Dobrý večer,
prosím o preventivní kontrolu logu. Předem děkuji.
Logfile of random's system information tool 1.14 (written by random/random)
Run by konec at 2017-01-29 21:04:47
Microsoft Windows 10 Home
System drive C: has 562 GB (60%) free of 937 GB
Total RAM: 8043 MB (61% free)
X64
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:04:58, on 29.01.2017
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v11.0 (11.00.14393.0000)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
C:\Program Files\AVAST Software\Avast\avastui.exe
C:\Program Files (x86)\Gaming Keyboard\Monitor.EXE
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Gaming Keyboard\OSD.exe
C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\Microsoft Office 15\root\office15\OUTLOOK.EXE
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\konec_RSITx64.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = %11%\blank.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=
O2 - BHO: Skype for Business Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Adobe Creative Cloud] "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKLM\..\Run: [VICTORY Gaming Keyboard] "C:\Program Files (x86)\Gaming Keyboard\Monitor.exe"
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [OneDrive] "C:\Users\konec\AppData\Local\Microsoft\OneDrive\OneDrive.exe" /background
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKCU\..\Run: [uTorrent] "C:\Users\konec\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED
O4 - HKCU\..\Run: [DAEMON Tools Lite Automount] "C:\Program Files\DAEMON Tools Lite\DTAgent.exe" -autorun
O4 - HKCU\..\Run: [Dxtory Update Checker 2.0] C:\Program Files (x86)\Dxtory Software\Dxtory2.0\UpdateChecker.exe
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\konec\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\konec\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [Bloody2] "C:\Program Files (x86)\Bloody6\Bloody6\Bloody6.exe" Minimum
O4 - HKUS\S-1-5-19\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OneDriveSetup] C:\Windows\SysWOW64\OneDriveSetup.exe /thfirstsetup (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\Program Files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\Program Files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIE.dll
O9 - Extra button: Skype for Business Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll
O9 - Extra 'Tools' menuitem: Skype for Business Click to Call - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll
O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office 15\root\Office15\ONBttnIELinkedNotes.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL
O18 - Protocol: tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O18 - Protocol: windows.tbauth - {14654CA6-5711-491D-B89A-58E571679951} - C:\Windows\SysWOW64\tbauth.dll
O23 - Service: AdobeUpdateService - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\WINDOWS\system32\atiesrxx.exe (file missing)
O23 - Service: Avast Antivirus (avast! Antivirus) - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: BattlEye Service (BEService) - Unknown owner - C:\Program Files (x86)\Common Files\BattlEye\BEService.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\WINDOWS\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\DiagSvcs\DiagnosticsHub.StandardCollector.ServiceRes.dll,-1000 (diagnosticshub.standardcollector.service) - Unknown owner - C:\WINDOWS\system32\DiagSvcs\DiagnosticsHub.StandardCollector.Service.exe (file missing)
O23 - Service: Disc Soft Lite Bus Service - Disc Soft Ltd - C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
O23 - Service: EasyAntiCheat - EasyAntiCheat Ltd - C:\WINDOWS\system32\EasyAntiCheat.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)
O23 - Service: @oem10.inf,%fpCSEvtService_SvcDesc%;fpCSEvtSvc (fpCsEvtSvc) - Unknown owner - C:\WINDOWS\system32\fpCSEvtSvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe
O23 - Service: Hi-Rez Studios Authenticate and Update Service (HiPatchService) - Hi-Rez Studios - C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: @oem19.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\WINDOWS\system32\Hpservice.exe (file missing)
O23 - Service: HP Support Solutions Framework Service (HPSupportSolutionsFrameworkService) - HP Inc. - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Intel(R) HD Graphics Control Panel Service (igfxCUIService1.0.0.0) - Unknown owner - C:\WINDOWS\system32\igfxCUIService.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\WINDOWS\system32\GameMon.des.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\SensorDataService.exe,-101 (SensorDataService) - Unknown owner - C:\WINDOWS\System32\SensorDataService.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: SynTPEnh Caller Service (SynTPEnhService) - Synaptics Incorporated - C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
O23 - Service: TeamViewer 11 (TeamViewer) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\TieringEngineService.exe,-702 (TieringEngineService) - Unknown owner - C:\WINDOWS\system32\TieringEngineService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)
O23 - Service: @oem10.inf,%WBFService_SvcDesc%;Synaptics FP WBF Policy Service (valWBFPolicyService) - Unknown owner - C:\WINDOWS\system32\valWBFPolicyService.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-320 (WdNisSvc) - Unknown owner - C:\Program Files (x86)\Windows Defender\NisSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 13340 bytes
======Enumerating Processes======
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe -k DcomLaunch
C:\WINDOWS\system32\svchost.exe -k RPCSS
C:\WINDOWS\system32\dwm.exe
C:\WINDOWS\system32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\atiesrxx.exe
C:\WINDOWS\system32\atieclxx.exe
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork
C:\WINDOWS\system32\igfxCUIService.exe
C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\Hpservice.exe
C:\WINDOWS\system32\svchost.exe -k LocalServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalSystemNetworkRestricted
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-fb411455-3706-479e-bbf5-b38236c48517 -SystemEventPortName:HostProcess-df4e67ba-9c29-4034-8177-1eac4ce05e85 -IoCancelEventPortName:HostProcess-afc047f8-7985-4396-9a51-2ad0d637603c -NonStateChangingEventPortName:HostProcess-5c54d365-29c5-4da5-a773-6755626f0cce -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:f29fca9e-eefd-41d7-89b9-35b61391f76b -DeviceGroupId:
C:\WINDOWS\System32\spoolsv.exe
C:\WINDOWS\system32\dashost.exe
C:\WINDOWS\system32\fpCSEvtSvc.exe
C:\WINDOWS\System32\svchost.exe -k utcsvc
"C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe"
"C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe"
C:\WINDOWS\SysWoW64\svchost.exe -k hpdevmgmt
C:\WINDOWS\System32\svchost.exe -k HPZ12
C:\WINDOWS\System32\svchost.exe -k HPZ12
C:\WINDOWS\system32\svchost.exe -k appmodel
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\WINDOWS\system32\valWBFPolicyService.exe
"C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe"
"C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe"
"C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe" /service
C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\WINDOWS\system32\sihost.exe
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup
C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\WINDOWS\system32\taskhostw.exe
C:\Windows\System32\InputMethod\CHT\ChtIME.exe -Embedding
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\SettingSyncHost.exe -Embedding
C:\Windows\System32\RuntimeBroker.exe -Embedding
C:\WINDOWS\system32\igfxEM.exe
C:\WINDOWS\system32\igfxHK.exe
"C:\WINDOWS\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe" -ServerName:App.AppXtk181tbxbce2qsex02s8tw7hfxa9xb3t.mca
C:\WINDOWS\system32\igfxTray.exe
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
C:\WINDOWS\system32\SearchIndexer.exe /Embedding
"C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe" -ServerName:CortanaUI.AppXa50dqqa5gqv4a428c9y1jjw7m3btvepj.mca
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe" silentrun
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler /prefetch:7 "--database=C:\Users\konec\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\konec\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel=m --annotation=plat=Win32 --annotation=prod=Chrome --annotation=ver=55.0.2883.87 --handshake-handle=0x248
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=5648 --on-initialized-event-handle=888 --parent-handle=900 /prefetch:6
C:\Program Files\CCleaner\CCleaner64.exe
"C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
"C:\Program Files\AVAST Software\Avast\avastui.exe" /nogui
"C:\Program Files (x86)\Gaming Keyboard\Monitor.EXE"
"C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe" "-launchedbyvulcan"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\Gaming Keyboard\OSD.exe"
C:\WINDOWS\system32\fontdrvhost.exe
"C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe"
"C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe" --onOSstartup=true --showwindow=false --waitForRegistration=true
"C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe" --type=renderer --disable-3d-apis --disable-pinch --no-sandbox --enable-deferred-image-decoding --lang=en-US --lang=en-US --locales-dir-path="C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\locales" --log-file="C:\Users\konec\AppData\Local\Temp\CreativeCloud\ACC\CEF.log" --log-severity=warning --user-agent="Mozilla/5.0 (Windows NT 10.0.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Safari/537.36 CreativeCloud/3.7.5.291" --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --disable-gpu-compositing --channel="6380.0.176173348\730900770" /prefetch:673131151
"C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe"
"C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe"
"C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe" "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\main.js"
\??\C:\WINDOWS\system32\conhost.exe 0x4
C:\Windows\System32\SystemSettingsBroker.exe -Embedding
"C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler64.exe"
"C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\HEX\Adobe CEF Helper.exe" --type=renderer --disable-3d-apis --disable-pinch --no-sandbox --enable-deferred-image-decoding --lang=en-US --lang=en-US --locales-dir-path="C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\CEF\locales" --log-file="C:\Users\konec\AppData\Local\Temp\CreativeCloud\ACC\CEF.log" --log-severity=warning --user-agent="Mozilla/5.0 (Windows NT 10.0.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Safari/537.36 CreativeCloud/3.7.5.291" --device-scale-factor=1 --enable-delegated-renderer --enable-impl-side-painting --num-raster-threads=1 --disable-gpu-compositing --channel="6380.1.797408611\456795359" /prefetch:673131151
C:\WINDOWS\system32\ApplicationFrameHost.exe -Embedding
"C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --enable-features="*AutofillCreditCardSigninPromo<AutofillCreditCardSigninPromo,AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/AutofillCreditCardSigninPromo/Default/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Control9/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/*DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/Control_20161208_Launch/EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/OutOfReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/Default/PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledAckDecimation/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_35/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_05/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --disable-d3d11 --use-gl=swiftshader --supports-dual-gpus=false --swiftshader-path="C:\Users\konec\AppData\Local\Google\Chrome\User Data\SwiftShader\3.3.0.1" --gpu-driver-bug-workarounds=6,14,17,21,37,38,54,65,71 --gpu-vendor-id=0x1002 --gpu-device-id=0x6600 --gpu-driver-vendor="Advanced Micro Devices, Inc." --gpu-driver-version=15.201.1301.0 --gpu-driver-date=8-19-2015 --gpu-secondary-vendor-ids=0x8086 --gpu-secondary-device-ids=0x0166 --gpu-active-vendor-id=0x8086 --gpu-active-device-id=0x0166 --service-request-channel-token=1A8B8594BC6DDABD8E906BFFDB8B840C --mojo-platform-channel-handle=3244 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files\Microsoft Office 15\root\office15\OUTLOOK.EXE"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="*AutofillCreditCardSigninPromo<AutofillCreditCardSigninPromo,AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillCreditCardSigninPromo/Default/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Control9/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/*DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/Control_20161208_Launch/*EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/OutOfReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/Default/*PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledAckDecimation/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/*TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_35/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_05/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=80FF4A79BCA351214FB05CF2863C83CD --lang=cs --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-gpu-compositing --service-request-channel-token=80FF4A79BCA351214FB05CF2863C83CD --mojo-platform-channel-handle=4908 /prefetch:1
"C:\WINDOWS\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe3_ Global\UsGthrCtrlFltPipeMssGthrPipe3 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
C:\WINDOWS\system32\vssvc.exe
C:\WINDOWS\System32\svchost.exe -k swprv
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --enable-features="*AutofillCreditCardSigninPromo<AutofillCreditCardSigninPromo,AutofillProfileCleanup<AutofillProfileCleanup,BlockSmallPluginContent<PluginPowerSaverTiny,*DefaultEnableGpuRasterization<DefaultEnableGpuRasterization,*DisableFirstRunAutoImport<DisableFirstRunAutoImport,*ExperimentalSwReporterEngine<SRTExperimentalEngineTrial,*MediaFoundationH264Encoding<MediaFoundationH264Encoding,*OverrideYouTubeFlashEmbed<Override YouTube Flash emed,*PersistentHistograms<PersistentHistograms,*PointerEvent<PointerEvent,*PreconnectMore<PreconnectMore,*PreferHtmlOverPlugins<Html5ByDefault,SecurityChip<SecurityChip,SubresourceFilter<SubresourceFilter,SwReporterExtendedSafeBrowsingFeature<SwReporterExtendedSafeBrowsingFeature,*TranslateUI2016Q2<TranslateUI2016Q2" --disable-features=DocumentWriteEvaluator<DisallowFetchForDocWrittenScriptsInMainFrame,MetricsReporting<MetricsAndCrashSampling,ParseHTMLOnMainThread<ParseHTMLOnMainThread,SSLPostQuantumExperiment<SSLPostQuantum,SecurityWarningIconUpdate<SecurityWarningIconUpdate,UpdateRendererPriorityOnStartup<UpdateRendererPriorityOnStartup --force-fieldtrials=*AppBannerTriggering/site-engagement-eager/*AutofillCreditCardSigninPromo/Default/*AutofillProfileCleanup/Enabled/CaptivePortalInterstitial/Enabled/*ChromeChannelStable/Enabled/*ChromeSuggestionsTuning/Default/*ClientSideDetectionModel/Model0/*DataReductionProxyUseQuic/Control9/DefaultBrowserPromptStyle/ColoredIconOnWhiteInfoBar3/*DefaultEnableGpuRasterization/Default/DisableFirstRunAutoImport/Default/*DisallowFetchForDocWrittenScriptsInMainFrame/Control_20161208_Launch/*EnableWin32kLockDownMimeTypes/PPAPILockdown_Enabled/*EnforceCTForProblematicRoots/disabled/ExtensionDeveloperModeWarning/Enabled/*Html5ByDefault/Default/*InstanceID/Enabled/*MediaFoundationH264Encoding/Default/MetricsAndCrashSampling/OutOfReportingSample/*NetworkQualityEstimator/Enabled/*OmniboxBundledExperimentV1/StandardR7/*ParseHTMLOnMainThread/Default/PasswordBranding/SmartLockBrandingSavePromptOnly/*PasswordGeneration/Disabled/*PasswordManagerSettingsMigration/Enable/*PersistentHistograms/Default/*PluginPowerSaverTiny/Enabled2/*PreconnectMore/Default/*QUIC/EnabledAckDecimation/ReportCertificateErrors/ShowAndPossiblySend/SHA1IdentityUIWarning/Enabled/SHA1ToolbarUIJanuary2016/Warning/SHA1ToolbarUIJanuary2017/Error/SRTExperimentalEngineTrial/Default/*SRTPromptFieldTrial/On/SSLCommonNameMismatchHandling/Enabled/*SSLPostQuantum/disabled/*SafeBrowsingIncidentReportingService/Default/SafeBrowsingUnverifiedDownloads/DisableByParameterMostSbTypes2/*SecurityChip/Enabled/SecurityWarningIconUpdate/Control/SignInPasswordPromo/Enable3/*SiteIsolationExtensions/Control/*StrictSecureCookies/Enabled/*SubresourceFilter/EnabledForPhishingSites/*SwReporterExtendedSafeBrowsingFeature/Enabled/*TranslateServerStudy/Default/*TriggeredResetFieldTrial/On/*UMA-Dynamic-Uniformity-Trial/Group3/*UMA-Population-Restrict/normal/*UMA-Uniformity-Trial-1-Percent/group_35/*UMA-Uniformity-Trial-10-Percent/group_02/*UMA-Uniformity-Trial-100-Percent/group_01/*UMA-Uniformity-Trial-20-Percent/default/*UMA-Uniformity-Trial-5-Percent/group_05/*UMA-Uniformity-Trial-50-Percent/default/WebBluetoothBlacklist/BlacklistUpdate1/*WebFontsInterventionV2/Default/ --primordial-pipe-token=67FFF538DB7DA72C43540B85152D8F1F --lang=cs --disable-client-side-phishing-detection --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=false --enable-pinch --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553 --disable-gpu-compositing --service-request-channel-token=67FFF538DB7DA72C43540B85152D8F1F --mojo-platform-channel-handle=7128 /prefetch:1
"C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE"
C:\WINDOWS\system32\srtasks.exe ExecuteScopeRestorePoint /WaitForRestorePoint:107
\??\C:\WINDOWS\system32\conhost.exe 0x4
"C:\WINDOWS\system32\SearchFilterHost.exe" 0 644 648 656 8192 652
C:\Windows\System32\smartscreen.exe -Embedding
C:\WINDOWS\System32\svchost.exe -k WerSvcGroup
C:\WINDOWS\system32\AUDIODG.EXE 0x364
"C:\Users\konec\Desktop\Soubory pro taťku\RSITx64.exe"
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\svchost.exe -k NetworkService
======Scheduled tasks folder======
C:\WINDOWS\tasks\HPCeeScheduleForkonec.job - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForkonec (null)
C:\WINDOWS\system32\tasks\avast! Emergency Update - C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
C:\WINDOWS\system32\tasks\avast! Windows 10 Start Menu helper - c:\program files\avast software\avast\asww10mon.exe
C:\WINDOWS\system32\tasks\AVGPCTuneUp_Task_BkGndMaintenance - C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe $(Arg0)
C:\WINDOWS\system32\tasks\Browser Updater Task(Core) - ""C:\Program Files (x86)\QQBrowser\Update\Download\73038F0562E07FDFE1F0A045978AF782\Update\BrowserUpdate.exe"" 87B20C06-6890-4CFE-B40F-004064F87F12
C:\WINDOWS\system32\tasks\CCleanerSkipUAC - "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineCore - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c
C:\WINDOWS\system32\tasks\GoogleUpdateTaskMachineUA - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\WINDOWS\system32\tasks\HPCeeScheduleForkonec - C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe HPCeeScheduleForkonec (null)
C:\WINDOWS\system32\tasks\RunAsStdUser Task - C:\Program Files (x86)\Moo0\VoiceRecorder 1.43\VoiceRecorder.exe
C:\WINDOWS\system32\tasks\SafeZone scheduled Autoupdate 1474118964 - C:\Program Files\AVAST Software\SZBrowser\launcher.exe --scheduledautoupdate $(Arg0)
C:\WINDOWS\system32\tasks\User_Feed_Synchronization-{A97F1BB6-FE08-4B47-A21E-9DB574DAEACE} - C:\WINDOWS\system32\msfeedssync.exe sync
C:\WINDOWS\system32\tasks\{5D72DED3-F4CE-454A-8C36-436E00ACA17D} - C:\WINDOWS\system32\pcalua.exe -a "C:\ProgramData\Battle.net\Agent\Blizzard Uninstaller.exe" -c --lang=enUS --uid=battle.net --displayname="Battle.net"
C:\WINDOWS\system32\tasks\{FFBB870F-D916-4611-81DF-81448C3A2E85} - C:\WINDOWS\system32\pcalua.exe -a "C:\Program Files (x86)\MPC Cleaner\Uninstall.exe"
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTask - %windir%\System32\XblGameSaveTask.exe standby
C:\WINDOWS\system32\tasks\Microsoft\XblGameSave\XblGameSaveTaskLogon - %windir%\System32\XblGameSaveTask.exe logon
C:\WINDOWS\system32\tasks\Microsoft\Windows\Workplace Join\Automatic-Device-Join - %SystemRoot%\System32\dsregcmd.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\Scheduled Start - C:\WINDOWS\system32\sc.exe start wuauserv
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sih - %systemroot%\System32\sihclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\WindowsUpdate\sihboot - %systemroot%\System32\sihclient.exe /boot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -upload
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Cache Maintenance - %ProgramFiles%\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdCacheMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Cleanup - %ProgramFiles%\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdCleanup
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Scheduled Scan - %ProgramFiles%\Windows Defender\MpCmdRun.exe Scan -ScheduleJob
C:\WINDOWS\system32\tasks\Microsoft\Windows\Windows Defender\Windows Defender Verification - %ProgramFiles%\Windows Defender\MpCmdRun.exe -IdleTask -TaskName WdVerification
C:\WINDOWS\system32\tasks\Microsoft\Windows\WCM\WiFiTask - %SystemRoot%\System32\WiFiTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Maintenance Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\MusUx_UpdateInterval - C:\WINDOWS\system32\MusNotification.exe Display
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Policy Install - %systemroot%\system32\usoclient.exe StartInstall
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Reboot - %systemroot%\system32\MusNotification.exe RebootDialog
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Refresh Settings - %systemroot%\system32\usoclient.exe RefreshSettings
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Resume On Boot - %systemroot%\system32\usoclient.exe ResumeUpdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\Schedule Scan - %systemroot%\system32\usoclient.exe StartScan
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_Display - C:\windows\system32\MusNotification.exe Display
C:\WINDOWS\system32\tasks\Microsoft\Windows\UpdateOrchestrator\USO_UxBroker_ReadyToReboot - C:\windows\system32\MusNotification.exe ReadyToReboot
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Zone\SynchronizeTimeZone - %windir%\system32\tzsync.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\WINDOWS\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\srtasks.exe ExecuteScheduledSPPCreation
C:\WINDOWS\system32\tasks\Microsoft\Windows\Sysmain\WsSwapAssessmentTask - %windir%\system32\rundll32.exe sysmain.dll,PfSvWsSwapAssessmentTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\Storage Tiers Management\Storage Tiers Optimization - %windir%\system32\defrag.exe -c -h -g -# -m 8 -i 13500
C:\WINDOWS\system32\tasks\Microsoft\Windows\Speech\SpeechModelDownloadTask - %windir%\system32\speech_onecore\common\SpeechModelDownload.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceAgentTask - %windir%\system32\SpaceAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SpacePort\SpaceManagerTask - %windir%\system32\spaceman.exe /Work
C:\WINDOWS\system32\tasks\Microsoft\Windows\Shell\FamilySafetyMonitor - %windir%\System32\wpcmon.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\SharedPC\Account Cleanup - %windir%\System32\rundll32.exe %windir%\System32\Windows.SharedPC.AccountManager.dll,StartMaintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\RemovalTools\MRT_HB - C:\WINDOWS\system32\MRT.exe /EHB /Q
C:\WINDOWS\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\WINDOWS\system32\tasks\Microsoft\Windows\Plug and Play\Sysprep Generalize Drivers - %SystemRoot%\System32\drvinst.exe 6
C:\WINDOWS\system32\tasks\Microsoft\Windows\NlaSvc\WiFiTask - %SystemRoot%\System32\WiFiTask.exe nla
C:\WINDOWS\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\WINDOWS\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Mobile Broadband Accounts\MNO Metadata Parser - %SystemRoot%\System32\MbaeParserTask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Management\Provisioning\Logon - %windir%\system32\ProvTool.exe /turn 5
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotificationWindows.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Location\WindowsActionDialog - %windir%\System32\WindowsActionDialog.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClient - %windir%\system32\dmclient.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Feedback\Siuf\DmClientOnScenarioDownload - %windir%\system32\dmclient.exe utcwnf
C:\WINDOWS\system32\tasks\Microsoft\Windows\EnterpriseMgmt\MDMMaintenenceTask - %windir%\system32\MDMAgent.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DUSM\dusmtask - %SystemRoot%\System32\dusmtask.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskFootprint\Diagnostics - %windir%\system32\disksnapshot.exe -z
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\DiskCleanup\SilentCleanup - %windir%\system32\cleanmgr.exe /autoclean /d %systemdrive%
C:\WINDOWS\system32\tasks\Microsoft\Windows\Device Information\Device - %windir%\system32\devicecensus.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c -h -o -$
C:\WINDOWS\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Clip\License Validation - %SystemRoot%\system32\ClipUp.exe -p -s -o
C:\WINDOWS\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\WINDOWS\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppxDeploymentClient\Pre-staged app cleanup - %windir%\system32\rundll32.exe %windir%\system32\AppxDeploymentClient.dll,AppxPreStageCleanupRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierdaily - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\appuriverifierinstall - %windir%\system32\AppHostRegistrationVerifier.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\CleanupTemporaryState - %windir%\system32\rundll32.exe Windows.Storage.ApplicationData.dll,CleanupTemporaryState
C:\WINDOWS\system32\tasks\Microsoft\Windows\ApplicationData\DsSvcCleanup - %windir%\system32\dstokenclean.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\compattelrunner.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\compattelrunner.exe -maintenance
C:\WINDOWS\system32\tasks\Microsoft\Windows\Application Experience\StartupAppTask - %windir%\system32\rundll32.exe Startupscan.dll,SusRunTask
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\WINDOWS\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
C:\WINDOWS\system32\tasks\Microsoft\Office\Office Automatic Updates - C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe /update SCHEDULEDTASK displaylevel=False
C:\WINDOWS\system32\tasks\Microsoft\Office\Office ClickToRun Service Monitor - C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe /WatchService
C:\WINDOWS\system32\tasks\Microsoft\Office\OfficeTelemetryAgentFallBack - C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe scan upload mininterval:2880
C:\WINDOWS\system32\tasks\Microsoft\Office\OfficeTelemetryAgentLogOn - C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe scan upload
C:\WINDOWS\system32\tasks\Lenovo\Lenovo Customer Feedback Program 64 35 - "%ProgramFiles(x86)%\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe"
C:\WINDOWS\system32\tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /taskrestart
C:\WINDOWS\system32\tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe /send
C:\WINDOWS\system32\tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater - C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe /u
C:\WINDOWS\system32\tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe /L Analysis
C:\WINDOWS\system32\tasks\Hewlett-Packard\HP Support Assistant\Product Configurator - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe /noreport
C:\WINDOWS\system32\tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe -task -source HPSA
C:\WINDOWS\system32\tasks\AVAST Software\Avast settings backup - C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe /backup /iavs
=========Mozilla firefox=========
ProfilePath - C:\Users\konec\AppData\Roaming\Mozilla\Firefox\Profiles\g7v2z3f7.default-1480100872724
"sp@avast.com"=C:\Program Files\AVAST Software\Avast\SafePrice\FF
"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1225195.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/DTPlugin,version=11.121.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=11.121.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/Lync,version=15.0]
"Description"=Microsoft Lync Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\adobe.com/AdobeAAMDetect]
"Description"=
"Path"=C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll
C:\Users\konec\AppData\Roaming\Mozilla\Firefox\Profiles\g7v2z3f7.default-1480100872724\extensions\
{ea614400-e918-4741-9a97-7a972ff7c30b}
C:\Users\konec\AppData\Roaming\Mozilla\Firefox\Profiles\g7v2z3f7.default-1480100872724\addons.json
Seznam lištička - extension - {ea614400-e918-4741-9a97-7a972ff7c30b}
C:\Users\konec\AppData\Roaming\Mozilla\Firefox\Profiles\g7v2z3f7.default-1480100872724\extensions.json
Avast SafePrice - extension - sp@avast.com - C:\Program Files\AVAST Software\Avast\SafePrice\FF
Avast Online Security - extension - wrc@avast.com - C:\Program Files\AVAST Software\Avast\WebRep\FF
Seznam lištička - extension - {ea614400-e918-4741-9a97-7a972ff7c30b} - C:\Users\konec\AppData\Roaming\Mozilla\Firefox\Profiles\g7v2z3f7.default-1480100872724\extensions\{ea614400-e918-4741-9a97-7a972ff7c30b}
Application Update Service Helper - extension - aushelper@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\aushelper@mozilla.org.xpi
Multi-process staged rollout - extension - e10srollout@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\e10srollout@mozilla.org.xpi
Pocket - extension - firefox@getpocket.com - C:\Program Files\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi
Web Compat - extension - webcompat@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\webcompat@mozilla.org.xpi
Default - theme - {972ce4c6-7e08-4474-a285-3208198ce6fd} - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi
C:\Users\konec\AppData\Roaming\Mozilla\Firefox\Profiles\g7v2z3f7.default-1480100872724\pluginreg.dat
=========Google Chrome=========
C:\Users\konec\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension aapocclcgogkmnckokdopfmhonfmgoek
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Obchod Chrome 0.2
Extension ahjaciijnoiaklcomgnblndopackapon 1 Identity API Scope Approval UI 1.1
Extension apdfllckaahabafndbhieahigkjlhalf 1 Disk Google 14.1
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension blpcfgokakmgnkcojhhkbfbldkacnbeo 1 YouTube 4.2.8
Extension coobgpohoikkiipiblmjeljniedjpjpf 1 Vyhledávání Google 0.0.0.19
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension ennkphjdgehloodpbhlhldgbnhmacadg 1 Settings 0.2
Extension eofcbnmajmjmplflapaojjnihcjkigck 2 Avast SafePrice 12.0.102
Extension felcaaldnbdncclmgdcncolpebgiejap
Extension fheoggkfdfchfphceeifdbepaooicaho 2 McAfee® WebAdvisor 5.0.331.0
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension ghbmnnjooekpmoecnnnilnnbdlolhkhi 2 Dokumenty Google offline 1.4
Extension gomekmidlodglbbmalcneegieacbdmki 2 Avast Online Security 11.1.0.221
Extension hnfiiapoopclmhaikgpbgddfpmmddmeo 1 Agar.io Powerups Guide 1.1
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.38
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mfffpogegjflfpflabcdkioaeobkgjik 1 GaiaAuthExtension 0.0.1
Extension mgndgikekgjfcpckkfioiadnlibdjbkf 1 Chrome 0.1
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.1
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Platby Internetového obchodu Chrome 1.0.0.1
Extension ooebgdicanjhnamfmdlmlbcnkgehkkmf 2 Amazon.com Search Settings 1.1510.16.2142
Extension pbjikboenpfhbbejgkoklgkhjpfogcam 2 Amazon Assistant for Chrome 10.1604.8.747
Extension pjkljhegncpnkpknbcohdijeoejaedia 1 Gmail 8.1
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 5516.1005.0.3
Homepage:
default_search_provider.search_url:
C:\Users\konec\AppData\Local\Google\Chrome\User Data\Default\Preferences
Homepage:
default_search_provider.search_url:
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\eofcbnmajmjmplflapaojjnihcjkigck]
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\gomekmidlodglbbmalcneegieacbdmki]
"Path"=
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2016-12-13 229064]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2016-11-01 2351920]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Skype for Business Browser Helper - C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2016-12-13 163528]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-01-25 473152]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}]
Microsoft SkyDrive Pro Browser Helper - C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-11-01 1743664]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-25 186944]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2015-07-03 3944136]
"XboxStat"=C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [2009-10-01 825184]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"OneDrive"=C:\Users\konec\AppData\Local\Microsoft\OneDrive\OneDrive.exe [2016-09-21 554184]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner64.exe [2016-12-06 9288408]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2016-12-20 2876704]
"uTorrent"=C:\Users\konec\AppData\Roaming\uTorrent\uTorrent.exe [2016-12-20 1979072]
"DAEMON Tools Lite Automount"=C:\Program Files\DAEMON Tools Lite\DTAgent.exe [2016-10-06 4557504]
"Dxtory Update Checker 2.0"=C:\Program Files (x86)\Dxtory Software\Dxtory2.0\UpdateChecker.exe [2010-10-17 93696]
"cz.seznam.software.autoupdate"=C:\Users\konec\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\konec\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
"Bloody2"=C:\Program Files (x86)\Bloody6\Bloody6\Bloody6.exe [2016-12-29 19335680]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
""= []
"sun21"= []
"Adobe Creative Cloud"=C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2016-07-18 2380480]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2016-12-08 9080768]
"VICTORY Gaming Keyboard"=C:\Program Files (x86)\Gaming Keyboard\Monitor.exe [2013-04-09 270336]
"LogMeIn Hamachi Ui"=C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2016-11-11 5565960]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2016-12-12 587288]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"DSCAutomationHostEnabled"=2
"EnableCursorSuppression"=1
"EnableUIADesktopToggle"=0
"undockwithoutlogon"=1
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"SoftwareSASGeneration"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"ForceActiveDesktopOn"=0
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
"StubPath"=%SystemRoot%\inf\unregmp2.exe /ShowWMP
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"vidc.i420"=iyuv_32.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"VIDC.FPS1"=frapsv64.dll
"vidc.tscc"=C:\WINDOWS\SysWOW64\tsccvid64.dll
"vidc.tsc2"=C:\WINDOWS\SysWOW64\tsc2_codec64.dll
"msacm.ac3filter"=ac3filter64.acm
"vidc.xtor"=DxtoryCodec.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2017-01-29 20:43:55 ----D---- C:\Program Files\Common Files\AV
2017-01-29 07:52:54 ----D---- C:\_logs
2017-01-15 14:15:44 ----AD---- C:\Program Files (x86)\Battle.net
2017-01-10 14:44:36 ----D---- C:\Users\konec\AppData\Roaming\Little Inferno
2017-01-10 14:34:16 ----D---- C:\Rust
2017-01-08 16:54:11 ----D---- C:\Users\konec\AppData\Roaming\istrolid
2017-01-08 09:58:03 ----D---- C:\Users\konec\AppData\Roaming\SpaceEngineers
2016-12-31 22:42:58 ----A---- C:\WINDOWS\SYSWOW64\DxtoryCodec.dll
2016-12-31 22:42:58 ----A---- C:\WINDOWS\system32\DxtoryCodec.dll
2016-12-31 22:42:57 ----D---- C:\Program Files (x86)\Dxtory Software
2016-12-31 09:14:44 ----D---- C:\Program Files\TechSmith
2016-12-30 08:44:50 ----D---- C:\Users\konec\AppData\Roaming\TS3Client
2016-12-30 08:44:46 ----AD---- C:\Program Files\TeamSpeak 3 Client
======List of files/folders modified in the last 1 month======
2017-01-29 21:04:56 ----D---- C:\Program Files\trend micro
2017-01-29 21:04:03 ----D---- C:\WINDOWS\Prefetch
2017-01-29 21:00:38 ----D---- C:\WINDOWS\Temp
2017-01-29 21:00:32 ----D---- C:\WINDOWS\CbsTemp
2017-01-29 21:00:00 ----SHD---- C:\System Volume Information
2017-01-29 20:43:56 ----D---- C:\WINDOWS\system32\Tasks
2017-01-29 20:43:55 ----D---- C:\Program Files\Common Files
2017-01-29 20:43:55 ----D---- C:\Program Files (x86)\Common Files
2017-01-29 20:36:32 ----AD---- C:\Program Files (x86)\Hi-Rez Studios
2017-01-29 20:35:44 ----D---- C:\ProgramData\Validity
2017-01-29 20:34:16 ----D---- C:\WINDOWS\system32\sru
2017-01-29 20:26:49 ----D---- C:\Users\konec\AppData\Roaming\uTorrent
2017-01-29 20:26:37 ----D---- C:\Program Files (x86)\Steam
2017-01-29 19:31:48 ----D---- C:\Users\konec\AppData\Roaming\.minecraft
2017-01-29 17:19:21 ----D---- C:\WINDOWS\system32\catroot2
2017-01-29 16:47:39 ----D---- C:\WINDOWS\system32\drivers
2017-01-29 16:28:31 ----RD---- C:\WINDOWS\Microsoft.NET
2017-01-29 16:05:30 ----D---- C:\WINDOWS\system32\SleepStudy
2017-01-28 13:37:07 ----D---- C:\WINDOWS\AppReadiness
2017-01-27 15:03:58 ----D---- C:\WINDOWS\LiveKernelReports
2017-01-27 14:42:15 ----HD---- C:\ProgramData
2017-01-27 13:22:45 ----HD---- C:\Program Files\WindowsApps
2017-01-27 13:06:13 ----D---- C:\WINDOWS\System32
2017-01-26 22:06:38 ----D---- C:\Users\konec\AppData\Roaming\Skype
2017-01-26 19:23:07 ----D---- C:\WINDOWS\system32\config
2017-01-25 20:40:14 ----D---- C:\WINDOWS\WinSxS
2017-01-25 20:28:53 ----D---- C:\ProgramData\Oracle
2017-01-25 20:27:30 ----SHDC---- C:\WINDOWS\Installer
2017-01-25 20:27:30 ----SHD---- C:\Config.Msi
2017-01-25 20:27:29 ----D---- C:\Program Files (x86)\Java
2017-01-25 20:27:24 ----D---- C:\WINDOWS\SysWOW64
2017-01-25 20:26:02 ----A---- C:\WINDOWS\SYSWOW64\WindowsAccessBridge-32.dll
2017-01-19 21:10:35 ----AD---- C:\Program Files (x86)\TeamViewer
2017-01-19 19:08:13 ----D---- C:\WINDOWS\system32\DriverStore
2017-01-18 19:24:02 ----D---- C:\Windows
2017-01-18 10:54:38 ----RD---- C:\WINDOWS\assembly
2017-01-18 10:54:30 ----AD---- C:\ProgramData\regid.1991-06.com.microsoft
2017-01-18 10:53:16 ----AD---- C:\Program Files\Microsoft Office 15
2017-01-15 14:16:47 ----D---- C:\Users\konec\AppData\Roaming\Battle.net
2017-01-15 14:15:44 ----RD---- C:\Program Files (x86)
2017-01-14 06:50:53 ----D---- C:\ProgramData\Skype
2017-01-12 13:12:41 ----D---- C:\WINDOWS\INF
2017-01-12 11:37:30 ----D---- C:\WINDOWS\system32\MRT
2017-01-12 10:11:32 ----AC---- C:\WINDOWS\system32\MRT.exe
2017-01-12 10:09:50 ----D---- C:\WINDOWS\debug
2017-01-11 08:19:19 ----D---- C:\WINDOWS\SoftwareDistribution
2017-01-11 08:17:01 ----D---- C:\WINDOWS\Minidump
2017-01-11 08:17:01 ----D---- C:\WINDOWS\Logs
2017-01-10 14:49:22 ----D---- C:\ProgramData\Package Cache
2017-01-10 14:39:46 ----D---- C:\WINDOWS\SYSWOW64\directx
2017-01-10 14:39:28 ----HD---- C:\WINDOWS\msdownld.tmp
2017-01-09 17:22:39 ----D---- C:\WINDOWS\system32\CatRoot
2016-12-31 22:46:00 ----D---- C:\Users\konec\AppData\Roaming\Seznam.cz
2016-12-31 22:45:19 ----D---- C:\Program Files (x86)\Seznam.cz
2016-12-31 22:30:15 ----D---- C:\WINDOWS\Tasks
2016-12-31 09:15:04 ----RSD---- C:\WINDOWS\Fonts
2016-12-31 09:14:44 ----RD---- C:\Program Files
2016-12-31 09:14:44 ----AD---- C:\ProgramData\TechSmith
File C:\WINDOWS\system32\winlogon.exe is not digitally signed
File C:\WINDOWS\system32\wininit.exe is not digitally signed
File C:\WINDOWS\explorer.exe is not digitally signed
File C:\WINDOWS\SysWOW64\explorer.exe is not digitally signed
File C:\WINDOWS\system32\svchost.exe is not digitally signed
File C:\WINDOWS\SysWOW64\svchost.exe is not digitally signed
File C:\WINDOWS\system32\services.exe is not digitally signed
File C:\WINDOWS\system32\User32.dll is not digitally signed
File C:\WINDOWS\SysWOW64\User32.dll is not digitally signed
File C:\WINDOWS\system32\userinit.exe is not digitally signed
File C:\WINDOWS\SysWOW64\userinit.exe is not digitally signed
File C:\WINDOWS\system32\rpcss.dll is not digitally signed
File C:\WINDOWS\system32\Drivers\volsnap.sys is not digitally signed
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 amdkmpfd;@oem21.inf,%AMDKMPFD_svcdesc%;AMD PCI Root Bus Lower Filter; C:\WINDOWS\System32\drivers\amdkmpfd.sys [2015-10-10 91400]
R0 aswRvrt;avast! Revert; C:\WINDOWS\system32\drivers\aswRvrt.sys [2016-09-17 74544]
R0 aswVmm;avast! VM Monitor; C:\WINDOWS\system32\drivers\aswVmm.sys [2016-10-13 293352]
R0 hpdskflt;@oem19.inf,%service_desc%;HP Filter; C:\WINDOWS\system32\DRIVERS\hpdskflt.sys [2016-01-27 40624]
R0 iaStorA;iaStorA; C:\WINDOWS\System32\drivers\iaStorA.sys [2013-01-02 641672]
R0 iorate;@%SystemRoot%\system32\drivers\iorate.sys,-100; C:\WINDOWS\system32\drivers\iorate.sys [2016-11-02 48992]
R1 aswKbd;aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [2016-09-17 37144]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [2016-09-17 103064]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2016-09-17 969184]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2016-10-03 513632]
R2 aswMonFlt;aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [2016-09-17 108816]
R2 aswStm;aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [2016-09-17 163416]
R2 clreg;@%SystemRoot%\system32\drivers\registry.sys,-100; C:\WINDOWS\System32\drivers\registry.sys [2016-07-16 70144]
R3 Accelerometer;@oem19.inf,%accelerometer_desc%;HP Mobile Data Protection Sensor; C:\WINDOWS\system32\DRIVERS\Accelerometer.sys [2016-01-27 53424]
R3 amdkmdag;amdkmdag; C:\WINDOWS\system32\DRIVERS\atikmdag.sys [2015-10-10 21654032]
R3 amdkmdap;amdkmdap; C:\WINDOWS\system32\DRIVERS\atikmpag.sys [2015-10-10 685064]
R3 BTHUSB;@bth.inf,%BTHUSB.SvcDesc%;Ovladač rozhraní USB radiostanice Bluetooth; C:\WINDOWS\System32\drivers\BTHUSB.sys [2016-09-21 84992]
R3 dtlitescsibus;@oem9.inf,%DTLITESCSIBUS.DeviceDesc%;DAEMON Tools Lite Virtual SCSI Bus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [2016-03-22 30264]
R3 dtliteusbbus;@oem0.inf,%DTLITEUSBBUS.DeviceDesc%;DAEMON Tools Lite Virtual USB Bus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [2016-03-22 47672]
R3 Hamachi;@oem27.inf,%Hamachi.Service.DispName%;LogMeIn Hamachi Virtual Miniport); C:\WINDOWS\System32\drivers\Hamdrv.sys [2015-08-03 45680]
R3 iwdbus;@oem64.inf,%iwdbus.SVCDESC%;IWD Bus Enumerator; C:\WINDOWS\System32\drivers\iwdbus.sys [2015-12-01 38896]
R3 netr28x;@oem3.inf,%Generic.Service.DispName%;Ralink 802.11n Extensible Wireless Driver; C:\WINDOWS\system32\DRIVERS\netr28x.sys [2015-06-12 2554528]
R3 rtbth;@oem17.inf,%General.Service.DispName%;RTBTH Bluetooth Device Driver; C:\WINDOWS\System32\drivers\rtbth.sys [2015-06-03 1219200]
R3 RTL8168;@oem4.inf,%rtl8168.Service.DispName%;Realtek 8168 NT Driver; C:\WINDOWS\System32\drivers\Rt630x64.sys [2013-02-26 772680]
R3 SPUVCbv;@oem6.inf,%SPUVCb.ServiceName%;SPUVCb Driver Service; C:\WINDOWS\System32\Drivers\SPUVCbv64.sys [2016-03-09 760832]
R3 StillCam;@sti.inf,%StillCam.SvcDesc%;Ovladač digitálního fotoaparátu pro sériový port; C:\WINDOWS\system32\DRIVERS\serscan.sys [2016-07-16 12800]
R3 SynTP;@oem14.inf,%SynTP.SvcDesc%;Synaptics TouchPad Driver; C:\WINDOWS\system32\DRIVERS\SynTP.sys [2015-07-03 614088]
S0 megasas2i;megasas2i; C:\WINDOWS\System32\drivers\MegaSas2i.sys [2016-10-05 64352]
S0 scmbus;@scmbus.inf,%scmbus.SvcDesc%;Microsoft Storage Class Memory Bus Driver; C:\WINDOWS\System32\drivers\scmbus.sys [2016-07-16 88416]
S3 AcpiDev;@acpidev.inf,%AcpiDev.SvcDesc%;ACPI Devices driver; C:\WINDOWS\System32\drivers\AcpiDev.sys [2016-07-16 18432]
S3 applockerfltr;@%systemroot%\system32\srpapi.dll,-102; C:\WINDOWS\system32\drivers\applockerfltr.sys [2016-07-16 15360]
S3 aswHwid;avast! HardwareID; C:\WINDOWS\system32\drivers\aswHwid.sys [2016-09-17 37656]
S3 BthEnum;@bth.inf,%BthEnum.SVCDESC%;Služba Bluetooth Enumerator; C:\WINDOWS\System32\drivers\BthEnum.sys [2016-09-21 114176]
S3 BthLEEnum;@BthLEEnum.inf,%BthLEEnum.SVCDESC%;Ovladač úspory energie technologie Bluetooth; C:\WINDOWS\system32\DRIVERS\BthLEEnum.sys [2016-09-15 249856]
S3 BthPan;@bthpan.inf,%BthPan.DisplayName%;Bluetooth Device (Personal Area Network); C:\WINDOWS\System32\drivers\bthpan.sys [2016-10-05 128512]
S3 BTHPORT;@bth.inf,%BTHPORT.SvcDesc%;Ovladač portu Bluetooth; C:\WINDOWS\System32\drivers\BTHport.sys [2016-11-11 967168]
S3 dg_ssudbus;@oem24.inf,%ssud.Service.DeviceDesc%;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudbus.sys [2016-09-05 131712]
S3 dot4;@oem28.inf,%Dot4_Name%;MS IEEE-1284.4 Driver; C:\WINDOWS\system32\DRIVERS\Dot4.sys [2012-10-19 151968]
S3 Dot4Print;@oem13.inf,%Dot4Print_Name%;Print Class Driver for IEEE-1284.4; C:\WINDOWS\System32\drivers\Dot4Prt.sys [2012-10-19 27040]
S3 dot4usb;@oem28.inf,%DOT4USB_NAME%;Dot4USB Filter; C:\WINDOWS\system32\DRIVERS\dot4usb.sys [2012-10-19 49056]
S3 hvservice;@%SystemRoot%\system32\drivers\hvservice.sys,-16; C:\WINDOWS\system32\drivers\hvservice.sys [2016-09-21 73568]
S3 cht4iscsi;cht4iscsi; C:\WINDOWS\System32\drivers\cht4sx64.sys [2016-07-16 346976]
S3 cht4vbd;@cht4vx64.inf,%cht4vbd.generic%;Chelsio Virtual Bus Driver; C:\WINDOWS\System32\drivers\cht4vx64.sys [2016-07-16 2104160]
S3 iagpio;@iagpio.inf,%iagpio.SVCDESC%;Intel Serial IO GPIO Controller Driver; C:\WINDOWS\System32\drivers\iagpio.sys [2016-07-16 33280]
S3 iaLPSS2i_GPIO2;@iaLPSS2i_GPIO2_SKL.inf,%iaLPSS2i_GPIO2.SVCDESC%;Intel(R) Serial IO GPIO Driver v2; C:\WINDOWS\System32\drivers\iaLPSS2i_GPIO2.sys [2016-07-16 64512]
S3 IndirectKmd;@%SystemRoot%\system32\drivers\IndirectKmd.sys,-100; C:\WINDOWS\System32\drivers\IndirectKmd.sys [2016-07-16 35840]
S3 intaud_WaveExtensible;@oem30.inf,%INTAUD_WEX.SvcDesc%;Intel WiDi Audio Device; C:\WINDOWS\system32\drivers\intelaud.sys [2015-12-01 50160]
S3 irda;IrDA; C:\WINDOWS\system32\drivers\irda.sys [2016-07-16 120320]
S3 NetAdapterCx;Network Adapter Wdf Class Extension Library; C:\WINDOWS\system32\drivers\NetAdapterCx.sys [2016-07-16 90624]
S3 RFCOMM;@tdibth.inf,%RFCOMM.DisplayName%;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\System32\drivers\rfcomm.sys [2016-07-16 183808]
S3 scmdisk0101;@scmdisk0101.inf,%scmdisk0101.SvcDesc%;Microsoft NVDIMM-N disk driver; C:\WINDOWS\System32\drivers\scmdisk0101.sys [2016-07-16 123904]
S3 ssudmdm;@oem5.inf,%ssud.Service.Name%;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [2016-09-05 165504]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeUpdateService;AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [2016-07-18 741568]
R2 AMD External Events Utility;AMD External Events Utility; C:\WINDOWS\system32\atiesrxx.exe [2015-10-10 264224]
R2 avast! Antivirus;Avast Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2016-09-17 197128]
R2 CDPUserSvc_3aacd;CDPUserSvc_3aacd; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
R2 ClickToRunSvc;Služba Microsoft Office ClickToRun; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [2016-12-13 3042032]
R2 fpCsEvtSvc;@oem10.inf,%fpCSEvtService_SvcDesc%;fpCSEvtSvc; C:\WINDOWS\system32\fpCSEvtSvc.exe [2015-06-10 22528]
R2 HiPatchService;Hi-Rez Studios Authenticate and Update Service; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [2016-12-09 9728]
R2 hpqddsvc;Služba HP CUE DeviceDiscovery; C:\WINDOWS\syswow64\svchost.exe [2016-07-16 38792]
R2 hpsrv;@oem19.inf,%hpservice_desc%;HP Service; C:\WINDOWS\system32\Hpservice.exe [2016-01-27 54448]
R2 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [2016-12-07 31776]
R2 igfxCUIService1.0.0.0;Intel(R) HD Graphics Control Panel Service; C:\WINDOWS\system32\igfxCUIService.exe [2016-05-03 337888]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [2016-11-11 419248]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe -k HPZ12;"ServiceDll"=C:\Windows\System32\HPZinw12.dll
R2 OneSyncSvc_3aacd;Hostitel synchronizace_3aacd; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe -k HPZ12;"ServiceDll"=C:\Windows\System32\HPZipm12.dll
R2 SynTPEnhService;SynTPEnh Caller Service; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [2015-07-03 246472]
R2 TeamViewer;TeamViewer 11; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [2016-09-20 7500048]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [2016-10-06 1468608]
R3 FontCache3.0.0.0;@%SystemRoot%\system32\PresentationHost.exe,-3309; C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe [2016-05-25 43696]
R3 hpqcxs08;hpqcxs08; C:\WINDOWS\syswow64\svchost.exe [2016-07-16 38792]
R3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2015-09-01 150600]
R3 PimIndexMaintenanceSvc_3aacd;Data kontaktů_3aacd; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
R3 RmSvc;@%SystemRoot%\system32\RMapi.dll,-1001; %SystemRoot%\System32\svchost.exe -k LocalServiceNetworkRestricted;"ServiceDll"=%SystemRoot%\System32\RMapi.dll
S2 CDPUserSvc;@%SystemRoot%\system32\cdpusersvc.dll,-100; %SystemRoot%\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=%SystemRoot%\System32\CDPUserSvc.dll
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [2016-11-11 2627080]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2016-09-20 324224]
S3 BEService;BattlEye Service; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [2017-01-07 1447944]
S3 EasyAntiCheat;EasyAntiCheat; C:\WINDOWS\syswow64\EasyAntiCheat.exe [2016-12-28 395536]
S3 FrameServer;@%systemroot%\system32\FrameServer.dll,-100; %SystemRoot%\System32\svchost.exe -k Camera;"ServiceDll"=%SystemRoot%\system32\FrameServer.dll
S3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe [2015-04-28 1102472]
S3 HvHost;@%SystemRoot%\system32\hvhostsvc.dll,-100; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll"=%SystemRoot%\System32\hvhostsvc.dll
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 irmon;@%SystemRoot%\System32\irmon.dll,-2000; %SystemRoot%\system32\svchost.exe -k LocalSystemNetworkRestricted;"ServiceDll"=%SystemRoot%\System32\irmon.dll
S3 MessagingService_3aacd;Služba zasílání zpráv_3aacd; C:\WINDOWS\system32\svchost.exe -k UnistackSvcGroup;"ServiceDll"=
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2016-12-05 198088]
S3 npggsvc;nProtect GameGuard Service; C:\WINDOWS\syswow64\GameMon.des [2016-01-17 3780544]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2016-12-20 1467168]
S4 shpamsvc;@%SystemRoot%\System32\Windows.SharedPC.AccountManager.dll,-100; %SystemRoot%\System32\svchost.exe -k netsvcs;"ServiceDll"=%systemroot%\system32\Windows.SharedPC.AccountManager.dll
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Prosím o kontrolu
Ahoj.
-poprosim te pomoci tohoto navodu sem vlozit log (FRST.txt i Addition.txt) z FRST:
http://forum.viry.cz/viewtopic.php?f=30&t=133101
-poprosim te pomoci tohoto navodu sem vlozit log (FRST.txt i Addition.txt) z FRST:
http://forum.viry.cz/viewtopic.php?f=30&t=133101
Re: Prosím o kontrolu
Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 29-01-2017
Ran by konec (administrator) on LUKÁŠ (30-01-2017 20:55:24)
Running from C:\Users\konec\Desktop
Loaded Profiles: konec (Available Profiles: konec)
Platform: Windows 10 Home Version 1607 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
() C:\Windows\System32\fpCSEvtSvc.exe
(Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated) C:\Windows\System32\valWBFPolicyService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Windows\System32\InputMethod\CHT\ChtIME.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
() C:\Program Files (x86)\Gaming Keyboard\Monitor.EXE
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Program Files (x86)\Gaming Keyboard\OSD.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
(Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler64.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.152.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\OUTLOOK.EXE
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\InputMethod\CHT\ChtIME.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(forum.viry.cz) C:\Users\konec\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-07-03] (Synaptics Incorporated)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-10-01] (Microsoft Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [sun21] => [X]
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2380480 2016-07-18] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9080768 2016-12-08] (AVAST Software)
HKLM-x32\...\Run: [VICTORY Gaming Keyboard] => C:\Program Files (x86)\Gaming Keyboard\Monitor.exe [270336 2013-04-09] ()
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5565960 2016-11-11] (LogMeIn Inc.)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-12-12] (Oracle Corporation)
HKLM\...\Winlogon: [Userinit] wscript C:\WINDOWS\run.vbs,
HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9288408 2016-12-06] (Piriform Ltd)
HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2876704 2016-12-20] (Valve Corporation)
HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\Run: [uTorrent] => C:\Users\konec\AppData\Roaming\uTorrent\uTorrent.exe [1979072 2016-12-20] (BitTorrent Inc.)
HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4557504 2016-10-06] (Disc Soft Ltd)
HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\Run: [Dxtory Update Checker 2.0] => C:\Program Files (x86)\Dxtory Software\Dxtory2.0\UpdateChecker.exe [93696 2010-10-17] (Dxtory Software)
HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\Run: [cz.seznam.software.autoupdate] => C:\Users\konec\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\Run: [cz.seznam.software.szndesktop] => C:\Users\konec\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [103080 2015-05-26] ()
HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\Run: [Bloody2] => C:\Program Files (x86)\Bloody6\Bloody6\Bloody6.exe [19335680 2016-12-29] ()
HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\MountPoints2: {2cd994c5-ab27-11e6-9c51-70188b5d0a0c} - "G:\SETUP.EXE"
HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\MountPoints2: {2cd99525-ab27-11e6-9c51-70188b5d0a0c} - "F:\SETUP.EXE"
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> No File
ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> No File
ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> No File
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-09-17] (AVAST Software)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-11-01] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-11-01] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-11-01] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> No File
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> No File
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> No File
GroupPolicy: Restriction - Chrome <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{96a3450a-73fe-4708-bf6a-bc24ef4ef474}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{cb765dfe-2717-48f2-a20b-ceceba2a9d9d}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKU\S-1-5-21-466670803-733275211-1192568883-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp
SearchScopes: HKU\S-1-5-21-466670803-733275211-1192568883-1001 -> {5D308757-C7A0-45E8-BCAF-4BA517941E6F} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_14875
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2016-12-13] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2016-11-01] (Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2016-12-13] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-01-25] (Oracle Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-11-01] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-25] (Oracle Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2016-04-20] (Microsoft Corporation)
Edge:
======
Edge HomeButtonPage: HKU\S-1-5-21-466670803-733275211-1192568883-1001 -> hxxp://www.yoursites123.com/?type=hp&ts=145267 ... X8362S4JYS
FireFox:
========
FF ProfilePath: C:\Users\konec\AppData\Roaming\Mozilla\Firefox\Profiles\g7v2z3f7.default-1480100872724 [2017-01-30]
FF Extension: (Seznam lištička) - C:\Users\konec\AppData\Roaming\Mozilla\Firefox\Profiles\g7v2z3f7.default-1480100872724\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2016-12-31]
FF Extension: (Java Console) - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0017-0000-0000-ABCDEFFEDCBA} [2016-11-05] [not signed]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-09-17]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-09-17]
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-07-18] (Adobe Systems)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1225195.dll [2016-09-20] (Adobe Systems, Inc.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2016-10-06] (Google)
FF Plugin-x32: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-01-25] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-01-25] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-07-12] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-09-09] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-07-18] (Adobe Systems)
FF Plugin HKU\S-1-5-21-466670803-733275211-1192568883-1001: @nsroblox.roblox.com/launcher -> C:\Users\konec\AppData\Local\Roblox\Versions\version-7b8ced67462c404f\\NPRobloxProxy.dll [2013-01-01] ( ROBLOX Corporation)
FF Plugin HKU\S-1-5-21-466670803-733275211-1192568883-1001: @nsroblox.roblox.com/launcher64 -> C:\Users\konec\AppData\Local\Roblox\Versions\version-7b8ced67462c404f\\NPRobloxProxy64.dll [2013-01-01] ( ROBLOX Corporation)
FF Plugin HKU\S-1-5-21-466670803-733275211-1192568883-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\konec\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2009-11-30] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-466670803-733275211-1192568883-1001: SkypePlugin -> C:\Users\konec\AppData\Local\SkypePlugin\7.19.0.182\npGatewayNpapi.dll [2016-05-27] (Skype Technologies S.A.)
FF Plugin HKU\S-1-5-21-466670803-733275211-1192568883-1001: SkypePlugin64 -> C:\Users\konec\AppData\Local\SkypePlugin\7.19.0.182\npGatewayNpapi-x64.dll [2016-05-27] (Skype Technologies S.A.)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> amazon.com/websearch/?ie=UTF8__PARAM__
CHR DefaultSearchURL: Default -> hxxps://www.amazon.com/websearch/?ie=UTF8__PARA ... earchTerms}
CHR DefaultSearchKeyword: Default -> amazon
CHR Profile: C:\Users\konec\AppData\Local\Google\Chrome\User Data\Default [2017-01-30]
CHR Extension: (Disk Google) - C:\Users\konec\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-03-18]
CHR Extension: (YouTube) - C:\Users\konec\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-03-18]
CHR Extension: (Vyhledávání Google) - C:\Users\konec\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-03-07]
CHR Extension: (Vysoký kontrast) - C:\Users\konec\AppData\Local\Google\Chrome\User Data\Default\Extensions\djcfdncoelnlbldjfhinnjlhdjlikmph [2017-01-30]
CHR Extension: (MopeX - Ultimate Mope.io Mods + Sandbox) - C:\Users\konec\AppData\Local\Google\Chrome\User Data\Default\Extensions\ealcighliccncahjkkggpchpcbphfaok [2017-01-30]
CHR Extension: (Agar.io Powerups Guide) - C:\Users\konec\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnfiiapoopclmhaikgpbgddfpmmddmeo [2016-07-12]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\konec\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-19]
CHR Extension: (Gmail) - C:\Users\konec\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-03-18]
CHR Extension: (Chrome Media Router) - C:\Users\konec\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-16]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ATTENTION: => Could not perform signature verification. Cryptographic Service is not running.
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [741568 2016-07-18] (Adobe Systems Incorporated)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-09-17] (AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1447944 2017-01-07] ()
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3042032 2016-12-13] (Microsoft Corporation)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1468608 2016-10-06] (Disc Soft Ltd)
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [395536 2016-12-28] (EasyAntiCheat Ltd)
R2 fpCsEvtSvc; C:\WINDOWS\system32\fpCSEvtSvc.exe [22528 2015-06-10] ()
S2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [2627080 2016-11-11] (LogMeIn Inc.)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [31776 2016-12-07] (HP Inc.)
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [337888 2016-05-03] (Intel Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-11-11] (LogMeIn, Inc.)
S3 npggsvc; C:\WINDOWS\SysWOW64\GameMon.des [3780544 2016-01-17] (INCA Internet Co., Ltd.)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [246472 2015-07-03] (Synaptics Incorporated)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7500048 2016-09-20] (TeamViewer GmbH)
R2 valWBFPolicyService; C:\WINDOWS\system32\valWBFPolicyService.exe [53248 2015-06-10] (Synaptics Incorporated)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 amdkmpfd; C:\WINDOWS\System32\drivers\amdkmpfd.sys [91400 2015-10-10] (Advanced Micro Devices, Inc.)
S3 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [37656 2016-09-17] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [37144 2016-09-17] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [108816 2016-09-17] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [103064 2016-09-17] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-09-17] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [969184 2016-09-17] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [513632 2016-10-03] (AVAST Software)
S2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [163416 2016-09-17] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [293352 2016-10-13] (AVAST Software)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 dot4; C:\WINDOWS\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\WINDOWS\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows (R) Win 7 DDK provider)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-03-22] (Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-03-22] (Disc Soft Ltd)
R3 Hamachi; C:\WINDOWS\System32\drivers\Hamdrv.sys [45680 2015-08-03] (LogMeIn Inc.)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 netr28x; C:\WINDOWS\system32\DRIVERS\netr28x.sys [2554528 2015-06-12] (MediaTek Inc.)
R3 rtbth; C:\WINDOWS\System32\drivers\rtbth.sys [1219200 2015-06-03] (Ralink Technology, Corp.)
R3 SPUVCbv; C:\WINDOWS\System32\Drivers\SPUVCbv64.sys [760832 2016-03-09] (Sunplus)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
R1 VBoxUSBMon; C:\WINDOWS\system32\DRIVERS\VBoxUSBMon.sys [133248 2016-07-06] (BigNox Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [30544 2016-02-17] (HP)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-01-30 20:55 - 2017-01-30 20:56 - 00023612 _____ C:\Users\konec\Desktop\FRST.txt
2017-01-30 20:54 - 2017-01-30 20:55 - 00000000 ____D C:\FRST
2017-01-30 20:53 - 2017-01-30 20:54 - 00112640 _____ (forum.viry.cz) C:\Users\konec\Desktop\FRSTLauncher.exe
2017-01-30 20:43 - 2017-01-30 20:54 - 02420736 _____ (Farbar) C:\Users\konec\Desktop\FRST64.exe
2017-01-30 17:09 - 2017-01-30 17:09 - 00000000 ____D C:\Users\konec\AppData\Roaming\Aha-Soft
2017-01-30 17:06 - 2017-01-30 17:06 - 00000000 ____D C:\Users\konec\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IconLover
2017-01-30 17:06 - 2017-01-30 17:06 - 00000000 ____D C:\Program Files (x86)\IconLover
2017-01-30 17:05 - 2017-01-30 17:05 - 11587399 _____ C:\Users\konec\Downloads\iconlove.zip
2017-01-29 20:43 - 2017-01-29 20:43 - 00000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software
2017-01-29 20:43 - 2017-01-29 20:43 - 00000000 ____D C:\Program Files\Common Files\AV
2017-01-29 10:00 - 2017-01-29 10:00 - 00000000 ____D C:\Users\konec\Desktop\V1.05_Raft_Win64
2017-01-29 09:59 - 2017-01-29 10:00 - 122828082 _____ C:\Users\konec\Downloads\V1.05_Raft_Win64.zip
2017-01-29 09:59 - 2017-01-29 09:59 - 03175923 _____ C:\Users\konec\Downloads\Demp(v1.02c) for Raft v1.05.rar
2017-01-29 07:52 - 2017-01-29 11:23 - 00000000 ____D C:\_logs
2017-01-28 19:25 - 2017-01-28 19:55 - 00000000 ____D C:\Users\konec\Downloads\Skate 3 RF
2017-01-28 10:00 - 2017-01-28 10:00 - 71248481 _____ C:\Users\konec\Downloads\Geometry.Dash.v2.10.Update.4.rar
2017-01-27 21:05 - 2017-01-27 21:05 - 05877760 _____ C:\Users\konec\Downloads\hamachi-2-2-0-105.msi
2017-01-27 15:08 - 2017-01-27 15:08 - 00427008 _____ C:\Users\konec\Downloads\Facebook Comment Spammer (1).exe
2017-01-26 15:31 - 2017-01-26 15:32 - 00427008 _____ C:\Users\konec\Downloads\Facebook Comment Spammer.exe
2017-01-25 15:49 - 2017-01-25 15:49 - 00000000 ____D C:\Users\konec\AppData\LocalLow\OldBlood Productions
2017-01-25 15:42 - 2017-01-25 15:42 - 71351675 _____ C:\Users\konec\Downloads\Standalone.zip
2017-01-25 11:17 - 2017-01-25 11:17 - 00000000 ____D C:\Users\konec\AppData\LocalLow\MihkelT
2017-01-25 11:16 - 2017-01-25 11:16 - 66719478 _____ C:\Users\konec\Downloads\Circle-Empires.zip
2017-01-23 18:34 - 2017-01-23 18:34 - 00008630 _____ C:\Users\konec\Downloads\McCitronovy-kurzory.rar
2017-01-23 18:30 - 2017-01-23 18:30 - 00036273 _____ C:\Users\konec\Downloads\minecraft-diamond-edition.zip
2017-01-20 19:34 - 2017-01-20 19:35 - 21861617 _____ C:\Users\konec\Downloads\StrandedRaft.zip
2017-01-18 15:53 - 2017-01-18 15:53 - 00000000 ____D C:\Users\konec\AppData\LocalLow\Pixel Federation
2017-01-16 13:19 - 2017-01-16 13:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bloody
2017-01-16 13:14 - 2017-01-16 13:15 - 27490066 _____ C:\Users\konec\Downloads\Bloody6_V2016.1229_US.zip
2017-01-15 14:16 - 2017-01-15 16:43 - 00000000 ____D C:\Users\konec\AppData\Local\Battle.net
2017-01-15 14:16 - 2017-01-15 14:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2017-01-15 14:15 - 2017-01-15 14:16 - 00000000 ____D C:\Program Files (x86)\Battle.net
2017-01-15 14:15 - 2017-01-15 14:15 - 03319280 _____ (Blizzard Entertainment) C:\Users\konec\Downloads\Hearthstone-Setup (1).exe
2017-01-15 09:13 - 2017-01-15 09:13 - 00528108 _____ () C:\Users\konec\Downloads\gota (8).exe
2017-01-14 14:31 - 2017-01-14 14:32 - 04748905 _____ C:\Users\konec\Downloads\GSplay (1).zip
2017-01-13 19:22 - 2017-01-13 19:22 - 00000000 ____D C:\Users\konec\AppData\LocalLow\Mana Potion Studios
2017-01-13 19:16 - 2017-01-13 19:16 - 84860861 _____ C:\Users\konec\Downloads\Happy.Room.v10.01.2017.rar
2017-01-11 08:18 - 2017-01-11 08:18 - 00081880 _____ C:\Users\konec\Documents\cc_20170111_081815.reg
2017-01-10 14:44 - 2017-01-10 15:18 - 00000000 ____D C:\Users\konec\AppData\Roaming\Little Inferno
2017-01-10 14:41 - 2017-01-10 14:44 - 198995456 _____ (Experimental Gameplay Group LLC) C:\Users\konec\Downloads\Little Inferno.exe
2017-01-10 14:34 - 2017-01-10 15:21 - 00000000 ____D C:\Rust
2017-01-10 14:15 - 2017-01-10 14:16 - 00000000 ____D C:\Users\konec\Downloads\Rust_1949_6.01.2017
2017-01-10 14:15 - 2017-01-10 14:15 - 00004067 _____ C:\Users\konec\Downloads\Rust_1949_6.01.2017.torrent
2017-01-09 13:26 - 2017-01-09 13:26 - 00000000 ____D C:\Users\konec\Documents\WB Games
2017-01-08 16:54 - 2017-01-08 16:54 - 00000000 ____D C:\Users\konec\AppData\Roaming\istrolid
2017-01-08 16:32 - 2017-01-08 16:32 - 00000000 ____D C:\Users\konec\AppData\Local\Introversion
2017-01-08 16:27 - 2017-01-08 16:27 - 24374304 _____ C:\Users\konec\Downloads\prison-architect-alpha-27-cz.rar
2017-01-08 16:26 - 2017-01-08 16:27 - 366997633 _____ C:\Users\konec\Downloads\Prison.Architect.Update.11d.rar
2017-01-08 09:58 - 2017-01-08 10:00 - 00000000 ____D C:\Users\konec\AppData\Roaming\SpaceEngineers
2017-01-08 09:51 - 2017-01-08 09:55 - 259789478 _____ C:\Users\konec\Downloads\Space Engineers v01.014.010.7z
2017-01-08 08:25 - 2017-01-08 08:25 - 00000000 ____D C:\Users\konec\AppData\LocalLow\Landfall
2017-01-08 08:21 - 2017-01-08 08:22 - 340295204 _____ C:\Users\konec\Downloads\Zilak - Get ClusterTruck For Free.rar
2017-01-03 17:31 - 2017-01-03 17:31 - 35730171 _____ C:\Users\konec\Downloads\Zilak - Get SUPERTRUCK For Free.rar
2016-12-31 22:45 - 2016-12-31 22:45 - 00000000 ____D C:\Users\Default\AppData\Local\MicrosoftEdge
2016-12-31 22:45 - 2016-12-31 22:45 - 00000000 ____D C:\Users\Default User\AppData\Local\MicrosoftEdge
2016-12-31 22:43 - 2016-12-31 22:43 - 00000000 ____D C:\Users\konec\AppData\Local\Dxtory Software
2016-12-31 22:42 - 2016-12-31 22:42 - 12577340 _____ C:\Users\konec\Downloads\dxtory_2.0.122.exe
2016-12-31 22:42 - 2016-12-31 22:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dxtory2.0
2016-12-31 22:42 - 2016-12-31 22:42 - 00000000 ____D C:\Program Files (x86)\Dxtory Software
2016-12-31 22:42 - 2013-02-15 22:44 - 08300544 _____ (Dxtory Software) C:\WINDOWS\SysWOW64\DxtoryCodec.dll
2016-12-31 22:42 - 2013-02-15 22:44 - 08043008 _____ (Dxtory Software) C:\WINDOWS\system32\DxtoryCodec.dll
2016-12-31 22:40 - 2016-12-31 22:40 - 04316232 _____ (MAGIX Software GmbH) C:\Users\konec\Downloads\trial_vegaspro14.exe
2016-12-31 09:14 - 2016-12-31 09:14 - 00000000 ____D C:\Program Files\TechSmith
2016-12-31 09:11 - 2016-12-31 09:13 - 285104960 _____ (TechSmith Corporation) C:\Users\konec\Downloads\camtasia (2).exe
2016-12-31 07:37 - 2016-12-31 07:37 - 00123523 _____ C:\Users\konec\Downloads\Paladins 1.2h.rar
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-01-30 20:56 - 2015-09-09 21:11 - 00000000 ____D C:\Users\konec\AppData\Roaming\Skype
2017-01-30 20:54 - 2015-09-09 22:26 - 00000000 ____D C:\Users\konec\Documents\Soubory aplikace Outlook
2017-01-30 19:00 - 2016-09-21 13:25 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-01-30 17:19 - 2016-04-27 17:13 - 00000000 ___RD C:\Users\konec\Desktop\
2017-01-30 16:51 - 2016-07-16 12:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-01-30 16:30 - 2015-09-09 21:00 - 00000000 __SHD C:\Users\konec\IntelGraphicsProfiles
2017-01-30 16:29 - 2016-09-21 13:35 - 00000000 ____D C:\Users\konec
2017-01-30 16:28 - 2016-12-28 09:20 - 00000000 ____D C:\Program Files (x86)\Hi-Rez Studios
2017-01-30 16:27 - 2016-09-21 14:18 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-01-30 16:27 - 2016-09-21 13:28 - 00000000 ____D C:\ProgramData\Validity
2017-01-30 14:24 - 2015-10-02 15:17 - 00000000 ____D C:\Program Files (x86)\Steam
2017-01-29 21:52 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-01-29 21:08 - 2016-03-31 08:52 - 00000000 ____D C:\rsit
2017-01-29 21:04 - 2016-03-31 08:52 - 00000000 ____D C:\Program Files\trend micro
2017-01-29 21:04 - 2015-09-09 21:16 - 00000000 ___RD C:\Users\konec\Desktop\Soubory pro taťku
2017-01-29 20:35 - 2016-12-10 18:24 - 00000344 _____ C:\WINDOWS\Tasks\HPCeeScheduleForkonec.job
2017-01-29 20:34 - 2016-07-16 07:04 - 00786432 _____ C:\WINDOWS\system32\config\BBI
2017-01-29 20:26 - 2015-09-22 17:15 - 00000000 ____D C:\Users\konec\AppData\Roaming\uTorrent
2017-01-29 19:31 - 2015-09-10 15:36 - 00000000 ____D C:\Users\konec\AppData\Roaming\.minecraft
2017-01-29 16:30 - 2016-12-10 18:25 - 00003236 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForkonec
2017-01-29 09:57 - 2016-01-28 20:20 - 00541432 _____ C:\WINDOWS\system32\Drivers\EasyAntiCheat.sys
2017-01-28 13:37 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-01-28 11:02 - 2016-06-05 03:20 - 00000000 ____D C:\Users\konec\AppData\Local\CrashDumps
2017-01-28 10:30 - 2015-10-16 19:11 - 00000000 ____D C:\Users\konec\AppData\Local\GeometryDash
2017-01-27 21:08 - 2016-07-10 07:53 - 00000000 ____D C:\Users\konec\AppData\Local\LogMeIn Hamachi
2017-01-27 21:08 - 2016-07-08 14:19 - 00000922 _____ C:\Users\konec\Documents\hamachi_test_report.txt
2017-01-27 13:22 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-01-26 16:07 - 2015-11-28 18:52 - 00000000 ____D C:\Users\konec\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2017-01-25 20:35 - 2015-09-09 21:00 - 00000000 ____D C:\Users\konec\AppData\Local\Packages
2017-01-25 20:28 - 2015-09-11 08:44 - 00000000 ____D C:\ProgramData\Oracle
2017-01-25 20:27 - 2015-09-11 08:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-01-25 20:27 - 2015-09-11 08:44 - 00000000 ____D C:\Program Files (x86)\Java
2017-01-25 20:26 - 2015-09-11 08:44 - 00097856 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2017-01-21 17:33 - 2016-06-19 06:12 - 00000000 ____D C:\Users\konec\Counter-Strike 1.6
2017-01-21 10:47 - 2015-10-02 17:02 - 00000000 ____D C:\Users\konec\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2017-01-20 19:01 - 2016-11-25 20:07 - 00000000 ____D C:\Users\konec\AppData\LocalLow\Mozilla
2017-01-20 09:09 - 2015-09-09 21:34 - 00000000 ____D C:\Users\konec\AppData\Local\ElevatedDiagnostics
2017-01-19 21:10 - 2016-02-01 15:34 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2017-01-18 19:35 - 2016-09-21 14:17 - 00004278 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2017-01-18 10:54 - 2016-07-16 12:47 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-01-18 10:53 - 2015-09-09 22:04 - 00000000 ____D C:\Program Files\Microsoft Office 15
2017-01-15 21:26 - 2014-01-16 09:57 - 00000000 ____D C:\Users\konec\Documents\Michal
2017-01-15 14:16 - 2016-09-17 13:20 - 00000000 ____D C:\Users\konec\AppData\Roaming\Battle.net
2017-01-14 06:51 - 2015-09-09 21:10 - 00000000 ____D C:\ProgramData\Skype
2017-01-12 13:12 - 2016-07-16 12:45 - 00000000 ____D C:\WINDOWS\INF
2017-01-12 11:37 - 2015-09-09 21:55 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-01-12 10:11 - 2015-09-09 21:55 - 135657872 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-01-11 08:17 - 2016-12-30 08:44 - 00000000 ____D C:\Users\konec\AppData\Roaming\TS3Client
2017-01-11 08:17 - 2016-10-13 12:52 - 00000000 ____D C:\WINDOWS\Minidump
2017-01-10 14:49 - 2015-11-19 16:14 - 00000000 ____D C:\ProgramData\Package Cache
2017-01-10 14:39 - 2016-11-26 08:59 - 00000000 ____D C:\WINDOWS\SysWOW64\directx
2017-01-10 14:39 - 2016-03-05 12:58 - 00000000 ___HD C:\WINDOWS\msdownld.tmp
2017-01-08 08:24 - 2016-01-15 19:52 - 00000000 ____D C:\Users\konec\Documents\My Games
2017-01-07 12:47 - 2016-08-02 15:20 - 00000000 ____D C:\Users\konec\AppData\LocalLow\Smartly Dressed Games
2016-12-31 22:46 - 2015-09-18 12:38 - 00000000 ____D C:\Users\konec\AppData\Roaming\Seznam.cz
2016-12-31 22:45 - 2016-07-16 12:47 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft
2016-12-31 22:45 - 2016-07-16 12:47 - 00000000 ____D C:\Users\Default\AppData\Local
2016-12-31 22:45 - 2016-07-16 12:47 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft
2016-12-31 22:45 - 2016-07-16 12:47 - 00000000 ____D C:\Users\Default User\AppData\Local
2016-12-31 22:45 - 2015-09-18 12:38 - 00000000 ____D C:\Program Files (x86)\Seznam.cz
2016-12-31 22:30 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\Tasks
2016-12-31 22:29 - 2015-12-12 16:08 - 00000052 _____ C:\WINDOWS\SysWOW64\DOErrors.log
2016-12-31 19:06 - 2016-06-02 18:16 - 00000000 ____D C:\Users\konec\Documents\Camtasia Studio
2016-12-31 09:40 - 2016-09-21 13:25 - 05027312 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-12-31 09:15 - 2016-07-16 12:47 - 00000000 __RSD C:\WINDOWS\Fonts
2016-12-31 09:15 - 2016-06-02 18:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TechSmith
2016-12-31 09:14 - 2016-07-16 07:04 - 00000000 ___RD C:\Program Files
2016-12-31 09:14 - 2016-06-02 18:14 - 00000000 ____D C:\ProgramData\TechSmith
==================== Files in the root of some directories =======
2016-08-06 09:20 - 2016-08-06 09:20 - 0000000 ___SH () C:\Users\konec\AppData\Local\LumaEmu
2016-07-12 10:48 - 2016-07-12 10:48 - 0002218 _____ () C:\Users\konec\AppData\Local\recently-used.xbel
2016-08-29 15:18 - 2016-06-30 15:18 - 0000032 ____R () C:\ProgramData\hash.dat
2015-09-16 20:01 - 2015-09-16 20:25 - 0000840 _____ () C:\ProgramData\hpzinstall.log
Files to move or delete:
====================
C:\ProgramData\hash.dat
Some files in TEMP:
====================
2017-01-25 20:24 - 2017-01-25 20:24 - 0739904 _____ (Oracle Corporation) C:\Users\konec\AppData\Local\Temp\jre-8u121-windows-au.exe
Some zero byte size files/folders:
==========================
C:\Windows\SysWOW64\lastpass_1337.exe
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe
[2016-12-10 07:29] - [2016-11-11 10:05] - 0673792 ____A (Microsoft Corporation) DE6DF9BBBECAFDEF462A37D839167368
C:\WINDOWS\system32\wininit.exe
[2016-07-16 12:42] - [2016-07-16 12:42] - 0304240 ____A (Microsoft Corporation) 99A19C9A74E2F9820E501DCE77F84F70
C:\WINDOWS\explorer.exe
[2016-12-10 07:28] - [2016-11-11 10:56] - 4673304 ____A (Microsoft Corporation) 4E10FB1A015B49AC68F76C1A3F4D9C0F
C:\WINDOWS\SysWOW64\explorer.exe
[2016-12-10 07:29] - [2016-11-11 08:41] - 4311736 ____A (Microsoft Corporation) AF46710DDB8B0E304AA4FD2B940CABD8
C:\WINDOWS\system32\svchost.exe
[2016-07-16 12:42] - [2016-07-16 12:42] - 0044496 ____A (Microsoft Corporation) 36F670D89040709013F6A460176767EC
C:\WINDOWS\SysWOW64\svchost.exe
[2016-07-16 12:42] - [2016-07-16 12:42] - 0038792 ____A (Microsoft Corporation) 1F8434DD4907C832E6E90D6298EAB85B
C:\WINDOWS\system32\services.exe
[2016-12-10 07:29] - [2016-11-11 10:51] - 0454592 ____A (Microsoft Corporation) 3C69CC28665854F1AAB4B4005005FA31
C:\WINDOWS\system32\User32.dll
[2016-10-30 17:11] - [2016-10-15 05:22] - 1461200 ____A (Microsoft Corporation) 5757459686554B784F3CCE8C3BAF6D8B
C:\WINDOWS\SysWOW64\User32.dll
[2016-10-30 17:09] - [2016-10-15 05:11] - 1435896 ____A (Microsoft Corporation) 7F1F8A3AF8CDA9368966E22AE64D5C9E
C:\WINDOWS\system32\userinit.exe
[2016-07-16 12:42] - [2016-07-16 12:42] - 0033280 ____A (Microsoft Corporation) C1B1FFC800BE2F31EB2CF8CB40629C69
C:\WINDOWS\SysWOW64\userinit.exe
[2016-07-16 12:42] - [2016-07-16 12:42] - 0027648 ____A (Microsoft Corporation) FA900E6CCCF0A429D5B720C6F0E2274B
C:\WINDOWS\system32\rpcss.dll
[2016-07-16 12:42] - [2016-07-16 12:42] - 0888320 ____A (Microsoft Corporation) 7BD259FC59CF9C2AE1B979564B374CC6
C:\WINDOWS\system32\dnsapi.dll
[2016-09-30 07:43] - [2016-09-15 18:30] - 0646136 ____A (Microsoft Corporation) 96B8A433F6407DE34850927C96C6CE9B
C:\WINDOWS\SysWOW64\dnsapi.dll
[2016-09-30 07:42] - [2016-09-15 18:37] - 0496872 ____A (Microsoft Corporation) 227CFE3EDA82029AAC1C088A16297CD7
C:\WINDOWS\system32\Drivers\volsnap.sys
[2016-07-16 12:42] - [2016-07-16 12:42] - 0391520 ____A (Microsoft Corporation) BF2546583BB75F01DDA60A7921DFB230
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\HPCeeScheduleForkonec.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\konec\Desktop" je 27588 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
==================== End Of Log ==============================
Ran by konec (administrator) on LUKÁŠ (30-01-2017 20:55:24)
Running from C:\Users\konec\Desktop
Loaded Profiles: konec (Available Profiles: konec)
Platform: Windows 10 Home Version 1607 (X64) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Intel Corporation) C:\Windows\System32\igfxCUIService.exe
(Hewlett-Packard Company) C:\Windows\System32\hpservice.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
() C:\Windows\System32\fpCSEvtSvc.exe
(Hi-Rez Studios) C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe
(Microsoft Corporation) C:\Windows\SysWOW64\svchost.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\ClientX64\officeclicktorun.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe
(Synaptics Incorporated) C:\Windows\System32\valWBFPolicyService.exe
(TeamViewer GmbH) C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(Microsoft Corporation) C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe
(Microsoft Corporation) C:\Windows\System32\InputMethod\CHT\ChtIME.exe
(Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
(Intel Corporation) C:\Windows\System32\igfxEM.exe
(Intel Corporation) C:\Windows\System32\igfxHK.exe
(Intel Corporation) C:\Windows\System32\igfxTray.exe
(Microsoft Corporation) C:\Windows\System32\SettingSyncHost.exe
(Microsoft Corporation) C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe
() C:\Program Files (x86)\Gaming Keyboard\Monitor.EXE
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
() C:\Program Files (x86)\Gaming Keyboard\OSD.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ADS\Adobe Desktop Service.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\CCXProcess.exe
(Node.js) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\libs\node.exe
(Disc Soft Ltd) C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler.exe
(Google Inc.) C:\Program Files (x86)\Google\Update\1.3.32.7\GoogleCrashHandler64.exe
(HP Inc.) C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe
(Hewlett-Packard Company) C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
() C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.152.0_x64__kzf8qxf38zg5c\SkypeHost.exe
(Microsoft Corporation) C:\Program Files\Microsoft Office 15\root\office15\OUTLOOK.EXE
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\InputMethod\CHT\ChtIME.exe
(Microsoft Corporation) C:\Windows\System32\smartscreen.exe
(forum.viry.cz) C:\Users\konec\Desktop\FRSTLauncher.exe
==================== Registry (Whitelisted) ====================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [3944136 2015-07-03] (Synaptics Incorporated)
HKLM\...\Run: [XboxStat] => C:\Program Files\Microsoft Xbox 360 Accessories\XboxStat.exe [825184 2009-10-01] (Microsoft Corporation)
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [sun21] => [X]
HKLM-x32\...\Run: [Adobe Creative Cloud] => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2380480 2016-07-18] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [9080768 2016-12-08] (AVAST Software)
HKLM-x32\...\Run: [VICTORY Gaming Keyboard] => C:\Program Files (x86)\Gaming Keyboard\Monitor.exe [270336 2013-04-09] ()
HKLM-x32\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [5565960 2016-11-11] (LogMeIn Inc.)
HKLM-x32\...\Run: [seznam-listicka-distribuce] => C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [1062472 2013-05-16] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [587288 2016-12-12] (Oracle Corporation)
HKLM\...\Winlogon: [Userinit] wscript C:\WINDOWS\run.vbs,
HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [9288408 2016-12-06] (Piriform Ltd)
HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [2876704 2016-12-20] (Valve Corporation)
HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\Run: [uTorrent] => C:\Users\konec\AppData\Roaming\uTorrent\uTorrent.exe [1979072 2016-12-20] (BitTorrent Inc.)
HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\Run: [DAEMON Tools Lite Automount] => C:\Program Files\DAEMON Tools Lite\DTAgent.exe [4557504 2016-10-06] (Disc Soft Ltd)
HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\Run: [Dxtory Update Checker 2.0] => C:\Program Files (x86)\Dxtory Software\Dxtory2.0\UpdateChecker.exe [93696 2010-10-17] (Dxtory Software)
HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\Run: [cz.seznam.software.autoupdate] => C:\Users\konec\AppData\Roaming\Seznam.cz\szninstall.exe [1062472 2013-05-16] ()
HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\Run: [cz.seznam.software.szndesktop] => C:\Users\konec\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [103080 2015-05-26] ()
HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\Run: [Bloody2] => C:\Program Files (x86)\Bloody6\Bloody6\Bloody6.exe [19335680 2016-12-29] ()
HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\MountPoints2: {2cd994c5-ab27-11e6-9c51-70188b5d0a0c} - "G:\SETUP.EXE"
HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\MountPoints2: {2cd99525-ab27-11e6-9c51-70188b5d0a0c} - "F:\SETUP.EXE"
ShellIconOverlayIdentifiers: [ AccExtIco1] -> {AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
ShellIconOverlayIdentifiers: [ AccExtIco2] -> {853B7E05-C47D-4985-909A-D0DC5C6D7303} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
ShellIconOverlayIdentifiers: [ AccExtIco3] -> {42D38F2E-98E9-4382-B546-E24E4D6D04BB} => C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll [2016-05-22] ()
ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> No File
ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> No File
ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> No File
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShA64.dll [2016-09-17] (AVAST Software)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro1 (ErrorConflict)] -> {8BA85C75-763B-4103-94EB-9470F12FE0F7} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-11-01] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro2 (SyncInProgress)] -> {CD55129A-B1A1-438E-A425-CEBC7DC684EE} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-11-01] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [ SkyDrivePro3 (InSync)] -> {E768CD3B-BDDC-436D-9C13-E1B39CA257B1} => C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-11-01] (Microsoft Corporation)
ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> No File
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> No File
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> No File
GroupPolicy: Restriction - Chrome <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{96a3450a-73fe-4708-bf6a-bc24ef4ef474}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{cb765dfe-2717-48f2-a20b-ceceba2a9d9d}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = hxxp://www.google.com
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = hxxp://www.google.com
HKU\S-1-5-21-466670803-733275211-1192568883-1001\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = hxxp://www.msn.com/?ocid=iehp
SearchScopes: HKU\S-1-5-21-466670803-733275211-1192568883-1001 -> {5D308757-C7A0-45E8-BCAF-4BA517941E6F} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_14875
BHO: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\OCHelper.dll [2016-12-13] (Microsoft Corporation)
BHO: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX64\Microsoft Office\Office15\GROOVEEX.DLL [2016-11-01] (Microsoft Corporation)
BHO-x32: Skype for Business Browser Helper -> {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} -> C:\Program Files\Microsoft Office 15\root\Office15\OCHelper.dll [2016-12-13] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\ssv.dll [2017-01-25] (Oracle Corporation)
BHO-x32: Microsoft SkyDrive Pro Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files\Microsoft Office 15\root\Office15\GROOVEEX.DLL [2016-11-01] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-01-25] (Oracle Corporation)
Handler-x32: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office 15\root\Office15\MSOSB.DLL [2016-04-20] (Microsoft Corporation)
Edge:
======
Edge HomeButtonPage: HKU\S-1-5-21-466670803-733275211-1192568883-1001 -> hxxp://www.yoursites123.com/?type=hp&ts=145267 ... X8362S4JYS
FireFox:
========
FF ProfilePath: C:\Users\konec\AppData\Roaming\Mozilla\Firefox\Profiles\g7v2z3f7.default-1480100872724 [2017-01-30]
FF Extension: (Seznam lištička) - C:\Users\konec\AppData\Roaming\Mozilla\Firefox\Profiles\g7v2z3f7.default-1480100872724\Extensions\{ea614400-e918-4741-9a97-7a972ff7c30b} [2016-12-31]
FF Extension: (Java Console) - C:\Program Files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0017-0000-0000-ABCDEFFEDCBA} [2016-11-05] [not signed]
FF HKLM\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF Extension: (Avast SafePrice) - C:\Program Files\AVAST Software\Avast\SafePrice\FF [2016-09-17]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: (Avast Online Security) - C:\Program Files\AVAST Software\Avast\WebRep\FF [2016-09-17]
FF HKLM-x32\...\Firefox\Extensions: [sp@avast.com] - C:\Program Files\AVAST Software\Avast\SafePrice\FF
FF HKLM-x32\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll [2016-07-18] (Adobe Systems)
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\WINDOWS\SysWOW64\Adobe\Director\np32dsw_1225195.dll [2016-09-20] (Adobe Systems, Inc.)
FF Plugin-x32: @Google.com/GoogleEarthPlugin -> C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll [2016-10-06] (Google)
FF Plugin-x32: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-01-25] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files (x86)\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-01-25] (Oracle Corporation)
FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files\Microsoft Office 15\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2016-07-12] (Microsoft Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files (x86)\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files\Microsoft Office 15\root\Office15\NPSPWRAP.DLL [2015-09-09] (Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2016-12-17] (Google Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll [2016-07-18] (Adobe Systems)
FF Plugin HKU\S-1-5-21-466670803-733275211-1192568883-1001: @nsroblox.roblox.com/launcher -> C:\Users\konec\AppData\Local\Roblox\Versions\version-7b8ced67462c404f\\NPRobloxProxy.dll [2013-01-01] ( ROBLOX Corporation)
FF Plugin HKU\S-1-5-21-466670803-733275211-1192568883-1001: @nsroblox.roblox.com/launcher64 -> C:\Users\konec\AppData\Local\Roblox\Versions\version-7b8ced67462c404f\\NPRobloxProxy64.dll [2013-01-01] ( ROBLOX Corporation)
FF Plugin HKU\S-1-5-21-466670803-733275211-1192568883-1001: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\konec\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2009-11-30] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-466670803-733275211-1192568883-1001: SkypePlugin -> C:\Users\konec\AppData\Local\SkypePlugin\7.19.0.182\npGatewayNpapi.dll [2016-05-27] (Skype Technologies S.A.)
FF Plugin HKU\S-1-5-21-466670803-733275211-1192568883-1001: SkypePlugin64 -> C:\Users\konec\AppData\Local\SkypePlugin\7.19.0.182\npGatewayNpapi-x64.dll [2016-05-27] (Skype Technologies S.A.)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> amazon.com/websearch/?ie=UTF8__PARAM__
CHR DefaultSearchURL: Default -> hxxps://www.amazon.com/websearch/?ie=UTF8__PARA ... earchTerms}
CHR DefaultSearchKeyword: Default -> amazon
CHR Profile: C:\Users\konec\AppData\Local\Google\Chrome\User Data\Default [2017-01-30]
CHR Extension: (Disk Google) - C:\Users\konec\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2016-03-18]
CHR Extension: (YouTube) - C:\Users\konec\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2016-03-18]
CHR Extension: (Vyhledávání Google) - C:\Users\konec\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2016-03-07]
CHR Extension: (Vysoký kontrast) - C:\Users\konec\AppData\Local\Google\Chrome\User Data\Default\Extensions\djcfdncoelnlbldjfhinnjlhdjlikmph [2017-01-30]
CHR Extension: (MopeX - Ultimate Mope.io Mods + Sandbox) - C:\Users\konec\AppData\Local\Google\Chrome\User Data\Default\Extensions\ealcighliccncahjkkggpchpcbphfaok [2017-01-30]
CHR Extension: (Agar.io Powerups Guide) - C:\Users\konec\AppData\Local\Google\Chrome\User Data\Default\Extensions\hnfiiapoopclmhaikgpbgddfpmmddmeo [2016-07-12]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\konec\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-01-19]
CHR Extension: (Gmail) - C:\Users\konec\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2016-03-18]
CHR Extension: (Chrome Media Router) - C:\Users\konec\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2016-12-16]
CHR HKLM-x32\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - hxxps://clients2.google.com/service/update2/crx
CHR HKLM-x32\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
ATTENTION: => Could not perform signature verification. Cryptographic Service is not running.
R2 AdobeUpdateService; C:\Program Files (x86)\Common Files\Adobe\Adobe Desktop Common\ElevationManager\AdobeUpdateService.exe [741568 2016-07-18] (Adobe Systems Incorporated)
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [197128 2016-09-17] (AVAST Software)
S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [1447944 2017-01-07] ()
R2 ClickToRunSvc; C:\Program Files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [3042032 2016-12-13] (Microsoft Corporation)
R3 Disc Soft Lite Bus Service; C:\Program Files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [1468608 2016-10-06] (Disc Soft Ltd)
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [395536 2016-12-28] (EasyAntiCheat Ltd)
R2 fpCsEvtSvc; C:\WINDOWS\system32\fpCSEvtSvc.exe [22528 2015-06-10] ()
S2 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [2627080 2016-11-11] (LogMeIn Inc.)
R2 HPSupportSolutionsFrameworkService; C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\HPSupportSolutionsFrameworkService.exe [31776 2016-12-07] (HP Inc.)
R2 igfxCUIService1.0.0.0; C:\WINDOWS\system32\igfxCUIService.exe [337888 2016-05-03] (Intel Corporation)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-11-11] (LogMeIn, Inc.)
S3 npggsvc; C:\WINDOWS\SysWOW64\GameMon.des [3780544 2016-01-17] (INCA Internet Co., Ltd.)
R2 SynTPEnhService; C:\Program Files\Synaptics\SynTP\SynTPEnhService.exe [246472 2015-07-03] (Synaptics Incorporated)
R2 TeamViewer; C:\Program Files (x86)\TeamViewer\TeamViewer_Service.exe [7500048 2016-09-20] (TeamViewer GmbH)
R2 valWBFPolicyService; C:\WINDOWS\system32\valWBFPolicyService.exe [53248 2015-06-10] (Synaptics Incorporated)
S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [347328 2016-07-16] (Microsoft Corporation)
S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103720 2016-07-16] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R0 amdkmpfd; C:\WINDOWS\System32\drivers\amdkmpfd.sys [91400 2015-10-10] (Advanced Micro Devices, Inc.)
S3 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [37656 2016-09-17] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [37144 2016-09-17] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [108816 2016-09-17] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr2.sys [103064 2016-09-17] (AVAST Software)
R0 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [74544 2016-09-17] (AVAST Software)
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [969184 2016-09-17] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [513632 2016-10-03] (AVAST Software)
S2 aswStm; C:\WINDOWS\system32\drivers\aswStm.sys [163416 2016-09-17] (AVAST Software)
R0 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [293352 2016-10-13] (AVAST Software)
S3 dg_ssudbus; C:\WINDOWS\system32\DRIVERS\ssudbus.sys [131712 2016-09-05] (Samsung Electronics Co., Ltd.)
S3 dot4; C:\WINDOWS\system32\DRIVERS\Dot4.sys [151968 2012-10-19] (Windows (R) Win 7 DDK provider)
S3 Dot4Print; C:\WINDOWS\System32\drivers\Dot4Prt.sys [27040 2012-10-19] (Windows (R) Win 7 DDK provider)
R3 dtlitescsibus; C:\WINDOWS\System32\drivers\dtlitescsibus.sys [30264 2016-03-22] (Disc Soft Ltd)
R3 dtliteusbbus; C:\WINDOWS\System32\drivers\dtliteusbbus.sys [47672 2016-03-22] (Disc Soft Ltd)
R3 Hamachi; C:\WINDOWS\System32\drivers\Hamdrv.sys [45680 2015-08-03] (LogMeIn Inc.)
S3 NetAdapterCx; C:\WINDOWS\System32\drivers\NetAdapterCx.sys [90624 2016-07-16] ()
R3 netr28x; C:\WINDOWS\system32\DRIVERS\netr28x.sys [2554528 2015-06-12] (MediaTek Inc.)
R3 rtbth; C:\WINDOWS\System32\drivers\rtbth.sys [1219200 2015-06-03] (Ralink Technology, Corp.)
R3 SPUVCbv; C:\WINDOWS\System32\Drivers\SPUVCbv64.sys [760832 2016-03-09] (Sunplus)
S3 ssudmdm; C:\WINDOWS\system32\DRIVERS\ssudmdm.sys [165504 2016-09-05] (Samsung Electronics Co., Ltd.)
R1 VBoxUSBMon; C:\WINDOWS\system32\DRIVERS\VBoxUSBMon.sys [133248 2016-07-06] (BigNox Corporation)
S3 WdBoot; C:\WINDOWS\system32\drivers\WdBoot.sys [44056 2016-07-16] (Microsoft Corporation)
S3 WdFilter; C:\WINDOWS\system32\drivers\WdFilter.sys [290144 2016-07-16] (Microsoft Corporation)
S3 WdNisDrv; C:\WINDOWS\System32\Drivers\WdNisDrv.sys [123232 2016-07-16] (Microsoft Corporation)
R3 WirelessButtonDriver64; C:\WINDOWS\System32\drivers\WirelessButtonDriver64.sys [30544 2016-02-17] (HP)
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One Month Created files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-01-30 20:55 - 2017-01-30 20:56 - 00023612 _____ C:\Users\konec\Desktop\FRST.txt
2017-01-30 20:54 - 2017-01-30 20:55 - 00000000 ____D C:\FRST
2017-01-30 20:53 - 2017-01-30 20:54 - 00112640 _____ (forum.viry.cz) C:\Users\konec\Desktop\FRSTLauncher.exe
2017-01-30 20:43 - 2017-01-30 20:54 - 02420736 _____ (Farbar) C:\Users\konec\Desktop\FRST64.exe
2017-01-30 17:09 - 2017-01-30 17:09 - 00000000 ____D C:\Users\konec\AppData\Roaming\Aha-Soft
2017-01-30 17:06 - 2017-01-30 17:06 - 00000000 ____D C:\Users\konec\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IconLover
2017-01-30 17:06 - 2017-01-30 17:06 - 00000000 ____D C:\Program Files (x86)\IconLover
2017-01-30 17:05 - 2017-01-30 17:05 - 11587399 _____ C:\Users\konec\Downloads\iconlove.zip
2017-01-29 20:43 - 2017-01-29 20:43 - 00000000 ____D C:\WINDOWS\System32\Tasks\AVAST Software
2017-01-29 20:43 - 2017-01-29 20:43 - 00000000 ____D C:\Program Files\Common Files\AV
2017-01-29 10:00 - 2017-01-29 10:00 - 00000000 ____D C:\Users\konec\Desktop\V1.05_Raft_Win64
2017-01-29 09:59 - 2017-01-29 10:00 - 122828082 _____ C:\Users\konec\Downloads\V1.05_Raft_Win64.zip
2017-01-29 09:59 - 2017-01-29 09:59 - 03175923 _____ C:\Users\konec\Downloads\Demp(v1.02c) for Raft v1.05.rar
2017-01-29 07:52 - 2017-01-29 11:23 - 00000000 ____D C:\_logs
2017-01-28 19:25 - 2017-01-28 19:55 - 00000000 ____D C:\Users\konec\Downloads\Skate 3 RF
2017-01-28 10:00 - 2017-01-28 10:00 - 71248481 _____ C:\Users\konec\Downloads\Geometry.Dash.v2.10.Update.4.rar
2017-01-27 21:05 - 2017-01-27 21:05 - 05877760 _____ C:\Users\konec\Downloads\hamachi-2-2-0-105.msi
2017-01-27 15:08 - 2017-01-27 15:08 - 00427008 _____ C:\Users\konec\Downloads\Facebook Comment Spammer (1).exe
2017-01-26 15:31 - 2017-01-26 15:32 - 00427008 _____ C:\Users\konec\Downloads\Facebook Comment Spammer.exe
2017-01-25 15:49 - 2017-01-25 15:49 - 00000000 ____D C:\Users\konec\AppData\LocalLow\OldBlood Productions
2017-01-25 15:42 - 2017-01-25 15:42 - 71351675 _____ C:\Users\konec\Downloads\Standalone.zip
2017-01-25 11:17 - 2017-01-25 11:17 - 00000000 ____D C:\Users\konec\AppData\LocalLow\MihkelT
2017-01-25 11:16 - 2017-01-25 11:16 - 66719478 _____ C:\Users\konec\Downloads\Circle-Empires.zip
2017-01-23 18:34 - 2017-01-23 18:34 - 00008630 _____ C:\Users\konec\Downloads\McCitronovy-kurzory.rar
2017-01-23 18:30 - 2017-01-23 18:30 - 00036273 _____ C:\Users\konec\Downloads\minecraft-diamond-edition.zip
2017-01-20 19:34 - 2017-01-20 19:35 - 21861617 _____ C:\Users\konec\Downloads\StrandedRaft.zip
2017-01-18 15:53 - 2017-01-18 15:53 - 00000000 ____D C:\Users\konec\AppData\LocalLow\Pixel Federation
2017-01-16 13:19 - 2017-01-16 13:19 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Bloody
2017-01-16 13:14 - 2017-01-16 13:15 - 27490066 _____ C:\Users\konec\Downloads\Bloody6_V2016.1229_US.zip
2017-01-15 14:16 - 2017-01-15 16:43 - 00000000 ____D C:\Users\konec\AppData\Local\Battle.net
2017-01-15 14:16 - 2017-01-15 14:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2017-01-15 14:15 - 2017-01-15 14:16 - 00000000 ____D C:\Program Files (x86)\Battle.net
2017-01-15 14:15 - 2017-01-15 14:15 - 03319280 _____ (Blizzard Entertainment) C:\Users\konec\Downloads\Hearthstone-Setup (1).exe
2017-01-15 09:13 - 2017-01-15 09:13 - 00528108 _____ () C:\Users\konec\Downloads\gota (8).exe
2017-01-14 14:31 - 2017-01-14 14:32 - 04748905 _____ C:\Users\konec\Downloads\GSplay (1).zip
2017-01-13 19:22 - 2017-01-13 19:22 - 00000000 ____D C:\Users\konec\AppData\LocalLow\Mana Potion Studios
2017-01-13 19:16 - 2017-01-13 19:16 - 84860861 _____ C:\Users\konec\Downloads\Happy.Room.v10.01.2017.rar
2017-01-11 08:18 - 2017-01-11 08:18 - 00081880 _____ C:\Users\konec\Documents\cc_20170111_081815.reg
2017-01-10 14:44 - 2017-01-10 15:18 - 00000000 ____D C:\Users\konec\AppData\Roaming\Little Inferno
2017-01-10 14:41 - 2017-01-10 14:44 - 198995456 _____ (Experimental Gameplay Group LLC) C:\Users\konec\Downloads\Little Inferno.exe
2017-01-10 14:34 - 2017-01-10 15:21 - 00000000 ____D C:\Rust
2017-01-10 14:15 - 2017-01-10 14:16 - 00000000 ____D C:\Users\konec\Downloads\Rust_1949_6.01.2017
2017-01-10 14:15 - 2017-01-10 14:15 - 00004067 _____ C:\Users\konec\Downloads\Rust_1949_6.01.2017.torrent
2017-01-09 13:26 - 2017-01-09 13:26 - 00000000 ____D C:\Users\konec\Documents\WB Games
2017-01-08 16:54 - 2017-01-08 16:54 - 00000000 ____D C:\Users\konec\AppData\Roaming\istrolid
2017-01-08 16:32 - 2017-01-08 16:32 - 00000000 ____D C:\Users\konec\AppData\Local\Introversion
2017-01-08 16:27 - 2017-01-08 16:27 - 24374304 _____ C:\Users\konec\Downloads\prison-architect-alpha-27-cz.rar
2017-01-08 16:26 - 2017-01-08 16:27 - 366997633 _____ C:\Users\konec\Downloads\Prison.Architect.Update.11d.rar
2017-01-08 09:58 - 2017-01-08 10:00 - 00000000 ____D C:\Users\konec\AppData\Roaming\SpaceEngineers
2017-01-08 09:51 - 2017-01-08 09:55 - 259789478 _____ C:\Users\konec\Downloads\Space Engineers v01.014.010.7z
2017-01-08 08:25 - 2017-01-08 08:25 - 00000000 ____D C:\Users\konec\AppData\LocalLow\Landfall
2017-01-08 08:21 - 2017-01-08 08:22 - 340295204 _____ C:\Users\konec\Downloads\Zilak - Get ClusterTruck For Free.rar
2017-01-03 17:31 - 2017-01-03 17:31 - 35730171 _____ C:\Users\konec\Downloads\Zilak - Get SUPERTRUCK For Free.rar
2016-12-31 22:45 - 2016-12-31 22:45 - 00000000 ____D C:\Users\Default\AppData\Local\MicrosoftEdge
2016-12-31 22:45 - 2016-12-31 22:45 - 00000000 ____D C:\Users\Default User\AppData\Local\MicrosoftEdge
2016-12-31 22:43 - 2016-12-31 22:43 - 00000000 ____D C:\Users\konec\AppData\Local\Dxtory Software
2016-12-31 22:42 - 2016-12-31 22:42 - 12577340 _____ C:\Users\konec\Downloads\dxtory_2.0.122.exe
2016-12-31 22:42 - 2016-12-31 22:42 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dxtory2.0
2016-12-31 22:42 - 2016-12-31 22:42 - 00000000 ____D C:\Program Files (x86)\Dxtory Software
2016-12-31 22:42 - 2013-02-15 22:44 - 08300544 _____ (Dxtory Software) C:\WINDOWS\SysWOW64\DxtoryCodec.dll
2016-12-31 22:42 - 2013-02-15 22:44 - 08043008 _____ (Dxtory Software) C:\WINDOWS\system32\DxtoryCodec.dll
2016-12-31 22:40 - 2016-12-31 22:40 - 04316232 _____ (MAGIX Software GmbH) C:\Users\konec\Downloads\trial_vegaspro14.exe
2016-12-31 09:14 - 2016-12-31 09:14 - 00000000 ____D C:\Program Files\TechSmith
2016-12-31 09:11 - 2016-12-31 09:13 - 285104960 _____ (TechSmith Corporation) C:\Users\konec\Downloads\camtasia (2).exe
2016-12-31 07:37 - 2016-12-31 07:37 - 00123523 _____ C:\Users\konec\Downloads\Paladins 1.2h.rar
==================== One Month Modified files and folders ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2017-01-30 20:56 - 2015-09-09 21:11 - 00000000 ____D C:\Users\konec\AppData\Roaming\Skype
2017-01-30 20:54 - 2015-09-09 22:26 - 00000000 ____D C:\Users\konec\Documents\Soubory aplikace Outlook
2017-01-30 19:00 - 2016-09-21 13:25 - 00000000 ____D C:\WINDOWS\system32\SleepStudy
2017-01-30 17:19 - 2016-04-27 17:13 - 00000000 ___RD C:\Users\konec\Desktop\
2017-01-30 16:51 - 2016-07-16 12:36 - 00000000 ____D C:\WINDOWS\CbsTemp
2017-01-30 16:30 - 2015-09-09 21:00 - 00000000 __SHD C:\Users\konec\IntelGraphicsProfiles
2017-01-30 16:29 - 2016-09-21 13:35 - 00000000 ____D C:\Users\konec
2017-01-30 16:28 - 2016-12-28 09:20 - 00000000 ____D C:\Program Files (x86)\Hi-Rez Studios
2017-01-30 16:27 - 2016-09-21 14:18 - 00000006 ____H C:\WINDOWS\Tasks\SA.DAT
2017-01-30 16:27 - 2016-09-21 13:28 - 00000000 ____D C:\ProgramData\Validity
2017-01-30 14:24 - 2015-10-02 15:17 - 00000000 ____D C:\Program Files (x86)\Steam
2017-01-29 21:52 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\LiveKernelReports
2017-01-29 21:08 - 2016-03-31 08:52 - 00000000 ____D C:\rsit
2017-01-29 21:04 - 2016-03-31 08:52 - 00000000 ____D C:\Program Files\trend micro
2017-01-29 21:04 - 2015-09-09 21:16 - 00000000 ___RD C:\Users\konec\Desktop\Soubory pro taťku
2017-01-29 20:35 - 2016-12-10 18:24 - 00000344 _____ C:\WINDOWS\Tasks\HPCeeScheduleForkonec.job
2017-01-29 20:34 - 2016-07-16 07:04 - 00786432 _____ C:\WINDOWS\system32\config\BBI
2017-01-29 20:26 - 2015-09-22 17:15 - 00000000 ____D C:\Users\konec\AppData\Roaming\uTorrent
2017-01-29 19:31 - 2015-09-10 15:36 - 00000000 ____D C:\Users\konec\AppData\Roaming\.minecraft
2017-01-29 16:30 - 2016-12-10 18:25 - 00003236 _____ C:\WINDOWS\System32\Tasks\HPCeeScheduleForkonec
2017-01-29 09:57 - 2016-01-28 20:20 - 00541432 _____ C:\WINDOWS\system32\Drivers\EasyAntiCheat.sys
2017-01-28 13:37 - 2016-07-16 12:47 - 00000000 ____D C:\WINDOWS\AppReadiness
2017-01-28 11:02 - 2016-06-05 03:20 - 00000000 ____D C:\Users\konec\AppData\Local\CrashDumps
2017-01-28 10:30 - 2015-10-16 19:11 - 00000000 ____D C:\Users\konec\AppData\Local\GeometryDash
2017-01-27 21:08 - 2016-07-10 07:53 - 00000000 ____D C:\Users\konec\AppData\Local\LogMeIn Hamachi
2017-01-27 21:08 - 2016-07-08 14:19 - 00000922 _____ C:\Users\konec\Documents\hamachi_test_report.txt
2017-01-27 13:22 - 2016-07-16 12:47 - 00000000 ___HD C:\Program Files\WindowsApps
2017-01-26 16:07 - 2015-11-28 18:52 - 00000000 ____D C:\Users\konec\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Roblox
2017-01-25 20:35 - 2015-09-09 21:00 - 00000000 ____D C:\Users\konec\AppData\Local\Packages
2017-01-25 20:28 - 2015-09-11 08:44 - 00000000 ____D C:\ProgramData\Oracle
2017-01-25 20:27 - 2015-09-11 08:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-01-25 20:27 - 2015-09-11 08:44 - 00000000 ____D C:\Program Files (x86)\Java
2017-01-25 20:26 - 2015-09-11 08:44 - 00097856 _____ (Oracle Corporation) C:\WINDOWS\SysWOW64\WindowsAccessBridge-32.dll
2017-01-21 17:33 - 2016-06-19 06:12 - 00000000 ____D C:\Users\konec\Counter-Strike 1.6
2017-01-21 10:47 - 2015-10-02 17:02 - 00000000 ____D C:\Users\konec\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
2017-01-20 19:01 - 2016-11-25 20:07 - 00000000 ____D C:\Users\konec\AppData\LocalLow\Mozilla
2017-01-20 09:09 - 2015-09-09 21:34 - 00000000 ____D C:\Users\konec\AppData\Local\ElevatedDiagnostics
2017-01-19 21:10 - 2016-02-01 15:34 - 00000000 ____D C:\Program Files (x86)\TeamViewer
2017-01-18 19:35 - 2016-09-21 14:17 - 00004278 _____ C:\WINDOWS\System32\Tasks\avast! Emergency Update
2017-01-18 10:54 - 2016-07-16 12:47 - 00000000 ____D C:\ProgramData\regid.1991-06.com.microsoft
2017-01-18 10:53 - 2015-09-09 22:04 - 00000000 ____D C:\Program Files\Microsoft Office 15
2017-01-15 21:26 - 2014-01-16 09:57 - 00000000 ____D C:\Users\konec\Documents\Michal
2017-01-15 14:16 - 2016-09-17 13:20 - 00000000 ____D C:\Users\konec\AppData\Roaming\Battle.net
2017-01-14 06:51 - 2015-09-09 21:10 - 00000000 ____D C:\ProgramData\Skype
2017-01-12 13:12 - 2016-07-16 12:45 - 00000000 ____D C:\WINDOWS\INF
2017-01-12 11:37 - 2015-09-09 21:55 - 00000000 ____D C:\WINDOWS\system32\MRT
2017-01-12 10:11 - 2015-09-09 21:55 - 135657872 ____C (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2017-01-11 08:17 - 2016-12-30 08:44 - 00000000 ____D C:\Users\konec\AppData\Roaming\TS3Client
2017-01-11 08:17 - 2016-10-13 12:52 - 00000000 ____D C:\WINDOWS\Minidump
2017-01-10 14:49 - 2015-11-19 16:14 - 00000000 ____D C:\ProgramData\Package Cache
2017-01-10 14:39 - 2016-11-26 08:59 - 00000000 ____D C:\WINDOWS\SysWOW64\directx
2017-01-10 14:39 - 2016-03-05 12:58 - 00000000 ___HD C:\WINDOWS\msdownld.tmp
2017-01-08 08:24 - 2016-01-15 19:52 - 00000000 ____D C:\Users\konec\Documents\My Games
2017-01-07 12:47 - 2016-08-02 15:20 - 00000000 ____D C:\Users\konec\AppData\LocalLow\Smartly Dressed Games
2016-12-31 22:46 - 2015-09-18 12:38 - 00000000 ____D C:\Users\konec\AppData\Roaming\Seznam.cz
2016-12-31 22:45 - 2016-07-16 12:47 - 00000000 ____D C:\Users\Default\AppData\Local\Microsoft
2016-12-31 22:45 - 2016-07-16 12:47 - 00000000 ____D C:\Users\Default\AppData\Local
2016-12-31 22:45 - 2016-07-16 12:47 - 00000000 ____D C:\Users\Default User\AppData\Local\Microsoft
2016-12-31 22:45 - 2016-07-16 12:47 - 00000000 ____D C:\Users\Default User\AppData\Local
2016-12-31 22:45 - 2015-09-18 12:38 - 00000000 ____D C:\Program Files (x86)\Seznam.cz
2016-12-31 22:30 - 2015-07-10 12:04 - 00000000 ____D C:\WINDOWS\Tasks
2016-12-31 22:29 - 2015-12-12 16:08 - 00000052 _____ C:\WINDOWS\SysWOW64\DOErrors.log
2016-12-31 19:06 - 2016-06-02 18:16 - 00000000 ____D C:\Users\konec\Documents\Camtasia Studio
2016-12-31 09:40 - 2016-09-21 13:25 - 05027312 _____ C:\WINDOWS\system32\FNTCACHE.DAT
2016-12-31 09:15 - 2016-07-16 12:47 - 00000000 __RSD C:\WINDOWS\Fonts
2016-12-31 09:15 - 2016-06-02 18:15 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TechSmith
2016-12-31 09:14 - 2016-07-16 07:04 - 00000000 ___RD C:\Program Files
2016-12-31 09:14 - 2016-06-02 18:14 - 00000000 ____D C:\ProgramData\TechSmith
==================== Files in the root of some directories =======
2016-08-06 09:20 - 2016-08-06 09:20 - 0000000 ___SH () C:\Users\konec\AppData\Local\LumaEmu
2016-07-12 10:48 - 2016-07-12 10:48 - 0002218 _____ () C:\Users\konec\AppData\Local\recently-used.xbel
2016-08-29 15:18 - 2016-06-30 15:18 - 0000032 ____R () C:\ProgramData\hash.dat
2015-09-16 20:01 - 2015-09-16 20:25 - 0000840 _____ () C:\ProgramData\hpzinstall.log
Files to move or delete:
====================
C:\ProgramData\hash.dat
Some files in TEMP:
====================
2017-01-25 20:24 - 2017-01-25 20:24 - 0739904 _____ (Oracle Corporation) C:\Users\konec\AppData\Local\Temp\jre-8u121-windows-au.exe
Some zero byte size files/folders:
==========================
C:\Windows\SysWOW64\lastpass_1337.exe
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\WINDOWS\system32\winlogon.exe
[2016-12-10 07:29] - [2016-11-11 10:05] - 0673792 ____A (Microsoft Corporation) DE6DF9BBBECAFDEF462A37D839167368
C:\WINDOWS\system32\wininit.exe
[2016-07-16 12:42] - [2016-07-16 12:42] - 0304240 ____A (Microsoft Corporation) 99A19C9A74E2F9820E501DCE77F84F70
C:\WINDOWS\explorer.exe
[2016-12-10 07:28] - [2016-11-11 10:56] - 4673304 ____A (Microsoft Corporation) 4E10FB1A015B49AC68F76C1A3F4D9C0F
C:\WINDOWS\SysWOW64\explorer.exe
[2016-12-10 07:29] - [2016-11-11 08:41] - 4311736 ____A (Microsoft Corporation) AF46710DDB8B0E304AA4FD2B940CABD8
C:\WINDOWS\system32\svchost.exe
[2016-07-16 12:42] - [2016-07-16 12:42] - 0044496 ____A (Microsoft Corporation) 36F670D89040709013F6A460176767EC
C:\WINDOWS\SysWOW64\svchost.exe
[2016-07-16 12:42] - [2016-07-16 12:42] - 0038792 ____A (Microsoft Corporation) 1F8434DD4907C832E6E90D6298EAB85B
C:\WINDOWS\system32\services.exe
[2016-12-10 07:29] - [2016-11-11 10:51] - 0454592 ____A (Microsoft Corporation) 3C69CC28665854F1AAB4B4005005FA31
C:\WINDOWS\system32\User32.dll
[2016-10-30 17:11] - [2016-10-15 05:22] - 1461200 ____A (Microsoft Corporation) 5757459686554B784F3CCE8C3BAF6D8B
C:\WINDOWS\SysWOW64\User32.dll
[2016-10-30 17:09] - [2016-10-15 05:11] - 1435896 ____A (Microsoft Corporation) 7F1F8A3AF8CDA9368966E22AE64D5C9E
C:\WINDOWS\system32\userinit.exe
[2016-07-16 12:42] - [2016-07-16 12:42] - 0033280 ____A (Microsoft Corporation) C1B1FFC800BE2F31EB2CF8CB40629C69
C:\WINDOWS\SysWOW64\userinit.exe
[2016-07-16 12:42] - [2016-07-16 12:42] - 0027648 ____A (Microsoft Corporation) FA900E6CCCF0A429D5B720C6F0E2274B
C:\WINDOWS\system32\rpcss.dll
[2016-07-16 12:42] - [2016-07-16 12:42] - 0888320 ____A (Microsoft Corporation) 7BD259FC59CF9C2AE1B979564B374CC6
C:\WINDOWS\system32\dnsapi.dll
[2016-09-30 07:43] - [2016-09-15 18:30] - 0646136 ____A (Microsoft Corporation) 96B8A433F6407DE34850927C96C6CE9B
C:\WINDOWS\SysWOW64\dnsapi.dll
[2016-09-30 07:42] - [2016-09-15 18:37] - 0496872 ____A (Microsoft Corporation) 227CFE3EDA82029AAC1C088A16297CD7
C:\WINDOWS\system32\Drivers\volsnap.sys
[2016-07-16 12:42] - [2016-07-16 12:42] - 0391520 ____A (Microsoft Corporation) BF2546583BB75F01DDA60A7921DFB230
===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===
==================== Drive and Memory info ===================
==================== MBR and Partition Table ==================
==================== Scheduled Tasks (whitelisted) ==================
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\HPCeeScheduleForkonec.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
==================== Alternate Data Streams (whitelisted) ==================
==================== Security Center ==================
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)
***** Velikost "Plochy" *****
Velikost slozky "C:\Users\konec\Desktop" je 27588 MB.
***** Startup Programs *****
***** Firewall rules *****
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
***** System Restore *****
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
==================== End Of Log ==============================
Re: Prosím o kontrolu
Additional scan result of Farbar Recovery Scan Tool (x64) Version: 29-01-2017
Ran by konec (30-01-2017 20:56:43)
Running from C:\Users\konec\Desktop
Windows 10 Home Version 1607 (X64) (2016-09-21 13:23:22)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-466670803-733275211-1192568883-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-466670803-733275211-1192568883-503 - Limited - Disabled)
Guest (S-1-5-21-466670803-733275211-1192568883-501 - Limited - Disabled)
konec (S-1-5-21-466670803-733275211-1192568883-1001 - Administrator - Enabled) => C:\Users\konec
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\uTorrent) (Version: 3.4.9.43085 - BitTorrent Inc.)
64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
7-Zip 15.14 (HKLM-x32\...\{23170F69-40C1-2701-1514-000001000000}) (Version: 15.14.00.0 - Igor Pavlov)
AC3Filter 2.0a (HKLM-x32\...\AC3Filter_is1) (Version: 2.0a - Alexander Vigovsky)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.7.5.291 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.5.195 - Adobe Systems, Inc.)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 12.3.2280 - AVAST Software)
B109n-z (x32 Version: 140.0.851.000 - Hewlett-Packard) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Bloody6 (HKLM-x32\...\Bloody3) (Version: 16.12.0020 - Bloody)
BufferChm (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
Camtasia 9 (HKLM-x32\...\{48cb006a-7b5b-4a48-98fd-fbd7af456b0d}) (Version: 9.0.1.1422 - TechSmith Corporation)
Camtasia 9 (Version: 9.0.1.1422 - TechSmith Corporation) Hidden
Camtasia Studio 8 (HKLM-x32\...\{A2A41B60-D51F-4C04-BC94-B4C94F7B6DC0}) (Version: 8.6.0.2054 - TechSmith Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.25 - Piriform)
Counter-Strike 1.6 (HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\Counter-Strike 1.6) (Version: - )
Counter-Strike Global Offensive WaRzOnE (HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\CSGO) (Version: - CS WaRzOnE)
Crusaders of the Lost Idols (HKLM\...\Steam App 402840) (Version: - Codename Entertainment Inc.)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.4.0.0196 - Disc Soft Ltd)
Destinations (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
Dxtory version 2.0.122 (HKLM-x32\...\Dxtory2.0_is1) (Version: 2.0.122 - Dxtory Software)
Euro Truck Simulator 2 (HKLM-x32\...\{1B705E8F-9893-4486-B5D7-4F7FEB9C871E}_is1) (Version: 1.1.1 - SCS Software)
Farming Simulator 15 (HKLM-x32\...\Farming Simulator 15_is1) (Version: - )
Galactic Junk League (HKLM\...\Steam App 562590) (Version: - Pixel Federation)
Gaming Keyboard Driver (HKLM-x32\...\{B3CDED64-7DC2-429D-A325-BBC3CF793AA6}) (Version: 1.0 - Senbiz)
Google Earth (HKLM-x32\...\{A0C18B96-AB79-46BD-8321-6FA83E6D25B9}) (Version: 7.1.7.2606 - Google)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 55.0.2883.87 - Google Inc.)
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
Gotham City Impostors: Free To Play (HKLM\...\Steam App 206210) (Version: - Monolith Productions, Inc.)
GPBaseService2 (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP Photosmart Wireless B109n-z All-In-One Driver Software 14.0 Rel. 6 (HKLM\...\{5B8D29B6-988A-4EFB-A577-CFA8968DD7D3}) (Version: 14.0 - HP)
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HP Support Assistant (HKLM-x32\...\{61EB474B-67A6-47F4-B1B7-386851BAB3D0}) (Version: 8.3.50.9 - Hewlett-Packard Company)
HP Support Solutions Framework (HKLM-x32\...\{E1BB50BA-7CCB-47CD-9FE3-03AAE6EEF862}) (Version: 12.5.32.203 - Hewlett-Packard Company)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Cheat Engine 6.6 (HKLM-x32\...\Cheat Engine 6.6_is1) (Version: - Cheat Engine)
IconLover (HKLM-x32\...\IconLover) (Version: 5.46 - Aha-Soft)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)
Istrolid (HKLM\...\Steam App 449140) (Version: - treeform)
Java 8 Update 121 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180121F0}) (Version: 8.0.1210.13 - Oracle Corporation)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.541 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.541 - LogMeIn, Inc.) Hidden
MarketResearch (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Metric Collection SDK 35 (x32 Version: 1.2.0010.00 - Lenovo Group Limited) Hidden
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Help Viewer 1.0 (HKLM\...\Microsoft Help Viewer 1.0) (Version: 1.0.30319 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 - cs-cz (HKLM\...\ProPlusRetail - cs-cz) (Version: 15.0.4893.1002 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Management Objects (HKLM-x32\...\{4E968D9C-21A7-4915-B698-F7AEB913541D}) (Version: 10.50.1447.4 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM-x32\...\{2A2F3AE8-246A-4252-BB26-1BEB45627074}) (Version: 10.50.1447.4 - Microsoft Corporation)
Microsoft Visual Basic 2010 Express - ENU (HKLM-x32\...\Microsoft Visual Basic 2010 Express - ENU) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - x64 8.0.61000 (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - x86 8.0.61001 (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{02A39130-2CF3-30CA-8623-30F6071A4221}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 (HKLM-x32\...\{B7E38540-E355-3503-AFD7-635B2F2F76E1}) (Version: 9.0.30729.4974 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Runtime - 10.0.30319 (HKLM\...\{94D70749-4281-39AC-AD90-B56A0E0A402E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{a2199617-3609-410f-a8e8-e8806c73545b}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40649 (HKLM-x32\...\{c6870a89-ef30-4f22-bbd1-49cd2516bc56}) (Version: 12.0.40649.5 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40649 (HKLM-x32\...\{78142960-066b-4581-b984-0bdcf560c4be}) (Version: 12.0.40649.5 - Корпорация Майкрософт)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{7c3d0734-5e24-446b-85ae-c610ee8eb53d}) (Version: 14.0.23918.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{a15bc95a-8359-40e6-b4bc-5a219bcc492a}) (Version: 14.0.23918.0 - Корпорация Майкрософт)
Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (HKLM-x32\...\{14DD7530-CCD2-3798-B37D-3839ED6A441C}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual Studio 2010 Express Prerequisites x64 - ENU (HKLM\...\{BCA26999-EC22-3007-BB79-638913079C9A}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mini Metro (HKLM-x32\...\1434554947_is1) (Version: 2.0.0.3 - GOG.com)
Mitos.is: The Game (HKLM\...\Steam App 389570) (Version: - Freakinware Studios)
Mozilla Firefox 50.1.0 (x64 cs) (HKLM\...\Mozilla Firefox 50.1.0 (x64 cs)) (Version: 50.1.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 50.0.2.6177 - Mozilla)
Network64 (Version: 140.0.306.000 - Hewlett-Packard) Hidden
NVIDIA PhysX v8.05.26 (HKLM-x32\...\{11AE6807-50D2-4F59-82B3-2C3E695E94C2}) (Version: 8.05.26 - NVIDIA Corporation)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4893.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4893.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4893.1002 - Microsoft Corporation) Hidden
Paladins (HKLM\...\Steam App 444090) (Version: - Hi-Rez Studios)
PhotoFiltre 7 (HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\PhotoFiltre 7) (Version: - )
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{29DB9165-5FC1-48F0-9188-26123F526848}) (Version: 5.0.1 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{5905C8CF-1C88-4478-A48E-4E458AD1BC7E}) (Version: 5.0.1 - Apple Inc.)
PS_AIO_06_B109n-z_SW_Min (x32 Version: 140.0.863.000 - Hewlett-Packard) Hidden
QuickTransfer (x32 Version: 140.0.98.000 - Hewlett-Packard) Hidden
ROBLOX Player for konec (HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version: - ROBLOX Corporation)
ROBLOX Studio for konec (HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\{2922D6F1-2865-4EFA-97A9-94EEAB3AFA14}) (Version: - ROBLOX Corporation)
Robocraft (HKLM\...\Steam App 301520) (Version: - Freejam)
SafeZone Stable 1.51.2220.62 (x32 Version: 1.51.2220.62 - Avast Software) Hidden
Scan (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
Seznam Software (HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\SeznamInstall) (Version: - Seznam.cz)
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP)
Skype Web Plugin (HKLM-x32\...\{DEAF2D27-DEBD-4DB5-9260-6665650D1F44}) (Version: 7.19.0.182 - Skype Technologies S.A.)
Skype™ 7.31 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.31.104 - Skype Technologies S.A.)
SolutionCenter (x32 Version: 140.0.299.000 - Hewlett-Packard) Hidden
Status (x32 Version: 140.0.342.000 - Hewlett-Packard) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.12.0 - Synaptics Incorporated)
Team Fortress 2 (HKLM\...\Steam App 440) (Version: - Valve)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.66695 - TeamViewer)
Terraria (HKLM-x32\...\1207665503_is1) (Version: 2.12.0.14 - GOG.com)
Toolbox (x32 Version: 140.0.596.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Unity Web Player (HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\UnityWebPlayer) (Version: 2.6.1f3_31223 - Unity Technologies ApS)
Unturned (HKLM\...\Steam App 304930) (Version: - Smartly Dressed Games)
VirtualDJ 8 (HKLM-x32\...\{9ADBBA93-4625-4898-BB0D-BCE7EA9F8B4A}) (Version: 8.0.0 - Atomix Productions)
Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{112C23F2-C036-4D40-BED4-0CB47BF5555C}) (Version: 4.0.8080.0 - Microsoft Corporation)
Warframe (HKLM\...\Steam App 230410) (Version: - Digital Extremes)
WebReg (x32 Version: 140.0.297.017 - Hewlett-Packard) Hidden
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\ChromeHTML: -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) <==== ATTENTION
CustomCLSID: HKU\S-1-5-21-466670803-733275211-1192568883-1001_Classes\CLSID\{57EB1159-E1B2-4184-8268-800B4CA62C3A}\InprocServer32 -> C:\Users\konec\AppData\Local\SkypePlugin\7.19.0.182\GatewayActiveX-x64.dll (Skype Technologies S.A.)
CustomCLSID: HKU\S-1-5-21-466670803-733275211-1192568883-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-466670803-733275211-1192568883-1001_Classes\CLSID\{CBF9CD8C-2714-4F36-B76A-43E6C7547BC2}\localserver32 -> C:\Users\konec\AppData\Local\SkypePlugin\7.19.0.182\EdgeCalling.exe (Skype Technologies S.A.)
CustomCLSID: HKU\S-1-5-21-466670803-733275211-1192568883-1001_Classes\CLSID\{DEE03C2B-0C0C-41A9-9877-FD4B4D7B6EA3}\InprocServer32 -> C:\Users\konec\AppData\Local\Roblox\Versions\version-7b8ced67462c404f\RobloxProxy64.dll (ROBLOX Corporation)
CustomCLSID: HKU\S-1-5-21-466670803-733275211-1192568883-1001_Classes\CLSID\{E8AF02B0-222B-4B62-9C61-190D32BD053C}\localserver32 -> C:\Users\konec\AppData\Local\SkypePlugin\7.19.0.182\GatewayVersion-x64.exe (Skype Technologies S.A.)
CustomCLSID: HKU\S-1-5-21-466670803-733275211-1192568883-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {018AA41A-4248-4116-AFD4-3F7AD546396A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-09] (Google Inc.)
Task: {04C099D8-348F-44E8-80FC-334DD64A7D60} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-12-07] (HP Inc.)
Task: {09E1FD9C-7A57-4150-9D83-AEE15DA7B1DF} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe
Task: {0E71C739-4493-44AC-9B07-F020F0E35FFD} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2017-01-29] (AVAST Software)
Task: {128EA2EC-3827-4BF2-A512-E2C7B343BB2F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [2016-12-15] (HP Inc.)
Task: {14746FEC-7A6A-45FD-9489-ECE2CBCE5E41} - System32\Tasks\RunAsStdUser Task => C:\Program Files (x86)\Moo0\VoiceRecorder 1.43\VoiceRecorder.exe
Task: {19F158BB-E0C3-4D3B-9FD8-D2B4F5AD578C} - System32\Tasks\{FFBB870F-D916-4611-81DF-81448C3A2E85} => pcalua.exe -a "C:\Program Files (x86)\MPC Cleaner\Uninstall.exe"
Task: {2D6BBE97-8C9A-4210-A7E5-38DA1E5764E4} - System32\Tasks\SafeZone scheduled Autoupdate 1474118964 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-09-06] (Avast Software)
Task: {33A2124C-2678-4941-9319-4E3CFC3B424B} - System32\Tasks\HPCeeScheduleForkonec => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2015-06-16] (Hewlett-Packard)
Task: {37F9269E-B65D-4452-A859-0A894AA15D47} - System32\Tasks\Browser Updater Task(Core) => C:\Program Files (x86)\QQBrowser\Update\Download\73038F0562E07FDFE1F0A045978AF782\Update\BrowserUpdate.exe [2016-03-17] (Tencent) <==== ATTENTION
Task: {3C632963-27DA-482A-8423-8FE7BF08B73D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-12-06] (Piriform Ltd)
Task: {57268B7C-06B0-4D2B-8F80-0709AB8D276E} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2017-01-12] (Microsoft Corporation)
Task: {61D1D0E3-F97C-4CCD-B99D-1DDEACD5EB43} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2016-11-01] (Microsoft Corporation)
Task: {64A25124-F186-496C-A0F7-36183AB61B6D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-12-21] (HP Inc.)
Task: {66C652AA-43DD-4BB1-B0DF-AF22448BD657} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-09-17] (AVAST Software)
Task: {710F0403-EA5C-4CD4-971B-F6CF6FFB10D3} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2016-11-01] (Microsoft Corporation)
Task: {7359FE56-53E5-4504-81B4-ACE020413AED} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-11-07] (HP Inc.)
Task: {772D5E05-CE57-4DE3-BEBB-13847AAAABEA} - System32\Tasks\{5D72DED3-F4CE-454A-8C36-436E00ACA17D} => pcalua.exe -a "C:\ProgramData\Battle.net\Agent\Blizzard Uninstaller.exe" -c --lang=enUS --uid=battle.net --displayname="Battle.net"
Task: {787C7C00-AF02-4EBE-93F4-20C99E57440A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-12-07] (HP Inc.)
Task: {94597E27-FBAD-40E8-B356-B2499FCB8D66} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-09] (Google Inc.)
Task: {B35F8056-74E9-4CEA-B779-1F22EE106FB0} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2016-11-01] (Microsoft Corporation)
Task: {CBE6EA90-CA1C-4E94-B07D-91F73F95057B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2016-11-01] (Microsoft Corporation)
Task: {D6DA83A7-4106-44D8-B0D3-AD847D88371E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-07] (HP Inc.)
Task: {ED9E2774-0F26-429B-98F4-59BA583329B7} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe
Task: {FB40AA3A-5DC0-46CB-9558-A047ABCF7FA7} - System32\Tasks\avast! Windows 10 Start Menu helper => c:\program files\avast software\avast\asww10mon.exe
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\HPCeeScheduleForkonec.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
Shortcut: C:\Users\konec\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\Online Help.lnk -> hxxp://www.virtualdj.com/wiki
Shortcut: C:\Users\konec\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\www.virtualdj.com.lnk -> hxxp://www.virtualdj.com
==================== Loaded Modules (Whitelisted) ==============
2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-12-10 07:29 - 2016-11-11 11:10 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-06-10 16:33 - 2015-06-10 16:33 - 00022528 _____ () C:\WINDOWS\system32\fpCSEvtSvc.exe
2015-09-09 22:04 - 2016-05-24 08:51 - 00116416 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2016-12-10 07:29 - 2016-11-11 11:10 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-05-22 18:33 - 2016-05-22 18:33 - 00491184 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2016-09-21 14:33 - 2016-09-21 14:33 - 00959168 _____ () C:\Users\konec\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll
2016-09-21 14:17 - 2016-09-21 14:17 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2016-12-10 07:28 - 2016-11-11 10:23 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2016-12-06 15:09 - 2016-12-06 15:09 - 00061440 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
2016-10-27 17:20 - 2013-04-09 11:13 - 00270336 _____ () C:\Program Files (x86)\Gaming Keyboard\Monitor.EXE
2016-10-27 17:20 - 2013-01-09 10:47 - 00151552 _____ () C:\Program Files (x86)\Gaming Keyboard\OSD.exe
2016-05-22 18:32 - 2016-05-22 18:32 - 31680176 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
2017-01-23 13:18 - 2017-01-23 13:18 - 00072192 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.152.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-01-23 13:18 - 2017-01-23 13:18 - 00179712 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.152.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-01-23 13:18 - 2017-01-23 13:18 - 42130432 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.152.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2016-12-14 15:49 - 2016-12-14 15:49 - 02216448 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.152.0_x64__kzf8qxf38zg5c\roottools.dll
2016-11-09 21:21 - 2016-11-02 11:21 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-11-09 21:21 - 2016-11-02 11:15 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-11-09 21:21 - 2016-11-02 11:14 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2016-11-09 21:21 - 2016-11-02 11:16 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-11-09 21:21 - 2016-11-02 11:17 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-09-17 14:25 - 2016-09-17 14:25 - 00169064 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2017-01-30 13:30 - 2017-01-30 13:30 - 04459608 _____ () C:\Program Files\AVAST Software\Avast\defs\17013000\algo.dll
2016-09-17 14:25 - 2016-09-17 14:25 - 00482928 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-09-17 14:25 - 2016-09-17 14:25 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2016-10-27 17:20 - 2012-11-05 07:09 - 00057344 _____ () C:\Program Files (x86)\Gaming Keyboard\lan.dll
2016-10-27 17:20 - 2012-11-05 07:37 - 00061440 _____ () C:\Program Files (x86)\Gaming Keyboard\hiddriver.dll
2016-06-07 23:10 - 2016-06-07 23:10 - 00118272 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\fs-ext\build\Release\fs-ext.node
2016-06-07 23:10 - 2016-06-07 23:10 - 00205824 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2016-06-07 23:10 - 2016-06-07 23:10 - 00117248 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ref\build\Release\binding.node
2016-06-07 23:10 - 2016-06-07 23:10 - 00125440 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ffi\build\Release\ffi_bindings.node
2016-07-18 07:44 - 2016-07-18 07:44 - 00098496 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin.dll
2016-06-07 23:10 - 2016-06-07 23:10 - 00166400 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\idle-gc\build\Release\idle-gc.node
2016-02-24 16:50 - 2016-09-21 09:22 - 00325824 _____ () C:\Program Files\Microsoft Office 15\root\office15\AppVIsvStream32.dll
2015-09-09 22:04 - 2015-09-09 22:08 - 01754296 _____ () C:\Program Files\Microsoft Office 15\Root\Office15\tmpod.dll
2017-01-18 09:28 - 2017-01-18 09:29 - 01041608 _____ () C:\Program Files\Microsoft Office 15\Root\Office15\ADDINS\UmOutlookAddin.dll
2016-10-26 18:56 - 2016-09-06 11:00 - 05197312 _____ () C:\Users\konec\AppData\Local\Google\Chrome\User Data\SwiftShader\3.3.0.1\libglesv2.dll
2016-10-26 18:56 - 2016-09-06 11:00 - 00147456 _____ () C:\Users\konec\AppData\Local\Google\Chrome\User Data\SwiftShader\3.3.0.1\libegl.dll
2016-12-10 07:29 - 2016-11-11 11:10 - 02681200 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\konec:Heroes & Generals [38]
AlternateDataStreams: C:\ProgramData\TEMP:FB6A21E3 [128]
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\amazon.com -> hxxps://amazon.com
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2015-07-10 12:04 - 2015-07-10 12:02 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-466670803-733275211-1192568883-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
HKLM\...\StartupApproved\Run: => "cpuminer"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "seznam-listicka-distribuce"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKLM\...\StartupApproved\Run32: => "4StoryPrePatch"
HKLM\...\StartupApproved\Run32: => "Tv-Plug-In"
HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\StartupApproved\Run: => "cz.seznam.software.autoupdate"
HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\StartupApproved\Run: => "cz.seznam.software.szndesktop"
HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\StartupApproved\Run: => "BlueStacks Agent"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [TCP Query User{59E164C1-AFCB-47B5-AEA2-FB2461C23EE0}C:\program files (x86)\google\chrome\application\chrome.exe] => C:\program files (x86)\google\chrome\application\chrome.exe
FirewallRules: [UDP Query User{18C010CF-42CA-4D86-9D3B-2F4A2A7EC59E}C:\program files (x86)\google\chrome\application\chrome.exe] => C:\program files (x86)\google\chrome\application\chrome.exe
FirewallRules: [{AABFCB6C-E066-4929-B20D-E0E835443CA4}] => C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{D58B3BDC-74AE-48D6-B387-1E8A6CCF0F22}] => C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{CB36D943-83D2-4F91-9451-F02ED01FB1A0}] => C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{D072540F-72D3-484B-8A57-99D9B8E593DA}] => C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [TCP Query User{EF6316F1-4072-4B4D-A1ED-328EADA6D7D7}C:\program files (x86)\steam\steamapps\common\paladins\binaries\win32\paladins.exe] => C:\program files (x86)\steam\steamapps\common\paladins\binaries\win32\paladins.exe
FirewallRules: [UDP Query User{2FF6E52B-C116-44BA-9933-4351D7D74210}C:\program files (x86)\steam\steamapps\common\paladins\binaries\win32\paladins.exe] => C:\program files (x86)\steam\steamapps\common\paladins\binaries\win32\paladins.exe
FirewallRules: [TCP Query User{934A76F9-708D-49C8-B73F-AA4A7C94EF2A}C:\program files (x86)\skype\phone\skype.exe] => C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{15EF2AE9-2D62-4A75-9018-13FF002A1161}C:\program files (x86)\skype\phone\skype.exe] => C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{E27CC2A5-CF75-494D-B939-3CAF860616FC}] => LPort=8318
FirewallRules: [TCP Query User{91AE8320-65A7-46A8-A123-99E2F9F66372}C:\users\konec\desktop\ \locker\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => C:\users\konec\desktop\ \locker\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{B8689693-C5FF-47FD-8D66-056C8FB4DE3C}C:\users\konec\desktop\ \locker\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => C:\users\konec\desktop\ \locker\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{21E633AE-CC93-4115-AA0F-4EACD2384E00}C:\users\konec\desktop\ \slime rancher v0.4.1.veroxpivigames\x64\slimerancher.exe] => C:\users\konec\desktop\ \slime rancher v0.4.1.veroxpivigames\x64\slimerancher.exe
FirewallRules: [UDP Query User{6661B183-95C5-4C2B-962E-A4EFF8820428}C:\users\konec\desktop\ \slime rancher v0.4.1.veroxpivigames\x64\slimerancher.exe] => C:\users\konec\desktop\ \slime rancher v0.4.1.veroxpivigames\x64\slimerancher.exe
FirewallRules: [TCP Query User{58FAF275-2EEC-477B-B775-4AD045376F37}C:\users\konec\desktop\ \zilak - get golf with your friends for free\game\golf with your friends\golf with your friends.exe] => C:\users\konec\desktop\ \zilak - get golf with your friends for free\game\golf with your friends\golf with your friends.exe
FirewallRules: [UDP Query User{2780DBF2-8353-4823-BBCF-3EE706017E3B}C:\users\konec\desktop\ \zilak - get golf with your friends for free\game\golf with your friends\golf with your friends.exe] => C:\users\konec\desktop\ \zilak - get golf with your friends for free\game\golf with your friends\golf with your friends.exe
FirewallRules: [{53392AD7-D659-4679-A7FF-849649B23A3A}] => C:\Program Files (x86)\Steam\steamapps\common\Robocraft\Robocraft.exe
FirewallRules: [{1013A063-219B-47E5-BE2F-86E3B8A81362}] => C:\Program Files (x86)\Steam\steamapps\common\Robocraft\Robocraft.exe
FirewallRules: [{B24DD59D-AA70-4627-96EE-D43758BD4CEA}] => C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned_BE.exe
FirewallRules: [{41EB92A3-920E-49CA-9649-3DF580548493}] => C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned_BE.exe
FirewallRules: [{8C13973E-62F9-4F12-BA48-76B6C5BF0C1F}] => C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe
FirewallRules: [{484131AF-46E8-4BDB-A719-A1131BB68DD8}] => C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe
FirewallRules: [TCP Query User{262F79C2-8AA0-487D-8911-0E9FA24A82C2}C:\games\counter-strike global offensive\csgo.exe] => C:\games\counter-strike global offensive\csgo.exe
FirewallRules: [UDP Query User{4A29A066-7D9E-4A48-BB48-A9A646663D14}C:\games\counter-strike global offensive\csgo.exe] => C:\games\counter-strike global offensive\csgo.exe
FirewallRules: [{260A3E82-359A-4C06-BBBB-29C3B75E0861}] => C:\Program Files (x86)\Steam\steamapps\common\Istrolid\istrolid.exe
FirewallRules: [{80123379-F291-4619-A5BD-9F1D3B48505B}] => C:\Program Files (x86)\Steam\steamapps\common\Istrolid\istrolid.exe
FirewallRules: [{BBA6C9BB-9F16-4375-A3C0-5798167F0814}] => C:\Program Files (x86)\Steam\steamapps\common\Gotham City Impostors F2P\Impostors.exe
FirewallRules: [{822A758C-D167-44A3-A26A-4AE60C809EBB}] => C:\Program Files (x86)\Steam\steamapps\common\Gotham City Impostors F2P\Impostors.exe
FirewallRules: [{8C65FEE2-A65A-461B-B3C1-21202DA1175C}] => C:\Program Files (x86)\Steam\steamapps\common\Gotham City Impostors F2P\Engine.exe
FirewallRules: [{CEA0E182-5F06-49CF-A2D1-F1ADD79CF445}] => C:\Program Files (x86)\Steam\steamapps\common\Gotham City Impostors F2P\Engine.exe
FirewallRules: [TCP Query User{95ED114F-38F7-4BA7-B0DC-42E228B3A756}C:\users\konec\appdata\roaming\utorrent\utorrent.exe] => C:\users\konec\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{45E2269B-088A-415F-84AF-21F668CE789F}C:\users\konec\appdata\roaming\utorrent\utorrent.exe] => C:\users\konec\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{79DCEFA9-199B-4827-9654-634A362FFC4F}C:\games\counter-strike global offensive\launcher\tools\steamcmd.exe] => C:\games\counter-strike global offensive\launcher\tools\steamcmd.exe
FirewallRules: [UDP Query User{CB59A5AA-5B40-4C64-B098-674D58A305F8}C:\games\counter-strike global offensive\launcher\tools\steamcmd.exe] => C:\games\counter-strike global offensive\launcher\tools\steamcmd.exe
FirewallRules: [TCP Query User{9132EFC1-CD2B-4C17-8453-8E0042F6F993}C:\users\konec\desktop\ \runtime\jre-x64\1.8.0_51\bin\javaw.exe] => C:\users\konec\desktop\ \runtime\jre-x64\1.8.0_51\bin\javaw.exe
FirewallRules: [UDP Query User{82B44280-EEE7-45B1-AE80-5C251BDEF865}C:\users\konec\desktop\ \runtime\jre-x64\1.8.0_51\bin\javaw.exe] => C:\users\konec\desktop\ \runtime\jre-x64\1.8.0_51\bin\javaw.exe
FirewallRules: [TCP Query User{0D6E8A46-C599-4251-BB2E-5B2A2B19CCE8}C:\users\konec\gsplay\csko\hl.exe] => C:\users\konec\gsplay\csko\hl.exe
FirewallRules: [UDP Query User{838C6985-B52B-482D-A8DA-D67CFAED624E}C:\users\konec\gsplay\csko\hl.exe] => C:\users\konec\gsplay\csko\hl.exe
FirewallRules: [{FC6A600C-C49E-4D0F-8502-E1041CCC644D}] => C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [{30A2B970-F5B1-4723-93B6-32B3ADE5E903}] => C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [{B27ED733-7C17-4FC3-B3B0-E534645FE0BF}] => C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
FirewallRules: [{F7E4F3DD-7BBA-4D8A-A817-0175D4946741}] => C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [{FCE5B793-66A0-4D4C-B546-951C80CA93B4}] => C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [{CF6EF907-23B7-48C4-9E87-71B59C267E7F}] => C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [{313F24C0-21A1-44D6-8F67-4E8DD8153726}] => C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [{638B77BE-1316-43E7-B0BD-7DA204BA067D}] => C:\Program Files (x86)\Steam\steamapps\common\Galactic Junk League\GJL.exe
FirewallRules: [{ACB46B4A-9767-43A8-8B94-0EA75EFEB1BF}] => C:\Program Files (x86)\Steam\steamapps\common\Galactic Junk League\GJL.exe
FirewallRules: [{CD8069E1-C54F-490B-A7A6-37D7AEC70E5A}] => C:\Program Files (x86)\Steam\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe
FirewallRules: [{041F5943-37E9-4312-AC4E-A8968453A24D}] => C:\Program Files (x86)\Steam\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe
FirewallRules: [{6D50B3E4-195A-445C-9178-5DACFCFD8B01}] => C:\Program Files (x86)\Steam\steamapps\common\Galactic Junk League\GJL.exe
FirewallRules: [TCP Query User{C49BF7D9-58D7-4047-979F-CCF56D6E894C}C:\users\konec\desktop\ \locker\zumbiblocks-64bit\zumbiblocks.exe] => C:\users\konec\desktop\ \locker\zumbiblocks-64bit\zumbiblocks.exe
FirewallRules: [UDP Query User{510EA004-E708-466C-9749-822425D322E3}C:\users\konec\desktop\ \locker\zumbiblocks-64bit\zumbiblocks.exe] => C:\users\konec\desktop\ \locker\zumbiblocks-64bit\zumbiblocks.exe
FirewallRules: [TCP Query User{B4668D6D-2F82-4D48-BB81-DD1AC01E8BA3}C:\users\konec\counter-strike 1.6\hl.exe] => C:\users\konec\counter-strike 1.6\hl.exe
FirewallRules: [UDP Query User{3A835BBC-020C-4951-B560-0FF45A640D48}C:\users\konec\counter-strike 1.6\hl.exe] => C:\users\konec\counter-strike 1.6\hl.exe
FirewallRules: [{AA445814-69E9-477B-B931-59FE60E9031B}] => C:\Program Files (x86)\Steam\steamapps\common\Mitos.is The Game\Mitosis.exe
FirewallRules: [{AB769CBD-9A48-4DB6-BB19-2D569AAC61D3}] => C:\Program Files (x86)\Steam\steamapps\common\Mitos.is The Game\Mitosis.exe
FirewallRules: [TCP Query User{60C95B52-DEC2-4AFA-8B66-A2070418D832}C:\users\konec\desktop\v1.05_raft_win64\v1.05_raft_win64.exe] => C:\users\konec\desktop\v1.05_raft_win64\v1.05_raft_win64.exe
FirewallRules: [UDP Query User{E35C30B3-4F25-4EFF-B6FA-BD9EB990CF98}C:\users\konec\desktop\v1.05_raft_win64\v1.05_raft_win64.exe] => C:\users\konec\desktop\v1.05_raft_win64\v1.05_raft_win64.exe
==================== Restore Points =========================
08-01-2017 11:32:21 Naplánovaný kontrolní bod
26-01-2017 18:22:30 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices =============
Name:
Description:
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer:
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: =========================
Application errors:
==================
Error: (01/30/2017 08:54:48 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Systém Windows nemůže získat přístup k souboru C:\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3485_for_KB3206632~31bf3856ad364e35~amd64~~10.0.1.8.cat z jednoho z těchto důvodů:
došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen, nebo
s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí.
Systém Windows kvůli této chybě ukončil program Host Process for Windows Services.
Program: Host Process for Windows Services
Soubor: C:\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3485_for_KB3206632~31bf3856ad364e35~amd64~~10.0.1.8.cat
Hodnota chyby je uvedena v části Další údaje.
Akce uživatele
1. Otevřete soubor znovu.
Může se jednat o dočasný problém, který se při novém spuštění programu nebude opakovat.
2.
Pokud k souboru stále nelze získat přístup a:
- Nachází se v síti,
měl by správce sítě ověřit, zda nedošlo k problému se sítí a zda lze server kontaktovat.
- Je na vyměnitelném disku (například disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače.
3. Zkontrolujte a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK. Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER.
4. Pokud potíže potrvají, obnovte soubor ze záložní kopie.
5. Zjistěte, zda lze otevřít jiné soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný disk, obraťte se na správce nebo na dodavatele počítačového hardwaru
se žádostí o pomoc.
Další údaje
Hodnota chyby: C0000102
Typ disku: 3
Error: (01/30/2017 08:54:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_CryptSvc, verze: 10.0.14393.0, časové razítko: 0x57899b1c
Název chybujícího modulu: bcryptPrimitives.dll, verze: 10.0.14393.0, časové razítko: 0x57899aef
Kód výjimky: 0xc0000006
Posun chyby: 0x0000000000005707
ID chybujícího procesu: 0x554
Čas spuštění chybující aplikace: 0x01d27b2f680f9438
Cesta k chybující aplikaci: C:\WINDOWS\system32\svchost.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\bcryptPrimitives.dll
ID zprávy: 415114dd-a958-46ea-9d85-826f835a4113
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (01/30/2017 08:30:46 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Systém Windows nemůže získat přístup k souboru C:\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3485_for_KB3206632~31bf3856ad364e35~amd64~~10.0.1.8.cat z jednoho z těchto důvodů:
došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen, nebo
s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí.
Systém Windows kvůli této chybě ukončil program Host Process for Windows Services.
Program: Host Process for Windows Services
Soubor: C:\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3485_for_KB3206632~31bf3856ad364e35~amd64~~10.0.1.8.cat
Hodnota chyby je uvedena v části Další údaje.
Akce uživatele
1. Otevřete soubor znovu.
Může se jednat o dočasný problém, který se při novém spuštění programu nebude opakovat.
2.
Pokud k souboru stále nelze získat přístup a:
- Nachází se v síti,
měl by správce sítě ověřit, zda nedošlo k problému se sítí a zda lze server kontaktovat.
- Je na vyměnitelném disku (například disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače.
3. Zkontrolujte a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK. Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER.
4. Pokud potíže potrvají, obnovte soubor ze záložní kopie.
5. Zjistěte, zda lze otevřít jiné soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný disk, obraťte se na správce nebo na dodavatele počítačového hardwaru
se žádostí o pomoc.
Další údaje
Hodnota chyby: C0000102
Typ disku: 3
Error: (01/30/2017 08:30:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_CryptSvc, verze: 10.0.14393.0, časové razítko: 0x57899b1c
Název chybujícího modulu: bcryptPrimitives.dll, verze: 10.0.14393.0, časové razítko: 0x57899aef
Kód výjimky: 0xc0000006
Posun chyby: 0x0000000000005707
ID chybujícího procesu: 0x2094
Čas spuštění chybující aplikace: 0x01d27b27dd56c50e
Cesta k chybující aplikaci: C:\WINDOWS\system32\svchost.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\bcryptPrimitives.dll
ID zprávy: 52240284-e6ab-4f08-8ed8-2437ac93b0bf
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (01/30/2017 07:37:04 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Systém Windows nemůže získat přístup k souboru C:\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3485_for_KB3206632~31bf3856ad364e35~amd64~~10.0.1.8.cat z jednoho z těchto důvodů:
došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen, nebo
s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí.
Systém Windows kvůli této chybě ukončil program Host Process for Windows Services.
Program: Host Process for Windows Services
Soubor: C:\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3485_for_KB3206632~31bf3856ad364e35~amd64~~10.0.1.8.cat
Hodnota chyby je uvedena v části Další údaje.
Akce uživatele
1. Otevřete soubor znovu.
Může se jednat o dočasný problém, který se při novém spuštění programu nebude opakovat.
2.
Pokud k souboru stále nelze získat přístup a:
- Nachází se v síti,
měl by správce sítě ověřit, zda nedošlo k problému se sítí a zda lze server kontaktovat.
- Je na vyměnitelném disku (například disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače.
3. Zkontrolujte a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK. Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER.
4. Pokud potíže potrvají, obnovte soubor ze záložní kopie.
5. Zjistěte, zda lze otevřít jiné soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný disk, obraťte se na správce nebo na dodavatele počítačového hardwaru
se žádostí o pomoc.
Další údaje
Hodnota chyby: C0000102
Typ disku: 3
Error: (01/30/2017 07:37:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_CryptSvc, verze: 10.0.14393.0, časové razítko: 0x57899b1c
Název chybujícího modulu: bcryptPrimitives.dll, verze: 10.0.14393.0, časové razítko: 0x57899aef
Kód výjimky: 0xc0000006
Posun chyby: 0x0000000000005707
ID chybujícího procesu: 0x2014
Čas spuštění chybující aplikace: 0x01d27b27d760fcc1
Cesta k chybující aplikaci: C:\WINDOWS\system32\svchost.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\bcryptPrimitives.dll
ID zprávy: 175b9446-cbfc-42a7-9761-3adbae8a4b32
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (01/30/2017 07:36:57 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Systém Windows nemůže získat přístup k souboru C:\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3485_for_KB3206632~31bf3856ad364e35~amd64~~10.0.1.8.cat z jednoho z těchto důvodů:
došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen, nebo
s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí.
Systém Windows kvůli této chybě ukončil program Host Process for Windows Services.
Program: Host Process for Windows Services
Soubor: C:\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3485_for_KB3206632~31bf3856ad364e35~amd64~~10.0.1.8.cat
Hodnota chyby je uvedena v části Další údaje.
Akce uživatele
1. Otevřete soubor znovu.
Může se jednat o dočasný problém, který se při novém spuštění programu nebude opakovat.
2.
Pokud k souboru stále nelze získat přístup a:
- Nachází se v síti,
měl by správce sítě ověřit, zda nedošlo k problému se sítí a zda lze server kontaktovat.
- Je na vyměnitelném disku (například disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače.
3. Zkontrolujte a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK. Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER.
4. Pokud potíže potrvají, obnovte soubor ze záložní kopie.
5. Zjistěte, zda lze otevřít jiné soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný disk, obraťte se na správce nebo na dodavatele počítačového hardwaru
se žádostí o pomoc.
Další údaje
Hodnota chyby: C0000102
Typ disku: 3
Error: (01/30/2017 07:36:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_CryptSvc, verze: 10.0.14393.0, časové razítko: 0x57899b1c
Název chybujícího modulu: bcryptPrimitives.dll, verze: 10.0.14393.0, časové razítko: 0x57899aef
Kód výjimky: 0xc0000006
Posun chyby: 0x0000000000005707
ID chybujícího procesu: 0x628
Čas spuštění chybující aplikace: 0x01d27b27d382e0c6
Cesta k chybující aplikaci: C:\WINDOWS\system32\svchost.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\bcryptPrimitives.dll
ID zprávy: 7a3a6ddc-fb03-48bf-8695-0948c0ddcb3d
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (01/30/2017 07:36:51 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Systém Windows nemůže získat přístup k souboru C:\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3485_for_KB3206632~31bf3856ad364e35~amd64~~10.0.1.8.cat z jednoho z těchto důvodů:
došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen, nebo
s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí.
Systém Windows kvůli této chybě ukončil program Host Process for Windows Services.
Program: Host Process for Windows Services
Soubor: C:\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3485_for_KB3206632~31bf3856ad364e35~amd64~~10.0.1.8.cat
Hodnota chyby je uvedena v části Další údaje.
Akce uživatele
1. Otevřete soubor znovu.
Může se jednat o dočasný problém, který se při novém spuštění programu nebude opakovat.
2.
Pokud k souboru stále nelze získat přístup a:
- Nachází se v síti,
měl by správce sítě ověřit, zda nedošlo k problému se sítí a zda lze server kontaktovat.
- Je na vyměnitelném disku (například disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače.
3. Zkontrolujte a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK. Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER.
4. Pokud potíže potrvají, obnovte soubor ze záložní kopie.
5. Zjistěte, zda lze otevřít jiné soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný disk, obraťte se na správce nebo na dodavatele počítačového hardwaru
se žádostí o pomoc.
Další údaje
Hodnota chyby: C0000102
Typ disku: 3
Error: (01/30/2017 07:36:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_CryptSvc, verze: 10.0.14393.0, časové razítko: 0x57899b1c
Název chybujícího modulu: bcryptPrimitives.dll, verze: 10.0.14393.0, časové razítko: 0x57899aef
Kód výjimky: 0xc0000006
Posun chyby: 0x0000000000005707
ID chybujícího procesu: 0xe14
Čas spuštění chybující aplikace: 0x01d27b27d088fec7
Cesta k chybující aplikaci: C:\WINDOWS\system32\svchost.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\bcryptPrimitives.dll
ID zprávy: 97e67fa9-4df0-4cb5-9963-01e974343ef1
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
System errors:
=============
Error: (01/30/2017 08:54:49 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Telefonie byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 120000 milisekund: Restartovat službu.
Error: (01/30/2017 08:54:49 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Klient DNS byla neočekávaně ukončena. Tento stav nastal již 469krát.
Error: (01/30/2017 08:54:49 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Šifrování byla neočekávaně ukončena. Tento stav nastal již 469krát.
Error: (01/30/2017 08:44:19 PM) (Source: DCOM) (EventID: 10000) (User: NT AUTHORITY)
Description: Nelze spustit server DCOM: {10DA4F3C-CC99-4190-BE4D-58330754E882}. Došlo k chybě:
193
při provádění příkazu:
C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL -Embedding
Error: (01/30/2017 08:44:19 PM) (Source: DCOM) (EventID: 10000) (User: NT AUTHORITY)
Description: Nelze spustit server DCOM: {10DA4F3C-CC99-4190-BE4D-58330754E882}. Došlo k chybě:
193
při provádění příkazu:
C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL -Embedding
Error: (01/30/2017 08:44:19 PM) (Source: DCOM) (EventID: 10000) (User: NT AUTHORITY)
Description: Nelze spustit server DCOM: {10DA4F3C-CC99-4190-BE4D-58330754E882}. Došlo k chybě:
193
při provádění příkazu:
C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL -Embedding
Error: (01/30/2017 08:44:19 PM) (Source: DCOM) (EventID: 10000) (User: NT AUTHORITY)
Description: Nelze spustit server DCOM: {10DA4F3C-CC99-4190-BE4D-58330754E882}. Došlo k chybě:
193
při provádění příkazu:
C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL -Embedding
Error: (01/30/2017 08:44:19 PM) (Source: DCOM) (EventID: 10000) (User: NT AUTHORITY)
Description: Nelze spustit server DCOM: {10DA4F3C-CC99-4190-BE4D-58330754E882}. Došlo k chybě:
193
při provádění příkazu:
C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL -Embedding
Error: (01/30/2017 08:30:47 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Klient DNS byla neočekávaně ukončena. Tento stav nastal již 468krát.
Error: (01/30/2017 08:30:47 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Šifrování byla neočekávaně ukončena. Tento stav nastal již 468krát.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i5-3230M CPU @ 2.60GHz
Percentage of memory in use: 41%
Total physical RAM: 8042.57 MB
Available physical RAM: 4690.93 MB
Total Virtual: 9322.57 MB
Available Virtual: 5884.47 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:915.15 GB) (Free:548.37 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (Recovery Image) (Fixed) (Total:14.04 GB) (Free:1.36 GB) NTFS
Drive f: (GTA-San Andreas) (CDROM) (Total:3.94 GB) (Free:0 GB) CDFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: A50E1C7D)
Partition: GPT.
==================== End of Addition.txt ============================
Ran by konec (30-01-2017 20:56:43)
Running from C:\Users\konec\Desktop
Windows 10 Home Version 1607 (X64) (2016-09-21 13:23:22)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-466670803-733275211-1192568883-500 - Administrator - Disabled)
DefaultAccount (S-1-5-21-466670803-733275211-1192568883-503 - Limited - Disabled)
Guest (S-1-5-21-466670803-733275211-1192568883-501 - Limited - Disabled)
konec (S-1-5-21-466670803-733275211-1192568883-1001 - Administrator - Enabled) => C:\Users\konec
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AV: Avast Antivirus (Disabled - Up to date) {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Avast Antivirus (Disabled - Up to date) {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\uTorrent) (Version: 3.4.9.43085 - BitTorrent Inc.)
64 Bit HP CIO Components Installer (Version: 7.2.8 - Hewlett-Packard) Hidden
7-Zip 15.14 (HKLM-x32\...\{23170F69-40C1-2701-1514-000001000000}) (Version: 15.14.00.0 - Igor Pavlov)
AC3Filter 2.0a (HKLM-x32\...\AC3Filter_is1) (Version: 2.0a - Alexander Vigovsky)
Adobe Creative Cloud (HKLM-x32\...\Adobe Creative Cloud) (Version: 3.7.5.291 - Adobe Systems Incorporated)
Adobe Shockwave Player 12.2 (HKLM-x32\...\Adobe Shockwave Player) (Version: 12.2.5.195 - Adobe Systems, Inc.)
Avast Free Antivirus (HKLM-x32\...\Avast) (Version: 12.3.2280 - AVAST Software)
B109n-z (x32 Version: 140.0.851.000 - Hewlett-Packard) Hidden
Battle.net (HKLM-x32\...\Battle.net) (Version: - Blizzard Entertainment)
Bloody6 (HKLM-x32\...\Bloody3) (Version: 16.12.0020 - Bloody)
BufferChm (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
Camtasia 9 (HKLM-x32\...\{48cb006a-7b5b-4a48-98fd-fbd7af456b0d}) (Version: 9.0.1.1422 - TechSmith Corporation)
Camtasia 9 (Version: 9.0.1.1422 - TechSmith Corporation) Hidden
Camtasia Studio 8 (HKLM-x32\...\{A2A41B60-D51F-4C04-BC94-B4C94F7B6DC0}) (Version: 8.6.0.2054 - TechSmith Corporation)
CCleaner (HKLM\...\CCleaner) (Version: 5.25 - Piriform)
Counter-Strike 1.6 (HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\Counter-Strike 1.6) (Version: - )
Counter-Strike Global Offensive WaRzOnE (HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\CSGO) (Version: - CS WaRzOnE)
Crusaders of the Lost Idols (HKLM\...\Steam App 402840) (Version: - Codename Entertainment Inc.)
DAEMON Tools Lite (HKLM\...\DAEMON Tools Lite) (Version: 10.4.0.0196 - Disc Soft Ltd)
Destinations (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
DeviceDiscovery (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
Dxtory version 2.0.122 (HKLM-x32\...\Dxtory2.0_is1) (Version: 2.0.122 - Dxtory Software)
Euro Truck Simulator 2 (HKLM-x32\...\{1B705E8F-9893-4486-B5D7-4F7FEB9C871E}_is1) (Version: 1.1.1 - SCS Software)
Farming Simulator 15 (HKLM-x32\...\Farming Simulator 15_is1) (Version: - )
Galactic Junk League (HKLM\...\Steam App 562590) (Version: - Pixel Federation)
Gaming Keyboard Driver (HKLM-x32\...\{B3CDED64-7DC2-429D-A325-BBC3CF793AA6}) (Version: 1.0 - Senbiz)
Google Earth (HKLM-x32\...\{A0C18B96-AB79-46BD-8321-6FA83E6D25B9}) (Version: 7.1.7.2606 - Google)
Google Chrome (HKLM-x32\...\Google Chrome) (Version: 55.0.2883.87 - Google Inc.)
Google Update Helper (x32 Version: 1.3.32.7 - Google Inc.) Hidden
Gotham City Impostors: Free To Play (HKLM\...\Steam App 206210) (Version: - Monolith Productions, Inc.)
GPBaseService2 (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Hi-Rez Studios Authenticate and Update Service (HKLM-x32\...\{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}) (Version: 3.0.0.0 - Hi-Rez Studios)
HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP Photosmart Wireless B109n-z All-In-One Driver Software 14.0 Rel. 6 (HKLM\...\{5B8D29B6-988A-4EFB-A577-CFA8968DD7D3}) (Version: 14.0 - HP)
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HP Support Assistant (HKLM-x32\...\{61EB474B-67A6-47F4-B1B7-386851BAB3D0}) (Version: 8.3.50.9 - Hewlett-Packard Company)
HP Support Solutions Framework (HKLM-x32\...\{E1BB50BA-7CCB-47CD-9FE3-03AAE6EEF862}) (Version: 12.5.32.203 - Hewlett-Packard Company)
HP Update (HKLM-x32\...\{912D30CF-F39E-4B31-AD9A-123C6B794EE2}) (Version: 5.005.002.002 - Hewlett-Packard)
HPPhotoGadget (x32 Version: 140.0.524.000 - Hewlett-Packard) Hidden
HPProductAssistant (x32 Version: 140.0.298.000 - Hewlett-Packard) Hidden
HPSSupply (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Cheat Engine 6.6 (HKLM-x32\...\Cheat Engine 6.6_is1) (Version: - Cheat Engine)
IconLover (HKLM-x32\...\IconLover) (Version: 5.46 - Aha-Soft)
Intel(R) Processor Graphics (HKLM-x32\...\{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}) (Version: 10.18.10.4276 - Intel Corporation)
Istrolid (HKLM\...\Steam App 449140) (Version: - treeform)
Java 8 Update 121 (HKLM-x32\...\{26A24AE4-039D-4CA4-87B4-2F32180121F0}) (Version: 8.0.1210.13 - Oracle Corporation)
League of Legends (HKLM-x32\...\League of Legends 3.0.1) (Version: 3.0.1 - Riot Games)
League of Legends (x32 Version: 3.0.1 - Riot Games) Hidden
LogMeIn Hamachi (HKLM-x32\...\LogMeIn Hamachi) (Version: 2.2.0.541 - LogMeIn, Inc.)
LogMeIn Hamachi (x32 Version: 2.2.0.541 - LogMeIn, Inc.) Hidden
MarketResearch (x32 Version: 140.0.212.000 - Hewlett-Packard) Hidden
Metric Collection SDK 35 (x32 Version: 1.2.0010.00 - Lenovo Group Limited) Hidden
Microsoft .NET Framework 4 Multi-Targeting Pack (HKLM-x32\...\{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Help Viewer 1.0 (HKLM\...\Microsoft Help Viewer 1.0) (Version: 1.0.30319 - Microsoft Corporation)
Microsoft Office Professional Plus 2013 - cs-cz (HKLM\...\ProPlusRetail - cs-cz) (Version: 15.0.4893.1002 - Microsoft Corporation)
Microsoft Silverlight (HKLM-x32\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2008 R2 Management Objects (HKLM-x32\...\{4E968D9C-21A7-4915-B698-F7AEB913541D}) (Version: 10.50.1447.4 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{3A9FC03D-C685-4831-94CF-4EDFD3749497}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server Compact 3.5 SP2 x64 ENU (HKLM\...\{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}) (Version: 3.5.8080.0 - Microsoft Corporation)
Microsoft SQL Server System CLR Types (HKLM-x32\...\{2A2F3AE8-246A-4252-BB26-1BEB45627074}) (Version: 10.50.1447.4 - Microsoft Corporation)
Microsoft Visual Basic 2010 Express - ENU (HKLM-x32\...\Microsoft Visual Basic 2010 Express - ENU) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - x64 8.0.61000 (HKLM\...\{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}) (Version: 8.0.61000 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable - x86 8.0.61001 (HKLM-x32\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 (HKLM\...\{02A39130-2CF3-30CA-8623-30F6071A4221}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 (HKLM\...\{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974 (HKLM-x32\...\{B7E38540-E355-3503-AFD7-635B2F2F76E1}) (Version: 9.0.30729.4974 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM-x32\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 x64 Runtime - 10.0.30319 (HKLM\...\{94D70749-4281-39AC-AD90-B56A0E0A402E}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x64 10.0.40219 (HKLM\...\{1D8E6291-B0D5-35EC-8441-6616F567A0F7}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM-x32\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.61030 (HKLM-x32\...\{a2199617-3609-410f-a8e8-e8806c73545b}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM-x32\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x64) - 12.0.40649 (HKLM-x32\...\{c6870a89-ef30-4f22-bbd1-49cd2516bc56}) (Version: 12.0.40649.5 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.40649 (HKLM-x32\...\{78142960-066b-4581-b984-0bdcf560c4be}) (Version: 12.0.40649.5 - Корпорация Майкрософт)
Microsoft Visual C++ 2015 Redistributable (x64) - 14.0.23918 (HKLM-x32\...\{7c3d0734-5e24-446b-85ae-c610ee8eb53d}) (Version: 14.0.23918.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.23918 (HKLM-x32\...\{a15bc95a-8359-40e6-b4bc-5a219bcc492a}) (Version: 14.0.23918.0 - Корпорация Майкрософт)
Microsoft Visual Studio 2010 ADO.NET Entity Framework Tools (HKLM-x32\...\{14DD7530-CCD2-3798-B37D-3839ED6A441C}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Visual Studio 2010 Express Prerequisites x64 - ENU (HKLM\...\{BCA26999-EC22-3007-BB79-638913079C9A}) (Version: 10.0.30319 - Microsoft Corporation)
Microsoft Xbox 360 Accessories 1.2 (HKLM\...\{D9C50188-12D5-4D3E-8F00-682346C2AA5F}) (Version: 1.20.146.0 - Microsoft)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM-x32\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Mini Metro (HKLM-x32\...\1434554947_is1) (Version: 2.0.0.3 - GOG.com)
Mitos.is: The Game (HKLM\...\Steam App 389570) (Version: - Freakinware Studios)
Mozilla Firefox 50.1.0 (x64 cs) (HKLM\...\Mozilla Firefox 50.1.0 (x64 cs)) (Version: 50.1.0 - Mozilla)
Mozilla Maintenance Service (HKLM-x32\...\MozillaMaintenanceService) (Version: 50.0.2.6177 - Mozilla)
Network64 (Version: 140.0.306.000 - Hewlett-Packard) Hidden
NVIDIA PhysX v8.05.26 (HKLM-x32\...\{11AE6807-50D2-4F59-82B3-2C3E695E94C2}) (Version: 8.05.26 - NVIDIA Corporation)
Office 15 Click-to-Run Extensibility Component (x32 Version: 15.0.4893.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Licensing Component (Version: 15.0.4893.1002 - Microsoft Corporation) Hidden
Office 15 Click-to-Run Localization Component (x32 Version: 15.0.4893.1002 - Microsoft Corporation) Hidden
Paladins (HKLM\...\Steam App 444090) (Version: - Hi-Rez Studios)
PhotoFiltre 7 (HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\PhotoFiltre 7) (Version: - )
Podpora aplikací Apple (32bitová) (HKLM-x32\...\{29DB9165-5FC1-48F0-9188-26123F526848}) (Version: 5.0.1 - Apple Inc.)
Podpora aplikací Apple (64bitová) (HKLM\...\{5905C8CF-1C88-4478-A48E-4E458AD1BC7E}) (Version: 5.0.1 - Apple Inc.)
PS_AIO_06_B109n-z_SW_Min (x32 Version: 140.0.863.000 - Hewlett-Packard) Hidden
QuickTransfer (x32 Version: 140.0.98.000 - Hewlett-Packard) Hidden
ROBLOX Player for konec (HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\{373B1718-8CC5-4567-8EE2-9033AD08A680}) (Version: - ROBLOX Corporation)
ROBLOX Studio for konec (HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\{2922D6F1-2865-4EFA-97A9-94EEAB3AFA14}) (Version: - ROBLOX Corporation)
Robocraft (HKLM\...\Steam App 301520) (Version: - Freejam)
SafeZone Stable 1.51.2220.62 (x32 Version: 1.51.2220.62 - Avast Software) Hidden
Scan (x32 Version: 140.0.253.000 - Hewlett-Packard) Hidden
Seznam Software (HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\SeznamInstall) (Version: - Seznam.cz)
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP)
Skype Web Plugin (HKLM-x32\...\{DEAF2D27-DEBD-4DB5-9260-6665650D1F44}) (Version: 7.19.0.182 - Skype Technologies S.A.)
Skype™ 7.31 (HKLM-x32\...\{FC965A47-4839-40CA-B618-18F486F042C6}) (Version: 7.31.104 - Skype Technologies S.A.)
SolutionCenter (x32 Version: 140.0.299.000 - Hewlett-Packard) Hidden
Status (x32 Version: 140.0.342.000 - Hewlett-Packard) Hidden
Steam (HKLM-x32\...\Steam) (Version: 2.10.91.91 - Valve Corporation)
swMSM (x32 Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 19.0.12.0 - Synaptics Incorporated)
Team Fortress 2 (HKLM\...\Steam App 440) (Version: - Valve)
TeamSpeak 3 Client (HKLM\...\TeamSpeak 3 Client) (Version: 3.0.19 - TeamSpeak Systems GmbH)
TeamViewer 11 (HKLM-x32\...\TeamViewer) (Version: 11.0.66695 - TeamViewer)
Terraria (HKLM-x32\...\1207665503_is1) (Version: 2.12.0.14 - GOG.com)
Toolbox (x32 Version: 140.0.596.000 - Hewlett-Packard) Hidden
TrayApp (x32 Version: 140.0.297.000 - Hewlett-Packard) Hidden
Unity Web Player (HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\UnityWebPlayer) (Version: 2.6.1f3_31223 - Unity Technologies ApS)
Unturned (HKLM\...\Steam App 304930) (Version: - Smartly Dressed Games)
VirtualDJ 8 (HKLM-x32\...\{9ADBBA93-4625-4898-BB0D-BCE7EA9F8B4A}) (Version: 8.0.0 - Atomix Productions)
Visual Studio 2010 Tools for SQL Server Compact 3.5 SP2 ENU (HKLM-x32\...\{112C23F2-C036-4D40-BED4-0CB47BF5555C}) (Version: 4.0.8080.0 - Microsoft Corporation)
Warframe (HKLM\...\Steam App 230410) (Version: - Digital Extremes)
WebReg (x32 Version: 140.0.297.017 - Hewlett-Packard) Hidden
WinRAR 5.21 (64-bit) (HKLM\...\WinRAR archiver) (Version: 5.21.0 - win.rar GmbH)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\ChromeHTML: -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) <==== ATTENTION
CustomCLSID: HKU\S-1-5-21-466670803-733275211-1192568883-1001_Classes\CLSID\{57EB1159-E1B2-4184-8268-800B4CA62C3A}\InprocServer32 -> C:\Users\konec\AppData\Local\SkypePlugin\7.19.0.182\GatewayActiveX-x64.dll (Skype Technologies S.A.)
CustomCLSID: HKU\S-1-5-21-466670803-733275211-1192568883-1001_Classes\CLSID\{820D63D5-8CFF-46DE-86AF-4997DEDD6DB5}\localserver32 -> C:\WINDOWS\system32\igfxEM.exe (Intel Corporation)
CustomCLSID: HKU\S-1-5-21-466670803-733275211-1192568883-1001_Classes\CLSID\{CBF9CD8C-2714-4F36-B76A-43E6C7547BC2}\localserver32 -> C:\Users\konec\AppData\Local\SkypePlugin\7.19.0.182\EdgeCalling.exe (Skype Technologies S.A.)
CustomCLSID: HKU\S-1-5-21-466670803-733275211-1192568883-1001_Classes\CLSID\{DEE03C2B-0C0C-41A9-9877-FD4B4D7B6EA3}\InprocServer32 -> C:\Users\konec\AppData\Local\Roblox\Versions\version-7b8ced67462c404f\RobloxProxy64.dll (ROBLOX Corporation)
CustomCLSID: HKU\S-1-5-21-466670803-733275211-1192568883-1001_Classes\CLSID\{E8AF02B0-222B-4B62-9C61-190D32BD053C}\localserver32 -> C:\Users\konec\AppData\Local\SkypePlugin\7.19.0.182\GatewayVersion-x64.exe (Skype Technologies S.A.)
CustomCLSID: HKU\S-1-5-21-466670803-733275211-1192568883-1001_Classes\CLSID\{e8c77137-e224-5791-b6e9-ff0305797a13}\InprocServer32 -> C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {018AA41A-4248-4116-AFD4-3F7AD546396A} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-09] (Google Inc.)
Task: {04C099D8-348F-44E8-80FC-334DD64A7D60} - System32\Tasks\Hewlett-Packard\HP Support Assistant\PC Health Analysis => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-12-07] (HP Inc.)
Task: {09E1FD9C-7A57-4150-9D83-AEE15DA7B1DF} - System32\Tasks\Lenovo\Lenovo Customer Feedback Program 64 35 => C:\Program Files (x86)\Lenovo\Customer Feedback Program 35\Lenovo.TVT.CustomerFeedback.Agent35.exe
Task: {0E71C739-4493-44AC-9B07-F020F0E35FFD} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2017-01-29] (AVAST Software)
Task: {128EA2EC-3827-4BF2-A512-E2C7B343BB2F} - System32\Tasks\Hewlett-Packard\HP Support Assistant\Product Configurator => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\ProductConfig.exe [2016-12-15] (HP Inc.)
Task: {14746FEC-7A6A-45FD-9489-ECE2CBCE5E41} - System32\Tasks\RunAsStdUser Task => C:\Program Files (x86)\Moo0\VoiceRecorder 1.43\VoiceRecorder.exe
Task: {19F158BB-E0C3-4D3B-9FD8-D2B4F5AD578C} - System32\Tasks\{FFBB870F-D916-4611-81DF-81448C3A2E85} => pcalua.exe -a "C:\Program Files (x86)\MPC Cleaner\Uninstall.exe"
Task: {2D6BBE97-8C9A-4210-A7E5-38DA1E5764E4} - System32\Tasks\SafeZone scheduled Autoupdate 1474118964 => C:\Program Files\AVAST Software\SZBrowser\launcher.exe [2016-09-06] (Avast Software)
Task: {33A2124C-2678-4941-9319-4E3CFC3B424B} - System32\Tasks\HPCeeScheduleForkonec => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2015-06-16] (Hewlett-Packard)
Task: {37F9269E-B65D-4452-A859-0A894AA15D47} - System32\Tasks\Browser Updater Task(Core) => C:\Program Files (x86)\QQBrowser\Update\Download\73038F0562E07FDFE1F0A045978AF782\Update\BrowserUpdate.exe [2016-03-17] (Tencent) <==== ATTENTION
Task: {3C632963-27DA-482A-8423-8FE7BF08B73D} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2016-12-06] (Piriform Ltd)
Task: {57268B7C-06B0-4D2B-8F80-0709AB8D276E} - System32\Tasks\Microsoft\Windows\RemovalTools\MRT_HB => C:\WINDOWS\system32\MRT.exe [2017-01-12] (Microsoft Corporation)
Task: {61D1D0E3-F97C-4CCD-B99D-1DDEACD5EB43} - System32\Tasks\Microsoft\Office\Office Automatic Updates => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2016-11-01] (Microsoft Corporation)
Task: {64A25124-F186-496C-A0F7-36183AB61B6D} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Report => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSFReport.exe [2016-12-21] (HP Inc.)
Task: {66C652AA-43DD-4BB1-B0DF-AF22448BD657} - System32\Tasks\avast! Emergency Update => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe [2016-09-17] (AVAST Software)
Task: {710F0403-EA5C-4CD4-971B-F6CF6FFB10D3} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Microsoft Office 15\ClientX64\OfficeC2RClient.exe [2016-11-01] (Microsoft Corporation)
Task: {7359FE56-53E5-4504-81B4-ACE020413AED} - System32\Tasks\Hewlett-Packard\HP Active Health\HP Active Health Scan (HPSA) => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPActiveHealth\ActiveHealth.exe [2016-11-07] (HP Inc.)
Task: {772D5E05-CE57-4DE3-BEBB-13847AAAABEA} - System32\Tasks\{5D72DED3-F4CE-454A-8C36-436E00ACA17D} => pcalua.exe -a "C:\ProgramData\Battle.net\Agent\Blizzard Uninstaller.exe" -c --lang=enUS --uid=battle.net --displayname="Battle.net"
Task: {787C7C00-AF02-4EBE-93F4-20C99E57440A} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Assistant Quick Start => C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSF.exe [2016-12-07] (HP Inc.)
Task: {94597E27-FBAD-40E8-B356-B2499FCB8D66} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2015-09-09] (Google Inc.)
Task: {B35F8056-74E9-4CEA-B779-1F22EE106FB0} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2016-11-01] (Microsoft Corporation)
Task: {CBE6EA90-CA1C-4E94-B07D-91F73F95057B} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack => C:\Program Files\Microsoft Office 15\root\Office15\msoia.exe [2016-11-01] (Microsoft Corporation)
Task: {D6DA83A7-4106-44D8-B0D3-AD847D88371E} - System32\Tasks\Hewlett-Packard\HP Support Assistant\HP Support Solutions Framework Updater => C:\Program Files (x86)\Hewlett-Packard\HP Support Solutions\Modules\HPSSFUpdater.exe [2016-12-07] (HP Inc.)
Task: {ED9E2774-0F26-429B-98F4-59BA583329B7} - System32\Tasks\AVGPCTuneUp_Task_BkGndMaintenance => C:\Program Files (x86)\AVG\AVG PC TuneUp\tuscanx.exe
Task: {FB40AA3A-5DC0-46CB-9558-A047ABCF7FA7} - System32\Tasks\avast! Windows 10 Start Menu helper => c:\program files\avast software\avast\asww10mon.exe
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
Task: C:\WINDOWS\Tasks\HPCeeScheduleForkonec.job => C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe
==================== Shortcuts =============================
(The entries could be listed to be restored or removed.)
Shortcut: C:\Users\konec\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\Online Help.lnk -> hxxp://www.virtualdj.com/wiki
Shortcut: C:\Users\konec\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\VirtualDJ\www.virtualdj.com.lnk -> hxxp://www.virtualdj.com
==================== Loaded Modules (Whitelisted) ==============
2016-07-16 12:42 - 2016-07-16 12:42 - 00231424 _____ () C:\WINDOWS\SYSTEM32\ism32k.dll
2016-12-10 07:29 - 2016-11-11 11:10 - 02681200 _____ () C:\WINDOWS\system32\CoreUIComponents.dll
2015-06-10 16:33 - 2015-06-10 16:33 - 00022528 _____ () C:\WINDOWS\system32\fpCSEvtSvc.exe
2015-09-09 22:04 - 2016-05-24 08:51 - 00116416 _____ () C:\Program Files\Microsoft Office 15\ClientX64\ApiClient.dll
2016-12-10 07:29 - 2016-11-11 11:10 - 02681200 _____ () C:\WINDOWS\SYSTEM32\CoreUIComponents.dll
2016-05-22 18:33 - 2016-05-22 18:33 - 00491184 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSyncExtension\CoreSync_x64.dll
2016-09-21 14:33 - 2016-09-21 14:33 - 00959168 _____ () C:\Users\konec\AppData\Local\Microsoft\OneDrive\17.3.6390.0509\amd64\ClientTelemetry.dll
2016-09-21 14:17 - 2016-09-21 14:17 - 00134656 _____ () C:\Windows\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
2016-12-10 07:28 - 2016-11-11 10:23 - 00474112 _____ () C:\Windows\ShellExperiences\QuickActions.dll
2016-12-06 15:09 - 2016-12-06 15:09 - 00061440 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
2016-10-27 17:20 - 2013-04-09 11:13 - 00270336 _____ () C:\Program Files (x86)\Gaming Keyboard\Monitor.EXE
2016-10-27 17:20 - 2013-01-09 10:47 - 00151552 _____ () C:\Program Files (x86)\Gaming Keyboard\OSD.exe
2016-05-22 18:32 - 2016-05-22 18:32 - 31680176 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
2017-01-23 13:18 - 2017-01-23 13:18 - 00072192 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.152.0_x64__kzf8qxf38zg5c\SkypeHost.exe
2017-01-23 13:18 - 2017-01-23 13:18 - 00179712 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.152.0_x64__kzf8qxf38zg5c\SkypeBackgroundTasks.dll
2017-01-23 13:18 - 2017-01-23 13:18 - 42130432 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.152.0_x64__kzf8qxf38zg5c\SkyWrap.dll
2016-12-14 15:49 - 2016-12-14 15:49 - 02216448 _____ () C:\Program Files\WindowsApps\Microsoft.SkypeApp_11.10.152.0_x64__kzf8qxf38zg5c\roottools.dll
2016-11-09 21:21 - 2016-11-02 11:21 - 09760768 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
2016-11-09 21:21 - 2016-11-02 11:15 - 01401856 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
2016-11-09 21:21 - 2016-11-02 11:14 - 00757248 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CSGSuggestLib.dll
2016-11-09 21:21 - 2016-11-02 11:16 - 02424320 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
2016-11-09 21:21 - 2016-11-02 11:17 - 04853760 _____ () C:\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
2016-09-17 14:25 - 2016-09-17 14:25 - 00169064 _____ () C:\Program Files\AVAST Software\Avast\JsonRpcServer.dll
2017-01-30 13:30 - 2017-01-30 13:30 - 04459608 _____ () C:\Program Files\AVAST Software\Avast\defs\17013000\algo.dll
2016-09-17 14:25 - 2016-09-17 14:25 - 00482928 _____ () C:\Program Files\AVAST Software\Avast\ffl2.dll
2016-09-17 14:25 - 2016-09-17 14:25 - 48936448 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2016-10-27 17:20 - 2012-11-05 07:09 - 00057344 _____ () C:\Program Files (x86)\Gaming Keyboard\lan.dll
2016-10-27 17:20 - 2012-11-05 07:37 - 00061440 _____ () C:\Program Files (x86)\Gaming Keyboard\hiddriver.dll
2016-06-07 23:10 - 2016-06-07 23:10 - 00118272 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\fs-ext\build\Release\fs-ext.node
2016-06-07 23:10 - 2016-06-07 23:10 - 00205824 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-vulcanjs\build\Release\VulcanJS.node
2016-06-07 23:10 - 2016-06-07 23:10 - 00117248 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ref\build\Release\binding.node
2016-06-07 23:10 - 2016-06-07 23:10 - 00125440 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\ffi\build\Release\ffi_bindings.node
2016-07-18 07:44 - 2016-07-18 07:44 - 00098496 _____ () C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\node-ProxyResolver\build\Release\ProxyResolverWin.dll
2016-06-07 23:10 - 2016-06-07 23:10 - 00166400 _____ () \\?\C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CCXProcess\js\node_modules\idle-gc\build\Release\idle-gc.node
2016-02-24 16:50 - 2016-09-21 09:22 - 00325824 _____ () C:\Program Files\Microsoft Office 15\root\office15\AppVIsvStream32.dll
2015-09-09 22:04 - 2015-09-09 22:08 - 01754296 _____ () C:\Program Files\Microsoft Office 15\Root\Office15\tmpod.dll
2017-01-18 09:28 - 2017-01-18 09:29 - 01041608 _____ () C:\Program Files\Microsoft Office 15\Root\Office15\ADDINS\UmOutlookAddin.dll
2016-10-26 18:56 - 2016-09-06 11:00 - 05197312 _____ () C:\Users\konec\AppData\Local\Google\Chrome\User Data\SwiftShader\3.3.0.1\libglesv2.dll
2016-10-26 18:56 - 2016-09-06 11:00 - 00147456 _____ () C:\Users\konec\AppData\Local\Google\Chrome\User Data\SwiftShader\3.3.0.1\libegl.dll
2016-12-10 07:29 - 2016-11-11 11:10 - 02681200 _____ () C:\WINDOWS\System32\CoreUIComponents.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
AlternateDataStreams: C:\Users\konec:Heroes & Generals [38]
AlternateDataStreams: C:\ProgramData\TEMP:FB6A21E3 [128]
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Hamachi2Svc => ""="Service"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
IE trusted site: HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\amazon.com -> hxxps://amazon.com
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2015-07-10 12:04 - 2015-07-10 12:02 - 00000824 ____A C:\WINDOWS\system32\Drivers\etc\hosts
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKU\S-1-5-21-466670803-733275211-1192568883-1001\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Windows\img0.jpg
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
HKLM\...\StartupApproved\Run: => "cpuminer"
HKLM\...\StartupApproved\Run: => "iTunesHelper"
HKLM\...\StartupApproved\Run32: => "seznam-listicka-distribuce"
HKLM\...\StartupApproved\Run32: => "LogMeIn Hamachi Ui"
HKLM\...\StartupApproved\Run32: => "4StoryPrePatch"
HKLM\...\StartupApproved\Run32: => "Tv-Plug-In"
HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\StartupApproved\Run: => "cz.seznam.software.autoupdate"
HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\StartupApproved\Run: => "cz.seznam.software.szndesktop"
HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\StartupApproved\Run: => "uTorrent"
HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\StartupApproved\Run: => "OneDrive"
HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\StartupApproved\Run: => "Steam"
HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\StartupApproved\Run: => "BlueStacks Agent"
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [TCP Query User{59E164C1-AFCB-47B5-AEA2-FB2461C23EE0}C:\program files (x86)\google\chrome\application\chrome.exe] => C:\program files (x86)\google\chrome\application\chrome.exe
FirewallRules: [UDP Query User{18C010CF-42CA-4D86-9D3B-2F4A2A7EC59E}C:\program files (x86)\google\chrome\application\chrome.exe] => C:\program files (x86)\google\chrome\application\chrome.exe
FirewallRules: [{AABFCB6C-E066-4929-B20D-E0E835443CA4}] => C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{D58B3BDC-74AE-48D6-B387-1E8A6CCF0F22}] => C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{CB36D943-83D2-4F91-9451-F02ED01FB1A0}] => C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{D072540F-72D3-484B-8A57-99D9B8E593DA}] => C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [TCP Query User{EF6316F1-4072-4B4D-A1ED-328EADA6D7D7}C:\program files (x86)\steam\steamapps\common\paladins\binaries\win32\paladins.exe] => C:\program files (x86)\steam\steamapps\common\paladins\binaries\win32\paladins.exe
FirewallRules: [UDP Query User{2FF6E52B-C116-44BA-9933-4351D7D74210}C:\program files (x86)\steam\steamapps\common\paladins\binaries\win32\paladins.exe] => C:\program files (x86)\steam\steamapps\common\paladins\binaries\win32\paladins.exe
FirewallRules: [TCP Query User{934A76F9-708D-49C8-B73F-AA4A7C94EF2A}C:\program files (x86)\skype\phone\skype.exe] => C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [UDP Query User{15EF2AE9-2D62-4A75-9018-13FF002A1161}C:\program files (x86)\skype\phone\skype.exe] => C:\program files (x86)\skype\phone\skype.exe
FirewallRules: [{E27CC2A5-CF75-494D-B939-3CAF860616FC}] => LPort=8318
FirewallRules: [TCP Query User{91AE8320-65A7-46A8-A123-99E2F9F66372}C:\users\konec\desktop\ \locker\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => C:\users\konec\desktop\ \locker\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{B8689693-C5FF-47FD-8D66-056C8FB4DE3C}C:\users\konec\desktop\ \locker\runtime\jre-x64\1.8.0_25\bin\javaw.exe] => C:\users\konec\desktop\ \locker\runtime\jre-x64\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{21E633AE-CC93-4115-AA0F-4EACD2384E00}C:\users\konec\desktop\ \slime rancher v0.4.1.veroxpivigames\x64\slimerancher.exe] => C:\users\konec\desktop\ \slime rancher v0.4.1.veroxpivigames\x64\slimerancher.exe
FirewallRules: [UDP Query User{6661B183-95C5-4C2B-962E-A4EFF8820428}C:\users\konec\desktop\ \slime rancher v0.4.1.veroxpivigames\x64\slimerancher.exe] => C:\users\konec\desktop\ \slime rancher v0.4.1.veroxpivigames\x64\slimerancher.exe
FirewallRules: [TCP Query User{58FAF275-2EEC-477B-B775-4AD045376F37}C:\users\konec\desktop\ \zilak - get golf with your friends for free\game\golf with your friends\golf with your friends.exe] => C:\users\konec\desktop\ \zilak - get golf with your friends for free\game\golf with your friends\golf with your friends.exe
FirewallRules: [UDP Query User{2780DBF2-8353-4823-BBCF-3EE706017E3B}C:\users\konec\desktop\ \zilak - get golf with your friends for free\game\golf with your friends\golf with your friends.exe] => C:\users\konec\desktop\ \zilak - get golf with your friends for free\game\golf with your friends\golf with your friends.exe
FirewallRules: [{53392AD7-D659-4679-A7FF-849649B23A3A}] => C:\Program Files (x86)\Steam\steamapps\common\Robocraft\Robocraft.exe
FirewallRules: [{1013A063-219B-47E5-BE2F-86E3B8A81362}] => C:\Program Files (x86)\Steam\steamapps\common\Robocraft\Robocraft.exe
FirewallRules: [{B24DD59D-AA70-4627-96EE-D43758BD4CEA}] => C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned_BE.exe
FirewallRules: [{41EB92A3-920E-49CA-9649-3DF580548493}] => C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned_BE.exe
FirewallRules: [{8C13973E-62F9-4F12-BA48-76B6C5BF0C1F}] => C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe
FirewallRules: [{484131AF-46E8-4BDB-A719-A1131BB68DD8}] => C:\Program Files (x86)\Steam\steamapps\common\Unturned\Unturned.exe
FirewallRules: [TCP Query User{262F79C2-8AA0-487D-8911-0E9FA24A82C2}C:\games\counter-strike global offensive\csgo.exe] => C:\games\counter-strike global offensive\csgo.exe
FirewallRules: [UDP Query User{4A29A066-7D9E-4A48-BB48-A9A646663D14}C:\games\counter-strike global offensive\csgo.exe] => C:\games\counter-strike global offensive\csgo.exe
FirewallRules: [{260A3E82-359A-4C06-BBBB-29C3B75E0861}] => C:\Program Files (x86)\Steam\steamapps\common\Istrolid\istrolid.exe
FirewallRules: [{80123379-F291-4619-A5BD-9F1D3B48505B}] => C:\Program Files (x86)\Steam\steamapps\common\Istrolid\istrolid.exe
FirewallRules: [{BBA6C9BB-9F16-4375-A3C0-5798167F0814}] => C:\Program Files (x86)\Steam\steamapps\common\Gotham City Impostors F2P\Impostors.exe
FirewallRules: [{822A758C-D167-44A3-A26A-4AE60C809EBB}] => C:\Program Files (x86)\Steam\steamapps\common\Gotham City Impostors F2P\Impostors.exe
FirewallRules: [{8C65FEE2-A65A-461B-B3C1-21202DA1175C}] => C:\Program Files (x86)\Steam\steamapps\common\Gotham City Impostors F2P\Engine.exe
FirewallRules: [{CEA0E182-5F06-49CF-A2D1-F1ADD79CF445}] => C:\Program Files (x86)\Steam\steamapps\common\Gotham City Impostors F2P\Engine.exe
FirewallRules: [TCP Query User{95ED114F-38F7-4BA7-B0DC-42E228B3A756}C:\users\konec\appdata\roaming\utorrent\utorrent.exe] => C:\users\konec\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [UDP Query User{45E2269B-088A-415F-84AF-21F668CE789F}C:\users\konec\appdata\roaming\utorrent\utorrent.exe] => C:\users\konec\appdata\roaming\utorrent\utorrent.exe
FirewallRules: [TCP Query User{79DCEFA9-199B-4827-9654-634A362FFC4F}C:\games\counter-strike global offensive\launcher\tools\steamcmd.exe] => C:\games\counter-strike global offensive\launcher\tools\steamcmd.exe
FirewallRules: [UDP Query User{CB59A5AA-5B40-4C64-B098-674D58A305F8}C:\games\counter-strike global offensive\launcher\tools\steamcmd.exe] => C:\games\counter-strike global offensive\launcher\tools\steamcmd.exe
FirewallRules: [TCP Query User{9132EFC1-CD2B-4C17-8453-8E0042F6F993}C:\users\konec\desktop\ \runtime\jre-x64\1.8.0_51\bin\javaw.exe] => C:\users\konec\desktop\ \runtime\jre-x64\1.8.0_51\bin\javaw.exe
FirewallRules: [UDP Query User{82B44280-EEE7-45B1-AE80-5C251BDEF865}C:\users\konec\desktop\ \runtime\jre-x64\1.8.0_51\bin\javaw.exe] => C:\users\konec\desktop\ \runtime\jre-x64\1.8.0_51\bin\javaw.exe
FirewallRules: [TCP Query User{0D6E8A46-C599-4251-BB2E-5B2A2B19CCE8}C:\users\konec\gsplay\csko\hl.exe] => C:\users\konec\gsplay\csko\hl.exe
FirewallRules: [UDP Query User{838C6985-B52B-482D-A8DA-D67CFAED624E}C:\users\konec\gsplay\csko\hl.exe] => C:\users\konec\gsplay\csko\hl.exe
FirewallRules: [{FC6A600C-C49E-4D0F-8502-E1041CCC644D}] => C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [{30A2B970-F5B1-4723-93B6-32B3ADE5E903}] => C:\Program Files (x86)\Steam\steamapps\common\Team Fortress 2\hl2.exe
FirewallRules: [{B27ED733-7C17-4FC3-B3B0-E534645FE0BF}] => C:\Program Files\Microsoft Office 15\root\Office15\outlook.exe
FirewallRules: [{F7E4F3DD-7BBA-4D8A-A817-0175D4946741}] => C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [{FCE5B793-66A0-4D4C-B546-951C80CA93B4}] => C:\Program Files\Microsoft Office 15\root\Office15\Lync.exe
FirewallRules: [{CF6EF907-23B7-48C4-9E87-71B59C267E7F}] => C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [{313F24C0-21A1-44D6-8F67-4E8DD8153726}] => C:\Program Files\Microsoft Office 15\root\Office15\UcMapi.exe
FirewallRules: [{638B77BE-1316-43E7-B0BD-7DA204BA067D}] => C:\Program Files (x86)\Steam\steamapps\common\Galactic Junk League\GJL.exe
FirewallRules: [{ACB46B4A-9767-43A8-8B94-0EA75EFEB1BF}] => C:\Program Files (x86)\Steam\steamapps\common\Galactic Junk League\GJL.exe
FirewallRules: [{CD8069E1-C54F-490B-A7A6-37D7AEC70E5A}] => C:\Program Files (x86)\Steam\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe
FirewallRules: [{041F5943-37E9-4312-AC4E-A8968453A24D}] => C:\Program Files (x86)\Steam\steamapps\common\Paladins\Binaries\Win32\HirezBridge.exe
FirewallRules: [{6D50B3E4-195A-445C-9178-5DACFCFD8B01}] => C:\Program Files (x86)\Steam\steamapps\common\Galactic Junk League\GJL.exe
FirewallRules: [TCP Query User{C49BF7D9-58D7-4047-979F-CCF56D6E894C}C:\users\konec\desktop\ \locker\zumbiblocks-64bit\zumbiblocks.exe] => C:\users\konec\desktop\ \locker\zumbiblocks-64bit\zumbiblocks.exe
FirewallRules: [UDP Query User{510EA004-E708-466C-9749-822425D322E3}C:\users\konec\desktop\ \locker\zumbiblocks-64bit\zumbiblocks.exe] => C:\users\konec\desktop\ \locker\zumbiblocks-64bit\zumbiblocks.exe
FirewallRules: [TCP Query User{B4668D6D-2F82-4D48-BB81-DD1AC01E8BA3}C:\users\konec\counter-strike 1.6\hl.exe] => C:\users\konec\counter-strike 1.6\hl.exe
FirewallRules: [UDP Query User{3A835BBC-020C-4951-B560-0FF45A640D48}C:\users\konec\counter-strike 1.6\hl.exe] => C:\users\konec\counter-strike 1.6\hl.exe
FirewallRules: [{AA445814-69E9-477B-B931-59FE60E9031B}] => C:\Program Files (x86)\Steam\steamapps\common\Mitos.is The Game\Mitosis.exe
FirewallRules: [{AB769CBD-9A48-4DB6-BB19-2D569AAC61D3}] => C:\Program Files (x86)\Steam\steamapps\common\Mitos.is The Game\Mitosis.exe
FirewallRules: [TCP Query User{60C95B52-DEC2-4AFA-8B66-A2070418D832}C:\users\konec\desktop\v1.05_raft_win64\v1.05_raft_win64.exe] => C:\users\konec\desktop\v1.05_raft_win64\v1.05_raft_win64.exe
FirewallRules: [UDP Query User{E35C30B3-4F25-4EFF-B6FA-BD9EB990CF98}C:\users\konec\desktop\v1.05_raft_win64\v1.05_raft_win64.exe] => C:\users\konec\desktop\v1.05_raft_win64\v1.05_raft_win64.exe
==================== Restore Points =========================
08-01-2017 11:32:21 Naplánovaný kontrolní bod
26-01-2017 18:22:30 Naplánovaný kontrolní bod
==================== Faulty Device Manager Devices =============
Name:
Description:
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer:
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.
==================== Event log errors: =========================
Application errors:
==================
Error: (01/30/2017 08:54:48 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Systém Windows nemůže získat přístup k souboru C:\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3485_for_KB3206632~31bf3856ad364e35~amd64~~10.0.1.8.cat z jednoho z těchto důvodů:
došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen, nebo
s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí.
Systém Windows kvůli této chybě ukončil program Host Process for Windows Services.
Program: Host Process for Windows Services
Soubor: C:\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3485_for_KB3206632~31bf3856ad364e35~amd64~~10.0.1.8.cat
Hodnota chyby je uvedena v části Další údaje.
Akce uživatele
1. Otevřete soubor znovu.
Může se jednat o dočasný problém, který se při novém spuštění programu nebude opakovat.
2.
Pokud k souboru stále nelze získat přístup a:
- Nachází se v síti,
měl by správce sítě ověřit, zda nedošlo k problému se sítí a zda lze server kontaktovat.
- Je na vyměnitelném disku (například disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače.
3. Zkontrolujte a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK. Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER.
4. Pokud potíže potrvají, obnovte soubor ze záložní kopie.
5. Zjistěte, zda lze otevřít jiné soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný disk, obraťte se na správce nebo na dodavatele počítačového hardwaru
se žádostí o pomoc.
Další údaje
Hodnota chyby: C0000102
Typ disku: 3
Error: (01/30/2017 08:54:48 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_CryptSvc, verze: 10.0.14393.0, časové razítko: 0x57899b1c
Název chybujícího modulu: bcryptPrimitives.dll, verze: 10.0.14393.0, časové razítko: 0x57899aef
Kód výjimky: 0xc0000006
Posun chyby: 0x0000000000005707
ID chybujícího procesu: 0x554
Čas spuštění chybující aplikace: 0x01d27b2f680f9438
Cesta k chybující aplikaci: C:\WINDOWS\system32\svchost.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\bcryptPrimitives.dll
ID zprávy: 415114dd-a958-46ea-9d85-826f835a4113
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (01/30/2017 08:30:46 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Systém Windows nemůže získat přístup k souboru C:\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3485_for_KB3206632~31bf3856ad364e35~amd64~~10.0.1.8.cat z jednoho z těchto důvodů:
došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen, nebo
s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí.
Systém Windows kvůli této chybě ukončil program Host Process for Windows Services.
Program: Host Process for Windows Services
Soubor: C:\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3485_for_KB3206632~31bf3856ad364e35~amd64~~10.0.1.8.cat
Hodnota chyby je uvedena v části Další údaje.
Akce uživatele
1. Otevřete soubor znovu.
Může se jednat o dočasný problém, který se při novém spuštění programu nebude opakovat.
2.
Pokud k souboru stále nelze získat přístup a:
- Nachází se v síti,
měl by správce sítě ověřit, zda nedošlo k problému se sítí a zda lze server kontaktovat.
- Je na vyměnitelném disku (například disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače.
3. Zkontrolujte a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK. Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER.
4. Pokud potíže potrvají, obnovte soubor ze záložní kopie.
5. Zjistěte, zda lze otevřít jiné soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný disk, obraťte se na správce nebo na dodavatele počítačového hardwaru
se žádostí o pomoc.
Další údaje
Hodnota chyby: C0000102
Typ disku: 3
Error: (01/30/2017 08:30:46 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_CryptSvc, verze: 10.0.14393.0, časové razítko: 0x57899b1c
Název chybujícího modulu: bcryptPrimitives.dll, verze: 10.0.14393.0, časové razítko: 0x57899aef
Kód výjimky: 0xc0000006
Posun chyby: 0x0000000000005707
ID chybujícího procesu: 0x2094
Čas spuštění chybující aplikace: 0x01d27b27dd56c50e
Cesta k chybující aplikaci: C:\WINDOWS\system32\svchost.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\bcryptPrimitives.dll
ID zprávy: 52240284-e6ab-4f08-8ed8-2437ac93b0bf
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (01/30/2017 07:37:04 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Systém Windows nemůže získat přístup k souboru C:\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3485_for_KB3206632~31bf3856ad364e35~amd64~~10.0.1.8.cat z jednoho z těchto důvodů:
došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen, nebo
s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí.
Systém Windows kvůli této chybě ukončil program Host Process for Windows Services.
Program: Host Process for Windows Services
Soubor: C:\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3485_for_KB3206632~31bf3856ad364e35~amd64~~10.0.1.8.cat
Hodnota chyby je uvedena v části Další údaje.
Akce uživatele
1. Otevřete soubor znovu.
Může se jednat o dočasný problém, který se při novém spuštění programu nebude opakovat.
2.
Pokud k souboru stále nelze získat přístup a:
- Nachází se v síti,
měl by správce sítě ověřit, zda nedošlo k problému se sítí a zda lze server kontaktovat.
- Je na vyměnitelném disku (například disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače.
3. Zkontrolujte a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK. Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER.
4. Pokud potíže potrvají, obnovte soubor ze záložní kopie.
5. Zjistěte, zda lze otevřít jiné soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný disk, obraťte se na správce nebo na dodavatele počítačového hardwaru
se žádostí o pomoc.
Další údaje
Hodnota chyby: C0000102
Typ disku: 3
Error: (01/30/2017 07:37:04 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_CryptSvc, verze: 10.0.14393.0, časové razítko: 0x57899b1c
Název chybujícího modulu: bcryptPrimitives.dll, verze: 10.0.14393.0, časové razítko: 0x57899aef
Kód výjimky: 0xc0000006
Posun chyby: 0x0000000000005707
ID chybujícího procesu: 0x2014
Čas spuštění chybující aplikace: 0x01d27b27d760fcc1
Cesta k chybující aplikaci: C:\WINDOWS\system32\svchost.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\bcryptPrimitives.dll
ID zprávy: 175b9446-cbfc-42a7-9761-3adbae8a4b32
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (01/30/2017 07:36:57 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Systém Windows nemůže získat přístup k souboru C:\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3485_for_KB3206632~31bf3856ad364e35~amd64~~10.0.1.8.cat z jednoho z těchto důvodů:
došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen, nebo
s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí.
Systém Windows kvůli této chybě ukončil program Host Process for Windows Services.
Program: Host Process for Windows Services
Soubor: C:\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3485_for_KB3206632~31bf3856ad364e35~amd64~~10.0.1.8.cat
Hodnota chyby je uvedena v části Další údaje.
Akce uživatele
1. Otevřete soubor znovu.
Může se jednat o dočasný problém, který se při novém spuštění programu nebude opakovat.
2.
Pokud k souboru stále nelze získat přístup a:
- Nachází se v síti,
měl by správce sítě ověřit, zda nedošlo k problému se sítí a zda lze server kontaktovat.
- Je na vyměnitelném disku (například disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače.
3. Zkontrolujte a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK. Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER.
4. Pokud potíže potrvají, obnovte soubor ze záložní kopie.
5. Zjistěte, zda lze otevřít jiné soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný disk, obraťte se na správce nebo na dodavatele počítačového hardwaru
se žádostí o pomoc.
Další údaje
Hodnota chyby: C0000102
Typ disku: 3
Error: (01/30/2017 07:36:57 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_CryptSvc, verze: 10.0.14393.0, časové razítko: 0x57899b1c
Název chybujícího modulu: bcryptPrimitives.dll, verze: 10.0.14393.0, časové razítko: 0x57899aef
Kód výjimky: 0xc0000006
Posun chyby: 0x0000000000005707
ID chybujícího procesu: 0x628
Čas spuštění chybující aplikace: 0x01d27b27d382e0c6
Cesta k chybující aplikaci: C:\WINDOWS\system32\svchost.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\bcryptPrimitives.dll
ID zprávy: 7a3a6ddc-fb03-48bf-8695-0948c0ddcb3d
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
Error: (01/30/2017 07:36:51 PM) (Source: Application Error) (EventID: 1005) (User: )
Description: Systém Windows nemůže získat přístup k souboru C:\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3485_for_KB3206632~31bf3856ad364e35~amd64~~10.0.1.8.cat z jednoho z těchto důvodů:
došlo k problému s připojením k síti, s diskem, na kterém je soubor uložen, nebo
s ovladači ukládání nainstalovanými v tomto počítači; nebo disk chybí.
Systém Windows kvůli této chybě ukončil program Host Process for Windows Services.
Program: Host Process for Windows Services
Soubor: C:\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_3485_for_KB3206632~31bf3856ad364e35~amd64~~10.0.1.8.cat
Hodnota chyby je uvedena v části Další údaje.
Akce uživatele
1. Otevřete soubor znovu.
Může se jednat o dočasný problém, který se při novém spuštění programu nebude opakovat.
2.
Pokud k souboru stále nelze získat přístup a:
- Nachází se v síti,
měl by správce sítě ověřit, zda nedošlo k problému se sítí a zda lze server kontaktovat.
- Je na vyměnitelném disku (například disketě nebo disku CD-ROM), ověřte, zda je disk správně vložen do počítače.
3. Zkontrolujte a opravte systém souborů pomocí nástroje CHKDSK. Ten lze spustit tak, že kliknete na tlačítko Start a příkaz Spustit, zadáte příkaz CMD a kliknete na tlačítko OK. Do příkazového řádku zadejte příkaz CHKDSK /F a stiskněte klávesu ENTER.
4. Pokud potíže potrvají, obnovte soubor ze záložní kopie.
5. Zjistěte, zda lze otevřít jiné soubory na stejném disku. Pokud ne, může být disk poškozen. Jedná-li se o pevný disk, obraťte se na správce nebo na dodavatele počítačového hardwaru
se žádostí o pomoc.
Další údaje
Hodnota chyby: C0000102
Typ disku: 3
Error: (01/30/2017 07:36:51 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: svchost.exe_CryptSvc, verze: 10.0.14393.0, časové razítko: 0x57899b1c
Název chybujícího modulu: bcryptPrimitives.dll, verze: 10.0.14393.0, časové razítko: 0x57899aef
Kód výjimky: 0xc0000006
Posun chyby: 0x0000000000005707
ID chybujícího procesu: 0xe14
Čas spuštění chybující aplikace: 0x01d27b27d088fec7
Cesta k chybující aplikaci: C:\WINDOWS\system32\svchost.exe
Cesta k chybujícímu modulu: C:\WINDOWS\System32\bcryptPrimitives.dll
ID zprávy: 97e67fa9-4df0-4cb5-9963-01e974343ef1
Úplný název chybujícího balíčku:
ID aplikace související s chybujícím balíčkem:
System errors:
=============
Error: (01/30/2017 08:54:49 PM) (Source: Service Control Manager) (EventID: 7031) (User: )
Description: Služba Telefonie byla nečekaně ukončena. Stalo se to 1 krát. Následující opravná akce bude spuštěna za 120000 milisekund: Restartovat službu.
Error: (01/30/2017 08:54:49 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Klient DNS byla neočekávaně ukončena. Tento stav nastal již 469krát.
Error: (01/30/2017 08:54:49 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Šifrování byla neočekávaně ukončena. Tento stav nastal již 469krát.
Error: (01/30/2017 08:44:19 PM) (Source: DCOM) (EventID: 10000) (User: NT AUTHORITY)
Description: Nelze spustit server DCOM: {10DA4F3C-CC99-4190-BE4D-58330754E882}. Došlo k chybě:
193
při provádění příkazu:
C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL -Embedding
Error: (01/30/2017 08:44:19 PM) (Source: DCOM) (EventID: 10000) (User: NT AUTHORITY)
Description: Nelze spustit server DCOM: {10DA4F3C-CC99-4190-BE4D-58330754E882}. Došlo k chybě:
193
při provádění příkazu:
C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL -Embedding
Error: (01/30/2017 08:44:19 PM) (Source: DCOM) (EventID: 10000) (User: NT AUTHORITY)
Description: Nelze spustit server DCOM: {10DA4F3C-CC99-4190-BE4D-58330754E882}. Došlo k chybě:
193
při provádění příkazu:
C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL -Embedding
Error: (01/30/2017 08:44:19 PM) (Source: DCOM) (EventID: 10000) (User: NT AUTHORITY)
Description: Nelze spustit server DCOM: {10DA4F3C-CC99-4190-BE4D-58330754E882}. Došlo k chybě:
193
při provádění příkazu:
C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL -Embedding
Error: (01/30/2017 08:44:19 PM) (Source: DCOM) (EventID: 10000) (User: NT AUTHORITY)
Description: Nelze spustit server DCOM: {10DA4F3C-CC99-4190-BE4D-58330754E882}. Došlo k chybě:
193
při provádění příkazu:
C:\Program Files (x86)\HP\Digital Imaging\bin\HPSLPSVC64.DLL -Embedding
Error: (01/30/2017 08:30:47 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Klient DNS byla neočekávaně ukončena. Tento stav nastal již 468krát.
Error: (01/30/2017 08:30:47 PM) (Source: Service Control Manager) (EventID: 7034) (User: )
Description: Služba Šifrování byla neočekávaně ukončena. Tento stav nastal již 468krát.
==================== Memory info ===========================
Processor: Intel(R) Core(TM) i5-3230M CPU @ 2.60GHz
Percentage of memory in use: 41%
Total physical RAM: 8042.57 MB
Available physical RAM: 4690.93 MB
Total Virtual: 9322.57 MB
Available Virtual: 5884.47 MB
==================== Drives ================================
Drive c: (Windows) (Fixed) (Total:915.15 GB) (Free:548.37 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (Recovery Image) (Fixed) (Total:14.04 GB) (Free:1.36 GB) NTFS
Drive f: (GTA-San Andreas) (CDROM) (Total:3.94 GB) (Free:0 GB) CDFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (Size: 931.5 GB) (Disk ID: A50E1C7D)
Partition: GPT.
==================== End of Addition.txt ============================
Re: Prosím o kontrolu
Doporucuji trochu vyprazdnit misto na plose.
Desktop" je 27588 MB.
Na plose, tam kde mas umisteny FRST vytvor TXT soubor, ktery pojmenujes fixlist.txt a do nej vloz nasledujici text:
( Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopíruj).
Desktop" je 27588 MB.
Na plose, tam kde mas umisteny FRST vytvor TXT soubor, ktery pojmenujes fixlist.txt a do nej vloz nasledujici text:( Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopíruj).
start
CreateRestorePoint:
CloseProcesses:
Hosts:
EmptyTemp:
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [sun21] => [X]
HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\MountPoints2: {2cd994c5-ab27-11e6-9c51-70188b5d0a0c} - "G:\SETUP.EXE"
HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\MountPoints2: {2cd99525-ab27-11e6-9c51-70188b5d0a0c} - "F:\SETUP.EXE"
ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> No File
ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> No File
ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> No File
ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> No File
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> No File
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> No File
GroupPolicy: Restriction - Chrome <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
Edge HomeButtonPage: HKU\S-1-5-21-466670803-733275211-1192568883-1001 -> hxxp://www.yoursites123.com/?type=hp&ts ... X8362S4JYS
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [395536 2016-12-28] (EasyAntiCheat Ltd)
HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\ChromeHTML: -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) <==== ATTENTION
Task: {37F9269E-B65D-4452-A859-0A894AA15D47} - System32\Tasks\Browser Updater Task(Core) => C:\Program Files (x86)\QQBrowser\Update\Download\73038F0562E07FDFE1F0A045978AF782\Update\BrowserUpdate.exe [2016-03-17] (Tencent) <==== ATTENTION
AlternateDataStreams: C:\ProgramData\TEMP:FB6A21E3 [128]
AlternateDataStreams: C:\Users\konec:Heroes & Generals [38]
IE trusted site: HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\amazon.com -> hxxps://amazon.com
CHR DefaultSearchURL: Default -> hxxps://www.amazon.com/websearch/?ie=UT ... M__&query={searchTerms}
CHR HomePage: Default -> amazon.com/websearch/?ie=UTF8__PARAM__
end
Re: Prosím o kontrolu
Fix result of Farbar Recovery Scan Tool (x64) Version: 29-01-2017
Ran by konec (31-01-2017 20:39:01) Run:1
Running from C:\Users\konec\Desktop
Loaded Profiles: konec (Available Profiles: konec)
Boot Mode: Normal
==============================================
fixlist content:
*****************
start
CreateRestorePoint:
CloseProcesses:
Hosts:
EmptyTemp:
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [sun21] => [X]
HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\MountPoints2: {2cd994c5-ab27-11e6-9c51-70188b5d0a0c} - "G:\SETUP.EXE"
HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\MountPoints2: {2cd99525-ab27-11e6-9c51-70188b5d0a0c} - "F:\SETUP.EXE"
ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> No File
ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> No File
ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> No File
ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> No File
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> No File
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> No File
GroupPolicy: Restriction - Chrome <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
Edge HomeButtonPage: HKU\S-1-5-21-466670803-733275211-1192568883-1001 -> hxxp://www.yoursites123.com/?type=hp&ts ... X8362S4JYS
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [395536 2016-12-28] (EasyAntiCheat Ltd)
HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\ChromeHTML: -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) <==== ATTENTION
Task: {37F9269E-B65D-4452-A859-0A894AA15D47} - System32\Tasks\Browser Updater Task(Core) => C:\Program Files (x86)\QQBrowser\Update\Download\73038F0562E07FDFE1F0A045978AF782\Update\BrowserUpdate.exe [2016-03-17] (Tencent) <==== ATTENTION
AlternateDataStreams: C:\ProgramData\TEMP:FB6A21E3 [128]
AlternateDataStreams: C:\Users\konec:Heroes & Generals [38]
IE trusted site: HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\amazon.com -> hxxps://amazon.com
CHR DefaultSearchURL: Default -> hxxps://www.amazon.com/websearch/?ie=UT ... M__&query={searchTerms}
CHR HomePage: Default -> amazon.com/websearch/?ie=UTF8__PARAM__
end
*****************
Restore point was successfully created.
Processes closed successfully.
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\sun21 => value removed successfully
HKU\S-1-5-21-466670803-733275211-1192568883-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{2cd994c5-ab27-11e6-9c51-70188b5d0a0c} => key removed successfully
HKCR\CLSID\{2cd994c5-ab27-11e6-9c51-70188b5d0a0c} => key not found.
HKU\S-1-5-21-466670803-733275211-1192568883-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{2cd99525-ab27-11e6-9c51-70188b5d0a0c} => key removed successfully
HKCR\CLSID\{2cd99525-ab27-11e6-9c51-70188b5d0a0c} => key not found.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\###MegaShellExtPending => key removed successfully
HKCR\CLSID\{056D528D-CE28-4194-9BA3-BA2E9197FF8C} => key not found.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\###MegaShellExtSynced => key removed successfully
HKCR\CLSID\{05B38830-F4E9-4329-978B-1DD28605D202} => key not found.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\###MegaShellExtSyncing => key removed successfully
HKCR\CLSID\{0596C850-7BDD-4C9D-AFDF-873BE6890637} => key not found.
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\###MegaShellExtPending => key removed successfully
HKCR\Wow6432Node\CLSID\{056D528D-CE28-4194-9BA3-BA2E9197FF8C} => key not found.
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\###MegaShellExtSynced => key removed successfully
HKCR\Wow6432Node\CLSID\{05B38830-F4E9-4329-978B-1DD28605D202} => key not found.
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\###MegaShellExtSyncing => key removed successfully
HKCR\Wow6432Node\CLSID\{0596C850-7BDD-4C9D-AFDF-873BE6890637} => key not found.
C:\WINDOWS\system32\GroupPolicy\Machine => moved successfully
C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully
C:\WINDOWS\SysWOW64\GroupPolicy\GPT.ini => moved successfully
HKLM\SOFTWARE\Policies\Google => key removed successfully
HKU\S-1-5-21-466670803-733275211-1192568883-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Main\\HomeButtonPage => value removed successfully
HKLM\System\CurrentControlSet\Services\EasyAntiCheat => key removed successfully
EasyAntiCheat => service removed successfully
HKU\S-1-5-21-466670803-733275211-1192568883-1001_Classes\ChromeHTML => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{37F9269E-B65D-4452-A859-0A894AA15D47} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{37F9269E-B65D-4452-A859-0A894AA15D47} => key removed successfully
C:\WINDOWS\System32\Tasks\Browser Updater Task(Core) => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Browser Updater Task(Core) => key removed successfully
C:\ProgramData\TEMP => ":FB6A21E3" ADS removed successfully.
C:\Users\konec => ":Heroes & Generals" ADS removed successfully.
HKU\S-1-5-21-466670803-733275211-1192568883-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\amazon.com => key removed successfully
Chrome DefaultSearchURL => removed successfully
Chrome HomePage => removed successfully
=========== EmptyTemp: ==========
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 31283775 B
Java, Flash, Steam htmlcache => 521068002 B
Windows/system/drivers => 66336243 B
Edge => 9464032 B
Chrome => 540315252 B
Firefox => 9488720 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 14756 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 4082 B
NetworkService => 2920448 B
konec => 1077773066 B
RecycleBin => 0 B
EmptyTemp: => 2.1 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 20:42:05 ====
Ran by konec (31-01-2017 20:39:01) Run:1
Running from C:\Users\konec\Desktop
Loaded Profiles: konec (Available Profiles: konec)
Boot Mode: Normal
==============================================
fixlist content:
*****************
start
CreateRestorePoint:
CloseProcesses:
Hosts:
EmptyTemp:
HKLM-x32\...\Run: [] => [X]
HKLM-x32\...\Run: [sun21] => [X]
HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\MountPoints2: {2cd994c5-ab27-11e6-9c51-70188b5d0a0c} - "G:\SETUP.EXE"
HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\MountPoints2: {2cd99525-ab27-11e6-9c51-70188b5d0a0c} - "F:\SETUP.EXE"
ShellIconOverlayIdentifiers: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> No File
ShellIconOverlayIdentifiers: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> No File
ShellIconOverlayIdentifiers: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> No File
ShellIconOverlayIdentifiers-x32: [###MegaShellExtPending] -> {056D528D-CE28-4194-9BA3-BA2E9197FF8C} => -> No File
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSynced] -> {05B38830-F4E9-4329-978B-1DD28605D202} => -> No File
ShellIconOverlayIdentifiers-x32: [###MegaShellExtSyncing] -> {0596C850-7BDD-4C9D-AFDF-873BE6890637} => -> No File
GroupPolicy: Restriction - Chrome <======= ATTENTION
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
Edge HomeButtonPage: HKU\S-1-5-21-466670803-733275211-1192568883-1001 -> hxxp://www.yoursites123.com/?type=hp&ts ... X8362S4JYS
S3 EasyAntiCheat; C:\WINDOWS\SysWOW64\EasyAntiCheat.exe [395536 2016-12-28] (EasyAntiCheat Ltd)
HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\ChromeHTML: -> C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) <==== ATTENTION
Task: {37F9269E-B65D-4452-A859-0A894AA15D47} - System32\Tasks\Browser Updater Task(Core) => C:\Program Files (x86)\QQBrowser\Update\Download\73038F0562E07FDFE1F0A045978AF782\Update\BrowserUpdate.exe [2016-03-17] (Tencent) <==== ATTENTION
AlternateDataStreams: C:\ProgramData\TEMP:FB6A21E3 [128]
AlternateDataStreams: C:\Users\konec:Heroes & Generals [38]
IE trusted site: HKU\S-1-5-21-466670803-733275211-1192568883-1001\...\amazon.com -> hxxps://amazon.com
CHR DefaultSearchURL: Default -> hxxps://www.amazon.com/websearch/?ie=UT ... M__&query={searchTerms}
CHR HomePage: Default -> amazon.com/websearch/?ie=UTF8__PARAM__
end
*****************
Restore point was successfully created.
Processes closed successfully.
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\ => value removed successfully
HKLM\Software\WOW6432Node\Microsoft\Windows\CurrentVersion\Run\\sun21 => value removed successfully
HKU\S-1-5-21-466670803-733275211-1192568883-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{2cd994c5-ab27-11e6-9c51-70188b5d0a0c} => key removed successfully
HKCR\CLSID\{2cd994c5-ab27-11e6-9c51-70188b5d0a0c} => key not found.
HKU\S-1-5-21-466670803-733275211-1192568883-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{2cd99525-ab27-11e6-9c51-70188b5d0a0c} => key removed successfully
HKCR\CLSID\{2cd99525-ab27-11e6-9c51-70188b5d0a0c} => key not found.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\###MegaShellExtPending => key removed successfully
HKCR\CLSID\{056D528D-CE28-4194-9BA3-BA2E9197FF8C} => key not found.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\###MegaShellExtSynced => key removed successfully
HKCR\CLSID\{05B38830-F4E9-4329-978B-1DD28605D202} => key not found.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\###MegaShellExtSyncing => key removed successfully
HKCR\CLSID\{0596C850-7BDD-4C9D-AFDF-873BE6890637} => key not found.
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\###MegaShellExtPending => key removed successfully
HKCR\Wow6432Node\CLSID\{056D528D-CE28-4194-9BA3-BA2E9197FF8C} => key not found.
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\###MegaShellExtSynced => key removed successfully
HKCR\Wow6432Node\CLSID\{05B38830-F4E9-4329-978B-1DD28605D202} => key not found.
HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\###MegaShellExtSyncing => key removed successfully
HKCR\Wow6432Node\CLSID\{0596C850-7BDD-4C9D-AFDF-873BE6890637} => key not found.
C:\WINDOWS\system32\GroupPolicy\Machine => moved successfully
C:\WINDOWS\system32\GroupPolicy\GPT.ini => moved successfully
C:\WINDOWS\SysWOW64\GroupPolicy\GPT.ini => moved successfully
HKLM\SOFTWARE\Policies\Google => key removed successfully
HKU\S-1-5-21-466670803-733275211-1192568883-1001\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\MicrosoftEdge\Main\\HomeButtonPage => value removed successfully
HKLM\System\CurrentControlSet\Services\EasyAntiCheat => key removed successfully
EasyAntiCheat => service removed successfully
HKU\S-1-5-21-466670803-733275211-1192568883-1001_Classes\ChromeHTML => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{37F9269E-B65D-4452-A859-0A894AA15D47} => key removed successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{37F9269E-B65D-4452-A859-0A894AA15D47} => key removed successfully
C:\WINDOWS\System32\Tasks\Browser Updater Task(Core) => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Browser Updater Task(Core) => key removed successfully
C:\ProgramData\TEMP => ":FB6A21E3" ADS removed successfully.
C:\Users\konec => ":Heroes & Generals" ADS removed successfully.
HKU\S-1-5-21-466670803-733275211-1192568883-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\amazon.com => key removed successfully
Chrome DefaultSearchURL => removed successfully
Chrome HomePage => removed successfully
=========== EmptyTemp: ==========
BITS transfer queue => 0 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 31283775 B
Java, Flash, Steam htmlcache => 521068002 B
Windows/system/drivers => 66336243 B
Edge => 9464032 B
Chrome => 540315252 B
Firefox => 9488720 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Default => 14756 B
Users => 0 B
ProgramData => 0 B
Public => 0 B
systemprofile => 0 B
systemprofile32 => 0 B
LocalService => 4082 B
NetworkService => 2920448 B
konec => 1077773066 B
RecycleBin => 0 B
EmptyTemp: => 2.1 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 20:42:05 ====
Re: Prosím o kontrolu
Spusť prosim tuto utilitu:Stáhni AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Ulož na plochu
Ukonči všechny programy
Klikni nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vlož.
Re: Prosím o kontrolu
Provedl jsem, po mazání se PC restartoval, ale po restartu vyskočilo okno "Soubor skriptu C:\WINDOWS\run.vbs nebyl nalezen. Po odkliknutí OK PC nenaběhl, je jen černá plocha. Nepomohlo ano opakované restartování.
Re: Prosím o kontrolu
Tak jsem našel na netu nějaký návod, jak to rozběhnout, log vyskočil. Jen nevím, co se staně, až NTB vypnu nebo restartuji, jestli naběhne nebo ne. Tady log:
# AdwCleaner v6.043 - Logfile created 01/02/2017 at 12:12:25
# Updated on 27/01/2017 by Malwarebytes
# Database : 2017-01-31.1 [Server]
# Operating System : Windows 10 Home (X64)
# Username : konec - LUKÁŠ
# Running from : C:\Users\konec\Desktop\adwcleaner_6.043.exe
# Mode: Clean
# Support : https://www.malwarebytes.com/support
***** [ Services ] *****
***** [ Folders ] *****
[-] Folder deleted: C:\Users\konec\AppData\Local\3810282D-6C19-47B0-8283-5C6C29A7E108
[-] Folder deleted: C:\Users\konec\AppData\Roaming\GoldenGate
[-] Folder deleted: C:\Users\konec\AppData\Roaming\OpenCandy
[-] Folder deleted: C:\Users\konec\AppData\Roaming\imminent
[-] Folder deleted: C:\Users\konec\AppData\Roaming\WinZiper
[-] Folder deleted: C:\Program Files (x86)\QQBrowser
[-] Folder deleted: C:\Users\Public\Documents\dmp
[-] Folder deleted: C:\Users\konec\AppData\Local\app
[-] Folder deleted: C:\Users\konec\AppData\Roaming\Mozilla\Firefox\Profiles\CCACCBF1-7AB4-4CF5-B32D-668C686A539F
[-] Folder deleted: C:\Users\konec\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1
***** [ Files ] *****
[-] File deleted: C:\Users\konec\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\qksee.lnk
[-] File deleted: C:\WINDOWS\run.vbs
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Shortcuts ] *****
***** [ Scheduled Tasks ] *****
[-] Task deleted: {FFBB870F-D916-4611-81DF-81448C3A2E85}
***** [ Registry ] *****
[-] Key deleted: HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\WindowsMangerProtect
[#] Key deleted on reboot: [x64] HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\WindowsMangerProtect
[-] Key deleted: HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\winzipersvc
[#] Key deleted on reboot: [x64] HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\winzipersvc
[-] Key deleted: HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\PicexaService
[#] Key deleted on reboot: [x64] HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\PicexaService
[-] Key deleted: HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\mailUpdate
[#] Key deleted on reboot: [x64] HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\mailUpdate
[-] Key deleted: HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\WdsManPro
[#] Key deleted on reboot: [x64] HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\WdsManPro
[-] Key deleted: HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\WdMan
[#] Key deleted on reboot: [x64] HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\WdMan
[-] Key deleted: HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\qkseeService
[#] Key deleted on reboot: [x64] HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\qkseeService
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{FA7B2795-C0C8-4A58-8672-3F8D80CC0270}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{47A1DF02-BCE4-40C3-AE47-E3EA09A65E4A}
[-] Key deleted: HKLM\SOFTWARE\Classes\TypeLib\{1112F282-7099-4624-A439-DB29D6551552}
[-] Key deleted: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BD6ECB00-7C4A-4F97-B425-44117F2A7AAE}
[-] Key deleted: HKU\.DEFAULT\Software\{A16B1AF7-982D-40C3-B5C1-633E1A6A6678}
[-] Key deleted: HKU\S-1-5-21-466670803-733275211-1192568883-1001\Software\Conduit
[-] Key deleted: HKU\S-1-5-21-466670803-733275211-1192568883-1001\Software\distromatic
[-] Key deleted: HKU\S-1-5-21-466670803-733275211-1192568883-1001\Software\GoldenGate
[-] Key deleted: HKU\S-1-5-21-466670803-733275211-1192568883-1001\Software\PRODUCTSETUP
[-] Key deleted: HKU\S-1-5-21-466670803-733275211-1192568883-1001\Software\systweak
[-] Key deleted: HKU\S-1-5-21-466670803-733275211-1192568883-1001\Software\{A16B1AF7-982D-40C3-B5C1-633E1A6A6678}
[-] Key deleted: HKU\S-1-5-21-466670803-733275211-1192568883-1001\Software\csastats
[-] Key deleted: HKU\S-1-5-21-466670803-733275211-1192568883-1001\Software\INSTALLPATH\STATUS
[#] Key deleted on reboot: HKU\S-1-5-18\Software\{A16B1AF7-982D-40C3-B5C1-633E1A6A6678}
[#] Key deleted on reboot: HKCU\Software\Conduit
[#] Key deleted on reboot: HKCU\Software\distromatic
[#] Key deleted on reboot: HKCU\Software\GoldenGate
[#] Key deleted on reboot: HKCU\Software\PRODUCTSETUP
[#] Key deleted on reboot: HKCU\Software\systweak
[#] Key deleted on reboot: HKCU\Software\{A16B1AF7-982D-40C3-B5C1-633E1A6A6678}
[#] Key deleted on reboot: HKCU\Software\csastats
[#] Key deleted on reboot: HKCU\Software\INSTALLPATH\STATUS
[-] Key deleted: HKLM\SOFTWARE\Conduit
[-] Key deleted: HKLM\SOFTWARE\systweak
[-] Key deleted: HKLM\SOFTWARE\{A16B1AF7-982D-40C3-B5C1-633E1A6A6678}
[-] Key deleted: HKLM\SOFTWARE\{E6276374-DE18-4AA5-A365-9016A2F98A2D}
[-] Key deleted: HKLM\SOFTWARE\{G6276374-DEEE-4AAA-A355-9016A2F98A2D}
[-] Key deleted: HKLM\SOFTWARE\Microsoft\{94ebd7b5-82ae-449t-b679-3d04078ed154}
[-] Key deleted: HKLM\SOFTWARE\WinZiper
[-] Key deleted: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{B6DCCCD3-520D-4485-B642-FCC136CE12C3}
[#] Key deleted on reboot: [x64] HKCU\Software\Conduit
[#] Key deleted on reboot: [x64] HKCU\Software\distromatic
[#] Key deleted on reboot: [x64] HKCU\Software\GoldenGate
[#] Key deleted on reboot: [x64] HKCU\Software\PRODUCTSETUP
[#] Key deleted on reboot: [x64] HKCU\Software\systweak
[#] Key deleted on reboot: [x64] HKCU\Software\{A16B1AF7-982D-40C3-B5C1-633E1A6A6678}
[#] Key deleted on reboot: [x64] HKCU\Software\csastats
[#] Key deleted on reboot: [x64] HKCU\Software\INSTALLPATH\STATUS
[-] Key deleted: [x64] HKLM\SOFTWARE\{A16B1AF7-982D-40C3-B5C1-633E1A6A6678}
[-] Key deleted: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\mpc.am
[-] Key deleted: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\search.mpc.am
[-] Key deleted: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\mpc.am
[-] Key deleted: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\search.mpc.am
[#] Key deleted on reboot: [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\mpc.am
[#] Key deleted on reboot: [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\search.mpc.am
[#] Key deleted on reboot: [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\mpc.am
[#] Key deleted on reboot: [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\search.mpc.am
[-] Value deleted: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [cpuminer]
[-] Value deleted: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [gpuminer]
[-] Key deleted: HKLM\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\WinZipper
***** [ Web browsers ] *****
*************************
:: "Tracing" keys deleted
:: Winsock settings cleared
*************************
C:\AdwCleaner\AdwCleaner[C1].txt - [26408 Bytes] - [31/03/2016 10:02:10]
C:\AdwCleaner\AdwCleaner[C2].txt - [7921 Bytes] - [01/02/2017 12:12:25]
C:\AdwCleaner\AdwCleaner[S1].txt - [29370 Bytes] - [31/03/2016 09:57:58]
C:\AdwCleaner\AdwCleaner[S2].txt - [7690 Bytes] - [01/02/2017 12:08:23]
########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [8141 Bytes] ##########
# AdwCleaner v6.043 - Logfile created 01/02/2017 at 12:12:25
# Updated on 27/01/2017 by Malwarebytes
# Database : 2017-01-31.1 [Server]
# Operating System : Windows 10 Home (X64)
# Username : konec - LUKÁŠ
# Running from : C:\Users\konec\Desktop\adwcleaner_6.043.exe
# Mode: Clean
# Support : https://www.malwarebytes.com/support
***** [ Services ] *****
***** [ Folders ] *****
[-] Folder deleted: C:\Users\konec\AppData\Local\3810282D-6C19-47B0-8283-5C6C29A7E108
[-] Folder deleted: C:\Users\konec\AppData\Roaming\GoldenGate
[-] Folder deleted: C:\Users\konec\AppData\Roaming\OpenCandy
[-] Folder deleted: C:\Users\konec\AppData\Roaming\imminent
[-] Folder deleted: C:\Users\konec\AppData\Roaming\WinZiper
[-] Folder deleted: C:\Program Files (x86)\QQBrowser
[-] Folder deleted: C:\Users\Public\Documents\dmp
[-] Folder deleted: C:\Users\konec\AppData\Local\app
[-] Folder deleted: C:\Users\konec\AppData\Roaming\Mozilla\Firefox\Profiles\CCACCBF1-7AB4-4CF5-B32D-668C686A539F
[-] Folder deleted: C:\Users\konec\AppData\Roaming\Mozilla\Firefox\Profiles\41A66E7E5EE1
***** [ Files ] *****
[-] File deleted: C:\Users\konec\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\StartMenu\qksee.lnk
[-] File deleted: C:\WINDOWS\run.vbs
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Shortcuts ] *****
***** [ Scheduled Tasks ] *****
[-] Task deleted: {FFBB870F-D916-4611-81DF-81448C3A2E85}
***** [ Registry ] *****
[-] Key deleted: HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\WindowsMangerProtect
[#] Key deleted on reboot: [x64] HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\WindowsMangerProtect
[-] Key deleted: HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\winzipersvc
[#] Key deleted on reboot: [x64] HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\winzipersvc
[-] Key deleted: HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\PicexaService
[#] Key deleted on reboot: [x64] HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\PicexaService
[-] Key deleted: HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\mailUpdate
[#] Key deleted on reboot: [x64] HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\mailUpdate
[-] Key deleted: HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\WdsManPro
[#] Key deleted on reboot: [x64] HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\WdsManPro
[-] Key deleted: HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\WdMan
[#] Key deleted on reboot: [x64] HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\WdMan
[-] Key deleted: HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\qkseeService
[#] Key deleted on reboot: [x64] HKLM\SYSTEM\CurrentControlSet\Services\EventLog\Application\qkseeService
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{FA7B2795-C0C8-4A58-8672-3F8D80CC0270}
[-] Key deleted: HKLM\SOFTWARE\Classes\Interface\{47A1DF02-BCE4-40C3-AE47-E3EA09A65E4A}
[-] Key deleted: HKLM\SOFTWARE\Classes\TypeLib\{1112F282-7099-4624-A439-DB29D6551552}
[-] Key deleted: HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BD6ECB00-7C4A-4F97-B425-44117F2A7AAE}
[-] Key deleted: HKU\.DEFAULT\Software\{A16B1AF7-982D-40C3-B5C1-633E1A6A6678}
[-] Key deleted: HKU\S-1-5-21-466670803-733275211-1192568883-1001\Software\Conduit
[-] Key deleted: HKU\S-1-5-21-466670803-733275211-1192568883-1001\Software\distromatic
[-] Key deleted: HKU\S-1-5-21-466670803-733275211-1192568883-1001\Software\GoldenGate
[-] Key deleted: HKU\S-1-5-21-466670803-733275211-1192568883-1001\Software\PRODUCTSETUP
[-] Key deleted: HKU\S-1-5-21-466670803-733275211-1192568883-1001\Software\systweak
[-] Key deleted: HKU\S-1-5-21-466670803-733275211-1192568883-1001\Software\{A16B1AF7-982D-40C3-B5C1-633E1A6A6678}
[-] Key deleted: HKU\S-1-5-21-466670803-733275211-1192568883-1001\Software\csastats
[-] Key deleted: HKU\S-1-5-21-466670803-733275211-1192568883-1001\Software\INSTALLPATH\STATUS
[#] Key deleted on reboot: HKU\S-1-5-18\Software\{A16B1AF7-982D-40C3-B5C1-633E1A6A6678}
[#] Key deleted on reboot: HKCU\Software\Conduit
[#] Key deleted on reboot: HKCU\Software\distromatic
[#] Key deleted on reboot: HKCU\Software\GoldenGate
[#] Key deleted on reboot: HKCU\Software\PRODUCTSETUP
[#] Key deleted on reboot: HKCU\Software\systweak
[#] Key deleted on reboot: HKCU\Software\{A16B1AF7-982D-40C3-B5C1-633E1A6A6678}
[#] Key deleted on reboot: HKCU\Software\csastats
[#] Key deleted on reboot: HKCU\Software\INSTALLPATH\STATUS
[-] Key deleted: HKLM\SOFTWARE\Conduit
[-] Key deleted: HKLM\SOFTWARE\systweak
[-] Key deleted: HKLM\SOFTWARE\{A16B1AF7-982D-40C3-B5C1-633E1A6A6678}
[-] Key deleted: HKLM\SOFTWARE\{E6276374-DE18-4AA5-A365-9016A2F98A2D}
[-] Key deleted: HKLM\SOFTWARE\{G6276374-DEEE-4AAA-A355-9016A2F98A2D}
[-] Key deleted: HKLM\SOFTWARE\Microsoft\{94ebd7b5-82ae-449t-b679-3d04078ed154}
[-] Key deleted: HKLM\SOFTWARE\WinZiper
[-] Key deleted: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{B6DCCCD3-520D-4485-B642-FCC136CE12C3}
[#] Key deleted on reboot: [x64] HKCU\Software\Conduit
[#] Key deleted on reboot: [x64] HKCU\Software\distromatic
[#] Key deleted on reboot: [x64] HKCU\Software\GoldenGate
[#] Key deleted on reboot: [x64] HKCU\Software\PRODUCTSETUP
[#] Key deleted on reboot: [x64] HKCU\Software\systweak
[#] Key deleted on reboot: [x64] HKCU\Software\{A16B1AF7-982D-40C3-B5C1-633E1A6A6678}
[#] Key deleted on reboot: [x64] HKCU\Software\csastats
[#] Key deleted on reboot: [x64] HKCU\Software\INSTALLPATH\STATUS
[-] Key deleted: [x64] HKLM\SOFTWARE\{A16B1AF7-982D-40C3-B5C1-633E1A6A6678}
[-] Key deleted: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\mpc.am
[-] Key deleted: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\search.mpc.am
[-] Key deleted: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\mpc.am
[-] Key deleted: HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\search.mpc.am
[#] Key deleted on reboot: [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\mpc.am
[#] Key deleted on reboot: [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\EdpDomStorage\search.mpc.am
[#] Key deleted on reboot: [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\mpc.am
[#] Key deleted on reboot: [x64] HKCU\Software\Classes\Local Settings\Software\Microsoft\Windows\CurrentVersion\AppContainer\Storage\microsoft.microsoftedge_8wekyb3d8bbwe\Children\001\Internet Explorer\DOMStorage\search.mpc.am
[-] Value deleted: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [cpuminer]
[-] Value deleted: [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved\Run [gpuminer]
[-] Key deleted: HKLM\SOFTWARE\Classes\*\shellex\ContextMenuHandlers\WinZipper
***** [ Web browsers ] *****
*************************
:: "Tracing" keys deleted
:: Winsock settings cleared
*************************
C:\AdwCleaner\AdwCleaner[C1].txt - [26408 Bytes] - [31/03/2016 10:02:10]
C:\AdwCleaner\AdwCleaner[C2].txt - [7921 Bytes] - [01/02/2017 12:12:25]
C:\AdwCleaner\AdwCleaner[S1].txt - [29370 Bytes] - [31/03/2016 09:57:58]
C:\AdwCleaner\AdwCleaner[S2].txt - [7690 Bytes] - [01/02/2017 12:08:23]
########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [8141 Bytes] ##########
Re: Prosím o kontrolu
hmm...jak jsi to opravil?
zkus prosim MBAM: http://forum.viry.cz/viewtopic.php?f=29&t=144868
-Nainstaluj,dej úplný sken
zatim nic nemaz.
-Log zkopíruj sem.
zkus prosim MBAM: http://forum.viry.cz/viewtopic.php?f=29&t=144868
-Nainstaluj,dej úplný sken
zatim nic nemaz.
-Log zkopíruj sem.
Re: Prosím o kontrolu
Opravil jsem to podle návodu tady : http://www.winhelponline.com/blog/canno ... vbs-logon/
Re: Prosím o kontrolu
Malwarebytes
www.malwarebytes.com
-Podrobnosti logovacího souboru-
Datum skenování: 04.02.17
Čas skenování: 15:00
Logovací soubor: Malwerebytes.txt
Správce: Ano
-Informace o softwaru-
Verze: 3.0.6.1469
Verze komponentů: 1.0.50
Aktualizovat verzi balíku komponent: 1.0.1178
Licence: Zkušební
-Systémová informace-
OS: Windows 8
CPU: x64
Systém souborů: NTFS
Uživatel: LUK\u00c3\u0081\u00c5\u00a0\konec
-Shrnutí skenování-
Typ skenování: Skenování hrozeb (Threat Scan)
Výsledek: Dokončeno
Skenované objekty: 469049
Uplynulý čas: 12 min, 45 sek
-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Zakázáno
Heuristika: Povoleno
Potenciálně nežádoucí program: Povoleno
Potenciálně nežádoucí modifikace: Povoleno
-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)
Modul: 0
(Nebyly zjištěny žádné škodlivé položky)
Klíč registru: 6
PUP.Optional.MyBrowser, HKU\S-1-5-21-466670803-733275211-1192568883-1001\SOFTWARE\MyBrowser, Žádná uživatelská akce, [1577], [245710],1.0.1178
PUP.Optional.StartPage, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\WarThunder0, Žádná uživatelská akce, [79], [186209],1.0.1178
PUP.Optional.StartPage, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\WarThunder1, Žádná uživatelská akce, [79], [186209],1.0.1178
PUP.Optional.StartPage, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\WarThunder2, Žádná uživatelská akce, [79], [186209],1.0.1178
PUP.Optional.StartPage, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\WarThunder3, Žádná uživatelská akce, [79], [186209],1.0.1178
PUP.Optional.YesSearches.YSSRHS1, HKLM\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}, Žádná uživatelská akce, [740], [305912],1.0.1178
Hodnota v registru: 4
PUP.Optional.YesSearches.YSSRHS1, HKLM\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}|HP, Žádná uživatelská akce, [740], [305912],1.0.1178
PUP.Optional.YesSearches.YSSRHS1, HKLM\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}|TAB, Žádná uživatelská akce, [740], [305912],1.0.1178
PUP.Optional.YesSearches.YSSRHS1, HKLM\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}|SP, Žádná uživatelská akce, [740], [305912],1.0.1178
PUP.Optional.YesSearches.YSSRHS1, HKLM\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}|SURL, Žádná uživatelská akce, [740], [305912],1.0.1178
Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)
Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)
Adresář: 12
PUP.Optional.AliExpress, C:\USERS\KONEC\APPDATA\ROAMING\AliExpress_helper, Žádná uživatelská akce, [122], [348735],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Web Applications\_crx_cmegngdghknoiclpbcjlajfkphoelcia, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\data_reduction_proxy_leveldb, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Web Applications, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Extension Rules, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Local Storage, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\ShaderCache\GPUCache, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\ShaderCache, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\USERS\KONEC\APPDATA\LOCAL\AliExpress, Žádná uživatelská akce, [122], [343982],1.0.1178
Soubor: 195
PUP.Optional.AliExpress, C:\Users\konec\AppData\Roaming\AliExpress_helper\3dcdd8bc386c12f910cbb51bb9c9a531.data.db, Žádná uživatelská akce, [122], [348735],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Roaming\AliExpress_helper\3dcdd8bc386c12f910cbb51bb9c9a531.events.db, Žádná uživatelská akce, [122], [348735],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Roaming\AliExpress_helper\3dcdd8bc386c12f910cbb51bb9c9a531.user.db, Žádná uživatelská akce, [122], [348735],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\data_0, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\data_1, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\data_2, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\data_3, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000001, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000002, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000003, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000005, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000006, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000007, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000008, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000009, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00000a, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00000b, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00000c, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00000d, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00000e, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00000f, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000011, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000012, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000013, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000014, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000015, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000016, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000017, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000018, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000019, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00001a, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00001b, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00001c, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00001d, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00001e, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00001f, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000020, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000021, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000022, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000023, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000028, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000029, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00002a, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00002b, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00002c, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00002d, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00002e, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000030, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000031, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000033, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000034, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000035, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000036, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000037, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000038, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00003a, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00003b, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00003e, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00003f, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000040, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000041, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000042, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000043, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000044, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000045, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000046, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000047, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000048, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000049, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00004a, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00004b, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00004c, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00004d, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00004e, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00004f, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000050, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000052, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000053, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000054, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000055, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000056, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000057, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000058, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000059, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00005a, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00005b, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00005c, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00005d, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00005e, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00005f, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000060, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000061, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000062, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000063, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000064, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000066, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000067, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000068, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000069, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00006a, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00006b, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00006c, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00006d, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00006e, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00006f, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000070, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000071, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000072, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000073, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000074, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000075, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000076, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000077, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000078, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000010, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000024, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00003d, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000051, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000065, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000079, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00007a, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00007b, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00007c, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00007d, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00007e, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00007f, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000080, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000081, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000082, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000084, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000085, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000086, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000087, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000088, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000089, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00008a, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00008b, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00008d, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00008e, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00008f, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000090, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000092, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000093, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\index, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\data_reduction_proxy_leveldb\000003.log, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\data_reduction_proxy_leveldb\CURRENT, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\data_reduction_proxy_leveldb\LOCK, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\data_reduction_proxy_leveldb\LOG, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\data_reduction_proxy_leveldb\LOG.old, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000001, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Extension Rules\000003.log, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Extension Rules\CURRENT, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Extension Rules\LOCK, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Extension Rules\LOG, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Extension Rules\MANIFEST-000001, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Local Storage\https_www.aliexpress.com_0.localstorage, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Local Storage\https_www.aliexpress.com_0.localstorage-journal, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Web Applications\_crx_cmegngdghknoiclpbcjlajfkphoelcia\AliExpress.ico, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Web Applications\_crx_cmegngdghknoiclpbcjlajfkphoelcia\AliExpress.ico.md5, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\ChromeDWriteFontCache, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cookies, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cookies-journal, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Favicons, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Favicons-journal, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\History, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\History-journal, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Login Data, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Login Data-journal, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Network Persistent State, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Origin Bound Certs, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Origin Bound Certs-journal, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Preferences, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\README, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Secure Preferences, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Top Sites, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Top Sites-journal, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\TransportSecurity, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Visited Links, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Web Data, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Web Data-journal, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\ShaderCache\GPUCache\data_0, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\ShaderCache\GPUCache\data_1, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\ShaderCache\GPUCache\data_2, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\ShaderCache\GPUCache\data_3, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\ShaderCache\GPUCache\index, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\First Run, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Local State, Žádná uživatelská akce, [122], [343982],1.0.1178
HackTool.Agent, C:\PROGRAM FILES (X86)\EASYLANGUAGECZ\EASYLANGUAGE.V2.09-PATCH.EXE, Žádná uživatelská akce, [548], [1570],1.0.1178
PUP.Optional.OpenCandy, C:\USERS\KONEC\DOWNLOADS\CHEATENGINE651.EXE, Žádná uživatelská akce, [645], [101648],1.0.1178
RiskWare.GameHack.Generic, C:\USERS\KONEC\DOWNLOADS\ASSASSINS CREED SYNDICATE V1.12-UPDATE 1 PLUS 17 TRAINER.RAR, Žádná uživatelská akce, [2097], [339459],1.0.1178
PUP.Optional.OpenCandy, C:\USERS\KONEC\DOWNLOADS\CHEATENGINE66.EXE, Žádná uživatelská akce, [645], [101648],1.0.1178
PUP.Optional.OpenCandy, C:\USERS\KONEC\DOWNLOADS\CHEATENGINE66 (1).EXE, Žádná uživatelská akce, [645], [101648],1.0.1178
RiskWare.Injector.DC, C:\USERS\KONEC\DOWNLOADS\EXTREME INJECTOR.RAR, Žádná uživatelská akce, [8454], [74360],1.0.1178
RiskWare.DLLInjector, C:\USERS\KONEC\DOWNLOADS\DLLINJECTOR.EXE, Žádná uživatelská akce, [12192], [153171],1.0.1178
HackTool.CheatEngine, C:\USERS\KONEC\DOWNLOADS\RC7UNPATCHED.RAR, Žádná uživatelská akce, [1370], [352877],1.0.1178
Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)
(end)
www.malwarebytes.com
-Podrobnosti logovacího souboru-
Datum skenování: 04.02.17
Čas skenování: 15:00
Logovací soubor: Malwerebytes.txt
Správce: Ano
-Informace o softwaru-
Verze: 3.0.6.1469
Verze komponentů: 1.0.50
Aktualizovat verzi balíku komponent: 1.0.1178
Licence: Zkušební
-Systémová informace-
OS: Windows 8
CPU: x64
Systém souborů: NTFS
Uživatel: LUK\u00c3\u0081\u00c5\u00a0\konec
-Shrnutí skenování-
Typ skenování: Skenování hrozeb (Threat Scan)
Výsledek: Dokončeno
Skenované objekty: 469049
Uplynulý čas: 12 min, 45 sek
-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Zakázáno
Heuristika: Povoleno
Potenciálně nežádoucí program: Povoleno
Potenciálně nežádoucí modifikace: Povoleno
-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)
Modul: 0
(Nebyly zjištěny žádné škodlivé položky)
Klíč registru: 6
PUP.Optional.MyBrowser, HKU\S-1-5-21-466670803-733275211-1192568883-1001\SOFTWARE\MyBrowser, Žádná uživatelská akce, [1577], [245710],1.0.1178
PUP.Optional.StartPage, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\WarThunder0, Žádná uživatelská akce, [79], [186209],1.0.1178
PUP.Optional.StartPage, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\WarThunder1, Žádná uživatelská akce, [79], [186209],1.0.1178
PUP.Optional.StartPage, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\WarThunder2, Žádná uživatelská akce, [79], [186209],1.0.1178
PUP.Optional.StartPage, HKLM\SOFTWARE\MICROSOFT\WINDOWS NT\CURRENTVERSION\SCHEDULE\TASKCACHE\TREE\WarThunder3, Žádná uživatelská akce, [79], [186209],1.0.1178
PUP.Optional.YesSearches.YSSRHS1, HKLM\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}, Žádná uživatelská akce, [740], [305912],1.0.1178
Hodnota v registru: 4
PUP.Optional.YesSearches.YSSRHS1, HKLM\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}|HP, Žádná uživatelská akce, [740], [305912],1.0.1178
PUP.Optional.YesSearches.YSSRHS1, HKLM\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}|TAB, Žádná uživatelská akce, [740], [305912],1.0.1178
PUP.Optional.YesSearches.YSSRHS1, HKLM\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}|SP, Žádná uživatelská akce, [740], [305912],1.0.1178
PUP.Optional.YesSearches.YSSRHS1, HKLM\SOFTWARE\MOZILLA\FIREFOX\{EB52F1AB-3C2B-424F-9794-833C687025CF}|SURL, Žádná uživatelská akce, [740], [305912],1.0.1178
Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)
Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)
Adresář: 12
PUP.Optional.AliExpress, C:\USERS\KONEC\APPDATA\ROAMING\AliExpress_helper, Žádná uživatelská akce, [122], [348735],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Web Applications\_crx_cmegngdghknoiclpbcjlajfkphoelcia, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\data_reduction_proxy_leveldb, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Web Applications, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Extension Rules, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Local Storage, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\ShaderCache\GPUCache, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\ShaderCache, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\USERS\KONEC\APPDATA\LOCAL\AliExpress, Žádná uživatelská akce, [122], [343982],1.0.1178
Soubor: 195
PUP.Optional.AliExpress, C:\Users\konec\AppData\Roaming\AliExpress_helper\3dcdd8bc386c12f910cbb51bb9c9a531.data.db, Žádná uživatelská akce, [122], [348735],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Roaming\AliExpress_helper\3dcdd8bc386c12f910cbb51bb9c9a531.events.db, Žádná uživatelská akce, [122], [348735],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Roaming\AliExpress_helper\3dcdd8bc386c12f910cbb51bb9c9a531.user.db, Žádná uživatelská akce, [122], [348735],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\data_0, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\data_1, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\data_2, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\data_3, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000001, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000002, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000003, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000005, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000006, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000007, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000008, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000009, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00000a, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00000b, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00000c, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00000d, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00000e, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00000f, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000011, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000012, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000013, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000014, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000015, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000016, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000017, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000018, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000019, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00001a, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00001b, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00001c, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00001d, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00001e, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00001f, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000020, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000021, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000022, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000023, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000028, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000029, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00002a, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00002b, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00002c, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00002d, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00002e, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000030, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000031, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000033, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000034, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000035, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000036, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000037, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000038, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00003a, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00003b, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00003e, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00003f, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000040, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000041, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000042, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000043, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000044, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000045, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000046, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000047, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000048, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000049, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00004a, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00004b, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00004c, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00004d, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00004e, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00004f, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000050, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000052, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000053, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000054, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000055, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000056, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000057, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000058, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000059, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00005a, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00005b, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00005c, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00005d, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00005e, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00005f, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000060, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000061, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000062, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000063, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000064, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000066, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000067, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000068, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000069, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00006a, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00006b, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00006c, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00006d, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00006e, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00006f, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000070, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000071, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000072, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000073, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000074, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000075, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000076, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000077, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000078, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000010, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000024, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00003d, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000051, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000065, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000079, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00007a, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00007b, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00007c, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00007d, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00007e, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00007f, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000080, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000081, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000082, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000084, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000085, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000086, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000087, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000088, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000089, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00008a, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00008b, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00008d, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00008e, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_00008f, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000090, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000092, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\f_000093, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cache\index, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\data_reduction_proxy_leveldb\000003.log, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\data_reduction_proxy_leveldb\CURRENT, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\data_reduction_proxy_leveldb\LOCK, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\data_reduction_proxy_leveldb\LOG, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\data_reduction_proxy_leveldb\LOG.old, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000001, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Extension Rules\000003.log, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Extension Rules\CURRENT, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Extension Rules\LOCK, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Extension Rules\LOG, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Extension Rules\MANIFEST-000001, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Local Storage\https_www.aliexpress.com_0.localstorage, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Local Storage\https_www.aliexpress.com_0.localstorage-journal, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Web Applications\_crx_cmegngdghknoiclpbcjlajfkphoelcia\AliExpress.ico, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Web Applications\_crx_cmegngdghknoiclpbcjlajfkphoelcia\AliExpress.ico.md5, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\ChromeDWriteFontCache, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cookies, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Cookies-journal, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Favicons, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Favicons-journal, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\History, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\History-journal, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Login Data, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Login Data-journal, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Network Persistent State, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Origin Bound Certs, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Origin Bound Certs-journal, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Preferences, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\README, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Secure Preferences, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Top Sites, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Top Sites-journal, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\TransportSecurity, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Visited Links, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Web Data, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Default\Web Data-journal, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\ShaderCache\GPUCache\data_0, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\ShaderCache\GPUCache\data_1, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\ShaderCache\GPUCache\data_2, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\ShaderCache\GPUCache\data_3, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\ShaderCache\GPUCache\index, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\First Run, Žádná uživatelská akce, [122], [343982],1.0.1178
PUP.Optional.AliExpress, C:\Users\konec\AppData\Local\AliExpress\User Data\Local State, Žádná uživatelská akce, [122], [343982],1.0.1178
HackTool.Agent, C:\PROGRAM FILES (X86)\EASYLANGUAGECZ\EASYLANGUAGE.V2.09-PATCH.EXE, Žádná uživatelská akce, [548], [1570],1.0.1178
PUP.Optional.OpenCandy, C:\USERS\KONEC\DOWNLOADS\CHEATENGINE651.EXE, Žádná uživatelská akce, [645], [101648],1.0.1178
RiskWare.GameHack.Generic, C:\USERS\KONEC\DOWNLOADS\ASSASSINS CREED SYNDICATE V1.12-UPDATE 1 PLUS 17 TRAINER.RAR, Žádná uživatelská akce, [2097], [339459],1.0.1178
PUP.Optional.OpenCandy, C:\USERS\KONEC\DOWNLOADS\CHEATENGINE66.EXE, Žádná uživatelská akce, [645], [101648],1.0.1178
PUP.Optional.OpenCandy, C:\USERS\KONEC\DOWNLOADS\CHEATENGINE66 (1).EXE, Žádná uživatelská akce, [645], [101648],1.0.1178
RiskWare.Injector.DC, C:\USERS\KONEC\DOWNLOADS\EXTREME INJECTOR.RAR, Žádná uživatelská akce, [8454], [74360],1.0.1178
RiskWare.DLLInjector, C:\USERS\KONEC\DOWNLOADS\DLLINJECTOR.EXE, Žádná uživatelská akce, [12192], [153171],1.0.1178
HackTool.CheatEngine, C:\USERS\KONEC\DOWNLOADS\RC7UNPATCHED.RAR, Žádná uživatelská akce, [1370], [352877],1.0.1178
Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)
(end)
Re: Prosím o kontrolu
muzes dat znovu skenovat a vse smazat.
Re: Prosím o kontrolu
Smazáno a zde nový sken.
Malwarebytes
www.malwarebytes.com
-Podrobnosti logovacího souboru-
Datum skenování: 06.02.17
Čas skenování: 18:24
Logovací soubor: Malveresbytes 2.txt
Správce: Ano
-Informace o softwaru-
Verze: 3.0.6.1469
Verze komponentů: 1.0.50
Aktualizovat verzi balíku komponent: 1.0.1193
Licence: Zkušební
-Systémová informace-
OS: Windows 8
CPU: x64
Systém souborů: NTFS
Uživatel: LUK\u00c3\u0081\u00c5\u00a0\konec
-Shrnutí skenování-
Typ skenování: Skenování hrozeb (Threat Scan)
Výsledek: Dokončeno
Skenované objekty: 470706
Uplynulý čas: 12 min, 1 sek
-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Zakázáno
Heuristika: Povoleno
Potenciálně nežádoucí program: Povoleno
Potenciálně nežádoucí modifikace: Povoleno
-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)
Modul: 0
(Nebyly zjištěny žádné škodlivé položky)
Klíč registru: 0
(Nebyly zjištěny žádné škodlivé položky)
Hodnota v registru: 0
(Nebyly zjištěny žádné škodlivé položky)
Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)
Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)
Adresář: 0
(Nebyly zjištěny žádné škodlivé položky)
Soubor: 1
Adware.LoadMoney, C:\USERS\KONEC\DOWNLOADS\STEAM_KEY.ZIP, V karanténě, [76], [367547],1.0.1193
Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)
(end)
Malwarebytes
www.malwarebytes.com
-Podrobnosti logovacího souboru-
Datum skenování: 06.02.17
Čas skenování: 18:24
Logovací soubor: Malveresbytes 2.txt
Správce: Ano
-Informace o softwaru-
Verze: 3.0.6.1469
Verze komponentů: 1.0.50
Aktualizovat verzi balíku komponent: 1.0.1193
Licence: Zkušební
-Systémová informace-
OS: Windows 8
CPU: x64
Systém souborů: NTFS
Uživatel: LUK\u00c3\u0081\u00c5\u00a0\konec
-Shrnutí skenování-
Typ skenování: Skenování hrozeb (Threat Scan)
Výsledek: Dokončeno
Skenované objekty: 470706
Uplynulý čas: 12 min, 1 sek
-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Zakázáno
Heuristika: Povoleno
Potenciálně nežádoucí program: Povoleno
Potenciálně nežádoucí modifikace: Povoleno
-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)
Modul: 0
(Nebyly zjištěny žádné škodlivé položky)
Klíč registru: 0
(Nebyly zjištěny žádné škodlivé položky)
Hodnota v registru: 0
(Nebyly zjištěny žádné škodlivé položky)
Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)
Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)
Adresář: 0
(Nebyly zjištěny žádné škodlivé položky)
Soubor: 1
Adware.LoadMoney, C:\USERS\KONEC\DOWNLOADS\STEAM_KEY.ZIP, V karanténě, [76], [367547],1.0.1193
Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)
(end)
Re: Prosím o kontrolu
muzes dat odstranit i ten jeden soubor z karanteny co tam zbyl.
jak se chova pc?
jak se chova pc?
Přispějete na provoz fóra?