Dobrý večer, prosím Vás o kontrolu mého počítače. Přikládám log z RSIT.
Logfile of random's system information tool 1.14 (written by random/random)
Run by Otakar Vavrečka at 2017-02-10 19:00:02
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 24 GB (15%) free of 158 GB
Total RAM: 3066 MB (47% free)
X86
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:00:37, on 10.2.2017
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal
Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Users\Otakar Vavrečka\AppData\Local\Seznam.cz\bin\postak.exe
C:\Users\Otakar Vavrečka\AppData\Local\Viber\Viber.exe
C:\Program Files\Mamemail\Mamemail Postak\Postak.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\Users\Otakar Vavrečka\Desktop\Gmail Notifier Plus.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Users\Otakar Vavrečka\Desktop\RSIT.exe
C:\Program Files\trend micro\Otakar Vavrečka_RSIT.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_73\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_73\bin\jp2ssv.dll
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Seznam Postak] "C:\Users\Otakar Vavrečka\AppData\Local\Seznam.cz\bin\postak.exe" -s
O4 - HKCU\..\Run: [Viber] "C:\Users\Otakar Vavrečka\AppData\Local\Viber\Viber.exe" StartMinimized
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - Startup: Mámemail Pošťák.lnk = C:\Program Files\Mamemail\Mamemail Postak\Postak.exe
O8 - Extra context menu item: Free YouTube Download - C:\Program Files\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Program Files\Common Files\DVDVideoSoft\plugins\freeytmp3downloader.htm
O9 - Extra button: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files\ICQ7.6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files\ICQ7.6\ICQ.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\system32\IoctlSvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
--
End of file - 4228 bytes
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\system32\tasks\Adobe Acrobat Update Task - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Windows\system32\tasks\Adobe Flash Player Updater - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\system32\tasks\CCleanerSkipUAC - "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
C:\Windows\system32\tasks\DriverCure Startup - C:\Program Files\ParetoLogic\DriverCure\DriverCure.exe -tray
C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore1cf6a811f49157b - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA1cf8b84abba174e - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\system32\tasks\Replay Media Catcher 5 6c9010b1-62d5-4d93-8351-7c593cf756ca - C:\Program Files\Applian Technologies\Replay Media Catcher 5\jrmcp.exe --task=6c9010b1-62d5-4d93-8351-7c593cf756ca
C:\Windows\system32\tasks\Replay Media Catcher 5 837966d0-c273-42b8-9c4d-973ff1be780e - C:\Program Files\Applian Technologies\Replay Media Catcher 5\jrmcp.exe --task=837966d0-c273-42b8-9c4d-973ff1be780e
C:\Windows\system32\tasks\{0008BE56-C856-44F1-826D-C36F64BB1287} - C:\Windows\system32\pcalua.exe -a "C:\Users\Otakar Vavrečka\Desktop\irfanviewcestina.exe" -d "C:\Users\Otakar Vavrečka\Desktop"
C:\Windows\system32\tasks\{068453C5-3191-4ADA-B908-C38F8F14D343} - C:\Windows\system32\pcalua.exe -a "C:\Users\Otakar Vavrečka\Desktop\irfanview_plugins_437_setup.exe" -d "C:\Users\Otakar Vavrečka\Desktop"
C:\Windows\system32\tasks\{110C381A-5642-470B-A060-54393638CE8D} - C:\Users\Otakar Vavrečka\Desktop\dotNetFx35setup.exe
C:\Windows\system32\tasks\{11AB4839-9909-4AA7-AD14-EA2EAFA4D911} - C:\Program Files\Free Audio Pack\Easy Audio Cutter\AudioCutter.exe
C:\Windows\system32\tasks\{13FBC005-0AF3-4F20-9DF1-36508DE5DFDB} - C:\Users\Otakar Vavrečka\Desktop\MP3SkypeRecorderSetup.exe
C:\Windows\system32\tasks\{142BAA19-9C0E-4940-AD01-37838C9BCCD2} - C:\Windows\system32\pcalua.exe -a "H:\HP ProBook 4710s\Programy\irfanview_lang_czech.exe" -d "H:\HP ProBook 4710s\Programy"
C:\Windows\system32\tasks\{1F3A9C16-7D5A-43D2-B156-63EEC906B679} - C:\Users\Otakar Vavrečka\Desktop\postak-ff-2.5.1.exe
C:\Windows\system32\tasks\{2BB4CBEF-9D48-4749-958E-6EE6D4E39FB8} - C:\Windows\system32\pcalua.exe -a "H:\HP ProBook 4710s\Programy\iview420_setup.exe" -d "H:\HP ProBook 4710s\Programy"
C:\Windows\system32\tasks\{3A84B831-9645-466B-AF28-4E8BC64EBB57} - C:\Program Files\Oracle\VirtualBox\VirtualBox.exe
C:\Windows\system32\tasks\{3DCF8AC0-DA6C-4053-A69A-17CDB994687B} - C:\Windows\system32\pcalua.exe -a "D:\Technické informace\vtrafo_sk.exe" -d C:\Windows\system32
C:\Windows\system32\tasks\{4377EADB-F2F3-4484-B7AB-4681C56FD068} - C:\Users\Otakar Vavrečka\Desktop\dotNetFx35setup.exe
C:\Windows\system32\tasks\{541CA25C-9E68-47EB-92EB-5DA80B6CA7B0} - C:\Windows\system32\pcalua.exe -a D:\Programy-1\irfanview_lang_czech.exe -d C:\Windows\system32
C:\Windows\system32\tasks\{55F4FB0D-4BF7-4555-B96A-4CF6E3A69CA0} - C:\Program Files\Apowersoft\Video Download Capture 6\Video Download Capture 6.exe
C:\Windows\system32\tasks\{61618E6E-6896-40BD-9067-11233F76E6BD} - C:\Windows\system32\pcalua.exe -a "C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RevoUninPro.exe" -d "C:\Program Files\VS Revo Group\Revo Uninstaller Pro"
C:\Windows\system32\tasks\{61B6B0A7-4511-4901-8DB8-333244336D38} - C:\Windows\system32\pcalua.exe -a "C:\Users\Otakar Vavrečka\Desktop\irfanview_plugins_428_setup.exe" -d "C:\Users\Otakar Vavrečka\Desktop"
C:\Windows\system32\tasks\{7478DCFE-FF91-47C5-9F7A-ED2100B4BE61} - C:\Program Files\MP3 Skype Recorder\MP3 Skype Recorder.exe
C:\Windows\system32\tasks\{78E18393-85E9-44A2-8555-42F0B555C029} - C:\Windows\system32\pcalua.exe -a "H:\HP ProBook 4710s\Programy\irfanviewcestina.exe" -d "C:\Program Files\Mozilla Firefox"
C:\Windows\system32\tasks\{8895351E-60C9-4702-A806-956922D6BED9} - C:\Windows\system32\pcalua.exe -a D:\Programy-1\DISK1\instmsiw.exe -d D:\Programy-1\DISK1
C:\Windows\system32\tasks\{908E8E1E-34BB-4E25-AD7D-659690B567CE} - C:\Windows\system32\pcalua.exe -a F:\fscommand\Axesstel_setup.exe -d F:\fscommand
C:\Windows\system32\tasks\{98A70D07-498F-4BC2-AF84-3310688F2CFE} - C:\Program Files\GIMP-2.0\bin\gimp-2.6.exe
C:\Windows\system32\tasks\{9B039347-33BD-49D9-80C0-367F2A397655} - C:\Program Files\GIMP-2.0\bin\gimp-2.6.exe
C:\Windows\system32\tasks\{9D52FDE3-F20B-4686-8DD0-2EBF00DB6704} - C:\Program Files\LibreOffice 3\program\soffice.exe
C:\Windows\system32\tasks\{A69F86CE-B4FE-4FF5-993F-0B71EB47E6DB} - C:\Windows\system32\pcalua.exe -a "D:\Programy-1\irfanview_lang_czech-Pro verzi 4.30.exe" -d D:\Programy-1
C:\Windows\system32\tasks\{B3A2F1D8-3678-4AE8-A095-EB4347B4A183} - C:\Windows\system32\pcalua.exe -a D:\Programy-1\ScreenShots.exe -d D:\Programy-1
C:\Windows\system32\tasks\{B826E4A4-24ED-4F5A-97A7-8F68847BCD73} - C:\Users\Otakar Vavrečka\Desktop\JDownloaderSetup.exe
C:\Windows\system32\tasks\{BD8B9751-91CF-4733-8234-8642163D0119} - C:\Program Files\Skype\\Phone\Skype.exe
C:\Windows\system32\tasks\{C604AE1E-7C34-4608-A678-595AF7F1A99C} - C:\Windows\system32\pcalua.exe -a D:\Programy-1\DISK1.exe -d "C:\Program Files\Mozilla Firefox"
C:\Windows\system32\tasks\{CAE32497-34EF-4452-840C-6F4750A66D63} - C:\Windows\system32\pcalua.exe -a "C:\Users\Otakar Vavrečka\Desktop\irfanview_lang_czech.exe" -d "C:\Users\Otakar Vavrečka\Desktop"
C:\Windows\system32\tasks\{D1CF8CA1-868F-4B6C-921C-972E5CB37228} - C:\Windows\system32\pcalua.exe -a "D:\Programy-1\DISK1(Návrh jednofázových síťových transformátorů).exe" -d D:\Programy-1
C:\Windows\system32\tasks\{DB39F503-5081-4645-94B0-FE40C9C0E720} - D:\Programy-1\MP3SkypeRecorderSetup.exe
C:\Windows\system32\tasks\{E84A7D35-4C89-405E-B541-1ED3B040A08F} - C:\Windows\system32\pcalua.exe -a "C:\Program Files\Alwil Software\Avast5\aswRunDll.exe" -c "C:\Program Files\Alwil Software\Avast5\Setup\setiface.dll" RunSetup
C:\Windows\system32\tasks\{EDA0F073-4ABE-443A-B014-97165BCDDC37} - C:\Windows\system32\pcalua.exe -a "C:\Users\Otakar Vavrečka\Desktop\iview428_setup.exe" -d "C:\Users\Otakar Vavrečka\Desktop"
C:\Windows\system32\tasks\{F0150743-E3C6-4235-96B0-40D74873D707} - C:\Users\Otakar Vavrečka\Desktop\JDownloaderSetup.exe
C:\Windows\system32\tasks\{F3CE23B2-382B-4090-99F1-EB7797659BA4} - C:\Windows\system32\pcalua.exe -a "H:\HP ProBook 4710s\Programy\iview428_setup.exe" -d "C:\Program Files\Mozilla Firefox"
C:\Windows\system32\tasks\{FF406F8A-6A3E-44F5-95D2-358E780EBEB1} - C:\Program Files\MP3 Skype Recorder\MP3 Skype Recorder.exe
C:\Windows\system32\tasks\WPD\SqmUpload_S-1-5-21-505298747-3480647553-2469496864-1000 - %windir%\system32\rundll32.exe portabledeviceapi.dll,#1
C:\Windows\system32\tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup - %systemroot%\system32\rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
C:\Windows\system32\tasks\Microsoft\Windows\WindowsBackup\ConfigNotification - %systemroot%\System32\sdclt.exe /CONFIGNOTIFICATION
C:\Windows\system32\tasks\Microsoft\Windows\WindowsBackup\Windows Backup Monitor - %systemroot%\system32\sdclt.exe /CHECKSKIPPED
C:\Windows\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\Windows\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\Windows\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -queuereporting
C:\Windows\system32\tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTask - %SystemRoot%\system32\Wat\WatAdminSvc.exe /run
C:\Windows\system32\tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline - %SystemRoot%\system32\schtasks.exe /run /I /TN "\Microsoft\Windows\Windows Activation Technologies\ValidationTask"
C:\Windows\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\Windows\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\Windows\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict1 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPOffendingSystem
C:\Windows\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict2 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPDefendingSystem
C:\Windows\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation
C:\Windows\system32\tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask - sc.exe start sppsvc
C:\Windows\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\Windows\system32\tasks\Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem - %SystemRoot%\System32\powercfg.exe -energy -auto
C:\Windows\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\Windows\system32\tasks\Microsoft\Windows\MUI\Lpksetup - C:\Windows\System32\lpksetup.exe -v
C:\Windows\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\Windows\system32\tasks\Microsoft\Windows\MUI\Mcbuilder - C:\Windows\System32\mcbuilder.exe
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoActivateWindowsSearch
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService - %SystemRoot%\ehome\ehPrivJob.exe /DoConfigureInternetTimeService
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks - %SystemRoot%\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ehDRMInit - %SystemRoot%\ehome\ehPrivJob.exe /DRMInit
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\InstallPlayReady - %SystemRoot%\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\mcupdate - %SystemRoot%\ehome\mcupdate $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\mcupdate_scheduled - %SystemRoot%\ehome\mcupdate -crl -hms -pscn 15
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -MediaCenterRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -ObjectStoreRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\OCURActivate - %SystemRoot%\ehome\ehPrivJob.exe /OCURActivate
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\OCURDiscovery - %SystemRoot%\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscovery - %SystemRoot%\ehome\ehPrivJob.exe /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 - %SystemRoot%\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 - %SystemRoot%\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PeriodicScanRetry - %windir%\ehome\MCUpdate.exe -pscn 0
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PvrRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -PvrRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PvrScheduleTask - %SystemRoot%\ehome\mcupdate.exe -PvrSchedule
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\RecordingRestart - %SystemRoot%\ehome\ehrec /RestartRecording
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\RegisterSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ReindexSearchRoot - %SystemRoot%\ehome\ehPrivJob.exe /DoReindexSearchRoot
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -SqlLiteRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\StartRecording - %SystemRoot%\ehome\ehrec /StartRecording
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\UpdateRecordPath - %SystemRoot%\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotifications.exe
C:\Windows\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\Windows\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\Windows\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c
C:\Windows\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\Windows\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\AitAgent - aitagent
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\rundll32.exe aepdu.dll,AePduRunUpdate -nolegacy
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\rundll32.exe aepdu.dll,AePduRunUpdate
C:\Windows\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\Windows\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\Otakar Vavrečka\AppData\Roaming\Mozilla\Firefox\Profiles\fslv0uhv.default
prefs.js - "browser.search.useDBForOrder" - ""
prefs.js - "browser.startup.homepage" - "http://www.google.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 22.0.0.209 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_22_0_0_209.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@canon.com/MycameraPlugin]
"Description"=
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.73.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.73.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_73\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.32.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.32.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.6]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
C:\Users\Otakar Vavrečka\AppData\Roaming\Mozilla\Firefox\Profiles\fslv0uhv.default\addons.json
Firefox Hello Beta (discontinued) - extension - loop@mozilla.org
C:\Users\Otakar Vavrečka\AppData\Roaming\Mozilla\Firefox\Profiles\fslv0uhv.default\extensions.json
Multi-process staged rollout - extension - e10srollout@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\e10srollout@mozilla.org.xpi
Pocket - extension - firefox@getpocket.com - C:\Program Files\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi
Firefox Hello - extension - loop@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\loop@mozilla.org.xpi
Default - theme - {972ce4c6-7e08-4474-a285-3208198ce6fd} - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi
Multi-process staged rollout - extension - e10srollout@mozilla.org - C:\Users\Otakar VavreÄka\AppData\Roaming\Mozilla\Firefox\Profiles\fslv0uhv.default\features\{52c8b4dd-9983-408f-b173-e3b1b326e1d1}\e10srollout@mozilla.org.xpi
Pocket - extension - firefox@getpocket.com - C:\Users\Otakar VavreÄka\AppData\Roaming\Mozilla\Firefox\Profiles\fslv0uhv.default\features\{52c8b4dd-9983-408f-b173-e3b1b326e1d1}\firefox@getpocket.com.xpi
Firefox Hello - extension - loop@mozilla.org - C:\Users\Otakar VavreÄka\AppData\Roaming\Mozilla\Firefox\Profiles\fslv0uhv.default\features\{52c8b4dd-9983-408f-b173-e3b1b326e1d1}\loop@mozilla.org.xpi
Websense Helper - extension - websensehelper@mozilla.org - C:\Users\Otakar VavreÄka\AppData\Roaming\Mozilla\Firefox\Profiles\fslv0uhv.default\features\{52c8b4dd-9983-408f-b173-e3b1b326e1d1}\websensehelper@mozilla.org.xpi
C:\Users\Otakar Vavrečka\AppData\Roaming\Mozilla\Firefox\Profiles\fslv0uhv.default\pluginreg.dat
Plugin - Adobe Acrobat - 15.20.20039.7108 - C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
Plugin - VLC Web Plugin - 2.2.4.0 - C:\Program Files\VideoLAN\VLC\npvlc.dll
Plugin - Google Update - 1.3.32.7 - C:\Program Files\Google\Update\1.3.32.7\npGoogleUpdate3.dll
Plugin - Silverlight Plug-In - 5.1.50709.0 - c:\Program Files\Microsoft Silverlight\5.1.50709.0\npctrl.dll
Plugin - Java(TM) Platform SE 8 U73 - 11.73.2.2 - C:\Program Files\Java\jre1.8.0_73\bin\plugin2\npjp2.dll
Plugin - Java Deployment Toolkit 8.0.730.2 - 11.73.2.2 - C:\Program Files\Java\jre1.8.0_73\bin\dtplugin\npdeployJava1.dll
Plugin - Shockwave Flash - 22.0.0.209 - C:\Windows\system32\Macromed\Flash\NPSWF32_22_0_0_209.dll
Plugin - Google Update - 1.3.28.13 - C:\Users\Otakar Vavrečka\AppData\Local\Google\Update\1.3.28.13\npGoogleUpdate3.dll
Plugin - Google Talk Plugin - 5.41.2.0 - C:\Users\Otakar Vavrečka\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
Plugin - Google Talk Plugin Video Renderer - 5.41.2.0 - C:\Users\Otakar Vavrečka\AppData\Roaming\Mozilla\plugins\npo1d.dll
=========Google Chrome=========
C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Store 0.2
Extension aohghmighlieiainnegkcijnfilokake 1 Dokumenty Google 0.9
Extension apdfllckaahabafndbhieahigkjlhalf 1 Disk Google 14.1
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension bgjpfhpjcgdppjbgnpnjllokbmcdllig 1 Seznam Lištička - Email 1.3.20
Extension blmojkbhnkkphngknkmgccmlenfaelkd 1 Seznam Lištička - Slovník 1.4.5
Extension blpcfgokakmgnkcojhhkbfbldkacnbeo 1 YouTube 4.2.8
Extension coobgpohoikkiipiblmjeljniedjpjpf 1 Vyhledávání Google 0.0.0.60
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension efaidnbmnnnibpcajpcglclefindmkaj 1 Adobe Acrobat 15.1.0.5
Extension ennkphjdgehloodpbhlhldgbnhmacadg Settings 0.2
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension ghbmnnjooekpmoecnnnilnnbdlolhkhi 1 Dokumenty Google offline 1.4
Extension gomekmidlodglbbmalcneegieacbdmki 1 Avast Online Security 12.0.163
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.46
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mgndgikekgjfcpckkfioiadnlibdjbkf Chrome 0.1
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension ncdfeinlpefandfngbdmdgjgepebkjap 0 IMPI 2.0.0.429
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.2
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Platby Internetového obchodu Chrome 1.0.0.1
Extension nppompfpfhfogiopmfgmlgoepbolnpfk 1 Allow Copy 0.7
Extension olfeabkoenfaoljndfecamgilllcpiak 0 Seznam Lištička - Rychlá volba 1.8.6
Extension pafkbggdmjlpgkdkcbjmhmfcdpncadgh Google Now 1.2.0.1
Extension pjkljhegncpnkpknbcohdijeoejaedia 1 Gmail 8.1
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 5616.1121.0.3
Homepage: http://www.google.com
default_search_provider.search_url:
C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Preferences
Plugin 11.5.31.137 Shockwave Flash C:\Program Files\Google\Chrome\Application\56.0.2924.87\PepperFlash\pepflashplayer.dll
Plugin Chrome Remote Desktop Viewer internal-remoting-viewer
Plugin Native Client C:\Program Files\Google\Chrome\Application\56.0.2924.87\ppGoogleNaClPluginChrome.dll
Plugin Chrome PDF Viewer C:\Program Files\Google\Chrome\Application\56.0.2924.87\pdf.dll
Plugin 10.1.3.23 Adobe Acrobat C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
Plugin 1.0.0.8 Microsoft Windows Media Player Firefox Plugin C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll
Plugin 2.9.10.7526 Google Talk Plugin C:\Users\Otakar Vavreka\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
Plugin 0,1,44,15 Google Talk Plugin Video Accelerator C:\Users\Otakar Vavreka\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll
Plugin 6.1.0.5001 Google Earth Plugin C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
Plugin 1.3.21.135 Google Update C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll
Plugin 10.5.1.255 Java(TM) Platform SE 7 U5 C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll
Plugin 11,3,300,257 Shockwave Flash C:\Windows\system32\Macromed\Flash\NPSWF32_11_3_300_257.dll
Plugin 10.5.1.255 Java Deployment Toolkit 7.0.50.255 C:\Windows\system32\npDeployJava1.dll
Plugin 4.0.60310.0 Silverlight Plug-In c:\Program Files\Microsoft Silverlight\4.0.60310.0\npctrl.dll
Homepage:
default_search_provider.search_url:
[HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\efaidnbmnnnibpcajpcglclefindmkaj]
"Path"=
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_73\bin\ssv.dll [2016-02-10 460384]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-02-10 172640]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016]
"Seznam Postak"=C:\Users\Otakar Vavrečka\AppData\Local\Seznam.cz\bin\postak.exe [2012-01-10 491040]
"Viber"=C:\Users\Otakar Vavrečka\AppData\Local\Viber\Viber.exe [2015-11-09 51657424]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2014-10-29 4826904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner.exe [2014-10-29 4826904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.autoupdate]
C:\Users\Otakar Vavrečka\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop]
C:\Users\Otakar Vavrečka\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hppwrsav]
C:\SCANJET\PrecisionScanLT\hppwrsav.exe [1999-06-07 23552]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KONICA MINOLTA PagePro 1300WStatusDisplay]
C:\Windows\system32\MSTMON_N.EXE [2004-11-25 151552]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KONICA MINOLTA PagePro 1400W STD]
C:\Windows\system32\MSTMON_Y.EXE [2006-03-01 184320]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MP3 Skype Recorder]
C:\Users\Otakar Vavrečka\AppData\Local\MP3 Skype recorder\MP3SkypeRecorder.exe [2015-11-13 2216600]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PAC7302_Monitor]
C:\Windows\PixArt\PAC7302\Monitor.exe [2006-11-03 319488]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Seznam Postak]
C:\Users\Otakar Vavrečka\AppData\Local\Seznam.cz\bin\postak.exe [2012-01-10 491040]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce]
C:\Program Files\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAXPnP]
C:\Program Files\Analog Devices\Core\smax4pnp.exe [2009-05-18 1314816]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Viber]
C:\Users\Otakar Vavrečka\AppData\Local\Viber\Viber.exe [2015-11-09 51657424]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^ImageBrowser EX Agent.lnk]
C:\PROGRA~1\Canon\IMAGEB~1\MFMANA~1.EXE [2013-01-29 69120]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Otakar Vavrečka^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Mámemail Pošťák.lnk]
C:\PROGRA~1\Mamemail\MAMEMA~1\Postak.exe [2015-04-13 740352]
C:\Users\Otakar Vavrečka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Mámemail Pošťák.lnk - C:\Program Files\Mamemail\Mamemail Postak\Postak.exe
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
"StubPath"="C:\Program Files\Google\Chrome\Application\56.0.2924.87\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{A6EADE66-0000-0000-484E-7E8A45000000}]
"StubPath"="C:\Windows\system32\Rundll32.exe" "C:\Program Files\Adobe\Acrobat Reader DC\Esl\AiodLite.dll",CreateReaderUserSettings
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2017-02-10 19:00:02 ----DC---- C:\rsit
2017-01-12 18:38:33 ----A---- C:\Windows\system32\vbscript.dll
2017-01-12 18:38:33 ----A---- C:\Windows\system32\UtcResources.dll
2017-01-12 18:38:33 ----A---- C:\Windows\system32\jsproxy.dll
2017-01-12 18:38:33 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-01-12 18:38:33 ----A---- C:\Windows\system32\ieetwproxystub.dll
2017-01-12 18:38:33 ----A---- C:\Windows\system32\ieetwcollector.exe
2017-01-12 18:38:32 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2017-01-12 18:38:32 ----A---- C:\Windows\system32\jscript9diag.dll
2017-01-12 18:38:32 ----A---- C:\Windows\system32\jscript.dll
2017-01-12 18:38:32 ----A---- C:\Windows\system32\ieUnatt.exe
2017-01-12 18:38:32 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2017-01-12 18:38:32 ----A---- C:\Windows\system32\dxtmsft.dll
2017-01-12 18:38:31 ----A---- C:\Windows\system32\wininet.dll
2017-01-12 18:38:31 ----A---- C:\Windows\system32\diagtrack.dll
2017-01-12 18:38:30 ----A---- C:\Windows\system32\dxtrans.dll
2017-01-12 18:38:29 ----A---- C:\Windows\system32\ieui.dll
2017-01-12 18:38:28 ----A---- C:\Windows\system32\mshtmled.dll
2017-01-12 18:38:27 ----A---- C:\Windows\system32\mshtmlmedia.dll
2017-01-12 18:38:27 ----A---- C:\Windows\system32\MshtmlDac.dll
2017-01-12 18:38:26 ----A---- C:\Windows\system32\iertutil.dll
2017-01-12 18:38:25 ----A---- C:\Windows\system32\jscript9.dll
2017-01-12 18:38:24 ----A---- C:\Windows\system32\mshtml.dll
2017-01-12 18:38:23 ----A---- C:\Windows\system32\inseng.dll
2017-01-12 18:38:23 ----A---- C:\Windows\system32\iernonce.dll
2017-01-12 18:38:22 ----A---- C:\Windows\system32\urlmon.dll
2017-01-12 18:38:22 ----A---- C:\Windows\system32\occache.dll
2017-01-12 18:38:22 ----A---- C:\Windows\system32\msfeeds.dll
2017-01-12 18:38:22 ----A---- C:\Windows\system32\iedkcs32.dll
2017-01-12 18:38:22 ----A---- C:\Windows\system32\ieapfltr.dll
2017-01-12 18:38:22 ----A---- C:\Windows\system32\ie4uinit.exe
2017-01-12 18:38:21 ----A---- C:\Windows\system32\webcheck.dll
2017-01-12 18:38:21 ----A---- C:\Windows\system32\msrating.dll
2017-01-12 18:38:20 ----A---- C:\Windows\system32\iesetup.dll
2017-01-12 18:38:19 ----A---- C:\Windows\system32\ieframe.dll
2017-01-12 18:38:18 ----A---- C:\Windows\system32\wmp.dll
2017-01-12 18:38:16 ----A---- C:\Windows\system32\win32k.sys
2017-01-12 18:38:16 ----A---- C:\Windows\system32\mf.dll
2017-01-12 18:38:16 ----A---- C:\Windows\system32\FntCache.dll
2017-01-12 18:38:16 ----A---- C:\Windows\system32\DWrite.dll
2017-01-12 18:38:15 ----A---- C:\Windows\system32\ntkrnlpa.exe
2017-01-12 18:38:15 ----A---- C:\Windows\system32\blackbox.dll
2017-01-12 18:38:14 ----A---- C:\Windows\system32\ntoskrnl.exe
2017-01-12 18:38:14 ----A---- C:\Windows\system32\msi.dll
2017-01-12 18:38:14 ----A---- C:\Windows\system32\drmv2clt.dll
2017-01-12 18:38:13 ----A---- C:\Windows\system32\WsmSvc.dll
2017-01-12 18:38:13 ----A---- C:\Windows\system32\wmdrmsdk.dll
2017-01-12 18:38:13 ----A---- C:\Windows\system32\scavengeui.dll
2017-01-12 18:38:13 ----A---- C:\Windows\system32\quartz.dll
2017-01-12 18:38:13 ----A---- C:\Windows\system32\MSVidCtl.dll
2017-01-12 18:38:12 ----A---- C:\Windows\system32\ntdll.dll
2017-01-12 18:38:12 ----A---- C:\Windows\system32\crypt32.dll
2017-01-12 18:38:08 ----A---- C:\Windows\system32\win32spl.dll
2017-01-12 18:38:08 ----A---- C:\Windows\system32\UIAnimation.dll
2017-01-12 18:38:07 ----A---- C:\Windows\system32\winload.exe
2017-01-12 18:38:07 ----A---- C:\Windows\system32\inetcomm.dll
2017-01-12 18:38:07 ----A---- C:\Windows\system32\evr.dll
2017-01-12 18:38:07 ----A---- C:\Windows\system32\authui.dll
2017-01-12 18:38:07 ----A---- C:\Windows\system32\audiosrv.dll
2017-01-12 18:38:06 ----A---- C:\Windows\system32\oleaut32.dll
2017-01-12 18:38:06 ----A---- C:\Windows\system32\msctf.dll
2017-01-12 18:38:06 ----A---- C:\Windows\system32\kerberos.dll
2017-01-12 18:38:06 ----A---- C:\Windows\system32\input.dll
2017-01-12 18:38:05 ----A---- C:\Windows\system32\WebClnt.dll
2017-01-12 18:38:05 ----A---- C:\Windows\system32\schannel.dll
2017-01-12 18:38:05 ----A---- C:\Windows\system32\qdvd.dll
2017-01-12 18:38:05 ----A---- C:\Windows\system32\lsasrv.dll
2017-01-12 18:38:05 ----A---- C:\Windows\system32\IMJP10K.DLL
2017-01-12 18:38:05 ----A---- C:\Windows\system32\drmmgrtn.dll
2017-01-12 18:38:05 ----A---- C:\Windows\system32\AUDIOKSE.dll
2017-01-12 18:38:05 ----A---- C:\Windows\system32\atmfd.dll
2017-01-12 18:38:05 ----A---- C:\Windows\system32\advapi32.dll
2017-01-12 18:38:04 ----A---- C:\Windows\system32\WsmWmiPl.dll
2017-01-12 18:38:04 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2017-01-12 18:38:04 ----A---- C:\Windows\system32\wintrust.dll
2017-01-12 18:38:04 ----A---- C:\Windows\system32\msv1_0.dll
2017-01-12 18:38:04 ----A---- C:\Windows\system32\gdi32.dll
2017-01-12 18:38:04 ----A---- C:\Windows\system32\cryptsvc.dll
2017-01-12 18:38:04 ----A---- C:\Windows\system32\clfs.sys
2017-01-12 18:38:04 ----A---- C:\Windows\system32\AudioEng.dll
2017-01-12 18:38:03 ----A---- C:\Windows\system32\WsmAuto.dll
2017-01-12 18:38:03 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2017-01-12 18:38:03 ----A---- C:\Windows\system32\usp10.dll
2017-01-12 18:38:03 ----A---- C:\Windows\system32\user32.dll
2017-01-12 18:38:03 ----A---- C:\Windows\system32\srcore.dll
2017-01-12 18:38:03 ----A---- C:\Windows\system32\rpcrt4.dll
2017-01-12 18:38:03 ----A---- C:\Windows\system32\msihnd.dll
2017-01-12 18:38:03 ----A---- C:\Windows\system32\mfplat.dll
2017-01-12 18:38:03 ----A---- C:\Windows\system32\drivers\PEAuth.sys
2017-01-12 18:38:03 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2017-01-12 18:38:03 ----A---- C:\Windows\system32\drivers\mrxdav.sys
2017-01-12 18:38:03 ----A---- C:\Windows\system32\davclnt.dll
2017-01-12 18:38:03 ----A---- C:\Windows\system32\cryptui.dll
2017-01-12 18:38:03 ----A---- C:\Windows\system32\cryptnet.dll
2017-01-12 18:38:03 ----A---- C:\Windows\system32\AudioSes.dll
2017-01-12 18:38:03 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2017-01-12 18:38:02 ----A---- C:\Windows\system32\wmploc.DLL
2017-01-12 18:38:02 ----A---- C:\Windows\system32\pcasvc.dll
2017-01-12 18:38:02 ----A---- C:\Windows\system32\EncDump.dll
2017-01-12 18:38:02 ----A---- C:\Windows\system32\drivers\mountmgr.sys
2017-01-12 18:38:02 ----A---- C:\Windows\system32\drivers\dfsc.sys
2017-01-12 18:38:02 ----A---- C:\Windows\system32\drivers\cng.sys
2017-01-12 18:38:02 ----A---- C:\Windows\system32\consent.exe
2017-01-12 18:38:02 ----A---- C:\Windows\system32\adtschema.dll
2017-01-12 18:38:00 ----A---- C:\Windows\system32\rpchttp.dll
2017-01-12 18:38:00 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2017-01-12 18:37:59 ----A---- C:\Windows\system32\ncrypt.dll
2017-01-12 18:37:59 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2017-01-12 18:37:57 ----A---- C:\Windows\system32\olepro32.dll
2017-01-12 18:37:57 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2017-01-12 18:37:57 ----A---- C:\Windows\system32\drivers\bowser.sys
2017-01-12 18:37:56 ----A---- C:\Windows\system32\wdigest.dll
2017-01-12 18:37:56 ----A---- C:\Windows\system32\rstrui.exe
2017-01-12 18:37:56 ----A---- C:\Windows\system32\drivers\appid.sys
2017-01-12 18:37:56 ----A---- C:\Windows\system32\cryptsp.dll
2017-01-12 18:37:56 ----A---- C:\Windows\system32\bcdedit.exe
2017-01-12 18:37:56 ----A---- C:\Windows\system32\appidsvc.dll
2017-01-12 18:37:56 ----A---- C:\Windows\system32\adsmsext.dll
2017-01-12 18:37:53 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2017-01-12 18:37:53 ----A---- C:\Windows\system32\appidapi.dll
2017-01-12 18:37:52 ----A---- C:\Windows\system32\smss.exe
2017-01-12 18:37:52 ----A---- C:\Windows\system32\mfps.dll
2017-01-12 18:37:52 ----A---- C:\Windows\system32\csrsrv.dll
2017-01-12 18:37:52 ----A---- C:\Windows\system32\bcrypt.dll
2017-01-12 18:37:50 ----A---- C:\Windows\system32\TSpkg.dll
2017-01-12 18:37:50 ----A---- C:\Windows\system32\msiexec.exe
2017-01-12 18:37:50 ----A---- C:\Windows\system32\hlink.dll
2017-01-12 18:37:50 ----A---- C:\Windows\system32\asycfilt.dll
2017-01-12 18:37:50 ----A---- C:\Windows\system32\appinfo.dll
2017-01-12 18:37:49 ----A---- C:\Windows\system32\cryptbase.dll
2017-01-12 18:37:49 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2017-01-12 18:37:47 ----A---- C:\Windows\system32\nlsbres.dll
2017-01-12 18:37:47 ----A---- C:\Windows\system32\msscp.dll
2017-01-12 18:37:47 ----A---- C:\Windows\system32\audiodg.exe
2017-01-12 18:37:46 ----A---- C:\Windows\system32\sspicli.dll
2017-01-12 18:37:46 ----A---- C:\Windows\system32\secur32.dll
2017-01-12 18:37:46 ----A---- C:\Windows\system32\msnetobj.dll
2017-01-12 18:37:46 ----A---- C:\Windows\system32\msaudite.dll
2017-01-12 18:37:46 ----A---- C:\Windows\system32\lsass.exe
2017-01-12 18:37:46 ----A---- C:\Windows\system32\auditpol.exe
2017-01-12 18:37:45 ----A---- C:\Windows\system32\srclient.dll
2017-01-12 18:37:45 ----A---- C:\Windows\system32\credssp.dll
2017-01-12 18:37:42 ----A---- C:\Windows\system32\setbcdlocale.dll
2017-01-12 18:37:42 ----A---- C:\Windows\system32\rrinstaller.exe
2017-01-12 18:37:42 ----A---- C:\Windows\system32\pcawrk.exe
2017-01-12 18:37:42 ----A---- C:\Windows\system32\pcadm.dll
2017-01-12 18:37:42 ----A---- C:\Windows\system32\mfpmp.exe
2017-01-12 18:37:41 ----A---- C:\Windows\system32\wsmprovhost.exe
2017-01-12 18:37:41 ----A---- C:\Windows\system32\atmlib.dll
2017-01-12 18:37:39 ----A---- C:\Windows\system32\wsmplpxy.dll
2017-01-12 18:37:39 ----A---- C:\Windows\system32\pcalua.exe
2017-01-12 18:37:39 ----A---- C:\Windows\system32\msmmsp.dll
2017-01-12 18:37:39 ----A---- C:\Windows\system32\lpk.dll
2017-01-12 18:37:39 ----A---- C:\Windows\system32\dciman32.dll
2017-01-12 18:37:38 ----A---- C:\Windows\system32\WsmRes.dll
2017-01-12 18:37:38 ----A---- C:\Windows\system32\sspisrv.dll
2017-01-12 18:37:38 ----A---- C:\Windows\system32\spwmp.dll
2017-01-12 18:37:38 ----A---- C:\Windows\system32\pcaevts.dll
2017-01-12 18:37:38 ----A---- C:\Windows\system32\msobjs.dll
2017-01-12 18:37:38 ----A---- C:\Windows\system32\msimsg.dll
2017-01-12 18:37:38 ----A---- C:\Windows\system32\mferror.dll
2017-01-12 18:37:38 ----A---- C:\Windows\system32\INETRES.dll
2017-01-12 18:37:38 ----A---- C:\Windows\system32\fontsub.dll
2017-01-12 18:37:38 ----A---- C:\Windows\system32\dxmasf.dll
2017-01-12 18:37:38 ----A---- C:\Windows\system32\apisetschema.dll
2017-01-12 18:37:36 ----A---- C:\Windows\system32\tzres.dll
2017-01-12 18:36:34 ----A---- C:\Windows\system32\poqexec.exe
======List of files/folders modified in the last 1 month======
2017-02-10 19:00:14 ----DC---- C:\Windows\Prefetch
2017-02-10 19:00:05 ----DC---- C:\Program Files\trend micro
2017-02-10 18:59:57 ----DC---- C:\Windows\temp
2017-02-10 18:37:29 ----DC---- C:\Users\Otakar Vavrečka\AppData\Roaming\ViberPC
2017-02-10 18:29:09 ----DC---- C:\Windows\inf
2017-02-10 18:29:09 ----DC---- C:\Windows
2017-02-10 15:03:26 ----DC---- C:\Windows\system32\config
2017-01-25 10:17:57 ----ADC---- C:\Windows\System32
2017-01-25 10:17:57 ----AC---- C:\Windows\system32\PerfStringBackup.INI
2017-01-20 09:20:08 ----SHDC---- C:\Windows\Installer
2017-01-17 19:08:47 ----DC---- C:\Windows\debug
2017-01-14 19:17:50 ----D---- C:\Windows\rescache
2017-01-14 15:24:20 ----DC---- C:\Windows\Microsoft.NET
2017-01-14 15:23:22 ----RSDC---- C:\Windows\assembly
2017-01-13 09:27:21 ----DC---- C:\Windows\system32\Tasks
2017-01-13 09:19:44 ----SHD---- C:\System Volume Information
2017-01-13 09:14:57 ----D---- C:\Windows\winsxs
2017-01-13 09:11:57 ----DC---- C:\Windows\system32\migration
2017-01-13 09:11:57 ----DC---- C:\Windows\system32\drivers
2017-01-13 09:11:57 ----DC---- C:\Windows\system32\Dism
2017-01-13 09:11:57 ----DC---- C:\Windows\system32\cs-CZ
2017-01-13 09:11:57 ----DC---- C:\Program Files\Windows Media Player
2017-01-13 09:11:57 ----DC---- C:\Program Files\Internet Explorer
2017-01-13 09:11:56 ----DC---- C:\Windows\system32\en-US
2017-01-13 09:11:54 ----DC---- C:\Windows\AppPatch
2017-01-13 09:11:43 ----SDC---- C:\ProgramData\Microsoft
2017-01-13 09:11:43 ----D---- C:\Windows\system32\Boot
2017-01-12 18:59:30 ----DC---- C:\Windows\system32\MRT
2017-01-12 18:55:06 ----AC---- C:\Windows\system32\MRT.exe
2017-01-12 18:53:02 ----DC---- C:\Program Files\Microsoft Silverlight
2017-01-12 09:42:21 ----DC---- C:\Windows\system32\catroot2
File C:\Windows\system32\winlogon.exe is digitally signed
File C:\Windows\system32\wininit.exe is digitally signed
File C:\Windows\explorer.exe is digitally signed
File C:\Windows\system32\svchost.exe is digitally signed
File C:\Windows\system32\services.exe is digitally signed
File C:\Windows\system32\User32.dll is digitally signed
File C:\Windows\system32\userinit.exe is digitally signed
File C:\Windows\system32\rpcss.dll is digitally signed
File C:\Windows\system32\Drivers\volsnap.sys is digitally signed
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2016-11-14 71304]
R0 giveio;giveio; C:\Windows\system32\giveio.sys [1996-04-03 5248]
R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2011-05-13 25656]
R0 PxHelp20;PxHelp20; C:\Windows\System32\Drivers\PxHelp20.sys [2013-06-03 46096]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2013-05-09 21576]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2016-11-14 206472]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2016-11-14 156288]
R1 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2016-11-14 162952]
R1 EpfwLWF;ESET Personal Firewall; C:\Windows\system32\DRIVERS\EpfwLWF.sys [2016-11-14 52872]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 ekbdflt;ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [2016-11-14 122496]
R2 npf;NetGroup Packet Filter Driver; \??\C:\Windows\system32\drivers\npf.sys [2015-08-21 36600]
R3 5U876UVC;HP Webcam [2 MP series]; C:\Windows\system32\DRIVERS\5U876.sys [2009-11-13 114688]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2011-05-13 35896]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\ADIHdAud.sys [2009-05-18 381440]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-08-18 4994560]
R3 BCM43XX;Ovladač síťového adaptéru Broadcom 802.11; C:\Windows\system32\DRIVERS\bcmwl6.sys [2013-09-26 4268608]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-06-04 1303728]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
S2 MLPTDR_N;MLPTDR_N; \??\C:\Windows\system32\MLPTDR_N.SYS [2003-07-18 18848]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\AGRSM.sys [2010-01-26 1163328]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 78336]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys []
S3 PAC7302;PAC7302 VGA USB Camera; C:\Windows\system32\DRIVERS\PAC7302.SYS [2007-06-14 457856]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 14848]
S3 Revoflt;Revoflt; C:\Windows\system32\DRIVERS\revoflt.sys [2009-12-30 27192]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 Ser2pl;Prolific Serial port driver; C:\Windows\system32\DRIVERS\ser2pl.sys [2010-03-12 81920]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 sscdbus;SAMSUNG USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\sscdbus.sys [2005-08-17 58352]
S3 sscdmdfl;SAMSUNG CDMA Modem Filter; C:\Windows\system32\DRIVERS\sscdmdfl.sys [2005-08-17 8272]
S3 sscdmdm;SAMSUNG CDMA Modem Drivers; C:\Windows\system32\DRIVERS\sscdmdm.sys [2005-08-17 93872]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2013-10-02 49152]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 36352]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\Windows\system32\DRIVERS\VBoxNetAdp.sys [2015-03-02 115672]
S3 VBoxNetFlt;VirtualBox Bridged Networking Service; C:\Windows\system32\DRIVERS\VBoxNetFlt.sys []
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-12-19 82640]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; %SystemRoot%\System32\svchost.exe -k utcsvc;"ServiceDll"=%SystemRoot%\system32\diagtrack.dll
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2016-11-14 2167696]
R2 PLFlash DeviceIoControl Service;PLFlash DeviceIoControl Service; C:\Windows\system32\IoctlSvc.exe [2006-12-19 81920]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-03 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2016-09-20 324224]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-03 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2017-01-12 102912]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-02-23 1343400]
S4 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-07-13 270016]
S4 AEADIFilters;Andrea ADI Filters Service; C:\Windows\system32\AEADISRV.EXE [2008-07-15 90112]
S4 AgereModemAudio;Agere Modem Call Progress Audio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [2009-12-03 26112]
S4 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-08-18 176128]
S4 EPSON_EB_RPCV4_01;EPSON V5 Service4(01); C:\ProgramData\EPSON\EPW!3 SSRP\E_S40ST7.EXE [2007-12-17 143872]
S4 EPSON_PM_RPCV4_01;EPSON V3 Service4(01); C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE [2007-01-11 113664]
S4 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2011-05-13 26168]
S4 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files\Hp\Common\HPSupportSolutionsFrameworkService.exe [2014-12-11 89864]
S4 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2016-06-11 146888]
S4 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2008-04-08 800040]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2008-01-22 275752]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu PC
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Prosím o kontrolu PC
Blbý můžeš být,ale musíš si umět poradit...
Re: Prosím o kontrolu PC
info.txt logfile of random's system information tool 1.14 2017-02-10 19:00:43
======MBR======
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
======Uninstall list======
[20140310]-->C:\Program Files\InstallShield Installation Information\{9BF745FA-1118-44D2-9362-179DA4B27AC6}\setup.exe -runfromtemp -l0x0009 -removeonly <<Hidden
[2016/07/12 19:09:02]-->C:\Program Files\Nero\Nero 7\\nero\uninstall\UNNERO.exe /UNINSTALL <<Hidden
[2016/07/12 19:09:02]-->C:\Windows\UNNeroBackItUp.exe /UNINSTALL <<Hidden
[2016/07/12 19:09:02]-->C:\Windows\UNNeroMediaHome.exe /UNINSTALL <<Hidden
[2016/07/12 19:09:02]-->C:\Windows\UNNeroShowTime.exe /UNINSTALL <<Hidden
[2016/07/12 19:09:02]-->C:\Windows\UNNeroVision.exe /UNINSTALL <<Hidden
[2016/07/12 19:09:02]-->C:\Windows\UNRecode.exe /UNINSTALL <<Hidden
µTorrent [2016/07/12 19:09:02]-->C:\Users\Otakar Vavrečka\AppData\Roaming\uTorrent\uninstall.exe
Adobe Acrobat Reader DC - Czech [20170120]-->MsiExec.exe /I{AC76BA86-7AD7-1029-7B44-AC0F074E4100}
Adobe Flash Player 22 ActiveX [2016/07/12 19:09:02]-->C:\Windows\system32\Macromed\Flash\FlashUtil32_22_0_0_192_ActiveX.exe -maintain activex
Adobe Flash Player 22 NPAPI [2016/07/13 07:31:30]-->C:\Windows\system32\Macromed\Flash\FlashUtil32_22_0_0_209_Plugin.exe -maintain plugin
Adobe Refresh Manager [20170113]-->MsiExec.exe /I{AC76BA86-0804-1033-1959-001824211354}
Any Video Converter 5.9.0 [20160210]-->"C:\Program Files\Anvsoft\Any Video Converter\unins000.exe"
Apowersoft Video Stahovač V6.1.6 [20161225]-->"C:\Program Files\Apowersoft\Video Download Capture 6\unins000.exe"
Ashampoo Burning Studio 6 FREE v.6.84 [20130609]-->"C:\Program Files\Ashampoo\Ashampoo Burning Studio 6 FREE\unins000.exe"
Audacity 2.0.5 [20140218]-->"C:\Program Files\Audacity\unins000.exe"
Autodesk MapGuide(R) Viewer ActiveX Control Release 6.5 [20140416]-->MsiExec.exe /I{E031338C-839D-4EDD-9537-99B653C39D81}
AxCrypt 1.7.2976.0 [20131121]-->MsiExec.exe /I{38350E9E-D50E-454A-BAFC-58BBDDBE08C4}
Broadcom 802.11 Wireless LAN Adapter [2016/07/12 19:09:02]-->"C:\Program Files\Broadcom\Broadcom 802.11\Driver\bcmwlu00.exe" verbose /rootkey="Software\Broadcom\802.11\UninstallInfo" /rootdir="C:\Program Files\Broadcom\Broadcom 802.11\Driver" driver
Canon MovieEdit Task for ZoomBrowser EX [2016/07/12 19:09:02]-->"C:\Program Files\Common Files\Canon\UIW\1.11.0.0\Uninst.exe" "C:\Program Files\Canon\ZoomBrowser EX\Program\MVWUninst.ini"
Canon PhotoRecord [2016/07/12 19:09:02]-->C:\Windows\IsUninst.exe -fC:\PROGRA~1\Canon\PhotoRecord\Uninst.isu -c"C:\PROGRA~1\Canon\PhotoRecord\Program\uninstdll.dll"
Canon RAW Codec [2016/07/12 19:09:02]-->"C:\Program Files\Common Files\Canon\UIW\1.7.0.0\Uninst.exe" "C:\Program Files\Canon\RAWCodec170\CRCUnInstall.ini"
Canon Utilities CameraWindow DC 8 [2016/07/12 19:09:02]-->"C:\Program Files\Common Files\Canon_Inc_IC\UniversalInstaller\Uninstall\UnInstaller\UniversalUnInstaller.exe" "C:\Program Files\Common Files\Canon_Inc_IC\UniversalInstaller\Uninstall\CameraWindowDC\uninstall.xml"
Canon Utilities EOS Video Snapshot Task for ZoomBrowser EX [2016/07/12 19:09:02]-->"C:\Program Files\Common Files\Canon\UIW\1.11.0.0\Uninst.exe" "C:\Program Files\Canon\EOS Video Snapshot Task\Uninst.ini"
Canon Utilities ImageBrowser EX [2016/07/12 19:09:02]-->"C:\Program Files\Common Files\Canon_Inc_IC\UniversalInstaller\Uninstall\UnInstaller\UniversalUnInstaller.exe" "C:\Program Files\Common Files\Canon_Inc_IC\UniversalInstaller\Uninstall\ImageBrowser EX\uninstall.xml"
Canon Utilities ZoomBrowser EX [20130514]-->MsiExec.exe /X{C1D76D7A-F3BB-47EA-A746-5B1E2FFC1DF2}
Canon Utilities ZoomBrowser EX [2016/07/12 19:09:02]-->"C:\Program Files\Common Files\Canon\UIW\1.11.0.0\Uninst.exe" "C:\Program Files\Canon\ZoomBrowser EX\Program\Uninst.ini"
CCleaner [2016/07/12 19:09:02]-->"C:\Program Files\CCleaner\uninst.exe"
CDBurnerXP [20110804]-->MsiExec.exe /X{5932A5C4-BB44-4CFB-AD66-1B826F4D788B}
Cisco EAP-FAST Module [20130926]-->MsiExec.exe /I{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}
Cisco LEAP Module [20130926]-->MsiExec.exe /I{51C7AD07-C3F6-4635-8E8A-231306D810FE}
Cisco PEAP Module [20130926]-->MsiExec.exe /I{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}
Cryptext (Remove Only) [2016/07/12 19:09:02]-->rundll32 setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\Windows\system32\ShellExt\Cryptext.inf
Defraggler [2016/07/12 19:09:02]-->"C:\Program Files\Defraggler\uninst.exe"
doPDF 7.2 printer [20111207]-->"C:\Program Files\Softland\doPDF 7\unins000.exe"
EAGLE 6.4.0 [2016/07/12 19:09:02]-->cmd.exe /c start "EAGLE Uninstaller" /min "C:\Program Files\EAGLE-6.4.0\bin\uninstall.bat" C:\Program Files\EAGLE-6.4.0\bin
EPSON Scan [2016/07/12 19:09:02]-->C:\Program Files\epson\escndv\setup\setup.exe /r
ESET Smart Security [20160620]-->MsiExec.exe /I{0D5E985F-735D-4B61-9E76-6AC8B66FB48A}
Eusing Free MP3 Cutter [2016/07/12 19:09:02]-->C:\PROGRA~1\EUSING~1\UNWISE.EXE C:\PROGRA~1\EUSING~1\INSTALL.LOG
EVEREST Ultimate Edition v5.50 [20111218]-->"C:\Program Files\Lavalys\EVEREST Ultimate Edition\unins000.exe"
FastStone Image Viewer 4.6 [2016/07/12 19:09:02]-->C:\Program Files\FastStone Image Viewer\uninst.exe
GIMP 2.6.11 [20110507]-->"C:\Program Files\GIMP-2.0\setup\unins000.exe"
Google Drive [20161216]-->MsiExec.exe /X{07A12123-B717-496B-B471-48AF6407B433}
Google Chrome [20110222]-->"C:\Program Files\Google\Chrome\Application\56.0.2924.87\Installer\setup.exe" --uninstall --system-level
Google Talk Plugin [20150422]-->MsiExec.exe /I{CA3DD97D-1FD7-37A7-BD5C-FC4430C8B8E6}
Google Update Helper [20141113]-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Google Update Helper [20161218]-->MsiExec.exe /I{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
GPL Ghostscript [2016/07/12 19:09:02]-->"C:\Program Files\gs\gs9.09\uninstgs.exe"
HP PrecisionScan LT Software [2016/07/12 19:09:02]-->C:\SCANJET\PrecisionScanLT\uninstal.exe C:\SCANJET\PrecisionScanLT\uninstal.cfg
HP Support Solutions Framework [20150202]-->MsiExec.exe /I{96D12EC9-720B-45FB-904C-36D6307A1C76}
HP Web Camera [20110225]-->MsiExec.exe /I{C7AE4EC3-9C13-4213-8457-74D16B353F91}
HP Webcam [2016/07/12 19:09:02]-->C:\ProgramData\Uninstall\{1D61E881-43CD-447B-9E6B-D2C6138B2862}\setup.exe /x {1D61E881-43CD-447B-9E6B-D2C6138B2862}
Chinese Traditional Fonts Support For Adobe Reader X [20110710]-->MsiExec.exe /I{AC76BA86-7AD7-2448-0000-A00000000003}
ICQ7.6 [20111012]-->"C:\Program Files\InstallShield Installation Information\{7644E42D-B096-457F-8B5B-901238FC81AE}\ICQ7.exe" -runfromtemp -l0x0009 -removeonly
Integrated Camera Driver Installer Package Ver.1.33.110.0 [20130926]-->"C:\Program Files\InstallShield Installation Information\{B0344B38-378B-47E0-BDCC-977785D24768}\setup.exe" -runfromtemp -l0x0005 anything -removeonly
IrfanView (remove only) [2016/07/12 19:09:02]-->C:\Program Files\IrfanView\iv_uninstall.exe
Java 8 Update 73 [20160210]-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83218073F0}
JavaFX 2.1.1 [20120620]-->MsiExec.exe /X{1111706F-666A-4037-7777-211328764D10}
KONICA MINOLTA PagePro 1300W [2016/07/12 19:09:02]-->MUINST_N.EXE /PRN:"KONICA MINOLTA PagePro 1300W"
KONICA MINOLTA PagePro 1400W [2016/07/12 19:09:02]-->MUINST_Y.EXE /PRN:"KONICA MINOLTA PagePro 1400W"
Mámemail Pošťák verze 1.3 [20160818]-->"C:\Program Files\Mamemail\Mamemail Postak\unins000.exe"
Marvell Miniport Driver [2016/07/12 19:09:02]-->C:\Program Files\Marvell\Miniport Driver\Uninst.exe
Microsoft .NET Framework 4.5.1 (CSY) [20140115]-->MsiExec.exe /X{123F4E9B-80E6-3A84-BDD4-3CB3AC59ABF0}
Microsoft .NET Framework 4.5.1 (čeština) [2016/07/12 19:09:02]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\CSY\\Setup.exe /repair /x86 /lcid 1029
Microsoft .NET Framework 4.5.1 [20151111]-->MsiExec.exe /X{4903D172-DCCB-392F-93A3-34CA9D47FE3D}
Microsoft .NET Framework 4.5.1 [2016/07/12 19:09:02]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\\Setup.exe /repair /x86
Microsoft PowerPoint Viewer [20170112]-->MsiExec.exe /X{95140000-00AF-0405-0000-0000000FF1CE}
Microsoft Silverlight [20170112]-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft Visual C++ 2005 Redistributable [20130429]-->MsiExec.exe /X{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
Microsoft Visual C++ 2005 Redistributable [20130608]-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 [20130510]-->MsiExec.exe /X{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 [20110811]-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 [20110222]-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 [20130428]-->MsiExec.exe /X{9BE518E6-ECC6-35A9-88E4-87755C07200F}
Mozilla Firefox 47.0 (x86 cs) [2016/07/12 19:09:02]-->"C:\Program Files\Mozilla Firefox\uninstall\helper.exe"
Mozilla Maintenance Service [2016/07/12 19:09:02]-->"C:\Program Files\Mozilla Maintenance Service\uninstall.exe"
MP3 Skype recorder [20160110]-->MsiExec.exe /X{7CF296C0-583C-4BB7-8DBE-34DD6AE635B7}
MSXML 4.0 SP3 Parser (KB2721691) [20120711]-->MsiExec.exe /I{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}
MSXML 4.0 SP3 Parser (KB2758694) [20130429]-->MsiExec.exe /I{1D95BA90-F4F8-47EC-A882-441C99D30C1E}
MSXML 4.0 SP3 Parser (KB973685) [20111208]-->MsiExec.exe /I{859DFA95-E4A6-48CD-B88E-A3E483E89B44}
Nero 7 Ultra Edition [20150201]-->MsiExec.exe /X{F90D6825-8F1F-4E3A-9E42-A9C8A9DD1029}
Nero Update [20130608]-->MsiExec.exe /X{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}
neroxml [20130608]-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
Odinstalace tiskárny EPSON Stylus SX200 Series [2016/07/12 19:09:02]-->C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FINSEFE.EXE /R /APD /P:"EPSON Stylus SX200 Series"
OpenOffice.org 3.3 [20110801]-->MsiExec.exe /I{D5B94160-4A07-4956-9C73-8C5EEFEF180F}
Recover Files 3.31 [20160626]-->"C:\Program Files\Recover Files\unins000.exe"
Recuva [2016/07/12 19:09:02]-->"C:\Program Files\Recuva\uninst.exe"
Revo Uninstaller Pro 2.5.8 [20120603]-->"C:\Program Files\VS Revo Group\Revo Uninstaller Pro\unins000.exe"
Security Update for Microsoft .NET Framework 4.5.1 (KB2894854v2) [2016/07/12 19:09:02]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {1531A92E-2552-384F-B942-06A5D18DFA13}
Security Update for Microsoft .NET Framework 4.5.1 (KB2898869) [2016/07/12 19:09:02]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {8086EDC0-3409-3560-B108-44FC46882443}
Security Update for Microsoft .NET Framework 4.5.1 (KB2901126) [2016/07/12 19:09:02]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {FED9B2BC-E6D7-3409-B4C9-99AF8AC65725}
Security Update for Microsoft .NET Framework 4.5.1 (KB2931368) [2016/07/12 19:09:02]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {054F96E9-E89B-3DDB-AA70-A65194B921B4}
Security Update for Microsoft .NET Framework 4.5.1 (KB2972107) [2016/07/12 19:09:02]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {CBD8D84A-257A-3A60-9819-5DF166F9CD25}
Security Update for Microsoft .NET Framework 4.5.1 (KB2972216) [2016/07/12 19:09:02]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {4DC3F78D-5CCF-37B9-9A05-EDDC456F4F20}
Security Update for Microsoft .NET Framework 4.5.1 (KB2978128) [2016/07/12 19:09:02]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {00BE0B8D-C610-34AA-ABD1-EE023DA39E5D}
Security Update for Microsoft .NET Framework 4.5.1 (KB2979578v2) [2016/07/12 19:09:02]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {1863F765-CBE8-3EB3-B434-CA6B6DF2561E}
Security Update for Microsoft .NET Framework 4.5.1 (KB3023224) [2016/07/12 19:09:02]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {3DDE5FB2-7F31-38AB-9407-F5698AD72FE8}
Security Update for Microsoft .NET Framework 4.5.1 (KB3035490) [2016/07/12 19:09:02]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {3DFE50DE-BA81-369E-B149-CC3B8AB09405}
Security Update for Microsoft .NET Framework 4.5.1 (KB3037581) [2016/07/12 19:09:02]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {C7D8B9A9-9C79-3278-A33E-C621DA724830}
Security Update for Microsoft .NET Framework 4.5.1 (KB3074230) [2016/07/12 19:09:02]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {CCEC28F6-82A2-35B0-8FE6-39C22A698F23}
Security Update for Microsoft .NET Framework 4.5.1 (KB3074550) [2016/07/12 19:09:02]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {A4953275-5880-3E7F-ABC2-BE1904624135}
Security Update for Microsoft .NET Framework 4.5.1 (KB3097996) [2016/07/12 19:09:02]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {63474770-8265-373F-8E8A-63BE4DB58739}
Security Update for Microsoft .NET Framework 4.5.1 (KB3098781) [2016/07/12 19:09:02]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {DB389F39-13F5-33DE-B9A2-C2AF6E3D4EDE}
Seznam Pošťák 2 (Pouze já.) [2015/01/24 21:54:48]-->"C:\Users\Otakar Vavrečka\AppData\Local\Seznam.cz\postak-uninstall.exe" /CurrentUser
Seznam Software [2016/05/16 04:11:42]-->"C:\Users\Otakar Vavrečka\AppData\Roaming\Seznam.cz\szninstall.exe" -X
Skype™ 7.30 [20161227]-->MsiExec.exe /X{FC965A47-4839-40CA-B618-18F486F042C6}
sPlan 7.0 (Demo) [20141031]-->"C:\Program Files\sPlan70 (Demo)\unins000.exe"
SuperiorUSB v5.5.0 [20160521]-->"c:\Prog\Superior\unins000.exe"
Synaptics Pointing Device Driver [2016/07/12 19:09:02]-->rundll32.exe "%ProgramFiles%\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall
Undelete 360 [20160626]-->"C:\Program Files\File Recovery\undelete360\unins000.exe"
Uschovna.cz 1.1.0 [20131121]-->"C:\Program Files\Uschovna.cz\unins000.exe"
Viber [2015/11/16 18:45:06]-->"C:\Users\Otakar Vavrečka\AppData\Local\Package Cache\{7de2db6a-6f4b-4b45-82b9-57d5d7f1c952}\ViberSetup.exe" /uninstall
Viber [20151116]-->MsiExec.exe /I{097A0B4C-1568-4735-8C3D-4CB265A115C8}
VLC media player [2016/08/24 17:00:27]-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Windows Media Player Firefox Plugin [20110414]-->MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
WinRAR 4.01 (32-bit) [2016/07/12 19:09:02]-->C:\Program Files\WinRAR\uninstall.exe
X-Lite 3.0 [2016/07/12 19:09:02]-->"C:\Program Files\CounterPath\X-Lite\unins000.exe"
======System event log"======
Computer Name: PC-Otakar
Event Code: 62464
Message: UVD Information
Record Number: 1139042
Source Name: atikmdag
Time Written: 20160823190434.452436-000
Event Type: Informace
User:
Computer Name: PC-Otakar
Event Code: 62464
Message: UVD Information
Record Number: 1139041
Source Name: atikmdag
Time Written: 20160823185708.952955-000
Event Type: Informace
User:
Computer Name: PC-Otakar
Event Code: 62464
Message: UVD Information
Record Number: 1139040
Source Name: atikmdag
Time Written: 20160823185707.776888-000
Event Type: Informace
User:
Computer Name: PC-Otakar
Event Code: 62464
Message: UVD Information
Record Number: 1139039
Source Name: atikmdag
Time Written: 20160823185654.413625-000
Event Type: Informace
User:
Computer Name: PC-Otakar
Event Code: 62464
Message: UVD Information
Record Number: 1139038
Source Name: atikmdag
Time Written: 20160823185605.880851-000
Event Type: Informace
User:
=====Application event log"=====
Computer Name: PC-Otakar
Event Code: 103
Message: SkypeUpdate service is shutting down due to idle timeout.
Record Number: 153697
Source Name: SkypeUpdate
Time Written: 20150502031259.000000-000
Event Type: Informace
User:
Computer Name: PC-Otakar
Event Code: 902
Message: Služba Ochrana softwaru byla spuštěna.
6.1.7601.17514
Record Number: 153696
Source Name: Microsoft-Windows-Security-SPP
Time Written: 20150502031225.000000-000
Event Type: Informace
User:
Computer Name: PC-Otakar
Event Code: 1003
Message: Služba Ochrana softwaru dokončila kontrolu stavu licencování.
ID aplikace=55c92734-d682-4d71-983e-d6ec3f16059f
Stav licencování=
1: 01f5fc37-a99e-45c5-b65e-d762f3518ead, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
2: 2e7d060d-4714-40f2-9896-1e4f15b612ad, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
3: 3b965dfc-31d9-4903-886f-873a0382776c, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
4: 586bc076-c93d-429a-afe5-a69fbc644e88, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
5: 5e017a8a-f3f9-4167-b1bd-ba3e236a4d8f, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
6: 5e35dc43-389b-47c5-b889-2088b06738cb, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
7: 6a7d5d8a-92af-4e6a-af4b-8fddaec800e5, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
8: 9ab82e0c-ffc9-4107-baa1-c65a8bd3ccc3, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
9: 9f83d90f-a151-4665-ae69-30b3f63ec659, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
10: a63275f4-530c-48a7-b0d3-4f00d688d151, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
11: b8a4bb91-69b1-460d-93f8-40e0670af04a, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
12: d2c04e90-c3dd-4260-b0f3-f845f5d27d64, 1, 1 [(0 [0x00000000, 1, 0], [(?)(?)( 1 0x00000000 0 0 msft:rm/algorithm/bios/4.0 0x00000000 0)(?)(?)(?)])(1 )(2 )]
13: e68b141f-4dfa-4387-b3b7-e65c4889216e, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
14: ee4e1629-bcdc-4b42-a68f-b92e135f78d7, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
15: 4a8149bb-7d61-49f4-8822-82c7bf88d64b, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
16: afd5f68f-b70f-4000-a21d-28dbc8be8b07, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
Record Number: 153695
Source Name: Microsoft-Windows-Security-SPP
Time Written: 20150502031225.000000-000
Event Type: Informace
User:
Computer Name: PC-Otakar
Event Code: 1066
Message: Inicializační stav pro objekty služby
C:\Windows\system32\sppwinob.dll, msft:spp/windowsfunctionality/agent/7.0, 0x00000000, 0x00000000
C:\Windows\system32\sppobjs.dll, msft:rm/algorithm/phone/1.0, 0x00000000, 0x00000000
C:\Windows\system32\sppobjs.dll, msft:rm/algorithm/pkey/2005, 0x00000000, 0x00000000
C:\Windows\system32\sppobjs.dll, msft:spp/TaskScheduler/1.0, 0x00000000, 0x00000000
C:\Windows\system32\sppobjs.dll, msft:spp/volume/services/kms/1.0, 0x00000000, 0x00000000
C:\Windows\system32\sppobjs.dll, msft:spp/volume/services/kms/licenserenewal/1.0, 0x00000000, 0x00000000
Record Number: 153694
Source Name: Microsoft-Windows-Security-SPP
Time Written: 20150502031225.000000-000
Event Type: Informace
User:
Computer Name: PC-Otakar
Event Code: 900
Message: Služba Ochrana softwaru se spouští.
Record Number: 153693
Source Name: Microsoft-Windows-Security-SPP
Time Written: 20150502031224.000000-000
Event Type: Informace
User:
=====Security event log"=====
Computer Name: PC-Otakar
Event Code: 5058
Message: Operace se souborem klíče.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: PC-OTAKAR$
Doména účtu: WORKGROUP
ID přihlášení: 0x3e7
Kryptografické parametry:
Název poskytovatele: Microsoft Software Key Storage Provider
Název algoritmu: Není k dispozici.
Název klíče: ESET_RootCertContainer
Typ klíče: Klíč uživatele
Informace o operaci se souborem klíče:
Cesta k souboru: C:\ProgramData\Microsoft\Crypto\RSA\S-1-5-18\d1d940883614fe244b12f480b5388574_03d76bf1-77ee-4e91-b8b6-cd5c210e67d2
Operace: Čtení trvalého klíče ze souboru
Návratový kód: 0x0
Record Number: 751198
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20170126091605.038374-000
Event Type: Úspěšný audit
User:
Computer Name: PC-Otakar
Event Code: 5061
Message: Kryptografická operace.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: PC-OTAKAR$
Doména účtu: WORKGROUP
ID přihlášení: 0x3e7
Kryptografické parametry:
Název poskytovatele: Microsoft Software Key Storage Provider
Název algoritmu: RSA
Název klíče: ESET_RootCertContainer
Typ klíče: Klíč uživatele
Kryptografická operace:
Operace: Otevřít klíč
Návratový kód: 0x0
Record Number: 751197
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20170126091604.951369-000
Event Type: Úspěšný audit
User:
Computer Name: PC-Otakar
Event Code: 5061
Message: Kryptografická operace.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: PC-OTAKAR$
Doména účtu: WORKGROUP
ID přihlášení: 0x3e7
Kryptografické parametry:
Název poskytovatele: Microsoft Software Key Storage Provider
Název algoritmu: RSA
Název klíče: ESET_RootCertContainer
Typ klíče: Klíč uživatele
Kryptografická operace:
Operace: Otevřít klíč
Návratový kód: 0x0
Record Number: 751196
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20170126091604.951369-000
Event Type: Úspěšný audit
User:
Computer Name: PC-Otakar
Event Code: 5058
Message: Operace se souborem klíče.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: PC-OTAKAR$
Doména účtu: WORKGROUP
ID přihlášení: 0x3e7
Kryptografické parametry:
Název poskytovatele: Microsoft Software Key Storage Provider
Název algoritmu: Není k dispozici.
Název klíče: ESET_RootCertContainer
Typ klíče: Klíč uživatele
Informace o operaci se souborem klíče:
Cesta k souboru: C:\ProgramData\Microsoft\Crypto\RSA\S-1-5-18\d1d940883614fe244b12f480b5388574_03d76bf1-77ee-4e91-b8b6-cd5c210e67d2
Operace: Čtení trvalého klíče ze souboru
Návratový kód: 0x0
Record Number: 751195
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20170126091604.950369-000
Event Type: Úspěšný audit
User:
Computer Name: PC-Otakar
Event Code: 5058
Message: Operace se souborem klíče.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: PC-OTAKAR$
Doména účtu: WORKGROUP
ID přihlášení: 0x3e7
Kryptografické parametry:
Název poskytovatele: Microsoft Software Key Storage Provider
Název algoritmu: Není k dispozici.
Název klíče: ESET_RootCertContainer
Typ klíče: Klíč uživatele
Informace o operaci se souborem klíče:
Cesta k souboru: C:\ProgramData\Microsoft\Crypto\RSA\S-1-5-18\d1d940883614fe244b12f480b5388574_03d76bf1-77ee-4e91-b8b6-cd5c210e67d2
Operace: Čtení trvalého klíče ze souboru
Návratový kód: 0x0
Record Number: 751194
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20170126091604.950369-000
Event Type: Úspěšný audit
User:
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\system32\wbem;C:\Program Files\Broadcom\Broadcom 802.11\Driver;;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0;C:\Program Files\Skype\Phone;C:\Program Files\Skype\Phone\
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=x86
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\
"NUMBER_OF_PROCESSORS"=2
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 15 Stepping 13, GenuineIntel
"PROCESSOR_REVISION"=0f0d
"ESET_OPTIONS"=
-----------------EOF-----------------
======MBR======
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
======Uninstall list======
[20140310]-->C:\Program Files\InstallShield Installation Information\{9BF745FA-1118-44D2-9362-179DA4B27AC6}\setup.exe -runfromtemp -l0x0009 -removeonly <<Hidden
[2016/07/12 19:09:02]-->C:\Program Files\Nero\Nero 7\\nero\uninstall\UNNERO.exe /UNINSTALL <<Hidden
[2016/07/12 19:09:02]-->C:\Windows\UNNeroBackItUp.exe /UNINSTALL <<Hidden
[2016/07/12 19:09:02]-->C:\Windows\UNNeroMediaHome.exe /UNINSTALL <<Hidden
[2016/07/12 19:09:02]-->C:\Windows\UNNeroShowTime.exe /UNINSTALL <<Hidden
[2016/07/12 19:09:02]-->C:\Windows\UNNeroVision.exe /UNINSTALL <<Hidden
[2016/07/12 19:09:02]-->C:\Windows\UNRecode.exe /UNINSTALL <<Hidden
µTorrent [2016/07/12 19:09:02]-->C:\Users\Otakar Vavrečka\AppData\Roaming\uTorrent\uninstall.exe
Adobe Acrobat Reader DC - Czech [20170120]-->MsiExec.exe /I{AC76BA86-7AD7-1029-7B44-AC0F074E4100}
Adobe Flash Player 22 ActiveX [2016/07/12 19:09:02]-->C:\Windows\system32\Macromed\Flash\FlashUtil32_22_0_0_192_ActiveX.exe -maintain activex
Adobe Flash Player 22 NPAPI [2016/07/13 07:31:30]-->C:\Windows\system32\Macromed\Flash\FlashUtil32_22_0_0_209_Plugin.exe -maintain plugin
Adobe Refresh Manager [20170113]-->MsiExec.exe /I{AC76BA86-0804-1033-1959-001824211354}
Any Video Converter 5.9.0 [20160210]-->"C:\Program Files\Anvsoft\Any Video Converter\unins000.exe"
Apowersoft Video Stahovač V6.1.6 [20161225]-->"C:\Program Files\Apowersoft\Video Download Capture 6\unins000.exe"
Ashampoo Burning Studio 6 FREE v.6.84 [20130609]-->"C:\Program Files\Ashampoo\Ashampoo Burning Studio 6 FREE\unins000.exe"
Audacity 2.0.5 [20140218]-->"C:\Program Files\Audacity\unins000.exe"
Autodesk MapGuide(R) Viewer ActiveX Control Release 6.5 [20140416]-->MsiExec.exe /I{E031338C-839D-4EDD-9537-99B653C39D81}
AxCrypt 1.7.2976.0 [20131121]-->MsiExec.exe /I{38350E9E-D50E-454A-BAFC-58BBDDBE08C4}
Broadcom 802.11 Wireless LAN Adapter [2016/07/12 19:09:02]-->"C:\Program Files\Broadcom\Broadcom 802.11\Driver\bcmwlu00.exe" verbose /rootkey="Software\Broadcom\802.11\UninstallInfo" /rootdir="C:\Program Files\Broadcom\Broadcom 802.11\Driver" driver
Canon MovieEdit Task for ZoomBrowser EX [2016/07/12 19:09:02]-->"C:\Program Files\Common Files\Canon\UIW\1.11.0.0\Uninst.exe" "C:\Program Files\Canon\ZoomBrowser EX\Program\MVWUninst.ini"
Canon PhotoRecord [2016/07/12 19:09:02]-->C:\Windows\IsUninst.exe -fC:\PROGRA~1\Canon\PhotoRecord\Uninst.isu -c"C:\PROGRA~1\Canon\PhotoRecord\Program\uninstdll.dll"
Canon RAW Codec [2016/07/12 19:09:02]-->"C:\Program Files\Common Files\Canon\UIW\1.7.0.0\Uninst.exe" "C:\Program Files\Canon\RAWCodec170\CRCUnInstall.ini"
Canon Utilities CameraWindow DC 8 [2016/07/12 19:09:02]-->"C:\Program Files\Common Files\Canon_Inc_IC\UniversalInstaller\Uninstall\UnInstaller\UniversalUnInstaller.exe" "C:\Program Files\Common Files\Canon_Inc_IC\UniversalInstaller\Uninstall\CameraWindowDC\uninstall.xml"
Canon Utilities EOS Video Snapshot Task for ZoomBrowser EX [2016/07/12 19:09:02]-->"C:\Program Files\Common Files\Canon\UIW\1.11.0.0\Uninst.exe" "C:\Program Files\Canon\EOS Video Snapshot Task\Uninst.ini"
Canon Utilities ImageBrowser EX [2016/07/12 19:09:02]-->"C:\Program Files\Common Files\Canon_Inc_IC\UniversalInstaller\Uninstall\UnInstaller\UniversalUnInstaller.exe" "C:\Program Files\Common Files\Canon_Inc_IC\UniversalInstaller\Uninstall\ImageBrowser EX\uninstall.xml"
Canon Utilities ZoomBrowser EX [20130514]-->MsiExec.exe /X{C1D76D7A-F3BB-47EA-A746-5B1E2FFC1DF2}
Canon Utilities ZoomBrowser EX [2016/07/12 19:09:02]-->"C:\Program Files\Common Files\Canon\UIW\1.11.0.0\Uninst.exe" "C:\Program Files\Canon\ZoomBrowser EX\Program\Uninst.ini"
CCleaner [2016/07/12 19:09:02]-->"C:\Program Files\CCleaner\uninst.exe"
CDBurnerXP [20110804]-->MsiExec.exe /X{5932A5C4-BB44-4CFB-AD66-1B826F4D788B}
Cisco EAP-FAST Module [20130926]-->MsiExec.exe /I{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}
Cisco LEAP Module [20130926]-->MsiExec.exe /I{51C7AD07-C3F6-4635-8E8A-231306D810FE}
Cisco PEAP Module [20130926]-->MsiExec.exe /I{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}
Cryptext (Remove Only) [2016/07/12 19:09:02]-->rundll32 setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\Windows\system32\ShellExt\Cryptext.inf
Defraggler [2016/07/12 19:09:02]-->"C:\Program Files\Defraggler\uninst.exe"
doPDF 7.2 printer [20111207]-->"C:\Program Files\Softland\doPDF 7\unins000.exe"
EAGLE 6.4.0 [2016/07/12 19:09:02]-->cmd.exe /c start "EAGLE Uninstaller" /min "C:\Program Files\EAGLE-6.4.0\bin\uninstall.bat" C:\Program Files\EAGLE-6.4.0\bin
EPSON Scan [2016/07/12 19:09:02]-->C:\Program Files\epson\escndv\setup\setup.exe /r
ESET Smart Security [20160620]-->MsiExec.exe /I{0D5E985F-735D-4B61-9E76-6AC8B66FB48A}
Eusing Free MP3 Cutter [2016/07/12 19:09:02]-->C:\PROGRA~1\EUSING~1\UNWISE.EXE C:\PROGRA~1\EUSING~1\INSTALL.LOG
EVEREST Ultimate Edition v5.50 [20111218]-->"C:\Program Files\Lavalys\EVEREST Ultimate Edition\unins000.exe"
FastStone Image Viewer 4.6 [2016/07/12 19:09:02]-->C:\Program Files\FastStone Image Viewer\uninst.exe
GIMP 2.6.11 [20110507]-->"C:\Program Files\GIMP-2.0\setup\unins000.exe"
Google Drive [20161216]-->MsiExec.exe /X{07A12123-B717-496B-B471-48AF6407B433}
Google Chrome [20110222]-->"C:\Program Files\Google\Chrome\Application\56.0.2924.87\Installer\setup.exe" --uninstall --system-level
Google Talk Plugin [20150422]-->MsiExec.exe /I{CA3DD97D-1FD7-37A7-BD5C-FC4430C8B8E6}
Google Update Helper [20141113]-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Google Update Helper [20161218]-->MsiExec.exe /I{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}
GPL Ghostscript [2016/07/12 19:09:02]-->"C:\Program Files\gs\gs9.09\uninstgs.exe"
HP PrecisionScan LT Software [2016/07/12 19:09:02]-->C:\SCANJET\PrecisionScanLT\uninstal.exe C:\SCANJET\PrecisionScanLT\uninstal.cfg
HP Support Solutions Framework [20150202]-->MsiExec.exe /I{96D12EC9-720B-45FB-904C-36D6307A1C76}
HP Web Camera [20110225]-->MsiExec.exe /I{C7AE4EC3-9C13-4213-8457-74D16B353F91}
HP Webcam [2016/07/12 19:09:02]-->C:\ProgramData\Uninstall\{1D61E881-43CD-447B-9E6B-D2C6138B2862}\setup.exe /x {1D61E881-43CD-447B-9E6B-D2C6138B2862}
Chinese Traditional Fonts Support For Adobe Reader X [20110710]-->MsiExec.exe /I{AC76BA86-7AD7-2448-0000-A00000000003}
ICQ7.6 [20111012]-->"C:\Program Files\InstallShield Installation Information\{7644E42D-B096-457F-8B5B-901238FC81AE}\ICQ7.exe" -runfromtemp -l0x0009 -removeonly
Integrated Camera Driver Installer Package Ver.1.33.110.0 [20130926]-->"C:\Program Files\InstallShield Installation Information\{B0344B38-378B-47E0-BDCC-977785D24768}\setup.exe" -runfromtemp -l0x0005 anything -removeonly
IrfanView (remove only) [2016/07/12 19:09:02]-->C:\Program Files\IrfanView\iv_uninstall.exe
Java 8 Update 73 [20160210]-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83218073F0}
JavaFX 2.1.1 [20120620]-->MsiExec.exe /X{1111706F-666A-4037-7777-211328764D10}
KONICA MINOLTA PagePro 1300W [2016/07/12 19:09:02]-->MUINST_N.EXE /PRN:"KONICA MINOLTA PagePro 1300W"
KONICA MINOLTA PagePro 1400W [2016/07/12 19:09:02]-->MUINST_Y.EXE /PRN:"KONICA MINOLTA PagePro 1400W"
Mámemail Pošťák verze 1.3 [20160818]-->"C:\Program Files\Mamemail\Mamemail Postak\unins000.exe"
Marvell Miniport Driver [2016/07/12 19:09:02]-->C:\Program Files\Marvell\Miniport Driver\Uninst.exe
Microsoft .NET Framework 4.5.1 (CSY) [20140115]-->MsiExec.exe /X{123F4E9B-80E6-3A84-BDD4-3CB3AC59ABF0}
Microsoft .NET Framework 4.5.1 (čeština) [2016/07/12 19:09:02]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\CSY\\Setup.exe /repair /x86 /lcid 1029
Microsoft .NET Framework 4.5.1 [20151111]-->MsiExec.exe /X{4903D172-DCCB-392F-93A3-34CA9D47FE3D}
Microsoft .NET Framework 4.5.1 [2016/07/12 19:09:02]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\\Setup.exe /repair /x86
Microsoft PowerPoint Viewer [20170112]-->MsiExec.exe /X{95140000-00AF-0405-0000-0000000FF1CE}
Microsoft Silverlight [20170112]-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft Visual C++ 2005 Redistributable [20130429]-->MsiExec.exe /X{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
Microsoft Visual C++ 2005 Redistributable [20130608]-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 [20130510]-->MsiExec.exe /X{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 [20110811]-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 [20110222]-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 [20130428]-->MsiExec.exe /X{9BE518E6-ECC6-35A9-88E4-87755C07200F}
Mozilla Firefox 47.0 (x86 cs) [2016/07/12 19:09:02]-->"C:\Program Files\Mozilla Firefox\uninstall\helper.exe"
Mozilla Maintenance Service [2016/07/12 19:09:02]-->"C:\Program Files\Mozilla Maintenance Service\uninstall.exe"
MP3 Skype recorder [20160110]-->MsiExec.exe /X{7CF296C0-583C-4BB7-8DBE-34DD6AE635B7}
MSXML 4.0 SP3 Parser (KB2721691) [20120711]-->MsiExec.exe /I{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}
MSXML 4.0 SP3 Parser (KB2758694) [20130429]-->MsiExec.exe /I{1D95BA90-F4F8-47EC-A882-441C99D30C1E}
MSXML 4.0 SP3 Parser (KB973685) [20111208]-->MsiExec.exe /I{859DFA95-E4A6-48CD-B88E-A3E483E89B44}
Nero 7 Ultra Edition [20150201]-->MsiExec.exe /X{F90D6825-8F1F-4E3A-9E42-A9C8A9DD1029}
Nero Update [20130608]-->MsiExec.exe /X{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}
neroxml [20130608]-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
Odinstalace tiskárny EPSON Stylus SX200 Series [2016/07/12 19:09:02]-->C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FINSEFE.EXE /R /APD /P:"EPSON Stylus SX200 Series"
OpenOffice.org 3.3 [20110801]-->MsiExec.exe /I{D5B94160-4A07-4956-9C73-8C5EEFEF180F}
Recover Files 3.31 [20160626]-->"C:\Program Files\Recover Files\unins000.exe"
Recuva [2016/07/12 19:09:02]-->"C:\Program Files\Recuva\uninst.exe"
Revo Uninstaller Pro 2.5.8 [20120603]-->"C:\Program Files\VS Revo Group\Revo Uninstaller Pro\unins000.exe"
Security Update for Microsoft .NET Framework 4.5.1 (KB2894854v2) [2016/07/12 19:09:02]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {1531A92E-2552-384F-B942-06A5D18DFA13}
Security Update for Microsoft .NET Framework 4.5.1 (KB2898869) [2016/07/12 19:09:02]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {8086EDC0-3409-3560-B108-44FC46882443}
Security Update for Microsoft .NET Framework 4.5.1 (KB2901126) [2016/07/12 19:09:02]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {FED9B2BC-E6D7-3409-B4C9-99AF8AC65725}
Security Update for Microsoft .NET Framework 4.5.1 (KB2931368) [2016/07/12 19:09:02]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {054F96E9-E89B-3DDB-AA70-A65194B921B4}
Security Update for Microsoft .NET Framework 4.5.1 (KB2972107) [2016/07/12 19:09:02]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {CBD8D84A-257A-3A60-9819-5DF166F9CD25}
Security Update for Microsoft .NET Framework 4.5.1 (KB2972216) [2016/07/12 19:09:02]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {4DC3F78D-5CCF-37B9-9A05-EDDC456F4F20}
Security Update for Microsoft .NET Framework 4.5.1 (KB2978128) [2016/07/12 19:09:02]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {00BE0B8D-C610-34AA-ABD1-EE023DA39E5D}
Security Update for Microsoft .NET Framework 4.5.1 (KB2979578v2) [2016/07/12 19:09:02]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {1863F765-CBE8-3EB3-B434-CA6B6DF2561E}
Security Update for Microsoft .NET Framework 4.5.1 (KB3023224) [2016/07/12 19:09:02]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {3DDE5FB2-7F31-38AB-9407-F5698AD72FE8}
Security Update for Microsoft .NET Framework 4.5.1 (KB3035490) [2016/07/12 19:09:02]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {3DFE50DE-BA81-369E-B149-CC3B8AB09405}
Security Update for Microsoft .NET Framework 4.5.1 (KB3037581) [2016/07/12 19:09:02]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {C7D8B9A9-9C79-3278-A33E-C621DA724830}
Security Update for Microsoft .NET Framework 4.5.1 (KB3074230) [2016/07/12 19:09:02]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {CCEC28F6-82A2-35B0-8FE6-39C22A698F23}
Security Update for Microsoft .NET Framework 4.5.1 (KB3074550) [2016/07/12 19:09:02]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {A4953275-5880-3E7F-ABC2-BE1904624135}
Security Update for Microsoft .NET Framework 4.5.1 (KB3097996) [2016/07/12 19:09:02]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {63474770-8265-373F-8E8A-63BE4DB58739}
Security Update for Microsoft .NET Framework 4.5.1 (KB3098781) [2016/07/12 19:09:02]-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\v4.5.50938\setup.exe /uninstallpatch {DB389F39-13F5-33DE-B9A2-C2AF6E3D4EDE}
Seznam Pošťák 2 (Pouze já.) [2015/01/24 21:54:48]-->"C:\Users\Otakar Vavrečka\AppData\Local\Seznam.cz\postak-uninstall.exe" /CurrentUser
Seznam Software [2016/05/16 04:11:42]-->"C:\Users\Otakar Vavrečka\AppData\Roaming\Seznam.cz\szninstall.exe" -X
Skype™ 7.30 [20161227]-->MsiExec.exe /X{FC965A47-4839-40CA-B618-18F486F042C6}
sPlan 7.0 (Demo) [20141031]-->"C:\Program Files\sPlan70 (Demo)\unins000.exe"
SuperiorUSB v5.5.0 [20160521]-->"c:\Prog\Superior\unins000.exe"
Synaptics Pointing Device Driver [2016/07/12 19:09:02]-->rundll32.exe "%ProgramFiles%\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall
Undelete 360 [20160626]-->"C:\Program Files\File Recovery\undelete360\unins000.exe"
Uschovna.cz 1.1.0 [20131121]-->"C:\Program Files\Uschovna.cz\unins000.exe"
Viber [2015/11/16 18:45:06]-->"C:\Users\Otakar Vavrečka\AppData\Local\Package Cache\{7de2db6a-6f4b-4b45-82b9-57d5d7f1c952}\ViberSetup.exe" /uninstall
Viber [20151116]-->MsiExec.exe /I{097A0B4C-1568-4735-8C3D-4CB265A115C8}
VLC media player [2016/08/24 17:00:27]-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Windows Media Player Firefox Plugin [20110414]-->MsiExec.exe /I{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}
WinRAR 4.01 (32-bit) [2016/07/12 19:09:02]-->C:\Program Files\WinRAR\uninstall.exe
X-Lite 3.0 [2016/07/12 19:09:02]-->"C:\Program Files\CounterPath\X-Lite\unins000.exe"
======System event log"======
Computer Name: PC-Otakar
Event Code: 62464
Message: UVD Information
Record Number: 1139042
Source Name: atikmdag
Time Written: 20160823190434.452436-000
Event Type: Informace
User:
Computer Name: PC-Otakar
Event Code: 62464
Message: UVD Information
Record Number: 1139041
Source Name: atikmdag
Time Written: 20160823185708.952955-000
Event Type: Informace
User:
Computer Name: PC-Otakar
Event Code: 62464
Message: UVD Information
Record Number: 1139040
Source Name: atikmdag
Time Written: 20160823185707.776888-000
Event Type: Informace
User:
Computer Name: PC-Otakar
Event Code: 62464
Message: UVD Information
Record Number: 1139039
Source Name: atikmdag
Time Written: 20160823185654.413625-000
Event Type: Informace
User:
Computer Name: PC-Otakar
Event Code: 62464
Message: UVD Information
Record Number: 1139038
Source Name: atikmdag
Time Written: 20160823185605.880851-000
Event Type: Informace
User:
=====Application event log"=====
Computer Name: PC-Otakar
Event Code: 103
Message: SkypeUpdate service is shutting down due to idle timeout.
Record Number: 153697
Source Name: SkypeUpdate
Time Written: 20150502031259.000000-000
Event Type: Informace
User:
Computer Name: PC-Otakar
Event Code: 902
Message: Služba Ochrana softwaru byla spuštěna.
6.1.7601.17514
Record Number: 153696
Source Name: Microsoft-Windows-Security-SPP
Time Written: 20150502031225.000000-000
Event Type: Informace
User:
Computer Name: PC-Otakar
Event Code: 1003
Message: Služba Ochrana softwaru dokončila kontrolu stavu licencování.
ID aplikace=55c92734-d682-4d71-983e-d6ec3f16059f
Stav licencování=
1: 01f5fc37-a99e-45c5-b65e-d762f3518ead, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
2: 2e7d060d-4714-40f2-9896-1e4f15b612ad, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
3: 3b965dfc-31d9-4903-886f-873a0382776c, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
4: 586bc076-c93d-429a-afe5-a69fbc644e88, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
5: 5e017a8a-f3f9-4167-b1bd-ba3e236a4d8f, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
6: 5e35dc43-389b-47c5-b889-2088b06738cb, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
7: 6a7d5d8a-92af-4e6a-af4b-8fddaec800e5, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
8: 9ab82e0c-ffc9-4107-baa1-c65a8bd3ccc3, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
9: 9f83d90f-a151-4665-ae69-30b3f63ec659, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
10: a63275f4-530c-48a7-b0d3-4f00d688d151, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
11: b8a4bb91-69b1-460d-93f8-40e0670af04a, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
12: d2c04e90-c3dd-4260-b0f3-f845f5d27d64, 1, 1 [(0 [0x00000000, 1, 0], [(?)(?)( 1 0x00000000 0 0 msft:rm/algorithm/bios/4.0 0x00000000 0)(?)(?)(?)])(1 )(2 )]
13: e68b141f-4dfa-4387-b3b7-e65c4889216e, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
14: ee4e1629-bcdc-4b42-a68f-b92e135f78d7, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
15: 4a8149bb-7d61-49f4-8822-82c7bf88d64b, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
16: afd5f68f-b70f-4000-a21d-28dbc8be8b07, 1, 0 [(0 [0xC004F014, 0, 0], [(?)(?)(?)(?)(?)(?)])(1 )(2 )]
Record Number: 153695
Source Name: Microsoft-Windows-Security-SPP
Time Written: 20150502031225.000000-000
Event Type: Informace
User:
Computer Name: PC-Otakar
Event Code: 1066
Message: Inicializační stav pro objekty služby
C:\Windows\system32\sppwinob.dll, msft:spp/windowsfunctionality/agent/7.0, 0x00000000, 0x00000000
C:\Windows\system32\sppobjs.dll, msft:rm/algorithm/phone/1.0, 0x00000000, 0x00000000
C:\Windows\system32\sppobjs.dll, msft:rm/algorithm/pkey/2005, 0x00000000, 0x00000000
C:\Windows\system32\sppobjs.dll, msft:spp/TaskScheduler/1.0, 0x00000000, 0x00000000
C:\Windows\system32\sppobjs.dll, msft:spp/volume/services/kms/1.0, 0x00000000, 0x00000000
C:\Windows\system32\sppobjs.dll, msft:spp/volume/services/kms/licenserenewal/1.0, 0x00000000, 0x00000000
Record Number: 153694
Source Name: Microsoft-Windows-Security-SPP
Time Written: 20150502031225.000000-000
Event Type: Informace
User:
Computer Name: PC-Otakar
Event Code: 900
Message: Služba Ochrana softwaru se spouští.
Record Number: 153693
Source Name: Microsoft-Windows-Security-SPP
Time Written: 20150502031224.000000-000
Event Type: Informace
User:
=====Security event log"=====
Computer Name: PC-Otakar
Event Code: 5058
Message: Operace se souborem klíče.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: PC-OTAKAR$
Doména účtu: WORKGROUP
ID přihlášení: 0x3e7
Kryptografické parametry:
Název poskytovatele: Microsoft Software Key Storage Provider
Název algoritmu: Není k dispozici.
Název klíče: ESET_RootCertContainer
Typ klíče: Klíč uživatele
Informace o operaci se souborem klíče:
Cesta k souboru: C:\ProgramData\Microsoft\Crypto\RSA\S-1-5-18\d1d940883614fe244b12f480b5388574_03d76bf1-77ee-4e91-b8b6-cd5c210e67d2
Operace: Čtení trvalého klíče ze souboru
Návratový kód: 0x0
Record Number: 751198
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20170126091605.038374-000
Event Type: Úspěšný audit
User:
Computer Name: PC-Otakar
Event Code: 5061
Message: Kryptografická operace.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: PC-OTAKAR$
Doména účtu: WORKGROUP
ID přihlášení: 0x3e7
Kryptografické parametry:
Název poskytovatele: Microsoft Software Key Storage Provider
Název algoritmu: RSA
Název klíče: ESET_RootCertContainer
Typ klíče: Klíč uživatele
Kryptografická operace:
Operace: Otevřít klíč
Návratový kód: 0x0
Record Number: 751197
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20170126091604.951369-000
Event Type: Úspěšný audit
User:
Computer Name: PC-Otakar
Event Code: 5061
Message: Kryptografická operace.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: PC-OTAKAR$
Doména účtu: WORKGROUP
ID přihlášení: 0x3e7
Kryptografické parametry:
Název poskytovatele: Microsoft Software Key Storage Provider
Název algoritmu: RSA
Název klíče: ESET_RootCertContainer
Typ klíče: Klíč uživatele
Kryptografická operace:
Operace: Otevřít klíč
Návratový kód: 0x0
Record Number: 751196
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20170126091604.951369-000
Event Type: Úspěšný audit
User:
Computer Name: PC-Otakar
Event Code: 5058
Message: Operace se souborem klíče.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: PC-OTAKAR$
Doména účtu: WORKGROUP
ID přihlášení: 0x3e7
Kryptografické parametry:
Název poskytovatele: Microsoft Software Key Storage Provider
Název algoritmu: Není k dispozici.
Název klíče: ESET_RootCertContainer
Typ klíče: Klíč uživatele
Informace o operaci se souborem klíče:
Cesta k souboru: C:\ProgramData\Microsoft\Crypto\RSA\S-1-5-18\d1d940883614fe244b12f480b5388574_03d76bf1-77ee-4e91-b8b6-cd5c210e67d2
Operace: Čtení trvalého klíče ze souboru
Návratový kód: 0x0
Record Number: 751195
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20170126091604.950369-000
Event Type: Úspěšný audit
User:
Computer Name: PC-Otakar
Event Code: 5058
Message: Operace se souborem klíče.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: PC-OTAKAR$
Doména účtu: WORKGROUP
ID přihlášení: 0x3e7
Kryptografické parametry:
Název poskytovatele: Microsoft Software Key Storage Provider
Název algoritmu: Není k dispozici.
Název klíče: ESET_RootCertContainer
Typ klíče: Klíč uživatele
Informace o operaci se souborem klíče:
Cesta k souboru: C:\ProgramData\Microsoft\Crypto\RSA\S-1-5-18\d1d940883614fe244b12f480b5388574_03d76bf1-77ee-4e91-b8b6-cd5c210e67d2
Operace: Čtení trvalého klíče ze souboru
Návratový kód: 0x0
Record Number: 751194
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20170126091604.950369-000
Event Type: Úspěšný audit
User:
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\system32\wbem;C:\Program Files\Broadcom\Broadcom 802.11\Driver;;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0;C:\Program Files\Skype\Phone;C:\Program Files\Skype\Phone\
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=x86
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\
"NUMBER_OF_PROCESSORS"=2
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 15 Stepping 13, GenuineIntel
"PROCESSOR_REVISION"=0f0d
"ESET_OPTIONS"=
-----------------EOF-----------------
Blbý můžeš být,ale musíš si umět poradit...
-
Rudy
- Site Admin
- Příspěvky: 119671
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu PC
Zdravím!
Spusťte tuto utilitu:
Spusťte tuto utilitu:
Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu PC
Nejde mi stáhnout ať dělám co dělám.
Blbý můžeš být,ale musíš si umět poradit...
-
Rudy
- Site Admin
- Příspěvky: 119671
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu PC
Zkuste tento:
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu PC
Tak u tohoto se mi to podařilo stáhnout a dávám sem log.
# AdwCleaner v6.043 - Logfile created 13/02/2017 at 11:34:07
# Updated on 27/01/2017 by Malwarebytes
# Database : 2017-02-12.1 [Server]
# Operating System : Windows 7 Home Premium Service Pack 1 (X86)
# Username : Otakar VavreÄŤka - PC-OTAKAR
# Running from : C:\Users\Otakar VavreÄŤka\AppData\Local\Temp\Rar$EX42.608\adwcleaner_6.043.exe
# Mode: Clean
# Support : https://www.malwarebytes.com/support
***** [ Services ] *****
***** [ Folders ] *****
[-] Folder deleted: C:\Users\Otakar VavreÄŤka\AppData\Roaming\ReviverSoft
[-] Folder deleted: C:\ProgramData\ICQ\ICQNewTab
[#] Folder deleted on reboot: C:\ProgramData\Application Data\ICQ\ICQNewTab
[-] Folder deleted: C:\Users\Otakar VavreÄŤka\AppData\Roaming\Mozilla\Firefox\Profiles\fslv0uhv.default\CT2801948
***** [ Files ] *****
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Shortcuts ] *****
***** [ Scheduled Tasks ] *****
***** [ Registry ] *****
[-] Key deleted: HKLM\SOFTWARE\Reviversoft
[-] Key deleted: HKU\S-1-5-21-505298747-3480647553-2469496864-1000\Software\ReviverSoft
[#] Key deleted on reboot: HKCU\Software\ReviverSoft
[#] Key deleted on reboot: HKLM\SOFTWARE\ReviverSoft
***** [ Web browsers ] *****
[-] Chrome preferences cleaned:
*************************
:: "Tracing" keys deleted
:: Winsock settings cleared
*************************
C:\AdwCleaner\AdwCleaner[C1].txt - [1739 Bytes] - [11/07/2016 07:11:31]
C:\AdwCleaner\AdwCleaner[C2].txt - [1483 Bytes] - [13/02/2017 11:34:07]
C:\AdwCleaner\AdwCleaner[S1].txt - [1540 Bytes] - [11/07/2016 07:09:20]
C:\AdwCleaner\AdwCleaner[S2].txt - [1953 Bytes] - [13/02/2017 11:33:45]
########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [1702 Bytes] ##########
# AdwCleaner v6.043 - Logfile created 13/02/2017 at 11:34:07
# Updated on 27/01/2017 by Malwarebytes
# Database : 2017-02-12.1 [Server]
# Operating System : Windows 7 Home Premium Service Pack 1 (X86)
# Username : Otakar VavreÄŤka - PC-OTAKAR
# Running from : C:\Users\Otakar VavreÄŤka\AppData\Local\Temp\Rar$EX42.608\adwcleaner_6.043.exe
# Mode: Clean
# Support : https://www.malwarebytes.com/support
***** [ Services ] *****
***** [ Folders ] *****
[-] Folder deleted: C:\Users\Otakar VavreÄŤka\AppData\Roaming\ReviverSoft
[-] Folder deleted: C:\ProgramData\ICQ\ICQNewTab
[#] Folder deleted on reboot: C:\ProgramData\Application Data\ICQ\ICQNewTab
[-] Folder deleted: C:\Users\Otakar VavreÄŤka\AppData\Roaming\Mozilla\Firefox\Profiles\fslv0uhv.default\CT2801948
***** [ Files ] *****
***** [ DLL ] *****
***** [ WMI ] *****
***** [ Shortcuts ] *****
***** [ Scheduled Tasks ] *****
***** [ Registry ] *****
[-] Key deleted: HKLM\SOFTWARE\Reviversoft
[-] Key deleted: HKU\S-1-5-21-505298747-3480647553-2469496864-1000\Software\ReviverSoft
[#] Key deleted on reboot: HKCU\Software\ReviverSoft
[#] Key deleted on reboot: HKLM\SOFTWARE\ReviverSoft
***** [ Web browsers ] *****
[-] Chrome preferences cleaned:
*************************
:: "Tracing" keys deleted
:: Winsock settings cleared
*************************
C:\AdwCleaner\AdwCleaner[C1].txt - [1739 Bytes] - [11/07/2016 07:11:31]
C:\AdwCleaner\AdwCleaner[C2].txt - [1483 Bytes] - [13/02/2017 11:34:07]
C:\AdwCleaner\AdwCleaner[S1].txt - [1540 Bytes] - [11/07/2016 07:09:20]
C:\AdwCleaner\AdwCleaner[S2].txt - [1953 Bytes] - [13/02/2017 11:33:45]
########## EOF - C:\AdwCleaner\AdwCleaner[C2].txt - [1702 Bytes] ##########
Blbý můžeš být,ale musíš si umět poradit...
-
Rudy
- Site Admin
- Příspěvky: 119671
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu PC
Dejte nový log RSIT.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu PC
Zde je nový log RSIT
Logfile of random's system information tool 1.14 (written by random/random)
Run by Otakar Vavrečka at 2017-02-14 18:19:36
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 24 GB (15%) free of 158 GB
Total RAM: 3066 MB (60% free)
X86
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:20:09, on 14.2.2017
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal
Running processes:
C:\Windows\system32\taskhost.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Users\Otakar Vavrečka\AppData\Local\Seznam.cz\bin\postak.exe
C:\Users\Otakar Vavrečka\AppData\Local\Viber\Viber.exe
C:\Program Files\Mamemail\Mamemail Postak\Postak.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\Users\Otakar Vavrečka\Desktop\Gmail Notifier Plus.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Users\Otakar Vavrečka\Desktop\RSIT.exe
C:\Program Files\trend micro\Otakar Vavrečka_RSIT.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_73\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_73\bin\jp2ssv.dll
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Seznam Postak] "C:\Users\Otakar Vavrečka\AppData\Local\Seznam.cz\bin\postak.exe" -s
O4 - HKCU\..\Run: [Viber] "C:\Users\Otakar Vavrečka\AppData\Local\Viber\Viber.exe" StartMinimized
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - Startup: Mámemail Pošťák.lnk = C:\Program Files\Mamemail\Mamemail Postak\Postak.exe
O8 - Extra context menu item: Free YouTube Download - C:\Program Files\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Program Files\Common Files\DVDVideoSoft\plugins\freeytmp3downloader.htm
O9 - Extra button: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files\ICQ7.6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files\ICQ7.6\ICQ.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\system32\IoctlSvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
--
End of file - 4261 bytes
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\system32\tasks\Adobe Acrobat Update Task - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Windows\system32\tasks\Adobe Flash Player Updater - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\system32\tasks\CCleanerSkipUAC - "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
C:\Windows\system32\tasks\DriverCure Startup - C:\Program Files\ParetoLogic\DriverCure\DriverCure.exe -tray
C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore1cf6a811f49157b - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA1cf8b84abba174e - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\system32\tasks\Replay Media Catcher 5 6c9010b1-62d5-4d93-8351-7c593cf756ca - C:\Program Files\Applian Technologies\Replay Media Catcher 5\jrmcp.exe --task=6c9010b1-62d5-4d93-8351-7c593cf756ca
C:\Windows\system32\tasks\Replay Media Catcher 5 837966d0-c273-42b8-9c4d-973ff1be780e - C:\Program Files\Applian Technologies\Replay Media Catcher 5\jrmcp.exe --task=837966d0-c273-42b8-9c4d-973ff1be780e
C:\Windows\system32\tasks\{0008BE56-C856-44F1-826D-C36F64BB1287} - C:\Windows\system32\pcalua.exe -a "C:\Users\Otakar Vavrečka\Desktop\irfanviewcestina.exe" -d "C:\Users\Otakar Vavrečka\Desktop"
C:\Windows\system32\tasks\{068453C5-3191-4ADA-B908-C38F8F14D343} - C:\Windows\system32\pcalua.exe -a "C:\Users\Otakar Vavrečka\Desktop\irfanview_plugins_437_setup.exe" -d "C:\Users\Otakar Vavrečka\Desktop"
C:\Windows\system32\tasks\{110C381A-5642-470B-A060-54393638CE8D} - C:\Users\Otakar Vavrečka\Desktop\dotNetFx35setup.exe
C:\Windows\system32\tasks\{11AB4839-9909-4AA7-AD14-EA2EAFA4D911} - C:\Program Files\Free Audio Pack\Easy Audio Cutter\AudioCutter.exe
C:\Windows\system32\tasks\{13FBC005-0AF3-4F20-9DF1-36508DE5DFDB} - C:\Users\Otakar Vavrečka\Desktop\MP3SkypeRecorderSetup.exe
C:\Windows\system32\tasks\{142BAA19-9C0E-4940-AD01-37838C9BCCD2} - C:\Windows\system32\pcalua.exe -a "H:\HP ProBook 4710s\Programy\irfanview_lang_czech.exe" -d "H:\HP ProBook 4710s\Programy"
C:\Windows\system32\tasks\{1F3A9C16-7D5A-43D2-B156-63EEC906B679} - C:\Users\Otakar Vavrečka\Desktop\postak-ff-2.5.1.exe
C:\Windows\system32\tasks\{2BB4CBEF-9D48-4749-958E-6EE6D4E39FB8} - C:\Windows\system32\pcalua.exe -a "H:\HP ProBook 4710s\Programy\iview420_setup.exe" -d "H:\HP ProBook 4710s\Programy"
C:\Windows\system32\tasks\{3A84B831-9645-466B-AF28-4E8BC64EBB57} - C:\Program Files\Oracle\VirtualBox\VirtualBox.exe
C:\Windows\system32\tasks\{3DCF8AC0-DA6C-4053-A69A-17CDB994687B} - C:\Windows\system32\pcalua.exe -a "D:\Technické informace\vtrafo_sk.exe" -d C:\Windows\system32
C:\Windows\system32\tasks\{4377EADB-F2F3-4484-B7AB-4681C56FD068} - C:\Users\Otakar Vavrečka\Desktop\dotNetFx35setup.exe
C:\Windows\system32\tasks\{541CA25C-9E68-47EB-92EB-5DA80B6CA7B0} - C:\Windows\system32\pcalua.exe -a D:\Programy-1\irfanview_lang_czech.exe -d C:\Windows\system32
C:\Windows\system32\tasks\{55F4FB0D-4BF7-4555-B96A-4CF6E3A69CA0} - C:\Program Files\Apowersoft\Video Download Capture 6\Video Download Capture 6.exe
C:\Windows\system32\tasks\{61618E6E-6896-40BD-9067-11233F76E6BD} - C:\Windows\system32\pcalua.exe -a "C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RevoUninPro.exe" -d "C:\Program Files\VS Revo Group\Revo Uninstaller Pro"
C:\Windows\system32\tasks\{61B6B0A7-4511-4901-8DB8-333244336D38} - C:\Windows\system32\pcalua.exe -a "C:\Users\Otakar Vavrečka\Desktop\irfanview_plugins_428_setup.exe" -d "C:\Users\Otakar Vavrečka\Desktop"
C:\Windows\system32\tasks\{7478DCFE-FF91-47C5-9F7A-ED2100B4BE61} - C:\Program Files\MP3 Skype Recorder\MP3 Skype Recorder.exe
C:\Windows\system32\tasks\{78E18393-85E9-44A2-8555-42F0B555C029} - C:\Windows\system32\pcalua.exe -a "H:\HP ProBook 4710s\Programy\irfanviewcestina.exe" -d "C:\Program Files\Mozilla Firefox"
C:\Windows\system32\tasks\{8895351E-60C9-4702-A806-956922D6BED9} - C:\Windows\system32\pcalua.exe -a D:\Programy-1\DISK1\instmsiw.exe -d D:\Programy-1\DISK1
C:\Windows\system32\tasks\{908E8E1E-34BB-4E25-AD7D-659690B567CE} - C:\Windows\system32\pcalua.exe -a F:\fscommand\Axesstel_setup.exe -d F:\fscommand
C:\Windows\system32\tasks\{98A70D07-498F-4BC2-AF84-3310688F2CFE} - C:\Program Files\GIMP-2.0\bin\gimp-2.6.exe
C:\Windows\system32\tasks\{9B039347-33BD-49D9-80C0-367F2A397655} - C:\Program Files\GIMP-2.0\bin\gimp-2.6.exe
C:\Windows\system32\tasks\{9D52FDE3-F20B-4686-8DD0-2EBF00DB6704} - C:\Program Files\LibreOffice 3\program\soffice.exe
C:\Windows\system32\tasks\{A69F86CE-B4FE-4FF5-993F-0B71EB47E6DB} - C:\Windows\system32\pcalua.exe -a "D:\Programy-1\irfanview_lang_czech-Pro verzi 4.30.exe" -d D:\Programy-1
C:\Windows\system32\tasks\{B3A2F1D8-3678-4AE8-A095-EB4347B4A183} - C:\Windows\system32\pcalua.exe -a D:\Programy-1\ScreenShots.exe -d D:\Programy-1
C:\Windows\system32\tasks\{B826E4A4-24ED-4F5A-97A7-8F68847BCD73} - C:\Users\Otakar Vavrečka\Desktop\JDownloaderSetup.exe
C:\Windows\system32\tasks\{BD8B9751-91CF-4733-8234-8642163D0119} - C:\Program Files\Skype\\Phone\Skype.exe
C:\Windows\system32\tasks\{C604AE1E-7C34-4608-A678-595AF7F1A99C} - C:\Windows\system32\pcalua.exe -a D:\Programy-1\DISK1.exe -d "C:\Program Files\Mozilla Firefox"
C:\Windows\system32\tasks\{CAE32497-34EF-4452-840C-6F4750A66D63} - C:\Windows\system32\pcalua.exe -a "C:\Users\Otakar Vavrečka\Desktop\irfanview_lang_czech.exe" -d "C:\Users\Otakar Vavrečka\Desktop"
C:\Windows\system32\tasks\{D1CF8CA1-868F-4B6C-921C-972E5CB37228} - C:\Windows\system32\pcalua.exe -a "D:\Programy-1\DISK1(Návrh jednofázových síťových transformátorů).exe" -d D:\Programy-1
C:\Windows\system32\tasks\{DB39F503-5081-4645-94B0-FE40C9C0E720} - D:\Programy-1\MP3SkypeRecorderSetup.exe
C:\Windows\system32\tasks\{E84A7D35-4C89-405E-B541-1ED3B040A08F} - C:\Windows\system32\pcalua.exe -a "C:\Program Files\Alwil Software\Avast5\aswRunDll.exe" -c "C:\Program Files\Alwil Software\Avast5\Setup\setiface.dll" RunSetup
C:\Windows\system32\tasks\{EDA0F073-4ABE-443A-B014-97165BCDDC37} - C:\Windows\system32\pcalua.exe -a "C:\Users\Otakar Vavrečka\Desktop\iview428_setup.exe" -d "C:\Users\Otakar Vavrečka\Desktop"
C:\Windows\system32\tasks\{F0150743-E3C6-4235-96B0-40D74873D707} - C:\Users\Otakar Vavrečka\Desktop\JDownloaderSetup.exe
C:\Windows\system32\tasks\{F3CE23B2-382B-4090-99F1-EB7797659BA4} - C:\Windows\system32\pcalua.exe -a "H:\HP ProBook 4710s\Programy\iview428_setup.exe" -d "C:\Program Files\Mozilla Firefox"
C:\Windows\system32\tasks\{FF406F8A-6A3E-44F5-95D2-358E780EBEB1} - C:\Program Files\MP3 Skype Recorder\MP3 Skype Recorder.exe
C:\Windows\system32\tasks\WPD\SqmUpload_S-1-5-21-505298747-3480647553-2469496864-1000 - %windir%\system32\rundll32.exe portabledeviceapi.dll,#1
C:\Windows\system32\tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup - %systemroot%\system32\rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
C:\Windows\system32\tasks\Microsoft\Windows\WindowsBackup\ConfigNotification - %systemroot%\System32\sdclt.exe /CONFIGNOTIFICATION
C:\Windows\system32\tasks\Microsoft\Windows\WindowsBackup\Windows Backup Monitor - %systemroot%\system32\sdclt.exe /CHECKSKIPPED
C:\Windows\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\Windows\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\Windows\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -queuereporting
C:\Windows\system32\tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTask - %SystemRoot%\system32\Wat\WatAdminSvc.exe /run
C:\Windows\system32\tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline - %SystemRoot%\system32\schtasks.exe /run /I /TN "\Microsoft\Windows\Windows Activation Technologies\ValidationTask"
C:\Windows\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\Windows\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\Windows\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict1 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPOffendingSystem
C:\Windows\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict2 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPDefendingSystem
C:\Windows\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation
C:\Windows\system32\tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask - sc.exe start sppsvc
C:\Windows\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\Windows\system32\tasks\Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem - %SystemRoot%\System32\powercfg.exe -energy -auto
C:\Windows\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\Windows\system32\tasks\Microsoft\Windows\MUI\Lpksetup - C:\Windows\System32\lpksetup.exe -v
C:\Windows\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\Windows\system32\tasks\Microsoft\Windows\MUI\Mcbuilder - C:\Windows\System32\mcbuilder.exe
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoActivateWindowsSearch
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService - %SystemRoot%\ehome\ehPrivJob.exe /DoConfigureInternetTimeService
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks - %SystemRoot%\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ehDRMInit - %SystemRoot%\ehome\ehPrivJob.exe /DRMInit
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\InstallPlayReady - %SystemRoot%\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\mcupdate - %SystemRoot%\ehome\mcupdate $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\mcupdate_scheduled - %SystemRoot%\ehome\mcupdate -crl -hms -pscn 15
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -MediaCenterRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -ObjectStoreRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\OCURActivate - %SystemRoot%\ehome\ehPrivJob.exe /OCURActivate
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\OCURDiscovery - %SystemRoot%\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscovery - %SystemRoot%\ehome\ehPrivJob.exe /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 - %SystemRoot%\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 - %SystemRoot%\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PeriodicScanRetry - %windir%\ehome\MCUpdate.exe -pscn 0
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PvrRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -PvrRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PvrScheduleTask - %SystemRoot%\ehome\mcupdate.exe -PvrSchedule
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\RecordingRestart - %SystemRoot%\ehome\ehrec /RestartRecording
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\RegisterSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ReindexSearchRoot - %SystemRoot%\ehome\ehPrivJob.exe /DoReindexSearchRoot
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -SqlLiteRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\StartRecording - %SystemRoot%\ehome\ehrec /StartRecording
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\UpdateRecordPath - %SystemRoot%\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotifications.exe
C:\Windows\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\Windows\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\Windows\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c
C:\Windows\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\Windows\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\AitAgent - aitagent
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\rundll32.exe aepdu.dll,AePduRunUpdate -nolegacy
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\rundll32.exe aepdu.dll,AePduRunUpdate
C:\Windows\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\Windows\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\Otakar Vavrečka\AppData\Roaming\Mozilla\Firefox\Profiles\fslv0uhv.default
prefs.js - "browser.search.useDBForOrder" - ""
prefs.js - "browser.startup.homepage" - "http://www.google.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 22.0.0.209 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_22_0_0_209.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@canon.com/MycameraPlugin]
"Description"=
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.73.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.73.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_73\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.32.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.32.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.6]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
C:\Users\Otakar Vavrečka\AppData\Roaming\Mozilla\Firefox\Profiles\fslv0uhv.default\addons.json
Firefox Hello Beta (discontinued) - extension - loop@mozilla.org
C:\Users\Otakar Vavrečka\AppData\Roaming\Mozilla\Firefox\Profiles\fslv0uhv.default\extensions.json
Multi-process staged rollout - extension - e10srollout@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\e10srollout@mozilla.org.xpi
Pocket - extension - firefox@getpocket.com - C:\Program Files\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi
Firefox Hello - extension - loop@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\loop@mozilla.org.xpi
Default - theme - {972ce4c6-7e08-4474-a285-3208198ce6fd} - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi
Multi-process staged rollout - extension - e10srollout@mozilla.org - C:\Users\Otakar VavreÄka\AppData\Roaming\Mozilla\Firefox\Profiles\fslv0uhv.default\features\{52c8b4dd-9983-408f-b173-e3b1b326e1d1}\e10srollout@mozilla.org.xpi
Pocket - extension - firefox@getpocket.com - C:\Users\Otakar VavreÄka\AppData\Roaming\Mozilla\Firefox\Profiles\fslv0uhv.default\features\{52c8b4dd-9983-408f-b173-e3b1b326e1d1}\firefox@getpocket.com.xpi
Firefox Hello - extension - loop@mozilla.org - C:\Users\Otakar VavreÄka\AppData\Roaming\Mozilla\Firefox\Profiles\fslv0uhv.default\features\{52c8b4dd-9983-408f-b173-e3b1b326e1d1}\loop@mozilla.org.xpi
Websense Helper - extension - websensehelper@mozilla.org - C:\Users\Otakar VavreÄka\AppData\Roaming\Mozilla\Firefox\Profiles\fslv0uhv.default\features\{52c8b4dd-9983-408f-b173-e3b1b326e1d1}\websensehelper@mozilla.org.xpi
C:\Users\Otakar Vavrečka\AppData\Roaming\Mozilla\Firefox\Profiles\fslv0uhv.default\pluginreg.dat
Plugin - Adobe Acrobat - 15.20.20039.7108 - C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
Plugin - VLC Web Plugin - 2.2.4.0 - C:\Program Files\VideoLAN\VLC\npvlc.dll
Plugin - Google Update - 1.3.32.7 - C:\Program Files\Google\Update\1.3.32.7\npGoogleUpdate3.dll
Plugin - Silverlight Plug-In - 5.1.50709.0 - c:\Program Files\Microsoft Silverlight\5.1.50709.0\npctrl.dll
Plugin - Java(TM) Platform SE 8 U73 - 11.73.2.2 - C:\Program Files\Java\jre1.8.0_73\bin\plugin2\npjp2.dll
Plugin - Java Deployment Toolkit 8.0.730.2 - 11.73.2.2 - C:\Program Files\Java\jre1.8.0_73\bin\dtplugin\npdeployJava1.dll
Plugin - Shockwave Flash - 22.0.0.209 - C:\Windows\system32\Macromed\Flash\NPSWF32_22_0_0_209.dll
Plugin - Google Update - 1.3.28.13 - C:\Users\Otakar Vavrečka\AppData\Local\Google\Update\1.3.28.13\npGoogleUpdate3.dll
Plugin - Google Talk Plugin - 5.41.2.0 - C:\Users\Otakar Vavrečka\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
Plugin - Google Talk Plugin Video Renderer - 5.41.2.0 - C:\Users\Otakar Vavrečka\AppData\Roaming\Mozilla\plugins\npo1d.dll
=========Google Chrome=========
C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Store 0.2
Extension aohghmighlieiainnegkcijnfilokake 1 Dokumenty Google 0.9
Extension apdfllckaahabafndbhieahigkjlhalf 1 Disk Google 14.1
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension bgjpfhpjcgdppjbgnpnjllokbmcdllig 1 Seznam Lištička - Email 1.3.20
Extension blmojkbhnkkphngknkmgccmlenfaelkd 1 Seznam Lištička - Slovník 1.4.5
Extension blpcfgokakmgnkcojhhkbfbldkacnbeo 1 YouTube 4.2.8
Extension coobgpohoikkiipiblmjeljniedjpjpf 1 Vyhledávání Google 0.0.0.60
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension efaidnbmnnnibpcajpcglclefindmkaj 1 Adobe Acrobat 15.1.0.5
Extension ennkphjdgehloodpbhlhldgbnhmacadg Settings 0.2
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension ghbmnnjooekpmoecnnnilnnbdlolhkhi 1 Dokumenty Google offline 1.4
Extension gomekmidlodglbbmalcneegieacbdmki 1 Avast Online Security 12.0.163
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.46
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mgndgikekgjfcpckkfioiadnlibdjbkf Chrome 0.1
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension ncdfeinlpefandfngbdmdgjgepebkjap 0 IMPI 2.0.0.429
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.2
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Platby Internetového obchodu Chrome 1.0.0.1
Extension olfeabkoenfaoljndfecamgilllcpiak 0 Seznam Lištička - Rychlá volba 1.8.6
Extension pafkbggdmjlpgkdkcbjmhmfcdpncadgh Google Now 1.2.0.1
Extension pjkljhegncpnkpknbcohdijeoejaedia 1 Gmail 8.1
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 5616.1121.0.3
Homepage: http://www.google.com
default_search_provider.search_url:
C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Preferences
Plugin 11.5.31.137 Shockwave Flash C:\Program Files\Google\Chrome\Application\56.0.2924.87\PepperFlash\pepflashplayer.dll
Plugin Chrome Remote Desktop Viewer internal-remoting-viewer
Plugin Native Client C:\Program Files\Google\Chrome\Application\56.0.2924.87\ppGoogleNaClPluginChrome.dll
Plugin Chrome PDF Viewer C:\Program Files\Google\Chrome\Application\56.0.2924.87\pdf.dll
Plugin 10.1.3.23 Adobe Acrobat C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
Plugin 1.0.0.8 Microsoft Windows Media Player Firefox Plugin C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll
Plugin 2.9.10.7526 Google Talk Plugin C:\Users\Otakar Vavreka\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
Plugin 0,1,44,15 Google Talk Plugin Video Accelerator C:\Users\Otakar Vavreka\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll
Plugin 6.1.0.5001 Google Earth Plugin C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
Plugin 1.3.21.135 Google Update C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll
Plugin 10.5.1.255 Java(TM) Platform SE 7 U5 C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll
Plugin 11,3,300,257 Shockwave Flash C:\Windows\system32\Macromed\Flash\NPSWF32_11_3_300_257.dll
Plugin 10.5.1.255 Java Deployment Toolkit 7.0.50.255 C:\Windows\system32\npDeployJava1.dll
Plugin 4.0.60310.0 Silverlight Plug-In c:\Program Files\Microsoft Silverlight\4.0.60310.0\npctrl.dll
Homepage:
default_search_provider.search_url:
[HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\efaidnbmnnnibpcajpcglclefindmkaj]
"Path"=
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_73\bin\ssv.dll [2016-02-10 460384]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-02-10 172640]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016]
"Seznam Postak"=C:\Users\Otakar Vavrečka\AppData\Local\Seznam.cz\bin\postak.exe [2012-01-10 491040]
"Viber"=C:\Users\Otakar Vavrečka\AppData\Local\Viber\Viber.exe [2015-11-09 51657424]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2014-10-29 4826904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner.exe [2014-10-29 4826904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.autoupdate]
C:\Users\Otakar Vavrečka\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop]
C:\Users\Otakar Vavrečka\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hppwrsav]
C:\SCANJET\PrecisionScanLT\hppwrsav.exe [1999-06-07 23552]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KONICA MINOLTA PagePro 1300WStatusDisplay]
C:\Windows\system32\MSTMON_N.EXE [2004-11-25 151552]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KONICA MINOLTA PagePro 1400W STD]
C:\Windows\system32\MSTMON_Y.EXE [2006-03-01 184320]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MP3 Skype Recorder]
C:\Users\Otakar Vavrečka\AppData\Local\MP3 Skype recorder\MP3SkypeRecorder.exe [2015-11-13 2216600]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PAC7302_Monitor]
C:\Windows\PixArt\PAC7302\Monitor.exe [2006-11-03 319488]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Seznam Postak]
C:\Users\Otakar Vavrečka\AppData\Local\Seznam.cz\bin\postak.exe [2012-01-10 491040]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce]
C:\Program Files\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAXPnP]
C:\Program Files\Analog Devices\Core\smax4pnp.exe [2009-05-18 1314816]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Viber]
C:\Users\Otakar Vavrečka\AppData\Local\Viber\Viber.exe [2015-11-09 51657424]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^ImageBrowser EX Agent.lnk]
C:\PROGRA~1\Canon\IMAGEB~1\MFMANA~1.EXE [2013-01-29 69120]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Otakar Vavrečka^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Mámemail Pošťák.lnk]
C:\PROGRA~1\Mamemail\MAMEMA~1\Postak.exe [2015-04-13 740352]
C:\Users\Otakar Vavrečka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Mámemail Pošťák.lnk - C:\Program Files\Mamemail\Mamemail Postak\Postak.exe
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
"StubPath"="C:\Program Files\Google\Chrome\Application\56.0.2924.87\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{A6EADE66-0000-0000-484E-7E8A45000000}]
"StubPath"="C:\Windows\system32\Rundll32.exe" "C:\Program Files\Adobe\Acrobat Reader DC\Esl\AiodLite.dll",CreateReaderUserSettings
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2017-02-10 19:00:02 ----DC---- C:\rsit
======List of files/folders modified in the last 1 month======
2017-02-14 18:19:37 ----DC---- C:\Program Files\trend micro
2017-02-14 18:18:21 ----DC---- C:\Windows\temp
2017-02-14 18:07:07 ----DC---- C:\Users\Otakar Vavrečka\AppData\Roaming\ViberPC
2017-02-14 18:05:11 ----DC---- C:\Windows\system32\config
2017-02-13 15:18:25 ----DC---- C:\Windows\Prefetch
2017-02-13 15:16:10 ----DC---- C:\Windows\inf
2017-02-13 15:16:10 ----ADC---- C:\Windows\System32
2017-02-13 15:16:10 ----AC---- C:\Windows\system32\PerfStringBackup.INI
2017-02-13 15:15:35 ----DC---- C:\Windows\system32\drivers
2017-02-13 15:15:34 ----D---- C:\Windows\system32\DriverStore
2017-02-13 11:39:44 ----DC---- C:\AdwCleaner
2017-02-13 11:35:02 ----DC---- C:\Windows
2017-02-13 11:34:00 ----DC---- C:\ProgramData\ICQ
2017-01-20 09:20:08 ----SHDC---- C:\Windows\Installer
2017-01-17 19:08:47 ----DC---- C:\Windows\debug
File C:\Windows\system32\winlogon.exe is digitally signed
File C:\Windows\system32\wininit.exe is digitally signed
File C:\Windows\explorer.exe is digitally signed
File C:\Windows\system32\svchost.exe is digitally signed
File C:\Windows\system32\services.exe is digitally signed
File C:\Windows\system32\User32.dll is digitally signed
File C:\Windows\system32\userinit.exe is digitally signed
File C:\Windows\system32\rpcss.dll is digitally signed
File C:\Windows\system32\Drivers\volsnap.sys is digitally signed
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2016-11-14 71304]
R0 giveio;giveio; C:\Windows\system32\giveio.sys [1996-04-03 5248]
R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2011-05-13 25656]
R0 PxHelp20;PxHelp20; C:\Windows\System32\Drivers\PxHelp20.sys [2013-06-03 46096]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2013-05-09 21576]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2016-11-14 206472]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2016-11-14 156288]
R1 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2016-11-14 162952]
R1 EpfwLWF;ESET Personal Firewall; C:\Windows\system32\DRIVERS\EpfwLWF.sys [2016-11-14 52872]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 ekbdflt;ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [2016-11-14 122496]
R2 npf;NetGroup Packet Filter Driver; \??\C:\Windows\system32\drivers\npf.sys [2015-08-21 36600]
R3 5U876UVC;HP Webcam [2 MP series]; C:\Windows\system32\DRIVERS\5U876.sys [2009-11-13 114688]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2011-05-13 35896]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\ADIHdAud.sys [2009-05-18 381440]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\AGRSM.sys [2010-01-26 1163328]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-08-18 4994560]
R3 BCM43XX;Ovladač síťového adaptéru Broadcom 802.11; C:\Windows\system32\DRIVERS\bcmwl6.sys [2013-09-26 4268608]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-06-04 1303728]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
S2 MLPTDR_N;MLPTDR_N; \??\C:\Windows\system32\MLPTDR_N.SYS [2003-07-18 18848]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 78336]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 FTDIBUS;USB Serial Converter Driver; C:\Windows\system32\drivers\ftdibus.sys [2016-10-04 96464]
S3 FTSER2K;USB Serial Port Driver; C:\Windows\system32\drivers\ftser2k.sys [2016-10-04 74864]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys []
S3 PAC7302;PAC7302 VGA USB Camera; C:\Windows\system32\DRIVERS\PAC7302.SYS [2007-06-14 457856]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 14848]
S3 Revoflt;Revoflt; C:\Windows\system32\DRIVERS\revoflt.sys [2009-12-30 27192]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 Ser2pl;Prolific Serial port driver; C:\Windows\system32\DRIVERS\ser2pl.sys [2010-03-12 81920]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 sscdbus;SAMSUNG USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\sscdbus.sys [2005-08-17 58352]
S3 sscdmdfl;SAMSUNG CDMA Modem Filter; C:\Windows\system32\DRIVERS\sscdmdfl.sys [2005-08-17 8272]
S3 sscdmdm;SAMSUNG CDMA Modem Drivers; C:\Windows\system32\DRIVERS\sscdmdm.sys [2005-08-17 93872]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2013-10-02 49152]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 36352]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\Windows\system32\DRIVERS\VBoxNetAdp.sys [2015-03-02 115672]
S3 VBoxNetFlt;VirtualBox Bridged Networking Service; C:\Windows\system32\DRIVERS\VBoxNetFlt.sys []
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-12-19 82640]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; %SystemRoot%\System32\svchost.exe -k utcsvc;"ServiceDll"=%SystemRoot%\system32\diagtrack.dll
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2016-11-14 2167696]
R2 PLFlash DeviceIoControl Service;PLFlash DeviceIoControl Service; C:\Windows\system32\IoctlSvc.exe [2006-12-19 81920]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-03 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2016-09-20 324224]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-03 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2017-01-12 102912]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-02-23 1343400]
S4 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-07-13 270016]
S4 AEADIFilters;Andrea ADI Filters Service; C:\Windows\system32\AEADISRV.EXE [2008-07-15 90112]
S4 AgereModemAudio;Agere Modem Call Progress Audio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [2009-12-03 26112]
S4 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-08-18 176128]
S4 EPSON_EB_RPCV4_01;EPSON V5 Service4(01); C:\ProgramData\EPSON\EPW!3 SSRP\E_S40ST7.EXE [2007-12-17 143872]
S4 EPSON_PM_RPCV4_01;EPSON V3 Service4(01); C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE [2007-01-11 113664]
S4 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2011-05-13 26168]
S4 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files\Hp\Common\HPSupportSolutionsFrameworkService.exe [2014-12-11 89864]
S4 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2016-06-11 146888]
S4 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2008-04-08 800040]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2008-01-22 275752]
-----------------EOF-----------------
Logfile of random's system information tool 1.14 (written by random/random)
Run by Otakar Vavrečka at 2017-02-14 18:19:36
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 24 GB (15%) free of 158 GB
Total RAM: 3066 MB (60% free)
X86
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:20:09, on 14.2.2017
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal
Running processes:
C:\Windows\system32\taskhost.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Users\Otakar Vavrečka\AppData\Local\Seznam.cz\bin\postak.exe
C:\Users\Otakar Vavrečka\AppData\Local\Viber\Viber.exe
C:\Program Files\Mamemail\Mamemail Postak\Postak.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\Users\Otakar Vavrečka\Desktop\Gmail Notifier Plus.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Users\Otakar Vavrečka\Desktop\RSIT.exe
C:\Program Files\trend micro\Otakar Vavrečka_RSIT.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_73\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_73\bin\jp2ssv.dll
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Seznam Postak] "C:\Users\Otakar Vavrečka\AppData\Local\Seznam.cz\bin\postak.exe" -s
O4 - HKCU\..\Run: [Viber] "C:\Users\Otakar Vavrečka\AppData\Local\Viber\Viber.exe" StartMinimized
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - Startup: Mámemail Pošťák.lnk = C:\Program Files\Mamemail\Mamemail Postak\Postak.exe
O8 - Extra context menu item: Free YouTube Download - C:\Program Files\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Program Files\Common Files\DVDVideoSoft\plugins\freeytmp3downloader.htm
O9 - Extra button: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files\ICQ7.6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files\ICQ7.6\ICQ.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\system32\IoctlSvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
--
End of file - 4261 bytes
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\system32\tasks\Adobe Acrobat Update Task - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Windows\system32\tasks\Adobe Flash Player Updater - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\system32\tasks\CCleanerSkipUAC - "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
C:\Windows\system32\tasks\DriverCure Startup - C:\Program Files\ParetoLogic\DriverCure\DriverCure.exe -tray
C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore1cf6a811f49157b - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA1cf8b84abba174e - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\system32\tasks\Replay Media Catcher 5 6c9010b1-62d5-4d93-8351-7c593cf756ca - C:\Program Files\Applian Technologies\Replay Media Catcher 5\jrmcp.exe --task=6c9010b1-62d5-4d93-8351-7c593cf756ca
C:\Windows\system32\tasks\Replay Media Catcher 5 837966d0-c273-42b8-9c4d-973ff1be780e - C:\Program Files\Applian Technologies\Replay Media Catcher 5\jrmcp.exe --task=837966d0-c273-42b8-9c4d-973ff1be780e
C:\Windows\system32\tasks\{0008BE56-C856-44F1-826D-C36F64BB1287} - C:\Windows\system32\pcalua.exe -a "C:\Users\Otakar Vavrečka\Desktop\irfanviewcestina.exe" -d "C:\Users\Otakar Vavrečka\Desktop"
C:\Windows\system32\tasks\{068453C5-3191-4ADA-B908-C38F8F14D343} - C:\Windows\system32\pcalua.exe -a "C:\Users\Otakar Vavrečka\Desktop\irfanview_plugins_437_setup.exe" -d "C:\Users\Otakar Vavrečka\Desktop"
C:\Windows\system32\tasks\{110C381A-5642-470B-A060-54393638CE8D} - C:\Users\Otakar Vavrečka\Desktop\dotNetFx35setup.exe
C:\Windows\system32\tasks\{11AB4839-9909-4AA7-AD14-EA2EAFA4D911} - C:\Program Files\Free Audio Pack\Easy Audio Cutter\AudioCutter.exe
C:\Windows\system32\tasks\{13FBC005-0AF3-4F20-9DF1-36508DE5DFDB} - C:\Users\Otakar Vavrečka\Desktop\MP3SkypeRecorderSetup.exe
C:\Windows\system32\tasks\{142BAA19-9C0E-4940-AD01-37838C9BCCD2} - C:\Windows\system32\pcalua.exe -a "H:\HP ProBook 4710s\Programy\irfanview_lang_czech.exe" -d "H:\HP ProBook 4710s\Programy"
C:\Windows\system32\tasks\{1F3A9C16-7D5A-43D2-B156-63EEC906B679} - C:\Users\Otakar Vavrečka\Desktop\postak-ff-2.5.1.exe
C:\Windows\system32\tasks\{2BB4CBEF-9D48-4749-958E-6EE6D4E39FB8} - C:\Windows\system32\pcalua.exe -a "H:\HP ProBook 4710s\Programy\iview420_setup.exe" -d "H:\HP ProBook 4710s\Programy"
C:\Windows\system32\tasks\{3A84B831-9645-466B-AF28-4E8BC64EBB57} - C:\Program Files\Oracle\VirtualBox\VirtualBox.exe
C:\Windows\system32\tasks\{3DCF8AC0-DA6C-4053-A69A-17CDB994687B} - C:\Windows\system32\pcalua.exe -a "D:\Technické informace\vtrafo_sk.exe" -d C:\Windows\system32
C:\Windows\system32\tasks\{4377EADB-F2F3-4484-B7AB-4681C56FD068} - C:\Users\Otakar Vavrečka\Desktop\dotNetFx35setup.exe
C:\Windows\system32\tasks\{541CA25C-9E68-47EB-92EB-5DA80B6CA7B0} - C:\Windows\system32\pcalua.exe -a D:\Programy-1\irfanview_lang_czech.exe -d C:\Windows\system32
C:\Windows\system32\tasks\{55F4FB0D-4BF7-4555-B96A-4CF6E3A69CA0} - C:\Program Files\Apowersoft\Video Download Capture 6\Video Download Capture 6.exe
C:\Windows\system32\tasks\{61618E6E-6896-40BD-9067-11233F76E6BD} - C:\Windows\system32\pcalua.exe -a "C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RevoUninPro.exe" -d "C:\Program Files\VS Revo Group\Revo Uninstaller Pro"
C:\Windows\system32\tasks\{61B6B0A7-4511-4901-8DB8-333244336D38} - C:\Windows\system32\pcalua.exe -a "C:\Users\Otakar Vavrečka\Desktop\irfanview_plugins_428_setup.exe" -d "C:\Users\Otakar Vavrečka\Desktop"
C:\Windows\system32\tasks\{7478DCFE-FF91-47C5-9F7A-ED2100B4BE61} - C:\Program Files\MP3 Skype Recorder\MP3 Skype Recorder.exe
C:\Windows\system32\tasks\{78E18393-85E9-44A2-8555-42F0B555C029} - C:\Windows\system32\pcalua.exe -a "H:\HP ProBook 4710s\Programy\irfanviewcestina.exe" -d "C:\Program Files\Mozilla Firefox"
C:\Windows\system32\tasks\{8895351E-60C9-4702-A806-956922D6BED9} - C:\Windows\system32\pcalua.exe -a D:\Programy-1\DISK1\instmsiw.exe -d D:\Programy-1\DISK1
C:\Windows\system32\tasks\{908E8E1E-34BB-4E25-AD7D-659690B567CE} - C:\Windows\system32\pcalua.exe -a F:\fscommand\Axesstel_setup.exe -d F:\fscommand
C:\Windows\system32\tasks\{98A70D07-498F-4BC2-AF84-3310688F2CFE} - C:\Program Files\GIMP-2.0\bin\gimp-2.6.exe
C:\Windows\system32\tasks\{9B039347-33BD-49D9-80C0-367F2A397655} - C:\Program Files\GIMP-2.0\bin\gimp-2.6.exe
C:\Windows\system32\tasks\{9D52FDE3-F20B-4686-8DD0-2EBF00DB6704} - C:\Program Files\LibreOffice 3\program\soffice.exe
C:\Windows\system32\tasks\{A69F86CE-B4FE-4FF5-993F-0B71EB47E6DB} - C:\Windows\system32\pcalua.exe -a "D:\Programy-1\irfanview_lang_czech-Pro verzi 4.30.exe" -d D:\Programy-1
C:\Windows\system32\tasks\{B3A2F1D8-3678-4AE8-A095-EB4347B4A183} - C:\Windows\system32\pcalua.exe -a D:\Programy-1\ScreenShots.exe -d D:\Programy-1
C:\Windows\system32\tasks\{B826E4A4-24ED-4F5A-97A7-8F68847BCD73} - C:\Users\Otakar Vavrečka\Desktop\JDownloaderSetup.exe
C:\Windows\system32\tasks\{BD8B9751-91CF-4733-8234-8642163D0119} - C:\Program Files\Skype\\Phone\Skype.exe
C:\Windows\system32\tasks\{C604AE1E-7C34-4608-A678-595AF7F1A99C} - C:\Windows\system32\pcalua.exe -a D:\Programy-1\DISK1.exe -d "C:\Program Files\Mozilla Firefox"
C:\Windows\system32\tasks\{CAE32497-34EF-4452-840C-6F4750A66D63} - C:\Windows\system32\pcalua.exe -a "C:\Users\Otakar Vavrečka\Desktop\irfanview_lang_czech.exe" -d "C:\Users\Otakar Vavrečka\Desktop"
C:\Windows\system32\tasks\{D1CF8CA1-868F-4B6C-921C-972E5CB37228} - C:\Windows\system32\pcalua.exe -a "D:\Programy-1\DISK1(Návrh jednofázových síťových transformátorů).exe" -d D:\Programy-1
C:\Windows\system32\tasks\{DB39F503-5081-4645-94B0-FE40C9C0E720} - D:\Programy-1\MP3SkypeRecorderSetup.exe
C:\Windows\system32\tasks\{E84A7D35-4C89-405E-B541-1ED3B040A08F} - C:\Windows\system32\pcalua.exe -a "C:\Program Files\Alwil Software\Avast5\aswRunDll.exe" -c "C:\Program Files\Alwil Software\Avast5\Setup\setiface.dll" RunSetup
C:\Windows\system32\tasks\{EDA0F073-4ABE-443A-B014-97165BCDDC37} - C:\Windows\system32\pcalua.exe -a "C:\Users\Otakar Vavrečka\Desktop\iview428_setup.exe" -d "C:\Users\Otakar Vavrečka\Desktop"
C:\Windows\system32\tasks\{F0150743-E3C6-4235-96B0-40D74873D707} - C:\Users\Otakar Vavrečka\Desktop\JDownloaderSetup.exe
C:\Windows\system32\tasks\{F3CE23B2-382B-4090-99F1-EB7797659BA4} - C:\Windows\system32\pcalua.exe -a "H:\HP ProBook 4710s\Programy\iview428_setup.exe" -d "C:\Program Files\Mozilla Firefox"
C:\Windows\system32\tasks\{FF406F8A-6A3E-44F5-95D2-358E780EBEB1} - C:\Program Files\MP3 Skype Recorder\MP3 Skype Recorder.exe
C:\Windows\system32\tasks\WPD\SqmUpload_S-1-5-21-505298747-3480647553-2469496864-1000 - %windir%\system32\rundll32.exe portabledeviceapi.dll,#1
C:\Windows\system32\tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup - %systemroot%\system32\rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
C:\Windows\system32\tasks\Microsoft\Windows\WindowsBackup\ConfigNotification - %systemroot%\System32\sdclt.exe /CONFIGNOTIFICATION
C:\Windows\system32\tasks\Microsoft\Windows\WindowsBackup\Windows Backup Monitor - %systemroot%\system32\sdclt.exe /CHECKSKIPPED
C:\Windows\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\Windows\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\Windows\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -queuereporting
C:\Windows\system32\tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTask - %SystemRoot%\system32\Wat\WatAdminSvc.exe /run
C:\Windows\system32\tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline - %SystemRoot%\system32\schtasks.exe /run /I /TN "\Microsoft\Windows\Windows Activation Technologies\ValidationTask"
C:\Windows\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\Windows\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\Windows\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict1 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPOffendingSystem
C:\Windows\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict2 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPDefendingSystem
C:\Windows\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation
C:\Windows\system32\tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask - sc.exe start sppsvc
C:\Windows\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\Windows\system32\tasks\Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem - %SystemRoot%\System32\powercfg.exe -energy -auto
C:\Windows\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\Windows\system32\tasks\Microsoft\Windows\MUI\Lpksetup - C:\Windows\System32\lpksetup.exe -v
C:\Windows\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\Windows\system32\tasks\Microsoft\Windows\MUI\Mcbuilder - C:\Windows\System32\mcbuilder.exe
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoActivateWindowsSearch
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService - %SystemRoot%\ehome\ehPrivJob.exe /DoConfigureInternetTimeService
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks - %SystemRoot%\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ehDRMInit - %SystemRoot%\ehome\ehPrivJob.exe /DRMInit
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\InstallPlayReady - %SystemRoot%\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\mcupdate - %SystemRoot%\ehome\mcupdate $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\mcupdate_scheduled - %SystemRoot%\ehome\mcupdate -crl -hms -pscn 15
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -MediaCenterRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -ObjectStoreRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\OCURActivate - %SystemRoot%\ehome\ehPrivJob.exe /OCURActivate
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\OCURDiscovery - %SystemRoot%\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscovery - %SystemRoot%\ehome\ehPrivJob.exe /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 - %SystemRoot%\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 - %SystemRoot%\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PeriodicScanRetry - %windir%\ehome\MCUpdate.exe -pscn 0
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PvrRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -PvrRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PvrScheduleTask - %SystemRoot%\ehome\mcupdate.exe -PvrSchedule
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\RecordingRestart - %SystemRoot%\ehome\ehrec /RestartRecording
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\RegisterSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ReindexSearchRoot - %SystemRoot%\ehome\ehPrivJob.exe /DoReindexSearchRoot
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -SqlLiteRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\StartRecording - %SystemRoot%\ehome\ehrec /StartRecording
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\UpdateRecordPath - %SystemRoot%\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotifications.exe
C:\Windows\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\Windows\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\Windows\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c
C:\Windows\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\Windows\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\AitAgent - aitagent
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\rundll32.exe aepdu.dll,AePduRunUpdate -nolegacy
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\rundll32.exe aepdu.dll,AePduRunUpdate
C:\Windows\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\Windows\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\Otakar Vavrečka\AppData\Roaming\Mozilla\Firefox\Profiles\fslv0uhv.default
prefs.js - "browser.search.useDBForOrder" - ""
prefs.js - "browser.startup.homepage" - "http://www.google.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 22.0.0.209 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_22_0_0_209.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@canon.com/MycameraPlugin]
"Description"=
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.73.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.73.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_73\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.32.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.32.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.6]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
C:\Users\Otakar Vavrečka\AppData\Roaming\Mozilla\Firefox\Profiles\fslv0uhv.default\addons.json
Firefox Hello Beta (discontinued) - extension - loop@mozilla.org
C:\Users\Otakar Vavrečka\AppData\Roaming\Mozilla\Firefox\Profiles\fslv0uhv.default\extensions.json
Multi-process staged rollout - extension - e10srollout@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\e10srollout@mozilla.org.xpi
Pocket - extension - firefox@getpocket.com - C:\Program Files\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi
Firefox Hello - extension - loop@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\loop@mozilla.org.xpi
Default - theme - {972ce4c6-7e08-4474-a285-3208198ce6fd} - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi
Multi-process staged rollout - extension - e10srollout@mozilla.org - C:\Users\Otakar VavreÄka\AppData\Roaming\Mozilla\Firefox\Profiles\fslv0uhv.default\features\{52c8b4dd-9983-408f-b173-e3b1b326e1d1}\e10srollout@mozilla.org.xpi
Pocket - extension - firefox@getpocket.com - C:\Users\Otakar VavreÄka\AppData\Roaming\Mozilla\Firefox\Profiles\fslv0uhv.default\features\{52c8b4dd-9983-408f-b173-e3b1b326e1d1}\firefox@getpocket.com.xpi
Firefox Hello - extension - loop@mozilla.org - C:\Users\Otakar VavreÄka\AppData\Roaming\Mozilla\Firefox\Profiles\fslv0uhv.default\features\{52c8b4dd-9983-408f-b173-e3b1b326e1d1}\loop@mozilla.org.xpi
Websense Helper - extension - websensehelper@mozilla.org - C:\Users\Otakar VavreÄka\AppData\Roaming\Mozilla\Firefox\Profiles\fslv0uhv.default\features\{52c8b4dd-9983-408f-b173-e3b1b326e1d1}\websensehelper@mozilla.org.xpi
C:\Users\Otakar Vavrečka\AppData\Roaming\Mozilla\Firefox\Profiles\fslv0uhv.default\pluginreg.dat
Plugin - Adobe Acrobat - 15.20.20039.7108 - C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
Plugin - VLC Web Plugin - 2.2.4.0 - C:\Program Files\VideoLAN\VLC\npvlc.dll
Plugin - Google Update - 1.3.32.7 - C:\Program Files\Google\Update\1.3.32.7\npGoogleUpdate3.dll
Plugin - Silverlight Plug-In - 5.1.50709.0 - c:\Program Files\Microsoft Silverlight\5.1.50709.0\npctrl.dll
Plugin - Java(TM) Platform SE 8 U73 - 11.73.2.2 - C:\Program Files\Java\jre1.8.0_73\bin\plugin2\npjp2.dll
Plugin - Java Deployment Toolkit 8.0.730.2 - 11.73.2.2 - C:\Program Files\Java\jre1.8.0_73\bin\dtplugin\npdeployJava1.dll
Plugin - Shockwave Flash - 22.0.0.209 - C:\Windows\system32\Macromed\Flash\NPSWF32_22_0_0_209.dll
Plugin - Google Update - 1.3.28.13 - C:\Users\Otakar Vavrečka\AppData\Local\Google\Update\1.3.28.13\npGoogleUpdate3.dll
Plugin - Google Talk Plugin - 5.41.2.0 - C:\Users\Otakar Vavrečka\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
Plugin - Google Talk Plugin Video Renderer - 5.41.2.0 - C:\Users\Otakar Vavrečka\AppData\Roaming\Mozilla\plugins\npo1d.dll
=========Google Chrome=========
C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Store 0.2
Extension aohghmighlieiainnegkcijnfilokake 1 Dokumenty Google 0.9
Extension apdfllckaahabafndbhieahigkjlhalf 1 Disk Google 14.1
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension bgjpfhpjcgdppjbgnpnjllokbmcdllig 1 Seznam Lištička - Email 1.3.20
Extension blmojkbhnkkphngknkmgccmlenfaelkd 1 Seznam Lištička - Slovník 1.4.5
Extension blpcfgokakmgnkcojhhkbfbldkacnbeo 1 YouTube 4.2.8
Extension coobgpohoikkiipiblmjeljniedjpjpf 1 Vyhledávání Google 0.0.0.60
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension efaidnbmnnnibpcajpcglclefindmkaj 1 Adobe Acrobat 15.1.0.5
Extension ennkphjdgehloodpbhlhldgbnhmacadg Settings 0.2
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension ghbmnnjooekpmoecnnnilnnbdlolhkhi 1 Dokumenty Google offline 1.4
Extension gomekmidlodglbbmalcneegieacbdmki 1 Avast Online Security 12.0.163
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.46
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mgndgikekgjfcpckkfioiadnlibdjbkf Chrome 0.1
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension ncdfeinlpefandfngbdmdgjgepebkjap 0 IMPI 2.0.0.429
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.2
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Platby Internetového obchodu Chrome 1.0.0.1
Extension olfeabkoenfaoljndfecamgilllcpiak 0 Seznam Lištička - Rychlá volba 1.8.6
Extension pafkbggdmjlpgkdkcbjmhmfcdpncadgh Google Now 1.2.0.1
Extension pjkljhegncpnkpknbcohdijeoejaedia 1 Gmail 8.1
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 5616.1121.0.3
Homepage: http://www.google.com
default_search_provider.search_url:
C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Preferences
Plugin 11.5.31.137 Shockwave Flash C:\Program Files\Google\Chrome\Application\56.0.2924.87\PepperFlash\pepflashplayer.dll
Plugin Chrome Remote Desktop Viewer internal-remoting-viewer
Plugin Native Client C:\Program Files\Google\Chrome\Application\56.0.2924.87\ppGoogleNaClPluginChrome.dll
Plugin Chrome PDF Viewer C:\Program Files\Google\Chrome\Application\56.0.2924.87\pdf.dll
Plugin 10.1.3.23 Adobe Acrobat C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
Plugin 1.0.0.8 Microsoft Windows Media Player Firefox Plugin C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll
Plugin 2.9.10.7526 Google Talk Plugin C:\Users\Otakar Vavreka\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
Plugin 0,1,44,15 Google Talk Plugin Video Accelerator C:\Users\Otakar Vavreka\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll
Plugin 6.1.0.5001 Google Earth Plugin C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
Plugin 1.3.21.135 Google Update C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll
Plugin 10.5.1.255 Java(TM) Platform SE 7 U5 C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll
Plugin 11,3,300,257 Shockwave Flash C:\Windows\system32\Macromed\Flash\NPSWF32_11_3_300_257.dll
Plugin 10.5.1.255 Java Deployment Toolkit 7.0.50.255 C:\Windows\system32\npDeployJava1.dll
Plugin 4.0.60310.0 Silverlight Plug-In c:\Program Files\Microsoft Silverlight\4.0.60310.0\npctrl.dll
Homepage:
default_search_provider.search_url:
[HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\efaidnbmnnnibpcajpcglclefindmkaj]
"Path"=
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_73\bin\ssv.dll [2016-02-10 460384]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-02-10 172640]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016]
"Seznam Postak"=C:\Users\Otakar Vavrečka\AppData\Local\Seznam.cz\bin\postak.exe [2012-01-10 491040]
"Viber"=C:\Users\Otakar Vavrečka\AppData\Local\Viber\Viber.exe [2015-11-09 51657424]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2014-10-29 4826904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner.exe [2014-10-29 4826904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.autoupdate]
C:\Users\Otakar Vavrečka\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop]
C:\Users\Otakar Vavrečka\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hppwrsav]
C:\SCANJET\PrecisionScanLT\hppwrsav.exe [1999-06-07 23552]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KONICA MINOLTA PagePro 1300WStatusDisplay]
C:\Windows\system32\MSTMON_N.EXE [2004-11-25 151552]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KONICA MINOLTA PagePro 1400W STD]
C:\Windows\system32\MSTMON_Y.EXE [2006-03-01 184320]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MP3 Skype Recorder]
C:\Users\Otakar Vavrečka\AppData\Local\MP3 Skype recorder\MP3SkypeRecorder.exe [2015-11-13 2216600]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PAC7302_Monitor]
C:\Windows\PixArt\PAC7302\Monitor.exe [2006-11-03 319488]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Seznam Postak]
C:\Users\Otakar Vavrečka\AppData\Local\Seznam.cz\bin\postak.exe [2012-01-10 491040]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce]
C:\Program Files\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAXPnP]
C:\Program Files\Analog Devices\Core\smax4pnp.exe [2009-05-18 1314816]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Viber]
C:\Users\Otakar Vavrečka\AppData\Local\Viber\Viber.exe [2015-11-09 51657424]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^ImageBrowser EX Agent.lnk]
C:\PROGRA~1\Canon\IMAGEB~1\MFMANA~1.EXE [2013-01-29 69120]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Otakar Vavrečka^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Mámemail Pošťák.lnk]
C:\PROGRA~1\Mamemail\MAMEMA~1\Postak.exe [2015-04-13 740352]
C:\Users\Otakar Vavrečka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Mámemail Pošťák.lnk - C:\Program Files\Mamemail\Mamemail Postak\Postak.exe
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
"StubPath"="C:\Program Files\Google\Chrome\Application\56.0.2924.87\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{A6EADE66-0000-0000-484E-7E8A45000000}]
"StubPath"="C:\Windows\system32\Rundll32.exe" "C:\Program Files\Adobe\Acrobat Reader DC\Esl\AiodLite.dll",CreateReaderUserSettings
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2017-02-10 19:00:02 ----DC---- C:\rsit
======List of files/folders modified in the last 1 month======
2017-02-14 18:19:37 ----DC---- C:\Program Files\trend micro
2017-02-14 18:18:21 ----DC---- C:\Windows\temp
2017-02-14 18:07:07 ----DC---- C:\Users\Otakar Vavrečka\AppData\Roaming\ViberPC
2017-02-14 18:05:11 ----DC---- C:\Windows\system32\config
2017-02-13 15:18:25 ----DC---- C:\Windows\Prefetch
2017-02-13 15:16:10 ----DC---- C:\Windows\inf
2017-02-13 15:16:10 ----ADC---- C:\Windows\System32
2017-02-13 15:16:10 ----AC---- C:\Windows\system32\PerfStringBackup.INI
2017-02-13 15:15:35 ----DC---- C:\Windows\system32\drivers
2017-02-13 15:15:34 ----D---- C:\Windows\system32\DriverStore
2017-02-13 11:39:44 ----DC---- C:\AdwCleaner
2017-02-13 11:35:02 ----DC---- C:\Windows
2017-02-13 11:34:00 ----DC---- C:\ProgramData\ICQ
2017-01-20 09:20:08 ----SHDC---- C:\Windows\Installer
2017-01-17 19:08:47 ----DC---- C:\Windows\debug
File C:\Windows\system32\winlogon.exe is digitally signed
File C:\Windows\system32\wininit.exe is digitally signed
File C:\Windows\explorer.exe is digitally signed
File C:\Windows\system32\svchost.exe is digitally signed
File C:\Windows\system32\services.exe is digitally signed
File C:\Windows\system32\User32.dll is digitally signed
File C:\Windows\system32\userinit.exe is digitally signed
File C:\Windows\system32\rpcss.dll is digitally signed
File C:\Windows\system32\Drivers\volsnap.sys is digitally signed
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2016-11-14 71304]
R0 giveio;giveio; C:\Windows\system32\giveio.sys [1996-04-03 5248]
R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2011-05-13 25656]
R0 PxHelp20;PxHelp20; C:\Windows\System32\Drivers\PxHelp20.sys [2013-06-03 46096]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2013-05-09 21576]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2016-11-14 206472]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2016-11-14 156288]
R1 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2016-11-14 162952]
R1 EpfwLWF;ESET Personal Firewall; C:\Windows\system32\DRIVERS\EpfwLWF.sys [2016-11-14 52872]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 ekbdflt;ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [2016-11-14 122496]
R2 npf;NetGroup Packet Filter Driver; \??\C:\Windows\system32\drivers\npf.sys [2015-08-21 36600]
R3 5U876UVC;HP Webcam [2 MP series]; C:\Windows\system32\DRIVERS\5U876.sys [2009-11-13 114688]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2011-05-13 35896]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\ADIHdAud.sys [2009-05-18 381440]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\AGRSM.sys [2010-01-26 1163328]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-08-18 4994560]
R3 BCM43XX;Ovladač síťového adaptéru Broadcom 802.11; C:\Windows\system32\DRIVERS\bcmwl6.sys [2013-09-26 4268608]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-06-04 1303728]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
S2 MLPTDR_N;MLPTDR_N; \??\C:\Windows\system32\MLPTDR_N.SYS [2003-07-18 18848]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 78336]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 FTDIBUS;USB Serial Converter Driver; C:\Windows\system32\drivers\ftdibus.sys [2016-10-04 96464]
S3 FTSER2K;USB Serial Port Driver; C:\Windows\system32\drivers\ftser2k.sys [2016-10-04 74864]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys []
S3 PAC7302;PAC7302 VGA USB Camera; C:\Windows\system32\DRIVERS\PAC7302.SYS [2007-06-14 457856]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 14848]
S3 Revoflt;Revoflt; C:\Windows\system32\DRIVERS\revoflt.sys [2009-12-30 27192]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 Ser2pl;Prolific Serial port driver; C:\Windows\system32\DRIVERS\ser2pl.sys [2010-03-12 81920]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 sscdbus;SAMSUNG USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\sscdbus.sys [2005-08-17 58352]
S3 sscdmdfl;SAMSUNG CDMA Modem Filter; C:\Windows\system32\DRIVERS\sscdmdfl.sys [2005-08-17 8272]
S3 sscdmdm;SAMSUNG CDMA Modem Drivers; C:\Windows\system32\DRIVERS\sscdmdm.sys [2005-08-17 93872]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2013-10-02 49152]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 36352]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\Windows\system32\DRIVERS\VBoxNetAdp.sys [2015-03-02 115672]
S3 VBoxNetFlt;VirtualBox Bridged Networking Service; C:\Windows\system32\DRIVERS\VBoxNetFlt.sys []
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-12-19 82640]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; %SystemRoot%\System32\svchost.exe -k utcsvc;"ServiceDll"=%SystemRoot%\system32\diagtrack.dll
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2016-11-14 2167696]
R2 PLFlash DeviceIoControl Service;PLFlash DeviceIoControl Service; C:\Windows\system32\IoctlSvc.exe [2006-12-19 81920]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-03 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2016-09-20 324224]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-03 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2017-01-12 102912]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-02-23 1343400]
S4 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-07-13 270016]
S4 AEADIFilters;Andrea ADI Filters Service; C:\Windows\system32\AEADISRV.EXE [2008-07-15 90112]
S4 AgereModemAudio;Agere Modem Call Progress Audio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [2009-12-03 26112]
S4 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-08-18 176128]
S4 EPSON_EB_RPCV4_01;EPSON V5 Service4(01); C:\ProgramData\EPSON\EPW!3 SSRP\E_S40ST7.EXE [2007-12-17 143872]
S4 EPSON_PM_RPCV4_01;EPSON V3 Service4(01); C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE [2007-01-11 113664]
S4 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2011-05-13 26168]
S4 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files\Hp\Common\HPSupportSolutionsFrameworkService.exe [2014-12-11 89864]
S4 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2016-06-11 146888]
S4 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2008-04-08 800040]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2008-01-22 275752]
-----------------EOF-----------------
Blbý můžeš být,ale musíš si umět poradit...
-
Rudy
- Site Admin
- Příspěvky: 119671
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu PC
Stáhněte OTM: http://oldtimer.geekstogo.com/OTM.exe a uložte na plochu. Spusťte a do levého okna zkopírujte:
a klikněte na >MoveIt!<. Po skenu restartujte PC a dejte nový log RSIT.:files
C:\Windows\system32\pcalua.exe -a "H:\HP ProBook 4710s\Programy\irfanviewcestina.exe" -d "C:\Program Files\Mozilla Firefox"
C:\Windows\system32\pcalua.exe -a D:\Programy-1\DISK1\instmsiw.exe -d D:\Programy-1\DISK1
C:\Windows\system32\pcalua.exe -a F:\fscommand\Axesstel_setup.exe -d F:\fscommand
C:\Windows\system32\pcalua.exe -a "D:\Programy-1\irfanview_lang_czech-Pro verzi 4.30.exe" -d D:\Programy-1
C:\Windows\system32\pcalua.exe -a D:\Programy-1\ScreenShots.exe -d D:\Programy-1
C:\Windows\system32\pcalua.exe -a D:\Programy-1\DISK1.exe -d "C:\Program Files\Mozilla Firefox"
C:\Windows\system32\pcalua.exe -a "C:\Users\Otakar Vavrečka\Desktop\irfanview_lang_czech.exe" -d "C:\Users\Otakar Vavrečka\Desktop"
C:\Windows\system32\pcalua.exe -a "D:\Programy-1\DISK1(Návrh jednofázových síťových transformátorů).exe" -d D:\Programy-1
C:\Windows\system32\pcalua.exe -a "H:\HP ProBook 4710s\Programy\iview428_setup.exe" -d "C:\Program Files\Mozilla Firefox"
:reg
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}]
"URL"=-
S4 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2008-01-22 275752]
:commands
[Purity]
[Emptytemp]
[Emptyflash]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu PC
Stala se mi velice nepříjemná věc a nyní si nevím rady. OTM se nějak zasekl a stále neodpovídal, přitom z plochy zmizly ikony. Nenapadlo mě nic lepšího než program ukončit ale počítač jsem vypnul tlačítkem. Nyni nejde vypnou úplně, když zmáčknu tlačítko tak se mohu přihlásit ale zůstane jenom čistá rozsvicena obrazovka. Dá se s tím něco delat? Děkuji.
Blbý můžeš být,ale musíš si umět poradit...
-
Rudy
- Site Admin
- Příspěvky: 119671
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu PC
Zkuste obnovu systému k datu, kdykorektně fungoval. Pak spusťte OTM se stejným skriptem v nouz. režimu.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu PC
Spustil jsem program v nouzovém režimu, ten se opět zasekl. V pravé polovici vyjel nějaký sken, kurzorem se dá pohybovat ale ať kliknu nacokoliv tak nereaguje.
Blbý můžeš být,ale musíš si umět poradit...
Re: Prosím o kontrolu PC
Musel jsem natvrdo vypnout PC, jinak se nedalo. Dávám log z RSIT.
Logfile of random's system information tool 1.14 (written by random/random)
Run by Otakar Vavrečka at 2017-02-15 08:56:11
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 24 GB (15%) free of 158 GB
Total RAM: 3066 MB (44% free)
X86
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:56:51, on 15.2.2017
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal
Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Users\Otakar Vavrečka\AppData\Local\Seznam.cz\bin\postak.exe
C:\Users\Otakar Vavrečka\AppData\Local\Viber\Viber.exe
C:\Program Files\Mamemail\Mamemail Postak\Postak.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Users\Otakar Vavrečka\Desktop\RSIT.exe
C:\Program Files\trend micro\Otakar Vavrečka_RSIT.exe
C:\Windows\system32\SearchFilterHost.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_73\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_73\bin\jp2ssv.dll
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Seznam Postak] "C:\Users\Otakar Vavrečka\AppData\Local\Seznam.cz\bin\postak.exe" -s
O4 - HKCU\..\Run: [Viber] "C:\Users\Otakar Vavrečka\AppData\Local\Viber\Viber.exe" StartMinimized
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - Startup: Mámemail Pošťák.lnk = C:\Program Files\Mamemail\Mamemail Postak\Postak.exe
O8 - Extra context menu item: Free YouTube Download - C:\Program Files\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Program Files\Common Files\DVDVideoSoft\plugins\freeytmp3downloader.htm
O9 - Extra button: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files\ICQ7.6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files\ICQ7.6\ICQ.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\system32\IoctlSvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
--
End of file - 4211 bytes
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\system32\tasks\Adobe Acrobat Update Task - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Windows\system32\tasks\Adobe Flash Player Updater - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\system32\tasks\CCleanerSkipUAC - "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
C:\Windows\system32\tasks\DriverCure Startup - C:\Program Files\ParetoLogic\DriverCure\DriverCure.exe -tray
C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore1cf6a811f49157b - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA1cf8b84abba174e - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\system32\tasks\Replay Media Catcher 5 6c9010b1-62d5-4d93-8351-7c593cf756ca - C:\Program Files\Applian Technologies\Replay Media Catcher 5\jrmcp.exe --task=6c9010b1-62d5-4d93-8351-7c593cf756ca
C:\Windows\system32\tasks\Replay Media Catcher 5 837966d0-c273-42b8-9c4d-973ff1be780e - C:\Program Files\Applian Technologies\Replay Media Catcher 5\jrmcp.exe --task=837966d0-c273-42b8-9c4d-973ff1be780e
C:\Windows\system32\tasks\{0008BE56-C856-44F1-826D-C36F64BB1287} - C:\Windows\system32\pcalua.exe -a "C:\Users\Otakar Vavrečka\Desktop\irfanviewcestina.exe" -d "C:\Users\Otakar Vavrečka\Desktop"
C:\Windows\system32\tasks\{068453C5-3191-4ADA-B908-C38F8F14D343} - C:\Windows\system32\pcalua.exe -a "C:\Users\Otakar Vavrečka\Desktop\irfanview_plugins_437_setup.exe" -d "C:\Users\Otakar Vavrečka\Desktop"
C:\Windows\system32\tasks\{110C381A-5642-470B-A060-54393638CE8D} - C:\Users\Otakar Vavrečka\Desktop\dotNetFx35setup.exe
C:\Windows\system32\tasks\{11AB4839-9909-4AA7-AD14-EA2EAFA4D911} - C:\Program Files\Free Audio Pack\Easy Audio Cutter\AudioCutter.exe
C:\Windows\system32\tasks\{13FBC005-0AF3-4F20-9DF1-36508DE5DFDB} - C:\Users\Otakar Vavrečka\Desktop\MP3SkypeRecorderSetup.exe
C:\Windows\system32\tasks\{142BAA19-9C0E-4940-AD01-37838C9BCCD2} - C:\Windows\system32\pcalua.exe -a "H:\HP ProBook 4710s\Programy\irfanview_lang_czech.exe" -d "H:\HP ProBook 4710s\Programy"
C:\Windows\system32\tasks\{1F3A9C16-7D5A-43D2-B156-63EEC906B679} - C:\Users\Otakar Vavrečka\Desktop\postak-ff-2.5.1.exe
C:\Windows\system32\tasks\{2BB4CBEF-9D48-4749-958E-6EE6D4E39FB8} - C:\Windows\system32\pcalua.exe -a "H:\HP ProBook 4710s\Programy\iview420_setup.exe" -d "H:\HP ProBook 4710s\Programy"
C:\Windows\system32\tasks\{3A84B831-9645-466B-AF28-4E8BC64EBB57} - C:\Program Files\Oracle\VirtualBox\VirtualBox.exe
C:\Windows\system32\tasks\{3DCF8AC0-DA6C-4053-A69A-17CDB994687B} - C:\Windows\system32\pcalua.exe -a "D:\Technické informace\vtrafo_sk.exe" -d C:\Windows\system32
C:\Windows\system32\tasks\{4377EADB-F2F3-4484-B7AB-4681C56FD068} - C:\Users\Otakar Vavrečka\Desktop\dotNetFx35setup.exe
C:\Windows\system32\tasks\{541CA25C-9E68-47EB-92EB-5DA80B6CA7B0} - C:\Windows\system32\pcalua.exe -a D:\Programy-1\irfanview_lang_czech.exe -d C:\Windows\system32
C:\Windows\system32\tasks\{55F4FB0D-4BF7-4555-B96A-4CF6E3A69CA0} - C:\Program Files\Apowersoft\Video Download Capture 6\Video Download Capture 6.exe
C:\Windows\system32\tasks\{61618E6E-6896-40BD-9067-11233F76E6BD} - C:\Windows\system32\pcalua.exe -a "C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RevoUninPro.exe" -d "C:\Program Files\VS Revo Group\Revo Uninstaller Pro"
C:\Windows\system32\tasks\{61B6B0A7-4511-4901-8DB8-333244336D38} - C:\Windows\system32\pcalua.exe -a "C:\Users\Otakar Vavrečka\Desktop\irfanview_plugins_428_setup.exe" -d "C:\Users\Otakar Vavrečka\Desktop"
C:\Windows\system32\tasks\{7478DCFE-FF91-47C5-9F7A-ED2100B4BE61} - C:\Program Files\MP3 Skype Recorder\MP3 Skype Recorder.exe
C:\Windows\system32\tasks\{78E18393-85E9-44A2-8555-42F0B555C029} - C:\Windows\system32\pcalua.exe -a "H:\HP ProBook 4710s\Programy\irfanviewcestina.exe" -d "C:\Program Files\Mozilla Firefox"
C:\Windows\system32\tasks\{8895351E-60C9-4702-A806-956922D6BED9} - C:\Windows\system32\pcalua.exe -a D:\Programy-1\DISK1\instmsiw.exe -d D:\Programy-1\DISK1
C:\Windows\system32\tasks\{908E8E1E-34BB-4E25-AD7D-659690B567CE} - C:\Windows\system32\pcalua.exe -a F:\fscommand\Axesstel_setup.exe -d F:\fscommand
C:\Windows\system32\tasks\{98A70D07-498F-4BC2-AF84-3310688F2CFE} - C:\Program Files\GIMP-2.0\bin\gimp-2.6.exe
C:\Windows\system32\tasks\{9B039347-33BD-49D9-80C0-367F2A397655} - C:\Program Files\GIMP-2.0\bin\gimp-2.6.exe
C:\Windows\system32\tasks\{9D52FDE3-F20B-4686-8DD0-2EBF00DB6704} - C:\Program Files\LibreOffice 3\program\soffice.exe
C:\Windows\system32\tasks\{A69F86CE-B4FE-4FF5-993F-0B71EB47E6DB} - C:\Windows\system32\pcalua.exe -a "D:\Programy-1\irfanview_lang_czech-Pro verzi 4.30.exe" -d D:\Programy-1
C:\Windows\system32\tasks\{B3A2F1D8-3678-4AE8-A095-EB4347B4A183} - C:\Windows\system32\pcalua.exe -a D:\Programy-1\ScreenShots.exe -d D:\Programy-1
C:\Windows\system32\tasks\{B826E4A4-24ED-4F5A-97A7-8F68847BCD73} - C:\Users\Otakar Vavrečka\Desktop\JDownloaderSetup.exe
C:\Windows\system32\tasks\{BD8B9751-91CF-4733-8234-8642163D0119} - C:\Program Files\Skype\\Phone\Skype.exe
C:\Windows\system32\tasks\{C604AE1E-7C34-4608-A678-595AF7F1A99C} - C:\Windows\system32\pcalua.exe -a D:\Programy-1\DISK1.exe -d "C:\Program Files\Mozilla Firefox"
C:\Windows\system32\tasks\{CAE32497-34EF-4452-840C-6F4750A66D63} - C:\Windows\system32\pcalua.exe -a "C:\Users\Otakar Vavrečka\Desktop\irfanview_lang_czech.exe" -d "C:\Users\Otakar Vavrečka\Desktop"
C:\Windows\system32\tasks\{D1CF8CA1-868F-4B6C-921C-972E5CB37228} - C:\Windows\system32\pcalua.exe -a "D:\Programy-1\DISK1(Návrh jednofázových síťových transformátorů).exe" -d D:\Programy-1
C:\Windows\system32\tasks\{DB39F503-5081-4645-94B0-FE40C9C0E720} - D:\Programy-1\MP3SkypeRecorderSetup.exe
C:\Windows\system32\tasks\{E84A7D35-4C89-405E-B541-1ED3B040A08F} - C:\Windows\system32\pcalua.exe -a "C:\Program Files\Alwil Software\Avast5\aswRunDll.exe" -c "C:\Program Files\Alwil Software\Avast5\Setup\setiface.dll" RunSetup
C:\Windows\system32\tasks\{EDA0F073-4ABE-443A-B014-97165BCDDC37} - C:\Windows\system32\pcalua.exe -a "C:\Users\Otakar Vavrečka\Desktop\iview428_setup.exe" -d "C:\Users\Otakar Vavrečka\Desktop"
C:\Windows\system32\tasks\{F0150743-E3C6-4235-96B0-40D74873D707} - C:\Users\Otakar Vavrečka\Desktop\JDownloaderSetup.exe
C:\Windows\system32\tasks\{F3CE23B2-382B-4090-99F1-EB7797659BA4} - C:\Windows\system32\pcalua.exe -a "H:\HP ProBook 4710s\Programy\iview428_setup.exe" -d "C:\Program Files\Mozilla Firefox"
C:\Windows\system32\tasks\{FF406F8A-6A3E-44F5-95D2-358E780EBEB1} - C:\Program Files\MP3 Skype Recorder\MP3 Skype Recorder.exe
C:\Windows\system32\tasks\WPD\SqmUpload_S-1-5-21-505298747-3480647553-2469496864-1000 - %windir%\system32\rundll32.exe portabledeviceapi.dll,#1
C:\Windows\system32\tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup - %systemroot%\system32\rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
C:\Windows\system32\tasks\Microsoft\Windows\WindowsBackup\ConfigNotification - %systemroot%\System32\sdclt.exe /CONFIGNOTIFICATION
C:\Windows\system32\tasks\Microsoft\Windows\WindowsBackup\Windows Backup Monitor - %systemroot%\system32\sdclt.exe /CHECKSKIPPED
C:\Windows\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\Windows\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\Windows\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -queuereporting
C:\Windows\system32\tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTask - %SystemRoot%\system32\Wat\WatAdminSvc.exe /run
C:\Windows\system32\tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline - %SystemRoot%\system32\schtasks.exe /run /I /TN "\Microsoft\Windows\Windows Activation Technologies\ValidationTask"
C:\Windows\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\Windows\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\Windows\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict1 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPOffendingSystem
C:\Windows\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict2 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPDefendingSystem
C:\Windows\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation
C:\Windows\system32\tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask - sc.exe start sppsvc
C:\Windows\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\Windows\system32\tasks\Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem - %SystemRoot%\System32\powercfg.exe -energy -auto
C:\Windows\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\Windows\system32\tasks\Microsoft\Windows\MUI\Lpksetup - C:\Windows\System32\lpksetup.exe -v
C:\Windows\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\Windows\system32\tasks\Microsoft\Windows\MUI\Mcbuilder - C:\Windows\System32\mcbuilder.exe
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoActivateWindowsSearch
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService - %SystemRoot%\ehome\ehPrivJob.exe /DoConfigureInternetTimeService
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks - %SystemRoot%\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ehDRMInit - %SystemRoot%\ehome\ehPrivJob.exe /DRMInit
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\InstallPlayReady - %SystemRoot%\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\mcupdate - %SystemRoot%\ehome\mcupdate $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\mcupdate_scheduled - %SystemRoot%\ehome\mcupdate -crl -hms -pscn 15
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -MediaCenterRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -ObjectStoreRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\OCURActivate - %SystemRoot%\ehome\ehPrivJob.exe /OCURActivate
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\OCURDiscovery - %SystemRoot%\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscovery - %SystemRoot%\ehome\ehPrivJob.exe /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 - %SystemRoot%\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 - %SystemRoot%\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PeriodicScanRetry - %windir%\ehome\MCUpdate.exe -pscn 0
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PvrRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -PvrRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PvrScheduleTask - %SystemRoot%\ehome\mcupdate.exe -PvrSchedule
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\RecordingRestart - %SystemRoot%\ehome\ehrec /RestartRecording
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\RegisterSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ReindexSearchRoot - %SystemRoot%\ehome\ehPrivJob.exe /DoReindexSearchRoot
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -SqlLiteRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\StartRecording - %SystemRoot%\ehome\ehrec /StartRecording
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\UpdateRecordPath - %SystemRoot%\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotifications.exe
C:\Windows\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\Windows\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\Windows\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c
C:\Windows\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\Windows\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\AitAgent - aitagent
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\rundll32.exe aepdu.dll,AePduRunUpdate -nolegacy
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\rundll32.exe aepdu.dll,AePduRunUpdate
C:\Windows\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\Windows\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\Otakar Vavrečka\AppData\Roaming\Mozilla\Firefox\Profiles\fslv0uhv.default
prefs.js - "browser.search.useDBForOrder" - ""
prefs.js - "browser.startup.homepage" - "http://www.google.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 22.0.0.209 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_22_0_0_209.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@canon.com/MycameraPlugin]
"Description"=
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.73.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.73.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_73\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.32.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.32.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.6]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
C:\Users\Otakar Vavrečka\AppData\Roaming\Mozilla\Firefox\Profiles\fslv0uhv.default\addons.json
Firefox Hello Beta (discontinued) - extension - loop@mozilla.org
C:\Users\Otakar Vavrečka\AppData\Roaming\Mozilla\Firefox\Profiles\fslv0uhv.default\extensions.json
Multi-process staged rollout - extension - e10srollout@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\e10srollout@mozilla.org.xpi
Pocket - extension - firefox@getpocket.com - C:\Program Files\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi
Firefox Hello - extension - loop@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\loop@mozilla.org.xpi
Default - theme - {972ce4c6-7e08-4474-a285-3208198ce6fd} - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi
Multi-process staged rollout - extension - e10srollout@mozilla.org - C:\Users\Otakar VavreÄka\AppData\Roaming\Mozilla\Firefox\Profiles\fslv0uhv.default\features\{52c8b4dd-9983-408f-b173-e3b1b326e1d1}\e10srollout@mozilla.org.xpi
Pocket - extension - firefox@getpocket.com - C:\Users\Otakar VavreÄka\AppData\Roaming\Mozilla\Firefox\Profiles\fslv0uhv.default\features\{52c8b4dd-9983-408f-b173-e3b1b326e1d1}\firefox@getpocket.com.xpi
Firefox Hello - extension - loop@mozilla.org - C:\Users\Otakar VavreÄka\AppData\Roaming\Mozilla\Firefox\Profiles\fslv0uhv.default\features\{52c8b4dd-9983-408f-b173-e3b1b326e1d1}\loop@mozilla.org.xpi
Websense Helper - extension - websensehelper@mozilla.org - C:\Users\Otakar VavreÄka\AppData\Roaming\Mozilla\Firefox\Profiles\fslv0uhv.default\features\{52c8b4dd-9983-408f-b173-e3b1b326e1d1}\websensehelper@mozilla.org.xpi
C:\Users\Otakar Vavrečka\AppData\Roaming\Mozilla\Firefox\Profiles\fslv0uhv.default\pluginreg.dat
Plugin - Adobe Acrobat - 15.20.20039.7108 - C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
Plugin - VLC Web Plugin - 2.2.4.0 - C:\Program Files\VideoLAN\VLC\npvlc.dll
Plugin - Google Update - 1.3.32.7 - C:\Program Files\Google\Update\1.3.32.7\npGoogleUpdate3.dll
Plugin - Silverlight Plug-In - 5.1.50709.0 - c:\Program Files\Microsoft Silverlight\5.1.50709.0\npctrl.dll
Plugin - Java(TM) Platform SE 8 U73 - 11.73.2.2 - C:\Program Files\Java\jre1.8.0_73\bin\plugin2\npjp2.dll
Plugin - Java Deployment Toolkit 8.0.730.2 - 11.73.2.2 - C:\Program Files\Java\jre1.8.0_73\bin\dtplugin\npdeployJava1.dll
Plugin - Shockwave Flash - 22.0.0.209 - C:\Windows\system32\Macromed\Flash\NPSWF32_22_0_0_209.dll
Plugin - Google Update - 1.3.28.13 - C:\Users\Otakar Vavrečka\AppData\Local\Google\Update\1.3.28.13\npGoogleUpdate3.dll
Plugin - Google Talk Plugin - 5.41.2.0 - C:\Users\Otakar Vavrečka\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
Plugin - Google Talk Plugin Video Renderer - 5.41.2.0 - C:\Users\Otakar Vavrečka\AppData\Roaming\Mozilla\plugins\npo1d.dll
=========Google Chrome=========
C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Store 0.2
Extension aohghmighlieiainnegkcijnfilokake 1 Dokumenty Google 0.9
Extension apdfllckaahabafndbhieahigkjlhalf 1 Disk Google 14.1
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension bgjpfhpjcgdppjbgnpnjllokbmcdllig 1 Seznam Lištička - Email 1.3.20
Extension blmojkbhnkkphngknkmgccmlenfaelkd 1 Seznam Lištička - Slovník 1.4.5
Extension blpcfgokakmgnkcojhhkbfbldkacnbeo 1 YouTube 4.2.8
Extension coobgpohoikkiipiblmjeljniedjpjpf 1 Vyhledávání Google 0.0.0.60
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension efaidnbmnnnibpcajpcglclefindmkaj 1 Adobe Acrobat 15.1.0.5
Extension ennkphjdgehloodpbhlhldgbnhmacadg Settings 0.2
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension ghbmnnjooekpmoecnnnilnnbdlolhkhi 1 Dokumenty Google offline 1.4
Extension gomekmidlodglbbmalcneegieacbdmki 1 Avast Online Security 12.0.163
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.46
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mgndgikekgjfcpckkfioiadnlibdjbkf Chrome 0.1
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension ncdfeinlpefandfngbdmdgjgepebkjap 0 IMPI 2.0.0.429
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.2
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Platby Internetového obchodu Chrome 1.0.0.1
Extension olfeabkoenfaoljndfecamgilllcpiak 0 Seznam Lištička - Rychlá volba 1.8.6
Extension pafkbggdmjlpgkdkcbjmhmfcdpncadgh Google Now 1.2.0.1
Extension pjkljhegncpnkpknbcohdijeoejaedia 1 Gmail 8.1
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 5616.1121.0.3
Homepage: http://www.google.com
default_search_provider.search_url:
C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Preferences
Plugin 11.5.31.137 Shockwave Flash C:\Program Files\Google\Chrome\Application\56.0.2924.87\PepperFlash\pepflashplayer.dll
Plugin Chrome Remote Desktop Viewer internal-remoting-viewer
Plugin Native Client C:\Program Files\Google\Chrome\Application\56.0.2924.87\ppGoogleNaClPluginChrome.dll
Plugin Chrome PDF Viewer C:\Program Files\Google\Chrome\Application\56.0.2924.87\pdf.dll
Plugin 10.1.3.23 Adobe Acrobat C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
Plugin 1.0.0.8 Microsoft Windows Media Player Firefox Plugin C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll
Plugin 2.9.10.7526 Google Talk Plugin C:\Users\Otakar Vavreka\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
Plugin 0,1,44,15 Google Talk Plugin Video Accelerator C:\Users\Otakar Vavreka\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll
Plugin 6.1.0.5001 Google Earth Plugin C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
Plugin 1.3.21.135 Google Update C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll
Plugin 10.5.1.255 Java(TM) Platform SE 7 U5 C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll
Plugin 11,3,300,257 Shockwave Flash C:\Windows\system32\Macromed\Flash\NPSWF32_11_3_300_257.dll
Plugin 10.5.1.255 Java Deployment Toolkit 7.0.50.255 C:\Windows\system32\npDeployJava1.dll
Plugin 4.0.60310.0 Silverlight Plug-In c:\Program Files\Microsoft Silverlight\4.0.60310.0\npctrl.dll
Homepage:
default_search_provider.search_url:
[HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\efaidnbmnnnibpcajpcglclefindmkaj]
"Path"=
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_73\bin\ssv.dll [2016-02-10 460384]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-02-10 172640]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016]
"Seznam Postak"=C:\Users\Otakar Vavrečka\AppData\Local\Seznam.cz\bin\postak.exe [2012-01-10 491040]
"Viber"=C:\Users\Otakar Vavrečka\AppData\Local\Viber\Viber.exe [2015-11-09 51657424]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2014-10-29 4826904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner.exe [2014-10-29 4826904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.autoupdate]
C:\Users\Otakar Vavrečka\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop]
C:\Users\Otakar Vavrečka\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hppwrsav]
C:\SCANJET\PrecisionScanLT\hppwrsav.exe [1999-06-07 23552]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KONICA MINOLTA PagePro 1300WStatusDisplay]
C:\Windows\system32\MSTMON_N.EXE [2004-11-25 151552]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KONICA MINOLTA PagePro 1400W STD]
C:\Windows\system32\MSTMON_Y.EXE [2006-03-01 184320]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MP3 Skype Recorder]
C:\Users\Otakar Vavrečka\AppData\Local\MP3 Skype recorder\MP3SkypeRecorder.exe [2015-11-13 2216600]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PAC7302_Monitor]
C:\Windows\PixArt\PAC7302\Monitor.exe [2006-11-03 319488]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Seznam Postak]
C:\Users\Otakar Vavrečka\AppData\Local\Seznam.cz\bin\postak.exe [2012-01-10 491040]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce]
C:\Program Files\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAXPnP]
C:\Program Files\Analog Devices\Core\smax4pnp.exe [2009-05-18 1314816]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Viber]
C:\Users\Otakar Vavrečka\AppData\Local\Viber\Viber.exe [2015-11-09 51657424]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^ImageBrowser EX Agent.lnk]
C:\PROGRA~1\Canon\IMAGEB~1\MFMANA~1.EXE [2013-01-29 69120]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Otakar Vavrečka^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Mámemail Pošťák.lnk]
C:\PROGRA~1\Mamemail\MAMEMA~1\Postak.exe [2015-04-13 740352]
C:\Users\Otakar Vavrečka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Mámemail Pošťák.lnk - C:\Program Files\Mamemail\Mamemail Postak\Postak.exe
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
"StubPath"="C:\Program Files\Google\Chrome\Application\56.0.2924.87\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{A6EADE66-0000-0000-484E-7E8A45000000}]
"StubPath"="C:\Windows\system32\Rundll32.exe" "C:\Program Files\Adobe\Acrobat Reader DC\Esl\AiodLite.dll",CreateReaderUserSettings
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2017-02-15 07:48:58 ----AC---- C:\Windows\ntbtlog.txt
2017-02-14 19:13:31 ----DC---- C:\_OTM
2017-02-10 19:00:02 ----DC---- C:\rsit
======List of files/folders modified in the last 1 month======
2017-02-15 08:56:14 ----DC---- C:\Program Files\trend micro
2017-02-15 08:54:50 ----DC---- C:\Users\Otakar Vavrečka\AppData\Roaming\ViberPC
2017-02-15 08:54:47 ----DC---- C:\Windows\system32\catroot2
2017-02-15 08:53:37 ----DC---- C:\Windows\temp
2017-02-15 08:53:21 ----DC---- C:\Windows\system32\config
2017-02-15 08:19:17 ----DC---- C:\Users\Otakar Vavrečka\AppData\Roaming\vlc
2017-02-15 08:19:01 ----DC---- C:\Windows\Prefetch
2017-02-15 07:48:58 ----DC---- C:\Windows
2017-02-13 15:16:10 ----DC---- C:\Windows\inf
2017-02-13 15:16:10 ----ADC---- C:\Windows\System32
2017-02-13 15:16:10 ----AC---- C:\Windows\system32\PerfStringBackup.INI
2017-02-13 15:15:35 ----DC---- C:\Windows\system32\drivers
2017-02-13 15:15:34 ----D---- C:\Windows\system32\DriverStore
2017-02-13 11:39:44 ----DC---- C:\AdwCleaner
2017-02-13 11:34:00 ----DC---- C:\ProgramData\ICQ
2017-01-20 09:20:08 ----SHDC---- C:\Windows\Installer
2017-01-17 19:08:47 ----DC---- C:\Windows\debug
File C:\Windows\system32\winlogon.exe is digitally signed
File C:\Windows\system32\wininit.exe is digitally signed
File C:\Windows\explorer.exe is digitally signed
File C:\Windows\system32\svchost.exe is digitally signed
File C:\Windows\system32\services.exe is digitally signed
File C:\Windows\system32\User32.dll is digitally signed
File C:\Windows\system32\userinit.exe is digitally signed
File C:\Windows\system32\rpcss.dll is digitally signed
File C:\Windows\system32\Drivers\volsnap.sys is digitally signed
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2016-11-14 71304]
R0 giveio;giveio; C:\Windows\system32\giveio.sys [1996-04-03 5248]
R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2011-05-13 25656]
R0 PxHelp20;PxHelp20; C:\Windows\System32\Drivers\PxHelp20.sys [2013-06-03 46096]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2013-05-09 21576]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2016-11-14 206472]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2016-11-14 156288]
R1 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2016-11-14 162952]
R1 EpfwLWF;ESET Personal Firewall; C:\Windows\system32\DRIVERS\EpfwLWF.sys [2016-11-14 52872]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 ekbdflt;ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [2016-11-14 122496]
R2 npf;NetGroup Packet Filter Driver; \??\C:\Windows\system32\drivers\npf.sys [2015-08-21 36600]
R3 5U876UVC;HP Webcam [2 MP series]; C:\Windows\system32\DRIVERS\5U876.sys [2009-11-13 114688]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2011-05-13 35896]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\ADIHdAud.sys [2009-05-18 381440]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\AGRSM.sys [2010-01-26 1163328]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-08-18 4994560]
R3 BCM43XX;Ovladač síťového adaptéru Broadcom 802.11; C:\Windows\system32\DRIVERS\bcmwl6.sys [2013-09-26 4268608]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-06-04 1303728]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
S2 MLPTDR_N;MLPTDR_N; \??\C:\Windows\system32\MLPTDR_N.SYS [2003-07-18 18848]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 78336]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 FTDIBUS;USB Serial Converter Driver; C:\Windows\system32\drivers\ftdibus.sys [2016-10-04 96464]
S3 FTSER2K;USB Serial Port Driver; C:\Windows\system32\drivers\ftser2k.sys [2016-10-04 74864]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys []
S3 PAC7302;PAC7302 VGA USB Camera; C:\Windows\system32\DRIVERS\PAC7302.SYS [2007-06-14 457856]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 14848]
S3 Revoflt;Revoflt; C:\Windows\system32\DRIVERS\revoflt.sys [2009-12-30 27192]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 Ser2pl;Prolific Serial port driver; C:\Windows\system32\DRIVERS\ser2pl.sys [2010-03-12 81920]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 sscdbus;SAMSUNG USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\sscdbus.sys [2005-08-17 58352]
S3 sscdmdfl;SAMSUNG CDMA Modem Filter; C:\Windows\system32\DRIVERS\sscdmdfl.sys [2005-08-17 8272]
S3 sscdmdm;SAMSUNG CDMA Modem Drivers; C:\Windows\system32\DRIVERS\sscdmdm.sys [2005-08-17 93872]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2013-10-02 49152]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 36352]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\Windows\system32\DRIVERS\VBoxNetAdp.sys [2015-03-02 115672]
S3 VBoxNetFlt;VirtualBox Bridged Networking Service; C:\Windows\system32\DRIVERS\VBoxNetFlt.sys []
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-12-19 82640]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; %SystemRoot%\System32\svchost.exe -k utcsvc;"ServiceDll"=%SystemRoot%\system32\diagtrack.dll
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2016-11-14 2167696]
R2 PLFlash DeviceIoControl Service;PLFlash DeviceIoControl Service; C:\Windows\system32\IoctlSvc.exe [2006-12-19 81920]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-03 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2016-09-20 324224]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-03 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2017-01-12 102912]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-02-23 1343400]
S4 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-07-13 270016]
S4 AEADIFilters;Andrea ADI Filters Service; C:\Windows\system32\AEADISRV.EXE [2008-07-15 90112]
S4 AgereModemAudio;Agere Modem Call Progress Audio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [2009-12-03 26112]
S4 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-08-18 176128]
S4 EPSON_EB_RPCV4_01;EPSON V5 Service4(01); C:\ProgramData\EPSON\EPW!3 SSRP\E_S40ST7.EXE [2007-12-17 143872]
S4 EPSON_PM_RPCV4_01;EPSON V3 Service4(01); C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE [2007-01-11 113664]
S4 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2011-05-13 26168]
S4 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files\Hp\Common\HPSupportSolutionsFrameworkService.exe [2014-12-11 89864]
S4 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2016-06-11 146888]
S4 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2008-04-08 800040]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2008-01-22 275752]
-----------------EOF-----------------
Logfile of random's system information tool 1.14 (written by random/random)
Run by Otakar Vavrečka at 2017-02-15 08:56:11
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 24 GB (15%) free of 158 GB
Total RAM: 3066 MB (44% free)
X86
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 8:56:51, on 15.2.2017
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal
Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Users\Otakar Vavrečka\AppData\Local\Seznam.cz\bin\postak.exe
C:\Users\Otakar Vavrečka\AppData\Local\Viber\Viber.exe
C:\Program Files\Mamemail\Mamemail Postak\Postak.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Users\Otakar Vavrečka\Desktop\RSIT.exe
C:\Program Files\trend micro\Otakar Vavrečka_RSIT.exe
C:\Windows\system32\SearchFilterHost.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_73\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_73\bin\jp2ssv.dll
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Seznam Postak] "C:\Users\Otakar Vavrečka\AppData\Local\Seznam.cz\bin\postak.exe" -s
O4 - HKCU\..\Run: [Viber] "C:\Users\Otakar Vavrečka\AppData\Local\Viber\Viber.exe" StartMinimized
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - Startup: Mámemail Pošťák.lnk = C:\Program Files\Mamemail\Mamemail Postak\Postak.exe
O8 - Extra context menu item: Free YouTube Download - C:\Program Files\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Program Files\Common Files\DVDVideoSoft\plugins\freeytmp3downloader.htm
O9 - Extra button: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files\ICQ7.6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files\ICQ7.6\ICQ.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted Zone: http://help.eset.com (HKLM)
O15 - ESC Trusted Zone: http://help.eset.com (HKLM)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\system32\IoctlSvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
--
End of file - 4211 bytes
======Scheduled tasks folder======
C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\system32\tasks\Adobe Acrobat Update Task - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\Windows\system32\tasks\Adobe Flash Player Updater - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\system32\tasks\CCleanerSkipUAC - "C:\Program Files\CCleaner\CCleaner.exe" $(Arg0)
C:\Windows\system32\tasks\DriverCure Startup - C:\Program Files\ParetoLogic\DriverCure\DriverCure.exe -tray
C:\Windows\system32\tasks\GoogleUpdateTaskMachineCore1cf6a811f49157b - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\system32\tasks\GoogleUpdateTaskMachineUA1cf8b84abba174e - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\system32\tasks\Replay Media Catcher 5 6c9010b1-62d5-4d93-8351-7c593cf756ca - C:\Program Files\Applian Technologies\Replay Media Catcher 5\jrmcp.exe --task=6c9010b1-62d5-4d93-8351-7c593cf756ca
C:\Windows\system32\tasks\Replay Media Catcher 5 837966d0-c273-42b8-9c4d-973ff1be780e - C:\Program Files\Applian Technologies\Replay Media Catcher 5\jrmcp.exe --task=837966d0-c273-42b8-9c4d-973ff1be780e
C:\Windows\system32\tasks\{0008BE56-C856-44F1-826D-C36F64BB1287} - C:\Windows\system32\pcalua.exe -a "C:\Users\Otakar Vavrečka\Desktop\irfanviewcestina.exe" -d "C:\Users\Otakar Vavrečka\Desktop"
C:\Windows\system32\tasks\{068453C5-3191-4ADA-B908-C38F8F14D343} - C:\Windows\system32\pcalua.exe -a "C:\Users\Otakar Vavrečka\Desktop\irfanview_plugins_437_setup.exe" -d "C:\Users\Otakar Vavrečka\Desktop"
C:\Windows\system32\tasks\{110C381A-5642-470B-A060-54393638CE8D} - C:\Users\Otakar Vavrečka\Desktop\dotNetFx35setup.exe
C:\Windows\system32\tasks\{11AB4839-9909-4AA7-AD14-EA2EAFA4D911} - C:\Program Files\Free Audio Pack\Easy Audio Cutter\AudioCutter.exe
C:\Windows\system32\tasks\{13FBC005-0AF3-4F20-9DF1-36508DE5DFDB} - C:\Users\Otakar Vavrečka\Desktop\MP3SkypeRecorderSetup.exe
C:\Windows\system32\tasks\{142BAA19-9C0E-4940-AD01-37838C9BCCD2} - C:\Windows\system32\pcalua.exe -a "H:\HP ProBook 4710s\Programy\irfanview_lang_czech.exe" -d "H:\HP ProBook 4710s\Programy"
C:\Windows\system32\tasks\{1F3A9C16-7D5A-43D2-B156-63EEC906B679} - C:\Users\Otakar Vavrečka\Desktop\postak-ff-2.5.1.exe
C:\Windows\system32\tasks\{2BB4CBEF-9D48-4749-958E-6EE6D4E39FB8} - C:\Windows\system32\pcalua.exe -a "H:\HP ProBook 4710s\Programy\iview420_setup.exe" -d "H:\HP ProBook 4710s\Programy"
C:\Windows\system32\tasks\{3A84B831-9645-466B-AF28-4E8BC64EBB57} - C:\Program Files\Oracle\VirtualBox\VirtualBox.exe
C:\Windows\system32\tasks\{3DCF8AC0-DA6C-4053-A69A-17CDB994687B} - C:\Windows\system32\pcalua.exe -a "D:\Technické informace\vtrafo_sk.exe" -d C:\Windows\system32
C:\Windows\system32\tasks\{4377EADB-F2F3-4484-B7AB-4681C56FD068} - C:\Users\Otakar Vavrečka\Desktop\dotNetFx35setup.exe
C:\Windows\system32\tasks\{541CA25C-9E68-47EB-92EB-5DA80B6CA7B0} - C:\Windows\system32\pcalua.exe -a D:\Programy-1\irfanview_lang_czech.exe -d C:\Windows\system32
C:\Windows\system32\tasks\{55F4FB0D-4BF7-4555-B96A-4CF6E3A69CA0} - C:\Program Files\Apowersoft\Video Download Capture 6\Video Download Capture 6.exe
C:\Windows\system32\tasks\{61618E6E-6896-40BD-9067-11233F76E6BD} - C:\Windows\system32\pcalua.exe -a "C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RevoUninPro.exe" -d "C:\Program Files\VS Revo Group\Revo Uninstaller Pro"
C:\Windows\system32\tasks\{61B6B0A7-4511-4901-8DB8-333244336D38} - C:\Windows\system32\pcalua.exe -a "C:\Users\Otakar Vavrečka\Desktop\irfanview_plugins_428_setup.exe" -d "C:\Users\Otakar Vavrečka\Desktop"
C:\Windows\system32\tasks\{7478DCFE-FF91-47C5-9F7A-ED2100B4BE61} - C:\Program Files\MP3 Skype Recorder\MP3 Skype Recorder.exe
C:\Windows\system32\tasks\{78E18393-85E9-44A2-8555-42F0B555C029} - C:\Windows\system32\pcalua.exe -a "H:\HP ProBook 4710s\Programy\irfanviewcestina.exe" -d "C:\Program Files\Mozilla Firefox"
C:\Windows\system32\tasks\{8895351E-60C9-4702-A806-956922D6BED9} - C:\Windows\system32\pcalua.exe -a D:\Programy-1\DISK1\instmsiw.exe -d D:\Programy-1\DISK1
C:\Windows\system32\tasks\{908E8E1E-34BB-4E25-AD7D-659690B567CE} - C:\Windows\system32\pcalua.exe -a F:\fscommand\Axesstel_setup.exe -d F:\fscommand
C:\Windows\system32\tasks\{98A70D07-498F-4BC2-AF84-3310688F2CFE} - C:\Program Files\GIMP-2.0\bin\gimp-2.6.exe
C:\Windows\system32\tasks\{9B039347-33BD-49D9-80C0-367F2A397655} - C:\Program Files\GIMP-2.0\bin\gimp-2.6.exe
C:\Windows\system32\tasks\{9D52FDE3-F20B-4686-8DD0-2EBF00DB6704} - C:\Program Files\LibreOffice 3\program\soffice.exe
C:\Windows\system32\tasks\{A69F86CE-B4FE-4FF5-993F-0B71EB47E6DB} - C:\Windows\system32\pcalua.exe -a "D:\Programy-1\irfanview_lang_czech-Pro verzi 4.30.exe" -d D:\Programy-1
C:\Windows\system32\tasks\{B3A2F1D8-3678-4AE8-A095-EB4347B4A183} - C:\Windows\system32\pcalua.exe -a D:\Programy-1\ScreenShots.exe -d D:\Programy-1
C:\Windows\system32\tasks\{B826E4A4-24ED-4F5A-97A7-8F68847BCD73} - C:\Users\Otakar Vavrečka\Desktop\JDownloaderSetup.exe
C:\Windows\system32\tasks\{BD8B9751-91CF-4733-8234-8642163D0119} - C:\Program Files\Skype\\Phone\Skype.exe
C:\Windows\system32\tasks\{C604AE1E-7C34-4608-A678-595AF7F1A99C} - C:\Windows\system32\pcalua.exe -a D:\Programy-1\DISK1.exe -d "C:\Program Files\Mozilla Firefox"
C:\Windows\system32\tasks\{CAE32497-34EF-4452-840C-6F4750A66D63} - C:\Windows\system32\pcalua.exe -a "C:\Users\Otakar Vavrečka\Desktop\irfanview_lang_czech.exe" -d "C:\Users\Otakar Vavrečka\Desktop"
C:\Windows\system32\tasks\{D1CF8CA1-868F-4B6C-921C-972E5CB37228} - C:\Windows\system32\pcalua.exe -a "D:\Programy-1\DISK1(Návrh jednofázových síťových transformátorů).exe" -d D:\Programy-1
C:\Windows\system32\tasks\{DB39F503-5081-4645-94B0-FE40C9C0E720} - D:\Programy-1\MP3SkypeRecorderSetup.exe
C:\Windows\system32\tasks\{E84A7D35-4C89-405E-B541-1ED3B040A08F} - C:\Windows\system32\pcalua.exe -a "C:\Program Files\Alwil Software\Avast5\aswRunDll.exe" -c "C:\Program Files\Alwil Software\Avast5\Setup\setiface.dll" RunSetup
C:\Windows\system32\tasks\{EDA0F073-4ABE-443A-B014-97165BCDDC37} - C:\Windows\system32\pcalua.exe -a "C:\Users\Otakar Vavrečka\Desktop\iview428_setup.exe" -d "C:\Users\Otakar Vavrečka\Desktop"
C:\Windows\system32\tasks\{F0150743-E3C6-4235-96B0-40D74873D707} - C:\Users\Otakar Vavrečka\Desktop\JDownloaderSetup.exe
C:\Windows\system32\tasks\{F3CE23B2-382B-4090-99F1-EB7797659BA4} - C:\Windows\system32\pcalua.exe -a "H:\HP ProBook 4710s\Programy\iview428_setup.exe" -d "C:\Program Files\Mozilla Firefox"
C:\Windows\system32\tasks\{FF406F8A-6A3E-44F5-95D2-358E780EBEB1} - C:\Program Files\MP3 Skype Recorder\MP3 Skype Recorder.exe
C:\Windows\system32\tasks\WPD\SqmUpload_S-1-5-21-505298747-3480647553-2469496864-1000 - %windir%\system32\rundll32.exe portabledeviceapi.dll,#1
C:\Windows\system32\tasks\Microsoft\Windows\WindowsBackup\AutomaticBackup - %systemroot%\system32\rundll32.exe /d sdengin2.dll,ExecuteScheduledBackup
C:\Windows\system32\tasks\Microsoft\Windows\WindowsBackup\ConfigNotification - %systemroot%\System32\sdclt.exe /CONFIGNOTIFICATION
C:\Windows\system32\tasks\Microsoft\Windows\WindowsBackup\Windows Backup Monitor - %systemroot%\system32\sdclt.exe /CHECKSKIPPED
C:\Windows\system32\tasks\Microsoft\Windows\Windows Media Sharing\UpdateLibrary - "%ProgramFiles%\Windows Media Player\wmpnscfg.exe"
C:\Windows\system32\tasks\Microsoft\Windows\Windows Filtering Platform\BfeOnServiceStartTypeChange - %windir%\system32\rundll32.exe bfe.dll,BfeOnServiceStartTypeChange
C:\Windows\system32\tasks\Microsoft\Windows\Windows Error Reporting\QueueReporting - %windir%\system32\wermgr.exe -queuereporting
C:\Windows\system32\tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTask - %SystemRoot%\system32\Wat\WatAdminSvc.exe /run
C:\Windows\system32\tasks\Microsoft\Windows\Windows Activation Technologies\ValidationTaskDeadline - %SystemRoot%\system32\schtasks.exe /run /I /TN "\Microsoft\Windows\Windows Activation Technologies\ValidationTask"
C:\Windows\system32\tasks\Microsoft\Windows\UPnP\UPnPHostConfig - sc.exe config upnphost start= auto
C:\Windows\system32\tasks\Microsoft\Windows\Time Synchronization\SynchronizeTime - %windir%\system32\sc.exe start w32time task_started
C:\Windows\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict1 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPOffendingSystem
C:\Windows\system32\tasks\Microsoft\Windows\Tcpip\IpAddressConflict2 - %windir%\system32\rundll32.exe ndfapi.dll,NdfRunDllDuplicateIPDefendingSystem
C:\Windows\system32\tasks\Microsoft\Windows\SystemRestore\SR - %windir%\system32\rundll32.exe /d srrstr.dll,ExecuteScheduledSPPCreation
C:\Windows\system32\tasks\Microsoft\Windows\SoftwareProtectionPlatform\SvcRestartTask - sc.exe start sppsvc
C:\Windows\system32\tasks\Microsoft\Windows\RemoteAssistance\RemoteAssistanceTask - %windir%\system32\RAServer.exe /offerraupdate
C:\Windows\system32\tasks\Microsoft\Windows\Power Efficiency Diagnostics\AnalyzeSystem - %SystemRoot%\System32\powercfg.exe -energy -auto
C:\Windows\system32\tasks\Microsoft\Windows\NetTrace\GatherNetworkInfo - %windir%\system32\gatherNetworkInfo.vbs
C:\Windows\system32\tasks\Microsoft\Windows\MUI\Lpksetup - C:\Windows\System32\lpksetup.exe -v
C:\Windows\system32\tasks\Microsoft\Windows\MUI\LPRemove - %windir%\system32\lpremove.exe
C:\Windows\system32\tasks\Microsoft\Windows\MUI\Mcbuilder - C:\Windows\System32\mcbuilder.exe
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ActivateWindowsSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoActivateWindowsSearch
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ConfigureInternetTimeService - %SystemRoot%\ehome\ehPrivJob.exe /DoConfigureInternetTimeService
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\DispatchRecoveryTasks - %SystemRoot%\ehome\ehPrivJob.exe /DoRecoveryTasks $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ehDRMInit - %SystemRoot%\ehome\ehPrivJob.exe /DRMInit
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\InstallPlayReady - %SystemRoot%\ehome\ehPrivJob.exe /InstallPlayReady $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\mcupdate - %SystemRoot%\ehome\mcupdate $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\mcupdate_scheduled - %SystemRoot%\ehome\mcupdate -crl -hms -pscn 15
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\MediaCenterRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -MediaCenterRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ObjectStoreRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -ObjectStoreRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\OCURActivate - %SystemRoot%\ehome\ehPrivJob.exe /OCURActivate
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\OCURDiscovery - %SystemRoot%\ehome\ehPrivJob.exe /OCURDiscovery $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscovery - %SystemRoot%\ehome\ehPrivJob.exe /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW1 - %SystemRoot%\ehome\ehPrivJob.exe /wait:7 /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PBDADiscoveryW2 - %SystemRoot%\ehome\ehPrivJob.exe /wait:90 /PBDADiscovery
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PeriodicScanRetry - %windir%\ehome\MCUpdate.exe -pscn 0
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PvrRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -PvrRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\PvrScheduleTask - %SystemRoot%\ehome\mcupdate.exe -PvrSchedule
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\RecordingRestart - %SystemRoot%\ehome\ehrec /RestartRecording
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\RegisterSearch - %SystemRoot%\ehome\ehPrivJob.exe /DoRegisterSearch $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\ReindexSearchRoot - %SystemRoot%\ehome\ehPrivJob.exe /DoReindexSearchRoot
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\SqlLiteRecoveryTask - %SystemRoot%\ehome\mcupdate.exe -SqlLiteRecoveryTask
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\StartRecording - %SystemRoot%\ehome\ehrec /StartRecording
C:\Windows\system32\tasks\Microsoft\Windows\Media Center\UpdateRecordPath - %SystemRoot%\ehome\ehPrivJob.exe /DoUpdateRecordPath $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Location\Notifications - %windir%\System32\LocationNotifications.exe
C:\Windows\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticDataCollector - %windir%\system32\rundll32.exe dfdts.dll,DfdGetDefaultPolicyAndSMART
C:\Windows\system32\tasks\Microsoft\Windows\DiskDiagnostic\Microsoft-Windows-DiskDiagnosticResolver - %windir%\system32\DFDWiz.exe
C:\Windows\system32\tasks\Microsoft\Windows\Defrag\ScheduledDefrag - %windir%\system32\defrag.exe -c
C:\Windows\system32\tasks\Microsoft\Windows\Customer Experience Improvement Program\Consolidator - %SystemRoot%\System32\wsqmcons.exe
C:\Windows\system32\tasks\Microsoft\Windows\Bluetooth\UninstallDeviceTask - BthUdTask.exe $(Arg0)
C:\Windows\system32\tasks\Microsoft\Windows\Autochk\Proxy - %windir%\system32\rundll32.exe /d acproxy.dll,PerformAutochkOperations
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\AitAgent - aitagent
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\Microsoft Compatibility Appraiser - %windir%\system32\rundll32.exe aepdu.dll,AePduRunUpdate -nolegacy
C:\Windows\system32\tasks\Microsoft\Windows\Application Experience\ProgramDataUpdater - %windir%\system32\rundll32.exe aepdu.dll,AePduRunUpdate
C:\Windows\system32\tasks\Microsoft\Windows\AppID\PolicyConverter - %windir%\system32\appidpolicyconverter.exe
C:\Windows\system32\tasks\Microsoft\Windows\AppID\VerifiedPublisherCertStoreCheck - %windir%\system32\appidcertstorecheck.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\Otakar Vavrečka\AppData\Roaming\Mozilla\Firefox\Profiles\fslv0uhv.default
prefs.js - "browser.search.useDBForOrder" - ""
prefs.js - "browser.startup.homepage" - "http://www.google.cz/"
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 22.0.0.209 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_22_0_0_209.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@canon.com/MycameraPlugin]
"Description"=
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.73.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.73.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_73\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.50901.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.32.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.32.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.6]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
C:\Users\Otakar Vavrečka\AppData\Roaming\Mozilla\Firefox\Profiles\fslv0uhv.default\addons.json
Firefox Hello Beta (discontinued) - extension - loop@mozilla.org
C:\Users\Otakar Vavrečka\AppData\Roaming\Mozilla\Firefox\Profiles\fslv0uhv.default\extensions.json
Multi-process staged rollout - extension - e10srollout@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\e10srollout@mozilla.org.xpi
Pocket - extension - firefox@getpocket.com - C:\Program Files\Mozilla Firefox\browser\features\firefox@getpocket.com.xpi
Firefox Hello - extension - loop@mozilla.org - C:\Program Files\Mozilla Firefox\browser\features\loop@mozilla.org.xpi
Default - theme - {972ce4c6-7e08-4474-a285-3208198ce6fd} - C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}.xpi
Multi-process staged rollout - extension - e10srollout@mozilla.org - C:\Users\Otakar VavreÄka\AppData\Roaming\Mozilla\Firefox\Profiles\fslv0uhv.default\features\{52c8b4dd-9983-408f-b173-e3b1b326e1d1}\e10srollout@mozilla.org.xpi
Pocket - extension - firefox@getpocket.com - C:\Users\Otakar VavreÄka\AppData\Roaming\Mozilla\Firefox\Profiles\fslv0uhv.default\features\{52c8b4dd-9983-408f-b173-e3b1b326e1d1}\firefox@getpocket.com.xpi
Firefox Hello - extension - loop@mozilla.org - C:\Users\Otakar VavreÄka\AppData\Roaming\Mozilla\Firefox\Profiles\fslv0uhv.default\features\{52c8b4dd-9983-408f-b173-e3b1b326e1d1}\loop@mozilla.org.xpi
Websense Helper - extension - websensehelper@mozilla.org - C:\Users\Otakar VavreÄka\AppData\Roaming\Mozilla\Firefox\Profiles\fslv0uhv.default\features\{52c8b4dd-9983-408f-b173-e3b1b326e1d1}\websensehelper@mozilla.org.xpi
C:\Users\Otakar Vavrečka\AppData\Roaming\Mozilla\Firefox\Profiles\fslv0uhv.default\pluginreg.dat
Plugin - Adobe Acrobat - 15.20.20039.7108 - C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
Plugin - VLC Web Plugin - 2.2.4.0 - C:\Program Files\VideoLAN\VLC\npvlc.dll
Plugin - Google Update - 1.3.32.7 - C:\Program Files\Google\Update\1.3.32.7\npGoogleUpdate3.dll
Plugin - Silverlight Plug-In - 5.1.50709.0 - c:\Program Files\Microsoft Silverlight\5.1.50709.0\npctrl.dll
Plugin - Java(TM) Platform SE 8 U73 - 11.73.2.2 - C:\Program Files\Java\jre1.8.0_73\bin\plugin2\npjp2.dll
Plugin - Java Deployment Toolkit 8.0.730.2 - 11.73.2.2 - C:\Program Files\Java\jre1.8.0_73\bin\dtplugin\npdeployJava1.dll
Plugin - Shockwave Flash - 22.0.0.209 - C:\Windows\system32\Macromed\Flash\NPSWF32_22_0_0_209.dll
Plugin - Google Update - 1.3.28.13 - C:\Users\Otakar Vavrečka\AppData\Local\Google\Update\1.3.28.13\npGoogleUpdate3.dll
Plugin - Google Talk Plugin - 5.41.2.0 - C:\Users\Otakar Vavrečka\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
Plugin - Google Talk Plugin Video Renderer - 5.41.2.0 - C:\Users\Otakar Vavrečka\AppData\Roaming\Mozilla\plugins\npo1d.dll
=========Google Chrome=========
C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences
Extension ahfgeienlihckogmohjhadlkjgocpleb 1 Store 0.2
Extension aohghmighlieiainnegkcijnfilokake 1 Dokumenty Google 0.9
Extension apdfllckaahabafndbhieahigkjlhalf 1 Disk Google 14.1
Extension bepbmhgboaologfdajaanbcjmnhjmhfn 0
Extension bgjpfhpjcgdppjbgnpnjllokbmcdllig 1 Seznam Lištička - Email 1.3.20
Extension blmojkbhnkkphngknkmgccmlenfaelkd 1 Seznam Lištička - Slovník 1.4.5
Extension blpcfgokakmgnkcojhhkbfbldkacnbeo 1 YouTube 4.2.8
Extension coobgpohoikkiipiblmjeljniedjpjpf 1 Vyhledávání Google 0.0.0.60
Extension eemcgdkfndhakfknompkggombfjjjeno 1 Bookmark Manager 0.1
Extension efaidnbmnnnibpcajpcglclefindmkaj 1 Adobe Acrobat 15.1.0.5
Extension ennkphjdgehloodpbhlhldgbnhmacadg Settings 0.2
Extension gfdkimpbcpahaombhbimeihdjnejgicl 1 Feedback 1.0
Extension ghbmnnjooekpmoecnnnilnnbdlolhkhi 1 Dokumenty Google offline 1.4
Extension gomekmidlodglbbmalcneegieacbdmki 1 Avast Online Security 12.0.163
Extension kmendfapggjehodndflmmgagdbamhnfd 1 CryptoTokenExtension 0.9.46
Extension mfehgcgbbipciphmccgaenjidiccnmng 1 Cloud Print 0.1
Extension mgndgikekgjfcpckkfioiadnlibdjbkf Chrome 0.1
Extension mhjfbmdgcfjbbpaeojofohoefgiehjai 1 Chrome PDF Viewer 1
Extension ncdfeinlpefandfngbdmdgjgepebkjap 0 IMPI 2.0.0.429
Extension neajdppkdcdipfabeoofebfddakdcjhd 1 Google Network Speech 1.0
Extension nkeimhogjdpnpccoofpliimaahmaaome 1 Google Hangouts 1.3.2
Extension nmmhkkegccagdldgiimedpiccmgmieda 1 Platby Internetového obchodu Chrome 1.0.0.1
Extension olfeabkoenfaoljndfecamgilllcpiak 0 Seznam Lištička - Rychlá volba 1.8.6
Extension pafkbggdmjlpgkdkcbjmhmfcdpncadgh Google Now 1.2.0.1
Extension pjkljhegncpnkpknbcohdijeoejaedia 1 Gmail 8.1
Extension pkedcjkdefgpdelpbcmbmeomcjbeemfm 1 Chrome Media Router 5616.1121.0.3
Homepage: http://www.google.com
default_search_provider.search_url:
C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Preferences
Plugin 11.5.31.137 Shockwave Flash C:\Program Files\Google\Chrome\Application\56.0.2924.87\PepperFlash\pepflashplayer.dll
Plugin Chrome Remote Desktop Viewer internal-remoting-viewer
Plugin Native Client C:\Program Files\Google\Chrome\Application\56.0.2924.87\ppGoogleNaClPluginChrome.dll
Plugin Chrome PDF Viewer C:\Program Files\Google\Chrome\Application\56.0.2924.87\pdf.dll
Plugin 10.1.3.23 Adobe Acrobat C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
Plugin 1.0.0.8 Microsoft Windows Media Player Firefox Plugin C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll
Plugin 2.9.10.7526 Google Talk Plugin C:\Users\Otakar Vavreka\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
Plugin 0,1,44,15 Google Talk Plugin Video Accelerator C:\Users\Otakar Vavreka\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll
Plugin 6.1.0.5001 Google Earth Plugin C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll
Plugin 1.3.21.135 Google Update C:\Program Files\Google\Update\1.3.21.135\npGoogleUpdate3.dll
Plugin 10.5.1.255 Java(TM) Platform SE 7 U5 C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll
Plugin 11,3,300,257 Shockwave Flash C:\Windows\system32\Macromed\Flash\NPSWF32_11_3_300_257.dll
Plugin 10.5.1.255 Java Deployment Toolkit 7.0.50.255 C:\Windows\system32\npDeployJava1.dll
Plugin 4.0.60310.0 Silverlight Plug-In c:\Program Files\Microsoft Silverlight\4.0.60310.0\npctrl.dll
Homepage:
default_search_provider.search_url:
[HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\efaidnbmnnnibpcajpcglclefindmkaj]
"Path"=
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]
"DefaultScope"={0633EE93-D776-472f-A0FF-E1416B8B2E3A}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_73\bin\ssv.dll [2016-02-10 460384]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-02-10 172640]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016]
"Seznam Postak"=C:\Users\Otakar Vavrečka\AppData\Local\Seznam.cz\bin\postak.exe [2012-01-10 491040]
"Viber"=C:\Users\Otakar Vavrečka\AppData\Local\Viber\Viber.exe [2015-11-09 51657424]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2014-10-29 4826904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner.exe [2014-10-29 4826904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.autoupdate]
C:\Users\Otakar Vavrečka\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop]
C:\Users\Otakar Vavrečka\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2015-05-26 103080]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hppwrsav]
C:\SCANJET\PrecisionScanLT\hppwrsav.exe [1999-06-07 23552]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KONICA MINOLTA PagePro 1300WStatusDisplay]
C:\Windows\system32\MSTMON_N.EXE [2004-11-25 151552]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KONICA MINOLTA PagePro 1400W STD]
C:\Windows\system32\MSTMON_Y.EXE [2006-03-01 184320]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MP3 Skype Recorder]
C:\Users\Otakar Vavrečka\AppData\Local\MP3 Skype recorder\MP3SkypeRecorder.exe [2015-11-13 2216600]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PAC7302_Monitor]
C:\Windows\PixArt\PAC7302\Monitor.exe [2006-11-03 319488]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Seznam Postak]
C:\Users\Otakar Vavrečka\AppData\Local\Seznam.cz\bin\postak.exe [2012-01-10 491040]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce]
C:\Program Files\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAXPnP]
C:\Program Files\Analog Devices\Core\smax4pnp.exe [2009-05-18 1314816]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Viber]
C:\Users\Otakar Vavrečka\AppData\Local\Viber\Viber.exe [2015-11-09 51657424]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^ImageBrowser EX Agent.lnk]
C:\PROGRA~1\Canon\IMAGEB~1\MFMANA~1.EXE [2013-01-29 69120]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Otakar Vavrečka^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Mámemail Pošťák.lnk]
C:\PROGRA~1\Mamemail\MAMEMA~1\Postak.exe [2015-04-13 740352]
C:\Users\Otakar Vavrečka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Mámemail Pošťák.lnk - C:\Program Files\Mamemail\Mamemail Postak\Postak.exe
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
"StubPath"="C:\Program Files\Google\Chrome\Application\56.0.2924.87\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level
[HKEY_LOCAL_MACHINE\Software\Microsoft\Active Setup\Installed Components\{A6EADE66-0000-0000-484E-7E8A45000000}]
"StubPath"="C:\Windows\system32\Rundll32.exe" "C:\Program Files\Adobe\Acrobat Reader DC\Esl\AiodLite.dll",CreateReaderUserSettings
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2017-02-15 07:48:58 ----AC---- C:\Windows\ntbtlog.txt
2017-02-14 19:13:31 ----DC---- C:\_OTM
2017-02-10 19:00:02 ----DC---- C:\rsit
======List of files/folders modified in the last 1 month======
2017-02-15 08:56:14 ----DC---- C:\Program Files\trend micro
2017-02-15 08:54:50 ----DC---- C:\Users\Otakar Vavrečka\AppData\Roaming\ViberPC
2017-02-15 08:54:47 ----DC---- C:\Windows\system32\catroot2
2017-02-15 08:53:37 ----DC---- C:\Windows\temp
2017-02-15 08:53:21 ----DC---- C:\Windows\system32\config
2017-02-15 08:19:17 ----DC---- C:\Users\Otakar Vavrečka\AppData\Roaming\vlc
2017-02-15 08:19:01 ----DC---- C:\Windows\Prefetch
2017-02-15 07:48:58 ----DC---- C:\Windows
2017-02-13 15:16:10 ----DC---- C:\Windows\inf
2017-02-13 15:16:10 ----ADC---- C:\Windows\System32
2017-02-13 15:16:10 ----AC---- C:\Windows\system32\PerfStringBackup.INI
2017-02-13 15:15:35 ----DC---- C:\Windows\system32\drivers
2017-02-13 15:15:34 ----D---- C:\Windows\system32\DriverStore
2017-02-13 11:39:44 ----DC---- C:\AdwCleaner
2017-02-13 11:34:00 ----DC---- C:\ProgramData\ICQ
2017-01-20 09:20:08 ----SHDC---- C:\Windows\Installer
2017-01-17 19:08:47 ----DC---- C:\Windows\debug
File C:\Windows\system32\winlogon.exe is digitally signed
File C:\Windows\system32\wininit.exe is digitally signed
File C:\Windows\explorer.exe is digitally signed
File C:\Windows\system32\svchost.exe is digitally signed
File C:\Windows\system32\services.exe is digitally signed
File C:\Windows\system32\User32.dll is digitally signed
File C:\Windows\system32\userinit.exe is digitally signed
File C:\Windows\system32\rpcss.dll is digitally signed
File C:\Windows\system32\Drivers\volsnap.sys is digitally signed
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2016-11-14 71304]
R0 giveio;giveio; C:\Windows\system32\giveio.sys [1996-04-03 5248]
R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2011-05-13 25656]
R0 PxHelp20;PxHelp20; C:\Windows\System32\Drivers\PxHelp20.sys [2013-06-03 46096]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2013-05-09 21576]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2016-11-14 206472]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2016-11-14 156288]
R1 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2016-11-14 162952]
R1 EpfwLWF;ESET Personal Firewall; C:\Windows\system32\DRIVERS\EpfwLWF.sys [2016-11-14 52872]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 ekbdflt;ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [2016-11-14 122496]
R2 npf;NetGroup Packet Filter Driver; \??\C:\Windows\system32\drivers\npf.sys [2015-08-21 36600]
R3 5U876UVC;HP Webcam [2 MP series]; C:\Windows\system32\DRIVERS\5U876.sys [2009-11-13 114688]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2011-05-13 35896]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\ADIHdAud.sys [2009-05-18 381440]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\AGRSM.sys [2010-01-26 1163328]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-08-18 4994560]
R3 BCM43XX;Ovladač síťového adaptéru Broadcom 802.11; C:\Windows\system32\DRIVERS\bcmwl6.sys [2013-09-26 4268608]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-06-04 1303728]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
S2 MLPTDR_N;MLPTDR_N; \??\C:\Windows\system32\MLPTDR_N.SYS [2003-07-18 18848]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 78336]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 FTDIBUS;USB Serial Converter Driver; C:\Windows\system32\drivers\ftdibus.sys [2016-10-04 96464]
S3 FTSER2K;USB Serial Port Driver; C:\Windows\system32\drivers\ftser2k.sys [2016-10-04 74864]
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\Windows\system32\drivers\MBAMSwissArmy.sys []
S3 PAC7302;PAC7302 VGA USB Camera; C:\Windows\system32\DRIVERS\PAC7302.SYS [2007-06-14 457856]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 14848]
S3 Revoflt;Revoflt; C:\Windows\system32\DRIVERS\revoflt.sys [2009-12-30 27192]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 Ser2pl;Prolific Serial port driver; C:\Windows\system32\DRIVERS\ser2pl.sys [2010-03-12 81920]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 sscdbus;SAMSUNG USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\sscdbus.sys [2005-08-17 58352]
S3 sscdmdfl;SAMSUNG CDMA Modem Filter; C:\Windows\system32\DRIVERS\sscdmdfl.sys [2005-08-17 8272]
S3 sscdmdm;SAMSUNG CDMA Modem Drivers; C:\Windows\system32\DRIVERS\sscdmdm.sys [2005-08-17 93872]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2013-10-02 49152]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 36352]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\Windows\system32\DRIVERS\VBoxNetAdp.sys [2015-03-02 115672]
S3 VBoxNetFlt;VirtualBox Bridged Networking Service; C:\Windows\system32\DRIVERS\VBoxNetFlt.sys []
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 35968]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2016-12-19 82640]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; %SystemRoot%\System32\svchost.exe -k utcsvc;"ServiceDll"=%SystemRoot%\system32\diagtrack.dll
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2016-11-14 2167696]
R2 PLFlash DeviceIoControl Service;PLFlash DeviceIoControl Service; C:\Windows\system32\IoctlSvc.exe [2006-12-19 81920]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-03 144200]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2016-09-20 324224]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-03 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2017-01-12 102912]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-02-23 1343400]
S4 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-07-13 270016]
S4 AEADIFilters;Andrea ADI Filters Service; C:\Windows\system32\AEADISRV.EXE [2008-07-15 90112]
S4 AgereModemAudio;Agere Modem Call Progress Audio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [2009-12-03 26112]
S4 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-08-18 176128]
S4 EPSON_EB_RPCV4_01;EPSON V5 Service4(01); C:\ProgramData\EPSON\EPW!3 SSRP\E_S40ST7.EXE [2007-12-17 143872]
S4 EPSON_PM_RPCV4_01;EPSON V3 Service4(01); C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE [2007-01-11 113664]
S4 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2011-05-13 26168]
S4 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files\Hp\Common\HPSupportSolutionsFrameworkService.exe [2014-12-11 89864]
S4 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2016-06-11 146888]
S4 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2008-04-08 800040]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2008-01-22 275752]
-----------------EOF-----------------
Blbý můžeš být,ale musíš si umět poradit...
-
Rudy
- Site Admin
- Příspěvky: 119671
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Prosím o kontrolu PC
OK. Log z RSIT je již po provedeném mazání OTM?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Prosím o kontrolu PC
Po tom spuštění OTM se vše zablokovalo a ať jsem klikal na cokoliv tak PC nereagoval a musel jsem jej natvrdo vypnout takže mazání se nedalo provést. Až jsem PC znovu zapnul tak jsem udělal log z RSIT.
Blbý můžeš být,ale musíš si umět poradit...
Přispějete na provoz fóra?