:36:48 ----A---- C:\windows\system32\inetcomm.dll
2016-09-15 02:36:47 ----A---- C:\windows\SYSWOW64\urlmon.dll
2016-09-15 02:36:47 ----A---- C:\windows\SYSWOW64\inetcomm.dll
2016-09-15 02:36:47 ----A---- C:\windows\system32\jscript.dll
2016-09-15 02:36:46 ----A---- C:\windows\SYSWOW64\msfeeds.dll
2016-09-15 02:36:46 ----A---- C:\windows\SYSWOW64\jscript.dll
2016-09-15 02:36:46 ----A---- C:\windows\SYSWOW64\ieapfltr.dll
2016-09-15 02:36:46 ----A---- C:\windows\system32\ieapfltr.dll
2016-09-15 02:36:34 ----A---- C:\windows\SYSWOW64\rasapi32.dll
2016-09-15 02:36:34 ----A---- C:\windows\SYSWOW64\esent.dll
2016-09-15 02:36:34 ----A---- C:\windows\SYSWOW64\dnsapi.dll
2016-09-15 02:36:34 ----A---- C:\windows\system32\vpnike.dll
2016-09-15 02:36:34 ----A---- C:\windows\system32\rdpcorets.dll
2016-09-15 02:36:34 ----A---- C:\windows\system32\rasapi32.dll
2016-09-15 02:36:34 ----A---- C:\windows\system32\ole32.dll
2016-09-15 02:36:34 ----A---- C:\windows\system32\mprdim.dll
2016-09-15 02:36:34 ----A---- C:\windows\system32\mprddm.dll
2016-09-15 02:36:34 ----A---- C:\windows\system32\esent.dll
2016-09-15 02:36:34 ----A---- C:\windows\system32\dnsrslvr.dll
2016-09-15 02:36:34 ----A---- C:\windows\system32\dnsapi.dll
2016-09-15 02:36:33 ----A---- C:\windows\SYSWOW64\rasppp.dll
2016-09-15 02:36:33 ----A---- C:\windows\SYSWOW64\rasman.dll
2016-09-15 02:36:33 ----A---- C:\windows\SYSWOW64\ole32.dll
2016-09-15 02:36:33 ----A---- C:\windows\SYSWOW64\mprdim.dll
2016-09-15 02:36:33 ----A---- C:\windows\SYSWOW64\mprddm.dll
2016-09-15 02:36:33 ----A---- C:\windows\SYSWOW64\iprtrmgr.dll
2016-09-15 02:36:33 ----A---- C:\windows\SYSWOW64\dssenh.dll
2016-09-15 02:36:33 ----A---- C:\windows\system32\wpdbusenum.dll
2016-09-15 02:36:33 ----A---- C:\windows\system32\rdpudd.dll
2016-09-15 02:36:33 ----A---- C:\windows\system32\rdpclip.exe
2016-09-15 02:36:33 ----A---- C:\windows\system32\rasppp.dll
2016-09-15 02:36:33 ----A---- C:\windows\system32\rasmans.dll
2016-09-15 02:36:33 ----A---- C:\windows\system32\rasman.dll
2016-09-15 02:36:33 ----A---- C:\windows\system32\rascustom.dll
2016-09-15 02:36:33 ----A---- C:\windows\system32\nshwfp.dll
2016-09-15 02:36:33 ----A---- C:\windows\system32\iprtrmgr.dll
2016-09-15 02:36:33 ----A---- C:\windows\system32\IKEEXT.DLL
2016-09-15 02:36:33 ----A---- C:\windows\system32\dssenh.dll
2016-09-15 02:36:33 ----A---- C:\windows\system32\drivers\mountmgr.sys
2016-09-15 02:36:33 ----A---- C:\windows\system32\drivers\agilevpn.sys
2016-09-15 02:36:30 ----A---- C:\windows\SYSWOW64\msv1_0.dll
2016-09-15 02:36:30 ----A---- C:\windows\system32\sspicli.dll
2016-09-15 02:36:30 ----A---- C:\windows\system32\msv1_0.dll
2016-09-15 02:36:30 ----A---- C:\windows\system32\lsasrv.dll
2016-09-15 02:36:30 ----A---- C:\windows\system32\drivers\mrxsmb10.sys
2016-09-15 02:36:30 ----A---- C:\windows\system32\drivers\mrxsmb.sys
2016-09-15 02:36:29 ----A---- C:\windows\SYSWOW64\sspicli.dll
2016-09-15 02:36:29 ----A---- C:\windows\SYSWOW64\certcli.dll
2016-09-15 02:36:29 ----A---- C:\windows\system32\drivers\mrxsmb20.sys
2016-09-15 02:36:29 ----A---- C:\windows\system32\drivers\ksecdd.sys
2016-09-15 02:36:29 ----A---- C:\windows\system32\certcli.dll
2016-09-15 02:36:19 ----A---- C:\windows\system32\winresume.exe
2016-09-15 02:36:19 ----A---- C:\windows\system32\winload.exe
2016-09-15 02:36:19 ----A---- C:\windows\system32\ntoskrnl.exe
2016-09-15 02:36:19 ----A---- C:\windows\system32\ntdll.dll
2016-09-15 02:36:18 ----A---- C:\windows\SYSWOW64\user32.dll
2016-09-15 02:36:18 ----A---- C:\windows\system32\wwanmm.dll
2016-09-15 02:36:18 ----A---- C:\windows\system32\wwanconn.dll
2016-09-15 02:36:18 ----A---- C:\windows\system32\win32k.sys
2016-09-15 02:36:18 ----A---- C:\windows\system32\user32.dll
2016-09-15 02:36:18 ----A---- C:\windows\system32\pnidui.dll
2016-09-15 02:36:18 ----A---- C:\windows\system32\csrsrv.dll
2016-09-14 10:22:57 ----D---- C:\ProgramData\Lavasoft
2016-09-10 14:25:38 ----A---- C:\windows\system32\aswBoot.exe
2016-09-10 14:25:35 ----A---- C:\windows\avastSS.scr
2016-08-23 09:22:08 ----D---- C:\Program Files\Common Files\DESIGNER

======List of files/folders modified in the last 1 month======

2016-09-19 22:28:42 ----RD---- C:\Program Files
2016-09-19 22:27:00 ----D---- C:\windows\Inf
2016-09-19 22:27:00 ----AD---- C:\windows\System32
2016-09-19 22:27:00 ----A---- C:\windows\system32\PerfStringBackup.INI
2016-09-19 22:26:09 ----D---- C:\windows\Temp
2016-09-19 22:25:54 ----D---- C:\windows\system32\drivers
2016-09-19 22:07:04 ----D---- C:\windows\system32\sru
2016-09-19 18:09:35 ----D---- C:\Users\Jindřich\AppData\Roaming\gtk-2.0
2016-09-19 16:23:43 ----D---- C:\windows\Prefetch
2016-09-19 09:11:57 ----D---- C:\windows\Microsoft.NET
2016-09-19 01:00:07 ----D---- C:\Users\Jindřich\AppData\Roaming\vlc
2016-09-18 01:46:20 ----D---- C:\windows\rescache
2016-09-17 18:52:45 ----D---- C:\windows\debug
2016-09-16 16:39:50 ----SHD---- C:\System Volume Information
2016-09-16 16:34:50 ----AD---- C:\Windows
2016-09-16 14:50:40 ----D---- C:\Users\Jindřich\AppData\Roaming\DAEMON Tools Lite
2016-09-16 12:12:52 ----D---- C:\Users\Jindřich\AppData\Roaming\uTorrent
2016-09-16 11:55:53 ----D---- C:\windows\system32\config
2016-09-16 11:50:41 ----D---- C:\windows\WinSxS
2016-09-16 11:50:28 ----D---- C:\windows\system32\Tasks
2016-09-16 10:02:02 ----D---- C:\windows\SYSWOW64\setup
2016-09-16 10:02:02 ----D---- C:\windows\SysWOW64
2016-09-16 10:02:02 ----D---- C:\windows\system32\setup
2016-09-16 10:02:02 ----D---- C:\Program Files\Internet Explorer
2016-09-16 10:02:02 ----D---- C:\Program Files (x86)\Internet Explorer
2016-09-16 09:59:45 ----D---- C:\windows\system32\MRT
2016-09-16 09:56:38 ----AC---- C:\windows\system32\MRT.exe
2016-09-16 09:56:18 ----D---- C:\windows\CbsTemp
2016-09-16 09:56:14 ----D---- C:\windows\system32\en-US
2016-09-16 09:56:14 ----D---- C:\windows\system32\cs-CZ
2016-09-15 02:35:21 ----SHD---- C:\windows\Installer
2016-09-15 02:35:18 ----D---- C:\windows\system32\catroot2
2016-09-14 19:49:54 ----HD---- C:\ProgramData
2016-09-14 19:21:36 ----HD---- C:\Program Files\WindowsApps
2016-09-14 19:21:36 ----D---- C:\windows\AppReadiness
2016-09-13 17:45:06 ----D---- C:\windows\system32\Macromed
2016-09-13 17:45:05 ----D---- C:\windows\SYSWOW64\Macromed
2016-09-07 03:11:48 ----A---- C:\windows\SYSWOW64\FlashPlayerApp.exe
2016-09-06 23:05:31 ----D---- C:\windows\SoftwareDistribution
2016-09-06 21:04:23 ----D---- C:\Users\Jindřich\AppData\Roaming\BSplayer
2016-08-29 21:46:09 ----D---- C:\Users\Jindřich\AppData\Roaming\Skype
2016-08-29 21:45:56 ----D---- C:\ProgramData\Skype
2016-08-29 21:45:55 ----RD---- C:\Program Files (x86)\Skype
2016-08-29 16:00:50 ----D---- C:\windows\system32\DriverStore
2016-08-23 09:22:30 ----D---- C:\ProgramData\regid.1991-06.com.microsoft
2016-08-23 09:22:08 ----D---- C:\Program Files\Common Files\microsoft shared
2016-08-23 09:22:08 ----D---- C:\Program Files\Common Files
2016-08-23 09:21:26 ----D---- C:\Program Files\Microsoft Office

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\windows\system32\drivers\aswRvrt.sys [2016-09-10 74544]
R0 aswVmm;avast! VM Monitor; C:\windows\system32\drivers\aswVmm.sys [2016-09-10 292704]
R0 iaStorA;iaStorA; C:\windows\System32\drivers\iaStorA.sys [2014-03-26 645992]
R1 aswKbd;aswKbd; C:\windows\system32\drivers\aswKbd.sys [2016-09-10 37144]
R1 aswRdr;aswRdr; C:\windows\system32\drivers\aswRdr2.sys [2016-09-10 103064]
R1 aswSnx;aswSnx; C:\windows\system32\drivers\aswSnx.sys [2016-09-16 969184]
R1 aswSP;aswSP; C:\windows\system32\drivers\aswSP.sys [2016-09-10 513496]
R1 vwififlt;@%SystemRoot%\System32\drivers\vwififlt.sys,-259; C:\windows\system32\DRIVERS\vwififlt.sys [2014-04-30 71680]
R2 aswMonFlt;aswMonFlt; C:\windows\system32\drivers\aswMonFlt.sys [2016-09-10 108816]
R2 aswStm;aswStm; C:\windows\system32\drivers\aswStm.sys [2016-09-10 163416]
R3 ACPIVPC;@oem65.inf,%ACPIVPC.SvcDesc%;Lenovo Virtual Power Controller Driver; C:\windows\System32\drivers\AcpiVpc.sys [2015-02-09 35600]
R3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\windows\System32\drivers\BthEnum.sys [2014-10-29 53248]
R3 BthLEEnum;@bthleenum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\windows\system32\DRIVERS\BthLEEnum.sys [2014-03-18 226304]
R3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Zařízení Bluetooth (síť PAN); C:\windows\System32\drivers\bthpan.sys [2015-07-10 118272]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\windows\System32\Drivers\BTHUSB.sys [2014-10-29 81920]
R3 dtlitescsibus;@oem69.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\windows\System32\drivers\dtlitescsibus.sys [2015-09-11 30264]
R3 ibtusb;@oem60.inf,%ibtusb.SVCDESC_IBT%;Intel(R) Wireless Bluetooth(R) 4.0; C:\windows\system32\DRIVERS\ibtusb.sys [2013-10-18 142280]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd64.sys [2014-03-10 3729920]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\windows\system32\drivers\RTKVHD64.sys [2014-01-21 3849304]
R3 iwdbus;@oem9.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\windows\System32\drivers\iwdbus.sys [2014-03-01 27032]
R3 MEIx64;@oem4.inf,%TEE_SvcDesc%;Intel(R) Management Engine Interface ; C:\windows\system32\DRIVERS\TeeDriverx64.sys [2013-09-16 99288]
R3 NETwNb64;@oem12.inf,___ %NIC_Service_DispName_WINB_64%;___ Intel(R) Wireless Adapter Driver for Windows 8.1 - 64 Bit; C:\windows\system32\DRIVERS\Netwbw02.sys [2014-02-18 3433952]
R3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\windows\System32\drivers\rfcomm.sys [2015-01-30 167424]
R3 rtsuvc;@oem25.inf,%rtsuvc.DeviceDesc%;Lenovo EasyCamera; C:\windows\system32\DRIVERS\rtsuvc.sys [2013-10-17 8876248]
R3 SensorsHIDClassDriver;@sensorshidclassdriver.inf,%WudfSensorsHIDClassDriverDisplayName%;UMDF Reflector service for SensorsHIDClassDriver; C:\windows\System32\drivers\WUDFRd.sys [2014-10-29 226304]
R3 SensorsServiceDriver;@sensorsservicedriver.inf,%WudfSensorsServiceDriverDisplayName%;UMDF Reflector service for SensorsServiceDriver; C:\windows\System32\drivers\WUDFRd.sys [2014-10-29 226304]
R3 SmbDrvI;SmbDrvI; C:\windows\system32\DRIVERS\Smb_driver_Intel.sys [2013-12-19 34544]
R3 StillCam;@sti.inf,%StillCam.SvcDesc%;Ovladač digitálního fotoaparátu pro sériový port; C:\windows\system32\DRIVERS\serscan.sys [2014-10-29 11776]
R3 SynTP;@oem62.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2013-12-19 532720]
R3 tap0901t;@oem81.inf,%DeviceDescription%;TAP-Win32 Adapter V9 (Tunngle); C:\windows\system32\DRIVERS\tap0901t.sys [2009-09-16 31232]
S0 mfeelamk;McAfee Inc. mfeelamk; C:\windows\system32\drivers\mfeelamk.sys [2015-07-02 80920]
S3 aswHwid;avast! HardwareID; C:\windows\system32\drivers\aswHwid.sys [2016-09-10 37656]
S3 AX88772;@netax88772.inf,%AX88772.DeviceDesc%;ASIX AX88772 USB2.0 to Fast Ethernet Adapter; C:\windows\system32\DRIVERS\ax88772.sys [2013-07-18 113864]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\windows\System32\Drivers\BTHport.sys [2015-05-11 1201664]
S3 dg_ssudbus;@oem84.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\windows\system32\DRIVERS\ssudbus.sys [2016-07-22 130688]
S3 e1iexpress;@net1ic64.inf,%e1iExpress.Service.DispName%;Intel(R) PRO/1000 PCI Express Network Connection Driver I; C:\windows\system32\DRIVERS\e1i63x64.sys [2013-06-18 460288]
S3 intaud_WaveExtensible;@oem8.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\windows\system32\drivers\intelaud.sys [2014-03-01 38296]
S3 IntcDAud;@oem5.inf,%IntcDAud.SvcDesc%;Intel(R) Display Audio; C:\windows\system32\DRIVERS\IntcDAud.sys [2014-03-07 450520]
S3 KMWDFILTER;HIDServiceDesc; C:\windows\System32\drivers\KMWDFILTER.sys [2009-04-29 30208]
S3 NETwNe64;@netwew02.inf,___ %NIC_Service_DispName_WIN8_64%;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 8 - 64 Bit; C:\windows\system32\DRIVERS\NETwew02.sys [2013-06-18 4649440]
S3 RSUSBVSTOR;@oem11.inf,%RSUSBVSTOR.SvcDesc%;RtsUVStor.Sys Realtek USB Card Reader; C:\windows\System32\Drivers\RtsUVStor.sys [2013-09-24 329944]
S3 ssudmdm;@oem85.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\windows\system32\DRIVERS\ssudmdm.sys [2016-07-22 164992]
S3 usb_rndisx;@netrndis.inf,%usb_rndis.Service.DispName%;Adaptér USB RNDIS; C:\windows\system32\DRIVERS\usb8023x.sys [2015-04-25 20992]
S3 usbscan;@sti.inf,%usbscan.SvcDesc%;Ovladač skeneru USB; C:\windows\system32\DRIVERS\usbscan.sys [2014-10-29 44544]
S3 usbvideo;@usbvideo.inf,%USBVideo.SvcDesc%;USB Video Device (WDM); C:\windows\System32\Drivers\usbvideo.sys [2014-06-21 212736]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-09-08 82128]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-09-10 197128]
R2 CCSDK;CCSDK; C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe [2014-07-10 592880]
R2 ClickToRunSvc;Služba Microsoft Office ClickToRun; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2016-07-31 2854640]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\windows\System32\svchost.exe [2014-10-29 38792]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2014-01-18 632048]
R2 HiPatchService;Hi-Rez Studios Authenticate and Update Service; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [2015-09-02 8704]
R2 HP LaserJet Service;HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [2012-12-04 174592]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2014-03-26 16232]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\windows\system32\igfxCUIService.exe [2014-03-10 282072]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2013-08-28 747520]
R2 Intel(R) ME Service;Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2013-09-16 131544]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2013-09-16 169432]
R2 Lenovo System Agent Service;Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [2015-12-14 584664]
R2 LenovoWiFiHotspotSvr;Lenovo WiFiHotspot Service; C:\Windows\System32\LenovoWiFiHotspotSvr.exe [2015-02-09 198192]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-09-16 390616]
R2 LsvUIService;LsvUIService; C:\Program Files (x86)\Lenovo\Lenovo Smart Voice\LsvUIService.exe [2015-02-09 70416]
R2 MaxthonUpdateSvc;Maxthon Core Update Service; C:\Program Files (x86)\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe [2015-11-30 1872808]
R2 PG_Service_Launcher;PG_Service_Launcher; C:\Program Files (x86)\Lenovo\Motion Control\PG_Service_Launcher.exe [2014-02-25 512776]
R2 PGService;PGService; C:\Program Files (x86)\Lenovo\Motion Control\PGService.exe [2014-02-25 167176]
R2 PhoneCompanionPusher;Lenovo PhoneCompanionPusher Service; C:\Program Files\Lenovo Yoga PhoneCompanion\PhoneCompanionPusher.exe [2015-02-09 285712]
R2 PnkBstrA;PnkBstrA; C:\windows\syswow64\PnkBstrA.exe [2015-10-17 66872]
R2 PnkBstrB;PnkBstrB; C:\windows\syswow64\PnkBstrB.exe [2015-10-17 107832]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2014-01-18 154864]
R2 RichVideo64;Cyberlink RichVideo64 Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo64.exe [2012-04-24 390632]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2014-03-18 43696]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-11 144200]
S2 Net Driver HPZ12;Net Driver HPZ12; C:\windows\System32\svchost.exe [2014-10-29 38792]
S2 Pml Driver HPZ12;Pml Driver HPZ12; C:\windows\System32\svchost.exe [2014-10-29 38792]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-07-25 324224]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-09-13 270016]
S3 BthHFSrv;@%SystemRoot%\System32\BthHFSrv.dll,-103; C:\windows\System32\svchost.exe [2014-10-29 38792]
S3 cphs;Intel(R) Content Protection HECI Service; C:\windows\SysWow64\IntelCpHeciSvc.exe [2014-03-10 279000]
S3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Users\Jindřich\Programy\DAEMON Tools Lite\DiscSoftBusService.exe [2015-06-18 1268568]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-11 144200]
S3 HP DS Service;HP DS Service; C:\Program Files (x86)\HP\HPBDSService\HPBDSService.exe [2011-10-17 13824]
S3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [2013-08-28 828376]
S3 Lenovo EasyPlus Hotspot;Lenovo EasyPlus Hotspot; C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe [2014-09-23 561408]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2015-08-26 149160]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2014-01-18 284912]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2016-07-31 252120]
S3 PhoneCompanionVap;Lenovo PhoneCompanionVap Service; C:\Program Files\Lenovo Yoga PhoneCompanion\PhoneCompanionVap.exe [2015-02-09 304144]
S3 TunngleService;TunngleService; C:\Users\Patejl\Programy\Tunngle\TnglCtrl.exe [2015-09-26 805840]
S4 VeriFaceSrv;VeriFaceSrv; C:\Program Files (x86)\Lenovo\Lenovo VeriFace Pro\VfConnectorService.exe [2015-02-09 67856]

-----------------EOF-----------------
Nahoru
altrok
Moderátor
Moderátor
Příspěvky: 7264
Registrován: 15 lis 2012 22:26
Bydliště: Znojmo

Re: Problém s flash diskem

#2 Příspěvek od altrok »

Dobry den,


:arrow:
  • Stahnete a spustte http://www.fosshub.com/UsbFix.html
  • kliknete na Clean, vlozte nakazenou flashku do PC a kliknete na OK
  • pri dotazu na asistenci kliknete na No
  • upozorneni na ukonceni procesu - OK
  • obsah prave vytvoreneho logu vlozte do pristiho prispevku
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Nahoru
Uživatelský avatar
Šmíďák
Návštěvník
Návštěvník
Příspěvky: 144
Registrován: 15 říj 2012 13:42
Bydliště: Brno

Re: Problém s flash diskem

#3 Příspěvek od Šmíďák »

Zde:


################## | Active Processes |

[HIDDEN] C:\Program Files\Lenovo Yoga PhoneCompanion\adb.exe (ID: 1580|ParentID: 1580|SYSTEM)
[HIDDEN] C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe (ID: 1708|ParentID: 1708|Jindřich)
[HIDDEN] C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_23_0_0_162.exe (ID: 2604|ParentID: 2604|Jindřich)
[HIDDEN] C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_23_0_0_162.exe (ID: 2856|ParentID: 2856|Jindřich)
[HIDDEN] C:\Program Files (x86)\Maxthon\Bin\MxUp.exe (ID: 2864|ParentID: 2864|Jindřich)
[HIDDEN] C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_23_0_0_162.exe (ID: 3200|ParentID: 3200|Jindřich)
[HIDDEN] C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe (ID: 4804|ParentID: 4804|SYSTEM)
[HIDDEN] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (ID: 4872|ParentID: 4872|Jindřich)
[HIDDEN] C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_23_0_0_162.exe (ID: 6092|ParentID: 6092|Jindřich)
[HIDDEN] C:\Users\Jindřich\Programy\Firefox\firefox.exe (ID: 6936|ParentID: 6936|Jindřich)
[HIDDEN] C:\Program Files (x86)\Internet Explorer\iexplore.exe (ID: 8148|ParentID: 8148|Jindřich)
############################## | UsbFix V 8.276 | [Clean]

User: Jindřich (Administrator) # BELZEBUB
Updated 20/09/2016 by SOSVirus
Started at 19:55:17 | 20/09/2016

Website : https://www.usb-antivirus.com/
Tutorial : https://www.usb-antivirus.com/tutorial/
Support : https://www.sosvirus.org/
Live detection : http://www.sosmalware.com/usbfix/
Contact : https://www.usb-antivirus.com/contact/

################## | System information |

MB: LENOVO (INVALID)
CPU: Intel(R) Core(TM) i5-4210U CPU @ 1.70GHz
GC: Intel(R) HD Graphics Family
RAM -> [Total : 8113 Mo | Free : 5436 Mo]
Bios: LENOVO
Boot: Normal boot

OS: Microsoft™ Windows 8.1 (6.3.9600 64-Bit)
WB: Internet Explorer : 11.00.9600.16384
WB: Google Chrome : 53.0.2785.116

################## | Security Information |

AV: Windows Defender [(!) Disabled |Updated]
AV: Avast Antivirus [(!) Disabled |Updated]
AS: Windows Defender [(!) Disabled |Updated]
AS: Avast Antivirus [(!) Disabled |Updated]
FW: Windows Firewall [Enabled]
SC: Security Center [Enabled]
WU: Windows Update [Enabled]

################## | Disk Information |

C:\ (%SystemDrive%) -> Fixed disk # 198 Gb (65 Gb free - 33%) [Windows8_OS] # NTFS
D:\ -> Fixed disk # 25 Gb (23 Gb free - 90%) [LENOVO] # NTFS
E:\ -> Removable disk # 245 Mb (202 Mb free - 82%) [SALADIN] # FAT

################## | Stopped processes |

C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (ID: 272|ParentID: 4872|Jindřich)
C:\Windows\System32\igfxCUIService.exe (ID: 392|ParentID: 652|SYSTEM)
C:\Windows\System32\wlanext.exe (ID: 1128|ParentID: 492|SYSTEM)
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe (ID: 1440|ParentID: 5496|Jindřich)
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe (ID: 1508|ParentID: 652|SYSTEM)
C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (ID: 1524|ParentID: 652|SYSTEM)
[HIDDEN] C:\Program Files\Lenovo Yoga PhoneCompanion\adb.exe (ID: 1580|ParentID: 1580|SYSTEM)
C:\Program Files\Intel\WiFi\bin\EvtEng.exe (ID: 1596|ParentID: 652|SYSTEM)
C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe (ID: 1628|ParentID: 652|SYSTEM)
C:\Program Files (x86)\Lenovo\Motion Control\PGService.exe (ID: 1656|ParentID: 652|SYSTEM)
[HIDDEN] C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe (ID: 1708|ParentID: 1708|Jindřich)
C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe (ID: 1832|ParentID: 652|SYSTEM)
C:\Program Files\Intel\iCLS Client\HeciServer.exe (ID: 1888|ParentID: 652|SYSTEM)
C:\Windows\System32\LenovoWiFiHotspotSvr.exe (ID: 1948|ParentID: 652|SYSTEM)
C:\Program Files (x86)\Lenovo\Lenovo Smart Voice\LsvUIService.exe (ID: 1988|ParentID: 652|SYSTEM)
C:\Windows\System32\vds.exe (ID: 2000|ParentID: 652|SYSTEM)
C:\Program Files (x86)\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe (ID: 2024|ParentID: 652|SYSTEM)
C:\Program Files (x86)\Lenovo\Motion Control\PG_Service_Launcher.exe (ID: 2152|ParentID: 652|SYSTEM)
C:\Windows\System32\wbem\unsecapp.exe (ID: 2572|ParentID: 736|SYSTEM)
[HIDDEN] C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_23_0_0_162.exe (ID: 2604|ParentID: 2604|Jindřich)
C:\Program Files\Lenovo Yoga PhoneCompanion\PhoneCompanionPusher.exe (ID: 2628|ParentID: 652|SYSTEM)
C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe (ID: 2672|ParentID: 652|SYSTEM)
C:\Program Files (x86)\Lenovo\Motion Control\WebcamSplitterServer.exe (ID: 2676|ParentID: 736|LOCAL SERVICE)
C:\Windows\SysWOW64\PnkBstrA.exe (ID: 2696|ParentID: 652|SYSTEM)
C:\Windows\SysWOW64\PnkBstrB.exe (ID: 2716|ParentID: 652|SYSTEM)
C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (ID: 2772|ParentID: 652|SYSTEM)
C:\Program Files\CyberLink\Shared files\RichVideo64.exe (ID: 2800|ParentID: 652|SYSTEM)
[HIDDEN] C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_23_0_0_162.exe (ID: 2856|ParentID: 2856|Jindřich)
C:\Program Files\Lenovo Yoga PhoneCompanion\adb.exe (ID: 2872|ParentID: 1580|SYSTEM)
C:\ProgramData\LenovoTransition\Server\x64\ymc.exe (ID: 2920|ParentID: 652|SYSTEM)
C:\Program Files (x86)\Lenovo\Yoga Picks\Service\x64\YogaPicks.AppService.exe (ID: 3016|ParentID: 652|SYSTEM)
C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe (ID: 3052|ParentID: 652|SYSTEM)
C:\Program Files\Common Files\microsoft shared\ink\InputPersonalization.exe (ID: 3064|ParentID: 736|Jindřich)
[HIDDEN] C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_23_0_0_162.exe (ID: 3200|ParentID: 3200|Jindřich)
C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe (ID: 4112|ParentID: 652|LOCAL SERVICE)
C:\Windows\System32\taskhostex.exe (ID: 4160|ParentID: 948|Jindřich)
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (ID: 4184|ParentID: 948|Jindřich)
C:\Windows\System32\igfxHK.exe (ID: 4620|ParentID: 4556|Jindřich)
C:\Windows\System32\igfxTray.exe (ID: 4628|ParentID: 4556|Jindřich)
C:\Windows\System32\igfxEM.exe (ID: 4668|ParentID: 736|Jindřich)
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (ID: 4744|ParentID: 652|SYSTEM)
[HIDDEN] C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe (ID: 4804|ParentID: 4804|SYSTEM)
C:\Windows\SysWOW64\ctfmon.exe (ID: 4824|ParentID: 5284|Jindřich)
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe (ID: 4952|ParentID: 652|SYSTEM)
C:\Windows\System32\SkyDrive.exe (ID: 5016|ParentID: 736|Jindřich)
C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe (ID: 5036|ParentID: 492|Jindřich)
[HIDDEN] C:\Program Files (x86)\Common Files\Microsoft Shared\Ink\TabTip32.exe (ID: 5112|ParentID: 5036|Jindřich)
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe (ID: 5196|ParentID: 652|SYSTEM)
C:\Users\Jindřich\Programy\CCleaner\CCleaner64.exe (ID: 5256|ParentID: 5960|Jindřich)
C:\Program Files\AVAST Software\Avast\AvastUI.exe (ID: 5284|ParentID: 6024|Jindřich)
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe (ID: 5292|ParentID: 6024|Jindřich)
C:\Program Files\Windows Media Player\wmpnetwk.exe (ID: 5380|ParentID: 652|NETWORK SERVICE)
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe (ID: 5428|ParentID: 652|SYSTEM)
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe (ID: 5452|ParentID: 6024|Jindřich)
C:\Program Files (x86)\Lenovo\Lenovo Smart Voice\LsvTrayLoad.exe (ID: 5492|ParentID: 948|Jindřich)
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (ID: 5520|ParentID: 4120|Jindřich)
C:\Program Files (x86)\Lenovo\Lenovo Smart Voice\LsvController.exe (ID: 5536|ParentID: 5492|Jindřich)
C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (ID: 5584|ParentID: 4120|Jindřich)
C:\Users\Jindřich\Programy\Firefox\firefox.exe (ID: 5616|ParentID: 4120|Jindřich)
C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (ID: 5636|ParentID: 4120|Jindřich)
C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe (ID: 5660|ParentID: 4120|Jindřich)
C:\Program Files (x86)\Lenovo\CCSDK\WinGather.exe (ID: 5716|ParentID: 2672|Jindřich)
C:\Windows\RTFTrack.exe (ID: 5736|ParentID: 4120|Jindřich)
C:\Program Files\Lenovo Yoga PhoneCompanion\Yoga Phone Companion.exe (ID: 5772|ParentID: 4120|Jindřich)
C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe (ID: 5796|ParentID: 4120|Jindřich)
C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe (ID: 5804|ParentID: 4120|Jindřich)
C:\Program Files\Microsoft Office\root\Office16\msoia.exe (ID: 5916|ParentID: 948|Jindřich)
C:\Windows\System32\wbem\unsecapp.exe (ID: 5952|ParentID: 736|Jindřich)
C:\Windows\System32\wscript.exe (ID: 5968|ParentID: 4120|Jindřich)
C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe (ID: 6052|ParentID: 6024|Jindřich)
[HIDDEN] C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_23_0_0_162.exe (ID: 6092|ParentID: 6092|Jindřich)
C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20911_x64__8wekyb3d8bbwe\livecomm.exe (ID: 6260|ParentID: 736|Jindřich)
C:\Program Files\AVAST Software\Avast\AvastSvc.exe (ID: 6392|ParentID: 652|SYSTEM)
[HIDDEN] C:\Users\Jindřich\Programy\Firefox\firefox.exe (ID: 6936|ParentID: 6936|Jindřich)
C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\CSISYNCCLIENT.EXE (ID: 7312|ParentID: 736|Jindřich)
[HIDDEN] C:\Program Files (x86)\Internet Explorer\iexplore.exe (ID: 8148|ParentID: 8148|Jindřich)
C:\Windows\System32\SearchFilterHost.exe (ID: 8156|ParentID: 4884|SYSTEM)
C:\Program Files (x86)\Internet Explorer\iexplore.exe (ID: 8356|ParentID: 8360|Jindřich)
C:\Program Files\Internet Explorer\iexplore.exe (ID: 8360|ParentID: 8900|Jindřich)
C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (ID: 9148|ParentID: 652|SYSTEM)

################## | Generic Research |

Deleted! C:\Users\Jindřich\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\smycWTeXSeDFCWU.wSf
Deleted! C:\Users\Jindřich\AppData\Local\Temp\smycWTeXSeDFCWU.wSf

(!) Temporary files deleted. (8.87861919403076 MB)

################## | Startup |

F2 - HKLM\..\Winlogon : [Shell] explorer.exe
F2 - [x64] HKLM\..\Winlogon : [Shell] explorer.exe
F2 - HKLM\..\Winlogon : [Userinit] userinit.exe
F2 - [x64] HKLM\..\Winlogon : [Userinit] C:\Windows\system32\userinit.exe,
04 - HKCU\..\Run : [Pokki] C:\Windows\system32\rundll32.exe "%LOCALAPPDATA%\Pokki\Engine\Launcher.dll",RunLaunchPlatform
04 - HKCU\..\Run : [DAEMON Tools Lite Automount] "C:\Users\Jindřich\Programy\DAEMON Tools Lite\DTAgent.exe" -autorun
04 - HKCU\..\Run : [CCleaner Monitoring] "C:\Users\Jindřich\Programy\CCleaner\CCleaner64.exe" /MONITOR
04 - HKCU\..\Run : [smycWTeXSeDFCWU] wscript.exe //B "C:\Users\JINDIC~1\AppData\Local\Temp\smycWTeXSeDFCWU.wSf"
04 - HKCU\..\RunOnce : [Uninstall C:\Users\Jindřich\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\amd64] C:\windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jindřich\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\amd64"
04 - HKLM\..\Run : [StatusAlerts] "C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe" /enum:on /alerts:on /notifications:on /fl:on /fr:on /appData:on /tmcp:on
04 - HKLM\..\Run : [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
04 - HKLM\..\Run : [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
04 - HKLM\..\Run : [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
04 - [x64] HKLM\..\Run : [IAStorIcon] "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" "C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" 60
04 - [x64] HKLM\..\Run : [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
04 - [x64] HKLM\..\Run : [RtHDVBg_Dolby] "C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /FORPCEE4
04 - [x64] HKLM\..\Run : [RtHDVBg_LENOVO_DOLBYDRAGON] "C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /LENOVO_DOLBYDRAGON
04 - [x64] HKLM\..\Run : [RtHDVBg_LENOVO_MICPKEY] "C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /LENOVO_MICPKEY
04 - [x64] HKLM\..\Run : [RtsFT] RTFTrack.exe
04 - [x64] HKLM\..\Run : [Yoga PhoneCompanion] C:\Program Files\Lenovo Yoga PhoneCompanion\Yoga Phone Companion.exe
04 - [x64] HKLM\..\Run : [Energy Manager] C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe
04 - [x64] HKLM\..\Run : [Lenovo Utility] C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe
04 - HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\..\Run : [Pokki] C:\Windows\system32\rundll32.exe "%LOCALAPPDATA%\Pokki\Engine\Launcher.dll",RunLaunchPlatform
04 - HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\..\Run : [DAEMON Tools Lite Automount] "C:\Users\Jindřich\Programy\DAEMON Tools Lite\DTAgent.exe" -autorun
04 - HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\..\Run : [CCleaner Monitoring] "C:\Users\Jindřich\Programy\CCleaner\CCleaner64.exe" /MONITOR
04 - HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\..\Run : [smycWTeXSeDFCWU] wscript.exe //B "C:\Users\JINDIC~1\AppData\Local\Temp\smycWTeXSeDFCWU.wSf"
04 - HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\..\RunOnce : [Uninstall C:\Users\Jindřich\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\amd64] C:\windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jindřich\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\amd64"

################## | C:\ %SystemDrive% - Fixed drive (NTFS) |

[07/11/2007 - 08:00:40 | A | 17 Ko] - C:\eula.3082.txt
[07/11/2007 - 08:00:40 | A | 17 Ko] - C:\eula.2052.txt
[07/11/2007 - 08:00:40 | A | 17 Ko] - C:\eula.1042.txt
[07/11/2007 - 08:00:40 | A | 0 Ko] - C:\eula.1041.txt
[07/11/2007 - 08:00:40 | A | 17 Ko] - C:\eula.1040.txt
[07/11/2007 - 08:00:40 | A | 17 Ko] - C:\eula.1036.txt
[07/11/2007 - 08:00:40 | A | 17 Ko] - C:\eula.1028.txt
[07/11/2007 - 08:00:40 | A | 17 Ko] - C:\eula.1031.txt
[07/11/2007 - 08:00:40 | A | 10 Ko] - C:\eula.1033.txt
[19/09/2016 - 18:02:45 | ASH | 6646136 Ko] - C:\hiberfil.sys
[19/09/2016 - 18:02:47 | ASH | 1310720 Ko] - C:\pagefile.sys
[19/09/2016 - 18:02:48 | ASH | 16384 Ko] - C:\swapfile.sys
[07/11/2007 - 08:12:28 | A | 228 Ko] - C:\VC_RED.MSI
[07/11/2007 - 08:00:40 | A | 1 Ko] - C:\globdata.ini
[07/11/2007 - 08:00:40 | A | 1 Ko] - C:\install.ini
[07/11/2007 - 08:03:18 | A | 550 Ko] - C:\install.exe
[07/11/2007 - 08:03:18 | A | 78 Ko] - C:\install.res.1042.dll
[07/11/2007 - 08:03:18 | A | 95 Ko] - C:\install.res.1036.dll
[07/11/2007 - 08:03:18 | A | 74 Ko] - C:\install.res.2052.dll
[07/11/2007 - 08:03:18 | A | 75 Ko] - C:\install.res.1028.dll
[07/11/2007 - 08:03:18 | A | 94 Ko] - C:\install.res.1031.dll
[07/11/2007 - 08:03:18 | A | 89 Ko] - C:\install.res.1033.dll
[07/11/2007 - 08:03:18 | A | 80 Ko] - C:\install.res.1041.dll
[07/11/2007 - 08:03:18 | A | 93 Ko] - C:\install.res.1040.dll
[07/11/2007 - 08:03:18 | A | 94 Ko] - C:\install.res.3082.dll
[07/11/2007 - 08:09:22 | A | 1409 Ko] - C:\VC_RED.cab
[07/11/2007 - 08:00:40 | A | 6 Ko] - C:\vcredist.bmp
[04/10/2015 - 11:51:03 | SHD] - C:\$RECYCLE.BIN
[18/06/2013 - 14:18:29 | N | 0 Ko] - C:\BOOTNXT
[22/08/2013 - 16:45:52 | SHD] - C:\Documents and Settings
[22/08/2013 - 17:22:35 | D] - C:\PerfLogs
[26/04/2014 - 22:21:37 | RASH | 395 Ko] - C:\bootmgr
[23/08/2014 - 23:40:01 | SHD] - C:\Boot
[24/08/2014 - 00:03:32 | SHD] - C:\Recovery
[09/02/2015 - 19:22:35 | D] - C:\UserGuidePDF
[11/09/2015 - 20:06:19 | D] - C:\drivers
[11/09/2015 - 20:09:45 | D] - C:\Intel
[01/08/2016 - 16:16:46 | RD] - C:\Program Files (x86)
[02/08/2016 - 15:10:45 | AD] - C:\Users
[16/09/2016 - 16:34:50 | AD] - C:\Windows
[19/09/2016 - 22:28:42 | RD] - C:\Program Files
[19/09/2016 - 22:28:47 | D] - C:\rsit
[19/09/2016 - 23:28:35 | HD] - C:\ProgramData
[20/09/2016 - 19:53:52 | D] - C:\UsbFix

################## | D:\ - Fixed drive (NTFS) |

[17/07/2015 - 16:10:55 | SHD] - D:\$RECYCLE.BIN
[09/02/2015 - 19:32:54 | D] - D:\Drivers
[09/02/2015 - 19:32:54 | D] - D:\Applications
[06/09/2015 - 09:26:35 | D] - D:\Lenovo

Analysed in 57.29 seconds

################## | E.O.F | https://www.sosvirus.net/ | https://www.usb-antivirus.com/ |
Nahoru
altrok
Moderátor
Moderátor
Příspěvky: 7264
Registrován: 15 lis 2012 22:26
Bydliště: Znojmo

Re: Problém s flash diskem

#4 Příspěvek od altrok »

:arrow: Podle logu jeste cast cerva smazana nebyla. Na flashce by jiz mely byt viditelne soubory (nikoliv zastupci). Dejte logy FRST.txt a Addition.txt, at pocitac muzeme docistit - http://forum.viry.cz/viewtopic.php?f=30&t=133101
Pozn. pri druhem a dalsim spusteni FRST je pro vytvoreni logu Addition.txt nutne tuto volbu explicitne zatrhnout pred zacatkem skenu.
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Nahoru
Uživatelský avatar
Šmíďák
Návštěvník
Návštěvník
Příspěvky: 144
Registrován: 15 říj 2012 13:42
Bydliště: Brno

Re: Problém s flash diskem

#5 Příspěvek od Šmíďák »

Soubory vidět nejsou, jsou stále jen zástupci, logy sem hned hodím.

EDIT: Při pokusu o stažení FRST to hlásí 404 not found
Nahoru
Uživatelský avatar
Šmíďák
Návštěvník
Návštěvník
Příspěvky: 144
Registrován: 15 říj 2012 13:42
Bydliště: Brno

Re: Problém s flash diskem

#6 Příspěvek od Šmíďák »

Zdá se, že web již neexistuje
Nahoru
altrok
Moderátor
Moderátor
Příspěvky: 7264
Registrován: 15 lis 2012 22:26
Bydliště: Znojmo

Re: Problém s flash diskem

#7 Příspěvek od altrok »

Z http://www.bleepingcomputer.com/downloa ... scan-tool/ mi FRST64.exe bez problemu jde stahnout.
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Nahoru
Uživatelský avatar
Šmíďák
Návštěvník
Návštěvník
Příspěvky: 144
Registrován: 15 říj 2012 13:42
Bydliště: Brno

Re: Problém s flash diskem

#8 Příspěvek od Šmíďák »

Aha ano to ano, já jsem jen pochopil, že je třeba ještě ten jeden mezikrok. Inu nevadí. Log z FRST zde:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 20-09-2016
Ran by Jindřich (administrator) on BELZEBUB (20-09-2016 23:46:17)
Running from C:\Users\Jindřich\Desktop
Loaded Profiles: Jindřich (Available Profiles: Jindřich)
Platform: Windows 8.1 (Update) (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: "C:\Users\Jindřich\Programy\Firefox\firefox.exe" -osint -url "%1")
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(HP) C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(LENOVO INCORPORATED.) C:\Program Files\lenovo\iMController\SystemAgentService.exe
(Lenovo(beijing) Limited) C:\Windows\System32\LenovoWiFiHotspotSvr.exe
(Lenovo) C:\Program Files (x86)\Lenovo\Lenovo Smart Voice\LsvUIService.exe
(Maxthon) C:\Program Files (x86)\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe
(PointGrab LTD) C:\Program Files (x86)\Lenovo\Motion Control\PGService.exe
(PointGrab LTD) C:\Program Files (x86)\Lenovo\Motion Control\PG_Service_Launcher.exe
(Lenovo) C:\Program Files\Lenovo Yoga PhoneCompanion\PhoneCompanionPusher.exe
(PointGrab LTD) C:\Program Files (x86)\Lenovo\Motion Control\WebcamSplitterServer.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Windows\SysWOW64\PnkBstrB.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Lenovo) C:\ProgramData\LenovoTransition\Server\x64\ymc.exe
() C:\Program Files (x86)\Lenovo\Yoga Picks\Service\x64\YogaPicks.AppService.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\root\Office16\msoia.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\CSISYNCCLIENT.EXE
(Mozilla Corporation) C:\Users\Jindřich\Programy\Firefox\firefox.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek semiconductor) C:\Windows\RTFTrack.exe
(Lenovo) C:\Program Files\Lenovo Yoga PhoneCompanion\Yoga Phone Companion.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe
(Hewlett-Packard Company) C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe
(Hewlett-Packard) C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
(Piriform Ltd) C:\Users\Jindřich\Programy\CCleaner\CCleaner64.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Lenovo) C:\Program Files (x86)\Lenovo\Lenovo Smart Voice\LsvTrayLoad.exe
(Lenovo) C:\Program Files (x86)\Lenovo\Lenovo Smart Voice\LsvController.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
() C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() C:\Program Files\Lenovo Yoga PhoneCompanion\adb.exe
(Wargaming.net) C:\Users\Jindřich\Saved Games\World of Tanks\WargamingGameUpdater.exe
(Ghisler Software GmbH) C:\Users\Jindřich\Programy\Totalcmd\TOTALCMD64.EXE


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2014-03-26] (Intel Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13667032 2014-01-22] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1374936 2014-01-13] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1374936 2014-01-13] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1374936 2014-01-13] (Realtek Semiconductor)
HKLM\...\Run: [RtsFT] => C:\windows\RTFTrack.exe [6340312 2013-10-17] (Realtek semiconductor)
HKLM\...\Run: [Yoga PhoneCompanion] => C:\Program Files\Lenovo Yoga PhoneCompanion\Yoga Phone Companion.exe [844304 2015-02-09] (Lenovo)
HKLM\...\Run: [Energy Manager] => C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [15813616 2015-02-09] (Lenovo(beijing) Limited)
HKLM\...\Run: [Lenovo Utility] => C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe [80880 2015-02-09] (Lenovo(beijing) Limited)
HKLM-x32\...\Run: [StatusAlerts] => C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe [313656 2013-04-18] (Hewlett-Packard Company)
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9107616 2016-09-12] (AVAST Software)
HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\...\Run: [Pokki] => C:\Windows\system32\rundll32.exe "%LOCALAPPDATA%\Pokki\Engine\Launcher.dll",RunLaunchPlatform
HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Users\Jindřich\Programy\DAEMON Tools Lite\DTAgent.exe [4468056 2015-06-18] (Disc Soft Ltd)
HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\...\Run: [CCleaner Monitoring] => C:\Users\Jindřich\Programy\CCleaner\CCleaner64.exe [8891608 2016-07-13] (Piriform Ltd)
HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\...\Run: [smycWTeXSeDFCWU] => wscript.exe //B "C:\Users\JINDIC~1\AppData\Local\Temp\smycWTeXSeDFCWU.wSf" <===== ATTENTION
HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\...\Run: [World of Tanks] => C:\Users\Jindřich\Saved Games\World of Tanks\WargamingGameUpdater.exe [3134728 2016-08-05] (Wargaming.net)
HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\...\RunOnce: [Uninstall C:\Users\JindYich\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\amd64] => C:\windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jindřich\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\amd64"
HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\...\MountPoints2: {2885be57-3f72-11e6-82c5-5cc5d4cb0f51} - "E:\WD SmartWare.exe" autoplay=true
HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\...\MountPoints2: {4debe587-589f-11e5-8263-5cc5d4cb0f51} - "I:\Setup.exe"
HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\...\MountPoints2: {60430f1c-5a3e-11e5-8267-5cc5d4cb0f51} - "G:\noautorun.exe"
HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\...\MountPoints2: {60430f20-5a3e-11e5-8267-5cc5d4cb0f51} - "H:\autorun.exe"
HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\...\MountPoints2: {60430f24-5a3e-11e5-8267-5cc5d4cb0f51} - "I:\noautorun.exe"
HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\...\MountPoints2: {a11574c0-604d-11e5-826d-5cc5d4cb0f51} - "F:\Autorun.exe"
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-09-10] (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{0FAA79A6-06A9-4259-8D04-2F5FCB67F7FD}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{5AE36E25-E411-488C-9D5B-0574FBBF2C12}: [DhcpNameServer] 7.254.254.254
Tcpip\..\Interfaces\{D93D251B-3FCC-4952-8826-57D935628C58}: [DhcpNameServer] 169.254.132.69

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com/?pc=LCJB
HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com
HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://mystart.lenovo.com
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3058634117-4252258037-3257375764-1001 -> DefaultScope {26417749-62E4-4DFD-9ED2-4B0D45671722} URL =
SearchScopes: HKU\S-1-5-21-3058634117-4252258037-3257375764-1001 -> {26417749-62E4-4DFD-9ED2-4B0D45671722} URL =
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2016-07-31] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Users\Jindřich\Programy\Java\bin\ssv.dll [2015-10-22] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-09-10] (AVAST Software)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\Office16\GROOVEEX.DLL [2016-07-31] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Users\Jindřich\Programy\Java\bin\jp2ssv.dll [2015-10-22] (Oracle Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2016-07-31] (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-09-10] (AVAST Software)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2016-07-31] (Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-07-31] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-07-31] (Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-07-31] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-07-31] (Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-07-31] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-07-31] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-07-31] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-07-31] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Jindřich\AppData\Roaming\Mozilla\Firefox\Profiles\5kd5qg9f.default
FF Homepage: www.centrum.cz
FF Session Restore: -> is enabled.
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_23_0_0_162.dll [2016-09-13] ()
FF Plugin: @java.com/DTPlugin,version=11.66.2 -> C:\Users\Jindřich\Programy\Java\bin\dtplugin\npDeployJava1.dll [2015-10-22] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.66.2 -> C:\Users\Jindřich\Programy\Java\bin\plugin2\npjp2.dll [2015-10-22] (Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-07-31] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_162.dll [2016-09-13] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-07-31] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2016-07-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Users\Jindřich\Programy\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-06-30] (Adobe Systems Inc.)
FF Extension: (Firefox Hotfix) - C:\Users\Jindřich\AppData\Roaming\Mozilla\Firefox\Profiles\5kd5qg9f.default\Extensions\firefox-hotfix@mozilla.org.xpi [2016-08-31]
FF Extension: (Adblock Plus) - C:\Users\Jindřich\AppData\Roaming\Mozilla\Firefox\Profiles\5kd5qg9f.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-04-28]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-09-10]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-09-10]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
StartMenuInternet: FIREFOX.EXE - C:\Users\Jindřich\Programy\Firefox\firefox.exe

Chrome:
=======
CHR HomePage: Default -> hxxp://www.centrum.cz/
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\Jindřich\AppData\Local\Google\Chrome\User Data\Default [2016-09-20]
CHR Extension: (Prezentace Google) - C:\Users\Jindřich\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-09-11]
CHR Extension: (Dokumenty Google) - C:\Users\Jindřich\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-09-11]
CHR Extension: (Disk Google) - C:\Users\Jindřich\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (YouTube) - C:\Users\Jindřich\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-22]
CHR Extension: (Vyhledávání Google) - C:\Users\Jindřich\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-10]
CHR Extension: (Avast SafePrice) - C:\Users\Jindřich\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2016-09-19]
CHR Extension: (Tabulky Google) - C:\Users\Jindřich\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-09-11]
CHR Extension: (Dokumenty Google offline) - C:\Users\Jindřich\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-07]
CHR Extension: (Avast Online Security) - C:\Users\Jindřich\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-06-25]
CHR Extension: (Don't Panic) - C:\Users\Jindřich\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcfcnmhjkimfpjejojjkhdfneddhknkd [2015-09-11]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Jindřich\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-07]
CHR Extension: (Gmail) - C:\Users\Jindřich\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-09-11]
CHR Extension: (Chrome Media Router) - C:\Users\Jindřich\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-09-19]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-09-10] (AVAST Software)
R2 CCSDK; C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe [592880 2014-07-10] ()
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2854640 2016-07-31] (Microsoft Corporation)
S3 Disc Soft Lite Bus Service; C:\Users\Jindřich\Programy\DAEMON Tools Lite\DiscSoftBusService.exe [1268568 2015-06-18] (Disc Soft Ltd)
U2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [8704 2015-09-02] (Hi-Rez Studios) [File not signed]
S3 HP DS Service; C:\Program Files (x86)\HP\HPBDSService\HPBDSService.exe [13824 2011-10-17] (Hewlett-Packard Company) [File not signed]
R2 HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [174592 2012-12-04] (HP) [File not signed]
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [16232 2014-03-26] (Intel Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [282072 2014-03-10] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-28] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-28] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-16] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
S3 Lenovo EasyPlus Hotspot; C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe [561408 2014-09-23] (Lenovo)
R2 Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [584664 2015-12-14] (LENOVO INCORPORATED.)
R2 LenovoWiFiHotspotSvr; C:\Windows\System32\LenovoWiFiHotspotSvr.exe [198192 2015-02-09] (Lenovo(beijing) Limited)
R2 LsvUIService; C:\Program Files (x86)\Lenovo\Lenovo Smart Voice\LsvUIService.exe [70416 2015-02-09] (Lenovo)
R2 MaxthonUpdateSvc; C:\Program Files (x86)\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe [1872808 2015-11-30] (Maxthon)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [284912 2014-01-18] ()
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2014-11-17] (Hewlett-Packard) [File not signed]
R2 PGService; C:\Program Files (x86)\Lenovo\Motion Control\PGService.exe [167176 2014-02-25] (PointGrab LTD)
R2 PG_Service_Launcher; C:\Program Files (x86)\Lenovo\Motion Control\PG_Service_Launcher.exe [512776 2014-02-25] (PointGrab LTD)
R2 PhoneCompanionPusher; C:\Program Files\Lenovo Yoga PhoneCompanion\PhoneCompanionPusher.exe [285712 2015-02-09] (Lenovo)
S3 PhoneCompanionVap; C:\Program Files\Lenovo Yoga PhoneCompanion\PhoneCompanionVap.exe [304144 2015-02-09] (Lenovo)
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2014-11-17] (Hewlett-Packard) [File not signed]
R2 PnkBstrA; C:\windows\SysWOW64\PnkBstrA.exe [66872 2015-10-17] ()
R2 PnkBstrB; C:\windows\SysWOW64\PnkBstrB.exe [107832 2015-10-17] ()
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390632 2012-04-24] ()
S3 TunngleService; C:\Users\Patejl\Programy\Tunngle\TnglCtrl.exe [805840 2015-09-26] (Tunngle.net GmbH) [File not signed]
S4 VeriFaceSrv; C:\Program Files (x86)\Lenovo\Lenovo VeriFace Pro\VfConnectorService.exe [67856 2015-02-09] ()
S3 vmicvss; C:\Windows\System32\ICSvc.dll [524800 2014-10-29] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
R2 ymc; C:\ProgramData\LenovoTransition\Server\x64\ymc.exe [33040 2015-02-09] (Lenovo)
R2 YogaPicks.AppService; C:\Program Files (x86)\Lenovo\Yoga Picks\Service\x64\YogaPicks.AppService.exe [19440 2014-01-07] ()
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3816176 2014-01-18] (Intel® Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-09-10] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-09-10] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [108816 2016-09-10] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-09-10] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-09-10] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [969184 2016-09-16] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [513496 2016-09-10] (AVAST Software)
S2 aswStm; C:\Windows\system32\drivers\aswStm.sys [163416 2016-09-10] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [292704 2016-09-10] (AVAST Software)
S3 AX88772; C:\Windows\system32\DRIVERS\ax88772.sys [113864 2013-07-18] (ASIX Electronics Corp.)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [130688 2016-07-22] (Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2015-09-11] (Disc Soft Ltd)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [142280 2013-10-18] (Intel Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [80920 2015-07-02] (McAfee, Inc.)
R3 NETwNb64; C:\Windows\system32\DRIVERS\Netwbw02.sys [3433952 2014-02-18] (Intel Corporation)
S3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew02.sys [4649440 2013-06-18] (Intel Corporation)
R3 rtsuvc; C:\Windows\system32\DRIVERS\rtsuvc.sys [8876248 2013-10-17] (Realtek Semiconductor Corp.)
R3 SensorsServiceDriver; C:\Windows\System32\drivers\WUDFRd.sys [226304 2014-10-29] (Microsoft Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [34544 2013-12-19] (Synaptics Incorporated)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [164992 2016-07-22] (Samsung Electronics Co., Ltd.)
R3 tap0901t; C:\Windows\system32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
S3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-14] ("CyberLink)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-09-20 23:46 - 2016-09-20 23:46 - 00027015 _____ C:\Users\Jindřich\Desktop\FRST.txt
2016-09-20 23:44 - 2016-09-20 23:46 - 00000000 ____D C:\FRST
2016-09-20 23:34 - 2016-09-20 23:34 - 02402816 _____ (Farbar) C:\Users\Jindřich\Downloads\FRST64(1).exe
2016-09-20 23:27 - 2016-09-20 23:27 - 02402816 _____ (Farbar) C:\Users\Jindřich\Desktop\FRST64.exe
2016-09-20 20:08 - 2016-09-20 20:08 - 01461376 _____ (Skype Technologies S.A.) C:\Users\Jindřich\Downloads\SkypeSetup.exe
2016-09-20 19:56 - 2016-09-20 19:56 - 00016854 _____ C:\Users\Jindřich\Desktop\UsbFix_Report.txt
2016-09-20 19:53 - 2016-09-20 19:53 - 03810484 _____ (El Desaparecido - SosVirus.net - UsbFix.net) C:\Users\Jindřich\Downloads\UsbFix.exe
2016-09-20 19:44 - 2016-09-20 19:53 - 00000000 ____D C:\UsbFix
2016-09-20 19:44 - 2016-09-20 19:44 - 03124524 _____ (El Desaparecido - SosVirus.net - UsbFix.net) C:\Users\Jindřich\Downloads\UsbFix_2016_8.248.exe
2016-09-20 19:44 - 2016-09-20 19:44 - 00001467 _____ C:\Users\Jindřich\Desktop\UsbFix.lnk
2016-09-19 23:28 - 2016-09-19 23:28 - 00000000 ____D C:\ProgramData\Samsung
2016-09-19 22:28 - 2016-09-19 22:28 - 01222144 _____ C:\Users\Jindřich\Downloads\RSITx64.exe
2016-09-19 22:28 - 2016-09-19 22:28 - 00000000 ____D C:\rsit
2016-09-19 22:28 - 2016-09-19 22:28 - 00000000 ____D C:\Program Files\trend micro
2016-09-19 18:09 - 2016-09-19 18:09 - 00015348 _____ C:\Users\Jindřich\.recently-used.xbel
2016-09-19 17:53 - 2016-09-19 17:54 - 24472048 _____ (Softplicity, Inc. ) C:\Users\Jindřich\Downloads\TotalImageConverter.exe
2016-09-19 17:50 - 2016-09-19 17:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CoolUtils
2016-09-19 17:50 - 2016-09-19 17:50 - 00000000 ____D C:\Users\Jindřich\AppData\Roaming\Softplicity
2016-09-19 17:49 - 2016-09-19 17:50 - 35505968 _____ (Softplicity, Inc. ) C:\Users\Jindřich\Downloads\TotalPDFConverter.exe
2016-09-16 12:29 - 2016-09-16 12:31 - 377001417 _____ C:\Users\Jindřich\Downloads\3-kozaty-milfky-vosukaj-poldu.mp4
2016-09-15 22:50 - 2016-09-15 23:14 - 00000000 ____D C:\Users\Jindřich\Downloads\X-Men.Apocalypse.2016.BRRip.XViD.AC3-ETRG
2016-09-15 07:19 - 2016-09-15 07:19 - 00235176 _____ C:\windows\system32\SBuySupplies.exe
2016-09-15 07:19 - 2016-09-15 07:19 - 00031256 _____ () C:\windows\system32\us005lm.dll
2016-09-15 07:18 - 2016-09-15 07:18 - 00098328 _____ (SS) C:\windows\system32\us005ci.dll
2016-09-15 07:17 - 2016-09-15 07:17 - 00166776 _____ C:\windows\system32\us005ci.exe
2016-09-15 02:39 - 2016-08-21 01:45 - 07076864 _____ (Microsoft Corporation) C:\windows\system32\glcndFilter.dll
2016-09-15 02:39 - 2016-08-21 01:22 - 00435200 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2016-09-15 02:39 - 2016-08-21 01:05 - 05273600 _____ (Microsoft Corporation) C:\windows\SysWOW64\glcndFilter.dll
2016-09-15 02:39 - 2016-08-21 00:50 - 00360448 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
2016-09-15 02:39 - 2016-08-21 00:42 - 07795712 _____ (Microsoft Corporation) C:\windows\system32\Windows.Data.Pdf.dll
2016-09-15 02:39 - 2016-08-21 00:27 - 05268480 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Data.Pdf.dll
2016-09-15 02:39 - 2016-08-10 00:47 - 00803176 _____ (Microsoft Corporation) C:\windows\system32\oleaut32.dll
2016-09-15 02:39 - 2016-08-10 00:47 - 00611576 _____ (Microsoft Corporation) C:\windows\SysWOW64\oleaut32.dll
2016-09-15 02:39 - 2016-08-04 16:17 - 00416768 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv.sys
2016-09-15 02:39 - 2016-08-03 20:06 - 00675328 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv2.sys
2016-09-15 02:39 - 2016-08-03 20:05 - 00243712 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srvnet.sys
2016-09-15 02:38 - 2016-09-01 02:45 - 25770496 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2016-09-15 02:37 - 2016-09-01 05:08 - 20312064 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2016-09-15 02:37 - 2016-09-01 03:27 - 13808128 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2016-09-15 02:37 - 2016-09-01 02:06 - 06047232 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2016-09-15 02:37 - 2016-09-01 01:15 - 15411712 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2016-09-15 02:37 - 2016-08-26 06:41 - 02881536 _____ (Microsoft Corporation) C:\windows\system32\actxprxy.dll
2016-09-15 02:36 - 2016-09-08 23:51 - 00443224 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2016-09-15 02:36 - 2016-09-08 23:51 - 00332632 _____ (Microsoft Corporation) C:\windows\SysWOW64\msv1_0.dll
2016-09-15 02:36 - 2016-09-01 04:46 - 00498688 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2016-09-15 02:36 - 2016-09-01 04:24 - 00663552 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2016-09-15 02:36 - 2016-09-01 03:39 - 00880128 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcomm.dll
2016-09-15 02:36 - 2016-09-01 03:30 - 00692736 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2016-09-15 02:36 - 2016-09-01 03:24 - 04607488 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2016-09-15 02:36 - 2016-09-01 02:43 - 02445824 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2016-09-15 02:36 - 2016-09-01 02:42 - 00710144 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2016-09-15 02:36 - 2016-09-01 02:38 - 01316352 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2016-09-15 02:36 - 2016-09-01 02:24 - 00576000 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2016-09-15 02:36 - 2016-09-01 02:10 - 00817664 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2016-09-15 02:36 - 2016-09-01 01:38 - 01032704 _____ (Microsoft Corporation) C:\windows\system32\inetcomm.dll
2016-09-15 02:36 - 2016-09-01 01:28 - 00806400 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2016-09-15 02:36 - 2016-09-01 01:10 - 02921472 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2016-09-15 02:36 - 2016-09-01 00:58 - 01550848 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2016-09-15 02:36 - 2016-09-01 00:47 - 00800768 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2016-09-15 02:36 - 2016-08-26 07:51 - 02894336 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2016-09-15 02:36 - 2016-08-26 06:44 - 02286592 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2016-09-15 02:36 - 2016-08-26 06:00 - 01049600 _____ (Microsoft Corporation) C:\windows\SysWOW64\actxprxy.dll
2016-09-15 02:36 - 2016-08-22 18:06 - 00179248 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2016-09-15 02:36 - 2016-08-22 18:06 - 00100184 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2016-09-15 02:36 - 2016-08-21 03:03 - 00201728 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb20.sys
2016-09-15 02:36 - 2016-08-21 03:01 - 00401408 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb.sys
2016-09-15 02:36 - 2016-08-21 03:01 - 00284672 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb10.sys
2016-09-15 02:36 - 2016-08-21 02:17 - 00445440 _____ (Microsoft Corporation) C:\windows\system32\certcli.dll
2016-09-15 02:36 - 2016-08-21 01:27 - 01445376 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2016-09-15 02:36 - 2016-08-21 01:26 - 00324096 _____ (Microsoft Corporation) C:\windows\SysWOW64\certcli.dll
2016-09-15 02:36 - 2016-08-21 00:55 - 00104960 _____ (Microsoft Corporation) C:\windows\SysWOW64\sspicli.dll
2016-09-15 02:36 - 2016-08-14 21:34 - 01541248 _____ (Microsoft Corporation) C:\windows\system32\user32.dll
2016-09-15 02:36 - 2016-08-14 20:25 - 04171264 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2016-09-15 02:36 - 2016-08-14 18:14 - 01376768 _____ (Microsoft Corporation) C:\windows\SysWOW64\user32.dll
2016-09-15 02:36 - 2016-08-13 09:41 - 07445848 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2016-09-15 02:36 - 2016-08-13 09:40 - 01737080 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2016-09-15 02:36 - 2016-08-13 09:40 - 01663184 _____ (Microsoft Corporation) C:\windows\system32\winload.efi
2016-09-15 02:36 - 2016-08-13 09:40 - 01523208 _____ (Microsoft Corporation) C:\windows\system32\winload.exe
2016-09-15 02:36 - 2016-08-13 09:40 - 01490120 _____ (Microsoft Corporation) C:\windows\system32\winresume.efi
2016-09-15 02:36 - 2016-08-13 09:40 - 01358952 _____ (Microsoft Corporation) C:\windows\system32\winresume.exe
2016-09-15 02:36 - 2016-08-13 02:04 - 00059392 _____ (Microsoft Corporation) C:\windows\system32\csrsrv.dll
2016-09-15 02:36 - 2016-08-11 18:26 - 01156608 _____ (Microsoft Corporation) C:\windows\system32\wwanmm.dll
2016-09-15 02:36 - 2016-08-11 18:17 - 00627200 _____ (Microsoft Corporation) C:\windows\system32\pnidui.dll
2016-09-15 02:36 - 2016-08-11 18:16 - 00455680 _____ (Microsoft Corporation) C:\windows\system32\wwanconn.dll
2016-09-15 02:36 - 2016-07-09 18:10 - 00087040 _____ (Microsoft Corporation) C:\windows\system32\wpdbusenum.dll
2016-09-15 02:36 - 2016-07-09 00:35 - 00101208 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mountmgr.sys
2016-09-15 02:36 - 2016-07-08 16:17 - 00377344 _____ (Microsoft Corporation) C:\windows\system32\mprddm.dll
2016-09-15 02:36 - 2016-07-08 16:17 - 00319488 _____ (Microsoft Corporation) C:\windows\SysWOW64\mprddm.dll
2016-09-15 02:36 - 2016-07-08 00:32 - 00095744 _____ (Microsoft Corporation) C:\windows\system32\Drivers\agilevpn.sys
2016-09-15 02:36 - 2016-07-08 00:18 - 00323072 _____ (Microsoft Corporation) C:\windows\system32\iprtrmgr.dll
2016-09-15 02:36 - 2016-07-08 00:10 - 00233472 _____ (Microsoft Corporation) C:\windows\system32\mprdim.dll
2016-09-15 02:36 - 2016-07-08 00:01 - 00272896 _____ (Microsoft Corporation) C:\windows\system32\rasppp.dll
2016-09-15 02:36 - 2016-07-07 23:04 - 00173568 _____ (Microsoft Corporation) C:\windows\system32\rasman.dll
2016-09-15 02:36 - 2016-07-07 22:59 - 01080320 _____ (Microsoft Corporation) C:\windows\system32\IKEEXT.DLL
2016-09-15 02:36 - 2016-07-07 22:44 - 00429568 _____ (Microsoft Corporation) C:\windows\system32\vpnike.dll
2016-09-15 02:36 - 2016-07-07 22:41 - 00254464 _____ (Microsoft Corporation) C:\windows\system32\rascustom.dll
2016-09-15 02:36 - 2016-07-07 22:34 - 00542720 _____ (Microsoft Corporation) C:\windows\system32\rasmans.dll
2016-09-15 02:36 - 2016-07-07 22:29 - 00713216 _____ (Microsoft Corporation) C:\windows\system32\nshwfp.dll
2016-09-15 02:36 - 2016-07-07 22:29 - 00704512 _____ (Microsoft Corporation) C:\windows\system32\rasapi32.dll
2016-09-15 02:36 - 2016-07-07 22:23 - 00285184 _____ (Microsoft Corporation) C:\windows\SysWOW64\iprtrmgr.dll
2016-09-15 02:36 - 2016-07-07 22:18 - 00187392 _____ (Microsoft Corporation) C:\windows\SysWOW64\mprdim.dll
2016-09-15 02:36 - 2016-07-07 22:11 - 01661064 _____ (Microsoft Corporation) C:\windows\system32\ole32.dll
2016-09-15 02:36 - 2016-07-07 22:11 - 01212248 _____ (Microsoft Corporation) C:\windows\SysWOW64\ole32.dll
2016-09-15 02:36 - 2016-07-07 22:11 - 00185856 _____ (Microsoft Corporation) C:\windows\SysWOW64\rasppp.dll
2016-09-15 02:36 - 2016-07-07 21:35 - 00145920 _____ (Microsoft Corporation) C:\windows\SysWOW64\rasman.dll
2016-09-15 02:36 - 2016-07-07 21:14 - 00628736 _____ (Microsoft Corporation) C:\windows\SysWOW64\rasapi32.dll
2016-09-15 02:36 - 2016-07-04 07:09 - 00132096 _____ (Microsoft Corporation) C:\windows\system32\rdpudd.dll
2016-09-15 02:36 - 2016-07-04 05:45 - 00360448 _____ (Microsoft Corporation) C:\windows\system32\rdpclip.exe
2016-09-15 02:36 - 2016-07-04 05:37 - 02897920 _____ (Microsoft Corporation) C:\windows\system32\esent.dll
2016-09-15 02:36 - 2016-07-04 05:33 - 00657920 _____ (Microsoft Corporation) C:\windows\system32\dnsapi.dll
2016-09-15 02:36 - 2016-07-04 05:04 - 02539008 _____ (Microsoft Corporation) C:\windows\SysWOW64\esent.dll
2016-09-15 02:36 - 2016-07-04 05:02 - 00498688 _____ (Microsoft Corporation) C:\windows\SysWOW64\dnsapi.dll
2016-09-15 02:36 - 2016-07-04 04:19 - 03547136 _____ (Microsoft Corporation) C:\windows\system32\rdpcorets.dll
2016-09-15 02:36 - 2016-07-01 22:39 - 00197352 _____ (Microsoft Corporation) C:\windows\system32\dssenh.dll
2016-09-15 02:36 - 2016-07-01 22:39 - 00157016 _____ (Microsoft Corporation) C:\windows\SysWOW64\dssenh.dll
2016-09-15 02:36 - 2016-01-10 19:08 - 00252416 _____ (Microsoft Corporation) C:\windows\system32\dnsrslvr.dll
2016-09-14 10:22 - 2016-09-14 10:22 - 00000000 ____D C:\ProgramData\Lavasoft
2016-09-12 12:49 - 2016-09-12 12:49 - 00576567 _____ C:\Users\Jindřich\Downloads\POSTEEEEEEEEER.docx.zip
2016-09-12 10:56 - 2016-09-19 21:01 - 00000000 ____D C:\Users\Jindřich\Downloads\Luci
2016-09-12 10:56 - 2016-09-12 10:56 - 10843065 _____ C:\Users\Jindřich\Downloads\www.cosmiq.de.jpg.zip
2016-09-11 22:03 - 2016-09-11 22:04 - 08227032 _____ (Piriform Ltd) C:\Users\Jindřich\Downloads\ccsetup521.exe
2016-09-10 21:55 - 2016-09-10 22:15 - 00000000 ____D C:\Users\Jindřich\Downloads\Thor (2011)
2016-09-10 14:25 - 2016-09-10 14:25 - 00391496 _____ (AVAST Software) C:\windows\system32\aswBoot.exe
2016-09-10 14:25 - 2016-09-10 14:25 - 00053208 _____ (AVAST Software) C:\windows\avastSS.scr
2016-09-10 10:22 - 2016-09-10 10:22 - 47203624 _____ C:\Users\Jindřich\Downloads\Firefox Setup 48.0.2.exe
2016-09-10 10:21 - 2016-09-10 10:21 - 02150192 _____ C:\Users\Jindřich\Downloads\Adaware_Installer.exe
2016-09-10 10:20 - 2016-09-10 10:22 - 173597920 _____ (COMODO) C:\Users\Jindřich\Downloads\cmd_fw_installer.exe
2016-09-06 22:03 - 2016-09-09 12:12 - 00000000 ____D C:\Users\Jindřich\AppData\Local\NFS Underground 2
2016-09-06 21:48 - 2016-09-06 21:53 - 00000000 ____D C:\Users\Jindřich\Downloads\Need for Speed Underground 2 V1.2 {Full-Game} {Requested ISO} {blaze69}
2016-09-06 21:04 - 2016-09-06 21:04 - 10550048 _____ C:\Users\Jindřich\Downloads\bsplayer270.setup.exe
2016-09-05 19:07 - 2016-09-05 19:49 - 00000000 ____D C:\Users\Jindřich\Downloads\Angry Birds (2016) [YTS.AG]
2016-09-05 19:02 - 2016-09-05 19:49 - 00000000 ____D C:\Users\Jindřich\Downloads\Warcraft 2016 1080p WEB-DL x264 AC3-JYK
2016-09-05 15:47 - 2016-09-05 16:11 - 00000000 ____D C:\Users\Jindřich\Downloads\Bones
2016-09-05 15:45 - 2016-09-05 15:51 - 00000000 ____D C:\Users\Jindřich\Downloads\Bones Complete Season 11 + English Subs (MP4)
2016-08-29 17:38 - 2016-08-29 17:38 - 00098004 _____ C:\Users\Jindřich\Downloads\ASA_Style_Citations_4.pdf
2016-08-26 16:45 - 2016-08-26 16:45 - 00003242 _____ C:\windows\System32\Tasks\OneDrive Standalone Update Task
2016-08-23 09:22 - 2016-08-23 09:22 - 00000000 ____D C:\Program Files\Common Files\DESIGNER

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-09-20 23:45 - 2015-09-11 13:35 - 00000914 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
2016-09-20 23:28 - 2015-02-09 19:50 - 00740962 _____ C:\windows\system32\perfh005.dat
2016-09-20 23:28 - 2015-02-09 19:50 - 00152146 _____ C:\windows\system32\perfc005.dat
2016-09-20 23:28 - 2014-03-18 11:53 - 01749406 _____ C:\windows\system32\PerfStringBackup.INI
2016-09-20 23:28 - 2013-08-22 15:36 - 00000000 ____D C:\windows\Inf
2016-09-20 23:26 - 2015-09-11 12:56 - 00000978 _____ C:\windows\Tasks\GoogleUpdateTaskMachineUA.job
2016-09-20 22:59 - 2015-09-11 12:37 - 00003598 _____ C:\windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3058634117-4252258037-3257375764-1001
2016-09-20 22:07 - 2015-09-18 01:01 - 00000974 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore1d0f19cbf91c392.job
2016-09-20 22:07 - 2015-09-11 12:56 - 00000974 _____ C:\windows\Tasks\GoogleUpdateTaskMachineCore.job
2016-09-20 22:07 - 2015-09-11 12:38 - 00000000 ___DO C:\Users\Jindřich\OneDrive
2016-09-20 22:07 - 2013-08-22 16:45 - 00000006 ____H C:\windows\Tasks\SA.DAT
2016-09-20 22:06 - 2013-08-22 15:25 - 00524288 ___SH C:\windows\system32\config\BBI
2016-09-20 22:05 - 2015-09-11 12:45 - 00003982 _____ C:\windows\System32\Tasks\User_Feed_Synchronization-{27423552-AA02-42F7-8370-CA956B9CF91E}
2016-09-20 21:51 - 2015-09-11 13:18 - 00000000 ____D C:\Users\Jindřich\AppData\Roaming\Skype
2016-09-20 19:44 - 2015-09-11 12:45 - 00000000 __SHD C:\Users\Jindřich\AppData\Local\EmieUserList
2016-09-20 19:44 - 2015-09-11 12:45 - 00000000 __SHD C:\Users\Jindřich\AppData\Local\EmieSiteList
2016-09-20 11:50 - 2016-03-23 13:02 - 00003890 _____ C:\windows\System32\Tasks\SafeZone scheduled Autoupdate 1458730938
2016-09-20 11:50 - 2016-03-23 13:02 - 00001070 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2016-09-19 23:04 - 2015-09-11 12:32 - 00000000 ____D C:\Users\Jindřich\AppData\Local\Packages
2016-09-19 21:01 - 2015-10-13 12:41 - 00000000 ____D C:\Users\Jindřich\.gimp-2.6
2016-09-19 18:11 - 2016-03-19 20:11 - 00004180 _____ C:\windows\System32\Tasks\avast! Emergency Update
2016-09-19 18:09 - 2015-10-13 12:45 - 00000000 ____D C:\Users\Jindřich\AppData\Roaming\gtk-2.0
2016-09-19 18:09 - 2015-09-11 12:31 - 00000000 ____D C:\Users\Jindřich
2016-09-19 17:54 - 2015-09-11 12:43 - 00000000 ____D C:\Users\Jindřich\Programy
2016-09-19 01:00 - 2015-09-11 21:05 - 00000000 ____D C:\Users\Jindřich\AppData\Roaming\vlc
2016-09-18 01:46 - 2013-08-22 17:36 - 00000000 ____D C:\windows\rescache
2016-09-16 14:50 - 2015-09-11 18:25 - 00000000 ____D C:\Users\Jindřich\AppData\Roaming\DAEMON Tools Lite
2016-09-16 12:12 - 2015-09-11 13:06 - 00000000 ____D C:\Users\Jindřich\AppData\Roaming\uTorrent
2016-09-16 11:58 - 2016-03-19 20:11 - 00969184 _____ (AVAST Software) C:\windows\system32\Drivers\aswsnx.sys
2016-09-16 11:50 - 2013-08-22 16:44 - 00493760 _____ C:\windows\system32\FNTCACHE.DAT
2016-09-16 10:02 - 2013-08-22 17:36 - 00000000 ____D C:\windows\SysWOW64\setup
2016-09-16 10:02 - 2013-08-22 17:36 - 00000000 ____D C:\windows\system32\setup
2016-09-16 09:59 - 2015-09-12 16:10 - 00000000 ____D C:\windows\system32\MRT
2016-09-16 09:56 - 2015-09-12 16:10 - 144199024 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe
2016-09-16 09:56 - 2013-08-22 17:20 - 00000000 ____D C:\windows\CbsTemp
2016-09-15 23:40 - 2016-02-22 15:16 - 00000000 ____D C:\Users\Jindřich\AppData\LocalLow\uTorrent
2016-09-15 03:27 - 2015-09-11 12:56 - 00002226 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-09-15 02:35 - 2015-09-21 19:06 - 00004476 _____ C:\windows\System32\Tasks\Adobe Acrobat Update Task
2016-09-14 19:21 - 2013-08-22 17:36 - 00000000 ___HD C:\Program Files\WindowsApps
2016-09-14 19:21 - 2013-08-22 17:36 - 00000000 ____D C:\windows\AppReadiness
2016-09-13 22:11 - 2015-10-13 12:45 - 00000000 ____D C:\Users\Jindřich\.thumbnails
2016-09-13 17:45 - 2015-09-11 13:35 - 00003802 _____ C:\windows\System32\Tasks\Adobe Flash Player Updater
2016-09-13 17:45 - 2013-08-22 17:36 - 00000000 ____D C:\windows\SysWOW64\Macromed
2016-09-13 17:45 - 2013-08-22 17:36 - 00000000 ____D C:\windows\system32\Macromed
2016-09-10 14:25 - 2016-03-23 13:02 - 00037144 _____ (AVAST Software) C:\windows\system32\Drivers\aswKbd.sys
2016-09-10 14:25 - 2016-03-19 20:11 - 00513496 _____ (AVAST Software) C:\windows\system32\Drivers\aswSP.sys
2016-09-10 14:25 - 2016-03-19 20:11 - 00292704 _____ (AVAST Software) C:\windows\system32\Drivers\aswVmm.sys
2016-09-10 14:25 - 2016-03-19 20:11 - 00163416 _____ (AVAST Software) C:\windows\system32\Drivers\aswStm.sys
2016-09-10 14:25 - 2016-03-19 20:11 - 00108816 _____ (AVAST Software) C:\windows\system32\Drivers\aswMonFlt.sys
2016-09-10 14:25 - 2016-03-19 20:11 - 00103064 _____ (AVAST Software) C:\windows\system32\Drivers\aswRdr2.sys
2016-09-10 14:25 - 2016-03-19 20:11 - 00074544 _____ (AVAST Software) C:\windows\system32\Drivers\aswRvrt.sys
2016-09-10 14:25 - 2016-03-19 20:11 - 00037656 _____ (AVAST Software) C:\windows\system32\Drivers\aswHwid.sys
2016-09-07 03:11 - 2015-09-13 05:26 - 00828408 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2016-09-07 03:11 - 2015-09-13 05:26 - 00176632 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-09-06 21:04 - 2015-09-11 12:44 - 00000000 ____D C:\Users\Jindřich\AppData\Roaming\BSplayer
2016-09-05 19:50 - 2015-11-02 12:09 - 00000000 ____D C:\Users\Jindřich\Downloads\Subs
2016-08-29 21:45 - 2015-12-28 17:41 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-08-29 21:45 - 2015-09-11 13:18 - 00000000 ____D C:\ProgramData\Skype
2016-08-28 19:41 - 2015-09-11 17:59 - 00000000 ____D C:\Users\Jindřich\AppData\Local\Microsoft Help
2016-08-26 16:45 - 2016-05-09 21:28 - 00002385 _____ C:\Users\Jindřich\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive pro firmy.lnk
2016-08-26 16:45 - 2016-05-07 13:33 - 00003186 _____ C:\windows\System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-3058634117-4252258037-3257375764-1001
2016-08-23 09:22 - 2013-08-22 17:36 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-08-23 09:22 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-08-23 09:21 - 2015-12-08 14:10 - 00000000 ____D C:\Program Files\Microsoft Office

==================== Files in the root of some directories =======

2015-10-16 14:49 - 2015-10-16 14:49 - 0000238 _____ () C:\Users\Jindřich\AppData\Roaming\del.bat
2015-02-09 19:00 - 2015-02-09 19:00 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2015-10-09 19:16 - 2015-10-09 19:18 - 0000626 _____ () C:\ProgramData\hpzinstall.log

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\explorer.exe => File is digitally signed
C:\windows\SysWOW64\explorer.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\SysWOW64\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\SysWOW64\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\SysWOW64\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\dnsapi.dll => File is digitally signed
C:\windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-09-14 01:18

==================== End of FRST.txt ============================
Nahoru
Uživatelský avatar
Šmíďák
Návštěvník
Návštěvník
Příspěvky: 144
Registrován: 15 říj 2012 13:42
Bydliště: Brno

Re: Problém s flash diskem

#9 Příspěvek od Šmíďák »

Log z addition zde:

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 20-09-2016
Ran by Jindřich (20-09-2016 23:46:56)
Running from C:\Users\Jindřich\Desktop
Windows 8.1 (Update) (X64) (2015-09-11 10:32:31)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3058634117-4252258037-3257375764-500 - Administrator - Disabled)
Guest (S-1-5-21-3058634117-4252258037-3257375764-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3058634117-4252258037-3257375764-1003 - Limited - Enabled)
Jindřich (S-1-5-21-3058634117-4252258037-3257375764-1001 - Administrator - Enabled) => C:\Users\Jindřich

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\...\uTorrent) (Version: 3.4.8.42576 - BitTorrent Inc.)
64 Bit HP CIO Components Installer (Version: 18.2.4 - Hewlett-Packard) Hidden
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 15.017.20053 - Adobe Systems Incorporated)
Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.162 - Adobe Systems Incorporated)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 12.3.2280 - AVAST Software)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.70.1080 - AB Team, d.o.o.)
Burnout Paradise Ultimate Box version 1.00.00.1 (HKLM-x32\...\Burnout Paradise Ultimate Box_is1) (Version: 1.00.00.1 - Mr DJ)
Carmageddon (DOSBox 0.74 emulation) (HKLM-x32\...\Carmageddon (DOSBox 0.74 emulation)) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.20 - Piriform)
CCSDK (HKLM-x32\...\{AE75190B-11B4-4F90-8254-DAB275CF2557}_is1) (Version: 1.0.3.4 - Lenovo)
CyberLink MediaStory (HKLM-x32\...\InstallShield_{55762F9A-FCE3-45d5-817B-051218658423}) (Version: 1.0.1314 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.2810 - CyberLink Corp.)
CyberLink PowerDirector 10 (Version: 10.0.0.2810 - CyberLink Corp.) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.1.0.0074 - Disc Soft Ltd)
Dependency Package Update (Version: 1.6.29.00 - Lenovo Inc.) Hidden
Dependency Package Update (Version: 1.6.38.00 - Lenovo Inc.) Hidden
Dependency Package Update (x32 Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (x32 Version: 1.6.38.00 - Lenovo Group Limited) Hidden
Dependency Package Update (x32 Version: 1.6.38.01 - Lenovo Group Limited) Hidden
Dolby Digital Plus Home Theater (HKLM\...\{7E3D8FA1-6092-469A-955B-68FC4A2C67CA}) (Version: 7.5.1.1 - Dolby Laboratories Inc)
Drakensang Online (HKLM-x32\...\Drakensang Online) (Version: - )
Energy Manager (HKLM-x32\...\InstallShield_{AC768037-7079-4658-AC24-2897650E0ABE}) (Version: 1.0.0.35 - Lenovo)
Energy Manager (x32 Version: 1.0.0.35 - Lenovo) Hidden
GIMP 2.6.10 (HKLM-x32\...\WinGimp-2.0_is1) (Version: 2.6.10 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 53.0.2785.116 - Google Inc.)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
GraphPad Prism 6 (HKLM-x32\...\{606443B0-9831-11DC-5F90-015CFB7A6952}) (Version: 6.01 - GraphPad Software)
GTA2 (HKLM-x32\...\{2987EE84-C4EE-4FF5-8160-32DE00D6ABC6}) (Version: 1.00.001 - )
HP LaserJet Pro MFP M125-M126 (HKLM-x32\...\{c65448bc-e467-4ec7-b4a5-246697f52957}) (Version: 8.0.13171.953 - Hewlett-Packard)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
hpbDSService (x32 Version: 002.002.07399 - Hewlett-Packard) Hidden
hpbM126DSService (x32 Version: 001.001.08254 - Hewlett-Packard) Hidden
HPDXP (x32 Version: 3.0.26.57 - HP) Hidden
HPLJDXPHelper (x32 Version: 060.048.005 - HP) Hidden
HPLJProMFPM125M126 (HKLM-x32\...\{824CF3E6-4809-47E8-AA39-C55FC380DDB7}) (Version: 1.00.0000 - Hewlett-Packard)
HPLJUTCore (x32 Version: 008.000.0001 - HP) Hidden
HPLJUTM125_126 (x32 Version: 008.000.0001 - HP) Hidden
hppLaserJetService (x32 Version: 009.033.00905 - Hewlett-Packard) Hidden
hppM125LaserJetService (x32 Version: 001.032.00682 - Hewlett-Packard) Hidden
hpStatusAlerts (x32 Version: 080.040.00171 - Hewlett Packard) Hidden
hpStatusAlertsM125-M126 (x32 Version: 080.046.00112 - Hewlett-Packard) Hidden
InstallShieldHiRezCurrent (HKLM-x32\...\{9433FC1C-7405-433C-A26D-81076293BBCE}) (Version: 3.0.0.0 - Hi-Rez Studios)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3496 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.0.2.1000 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) 4.0 (HKLM-x32\...\{96C730E4-F055-4118-BDF3-6E071763853C}) (Version: 3.0.1342.02 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{7e493493-a430-4b7b-b8a2-48d61599e220}) (Version: 17.0.0 - Intel Corporation)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.40 - Irfan Skiljan)
Java 8 Update 66 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418066F0}) (Version: 8.0.660.17 - Oracle Corporation)
KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: 4.1.1.5 - PandoraTV)
Lenovo Dependency Package (HKLM\...\Lenovo Dependency Package_is1) (Version: 1.6.38.00 - Lenovo Group Limited)
Lenovo EasyCamera (HKLM-x32\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.2.9200.10249 - Realtek Semiconductor Corp.)
Lenovo FusionEngine (HKLM-x32\...\Lenovo FusionEngine) (Version: 1.0.13.0 - Lenovo, Inc.)
Lenovo Mobile Phone Wireless Import (HKLM-x32\...\InstallShield_{DFB2E0D6-8DDE-49A4-B8F7-03C14DACCBA6}) (Version: 1.1.1.9 - Lenovo)
Lenovo Mobile Phone Wireless Import (x32 Version: 1.1.1.9 - Lenovo) Hidden
Lenovo Motion Control (HKLM-x32\...\InstallShield_{E9325F15-6339-45E8-9DC4-C2D44B623039}) (Version: 2.5.1.0224 - PointGrab)
Lenovo Motion Control (x32 Version: 2.5.1.0224 - PointGrab) Hidden
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.0.0.2105 - CyberLink Corp.)
Lenovo OneKey Recovery (Version: 8.0.0.2105 - CyberLink Corp.) Hidden
Lenovo Photo Master (HKLM-x32\...\InstallShield_{BC94C56A-3649-420C-8756-2ADEBE399D33}) (Version: 1.0.1823.01 - CyberLink Corp.)
Lenovo Photo Master (x32 Version: 1.0.1823.01 - CyberLink Corp.) Hidden
Lenovo Smart Voice (HKLM\...\Lenovo SmartVoice) (Version: 1.0.2.4 - Lenovo)
Lenovo Transition (HKLM\...\Lenovo Transition) (Version: 2.0.13.10181 - Lenovo)
Lenovo VeriFace Pro (HKLM\...\Lenovo VeriFace) (Version: 5.0.14.1061 - Lenovo)
Lenovo Yoga 2 Demo (HKLM-x32\...\{03C682A4-05CD-4D22-B50A-B9C3C5F2B137}) (Version: 1.0.7 - Lenovo)
Lenovo Yoga PhoneCompanion (HKLM-x32\...\InstallShield_{0F82EA83-B0C5-4AB9-9695-DFE92C5FD57B}) (Version: 1.1.9.5 - Lenovo)
Lenovo Yoga PhoneCompanion (x32 Version: 1.1.9.5 - Lenovo) Hidden
LJDXPHelperUI (x32 Version: 060.048.005 - HP) Hidden
Maxthon Cloud Browser (HKLM-x32\...\Maxthon3) (Version: 4.4.2.2000 - Maxthon International Limited)
Mendeley Desktop 1.15.1 (HKLM-x32\...\Mendeley Desktop) (Version: 1.15.1 - Mendeley Ltd.)
Metric Collection SDK 35 (x32 Version: 1.2.0006.00 - Lenovo Group Limited) Hidden
Microsoft Office 365 ProPlus - cs-cz (HKLM\...\O365ProPlusRetail - cs-cz) (Version: 16.0.6741.2063 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\...\OneDriveSetup.exe) (Version: 17.3.6517.0809 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{a2199617-3609-410f-a8e8-e8806c73545b}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 40.0.3 (x86 cs) (HKLM-x32\...\Mozilla Firefox 40.0.3 (x86 cs)) (Version: 40.0.3 - Mozilla)
Mozilla Firefox 48.0.2 (x86 cs) (HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\...\Mozilla Firefox 48.0.2 (x86 cs)) (Version: 48.0.2 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 40.0.3 - Mozilla)
Need for Speed Underground 2 (HKLM-x32\...\Need for Speed Underground 2) (Version: - )
Office 16 Click-to-Run Extensibility Component (Version: 16.0.6701.1036 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.6701.1036 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (Version: 16.0.6701.1036 - Microsoft Corporation) Hidden
Pokki (HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\...\Pokki) (Version: 0.269.2.471 - Pokki)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.986 - Even Balance, Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9600.39053 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7161 - Realtek Semiconductor Corp.)
Re-Volt patch 12.07 (HKLM-x32\...\Re-Volt) (Version: patch 12.07 - )
SafeZone Stable 1.51.2220.62 (x32 Version: 1.51.2220.62 - Avast Software) Hidden
SHAREit (HKLM-x32\...\SHAREit_is1) (Version: 2.1.8.0 - Lenovo Group Limited)
Skype™ 7.27 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.27.101 - Skype Technologies S.A.)
Split/Second (HKLM-x32\...\{28526951-55EF-4901-A0CA-B9AC966D1DD1}) (Version: 1.00.0000 - Disney Interactive Studios)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.14.71 - Synaptics Incorporated)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.52 - Ghisler Software GmbH)
TotalImageConverter (HKLM-x32\...\Total Image Converter_is1) (Version: 5.1 - Softplicity, Inc.)
TotalPDFConverter (HKLM-x32\...\Total PDF Converter_is1) (Version: 2.8 - Softplicity, Inc.)
Tunngle (HKLM-x32\...\Tunngle_is1) (Version: 5.6 - Tunngle.net GmbH)
UESDK (HKLM-x32\...\{EB3F6640-58AE-4886-B8BA-466B6939A933}_is1) (Version: 1.0.2.7 - Lenovo)
UsbFix (HKLM-x32\...\Usbfix) (Version: 8.272 - El Desaparecido - www.usb-antivirus.com - www.sosvirus.net)
User Manuals (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 3.0.0.3 - Lenovo)
User Manuals (x32 Version: 3.0.0.3 - Lenovo) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
Windows Driver Package - Lenovo (ACPIVPC) System (02/17/2013 9.52.0.776) (HKLM\...\35DD26BE48DAF4A9F35F969F3CB1E3E1435E661E) (Version: 02/17/2013 9.52.0.776 - Lenovo)
Windows Driver Package - Lenovo (WUDFRd) LenovoVhid (07/25/2013 10.30.0.288) (HKLM\...\6BCA401E9CBEED970D75F55FA5320F60D11984E9) (Version: 07/25/2013 10.30.0.288 - Lenovo)
WinRAR 5.31 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
World of Tanks (HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812eu}_is1) (Version: - Wargaming.net)
Yoga Picks (HKLM-x32\...\{267C8BA0-876B-4589-9F14-EFB84ABCEA7F}) (Version: 1.5.014.0106 - Lenovo)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3058634117-4252258037-3257375764-1001_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}\InprocServer32 -> C:\Users\Jindřich\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\amd64\FileCoAuthLib64.dll ()
CustomCLSID: HKU\S-1-5-21-3058634117-4252258037-3257375764-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Jindřich\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3058634117-4252258037-3257375764-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\windows\system32\igfxEM.exe (Intel Corporation)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0AA36D14-1A85-44F9-B7CB-8089A50022D5} - System32\Tasks\Lenovo\Dependency Package Auto Update => C:\Program Files\Lenovo\iMController\AutoUpdate.exe [2015-12-14] ()
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {2163964F-CCB5-424F-960F-99CFD255C871} - System32\Tasks\HPLJCustParticipation => C:\Program Files (x86)\HP\HPLJUT\HPLJUTSCH.exe [2013-01-28] (Hewlett Packard)
Task: {35B75F2E-8E46-4C7E-95B3-B89B0558DE85} - System32\Tasks\GoogleUpdateTaskMachineCore1d0f19cbf91c392 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-11] (Google Inc.)
Task: {36B923AA-67F8-40B1-99AC-E8ADDB17A173} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [2014-09-10] (Lenovo)
Task: {3817E649-B2AD-473C-89BF-7837B64B4960} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2016-08-01] (Microsoft Corporation)
Task: {4093F9C8-8976-487B-9F9B-BBA655D6764D} - System32\Tasks\Maxthon Update => C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe [2014-09-11] (Maxthon International ltd.)
Task: {44994F70-81FD-409A-8692-B4A7C5C947DE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-11] (Google Inc.)
Task: {522C8DCF-752A-46FA-A32C-8D688A16AD50} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-09-08] (Adobe Systems Incorporated)
Task: {56E23C12-31D7-4F35-B9CA-3BBCB31154AF} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-3058634117-4252258037-3257375764-1001 => C:\Users\Jindřich\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2016-08-26] (Microsoft Corporation)
Task: {5E775005-0475-4941-BEC7-AA31E2F2D1C1} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2016-08-01] (Microsoft Corporation)
Task: {9DDE9D3F-DDA7-4A20-8D33-94EA1C9AAC4A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-11] (Google Inc.)
Task: {9DFDFD27-63D8-4D70-91E7-16A152DCE69A} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\Jindřich\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe [2016-08-26] (Microsoft Corporation)
Task: {A1F7CB78-BE57-4109-A902-DD1D581BF298} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\windows\system32\MRT.exe [2016-09-16] (Microsoft Corporation)
Task: {A88EBCBA-9DC8-4E9B-AD55-F36F620151B9} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-06-04] (AVAST Software)
Task: {AA58E4F6-1008-401E-9919-C145C8DE33F9} - System32\Tasks\SafeZone scheduled Autoupdate 1458730938 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-09-06] (Avast Software)
Task: {B0582F1D-C993-45D5-9424-3EA5D2220F3E} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2016-08-01] (Microsoft Corporation)
Task: {B694A93D-5C03-458D-A910-93537060BD2B} - System32\Tasks\CCleanerSkipUAC => C:\Users\Jindřich\Programy\CCleaner\CCleaner.exe [2016-07-13] (Piriform Ltd)
Task: {B6E50834-1667-491D-AC9C-4C4195203380} - System32\Tasks\DolbySelectorTask => C:\Program Files\Dolby Digital Plus\ddp.exe
Task: {BB14323F-923A-4AFD-9A98-57E26BF1A139} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-07-31] (Microsoft Corporation)
Task: {D8B901D4-A9B3-44BF-8CF5-ACC1D1132C77} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2014-08-19] (Lenovo)
Task: {E57B9649-7CA9-4935-86A5-F343FDBF55A6} - System32\Tasks\Lenovo Smart Voice => C:\Program Files (x86)\Lenovo\Lenovo Smart Voice\LsvTrayLoad.exe [2015-02-09] (Lenovo)
Task: {ED0BBA63-DF8E-4CA8-83D5-D2ED82314FEB} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-09-10] (AVAST Software)
Task: {EFD04359-EABC-4F92-A086-B1FC440A9BD0} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-12-19] (Synaptics Incorporated)
Task: {F86789E9-9349-47F4-B312-462DD256CD4B} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-07-31] (Microsoft Corporation)
Task: {FA338327-BFB4-42E6-98BD-9F28EF5CE001} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-09-13] (Adobe Systems Incorporated)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore1d0f19cbf91c392.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2016-09-15 07:19 - 2016-09-15 07:19 - 00031256 _____ () C:\windows\System32\us005lm.dll
2016-05-06 07:27 - 2016-07-31 05:48 - 00173248 _____ () C:\Program Files\Common Files\Microsoft Shared\ClickToRun\ApiClient.dll
2015-10-17 11:38 - 2015-10-17 11:38 - 00066872 _____ () C:\windows\SysWOW64\PnkBstrA.exe
2015-10-17 11:38 - 2015-10-17 11:38 - 00107832 _____ () C:\windows\SysWOW64\PnkBstrB.exe
2015-02-09 19:22 - 2012-04-24 12:43 - 00390632 _____ () C:\Program Files\CyberLink\Shared files\RichVideo64.exe
2015-02-09 19:22 - 2015-02-09 19:22 - 00061200 _____ () C:\ProgramData\LenovoTransition\Server\x64\dptf.dll
2015-02-09 19:20 - 2014-01-07 01:14 - 00019440 _____ () C:\Program Files (x86)\Lenovo\Yoga Picks\Service\x64\YogaPicks.AppService.exe
2016-08-26 16:44 - 2016-08-26 16:44 - 01864384 _____ () C:\Users\Jindřich\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\amd64\ClientTelemetry.dll
2016-07-13 21:42 - 2016-07-13 21:42 - 00050688 _____ () C:\Users\Jindřich\Programy\CCleaner\lang\lang-1029.dll
2015-02-09 19:19 - 2014-07-10 03:19 - 00592880 _____ () C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe
2015-02-09 19:22 - 2015-02-09 19:22 - 00815104 _____ () C:\Program Files\Lenovo Yoga PhoneCompanion\adb.exe
2016-09-10 14:25 - 2016-09-10 14:25 - 00169064 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-09-20 21:24 - 2016-09-20 21:24 - 03086648 _____ () C:\Program Files\AVAST Software\Avast\defs\16092001\algo.dll
2016-09-10 14:25 - 2016-09-10 14:25 - 00482928 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2014-02-25 02:39 - 2014-02-25 02:39 - 00013576 _____ () C:\Program Files (x86)\Lenovo\Motion Control\PointGrabDeviceAPI.dll
2016-07-06 19:53 - 2016-07-06 19:53 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-02-09 19:22 - 2015-02-09 19:22 - 00101648 _____ () C:\Program Files (x86)\Lenovo\Lenovo Smart Voice\LUpdatePackage.dll
2015-02-09 18:59 - 2013-09-16 22:17 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2013-08-22 15:25 - 00000824 ____A C:\windows\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Jindřich\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\desktop background.bmp
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{B4C8B5AF-E534-4541-A01A-63AA6036703A}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{2A69DF33-BEDD-4886-9B27-AE144B9247E1}] => (Allow) C:\Program Files (x86)\Lenovo\SHAREit\SHAREit.exe
FirewallRules: [{6AB92A68-9847-4F0B-8A63-40D06CEB286E}] => (Allow) C:\Program Files (x86)\Lenovo\SHAREit\SHAREit.exe
FirewallRules: [{061F7003-5323-4DCC-8752-E037D0B6D05A}] => (Allow) C:\Program Files (x86)\Maxthon\Bin\MxUp.exe
FirewallRules: [{00226DF9-CED2-4DD2-811A-7486D3875CDA}] => (Allow) C:\Program Files (x86)\Maxthon\Bin\MxUp.exe
FirewallRules: [{85ACFC96-EFFF-41C3-8EE9-B79D55551C7E}] => (Allow) C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe
FirewallRules: [{A8D579BC-2C63-4E8C-BA4E-76F4C47D23A5}] => (Allow) C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe
FirewallRules: [{4B9FD316-578D-4E45-90A4-BA76440965C3}] => (Allow) C:\Program Files\CyberLink\PowerDirector10\PDR10.EXE
FirewallRules: [{BA32EF2D-9543-4E70-9F38-4C0E239C01F5}] => (Allow) C:\Program Files (x86)\Lenovo\Lenovo Photo Master\subsys\AdvPhotoEditor\PhotoDirector5.exe
FirewallRules: [{E030D111-2382-44B1-A034-0B287949D12D}] => (Allow) LPort=55100
FirewallRules: [{E1B27CD1-4322-469F-A42A-087529CBA825}] => (Allow) C:\Program Files\Lenovo PhotoMasterImport\PhotoMasterImport.exe
FirewallRules: [{A47D1277-CC60-46C4-A61C-37468DDFBD72}] => (Allow) C:\Users\Jindřich\Programy\Firefox\firefox.exe
FirewallRules: [{D1644589-E39A-4ED6-8582-B7D5CE0659F2}] => (Allow) C:\Users\Jindřich\Programy\Firefox\firefox.exe
FirewallRules: [{F1C7C2F3-1175-4849-82F7-97D74E1726FD}] => (Allow) C:\Users\Jindřich\Programy\Winamp\winamp.exe
FirewallRules: [{6E664004-3167-4038-935D-96C7093619E0}] => (Allow) C:\Users\Jindřich\Programy\Winamp\winamp.exe
FirewallRules: [{CA2DD3B3-A079-43F2-A39A-FCBCF175BD40}] => (Allow) C:\Users\Jindřich\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{55C74A9B-18CA-4C17-A7D1-38F41C871888}] => (Allow) C:\Users\Jindřich\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{92B53A1A-4D8C-42EC-81AC-25146194A207}] => (Allow) C:\Users\Jindřich\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{3F79E5CF-6EC3-4566-B52C-B9BF95F4D217}] => (Allow) C:\Users\Jindřich\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{E3D967A2-7E47-4039-A4D8-A8FF5007513C}] => (Allow) C:\Users\Jindřich\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{779C596C-221B-449D-A554-D0DBCD2ECB1F}] => (Allow) C:\Users\Jindřich\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{BB3FCDA0-DD30-4950-83B6-3274E7D21C3B}] => (Allow) C:\Users\Jindřich\Saved Games\Split Second\SplitSecond.exe
FirewallRules: [{76F0F054-494C-48BC-BF3C-B8D0455B477A}] => (Allow) C:\Users\Jindřich\Saved Games\Split Second\SplitSecond.exe
FirewallRules: [{DB4E053E-CFFE-4827-9371-C645C8F43EE9}] => (Allow) C:\Program Files (x86)\HP\HP LaserJet Pro MFP M125-M126\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{C40FC8DC-F9BC-47FD-8F04-B34BB948D4EB}] => (Allow) C:\Program Files (x86)\HP\HP LaserJet Pro MFP M125-M126\bin\EWSProxy.exe
FirewallRules: [{0F18D018-F1D0-4EF6-9B83-3D8BB7B6D2AF}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{68389727-6990-4479-AE96-94638E007C9C}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{3A240BD7-2591-4F70-A246-FBD86990CD11}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{EE27C654-4955-450A-B1A4-C8EFB5332E7F}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{B45A0027-76ED-4230-B0BC-5455675AC674}] => (Allow) C:\Users\Patejl\Programy\Tunngle\TnglCtrl.exe
FirewallRules: [{C86C3314-CC6B-4AA7-9649-D4D628A214DB}] => (Allow) C:\Users\Patejl\Programy\Tunngle\TnglCtrl.exe
FirewallRules: [{A72BDB3B-4973-4F28-ACF9-3112887BBA93}] => (Allow) C:\Users\Patejl\Programy\Tunngle\Tunngle.exe
FirewallRules: [{376DB867-25D8-4B28-BA65-21CAEB602CF1}] => (Allow) C:\Users\Patejl\Programy\Tunngle\Tunngle.exe
FirewallRules: [{74714C96-C128-4E80-A20E-577AFC14A101}] => (Allow) C:\Users\Jindřich\Saved Games\World of Tanks\WoTLauncher.exe
FirewallRules: [{3E6E5417-60DA-4332-BDC9-258FBBACC0E6}] => (Allow) C:\Users\Jindřich\Saved Games\World of Tanks\WoTLauncher.exe
FirewallRules: [{7F997A36-8EA2-4D95-83F6-AE94E0FA888F}] => (Allow) C:\Users\Jindřich\Saved Games\World of Tanks\worldoftanks.exe
FirewallRules: [{6194F898-55C0-4D57-85F1-8AE0E927BBB3}] => (Allow) C:\Users\Jindřich\Saved Games\World of Tanks\worldoftanks.exe
FirewallRules: [TCP Query User{36C02FE9-8480-4FEE-A10E-5925BCB622C8}C:\users\jindřich\saved games\left 4 dead 2\left4dead2.exe] => (Allow) C:\users\jindřich\saved games\left 4 dead 2\left4dead2.exe
FirewallRules: [UDP Query User{B76FA512-B739-4164-9275-F34584B9F0A1}C:\users\jindřich\saved games\left 4 dead 2\left4dead2.exe] => (Allow) C:\users\jindřich\saved games\left 4 dead 2\left4dead2.exe
FirewallRules: [{CC6E19A8-B798-49D3-9003-98675C089577}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{DB0C208D-80C0-4605-9DEE-C315EC82382F}C:\windows\splwow64.exe] => (Allow) C:\windows\splwow64.exe
FirewallRules: [UDP Query User{2A3038B9-72E0-40FE-BFB5-1F3886F21049}C:\windows\splwow64.exe] => (Allow) C:\windows\splwow64.exe
FirewallRules: [TCP Query User{AC6A1170-0CF5-4C4C-8FF9-EF1D7CA59099}C:\windows\system32\rundll32.exe] => (Allow) C:\windows\system32\rundll32.exe
FirewallRules: [UDP Query User{27ADFC77-AEEA-454F-A356-BC5018DA7081}C:\windows\system32\rundll32.exe] => (Allow) C:\windows\system32\rundll32.exe
FirewallRules: [{BDC1C195-77A8-4123-BBCB-DBD9DF8DB6E7}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{E4A7B798-C944-4933-BEAD-E401EA25FF1D}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{AE8B75E6-BA90-458F-900B-7BE818F47889}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [TCP Query User{6795C043-2FF6-4BAA-B16F-B5A2974B7E4A}C:\users\jindřich\saved games\left 4 dead 2\left4dead2.exe] => (Allow) C:\users\jindřich\saved games\left 4 dead 2\left4dead2.exe
FirewallRules: [UDP Query User{34D4A791-F7F5-456F-BF4A-C89E5358D4F9}C:\users\jindřich\saved games\left 4 dead 2\left4dead2.exe] => (Allow) C:\users\jindřich\saved games\left 4 dead 2\left4dead2.exe
FirewallRules: [{1C016C0E-0577-4875-A98D-9FBC9E0E1A3F}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{8DE32436-31E8-455A-864A-579303DC54BF}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{8714C7E7-0C2A-46DE-B666-3F8AF15DA67A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

29-08-2016 21:44:30 ASU_MSI_TRAN
07-09-2016 20:24:42 Naplánovaný kontrolní bod
14-09-2016 10:22:58 AA11

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (09/20/2016 09:12:21 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (09/20/2016 09:40:00 AM) (Source: Microsoft-Windows-Defrag) (EventID: 257) (User: )
Description: Svazek WINRE_DRV nebyl optimalizován, protože byla zjištěna chyba: Parametr není správný. (0x80070057).

Error: (09/20/2016 09:23:10 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: SystemAgentService.exe, verze: 1.6.1.0, časové razítko: 0x566f2675
Název chybujícího modulu: SystemAgentService.exe, verze: 1.6.1.0, časové razítko: 0x566f2675
Kód výjimky: 0xc0000409
Posun chyby: 0x0000b15e
ID chybujícího procesu: 0x784
Čas spuštění chybující aplikace: 0x01d2128f45cde470
Cesta k chybující aplikaci: C:\Program Files\Lenovo\iMController\SystemAgentService.exe
Cesta k chybujícímu modulu: C:\Program Files\Lenovo\iMController\SystemAgentService.exe
ID zprávy: 14e88826-7f03-11e6-82cf-5cc5d4cb0f51
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (09/19/2016 11:30:07 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: EXCEL.EXE, verze: 16.0.6741.2063, časové razítko: 0x579e3ad1
Název chybujícího modulu: us005du.dll, verze: 6.760.12.11, časové razítko: 0x57c006da
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000fbe29
ID chybujícího procesu: 0x13a0
Čas spuštění chybující aplikace: 0x01d212b95ac7c24c
Cesta k chybující aplikaci: C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE
Cesta k chybujícímu modulu: C:\windows\system32\spool\DRIVERS\x64\3\us005du.dll
ID zprávy: 3b9421f5-7eb0-11e6-82cf-5cc5d4cb0f51
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (09/19/2016 10:10:32 PM) (Source: Microsoft-Windows-LocationProvider) (EventID: 2006) (User: NT AUTHORITY)
Description: There was an error with the Windows Location Provider database

Error: (09/19/2016 09:12:09 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (09/19/2016 09:02:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: AvastSvc.exe, verze: 12.3.3154.0, časové razítko: 0x57b5c39d
Název chybujícího modulu: ntdll.dll, verze: 6.3.9600.18233, časové razítko: 0x56bb4e1d
Kód výjimky: 0xc0000374
Posun chyby: 0x000e6054
ID chybujícího procesu: 0x460
Čas spuštění chybující aplikace: 0x01d2128f44d6b5fa
Cesta k chybující aplikaci: C:\Program Files\AVAST Software\Avast\AvastSvc.exe
Cesta k chybujícímu modulu: C:\windows\SYSTEM32\ntdll.dll
ID zprávy: 9a549ba9-7e9b-11e6-82cf-5cc5d4cb0f51
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (09/19/2016 05:51:50 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program PDFConverter.exe verze 6.1.0.118 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 25a8

Čas spuštění: 01d2128d927f71c4

Čas ukončení: 48

Cesta k aplikaci: C:\Users\Jindřich\Programy\Total PDF Converter\PDFConverter.exe

ID hlášení: f721bd5e-7e80-11e6-82ce-5cc5d4cb0f51

Úplný název chybujícího balíčku:

ID aplikace související s chybujícím balíčkem:

Error: (09/19/2016 09:11:44 AM) (Source: Microsoft-Windows-Defrag) (EventID: 257) (User: )
Description: Svazek WINRE_DRV nebyl optimalizován, protože byla zjištěna chyba: Parametr není správný. (0x80070057).

Error: (09/19/2016 09:01:14 AM) (Source: Microsoft-Windows-Defrag) (EventID: 257) (User: )
Description: Svazek WINRE_DRV nebyl optimalizován, protože byla zjištěna chyba: Parametr není správný. (0x80070057).


System errors:
=============
Error: (09/20/2016 11:07:41 PM) (Source: bowser) (EventID: 8003) (User: )
Description: Hlavní prohledávač přijal oznámení serveru od počítače EPIXON,
který se považuje za hlavní prohledávač domény pro přenos NetBT_Tcpip_{0FAA79A6-06A9-4259-8D04-2F5FCB67F7FD}.
Hlavní prohledávač bude ukončen nebo bude vyvolána volba.

Error: (09/20/2016 10:06:48 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.

Cesta k modulu: C:\windows\System32\IWMSSvc.dll

Error: (09/20/2016 10:06:48 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.

Cesta k modulu: C:\windows\System32\IWMSSvc.dll

Error: (09/20/2016 10:06:47 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.

Cesta k modulu: C:\windows\System32\IWMSSvc.dll

Error: (09/20/2016 07:55:26 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Dynamic Application Loader Host Interface Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (09/20/2016 07:55:26 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Windows Media Player Network Sharing byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.

Error: (09/20/2016 07:55:26 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Management and Security Application Local Management Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (09/20/2016 07:55:26 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Cyberlink RichVideo64 Service(CRVS) byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (09/20/2016 07:55:26 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba CCSDK byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (09/20/2016 07:55:26 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba YogaPicks.AppService byla neočekávaně ukončena. Tento stav nastal již 1krát.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5-4210U CPU @ 1.70GHz
Percentage of memory in use: 40%
Total physical RAM: 8112.96 MB
Available physical RAM: 4854.05 MB
Total Virtual: 9392.96 MB
Available Virtual: 5712.45 MB

==================== Drives ================================

Drive c: (Windows8_OS) (Fixed) (Total:197.8 GB) (Free:60.86 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:22.53 GB) NTFS
Drive e: (SALADIN) (Removable) (Total:0.24 GB) (Free:0.2 GB) FAT

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: 89EB774A)

Partition: GPT.

========================================================
Disk: 1 (Size: 245.5 MB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt ============================
Nahoru
altrok
Moderátor
Moderátor
Příspěvky: 7264
Registrován: 15 lis 2012 22:26
Bydliště: Znojmo

Re: Problém s flash diskem

#10 Příspěvek od altrok »

:arrow: Pri tomto kroku vam bude vyprazdnen kos, vyprazdneny cache prohlizecu, odstraneny aktivni prihlaseni apod.




  • Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
  • ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
  • znovu spustte FRST a kliknete na Fix
  • po restartu bude na plose ulozen fixlog, jehoz obsah vlozte do pristi odpovedi

    Kód: Vybrat vše

    Start
CreateRestorePoint:
CloseProcesses:
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Users\Jindřich\Programy\DAEMON Tools Lite\DTAgent.exe [4468056 2015-06-18] (Disc Soft Ltd)
HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\...\Run: [smycWTeXSeDFCWU] => wscript.exe //B "C:\Users\JINDIC~1\AppData\Local\Temp\smycWTeXSeDFCWU.wSf" <===== ATTENTION
HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\...\MountPoints2: {2885be57-3f72-11e6-82c5-5cc5d4cb0f51} - "E:\WD SmartWare.exe" autoplay=true
HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\...\MountPoints2: {4debe587-589f-11e5-8263-5cc5d4cb0f51} - "I:\Setup.exe"
HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\...\MountPoints2: {60430f1c-5a3e-11e5-8267-5cc5d4cb0f51} - "G:\noautorun.exe"
HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\...\MountPoints2: {60430f20-5a3e-11e5-8267-5cc5d4cb0f51} - "H:\autorun.exe"
HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\...\MountPoints2: {60430f24-5a3e-11e5-8267-5cc5d4cb0f51} - "I:\noautorun.exe"
HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\...\MountPoints2: {a11574c0-604d-11e5-826d-5cc5d4cb0f51} - "F:\Autorun.exe" 
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3058634117-4252258037-3257375764-1001 -> DefaultScope {26417749-62E4-4DFD-9ED2-4B0D45671722} URL =
SearchScopes: HKU\S-1-5-21-3058634117-4252258037-3257375764-1001 -> {26417749-62E4-4DFD-9ED2-4B0D45671722} URL = 
2016-09-19 22:28 - 2016-09-19 22:28 - 01222144 _____ C:\Users\Jindřich\Downloads\RSITx64.exe
2016-09-19 22:28 - 2016-09-19 22:28 - 00000000 ____D C:\rsit
2016-09-19 22:28 - 2016-09-19 22:28 - 00000000 ____D C:\Program Files\trend micro
File: C:\windows\system32\SBuySupplies.exe
File: C:\windows\system32\us005ci.dll
File: C:\windows\system32\us005ci.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore1d0f19cbf91c392.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
File: C:\windows\System32\us005lm.dll
HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
CMD: dir "C:\PROGRA~1"
CMD: dir "C:\PROGRA~2"
CMD: dir "C:\PROGRA~3"
CMD: dir "%localappdata%"
CMD: dir "%appdata%"
Hosts:
EmptyTemp:
End
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Nahoru
Uživatelský avatar
Šmíďák
Návštěvník
Návštěvník
Příspěvky: 144
Registrován: 15 říj 2012 13:42
Bydliště: Brno

Re: Problém s flash diskem

#11 Příspěvek od Šmíďák »

Fix result of Farbar Recovery Scan Tool (x64) Version: 20-09-2016
Ran by Jindřich (21-09-2016 00:07:39) Run:1
Running from C:\Users\Jindřich\Desktop
Loaded Profiles: Jindřich (Available Profiles: Jindřich)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
CreateRestorePoint:
CloseProcesses:
HKLM-x32\...\Run: [HP Software Update] => C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe [96056 2013-05-30] (Hewlett-Packard)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [SunJavaUpdateSched] => "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Users\Jindřich\Programy\DAEMON Tools Lite\DTAgent.exe [4468056 2015-06-18] (Disc Soft Ltd)
HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\...\Run: [smycWTeXSeDFCWU] => wscript.exe //B "C:\Users\JINDIC~1\AppData\Local\Temp\smycWTeXSeDFCWU.wSf" <===== ATTENTION
HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\...\MountPoints2: {2885be57-3f72-11e6-82c5-5cc5d4cb0f51} - "E:\WD SmartWare.exe" autoplay=true
HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\...\MountPoints2: {4debe587-589f-11e5-8263-5cc5d4cb0f51} - "I:\Setup.exe"
HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\...\MountPoints2: {60430f1c-5a3e-11e5-8267-5cc5d4cb0f51} - "G:\noautorun.exe"
HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\...\MountPoints2: {60430f20-5a3e-11e5-8267-5cc5d4cb0f51} - "H:\autorun.exe"
HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\...\MountPoints2: {60430f24-5a3e-11e5-8267-5cc5d4cb0f51} - "I:\noautorun.exe"
HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\...\MountPoints2: {a11574c0-604d-11e5-826d-5cc5d4cb0f51} - "F:\Autorun.exe"
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM-x32 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-3058634117-4252258037-3257375764-1001 -> DefaultScope {26417749-62E4-4DFD-9ED2-4B0D45671722} URL =
SearchScopes: HKU\S-1-5-21-3058634117-4252258037-3257375764-1001 -> {26417749-62E4-4DFD-9ED2-4B0D45671722} URL =
2016-09-19 22:28 - 2016-09-19 22:28 - 01222144 _____ C:\Users\Jindřich\Downloads\RSITx64.exe
2016-09-19 22:28 - 2016-09-19 22:28 - 00000000 ____D C:\rsit
2016-09-19 22:28 - 2016-09-19 22:28 - 00000000 ____D C:\Program Files\trend micro
File: C:\windows\system32\SBuySupplies.exe
File: C:\windows\system32\us005ci.dll
File: C:\windows\system32\us005ci.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineCore1d0f19cbf91c392.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
File: C:\windows\System32\us005lm.dll
HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\...\StartupApproved\Run: => "DAEMON Tools Lite Automount"
CMD: dir "C:\PROGRA~1"
CMD: dir "C:\PROGRA~2"
CMD: dir "C:\PROGRA~3"
CMD: dir "%localappdata%"
CMD: dir "%appdata%"
Hosts:
EmptyTemp:
End
*****************

Restore point was successfully created.
Processes closed successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\HP Software Update => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\SunJavaUpdateSched => value removed successfully
HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\Software\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite Automount => value removed successfully
HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\Software\Microsoft\Windows\CurrentVersion\Run\\smycWTeXSeDFCWU => value removed successfully
"HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{2885be57-3f72-11e6-82c5-5cc5d4cb0f51}" => key removed successfully
HKCR\CLSID\{2885be57-3f72-11e6-82c5-5cc5d4cb0f51} => key not found.
"HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{4debe587-589f-11e5-8263-5cc5d4cb0f51}" => key removed successfully
HKCR\CLSID\{4debe587-589f-11e5-8263-5cc5d4cb0f51} => key not found.
"HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{60430f1c-5a3e-11e5-8267-5cc5d4cb0f51}" => key removed successfully
HKCR\CLSID\{60430f1c-5a3e-11e5-8267-5cc5d4cb0f51} => key not found.
"HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{60430f20-5a3e-11e5-8267-5cc5d4cb0f51}" => key removed successfully
HKCR\CLSID\{60430f20-5a3e-11e5-8267-5cc5d4cb0f51} => key not found.
"HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{60430f24-5a3e-11e5-8267-5cc5d4cb0f51}" => key removed successfully
HKCR\CLSID\{60430f24-5a3e-11e5-8267-5cc5d4cb0f51} => key not found.
"HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{a11574c0-604d-11e5-826d-5cc5d4cb0f51}" => key removed successfully
HKCR\CLSID\{a11574c0-604d-11e5-826d-5cc5d4cb0f51} => key not found.
"HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => key removed successfully
HKCR\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found.
"HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" => key removed successfully
HKCR\Wow6432Node\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => key not found.
HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value removed successfully
"HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{26417749-62E4-4DFD-9ED2-4B0D45671722}" => key removed successfully
HKCR\CLSID\{26417749-62E4-4DFD-9ED2-4B0D45671722} => key not found.
C:\Users\Jindřich\Downloads\RSITx64.exe => moved successfully
C:\rsit => moved successfully
C:\Program Files\trend micro => moved successfully

========================= File: C:\windows\system32\SBuySupplies.exe ========================

File is digitally signed
MD5: BFAA042A6AB8B9D4D060FE4DE971FDC4
Creation and modification date: 2016-09-15 07:19 - 2016-09-15 07:19
Size: 0235176
Attributes: ----A
Company Name:
Internal Name: Buysupplies
Original Name: Buysupplies.exe
Product: Samsung Electronics
Description: Samsung Electronics
File Version: 1.0.0.6
Product Version: 1.0.0.6
Copyright: Copyright 2012

====== End of File: ======


========================= File: C:\windows\system32\us005ci.dll ========================

File is digitally signed
MD5: D7BF1D199C0695C6FF69A7E73E51BB7F
Creation and modification date: 2016-09-15 07:18 - 2016-09-15 07:18
Size: 0098328
Attributes: ----A
Company Name: SS
Internal Name: SSCoInst
Original Name: SSCoInst.dll
Product: SSCoInst
Description: SSCoInst
File Version: 1, 0, 0, 4
Product Version: 1, 0, 0, 4
Copyright: Copyright (C) 2004 Co., Ltd.

====== End of File: ======


========================= File: C:\windows\system32\us005ci.exe ========================

File is digitally signed
MD5: E865FBDF82F2178143496DF650D3BBF8
Creation and modification date: 2016-09-15 07:17 - 2016-09-15 07:17
Size: 0166776
Attributes: ----A
Company Name:
Internal Name: UPDCoInst
Original Name: UPDCoInst.exe
Product: UPD
Description: UPD Co-Installer
File Version: 3, 0, 0, 2
Product Version: 3, 0, 0, 2
Copyright:

====== End of File: ======

C:\windows\Tasks\GoogleUpdateTaskMachineCore.job => moved successfully
C:\windows\Tasks\GoogleUpdateTaskMachineCore1d0f19cbf91c392.job => moved successfully
C:\windows\Tasks\GoogleUpdateTaskMachineUA.job => moved successfully

========================= File: C:\windows\System32\us005lm.dll ========================

File is digitally signed
MD5: 28A9DEB6D79686529978B5D95F3EACDF
Creation and modification date: 2016-09-15 07:19 - 2016-09-15 07:19
Size: 0031256
Attributes: ----A
Company Name:
Internal Name:
Original Name:
Product: Language Monitor for Status Monitor
Description: Language Monitor for Status Monitor
File Version: 1.4.9.0
Product Version: 1.4.9.0
Copyright:

====== End of File: ======

HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run\\DAEMON Tools Lite Automount => value removed successfully
HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\DAEMON Tools Lite Automount => value not found.

========= dir "C:\PROGRA~1" =========

Volume in drive C is Windows8_OS
Volume Serial Number is E605-A63F

Directory of C:\PROGRA~1

21. 09. 2016 00:07 <DIR> .
21. 09. 2016 00:07 <DIR> ..
09. 02. 2015 19:25 <DIR> Adobe Photo
23. 03. 2016 13:02 <DIR> AVAST Software
23. 08. 2016 09:22 <DIR> Common Files
09. 02. 2015 19:22 <DIR> CyberLink
09. 02. 2015 19:24 <DIR> DIFX
09. 02. 2015 19:00 <DIR> Dolby Digital Plus
09. 02. 2015 19:19 <DIR> Google Play Music
09. 02. 2015 19:01 <DIR> Intel
16. 09. 2016 10:02 <DIR> Internet Explorer
11. 12. 2015 13:39 <DIR> lenovo
09. 02. 2015 19:23 <DIR> Lenovo PhotoMasterImport
09. 02. 2015 19:22 <DIR> Lenovo Yoga PhoneCompanion
23. 08. 2016 09:21 <DIR> Microsoft Office
07. 05. 2016 13:32 <DIR> Microsoft Office 15
03. 04. 2014 20:24 <DIR> MSBuild
09. 02. 2015 19:00 <DIR> Realtek
03. 04. 2014 20:24 <DIR> Reference Assemblies
09. 02. 2015 19:09 <DIR> Synaptics
15. 09. 2015 15:08 <DIR> Windows Defender
15. 09. 2015 15:08 <DIR> Windows Mail
15. 09. 2015 15:08 <DIR> Windows Media Player
13. 09. 2015 05:23 <DIR> Windows Multimedia Platform
22. 08. 2013 17:36 <DIR> Windows NT
15. 09. 2015 15:08 <DIR> Windows Photo Viewer
13. 09. 2015 05:23 <DIR> Windows Portable Devices
13. 09. 2015 05:22 <DIR> WindowsPowerShell
0 File(s) 0 bytes
28 Dir(s) 65˙705˙521˙152 bytes free

========= End of CMD: =========


========= dir "C:\PROGRA~2" =========

Volume in drive C is Windows8_OS
Volume Serial Number is E605-A63F

Directory of C:\PROGRA~2

01. 08. 2016 16:16 <DIR> .
01. 08. 2016 16:16 <DIR> ..
21. 09. 2015 19:05 <DIR> Adobe
09. 02. 2015 19:01 <DIR> Cisco
14. 06. 2016 12:08 <DIR> Common Files
09. 02. 2015 19:19 <DIR> CyberLink
27. 05. 2016 16:52 <DIR> directx
16. 08. 2016 13:33 <DIR> Drakensang Online
11. 09. 2015 12:56 <DIR> Google
04. 10. 2015 12:49 <DIR> Hi-Rez Studios
21. 09. 2015 18:48 <DIR> HP
09. 02. 2015 19:05 <DIR> Intel
16. 09. 2016 10:02 <DIR> Internet Explorer
11. 09. 2015 12:36 <DIR> Lenovo
09. 02. 2015 19:20 <DIR> Maxthon
08. 12. 2015 13:58 <DIR> Microsoft Office
07. 05. 2016 13:33 <DIR> Microsoft.NET
11. 09. 2015 12:50 <DIR> Mozilla Maintenance Service
03. 04. 2014 20:24 <DIR> MSBuild
09. 02. 2015 19:22 <DIR> New Folder
09. 02. 2015 19:04 <DIR> Realtek
03. 04. 2014 20:24 <DIR> Reference Assemblies
29. 08. 2016 21:45 <DIR> Skype
15. 09. 2015 15:08 <DIR> Windows Defender
15. 09. 2015 15:08 <DIR> Windows Mail
15. 09. 2015 15:08 <DIR> Windows Media Player
13. 09. 2015 05:22 <DIR> Windows Multimedia Platform
22. 08. 2013 17:36 <DIR> Windows NT
15. 09. 2015 15:08 <DIR> Windows Photo Viewer
13. 09. 2015 05:22 <DIR> Windows Portable Devices
22. 08. 2013 17:36 <DIR> WindowsPowerShell
0 File(s) 0 bytes
31 Dir(s) 65˙705˙521˙152 bytes free

========= End of CMD: =========


========= dir "C:\PROGRA~3" =========

Volume in drive C is Windows8_OS
Volume Serial Number is E605-A63F

Directory of C:\PROGRA~3

21. 09. 2015 19:07 <DIR> Adobe
23. 03. 2016 13:02 <DIR> AVAST Software
09. 02. 2015 19:23 <DIR> CyberLink
11. 09. 2015 18:24 <DIR> DAEMON Tools Lite
09. 02. 2015 19:24 <DIR> Downloaded Installations
21. 10. 2015 23:36 <DIR> Energy Manager
11. 09. 2015 18:27 <DIR> GraphPad Software
12. 01. 2016 23:58 <DIR> Hewlett-Packard
04. 10. 2015 12:49 <DIR> Hi-Rez Studios
21. 09. 2015 18:48 <DIR> HP
09. 10. 2015 19:18 626 hpzinstall.log
09. 02. 2015 19:22 <DIR> install_clap
09. 02. 2015 19:01 <DIR> Intel
09. 02. 2015 19:01 <DIR> Intel.sav
14. 09. 2016 10:22 <DIR> Lavasoft
11. 09. 2015 13:05 <DIR> Lenovo
09. 02. 2015 19:22 <DIR> LenovoTransition
17. 10. 2015 13:35 <DIR> McAfee
08. 12. 2015 14:11 <DIR> Microsoft
08. 12. 2015 13:59 <DIR> Microsoft Help
07. 05. 2016 13:33 <DIR> Microsoft OneDrive
09. 02. 2015 19:24 <DIR> OneKey Recovery
22. 10. 2015 11:25 <DIR> Oracle
17. 09. 2015 14:05 <DIR> Package Cache
09. 02. 2015 19:18 <DIR> Pokki
23. 08. 2016 09:22 <DIR> regid.1991-06.com.microsoft
09. 02. 2015 19:01 <DIR> Roaming
19. 09. 2016 23:28 <DIR> Samsung
29. 08. 2016 21:45 <DIR> Skype
17. 09. 2015 14:05 <DIR> Steam
09. 02. 2015 19:24 <DIR> Temp
21. 10. 2015 16:26 <DIR> Tunngle
16. 10. 2015 19:19 <DIR> Ubisoft
1 File(s) 626 bytes
32 Dir(s) 65˙705˙517˙056 bytes free

========= End of CMD: =========


========= dir "%localappdata%" =========

Volume in drive C is Windows8_OS
Volume Serial Number is E605-A63F

Directory of C:\Users\Jindýich\AppData\Local

20. 09. 2016 22:07 <DIR> .
20. 09. 2016 22:07 <DIR> ..
21. 09. 2015 19:06 <DIR> Adobe
21. 09. 2015 19:10 <DIR> CEF
16. 09. 2015 15:07 <DIR> Criterion Games
07. 09. 2016 20:08 <DIR> Diagnostics
11. 09. 2015 18:34 <DIR> Disc_Soft_Ltd
30. 04. 2016 00:31 <DIR> DOSBox
11. 09. 2015 13:00 <DIR> GHISLER
12. 09. 2015 10:55 <DIR> Google
11. 09. 2015 12:38 <DIR> GWX
01. 10. 2015 15:13 <DIR> HP
11. 09. 2015 12:36 <DIR> Lenovo
11. 09. 2015 13:35 <DIR> Macromedia
10. 11. 2015 21:04 <DIR> Mendeley Ltd
07. 05. 2016 13:33 <DIR> Microsoft
28. 08. 2016 19:41 <DIR> Microsoft Help
11. 09. 2015 12:45 <DIR> Mozilla
09. 09. 2016 12:12 <DIR> NFS Underground 2
08. 05. 2016 22:07 <DIR> OfficeBSCache-MyComputer
19. 09. 2016 23:04 <DIR> Packages
11. 09. 2015 12:33 <DIR> PackageStaging
09. 02. 2015 19:17 <DIR> Pokki
11. 09. 2015 20:06 <DIR> Programs
13. 12. 2015 12:50 <DIR> Skype
04. 10. 2015 11:24 <DIR> Steam
21. 09. 2016 00:07 <DIR> Temp
13. 01. 2016 00:10 <DIR> VirtualStore
0 File(s) 0 bytes
28 Dir(s) 65˙705˙517˙056 bytes free

========= End of CMD: =========


========= dir "%appdata%" =========

Volume in drive C is Windows8_OS
Volume Serial Number is E605-A63F

Directory of C:\Users\Jindýich\AppData\Roaming

19. 09. 2016 17:50 <DIR> .
19. 09. 2016 17:50 <DIR> ..
21. 09. 2015 19:09 <DIR> Adobe
19. 03. 2016 20:12 <DIR> AVAST Software
06. 09. 2016 21:04 <DIR> BSplayer
11. 09. 2015 12:44 <DIR> BSplayer Pro
16. 09. 2016 14:50 <DIR> DAEMON Tools Lite
16. 10. 2015 14:49 238 del.bat
11. 09. 2015 12:48 <DIR> GHISLER
11. 09. 2015 18:27 <DIR> GraphPad Software
19. 09. 2016 18:09 <DIR> gtk-2.0
21. 09. 2015 18:48 <DIR> Hewlett-Packard Company
12. 10. 2015 23:10 <DIR> HpUpdate
13. 09. 2015 13:18 <DIR> Identities
11. 09. 2015 12:32 <DIR> Intel
11. 09. 2015 12:34 <DIR> Intel Corporation
11. 09. 2015 12:33 <DIR> Macromedia
04. 12. 2015 12:27 <DIR> Maxthon3
11. 09. 2015 12:47 <DIR> Mozilla
20. 09. 2016 21:51 <DIR> Skype
19. 09. 2016 17:50 <DIR> Softplicity
22. 10. 2015 11:26 <DIR> Sun
17. 10. 2015 14:13 <DIR> Tunngle
16. 09. 2016 12:12 <DIR> uTorrent
19. 09. 2016 01:00 <DIR> vlc
01. 12. 2015 17:16 <DIR> Wargaming.net
11. 09. 2015 14:09 <DIR> Winamp
15. 04. 2016 19:10 <DIR> WinRAR
1 File(s) 238 bytes
27 Dir(s) 65˙705˙517˙056 bytes free

========= End of CMD: =========

C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 17287038 B
Java, Flash, Steam htmlcache => 39836559 B
Windows/system/drivers => 128478 B
Edge => 0 B
Chrome => 476592784 B
Firefox => 380676871 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Default => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 339992 B
systemprofile32 => 0 B
LocalService => 5237521 B
NetworkService => 0 B
Jindřich => 79843968 B

RecycleBin => 0 B
EmptyTemp: => 961.6 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 00:08:07 ====
Nahoru
altrok
Moderátor
Moderátor
Příspěvky: 7264
Registrován: 15 lis 2012 22:26
Bydliště: Znojmo

Re: Problém s flash diskem

#12 Příspěvek od altrok »

Na flashce stale zastupci? Vlozte prosim nove logy FRST.txt a Addition.txt
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Nahoru
Uživatelský avatar
Šmíďák
Návštěvník
Návštěvník
Příspěvky: 144
Registrován: 15 říj 2012 13:42
Bydliště: Brno

Re: Problém s flash diskem

#13 Příspěvek od Šmíďák »

Ano stále tam jsou FRST:

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 20-09-2016
Ran by Jindřich (administrator) on BELZEBUB (21-09-2016 00:52:14)
Running from C:\Users\Jindřich\Desktop
Loaded Profiles: Jindřich (Available Profiles: Jindřich)
Platform: Windows 8.1 (Update) (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: "C:\Users\Jindřich\Programy\Firefox\firefox.exe" -osint -url "%1")
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe
(Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe
(Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(HP) C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(LENOVO INCORPORATED.) C:\Program Files\lenovo\iMController\SystemAgentService.exe
(Lenovo(beijing) Limited) C:\Windows\System32\LenovoWiFiHotspotSvr.exe
(Lenovo) C:\Program Files (x86)\Lenovo\Lenovo Smart Voice\LsvUIService.exe
(Maxthon) C:\Program Files (x86)\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe
(PointGrab LTD) C:\Program Files (x86)\Lenovo\Motion Control\PGService.exe
(PointGrab LTD) C:\Program Files (x86)\Lenovo\Motion Control\PG_Service_Launcher.exe
(Lenovo) C:\Program Files\Lenovo Yoga PhoneCompanion\PhoneCompanionPusher.exe
(PointGrab LTD) C:\Program Files (x86)\Lenovo\Motion Control\WebcamSplitterServer.exe
() C:\Windows\SysWOW64\PnkBstrA.exe
() C:\Windows\SysWOW64\PnkBstrB.exe
(Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
() C:\Program Files\CyberLink\Shared files\RichVideo64.exe
(Lenovo) C:\ProgramData\LenovoTransition\Server\x64\ymc.exe
() C:\Program Files (x86)\Lenovo\Yoga Picks\Service\x64\YogaPicks.AppService.exe
(Intel® Corporation) C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Microsoft Corporation) C:\Windows\System32\SkyDrive.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonX64\Microsoft Shared\OFFICE16\CSISYNCCLIENT.EXE
(Mozilla Corporation) C:\Users\Jindřich\Programy\Firefox\firefox.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe
(Realtek semiconductor) C:\Windows\RTFTrack.exe
(Lenovo) C:\Program Files\Lenovo Yoga PhoneCompanion\Yoga Phone Companion.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe
(Lenovo(beijing) Limited) C:\Program Files (x86)\Lenovo\Energy Manager\utility.exe
(Wargaming.net) C:\Users\Jindřich\Saved Games\World of Tanks\WargamingGameUpdater.exe
(Hewlett-Packard Company) C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Piriform Ltd) C:\Users\Jindřich\Programy\CCleaner\CCleaner64.exe
(Lenovo) C:\Program Files (x86)\Lenovo\Lenovo Smart Voice\LsvTrayLoad.exe
(Lenovo) C:\Program Files (x86)\Lenovo\Lenovo Smart Voice\LsvController.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
() C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
() C:\Program Files\Lenovo Yoga PhoneCompanion\adb.exe


==================== Registry (Whitelisted) ===========================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [IAStorIcon] => C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [287592 2014-03-26] (Intel Corporation)
HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [13667032 2014-01-22] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_Dolby] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1374936 2014-01-13] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_DOLBYDRAGON] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1374936 2014-01-13] (Realtek Semiconductor)
HKLM\...\Run: [RtHDVBg_LENOVO_MICPKEY] => C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [1374936 2014-01-13] (Realtek Semiconductor)
HKLM\...\Run: [RtsFT] => C:\windows\RTFTrack.exe [6340312 2013-10-17] (Realtek semiconductor)
HKLM\...\Run: [Yoga PhoneCompanion] => C:\Program Files\Lenovo Yoga PhoneCompanion\Yoga Phone Companion.exe [844304 2015-02-09] (Lenovo)
HKLM\...\Run: [Energy Manager] => C:\Program Files (x86)\Lenovo\Energy Manager\Energy Manager.exe [15813616 2015-02-09] (Lenovo(beijing) Limited)
HKLM\...\Run: [Lenovo Utility] => C:\Program Files (x86)\Lenovo\Energy Manager\Utility.exe [80880 2015-02-09] (Lenovo(beijing) Limited)
HKLM-x32\...\Run: [StatusAlerts] => C:\Program Files (x86)\HP\StatusAlerts\bin\HPStatusAlerts.exe [313656 2013-04-18] (Hewlett-Packard Company)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9107616 2016-09-12] (AVAST Software)
HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\...\Run: [Pokki] => C:\Windows\system32\rundll32.exe "%LOCALAPPDATA%\Pokki\Engine\Launcher.dll",RunLaunchPlatform
HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\...\Run: [CCleaner Monitoring] => C:\Users\Jindřich\Programy\CCleaner\CCleaner64.exe [8891608 2016-07-13] (Piriform Ltd)
HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\...\Run: [World of Tanks] => C:\Users\Jindřich\Saved Games\World of Tanks\WargamingGameUpdater.exe [3134728 2016-08-05] (Wargaming.net)
HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\...\RunOnce: [Uninstall C:\Users\JindYich\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\amd64] => C:\windows\system32\cmd.exe /q /c rmdir /s /q "C:\Users\Jindřich\AppData\Local\Microsoft\OneDrive\17.3.6386.0412\amd64"
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-09-10] (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{0FAA79A6-06A9-4259-8D04-2F5FCB67F7FD}: [DhcpNameServer] 10.0.0.138
Tcpip\..\Interfaces\{5AE36E25-E411-488C-9D5B-0574FBBF2C12}: [DhcpNameServer] 7.254.254.254
Tcpip\..\Interfaces\{D93D251B-3FCC-4952-8826-57D935628C58}: [DhcpNameServer] 169.254.132.69

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://lenovo13.msn.com/?pc=LCJB
HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\Software\Microsoft\Internet Explorer\Main,Secondary Start Pages = hxxp://mystart.lenovo.com
HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\Software\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL = hxxp://mystart.lenovo.com
BHO: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\Office16\OCHelper.dll [2016-07-31] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Users\Jindřich\Programy\Java\bin\ssv.dll [2015-10-22] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-09-10] (AVAST Software)
BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\Office16\GROOVEEX.DLL [2016-07-31] (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Users\Jindřich\Programy\Java\bin\jp2ssv.dll [2015-10-22] (Oracle Corporation)
BHO-x32: Lync Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\OCHelper.dll [2016-07-31] (Microsoft Corporation)
BHO-x32: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2016-09-10] (AVAST Software)
BHO-x32: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\GROOVEEX.DLL [2016-07-31] (Microsoft Corporation)
Handler: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-07-31] (Microsoft Corporation)
Handler-x32: mso-minsb-roaming.16 - {83C25742-A9F7-49FB-9138-434302C88D07} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-07-31] (Microsoft Corporation)
Handler: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-07-31] (Microsoft Corporation)
Handler-x32: mso-minsb.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-07-31] (Microsoft Corporation)
Handler: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-07-31] (Microsoft Corporation)
Handler-x32: osf-roaming.16 - {42089D2D-912D-4018-9087-2B87803E93FB} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-07-31] (Microsoft Corporation)
Handler: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\Office16\MSOSB.DLL [2016-07-31] (Microsoft Corporation)
Handler-x32: osf.16 - {5504BE45-A83B-4808-900A-3A5C36E7F77A} - C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\MSOSB.DLL [2016-07-31] (Microsoft Corporation)

FireFox:
========
FF ProfilePath: C:\Users\Jindřich\AppData\Roaming\Mozilla\Firefox\Profiles\5kd5qg9f.default
FF Homepage: www.centrum.cz
FF Session Restore: -> is enabled.
FF Plugin: @adobe.com/FlashPlayer -> C:\windows\system32\Macromed\Flash\NPSWF64_23_0_0_162.dll [2016-09-13] ()
FF Plugin: @java.com/DTPlugin,version=11.66.2 -> C:\Users\Jindřich\Programy\Java\bin\dtplugin\npDeployJava1.dll [2015-10-22] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.66.2 -> C:\Users\Jindřich\Programy\Java\bin\plugin2\npjp2.dll [2015-10-22] (Oracle Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\Office16\NPSPWRAP.DLL [2016-07-31] (Microsoft Corporation)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_162.dll [2016-09-13] ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=4.0.5 -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2013-09-16] (Intel Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-07-31] (Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office\root\VFS\ProgramFilesX86\Microsoft Office\Office16\NPSPWRAP.DLL [2016-07-31] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.31.5\npGoogleUpdate3.dll [2016-07-29] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Users\Jindřich\Programy\VLC\npvlc.dll [2015-04-13] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-06-30] (Adobe Systems Inc.)
FF Extension: (Firefox Hotfix) - C:\Users\Jindřich\AppData\Roaming\Mozilla\Firefox\Profiles\5kd5qg9f.default\Extensions\firefox-hotfix@mozilla.org.xpi [2016-08-31]
FF Extension: (Adblock Plus) - C:\Users\Jindřich\AppData\Roaming\Mozilla\Firefox\Profiles\5kd5qg9f.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-04-28]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-09-10]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-09-10]
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
StartMenuInternet: FIREFOX.EXE - C:\Users\Jindřich\Programy\Firefox\firefox.exe

Chrome:
=======
CHR HomePage: Default -> hxxp://www.centrum.cz/
CHR Session Restore: Default -> is enabled.
CHR Profile: C:\Users\Jindřich\AppData\Local\Google\Chrome\User Data\Default [2016-09-21]
CHR Extension: (Prezentace Google) - C:\Users\Jindřich\AppData\Local\Google\Chrome\User Data\Default\Extensions\aapocclcgogkmnckokdopfmhonfmgoek [2015-09-11]
CHR Extension: (Dokumenty Google) - C:\Users\Jindřich\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2015-09-11]
CHR Extension: (Disk Google) - C:\Users\Jindřich\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-10-22]
CHR Extension: (YouTube) - C:\Users\Jindřich\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-10-22]
CHR Extension: (Vyhledávání Google) - C:\Users\Jindřich\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-11-10]
CHR Extension: (Avast SafePrice) - C:\Users\Jindřich\AppData\Local\Google\Chrome\User Data\Default\Extensions\eofcbnmajmjmplflapaojjnihcjkigck [2016-09-19]
CHR Extension: (Tabulky Google) - C:\Users\Jindřich\AppData\Local\Google\Chrome\User Data\Default\Extensions\felcaaldnbdncclmgdcncolpebgiejap [2015-09-11]
CHR Extension: (Dokumenty Google offline) - C:\Users\Jindřich\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2016-04-07]
CHR Extension: (Avast Online Security) - C:\Users\Jindřich\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2016-06-25]
CHR Extension: (Don't Panic) - C:\Users\Jindřich\AppData\Local\Google\Chrome\User Data\Default\Extensions\mcfcnmhjkimfpjejojjkhdfneddhknkd [2015-09-11]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Jindřich\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2016-04-07]
CHR Extension: (Gmail) - C:\Users\Jindřich\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-09-11]
CHR Extension: (Chrome Media Router) - C:\Users\Jindřich\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-09-19]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx <not found>

==================== Services (Whitelisted) ========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-09-10] (AVAST Software)
R2 CCSDK; C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe [592880 2014-07-10] ()
R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [2854640 2016-07-31] (Microsoft Corporation)
S3 Disc Soft Lite Bus Service; C:\Users\Jindřich\Programy\DAEMON Tools Lite\DiscSoftBusService.exe [1268568 2015-06-18] (Disc Soft Ltd)
U2 HiPatchService; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [8704 2015-09-02] (Hi-Rez Studios) [File not signed]
S3 HP DS Service; C:\Program Files (x86)\HP\HPBDSService\HPBDSService.exe [13824 2011-10-17] (Hewlett-Packard Company) [File not signed]
R2 HP LaserJet Service; C:\Program Files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [174592 2012-12-04] (HP) [File not signed]
R2 IAStorDataMgrSvc; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [16232 2014-03-26] (Intel Corporation)
R2 igfxCUIService1.0.0.0; C:\Windows\system32\igfxCUIService.exe [282072 2014-03-10] (Intel Corporation)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [747520 2013-08-28] (Intel(R) Corporation) [File not signed]
S3 Intel(R) Capability Licensing Service TCP IP Interface; C:\Program Files\Intel\iCLS Client\SocketHeciServer.exe [828376 2013-08-28] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [131544 2013-09-16] (Intel Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [169432 2013-09-16] (Intel Corporation)
S3 Lenovo EasyPlus Hotspot; C:\Program Files (x86)\Common Files\lenovo\easyplussdk\bin\EPHotspot64.exe [561408 2014-09-23] (Lenovo)
R2 Lenovo System Agent Service; C:\Program Files\Lenovo\iMController\SystemAgentService.exe [584664 2015-12-14] (LENOVO INCORPORATED.)
R2 LenovoWiFiHotspotSvr; C:\Windows\System32\LenovoWiFiHotspotSvr.exe [198192 2015-02-09] (Lenovo(beijing) Limited)
R2 LsvUIService; C:\Program Files (x86)\Lenovo\Lenovo Smart Voice\LsvUIService.exe [70416 2015-02-09] (Lenovo)
R2 MaxthonUpdateSvc; C:\Program Files (x86)\Maxthon\Modules\Service\Update\MaxthonUpdateSvc.exe [1872808 2015-11-30] (Maxthon)
S3 MyWiFiDHCPDNS; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [284912 2014-01-18] ()
R2 Net Driver HPZ12; C:\Windows\System32\HPZinw12.dll [50688 2014-11-17] (Hewlett-Packard) [File not signed]
R2 PGService; C:\Program Files (x86)\Lenovo\Motion Control\PGService.exe [167176 2014-02-25] (PointGrab LTD)
R2 PG_Service_Launcher; C:\Program Files (x86)\Lenovo\Motion Control\PG_Service_Launcher.exe [512776 2014-02-25] (PointGrab LTD)
R2 PhoneCompanionPusher; C:\Program Files\Lenovo Yoga PhoneCompanion\PhoneCompanionPusher.exe [285712 2015-02-09] (Lenovo)
S3 PhoneCompanionVap; C:\Program Files\Lenovo Yoga PhoneCompanion\PhoneCompanionVap.exe [304144 2015-02-09] (Lenovo)
R2 Pml Driver HPZ12; C:\Windows\System32\HPZipm12.dll [66048 2014-11-17] (Hewlett-Packard) [File not signed]
R2 PnkBstrA; C:\windows\SysWOW64\PnkBstrA.exe [66872 2015-10-17] ()
R2 PnkBstrB; C:\windows\SysWOW64\PnkBstrB.exe [107832 2015-10-17] ()
R2 RichVideo64; C:\Program Files\CyberLink\Shared files\RichVideo64.exe [390632 2012-04-24] ()
S3 TunngleService; C:\Users\Patejl\Programy\Tunngle\TnglCtrl.exe [805840 2015-09-26] (Tunngle.net GmbH) [File not signed]
S4 VeriFaceSrv; C:\Program Files (x86)\Lenovo\Lenovo VeriFace Pro\VfConnectorService.exe [67856 2015-02-09] ()
S3 vmicvss; C:\Windows\System32\ICSvc.dll [524800 2014-10-29] (Microsoft Corporation)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [366552 2015-07-07] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [23824 2015-07-07] (Microsoft Corporation)
R2 ymc; C:\ProgramData\LenovoTransition\Server\x64\ymc.exe [33040 2015-02-09] (Lenovo)
R2 YogaPicks.AppService; C:\Program Files (x86)\Lenovo\Yoga Picks\Service\x64\YogaPicks.AppService.exe [19440 2014-01-07] ()
R2 ZeroConfigService; C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe [3816176 2014-01-18] (Intel® Corporation)

===================== Drivers (Whitelisted) ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 aswHwid; C:\Windows\system32\drivers\aswHwid.sys [37656 2016-09-10] (AVAST Software)
R1 aswKbd; C:\Windows\system32\drivers\aswKbd.sys [37144 2016-09-10] (AVAST Software)
R2 aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [108816 2016-09-10] (AVAST Software)
R1 aswRdr; C:\Windows\system32\drivers\aswRdr2.sys [103064 2016-09-10] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-09-10] (AVAST Software)
R1 aswSnx; C:\Windows\system32\drivers\aswSnx.sys [969184 2016-09-16] (AVAST Software)
R1 aswSP; C:\Windows\system32\drivers\aswSP.sys [513496 2016-09-10] (AVAST Software)
R2 aswStm; C:\Windows\system32\drivers\aswStm.sys [163416 2016-09-10] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [292704 2016-09-10] (AVAST Software)
S3 AX88772; C:\Windows\system32\DRIVERS\ax88772.sys [113864 2013-07-18] (ASIX Electronics Corp.)
S3 dg_ssudbus; C:\Windows\system32\DRIVERS\ssudbus.sys [130688 2016-07-22] (Samsung Electronics Co., Ltd.)
R3 dtlitescsibus; C:\Windows\System32\drivers\dtlitescsibus.sys [30264 2015-09-11] (Disc Soft Ltd)
S0 ebdrv; C:\Windows\System32\drivers\evbda.sys [3357024 2013-08-22] (Broadcom Corporation)
R3 ibtusb; C:\Windows\system32\DRIVERS\ibtusb.sys [142280 2013-10-18] (Intel Corporation)
R3 MEIx64; C:\Windows\system32\DRIVERS\TeeDriverx64.sys [99288 2013-09-16] (Intel Corporation)
S0 mfeelamk; C:\Windows\System32\drivers\mfeelamk.sys [80920 2015-07-02] (McAfee, Inc.)
R3 NETwNb64; C:\Windows\system32\DRIVERS\Netwbw02.sys [3433952 2014-02-18] (Intel Corporation)
S3 NETwNe64; C:\Windows\system32\DRIVERS\NETwew02.sys [4649440 2013-06-18] (Intel Corporation)
R3 rtsuvc; C:\Windows\system32\DRIVERS\rtsuvc.sys [8876248 2013-10-17] (Realtek Semiconductor Corp.)
R3 SensorsServiceDriver; C:\Windows\System32\drivers\WUDFRd.sys [226304 2014-10-29] (Microsoft Corporation)
R3 SmbDrvI; C:\Windows\system32\DRIVERS\Smb_driver_Intel.sys [34544 2013-12-19] (Synaptics Incorporated)
S3 ssudmdm; C:\Windows\system32\DRIVERS\ssudmdm.sys [164992 2016-07-22] (Samsung Electronics Co., Ltd.)
R3 tap0901t; C:\Windows\system32\DRIVERS\tap0901t.sys [31232 2009-09-16] (Tunngle.net)
S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [44560 2015-07-07] (Microsoft Corporation)
S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [270168 2015-07-07] (Microsoft Corporation)
S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [114520 2015-07-07] (Microsoft Corporation)
S3 wsvd; C:\Windows\system32\DRIVERS\wsvd.sys [102376 2012-06-14] ("CyberLink)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-09-21 00:07 - 2016-09-21 00:08 - 00018715 _____ C:\Users\Jindřich\Desktop\Fixlog.txt
2016-09-20 23:46 - 2016-09-21 00:52 - 00024870 _____ C:\Users\Jindřich\Desktop\FRST.txt
2016-09-20 23:46 - 2016-09-20 23:47 - 00039512 _____ C:\Users\Jindřich\Desktop\Addition.txt
2016-09-20 23:44 - 2016-09-21 00:52 - 00000000 ____D C:\FRST
2016-09-20 23:34 - 2016-09-20 23:34 - 02402816 _____ (Farbar) C:\Users\Jindřich\Downloads\FRST64(1).exe
2016-09-20 23:27 - 2016-09-20 23:27 - 02402816 _____ (Farbar) C:\Users\Jindřich\Desktop\FRST64.exe
2016-09-20 20:08 - 2016-09-20 20:08 - 01461376 _____ (Skype Technologies S.A.) C:\Users\Jindřich\Downloads\SkypeSetup.exe
2016-09-20 19:56 - 2016-09-20 19:56 - 00016854 _____ C:\Users\Jindřich\Desktop\UsbFix_Report.txt
2016-09-20 19:53 - 2016-09-20 19:53 - 03810484 _____ (El Desaparecido - SosVirus.net - UsbFix.net) C:\Users\Jindřich\Downloads\UsbFix.exe
2016-09-20 19:44 - 2016-09-20 19:53 - 00000000 ____D C:\UsbFix
2016-09-20 19:44 - 2016-09-20 19:44 - 03124524 _____ (El Desaparecido - SosVirus.net - UsbFix.net) C:\Users\Jindřich\Downloads\UsbFix_2016_8.248.exe
2016-09-20 19:44 - 2016-09-20 19:44 - 00001467 _____ C:\Users\Jindřich\Desktop\UsbFix.lnk
2016-09-19 23:28 - 2016-09-19 23:28 - 00000000 ____D C:\ProgramData\Samsung
2016-09-19 18:09 - 2016-09-19 18:09 - 00015348 _____ C:\Users\Jindřich\.recently-used.xbel
2016-09-19 17:53 - 2016-09-19 17:54 - 24472048 _____ (Softplicity, Inc. ) C:\Users\Jindřich\Downloads\TotalImageConverter.exe
2016-09-19 17:50 - 2016-09-19 17:54 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CoolUtils
2016-09-19 17:50 - 2016-09-19 17:50 - 00000000 ____D C:\Users\Jindřich\AppData\Roaming\Softplicity
2016-09-19 17:49 - 2016-09-19 17:50 - 35505968 _____ (Softplicity, Inc. ) C:\Users\Jindřich\Downloads\TotalPDFConverter.exe
2016-09-16 12:29 - 2016-09-16 12:31 - 377001417 _____ C:\Users\Jindřich\Downloads\3-kozaty-milfky-vosukaj-poldu.mp4
2016-09-15 22:50 - 2016-09-15 23:14 - 00000000 ____D C:\Users\Jindřich\Downloads\X-Men.Apocalypse.2016.BRRip.XViD.AC3-ETRG
2016-09-15 07:19 - 2016-09-15 07:19 - 00235176 _____ C:\windows\system32\SBuySupplies.exe
2016-09-15 07:19 - 2016-09-15 07:19 - 00031256 _____ () C:\windows\system32\us005lm.dll
2016-09-15 07:18 - 2016-09-15 07:18 - 00098328 _____ (SS) C:\windows\system32\us005ci.dll
2016-09-15 07:17 - 2016-09-15 07:17 - 00166776 _____ C:\windows\system32\us005ci.exe
2016-09-15 02:39 - 2016-08-21 01:45 - 07076864 _____ (Microsoft Corporation) C:\windows\system32\glcndFilter.dll
2016-09-15 02:39 - 2016-08-21 01:22 - 00435200 _____ (Microsoft Corporation) C:\windows\system32\schannel.dll
2016-09-15 02:39 - 2016-08-21 01:05 - 05273600 _____ (Microsoft Corporation) C:\windows\SysWOW64\glcndFilter.dll
2016-09-15 02:39 - 2016-08-21 00:50 - 00360448 _____ (Microsoft Corporation) C:\windows\SysWOW64\schannel.dll
2016-09-15 02:39 - 2016-08-21 00:42 - 07795712 _____ (Microsoft Corporation) C:\windows\system32\Windows.Data.Pdf.dll
2016-09-15 02:39 - 2016-08-21 00:27 - 05268480 _____ (Microsoft Corporation) C:\windows\SysWOW64\Windows.Data.Pdf.dll
2016-09-15 02:39 - 2016-08-10 00:47 - 00803176 _____ (Microsoft Corporation) C:\windows\system32\oleaut32.dll
2016-09-15 02:39 - 2016-08-10 00:47 - 00611576 _____ (Microsoft Corporation) C:\windows\SysWOW64\oleaut32.dll
2016-09-15 02:39 - 2016-08-04 16:17 - 00416768 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv.sys
2016-09-15 02:39 - 2016-08-03 20:06 - 00675328 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srv2.sys
2016-09-15 02:39 - 2016-08-03 20:05 - 00243712 _____ (Microsoft Corporation) C:\windows\system32\Drivers\srvnet.sys
2016-09-15 02:38 - 2016-09-01 02:45 - 25770496 _____ (Microsoft Corporation) C:\windows\system32\mshtml.dll
2016-09-15 02:37 - 2016-09-01 05:08 - 20312064 _____ (Microsoft Corporation) C:\windows\SysWOW64\mshtml.dll
2016-09-15 02:37 - 2016-09-01 03:27 - 13808128 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieframe.dll
2016-09-15 02:37 - 2016-09-01 02:06 - 06047232 _____ (Microsoft Corporation) C:\windows\system32\jscript9.dll
2016-09-15 02:37 - 2016-09-01 01:15 - 15411712 _____ (Microsoft Corporation) C:\windows\system32\ieframe.dll
2016-09-15 02:37 - 2016-08-26 06:41 - 02881536 _____ (Microsoft Corporation) C:\windows\system32\actxprxy.dll
2016-09-15 02:36 - 2016-09-08 23:51 - 00443224 _____ (Microsoft Corporation) C:\windows\system32\msv1_0.dll
2016-09-15 02:36 - 2016-09-08 23:51 - 00332632 _____ (Microsoft Corporation) C:\windows\SysWOW64\msv1_0.dll
2016-09-15 02:36 - 2016-09-01 04:46 - 00498688 _____ (Microsoft Corporation) C:\windows\SysWOW64\vbscript.dll
2016-09-15 02:36 - 2016-09-01 04:24 - 00663552 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript.dll
2016-09-15 02:36 - 2016-09-01 03:39 - 00880128 _____ (Microsoft Corporation) C:\windows\SysWOW64\inetcomm.dll
2016-09-15 02:36 - 2016-09-01 03:30 - 00692736 _____ (Microsoft Corporation) C:\windows\SysWOW64\msfeeds.dll
2016-09-15 02:36 - 2016-09-01 03:24 - 04607488 _____ (Microsoft Corporation) C:\windows\SysWOW64\jscript9.dll
2016-09-15 02:36 - 2016-09-01 02:43 - 02445824 _____ (Microsoft Corporation) C:\windows\SysWOW64\wininet.dll
2016-09-15 02:36 - 2016-09-01 02:42 - 00710144 _____ (Microsoft Corporation) C:\windows\SysWOW64\ieapfltr.dll
2016-09-15 02:36 - 2016-09-01 02:38 - 01316352 _____ (Microsoft Corporation) C:\windows\SysWOW64\urlmon.dll
2016-09-15 02:36 - 2016-09-01 02:24 - 00576000 _____ (Microsoft Corporation) C:\windows\system32\vbscript.dll
2016-09-15 02:36 - 2016-09-01 02:10 - 00817664 _____ (Microsoft Corporation) C:\windows\system32\jscript.dll
2016-09-15 02:36 - 2016-09-01 01:38 - 01032704 _____ (Microsoft Corporation) C:\windows\system32\inetcomm.dll
2016-09-15 02:36 - 2016-09-01 01:28 - 00806400 _____ (Microsoft Corporation) C:\windows\system32\msfeeds.dll
2016-09-15 02:36 - 2016-09-01 01:10 - 02921472 _____ (Microsoft Corporation) C:\windows\system32\wininet.dll
2016-09-15 02:36 - 2016-09-01 00:58 - 01550848 _____ (Microsoft Corporation) C:\windows\system32\urlmon.dll
2016-09-15 02:36 - 2016-09-01 00:47 - 00800768 _____ (Microsoft Corporation) C:\windows\system32\ieapfltr.dll
2016-09-15 02:36 - 2016-08-26 07:51 - 02894336 _____ (Microsoft Corporation) C:\windows\system32\iertutil.dll
2016-09-15 02:36 - 2016-08-26 06:44 - 02286592 _____ (Microsoft Corporation) C:\windows\SysWOW64\iertutil.dll
2016-09-15 02:36 - 2016-08-26 06:00 - 01049600 _____ (Microsoft Corporation) C:\windows\SysWOW64\actxprxy.dll
2016-09-15 02:36 - 2016-08-22 18:06 - 00179248 _____ (Microsoft Corporation) C:\windows\system32\sspicli.dll
2016-09-15 02:36 - 2016-08-22 18:06 - 00100184 _____ (Microsoft Corporation) C:\windows\system32\Drivers\ksecdd.sys
2016-09-15 02:36 - 2016-08-21 03:03 - 00201728 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb20.sys
2016-09-15 02:36 - 2016-08-21 03:01 - 00401408 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb.sys
2016-09-15 02:36 - 2016-08-21 03:01 - 00284672 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mrxsmb10.sys
2016-09-15 02:36 - 2016-08-21 02:17 - 00445440 _____ (Microsoft Corporation) C:\windows\system32\certcli.dll
2016-09-15 02:36 - 2016-08-21 01:27 - 01445376 _____ (Microsoft Corporation) C:\windows\system32\lsasrv.dll
2016-09-15 02:36 - 2016-08-21 01:26 - 00324096 _____ (Microsoft Corporation) C:\windows\SysWOW64\certcli.dll
2016-09-15 02:36 - 2016-08-21 00:55 - 00104960 _____ (Microsoft Corporation) C:\windows\SysWOW64\sspicli.dll
2016-09-15 02:36 - 2016-08-14 21:34 - 01541248 _____ (Microsoft Corporation) C:\windows\system32\user32.dll
2016-09-15 02:36 - 2016-08-14 20:25 - 04171264 _____ (Microsoft Corporation) C:\windows\system32\win32k.sys
2016-09-15 02:36 - 2016-08-14 18:14 - 01376768 _____ (Microsoft Corporation) C:\windows\SysWOW64\user32.dll
2016-09-15 02:36 - 2016-08-13 09:41 - 07445848 _____ (Microsoft Corporation) C:\windows\system32\ntoskrnl.exe
2016-09-15 02:36 - 2016-08-13 09:40 - 01737080 _____ (Microsoft Corporation) C:\windows\system32\ntdll.dll
2016-09-15 02:36 - 2016-08-13 09:40 - 01663184 _____ (Microsoft Corporation) C:\windows\system32\winload.efi
2016-09-15 02:36 - 2016-08-13 09:40 - 01523208 _____ (Microsoft Corporation) C:\windows\system32\winload.exe
2016-09-15 02:36 - 2016-08-13 09:40 - 01490120 _____ (Microsoft Corporation) C:\windows\system32\winresume.efi
2016-09-15 02:36 - 2016-08-13 09:40 - 01358952 _____ (Microsoft Corporation) C:\windows\system32\winresume.exe
2016-09-15 02:36 - 2016-08-13 02:04 - 00059392 _____ (Microsoft Corporation) C:\windows\system32\csrsrv.dll
2016-09-15 02:36 - 2016-08-11 18:26 - 01156608 _____ (Microsoft Corporation) C:\windows\system32\wwanmm.dll
2016-09-15 02:36 - 2016-08-11 18:17 - 00627200 _____ (Microsoft Corporation) C:\windows\system32\pnidui.dll
2016-09-15 02:36 - 2016-08-11 18:16 - 00455680 _____ (Microsoft Corporation) C:\windows\system32\wwanconn.dll
2016-09-15 02:36 - 2016-07-09 18:10 - 00087040 _____ (Microsoft Corporation) C:\windows\system32\wpdbusenum.dll
2016-09-15 02:36 - 2016-07-09 00:35 - 00101208 _____ (Microsoft Corporation) C:\windows\system32\Drivers\mountmgr.sys
2016-09-15 02:36 - 2016-07-08 16:17 - 00377344 _____ (Microsoft Corporation) C:\windows\system32\mprddm.dll
2016-09-15 02:36 - 2016-07-08 16:17 - 00319488 _____ (Microsoft Corporation) C:\windows\SysWOW64\mprddm.dll
2016-09-15 02:36 - 2016-07-08 00:32 - 00095744 _____ (Microsoft Corporation) C:\windows\system32\Drivers\agilevpn.sys
2016-09-15 02:36 - 2016-07-08 00:18 - 00323072 _____ (Microsoft Corporation) C:\windows\system32\iprtrmgr.dll
2016-09-15 02:36 - 2016-07-08 00:10 - 00233472 _____ (Microsoft Corporation) C:\windows\system32\mprdim.dll
2016-09-15 02:36 - 2016-07-08 00:01 - 00272896 _____ (Microsoft Corporation) C:\windows\system32\rasppp.dll
2016-09-15 02:36 - 2016-07-07 23:04 - 00173568 _____ (Microsoft Corporation) C:\windows\system32\rasman.dll
2016-09-15 02:36 - 2016-07-07 22:59 - 01080320 _____ (Microsoft Corporation) C:\windows\system32\IKEEXT.DLL
2016-09-15 02:36 - 2016-07-07 22:44 - 00429568 _____ (Microsoft Corporation) C:\windows\system32\vpnike.dll
2016-09-15 02:36 - 2016-07-07 22:41 - 00254464 _____ (Microsoft Corporation) C:\windows\system32\rascustom.dll
2016-09-15 02:36 - 2016-07-07 22:34 - 00542720 _____ (Microsoft Corporation) C:\windows\system32\rasmans.dll
2016-09-15 02:36 - 2016-07-07 22:29 - 00713216 _____ (Microsoft Corporation) C:\windows\system32\nshwfp.dll
2016-09-15 02:36 - 2016-07-07 22:29 - 00704512 _____ (Microsoft Corporation) C:\windows\system32\rasapi32.dll
2016-09-15 02:36 - 2016-07-07 22:23 - 00285184 _____ (Microsoft Corporation) C:\windows\SysWOW64\iprtrmgr.dll
2016-09-15 02:36 - 2016-07-07 22:18 - 00187392 _____ (Microsoft Corporation) C:\windows\SysWOW64\mprdim.dll
2016-09-15 02:36 - 2016-07-07 22:11 - 01661064 _____ (Microsoft Corporation) C:\windows\system32\ole32.dll
2016-09-15 02:36 - 2016-07-07 22:11 - 01212248 _____ (Microsoft Corporation) C:\windows\SysWOW64\ole32.dll
2016-09-15 02:36 - 2016-07-07 22:11 - 00185856 _____ (Microsoft Corporation) C:\windows\SysWOW64\rasppp.dll
2016-09-15 02:36 - 2016-07-07 21:35 - 00145920 _____ (Microsoft Corporation) C:\windows\SysWOW64\rasman.dll
2016-09-15 02:36 - 2016-07-07 21:14 - 00628736 _____ (Microsoft Corporation) C:\windows\SysWOW64\rasapi32.dll
2016-09-15 02:36 - 2016-07-04 07:09 - 00132096 _____ (Microsoft Corporation) C:\windows\system32\rdpudd.dll
2016-09-15 02:36 - 2016-07-04 05:45 - 00360448 _____ (Microsoft Corporation) C:\windows\system32\rdpclip.exe
2016-09-15 02:36 - 2016-07-04 05:37 - 02897920 _____ (Microsoft Corporation) C:\windows\system32\esent.dll
2016-09-15 02:36 - 2016-07-04 05:33 - 00657920 _____ (Microsoft Corporation) C:\windows\system32\dnsapi.dll
2016-09-15 02:36 - 2016-07-04 05:04 - 02539008 _____ (Microsoft Corporation) C:\windows\SysWOW64\esent.dll
2016-09-15 02:36 - 2016-07-04 05:02 - 00498688 _____ (Microsoft Corporation) C:\windows\SysWOW64\dnsapi.dll
2016-09-15 02:36 - 2016-07-04 04:19 - 03547136 _____ (Microsoft Corporation) C:\windows\system32\rdpcorets.dll
2016-09-15 02:36 - 2016-07-01 22:39 - 00197352 _____ (Microsoft Corporation) C:\windows\system32\dssenh.dll
2016-09-15 02:36 - 2016-07-01 22:39 - 00157016 _____ (Microsoft Corporation) C:\windows\SysWOW64\dssenh.dll
2016-09-15 02:36 - 2016-01-10 19:08 - 00252416 _____ (Microsoft Corporation) C:\windows\system32\dnsrslvr.dll
2016-09-14 10:22 - 2016-09-14 10:22 - 00000000 ____D C:\ProgramData\Lavasoft
2016-09-12 12:49 - 2016-09-12 12:49 - 00576567 _____ C:\Users\Jindřich\Downloads\POSTEEEEEEEEER.docx.zip
2016-09-12 10:56 - 2016-09-19 21:01 - 00000000 ____D C:\Users\Jindřich\Downloads\Luci
2016-09-12 10:56 - 2016-09-12 10:56 - 10843065 _____ C:\Users\Jindřich\Downloads\www.cosmiq.de.jpg.zip
2016-09-11 22:03 - 2016-09-11 22:04 - 08227032 _____ (Piriform Ltd) C:\Users\Jindřich\Downloads\ccsetup521.exe
2016-09-10 21:55 - 2016-09-10 22:15 - 00000000 ____D C:\Users\Jindřich\Downloads\Thor (2011)
2016-09-10 14:25 - 2016-09-10 14:25 - 00391496 _____ (AVAST Software) C:\windows\system32\aswBoot.exe
2016-09-10 14:25 - 2016-09-10 14:25 - 00053208 _____ (AVAST Software) C:\windows\avastSS.scr
2016-09-10 10:22 - 2016-09-10 10:22 - 47203624 _____ C:\Users\Jindřich\Downloads\Firefox Setup 48.0.2.exe
2016-09-10 10:21 - 2016-09-10 10:21 - 02150192 _____ C:\Users\Jindřich\Downloads\Adaware_Installer.exe
2016-09-10 10:20 - 2016-09-10 10:22 - 173597920 _____ (COMODO) C:\Users\Jindřich\Downloads\cmd_fw_installer.exe
2016-09-06 22:03 - 2016-09-09 12:12 - 00000000 ____D C:\Users\Jindřich\AppData\Local\NFS Underground 2
2016-09-06 21:48 - 2016-09-06 21:53 - 00000000 ____D C:\Users\Jindřich\Downloads\Need for Speed Underground 2 V1.2 {Full-Game} {Requested ISO} {blaze69}
2016-09-06 21:04 - 2016-09-06 21:04 - 10550048 _____ C:\Users\Jindřich\Downloads\bsplayer270.setup.exe
2016-09-05 19:07 - 2016-09-05 19:49 - 00000000 ____D C:\Users\Jindřich\Downloads\Angry Birds (2016) [YTS.AG]
2016-09-05 19:02 - 2016-09-05 19:49 - 00000000 ____D C:\Users\Jindřich\Downloads\Warcraft 2016 1080p WEB-DL x264 AC3-JYK
2016-09-05 15:47 - 2016-09-05 16:11 - 00000000 ____D C:\Users\Jindřich\Downloads\Bones
2016-09-05 15:45 - 2016-09-05 15:51 - 00000000 ____D C:\Users\Jindřich\Downloads\Bones Complete Season 11 + English Subs (MP4)
2016-08-29 17:38 - 2016-08-29 17:38 - 00098004 _____ C:\Users\Jindřich\Downloads\ASA_Style_Citations_4.pdf
2016-08-26 16:45 - 2016-08-26 16:45 - 00003242 _____ C:\windows\System32\Tasks\OneDrive Standalone Update Task
2016-08-23 09:22 - 2016-08-23 09:22 - 00000000 ____D C:\Program Files\Common Files\DESIGNER

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2016-09-21 00:45 - 2015-09-11 13:35 - 00000914 _____ C:\windows\Tasks\Adobe Flash Player Updater.job
2016-09-21 00:13 - 2015-02-09 19:50 - 00740962 _____ C:\windows\system32\perfh005.dat
2016-09-21 00:13 - 2015-02-09 19:50 - 00152146 _____ C:\windows\system32\perfc005.dat
2016-09-21 00:13 - 2014-03-18 11:53 - 01749406 _____ C:\windows\system32\PerfStringBackup.INI
2016-09-21 00:13 - 2013-08-22 15:36 - 00000000 ____D C:\windows\Inf
2016-09-21 00:09 - 2015-09-11 12:43 - 00000000 ____D C:\Users\Jindřich\Programy
2016-09-21 00:09 - 2015-09-11 12:38 - 00000000 ___DO C:\Users\Jindřich\OneDrive
2016-09-21 00:08 - 2013-08-22 16:45 - 00000006 ____H C:\windows\Tasks\SA.DAT
2016-09-21 00:08 - 2013-08-22 15:25 - 00524288 ___SH C:\windows\system32\config\BBI
2016-09-20 22:59 - 2015-09-11 12:37 - 00003598 _____ C:\windows\System32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-3058634117-4252258037-3257375764-1001
2016-09-20 22:05 - 2015-09-11 12:45 - 00003982 _____ C:\windows\System32\Tasks\User_Feed_Synchronization-{27423552-AA02-42F7-8370-CA956B9CF91E}
2016-09-20 21:51 - 2015-09-11 13:18 - 00000000 ____D C:\Users\Jindřich\AppData\Roaming\Skype
2016-09-20 19:44 - 2015-09-11 12:45 - 00000000 __SHD C:\Users\Jindřich\AppData\Local\EmieUserList
2016-09-20 19:44 - 2015-09-11 12:45 - 00000000 __SHD C:\Users\Jindřich\AppData\Local\EmieSiteList
2016-09-20 11:50 - 2016-03-23 13:02 - 00003890 _____ C:\windows\System32\Tasks\SafeZone scheduled Autoupdate 1458730938
2016-09-20 11:50 - 2016-03-23 13:02 - 00001070 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Avast SafeZone Browser.lnk
2016-09-19 23:04 - 2015-09-11 12:32 - 00000000 ____D C:\Users\Jindřich\AppData\Local\Packages
2016-09-19 21:01 - 2015-10-13 12:41 - 00000000 ____D C:\Users\Jindřich\.gimp-2.6
2016-09-19 18:11 - 2016-03-19 20:11 - 00004180 _____ C:\windows\System32\Tasks\avast! Emergency Update
2016-09-19 18:09 - 2015-10-13 12:45 - 00000000 ____D C:\Users\Jindřich\AppData\Roaming\gtk-2.0
2016-09-19 18:09 - 2015-09-11 12:31 - 00000000 ____D C:\Users\Jindřich
2016-09-19 01:00 - 2015-09-11 21:05 - 00000000 ____D C:\Users\Jindřich\AppData\Roaming\vlc
2016-09-18 01:46 - 2013-08-22 17:36 - 00000000 ____D C:\windows\rescache
2016-09-16 14:50 - 2015-09-11 18:25 - 00000000 ____D C:\Users\Jindřich\AppData\Roaming\DAEMON Tools Lite
2016-09-16 12:12 - 2015-09-11 13:06 - 00000000 ____D C:\Users\Jindřich\AppData\Roaming\uTorrent
2016-09-16 11:58 - 2016-03-19 20:11 - 00969184 _____ (AVAST Software) C:\windows\system32\Drivers\aswsnx.sys
2016-09-16 11:50 - 2013-08-22 16:44 - 00493760 _____ C:\windows\system32\FNTCACHE.DAT
2016-09-16 10:02 - 2013-08-22 17:36 - 00000000 ____D C:\windows\SysWOW64\setup
2016-09-16 10:02 - 2013-08-22 17:36 - 00000000 ____D C:\windows\system32\setup
2016-09-16 09:59 - 2015-09-12 16:10 - 00000000 ____D C:\windows\system32\MRT
2016-09-16 09:56 - 2015-09-12 16:10 - 144199024 ____C (Microsoft Corporation) C:\windows\system32\MRT.exe
2016-09-16 09:56 - 2013-08-22 17:20 - 00000000 ____D C:\windows\CbsTemp
2016-09-15 23:40 - 2016-02-22 15:16 - 00000000 ____D C:\Users\Jindřich\AppData\LocalLow\uTorrent
2016-09-15 03:27 - 2015-09-11 12:56 - 00002226 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2016-09-15 02:35 - 2015-09-21 19:06 - 00004476 _____ C:\windows\System32\Tasks\Adobe Acrobat Update Task
2016-09-14 19:21 - 2013-08-22 17:36 - 00000000 ___HD C:\Program Files\WindowsApps
2016-09-14 19:21 - 2013-08-22 17:36 - 00000000 ____D C:\windows\AppReadiness
2016-09-13 22:11 - 2015-10-13 12:45 - 00000000 ____D C:\Users\Jindřich\.thumbnails
2016-09-13 17:45 - 2015-09-11 13:35 - 00003802 _____ C:\windows\System32\Tasks\Adobe Flash Player Updater
2016-09-13 17:45 - 2013-08-22 17:36 - 00000000 ____D C:\windows\SysWOW64\Macromed
2016-09-13 17:45 - 2013-08-22 17:36 - 00000000 ____D C:\windows\system32\Macromed
2016-09-10 14:25 - 2016-03-23 13:02 - 00037144 _____ (AVAST Software) C:\windows\system32\Drivers\aswKbd.sys
2016-09-10 14:25 - 2016-03-19 20:11 - 00513496 _____ (AVAST Software) C:\windows\system32\Drivers\aswSP.sys
2016-09-10 14:25 - 2016-03-19 20:11 - 00292704 _____ (AVAST Software) C:\windows\system32\Drivers\aswVmm.sys
2016-09-10 14:25 - 2016-03-19 20:11 - 00163416 _____ (AVAST Software) C:\windows\system32\Drivers\aswStm.sys
2016-09-10 14:25 - 2016-03-19 20:11 - 00108816 _____ (AVAST Software) C:\windows\system32\Drivers\aswMonFlt.sys
2016-09-10 14:25 - 2016-03-19 20:11 - 00103064 _____ (AVAST Software) C:\windows\system32\Drivers\aswRdr2.sys
2016-09-10 14:25 - 2016-03-19 20:11 - 00074544 _____ (AVAST Software) C:\windows\system32\Drivers\aswRvrt.sys
2016-09-10 14:25 - 2016-03-19 20:11 - 00037656 _____ (AVAST Software) C:\windows\system32\Drivers\aswHwid.sys
2016-09-07 03:11 - 2015-09-13 05:26 - 00828408 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerApp.exe
2016-09-07 03:11 - 2015-09-13 05:26 - 00176632 _____ (Adobe Systems Incorporated) C:\windows\SysWOW64\FlashPlayerCPLApp.cpl
2016-09-06 21:04 - 2015-09-11 12:44 - 00000000 ____D C:\Users\Jindřich\AppData\Roaming\BSplayer
2016-09-05 19:50 - 2015-11-02 12:09 - 00000000 ____D C:\Users\Jindřich\Downloads\Subs
2016-08-29 21:45 - 2015-12-28 17:41 - 00000000 ___RD C:\Program Files (x86)\Skype
2016-08-29 21:45 - 2015-09-11 13:18 - 00000000 ____D C:\ProgramData\Skype
2016-08-28 19:41 - 2015-09-11 17:59 - 00000000 ____D C:\Users\Jindřich\AppData\Local\Microsoft Help
2016-08-26 16:45 - 2016-05-09 21:28 - 00002385 _____ C:\Users\Jindřich\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\OneDrive pro firmy.lnk
2016-08-26 16:45 - 2016-05-07 13:33 - 00003186 _____ C:\windows\System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-3058634117-4252258037-3257375764-1001
2016-08-23 09:22 - 2013-08-22 17:36 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2016-08-23 09:22 - 2013-08-22 17:36 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2016-08-23 09:21 - 2015-12-08 14:10 - 00000000 ____D C:\Program Files\Microsoft Office

==================== Files in the root of some directories =======

2015-10-16 14:49 - 2015-10-16 14:49 - 0000238 _____ () C:\Users\Jindřich\AppData\Roaming\del.bat
2015-02-09 19:00 - 2015-02-09 19:00 - 0000000 ____H () C:\ProgramData\DP45977C.lfl
2015-10-09 19:16 - 2015-10-09 19:18 - 0000626 _____ () C:\ProgramData\hpzinstall.log

==================== Bamital & volsnap =================

(There is no automatic fix for files that do not pass verification.)

C:\windows\system32\winlogon.exe => File is digitally signed
C:\windows\system32\wininit.exe => File is digitally signed
C:\windows\explorer.exe => File is digitally signed
C:\windows\SysWOW64\explorer.exe => File is digitally signed
C:\windows\system32\svchost.exe => File is digitally signed
C:\windows\SysWOW64\svchost.exe => File is digitally signed
C:\windows\system32\services.exe => File is digitally signed
C:\windows\system32\User32.dll => File is digitally signed
C:\windows\SysWOW64\User32.dll => File is digitally signed
C:\windows\system32\userinit.exe => File is digitally signed
C:\windows\SysWOW64\userinit.exe => File is digitally signed
C:\windows\system32\rpcss.dll => File is digitally signed
C:\windows\system32\dnsapi.dll => File is digitally signed
C:\windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\windows\system32\Drivers\volsnap.sys => File is digitally signed


LastRegBack: 2016-09-14 01:18

==================== End of FRST.txt ============================
Nahoru
Uživatelský avatar
Šmíďák
Návštěvník
Návštěvník
Příspěvky: 144
Registrován: 15 říj 2012 13:42
Bydliště: Brno

Re: Problém s flash diskem

#14 Příspěvek od Šmíďák »

Additional scan result of Farbar Recovery Scan Tool (x64) Version: 20-09-2016
Ran by Jindřich (21-09-2016 00:52:40)
Running from C:\Users\Jindřich\Desktop
Windows 8.1 (Update) (X64) (2015-09-11 10:32:31)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-3058634117-4252258037-3257375764-500 - Administrator - Disabled)
Guest (S-1-5-21-3058634117-4252258037-3257375764-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-3058634117-4252258037-3257375764-1003 - Limited - Enabled)
Jindřich (S-1-5-21-3058634117-4252258037-3257375764-1001 - Administrator - Enabled) => C:\Users\Jindřich

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Enabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Enabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\...\uTorrent) (Version: 3.4.8.42576 - BitTorrent Inc.)
64 Bit HP CIO Components Installer (Version: 18.2.4 - Hewlett-Packard) Hidden
Adobe Acrobat Reader DC - Czech (HKLM-x32\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 15.017.20053 - Adobe Systems Incorporated)
Adobe Flash Player 23 NPAPI (HKLM-x32\...\Adobe Flash Player NPAPI) (Version: 23.0.0.162 - Adobe Systems Incorporated)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 12.3.2280 - AVAST Software)
BS.Player FREE (HKLM-x32\...\BSPlayerf) (Version: 2.70.1080 - AB Team, d.o.o.)
Burnout Paradise Ultimate Box version 1.00.00.1 (HKLM-x32\...\Burnout Paradise Ultimate Box_is1) (Version: 1.00.00.1 - Mr DJ)
Carmageddon (DOSBox 0.74 emulation) (HKLM-x32\...\Carmageddon (DOSBox 0.74 emulation)) (Version: - )
CCleaner (HKLM\...\CCleaner) (Version: 5.20 - Piriform)
CCSDK (HKLM-x32\...\{AE75190B-11B4-4F90-8254-DAB275CF2557}_is1) (Version: 1.0.3.4 - Lenovo)
CyberLink MediaStory (HKLM-x32\...\InstallShield_{55762F9A-FCE3-45d5-817B-051218658423}) (Version: 1.0.1314 - CyberLink Corp.)
CyberLink PowerDirector 10 (HKLM-x32\...\InstallShield_{B0B4F6D2-F2AE-451A-9496-6F2F6A897B32}) (Version: 10.0.0.2810 - CyberLink Corp.)
CyberLink PowerDirector 10 (Version: 10.0.0.2810 - CyberLink Corp.) Hidden
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.1.0.0074 - Disc Soft Ltd)
Dependency Package Update (Version: 1.6.29.00 - Lenovo Inc.) Hidden
Dependency Package Update (Version: 1.6.38.00 - Lenovo Inc.) Hidden
Dependency Package Update (x32 Version: 1.6.32.00 - Lenovo Group Limited) Hidden
Dependency Package Update (x32 Version: 1.6.38.00 - Lenovo Group Limited) Hidden
Dependency Package Update (x32 Version: 1.6.38.01 - Lenovo Group Limited) Hidden
Dolby Digital Plus Home Theater (HKLM\...\{7E3D8FA1-6092-469A-955B-68FC4A2C67CA}) (Version: 7.5.1.1 - Dolby Laboratories Inc)
Drakensang Online (HKLM-x32\...\Drakensang Online) (Version: - )
Energy Manager (HKLM-x32\...\InstallShield_{AC768037-7079-4658-AC24-2897650E0ABE}) (Version: 1.0.0.35 - Lenovo)
Energy Manager (x32 Version: 1.0.0.35 - Lenovo) Hidden
GIMP 2.6.10 (HKLM-x32\...\WinGimp-2.0_is1) (Version: 2.6.10 - The GIMP Team)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 53.0.2785.116 - Google Inc.)
Google Update Helper (x32 Version: 1.3.31.5 - Google Inc.) Hidden
GraphPad Prism 6 (HKLM-x32\...\{606443B0-9831-11DC-5F90-015CFB7A6952}) (Version: 6.01 - GraphPad Software)
GTA2 (HKLM-x32\...\{2987EE84-C4EE-4FF5-8160-32DE00D6ABC6}) (Version: 1.00.001 - )
HP LaserJet Pro MFP M125-M126 (HKLM-x32\...\{c65448bc-e467-4ec7-b4a5-246697f52957}) (Version: 8.0.13171.953 - Hewlett-Packard)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
hpbDSService (x32 Version: 002.002.07399 - Hewlett-Packard) Hidden
hpbM126DSService (x32 Version: 001.001.08254 - Hewlett-Packard) Hidden
HPDXP (x32 Version: 3.0.26.57 - HP) Hidden
HPLJDXPHelper (x32 Version: 060.048.005 - HP) Hidden
HPLJProMFPM125M126 (HKLM-x32\...\{824CF3E6-4809-47E8-AA39-C55FC380DDB7}) (Version: 1.00.0000 - Hewlett-Packard)
HPLJUTCore (x32 Version: 008.000.0001 - HP) Hidden
HPLJUTM125_126 (x32 Version: 008.000.0001 - HP) Hidden
hppLaserJetService (x32 Version: 009.033.00905 - Hewlett-Packard) Hidden
hppM125LaserJetService (x32 Version: 001.032.00682 - Hewlett-Packard) Hidden
hpStatusAlerts (x32 Version: 080.040.00171 - Hewlett Packard) Hidden
hpStatusAlertsM125-M126 (x32 Version: 080.046.00112 - Hewlett-Packard) Hidden
InstallShieldHiRezCurrent (HKLM-x32\...\{9433FC1C-7405-433C-A26D-81076293BBCE}) (Version: 3.0.0.0 - Hi-Rez Studios)
Intel(R) Management Engine Components (HKLM-x32\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 9.5.15.1730 - Intel Corporation)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.3496 - Intel Corporation)
Intel(R) Rapid Storage Technology (HKLM\...\{409CB30E-E457-4008-9B1A-ED1B9EA21140}) (Version: 13.0.2.1000 - Intel Corporation)
Intel(R) Wireless Bluetooth(R) 4.0 (HKLM-x32\...\{96C730E4-F055-4118-BDF3-6E071763853C}) (Version: 3.0.1342.02 - Intel Corporation)
Intel® PROSet/Wireless Software (HKLM-x32\...\{7e493493-a430-4b7b-b8a2-48d61599e220}) (Version: 17.0.0 - Intel Corporation)
IrfanView (remove only) (HKLM-x32\...\IrfanView) (Version: 4.40 - Irfan Skiljan)
Java 8 Update 66 (64-bit) (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F86418066F0}) (Version: 8.0.660.17 - Oracle Corporation)
KMPlayer (remove only) (HKLM-x32\...\The KMPlayer) (Version: 4.1.1.5 - PandoraTV)
Lenovo Dependency Package (HKLM\...\Lenovo Dependency Package_is1) (Version: 1.6.38.00 - Lenovo Group Limited)
Lenovo EasyCamera (HKLM-x32\...\{E0A7ED39-8CD6-4351-93C3-69CCA00D12B4}) (Version: 6.2.9200.10249 - Realtek Semiconductor Corp.)
Lenovo FusionEngine (HKLM-x32\...\Lenovo FusionEngine) (Version: 1.0.13.0 - Lenovo, Inc.)
Lenovo Mobile Phone Wireless Import (HKLM-x32\...\InstallShield_{DFB2E0D6-8DDE-49A4-B8F7-03C14DACCBA6}) (Version: 1.1.1.9 - Lenovo)
Lenovo Mobile Phone Wireless Import (x32 Version: 1.1.1.9 - Lenovo) Hidden
Lenovo Motion Control (HKLM-x32\...\InstallShield_{E9325F15-6339-45E8-9DC4-C2D44B623039}) (Version: 2.5.1.0224 - PointGrab)
Lenovo Motion Control (x32 Version: 2.5.1.0224 - PointGrab) Hidden
Lenovo OneKey Recovery (HKLM-x32\...\InstallShield_{46F4D124-20E5-4D12-BE52-EC177A7A4B42}) (Version: 8.0.0.2105 - CyberLink Corp.)
Lenovo OneKey Recovery (Version: 8.0.0.2105 - CyberLink Corp.) Hidden
Lenovo Photo Master (HKLM-x32\...\InstallShield_{BC94C56A-3649-420C-8756-2ADEBE399D33}) (Version: 1.0.1823.01 - CyberLink Corp.)
Lenovo Photo Master (x32 Version: 1.0.1823.01 - CyberLink Corp.) Hidden
Lenovo Smart Voice (HKLM\...\Lenovo SmartVoice) (Version: 1.0.2.4 - Lenovo)
Lenovo Transition (HKLM\...\Lenovo Transition) (Version: 2.0.13.10181 - Lenovo)
Lenovo VeriFace Pro (HKLM\...\Lenovo VeriFace) (Version: 5.0.14.1061 - Lenovo)
Lenovo Yoga 2 Demo (HKLM-x32\...\{03C682A4-05CD-4D22-B50A-B9C3C5F2B137}) (Version: 1.0.7 - Lenovo)
Lenovo Yoga PhoneCompanion (HKLM-x32\...\InstallShield_{0F82EA83-B0C5-4AB9-9695-DFE92C5FD57B}) (Version: 1.1.9.5 - Lenovo)
Lenovo Yoga PhoneCompanion (x32 Version: 1.1.9.5 - Lenovo) Hidden
LJDXPHelperUI (x32 Version: 060.048.005 - HP) Hidden
Maxthon Cloud Browser (HKLM-x32\...\Maxthon3) (Version: 4.4.2.2000 - Maxthon International Limited)
Mendeley Desktop 1.15.1 (HKLM-x32\...\Mendeley Desktop) (Version: 1.15.1 - Mendeley Ltd.)
Metric Collection SDK 35 (x32 Version: 1.2.0006.00 - Lenovo Group Limited) Hidden
Microsoft Office 365 ProPlus - cs-cz (HKLM\...\O365ProPlusRetail - cs-cz) (Version: 16.0.6741.2063 - Microsoft Corporation)
Microsoft OneDrive (HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\...\OneDriveSetup.exe) (Version: 17.3.6517.0809 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM-x32\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 (HKLM\...\{8220EEFE-38CD-377E-8595-13398D740ACE}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM-x32\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM-x32\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM-x32\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{a2199617-3609-410f-a8e8-e8806c73545b}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual Studio 2010 Tools for Office Runtime (x64) (HKLM\...\Microsoft Visual Studio 2010 Tools for Office Runtime (x64)) (Version: 10.0.50903 - Microsoft Corporation)
Mozilla Firefox 40.0.3 (x86 cs) (HKLM-x32\...\Mozilla Firefox 40.0.3 (x86 cs)) (Version: 40.0.3 - Mozilla)
Mozilla Firefox 49.0 (x86 cs) (HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\...\Mozilla Firefox 49.0 (x86 cs)) (Version: 49.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 40.0.3 - Mozilla)
Need for Speed Underground 2 (HKLM-x32\...\Need for Speed Underground 2) (Version: - )
Office 16 Click-to-Run Extensibility Component (Version: 16.0.6701.1036 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Licensing Component (Version: 16.0.6701.1036 - Microsoft Corporation) Hidden
Office 16 Click-to-Run Localization Component (Version: 16.0.6701.1036 - Microsoft Corporation) Hidden
Pokki (HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\...\Pokki) (Version: 0.269.2.471 - Pokki)
PunkBuster Services (HKLM-x32\...\PunkBusterSvc) (Version: 0.986 - Even Balance, Inc.)
Realtek Card Reader (HKLM-x32\...\{5BC2B5AB-80DE-4E83-B8CF-426902051D0A}) (Version: 6.2.9600.39053 - Realtek Semiconductor Corp.)
Realtek High Definition Audio Driver (HKLM-x32\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7161 - Realtek Semiconductor Corp.)
Re-Volt patch 12.07 (HKLM-x32\...\Re-Volt) (Version: patch 12.07 - )
SafeZone Stable 1.51.2220.62 (x32 Version: 1.51.2220.62 - Avast Software) Hidden
SHAREit (HKLM-x32\...\SHAREit_is1) (Version: 2.1.8.0 - Lenovo Group Limited)
Skype™ 7.27 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.27.101 - Skype Technologies S.A.)
Split/Second (HKLM-x32\...\{28526951-55EF-4901-A0CA-B9AC966D1DD1}) (Version: 1.00.0000 - Disney Interactive Studios)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 17.0.14.71 - Synaptics Incorporated)
Total Commander 64-bit (Remove or Repair) (HKLM\...\Totalcmd64) (Version: 8.52 - Ghisler Software GmbH)
TotalImageConverter (HKLM-x32\...\Total Image Converter_is1) (Version: 5.1 - Softplicity, Inc.)
TotalPDFConverter (HKLM-x32\...\Total PDF Converter_is1) (Version: 2.8 - Softplicity, Inc.)
Tunngle (HKLM-x32\...\Tunngle_is1) (Version: 5.6 - Tunngle.net GmbH)
UESDK (HKLM-x32\...\{EB3F6640-58AE-4886-B8BA-466B6939A933}_is1) (Version: 1.0.2.7 - Lenovo)
UsbFix (HKLM-x32\...\Usbfix) (Version: 8.272 - El Desaparecido - www.usb-antivirus.com - www.sosvirus.net)
User Manuals (HKLM-x32\...\InstallShield_{F07C2CF8-4C53-4EC3-8162-A6221E36EB88}) (Version: 3.0.0.3 - Lenovo)
User Manuals (x32 Version: 3.0.0.3 - Lenovo) Hidden
VLC media player (HKLM-x32\...\VLC media player) (Version: 2.2.1 - VideoLAN)
Winamp (HKLM-x32\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
Windows Driver Package - Lenovo (ACPIVPC) System (02/17/2013 9.52.0.776) (HKLM\...\35DD26BE48DAF4A9F35F969F3CB1E3E1435E661E) (Version: 02/17/2013 9.52.0.776 - Lenovo)
Windows Driver Package - Lenovo (WUDFRd) LenovoVhid (07/25/2013 10.30.0.288) (HKLM\...\6BCA401E9CBEED970D75F55FA5320F60D11984E9) (Version: 07/25/2013 10.30.0.288 - Lenovo)
WinRAR 5.31 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.31.0 - win.rar GmbH)
World of Tanks (HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\...\{1EAC1D02-C6AC-4FA6-9A44-96258C37C812eu}_is1) (Version: - Wargaming.net)
Yoga Picks (HKLM-x32\...\{267C8BA0-876B-4589-9F14-EFB84ABCEA7F}) (Version: 1.5.014.0106 - Lenovo)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-3058634117-4252258037-3257375764-1001_Classes\CLSID\{162C6FB5-44D3-435B-903D-E613FA093FB5}\InprocServer32 -> C:\Users\Jindřich\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\amd64\FileCoAuthLib64.dll ()
CustomCLSID: HKU\S-1-5-21-3058634117-4252258037-3257375764-1001_Classes\CLSID\{71DCE5D6-4B57-496B-AC21-CD5B54EB93FD}\localserver32 -> C:\Users\Jindřich\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\FileCoAuth.exe (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-3058634117-4252258037-3257375764-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\windows\system32\igfxEM.exe (Intel Corporation)

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {0AA36D14-1A85-44F9-B7CB-8089A50022D5} - System32\Tasks\Lenovo\Dependency Package Auto Update => C:\Program Files\Lenovo\iMController\AutoUpdate.exe [2015-12-14] ()
Task: {0B545118-B563-42FC-8D07-B78F602FCF34} - System32\Tasks\Microsoft\Windows\WS\WSRefreshBannedAppsListTask => Rundll32.exe WSClient.dll,RefreshBannedAppsList
Task: {2163964F-CCB5-424F-960F-99CFD255C871} - System32\Tasks\HPLJCustParticipation => C:\Program Files (x86)\HP\HPLJUT\HPLJUTSCH.exe [2013-01-28] (Hewlett Packard)
Task: {35B75F2E-8E46-4C7E-95B3-B89B0558DE85} - System32\Tasks\GoogleUpdateTaskMachineCore1d0f19cbf91c392 => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-11] (Google Inc.)
Task: {36B923AA-67F8-40B1-99AC-E8ADDB17A173} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe [2014-09-10] (Lenovo)
Task: {3817E649-B2AD-473C-89BF-7837B64B4960} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2016-08-01] (Microsoft Corporation)
Task: {4093F9C8-8976-487B-9F9B-BBA655D6764D} - System32\Tasks\Maxthon Update => C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe [2014-09-11] (Maxthon International ltd.)
Task: {44994F70-81FD-409A-8692-B4A7C5C947DE} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-11] (Google Inc.)
Task: {522C8DCF-752A-46FA-A32C-8D688A16AD50} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-09-08] (Adobe Systems Incorporated)
Task: {56E23C12-31D7-4F35-B9CA-3BBCB31154AF} - System32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-3058634117-4252258037-3257375764-1001 => C:\Users\Jindřich\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2016-08-26] (Microsoft Corporation)
Task: {5E775005-0475-4941-BEC7-AA31E2F2D1C1} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files\Microsoft Office\root\Office16\msoia.exe [2016-08-01] (Microsoft Corporation)
Task: {9DDE9D3F-DDA7-4A20-8D33-94EA1C9AAC4A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-11] (Google Inc.)
Task: {9DFDFD27-63D8-4D70-91E7-16A152DCE69A} - System32\Tasks\OneDrive Standalone Update Task => C:\Users\Jindřich\AppData\Local\Microsoft\OneDrive\17.3.6517.0809\OneDriveStandaloneUpdater.exe [2016-08-26] (Microsoft Corporation)
Task: {A1F7CB78-BE57-4109-A902-DD1D581BF298} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\windows\system32\MRT.exe [2016-09-16] (Microsoft Corporation)
Task: {A88EBCBA-9DC8-4E9B-AD55-F36F620151B9} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2016-06-04] (AVAST Software)
Task: {AA58E4F6-1008-401E-9919-C145C8DE33F9} - System32\Tasks\SafeZone scheduled Autoupdate 1458730938 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-09-06] (Avast Software)
Task: {B0582F1D-C993-45D5-9424-3EA5D2220F3E} - System32\Tasks\Microsoft\Office\Office Subscription Maintenance => C:\Program Files\Microsoft Office\root\vfs\ProgramFilesCommonx64\Microsoft Shared\Office16\OLicenseHeartbeat.exe [2016-08-01] (Microsoft Corporation)
Task: {B694A93D-5C03-458D-A910-93537060BD2B} - System32\Tasks\CCleanerSkipUAC => C:\Users\Jindřich\Programy\CCleaner\CCleaner.exe [2016-07-13] (Piriform Ltd)
Task: {B6E50834-1667-491D-AC9C-4C4195203380} - System32\Tasks\DolbySelectorTask => C:\Program Files\Dolby Digital Plus\ddp.exe
Task: {BB14323F-923A-4AFD-9A98-57E26BF1A139} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-07-31] (Microsoft Corporation)
Task: {D8B901D4-A9B3-44BF-8CF5-ACC1D1132C77} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 => C:\Program Files (x86)\Lenovo\Customer Feedback Program\Lenovo.TVT.CustomerFeedback.Agent.exe [2014-08-19] (Lenovo)
Task: {E57B9649-7CA9-4935-86A5-F343FDBF55A6} - System32\Tasks\Lenovo Smart Voice => C:\Program Files (x86)\Lenovo\Lenovo Smart Voice\LsvTrayLoad.exe [2015-02-09] (Lenovo)
Task: {ED0BBA63-DF8E-4CA8-83D5-D2ED82314FEB} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-09-10] (AVAST Software)
Task: {EFD04359-EABC-4F92-A086-B1FC440A9BD0} - System32\Tasks\Synaptics TouchPad Enhancements => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-12-19] (Synaptics Incorporated)
Task: {F86789E9-9349-47F4-B312-462DD256CD4B} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [2016-07-31] (Microsoft Corporation)
Task: {FA338327-BFB4-42E6-98BD-9F28EF5CE001} - System32\Tasks\Adobe Flash Player Updater => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-09-13] (Adobe Systems Incorporated)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\windows\Tasks\Adobe Flash Player Updater.job => C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2016-09-15 07:19 - 2016-09-15 07:19 - 00031256 _____ () C:\windows\System32\us005lm.dll
2016-05-06 07:27 - 2016-07-31 05:48 - 00173248 _____ () C:\Program Files\Common Files\Microsoft Shared\ClickToRun\ApiClient.dll
2015-10-17 11:38 - 2015-10-17 11:38 - 00066872 _____ () C:\windows\SysWOW64\PnkBstrA.exe
2015-10-17 11:38 - 2015-10-17 11:38 - 00107832 _____ () C:\windows\SysWOW64\PnkBstrB.exe
2015-02-09 19:22 - 2012-04-24 12:43 - 00390632 _____ () C:\Program Files\CyberLink\Shared files\RichVideo64.exe
2015-02-09 19:22 - 2015-02-09 19:22 - 00061200 _____ () C:\ProgramData\LenovoTransition\Server\x64\dptf.dll
2015-02-09 19:20 - 2014-01-07 01:14 - 00019440 _____ () C:\Program Files (x86)\Lenovo\Yoga Picks\Service\x64\YogaPicks.AppService.exe
2016-07-13 21:42 - 2016-07-13 21:42 - 00050688 _____ () C:\Users\Jindřich\Programy\CCleaner\lang\lang-1029.dll
2015-02-09 19:19 - 2014-07-10 03:19 - 00592880 _____ () C:\Program Files (x86)\Lenovo\CCSDK\CCSDK.exe
2015-02-09 19:22 - 2015-02-09 19:22 - 00815104 _____ () C:\Program Files\Lenovo Yoga PhoneCompanion\adb.exe
2016-09-10 14:25 - 2016-09-10 14:25 - 00169064 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2016-09-20 21:24 - 2016-09-20 21:24 - 03086648 _____ () C:\Program Files\AVAST Software\Avast\defs\16092001\algo.dll
2016-09-10 14:25 - 2016-09-10 14:25 - 00482928 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2014-02-25 02:39 - 2014-02-25 02:39 - 00013576 _____ () C:\Program Files (x86)\Lenovo\Motion Control\PointGrabDeviceAPI.dll
2016-07-06 19:53 - 2016-07-06 19:53 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2015-02-09 19:22 - 2015-02-09 19:22 - 00101648 _____ () C:\Program Files (x86)\Lenovo\Lenovo Smart Voice\LUpdatePackage.dll
2015-02-09 18:59 - 2013-09-16 22:17 - 01242584 _____ () C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ACE.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)


==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)


==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2013-08-22 15:25 - 2016-09-21 00:07 - 00000035 ____A C:\windows\system32\Drivers\etc\hosts


==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-3058634117-4252258037-3257375764-1001\Control Panel\Desktop\\Wallpaper -> C:\Users\Jindřich\AppData\Local\Microsoft\Windows\Themes\RoamedThemeFiles\DesktopBackground\desktop background.bmp
DNS Servers: 10.0.0.138
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==


==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [vm-monitoring-nb-session] => (Allow) LPort=139
FirewallRules: [{B4C8B5AF-E534-4541-A01A-63AA6036703A}] => (Allow) C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
FirewallRules: [{2A69DF33-BEDD-4886-9B27-AE144B9247E1}] => (Allow) C:\Program Files (x86)\Lenovo\SHAREit\SHAREit.exe
FirewallRules: [{6AB92A68-9847-4F0B-8A63-40D06CEB286E}] => (Allow) C:\Program Files (x86)\Lenovo\SHAREit\SHAREit.exe
FirewallRules: [{061F7003-5323-4DCC-8752-E037D0B6D05A}] => (Allow) C:\Program Files (x86)\Maxthon\Bin\MxUp.exe
FirewallRules: [{00226DF9-CED2-4DD2-811A-7486D3875CDA}] => (Allow) C:\Program Files (x86)\Maxthon\Bin\MxUp.exe
FirewallRules: [{85ACFC96-EFFF-41C3-8EE9-B79D55551C7E}] => (Allow) C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe
FirewallRules: [{A8D579BC-2C63-4E8C-BA4E-76F4C47D23A5}] => (Allow) C:\Program Files (x86)\Maxthon\Bin\Maxthon.exe
FirewallRules: [{4B9FD316-578D-4E45-90A4-BA76440965C3}] => (Allow) C:\Program Files\CyberLink\PowerDirector10\PDR10.EXE
FirewallRules: [{BA32EF2D-9543-4E70-9F38-4C0E239C01F5}] => (Allow) C:\Program Files (x86)\Lenovo\Lenovo Photo Master\subsys\AdvPhotoEditor\PhotoDirector5.exe
FirewallRules: [{E030D111-2382-44B1-A034-0B287949D12D}] => (Allow) LPort=55100
FirewallRules: [{E1B27CD1-4322-469F-A42A-087529CBA825}] => (Allow) C:\Program Files\Lenovo PhotoMasterImport\PhotoMasterImport.exe
FirewallRules: [{A47D1277-CC60-46C4-A61C-37468DDFBD72}] => (Allow) C:\Users\Jindřich\Programy\Firefox\firefox.exe
FirewallRules: [{D1644589-E39A-4ED6-8582-B7D5CE0659F2}] => (Allow) C:\Users\Jindřich\Programy\Firefox\firefox.exe
FirewallRules: [{F1C7C2F3-1175-4849-82F7-97D74E1726FD}] => (Allow) C:\Users\Jindřich\Programy\Winamp\winamp.exe
FirewallRules: [{6E664004-3167-4038-935D-96C7093619E0}] => (Allow) C:\Users\Jindřich\Programy\Winamp\winamp.exe
FirewallRules: [{CA2DD3B3-A079-43F2-A39A-FCBCF175BD40}] => (Allow) C:\Users\Jindřich\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{55C74A9B-18CA-4C17-A7D1-38F41C871888}] => (Allow) C:\Users\Jindřich\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{92B53A1A-4D8C-42EC-81AC-25146194A207}] => (Allow) C:\Users\Jindřich\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{3F79E5CF-6EC3-4566-B52C-B9BF95F4D217}] => (Allow) C:\Users\Jindřich\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{E3D967A2-7E47-4039-A4D8-A8FF5007513C}] => (Allow) C:\Users\Jindřich\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{779C596C-221B-449D-A554-D0DBCD2ECB1F}] => (Allow) C:\Users\Jindřich\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{BB3FCDA0-DD30-4950-83B6-3274E7D21C3B}] => (Allow) C:\Users\Jindřich\Saved Games\Split Second\SplitSecond.exe
FirewallRules: [{76F0F054-494C-48BC-BF3C-B8D0455B477A}] => (Allow) C:\Users\Jindřich\Saved Games\Split Second\SplitSecond.exe
FirewallRules: [{DB4E053E-CFFE-4827-9371-C645C8F43EE9}] => (Allow) C:\Program Files (x86)\HP\HP LaserJet Pro MFP M125-M126\Bin\HPNetworkCommunicatorCom.exe
FirewallRules: [{C40FC8DC-F9BC-47FD-8F04-B34BB948D4EB}] => (Allow) C:\Program Files (x86)\HP\HP LaserJet Pro MFP M125-M126\bin\EWSProxy.exe
FirewallRules: [{0F18D018-F1D0-4EF6-9B83-3D8BB7B6D2AF}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{68389727-6990-4479-AE96-94638E007C9C}] => (Allow) C:\Windows\SysWOW64\PnkBstrA.exe
FirewallRules: [{3A240BD7-2591-4F70-A246-FBD86990CD11}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{EE27C654-4955-450A-B1A4-C8EFB5332E7F}] => (Allow) C:\Windows\SysWOW64\PnkBstrB.exe
FirewallRules: [{B45A0027-76ED-4230-B0BC-5455675AC674}] => (Allow) C:\Users\Patejl\Programy\Tunngle\TnglCtrl.exe
FirewallRules: [{C86C3314-CC6B-4AA7-9649-D4D628A214DB}] => (Allow) C:\Users\Patejl\Programy\Tunngle\TnglCtrl.exe
FirewallRules: [{A72BDB3B-4973-4F28-ACF9-3112887BBA93}] => (Allow) C:\Users\Patejl\Programy\Tunngle\Tunngle.exe
FirewallRules: [{376DB867-25D8-4B28-BA65-21CAEB602CF1}] => (Allow) C:\Users\Patejl\Programy\Tunngle\Tunngle.exe
FirewallRules: [{74714C96-C128-4E80-A20E-577AFC14A101}] => (Allow) C:\Users\Jindřich\Saved Games\World of Tanks\WoTLauncher.exe
FirewallRules: [{3E6E5417-60DA-4332-BDC9-258FBBACC0E6}] => (Allow) C:\Users\Jindřich\Saved Games\World of Tanks\WoTLauncher.exe
FirewallRules: [{7F997A36-8EA2-4D95-83F6-AE94E0FA888F}] => (Allow) C:\Users\Jindřich\Saved Games\World of Tanks\worldoftanks.exe
FirewallRules: [{6194F898-55C0-4D57-85F1-8AE0E927BBB3}] => (Allow) C:\Users\Jindřich\Saved Games\World of Tanks\worldoftanks.exe
FirewallRules: [TCP Query User{36C02FE9-8480-4FEE-A10E-5925BCB622C8}C:\users\jindřich\saved games\left 4 dead 2\left4dead2.exe] => (Allow) C:\users\jindřich\saved games\left 4 dead 2\left4dead2.exe
FirewallRules: [UDP Query User{B76FA512-B739-4164-9275-F34584B9F0A1}C:\users\jindřich\saved games\left 4 dead 2\left4dead2.exe] => (Allow) C:\users\jindřich\saved games\left 4 dead 2\left4dead2.exe
FirewallRules: [{CC6E19A8-B798-49D3-9003-98675C089577}] => (Allow) C:\Program Files (x86)\Skype\Phone\Skype.exe
FirewallRules: [TCP Query User{DB0C208D-80C0-4605-9DEE-C315EC82382F}C:\windows\splwow64.exe] => (Allow) C:\windows\splwow64.exe
FirewallRules: [UDP Query User{2A3038B9-72E0-40FE-BFB5-1F3886F21049}C:\windows\splwow64.exe] => (Allow) C:\windows\splwow64.exe
FirewallRules: [TCP Query User{AC6A1170-0CF5-4C4C-8FF9-EF1D7CA59099}C:\windows\system32\rundll32.exe] => (Allow) C:\windows\system32\rundll32.exe
FirewallRules: [UDP Query User{27ADFC77-AEEA-454F-A356-BC5018DA7081}C:\windows\system32\rundll32.exe] => (Allow) C:\windows\system32\rundll32.exe
FirewallRules: [{BDC1C195-77A8-4123-BBCB-DBD9DF8DB6E7}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\outlook.exe
FirewallRules: [{E4A7B798-C944-4933-BEAD-E401EA25FF1D}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{AE8B75E6-BA90-458F-900B-7BE818F47889}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [TCP Query User{6795C043-2FF6-4BAA-B16F-B5A2974B7E4A}C:\users\jindřich\saved games\left 4 dead 2\left4dead2.exe] => (Allow) C:\users\jindřich\saved games\left 4 dead 2\left4dead2.exe
FirewallRules: [UDP Query User{34D4A791-F7F5-456F-BF4A-C89E5358D4F9}C:\users\jindřich\saved games\left 4 dead 2\left4dead2.exe] => (Allow) C:\users\jindřich\saved games\left 4 dead 2\left4dead2.exe
FirewallRules: [{1C016C0E-0577-4875-A98D-9FBC9E0E1A3F}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\Lync.exe
FirewallRules: [{8DE32436-31E8-455A-864A-579303DC54BF}] => (Allow) C:\Program Files\Microsoft Office\root\Office16\UcMapi.exe
FirewallRules: [{8714C7E7-0C2A-46DE-B666-3F8AF15DA67A}] => (Allow) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

29-08-2016 21:44:30 ASU_MSI_TRAN
07-09-2016 20:24:42 Naplánovaný kontrolní bod
14-09-2016 10:22:58 AA11
21-09-2016 00:07:40 Restore Point Created by FRST

==================== Faulty Device Manager Devices =============


==================== Event log errors: =========================

Application errors:
==================
Error: (09/21/2016 12:07:40 AM) (Source: VSS) (EventID: 8194) (User: )
Description: Chyba služby Stínová kopie svazků: Při dotazu na rozhraní IVssWriterCallback došlo k neočekávané chybě. hr = 0x80070005, Přístup byl odepřen.
.
To je často způsobeno nesprávným nastavením zabezpečení v modulu pro zápis nebo žadateli.


Operace:
Shromažďování dat modulu pro zápis

Kontext:
ID třídy modulu pro zápis: {e8132975-6f93-4464-a53e-1050253ae220}
Název modulu pro zápis: System Writer
ID instance modulu pro zápis: {9b2df051-6b76-4636-ac4e-9afe907ad72a}

Error: (09/20/2016 09:12:21 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (09/20/2016 09:40:00 AM) (Source: Microsoft-Windows-Defrag) (EventID: 257) (User: )
Description: Svazek WINRE_DRV nebyl optimalizován, protože byla zjištěna chyba: Parametr není správný. (0x80070057).

Error: (09/20/2016 09:23:10 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: SystemAgentService.exe, verze: 1.6.1.0, časové razítko: 0x566f2675
Název chybujícího modulu: SystemAgentService.exe, verze: 1.6.1.0, časové razítko: 0x566f2675
Kód výjimky: 0xc0000409
Posun chyby: 0x0000b15e
ID chybujícího procesu: 0x784
Čas spuštění chybující aplikace: 0x01d2128f45cde470
Cesta k chybující aplikaci: C:\Program Files\Lenovo\iMController\SystemAgentService.exe
Cesta k chybujícímu modulu: C:\Program Files\Lenovo\iMController\SystemAgentService.exe
ID zprávy: 14e88826-7f03-11e6-82cf-5cc5d4cb0f51
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (09/19/2016 11:30:07 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: EXCEL.EXE, verze: 16.0.6741.2063, časové razítko: 0x579e3ad1
Název chybujícího modulu: us005du.dll, verze: 6.760.12.11, časové razítko: 0x57c006da
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000000fbe29
ID chybujícího procesu: 0x13a0
Čas spuštění chybující aplikace: 0x01d212b95ac7c24c
Cesta k chybující aplikaci: C:\Program Files\Microsoft Office\Root\Office16\EXCEL.EXE
Cesta k chybujícímu modulu: C:\windows\system32\spool\DRIVERS\x64\3\us005du.dll
ID zprávy: 3b9421f5-7eb0-11e6-82cf-5cc5d4cb0f51
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (09/19/2016 10:10:32 PM) (Source: Microsoft-Windows-LocationProvider) (EventID: 2006) (User: NT AUTHORITY)
Description: There was an error with the Windows Location Provider database

Error: (09/19/2016 09:12:09 PM) (Source: Office 2016 Licensing Service) (EventID: 0) (User: )
Description: Event-ID 0

Error: (09/19/2016 09:02:26 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: AvastSvc.exe, verze: 12.3.3154.0, časové razítko: 0x57b5c39d
Název chybujícího modulu: ntdll.dll, verze: 6.3.9600.18233, časové razítko: 0x56bb4e1d
Kód výjimky: 0xc0000374
Posun chyby: 0x000e6054
ID chybujícího procesu: 0x460
Čas spuštění chybující aplikace: 0x01d2128f44d6b5fa
Cesta k chybující aplikaci: C:\Program Files\AVAST Software\Avast\AvastSvc.exe
Cesta k chybujícímu modulu: C:\windows\SYSTEM32\ntdll.dll
ID zprávy: 9a549ba9-7e9b-11e6-82cf-5cc5d4cb0f51
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:

Error: (09/19/2016 05:51:50 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program PDFConverter.exe verze 6.1.0.118 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.

ID procesu: 25a8

Čas spuštění: 01d2128d927f71c4

Čas ukončení: 48

Cesta k aplikaci: C:\Users\Jindřich\Programy\Total PDF Converter\PDFConverter.exe

ID hlášení: f721bd5e-7e80-11e6-82ce-5cc5d4cb0f51

Úplný název chybujícího balíčku:

ID aplikace související s chybujícím balíčkem:

Error: (09/19/2016 09:11:44 AM) (Source: Microsoft-Windows-Defrag) (EventID: 257) (User: )
Description: Svazek WINRE_DRV nebyl optimalizován, protože byla zjištěna chyba: Parametr není správný. (0x80070057).


System errors:
=============
Error: (09/21/2016 12:08:25 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.

Cesta k modulu: C:\windows\System32\IWMSSvc.dll

Error: (09/21/2016 12:08:25 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.

Cesta k modulu: C:\windows\System32\IWMSSvc.dll

Error: (09/21/2016 12:08:24 AM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.

Cesta k modulu: C:\windows\System32\IWMSSvc.dll

Error: (09/21/2016 12:07:53 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba PGService byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (09/21/2016 12:07:53 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Lenovo PhoneCompanionPusher Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (09/21/2016 12:07:53 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Dynamic Application Loader Host Interface Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (09/21/2016 12:07:53 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) Management and Security Application Local Management Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (09/21/2016 12:07:53 AM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Služba Windows Media Player Network Sharing byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 30000 milisekund: Restartovat službu.

Error: (09/21/2016 12:07:53 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Intel(R) ME Service byla neočekávaně ukončena. Tento stav nastal již 1krát.

Error: (09/21/2016 12:07:53 AM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba ymc byla neočekávaně ukončena. Tento stav nastal již 1krát.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i5-4210U CPU @ 1.70GHz
Percentage of memory in use: 33%
Total physical RAM: 8112.96 MB
Available physical RAM: 5423.64 MB
Total Virtual: 9392.96 MB
Available Virtual: 6485.85 MB

==================== Drives ================================

Drive c: (Windows8_OS) (Fixed) (Total:197.8 GB) (Free:61.82 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (LENOVO) (Fixed) (Total:25 GB) (Free:22.53 GB) NTFS
Drive e: (SALADIN) (Removable) (Total:0.24 GB) (Free:0.2 GB) FAT

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 238.5 GB) (Disk ID: 89EB774A)

Partition: GPT.

========================================================
Disk: 1 (Size: 245.5 MB) (Disk ID: 00000000)

Partition: GPT.

==================== End of Addition.txt ============================
Nahoru
altrok
Moderátor
Moderátor
Příspěvky: 7264
Registrován: 15 lis 2012 22:26
Bydliště: Znojmo

Re: Problém s flash diskem

#15 Příspěvek od altrok »

V PC jiz tento cerv neni. Pouzijte znovu USBFix - znovu volbu Clean a nasledne Vaccinate.
Pokud je cokoliv nejasného, ihned se ptej.
V případě spokojenosti prosím podpořte forum.
Pro dotazy, které se nehodí na forum, je možné využít altrokzavináčforum.viry.cz
Máš-li chuť pomáhat návštěvníkům tohoto fora, přihlas se do naší školičky.
Nahoru
Odpovědět

Zpět na „Řešení problémů, logy“