Prosím o kontrolu logu

Zpráva

Astronaut · #1 Příspěvek od **Astronaut** » 06 čer 2017 18:41

Zdravím,
poprosím pěkně o kontrolu logu.

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 05-06-2017
Ran by Cecko (administrator) on CECKO-PC (06-06-2017 19:32:47)
Running from C:\Users\Cecko\Desktop
Loaded Profiles: Cecko (Available Profiles: Cecko)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: ÄŚeĹˇtina (ÄŚeskĂˇ republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(AnchorFree Inc.) C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
(Razer Inc.) D:\Programy\Razer\Razer Game Booster\RzKLService.exe
(LULU SOFTWARE LIMITED) D:\Programy\Soda PDF 3D Reader\creator-ws.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe
(Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Users\Cecko\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [8158240 2009-10-09] (Realtek Semiconductor)
HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [357376 2009-09-16] (Alps Electric Co., Ltd.)
HKLM\...\Run: [QuickSet] => C:\Program Files\Dell\QuickSet\QuickSet.exe [3189016 2009-10-01] (Dell Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508240 2015-08-05] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2010-01-22] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226560 2014-10-16] ()
HKLM-x32\...\Run: [GrooveMonitor] => d:\programy\microsoft office\office12\groovemonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKU\S-1-5-21-2153277708-1227587191-2765475175-1000\...\Run: [Xvid] => C:\Programy\Xvid\CheckUpdate.exe [8192 2011-01-17] ()
HKU\S-1-5-21-2153277708-1227587191-2765475175-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7394584 2014-12-12] (Piriform Ltd)
HKU\S-1-5-21-2153277708-1227587191-2765475175-1000\...\MountPoints2: {e4284d93-de05-11e3-9b84-b8ac6f55ccb5} - G:\Setup.now.exe
Startup: C:\Users\Cecko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\VĂ˝Ĺ™ezy obrazovky a spuĹˇtÄ›nĂ aplikace OneNote 2007.lnk [2016-08-09]
ShortcutTarget: VĂ˝Ĺ™ezy obrazovky a spuĹˇtÄ›nĂ aplikace OneNote 2007.lnk -> D:\Programy\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyServer: [S-1-5-21-2153277708-1227587191-2765475175-1000] => http=127.0.0.1:8555;https=127.0.0.1:8555
Hosts: 127.0.0.1 nlsk.neulion.com
Tcpip\..\Interfaces\{610AFE7D-7EF5-4778-91A3-B1E3904A5AC9}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{C5112575-C41F-401D-9812-E71002D93DF1}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> D:\Programy\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-06-30] (Oracle Corporation)
BHO-x32: Soda PDF 3D Reader Helper -> {841263D3-B7F7-42B7-9C72-0959BDBEC346} -> D:\Programy\Soda PDF 3D Reader\creator-ie-helper.dll [2015-03-06] (LULU SOFTWARE LIMITED)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-06-30] (Oracle Corporation)
Toolbar: HKLM-x32 - Soda PDF 3D Reader Toolbar - {4DB8FC50-B206-44B3-9B28-442F326056B9} - D:\Programy\Soda PDF 3D Reader\creator-ie-plugin.dll [2015-03-06] (LULU SOFTWARE LIMITED)
Handler-x32: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\Programy\Microsoft Office\Office12\GrooveSystemServices.dll [2006-10-27] (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2017-01-02] (Skype Technologies)

FireFox:
========
FF DefaultProfile: tinxjr3p.default
FF ProfilePath: C:\Users\Cecko\AppData\Roaming\Mozilla\Firefox\Profiles\tinxjr3p.default [2017-06-05]
FF Extension: (Firefox Hotfix) - C:\Users\Cecko\AppData\Roaming\Mozilla\Firefox\Profiles\tinxjr3p.default\Extensions\firefox-hotfix@mozilla.org.xpi [2016-09-20]
FF Extension: (Adblock Plus) - C:\Users\Cecko\AppData\Roaming\Mozilla\Firefox\Profiles\tinxjr3p.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-09-20]
FF HKLM-x32\...\Firefox\Extensions: [soda_pdf_3d_reader@sodapdf.com] - D:\Programy\Soda PDF 3D Reader\resources\soda3dreaderfirefoxextension
FF Extension: (Soda PDF 3D Reader Creator) - D:\Programy\Soda PDF 3D Reader\resources\soda3dreaderfirefoxextension [2015-11-09] [not signed]
FF HKU\S-1-5-21-2153277708-1227587191-2765475175-1000\...\Firefox\Extensions: [acewebextension_unlisted@acestream.org] - C:\Users\Cecko\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi => not found
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_23_0_0_162.dll [2016-10-08] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50709.0\npctrl.dll [2016-07-11] ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-08-06] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_162.dll [2016-10-08] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1224194.dll [2016-02-19] (Adobe Systems, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-06-30] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-06-30] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50709.0\npctrl.dll [2016-07-11] ( Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [2014-06-29] (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-05] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-08-06] (Adobe Systems)
FF Plugin HKU\S-1-5-21-2153277708-1227587191-2765475175-1000: @acestream.net/acestreamplugin,version=3.1.7 -> C:\Users\Cecko\AppData\Roaming\ACEStream\player\npace_plugin.dll [No File]
FF Plugin HKU\S-1-5-21-2153277708-1227587191-2765475175-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Cecko\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-07-14] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-2153277708-1227587191-2765475175-1000: pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [2014-06-29] (Pando Networks)
StartMenuInternet: FIREFOX.EXE - C:\Programy\Mozilla Firefox\firefox.exe

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Cecko\AppData\Local\Google\Chrome\User Data\Default [2017-06-06]
CHR Extension: (uBlock Origin) - C:\Users\Cecko\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2017-05-19]
CHR Extension: (The Great Suspender) - C:\Users\Cecko\AppData\Local\Google\Chrome\User Data\Default\Extensions\klbibkeccnjlkjkiokjodocebajanakg [2017-06-05]
CHR Extension: (Platby InternetovĂ©ho obchodu Chrome) - C:\Users\Cecko\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-10]
CHR Extension: (Chrome Media Router) - C:\Users\Cecko\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-12]
CHR HKU\S-1-5-21-2153277708-1227587191-2765475175-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo] - hxxps://clients2.google.com/service/update2/crx

Opera:
=======
OPR Extension: (Adblock Plus) - C:\Users\Cecko\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2016-04-21]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2246256 2017-05-18] (Adobe Systems, Incorporated)
S4 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [2627080 2016-11-11] (LogMeIn Inc.)
S3 HssTrayService; C:\Program Files (x86)\Hotspot Shield\bin\HssTrayService.EXE [96600 2015-12-19] ()
R2 HssWd; C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe [864464 2015-12-19] (AnchorFree Inc.)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2960672 2016-05-27] (IObit)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-11-11] (LogMeIn, Inc.)
S3 LULU Software CrashHandler; D:\Programy\Soda PDF 3D Reader\crash-handler-ws.exe [784152 2015-03-06] (LULU SOFTWARE LIMITED)
S3 Microsoft Office Groove Audit Service; D:\Programy\Microsoft Office\Office12\GrooveAuditService.exe [65824 2006-10-27] (Microsoft Corporation)
R2 RzKLService; D:\Programy\Razer\Razer Game Booster\RzKLService.exe [105448 2013-11-22] (Razer Inc.)
S3 Soda PDF 3D Reader; D:\Programy\Soda PDF 3D Reader\ws.exe [1860888 2015-03-06] (LULU SOFTWARE LIMITED)
R2 Soda PDF 3D Reader Creator; D:\Programy\Soda PDF 3D Reader\creator-ws.exe [623384 2015-03-06] (LULU SOFTWARE LIMITED)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 DDDriver; C:\Windows\System32\drivers\DDDriver64Dcsa.sys [23760 2015-01-31] (Dell Computer Corporation)
S3 DellProf; C:\Windows\System32\drivers\DellProf.sys [23312 2015-01-31] (Dell Computer Corporation)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-05-18] (Disc Soft Ltd)
R3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42088 2015-10-12] (Anchorfree Inc.)
S3 lmimirr; system32\DRIVERS\lmimirr.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-06-06 19:32 - 2017-06-06 19:34 - 00014093 _____ C:\Users\Cecko\Desktop\FRST.txt
2017-06-06 19:31 - 2017-06-06 19:31 - 00112640 _____ (forum.viry.cz) C:\Users\Cecko\Desktop\FRSTLauncher.exe
2017-06-06 19:29 - 2017-06-06 19:29 - 00000000 ____D C:\Users\Cecko\Desktop\FRST-OlderVersion
2017-06-06 14:19 - 2017-06-06 15:53 - 904040937 _____ C:\Users\Cecko\Downloads\HledĂˇm-Amy_10-21_00-23-00_BARRANDOV-TV.mp4
2017-06-05 12:46 - 2017-06-05 12:46 - 00000000 ____D C:\Users\Cecko\Downloads\carnivalee_freakshow
2017-06-05 09:44 - 2017-06-05 09:44 - 00000000 ____D C:\Users\Cecko\Downloads\Photos (5)
2017-06-05 06:45 - 2017-06-05 11:38 - 00000000 ____D C:\Users\Cecko\Downloads\Zabransky
2017-06-04 13:05 - 2017-06-04 13:05 - 04110280 _____ C:\Users\Cecko\Downloads\adwcleaner_6.047 (1).exe
2017-06-01 23:31 - 2017-06-01 23:31 - 00151958 _____ C:\Users\Cecko\Downloads\smernice-ke-stridavemu-startu-hrace.pdf
2017-06-01 23:28 - 2017-06-01 23:28 - 00360514 _____ C:\Users\Cecko\Downloads\soutezni-rad-bsmk.pdf
2017-06-01 11:15 - 2017-06-01 11:15 - 00040905 _____ C:\Users\Cecko\Downloads\El-cadaver-de-Anna-Fritz(0000279918).srt
2017-06-01 10:39 - 2017-06-01 10:39 - 02942436 _____ C:\Users\Cecko\Downloads\propozice-k-3-eko-century-lize-2016-2017.pdf
2017-05-31 12:23 - 2017-05-31 12:23 - 05011923 _____ C:\Users\Cecko\Downloads\the-european-elite-2016.pdf
2017-05-31 10:32 - 2017-05-31 10:32 - 04995416 _____ (Microsoft Corporation) C:\Users\Cecko\Downloads\vcredist_x86 (4).exe
2017-05-31 10:30 - 2017-05-31 10:30 - 05673816 _____ (Microsoft Corporation) C:\Users\Cecko\Downloads\vcredist_x64 (5).exe
2017-05-31 07:08 - 2017-05-31 07:41 - 597323775 _____ C:\Users\Cecko\Downloads\Prach-a-broky-HD-(CZ-dabing).mp4
2017-05-31 02:28 - 2017-05-31 02:28 - 00014511 _____ C:\Users\Cecko\Downloads\[CzT]Naprosti_cizinci_Perfetti_Sconosciuti_2016_IT_ (1).torrent
2017-05-30 23:29 - 2017-05-30 23:29 - 00014512 _____ C:\Users\Cecko\Downloads\[CzT]Naprosti_cizinci_Perfetti_Sconosciuti_2016_IT_.torrent
2017-05-30 21:01 - 2017-05-30 21:01 - 00000000 ____D C:\Users\Cecko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DispeÄŤer
2017-05-30 21:00 - 2017-05-30 21:00 - 03741555 _____ C:\Users\Cecko\Downloads\dispecer.exe
2017-05-30 11:00 - 2017-05-30 11:00 - 00000647 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CurveFever.lnk
2017-05-30 11:00 - 2017-05-30 11:00 - 00000000 ____D C:\Users\Cecko\AppData\LocalLow\Curve Fever
2017-05-30 10:58 - 2017-05-30 10:59 - 12625896 _____ (Curve Fever ) C:\Users\Cecko\Downloads\CurveFever.exe
2017-05-29 15:50 - 2017-05-29 15:50 - 07201336 _____ (Microsoft Corporation) C:\Users\Cecko\Downloads\vcredist_x64 (4).exe
2017-05-29 15:49 - 2017-05-29 15:49 - 04995416 _____ (Microsoft Corporation) C:\Users\Cecko\Downloads\vcredist_x86 (3).exe
2017-05-29 15:48 - 2017-05-29 15:49 - 04995416 _____ (Microsoft Corporation) C:\Users\Cecko\Downloads\vcredist_x86 (2).exe
2017-05-29 15:48 - 2017-05-29 15:48 - 05673816 _____ (Microsoft Corporation) C:\Users\Cecko\Downloads\vcredist_x64 (3).exe
2017-05-25 18:28 - 2017-05-28 19:58 - 01166242 _____ C:\Users\Cecko\Downloads\pecan-rozdelane.psd
2017-05-24 21:02 - 2017-05-24 21:02 - 01002237 _____ C:\Users\Cecko\Downloads\futsalovy-klub-deportivo-ROZDELANY.psd
2017-05-24 19:56 - 2017-05-24 19:56 - 00000829 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC 2015.lnk
2017-05-24 19:56 - 2017-05-24 19:56 - 00000000 ____D C:\Users\Cecko\Documents\Adobe
2017-05-24 19:56 - 2017-05-24 19:56 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2017-05-24 19:51 - 2017-05-24 20:16 - 00000000 ____D C:\Program Files\Common Files\Adobe
2017-05-24 19:51 - 2017-05-24 20:11 - 00001534 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Application Manager.lnk
2017-05-24 19:51 - 2017-05-24 20:11 - 00001522 _____ C:\Users\Public\Desktop\Adobe Application Manager.lnk
2017-05-24 19:22 - 2017-05-24 19:22 - 00141352 _____ C:\Users\Cecko\Downloads\[CzT]Adobe_Photoshop_CC_2015_16_1_2_Final_x86_x64_CZ_.torrent
2017-05-24 17:39 - 2017-05-24 17:39 - 00553759 _____ C:\Users\Cecko\Downloads\MKalousekNFPKObsahla.pdf
2017-05-24 16:36 - 2017-05-24 16:37 - 00705760 _____ C:\Users\Cecko\Downloads\Promlceni_a_jeho_uprava_v_novem_trestnim_zakoniku_zayhihkc.pdf
2017-05-19 22:29 - 2017-05-19 22:30 - 04110280 _____ C:\Users\Cecko\Downloads\adwcleaner_6.047.exe
2017-05-16 00:25 - 2017-06-04 12:47 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-05-16 00:25 - 2017-05-16 00:25 - 00002047 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2017-05-16 00:25 - 2017-05-16 00:25 - 00000000 ____D C:\Program Files (x86)\Adobe
2017-05-12 00:25 - 2017-05-12 00:26 - 11101248 _____ C:\Users\Cecko\Documents\Fejk Gol.mp4
2017-05-08 05:01 - 2017-05-08 05:01 - 06091204 _____ C:\Users\Cecko\Documents\kopnuti.mpg
2017-05-08 05:01 - 2017-05-08 05:01 - 00000180 _____ C:\Users\Cecko\Documents\kopnuti.mpg.sfl
2017-05-08 04:55 - 2017-05-08 04:56 - 17447440 _____ C:\Users\Cecko\Documents\kopnuti3.mp4
2017-05-08 04:51 - 2017-05-08 04:53 - 00007872 _____ C:\Users\Cecko\Documents\kopnuti-brusli.mp4.sfk
2017-05-08 04:41 - 2017-05-08 04:42 - 05488924 _____ C:\Users\Cecko\Documents\kopnuti2.mp4
2017-05-08 04:33 - 2017-05-08 04:34 - 07485111 _____ C:\Users\Cecko\Documents\kopnuti-brusli.mp4
2017-05-08 04:28 - 2017-05-08 04:29 - 00186080 _____ C:\Users\Cecko\Downloads\Slovenia - Canada Highlights IIHFWorlds 2017.mp4.sfk
2017-05-08 04:27 - 2017-05-08 04:28 - 03265722 _____ C:\Users\Cecko\Downloads\Slovenia - Canada Highlights IIHFWorlds 2017.m4a
2017-05-08 00:10 - 2017-05-08 00:11 - 00064546 _____ C:\Users\Cecko\Downloads\IHM416000_85B_11_0.pdf
2017-05-07 09:43 - 2017-05-07 09:43 - 00090294 _____ C:\Users\Cecko\Downloads\IHM416000_84_9_0.pdf

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-06-06 19:32 - 2015-05-21 21:40 - 00000000 ____D C:\FRST
2017-06-06 19:29 - 2016-08-24 03:47 - 02433536 _____ (Farbar) C:\Users\Cecko\Desktop\FRST64.exe
2017-06-06 19:28 - 2014-05-26 01:52 - 00000000 ____D C:\Users\Cecko\Desktop\hamachi_2-0-1-66-cz(1)
2017-06-06 19:24 - 2017-02-08 10:11 - 00006740 _____ C:\Users\Cecko\Desktop\0802.txt
2017-06-06 18:19 - 2014-04-28 20:54 - 00000000 ____D C:\Users\Cecko\AppData\Roaming\Skype
2017-06-06 13:32 - 2014-05-10 17:48 - 00000000 ____D C:\Users\Cecko\AppData\Roaming\uTorrent
2017-06-05 14:05 - 2009-07-14 06:45 - 00014240 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-06-05 14:05 - 2009-07-14 06:45 - 00014240 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-06-05 13:57 - 2014-08-15 23:16 - 00000000 ____D C:\Users\Cecko\AppData\Local\Adobe
2017-06-05 13:57 - 2014-04-28 19:28 - 00116176 _____ C:\Users\Cecko\AppData\Local\GDIPFONTCACHEV1.DAT
2017-06-05 13:57 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-06-05 13:57 - 2009-07-14 06:45 - 00432400 _____ C:\Windows\system32\FNTCACHE.DAT
2017-06-05 13:57 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2017-06-05 07:59 - 2016-06-02 03:21 - 00000000 ____D C:\ProgramData\Package Cache
2017-06-04 13:09 - 2016-07-15 15:57 - 00000000 ____D C:\ProgramData\ProductData
2017-06-04 13:09 - 2014-04-28 20:19 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2017-06-04 13:07 - 2014-07-25 16:25 - 00000000 ____D C:\AdwCleaner
2017-06-02 09:20 - 2014-11-06 01:04 - 00003846 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1398709478
2017-06-02 09:20 - 2014-04-28 20:24 - 00000000 ____D C:\Program Files (x86)\Opera
2017-06-02 01:10 - 2016-07-15 15:57 - 00000000 ____D C:\Users\Cecko\AppData\Roaming\IObit
2017-06-02 01:10 - 2016-07-15 15:57 - 00000000 ____D C:\Program Files (x86)\IObit
2017-05-27 19:35 - 2014-04-29 04:28 - 00671734 _____ C:\Windows\system32\perfh005.dat
2017-05-27 19:35 - 2014-04-29 04:28 - 00142298 _____ C:\Windows\system32\perfc005.dat
2017-05-27 19:35 - 2009-07-14 07:13 - 01590850 _____ C:\Windows\system32\PerfStringBackup.INI
2017-05-24 20:08 - 2014-06-13 13:18 - 00000000 ____D C:\ProgramData\Adobe
2017-05-24 20:08 - 2014-04-28 20:20 - 00000000 ____D C:\Users\Cecko\AppData\Roaming\Adobe
2017-05-23 04:20 - 2014-10-19 01:07 - 00000000 ____D C:\Users\Cecko\AppData\Roaming\vlc
2017-05-17 06:31 - 2014-05-16 17:56 - 00000000 ____D C:\Users\Cecko\Downloads\Subs
2017-05-16 00:26 - 2015-05-16 15:53 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2017-05-12 00:13 - 2016-12-28 15:29 - 00000000 ____D C:\Users\Cecko\Documents\Sony Vegas project
2017-05-08 04:24 - 2016-10-24 10:06 - 00000000 ____D C:\Users\Cecko\AppData\Roaming\YouTube Downloader

==================== Files in the root of some directories =======

2016-08-27 12:17 - 2017-03-11 00:30 - 0010240 _____ () C:\Users\Cecko\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-11-10 18:48 - 2015-02-04 07:05 - 0007607 _____ () C:\Users\Cecko\AppData\Local\Resmon.ResmonCfg
2016-02-18 19:17 - 2016-02-18 19:17 - 0000003 _____ () C:\Users\Cecko\AppData\Local\updater.log
2016-02-18 19:17 - 2016-02-18 19:17 - 0000424 _____ () C:\Users\Cecko\AppData\Local\UserProducts.xml

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

==================== MBR and Partition Table ==================

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

==================== Alternate Data Streams (whitelisted) ==================

==================== Security Center ==================

AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Cecko\Desktop" je 28 MB.

***** Startup Programs *****

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring
"C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite
"d:\programy\daemon tools lite\dtlite.exe" -autorun [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\dellsupportcenter
"C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe" /P dellsupportcenter [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Discord
C:\Users\Cecko\AppData\Local\Discord\app-0.0.297\Discord.exe [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor
C:\Users\Cecko\Downloads\hotkeyp\HotkeyP.exe 0 [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotkeyP
C:\Users\Cecko\AppData\Roaming\ICQM\icq.exe -CU [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\icq
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui
"D:\Programy\Steam\steam.exe" -silent [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam
Re§im ECHO je vypnut.

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Gamma Loader.lnk
C:\PROGRA~2\COMMON~1\Adobe\CALIBR~1\ADOBEG~1.EXE [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Cecko^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^MultiSkypeLauncher.lnk
D:\Programy\MULTIS~1\MULTIS~1.EXE /autologin [x]

***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000

==================== End Of Log ==============================

#2 Příspěvek od **Rudy** » 06 čer 2017 18:57

Zdravím!
Spusťte tuto utilitu:

Stáhněte AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vložte.

Astronaut · #3 Příspěvek od **Astronaut** » 06 čer 2017 19:13

# AdwCleaner v6.047 - Logfile created 06/06/2017 at 20:05:59
# Updated on 19/05/2017 by Malwarebytes
# Database : 2017-06-06.1 [Server]
# Operating System : Windows 7 Home Premium Service Pack 1 (X64)
# Username : Cecko - CECKO-PC
# Running from : C:\Users\Cecko\Downloads\adwcleaner_6.047 (2).exe
# Mode: Clean
# Support : https://www.malwarebytes.com/support

***** [ Services ] *****

***** [ Folders ] *****

***** [ Files ] *****

***** [ DLL ] *****

***** [ WMI ] *****

***** [ Shortcuts ] *****

***** [ Scheduled Tasks ] *****

***** [ Registry ] *****

[-] Key deleted: HKU\S-1-5-21-2153277708-1227587191-2765475175-1000\Software\Conduit
[#] Key deleted on reboot: HKCU\Software\Conduit
[#] Key deleted on reboot: [x64] HKCU\Software\Conduit

***** [ Web browsers ] *****

*************************

:: "Tracing" keys deleted
:: Winsock settings cleared

*************************

C:\AdwCleaner\AdwCleaner[C10].txt - [6083 Bytes] - [23/08/2016 18:22:29]
C:\AdwCleaner\AdwCleaner[C11].txt - [5896 Bytes] - [24/08/2016 12:52:42]
C:\AdwCleaner\AdwCleaner[C12].txt - [6206 Bytes] - [30/08/2016 13:54:52]
C:\AdwCleaner\AdwCleaner[C13].txt - [11867 Bytes] - [04/10/2016 07:57:11]
C:\AdwCleaner\AdwCleaner[C14].txt - [6426 Bytes] - [24/10/2016 12:54:08]
C:\AdwCleaner\AdwCleaner[C15].txt - [6775 Bytes] - [23/12/2016 23:40:47]
C:\AdwCleaner\AdwCleaner[C16].txt - [6796 Bytes] - [17/01/2017 15:18:36]
C:\AdwCleaner\AdwCleaner[C17].txt - [6948 Bytes] - [19/01/2017 01:12:02]
C:\AdwCleaner\AdwCleaner[C18].txt - [7096 Bytes] - [26/01/2017 14:16:36]
C:\AdwCleaner\AdwCleaner[C19].txt - [7240 Bytes] - [20/02/2017 20:04:15]
C:\AdwCleaner\AdwCleaner[C1].txt - [7199 Bytes] - [14/02/2016 19:41:03]
C:\AdwCleaner\AdwCleaner[C20].txt - [7388 Bytes] - [03/03/2017 00:43:14]
C:\AdwCleaner\AdwCleaner[C21].txt - [7576 Bytes] - [22/03/2017 11:05:14]
C:\AdwCleaner\AdwCleaner[C22].txt - [7913 Bytes] - [24/03/2017 18:44:28]
C:\AdwCleaner\AdwCleaner[C23].txt - [7910 Bytes] - [16/04/2017 22:32:40]
C:\AdwCleaner\AdwCleaner[C24].txt - [3850 Bytes] - [15/10/2015 20:33:25]
C:\AdwCleaner\AdwCleaner[C25].txt - [2351 Bytes] - [27/12/2015 16:52:28]
C:\AdwCleaner\AdwCleaner[C26].txt - [1210 Bytes] - [14/01/2016 17:39:34]
C:\AdwCleaner\AdwCleaner[C27].txt - [7866 Bytes] - [18/04/2017 23:54:31]
C:\AdwCleaner\AdwCleaner[C28].txt - [8132 Bytes] - [23/04/2017 20:27:16]
C:\AdwCleaner\AdwCleaner[C29].txt - [8084 Bytes] - [24/04/2017 20:47:27]
C:\AdwCleaner\AdwCleaner[C2].txt - [5045 Bytes] - [28/04/2016 23:00:13]
C:\AdwCleaner\AdwCleaner[C30].txt - [8502 Bytes] - [29/04/2017 13:55:11]
C:\AdwCleaner\AdwCleaner[C31].txt - [8650 Bytes] - [11/05/2017 21:52:10]
C:\AdwCleaner\AdwCleaner[C32].txt - [8797 Bytes] - [12/05/2017 13:54:43]
C:\AdwCleaner\AdwCleaner[C33].txt - [8676 Bytes] - [12/05/2017 22:20:02]
C:\AdwCleaner\AdwCleaner[C34].txt - [9120 Bytes] - [14/05/2017 20:39:57]
C:\AdwCleaner\AdwCleaner[C35].txt - [9164 Bytes] - [15/05/2017 16:30:15]
C:\AdwCleaner\AdwCleaner[C36].txt - [9312 Bytes] - [18/05/2017 20:19:19]
C:\AdwCleaner\AdwCleaner[C37].txt - [9460 Bytes] - [19/05/2017 09:52:22]
C:\AdwCleaner\AdwCleaner[C38].txt - [9685 Bytes] - [19/05/2017 22:31:29]
C:\AdwCleaner\AdwCleaner[C39].txt - [9755 Bytes] - [21/05/2017 13:12:44]
C:\AdwCleaner\AdwCleaner[C3].txt - [5170 Bytes] - [04/06/2016 07:40:15]
C:\AdwCleaner\AdwCleaner[C40].txt - [9904 Bytes] - [25/05/2017 13:00:18]
C:\AdwCleaner\AdwCleaner[C41].txt - [9861 Bytes] - [27/05/2017 19:27:40]
C:\AdwCleaner\AdwCleaner[C42].txt - [10088 Bytes] - [28/05/2017 16:04:04]
C:\AdwCleaner\AdwCleaner[C43].txt - [10160 Bytes] - [28/05/2017 21:16:28]
C:\AdwCleaner\AdwCleaner[C44].txt - [10291 Bytes] - [28/05/2017 21:16:34]
C:\AdwCleaner\AdwCleaner[C45].txt - [10385 Bytes] - [29/05/2017 14:24:56]
C:\AdwCleaner\AdwCleaner[C46].txt - [10728 Bytes] - [31/05/2017 09:11:33]
C:\AdwCleaner\AdwCleaner[C47].txt - [10878 Bytes] - [02/06/2017 01:07:06]
C:\AdwCleaner\AdwCleaner[C48].txt - [10918 Bytes] - [04/06/2017 13:07:39]
C:\AdwCleaner\AdwCleaner[C49].txt - [4078 Bytes] - [06/06/2017 20:05:59]
C:\AdwCleaner\AdwCleaner[C4].txt - [5055 Bytes] - [12/07/2016 10:17:38]
C:\AdwCleaner\AdwCleaner[C5].txt - [5194 Bytes] - [15/07/2016 16:04:20]
C:\AdwCleaner\AdwCleaner[C9].txt - [5904 Bytes] - [22/08/2016 02:23:57]
C:\AdwCleaner\AdwCleaner[R0].txt - [1244 Bytes] - [25/07/2014 16:26:00]
C:\AdwCleaner\AdwCleaner[R10].txt - [2990 Bytes] - [18/12/2014 04:35:07]
C:\AdwCleaner\AdwCleaner[R11].txt - [2208 Bytes] - [23/12/2014 20:24:30]
C:\AdwCleaner\AdwCleaner[R12].txt - [2372 Bytes] - [13/01/2015 21:47:50]
C:\AdwCleaner\AdwCleaner[R13].txt - [2495 Bytes] - [18/01/2015 21:26:59]
C:\AdwCleaner\AdwCleaner[R14].txt - [2642 Bytes] - [27/01/2015 21:45:29]
C:\AdwCleaner\AdwCleaner[R15].txt - [2764 Bytes] - [28/01/2015 21:27:40]
C:\AdwCleaner\AdwCleaner[R16].txt - [3175 Bytes] - [06/02/2015 10:33:19]
C:\AdwCleaner\AdwCleaner[R17].txt - [3228 Bytes] - [14/03/2015 19:46:25]
C:\AdwCleaner\AdwCleaner[R18].txt - [3202 Bytes] - [22/03/2015 21:53:30]
C:\AdwCleaner\AdwCleaner[R19].txt - [22906 Bytes] - [21/05/2015 20:50:57]
C:\AdwCleaner\AdwCleaner[R1].txt - [7654 Bytes] - [31/08/2014 21:51:18]
C:\AdwCleaner\AdwCleaner[R20].txt - [3457 Bytes] - [23/05/2015 04:33:15]
C:\AdwCleaner\AdwCleaner[R21].txt - [7992 Bytes] - [18/06/2015 16:19:00]
C:\AdwCleaner\AdwCleaner[R22].txt - [3817 Bytes] - [14/07/2015 15:48:43]
C:\AdwCleaner\AdwCleaner[R23].txt - [3876 Bytes] - [14/07/2015 16:04:49]
C:\AdwCleaner\AdwCleaner[R2].txt - [1558 Bytes] - [14/09/2014 21:31:39]
C:\AdwCleaner\AdwCleaner[R3].txt - [1243 Bytes] - [28/09/2014 02:03:54]
C:\AdwCleaner\AdwCleaner[R4].txt - [1624 Bytes] - [11/10/2014 22:58:32]
C:\AdwCleaner\AdwCleaner[R5].txt - [1684 Bytes] - [17/10/2014 23:05:00]
C:\AdwCleaner\AdwCleaner[R6].txt - [1620 Bytes] - [26/10/2014 05:12:59]
C:\AdwCleaner\AdwCleaner[R7].txt - [1773 Bytes] - [28/10/2014 16:09:37]
C:\AdwCleaner\AdwCleaner[R8].txt - [2274 Bytes] - [13/11/2014 00:29:59]
C:\AdwCleaner\AdwCleaner[R9].txt - [2015 Bytes] - [27/11/2014 17:43:17]
C:\AdwCleaner\AdwCleaner[S0].txt - [1304 Bytes] - [25/07/2014 16:27:13]
C:\AdwCleaner\AdwCleaner[S10].txt - [3027 Bytes] - [18/12/2014 04:43:20]
C:\AdwCleaner\AdwCleaner[S11].txt - [2232 Bytes] - [23/12/2014 20:27:08]
C:\AdwCleaner\AdwCleaner[S12].txt - [2396 Bytes] - [13/01/2015 21:49:36]
C:\AdwCleaner\AdwCleaner[S13].txt - [2518 Bytes] - [18/01/2015 21:29:15]
C:\AdwCleaner\AdwCleaner[S14].txt - [2665 Bytes] - [27/01/2015 21:48:19]
C:\AdwCleaner\AdwCleaner[S15].txt - [2787 Bytes] - [28/01/2015 21:29:00]
C:\AdwCleaner\AdwCleaner[S16].txt - [3172 Bytes] - [06/02/2015 10:35:24]
C:\AdwCleaner\AdwCleaner[S17].txt - [3260 Bytes] - [14/03/2015 19:48:29]
C:\AdwCleaner\AdwCleaner[S18].txt - [3232 Bytes] - [22/03/2015 21:58:39]
C:\AdwCleaner\AdwCleaner[S19].txt - [15444 Bytes] - [21/05/2015 20:52:12]
C:\AdwCleaner\AdwCleaner[S1].txt - [14627 Bytes] - [31/08/2014 21:55:12]
C:\AdwCleaner\AdwCleaner[S20].txt - [3519 Bytes] - [23/05/2015 04:34:35]
C:\AdwCleaner\AdwCleaner[S21].txt - [6044 Bytes] - [18/06/2015 16:22:15]
C:\AdwCleaner\AdwCleaner[S22].txt - [3891 Bytes] - [14/07/2015 16:13:01]
C:\AdwCleaner\AdwCleaner[S25].txt - [3552 Bytes] - [15/10/2015 20:31:55]
C:\AdwCleaner\AdwCleaner[S26].txt - [2175 Bytes] - [27/12/2015 16:50:09]
C:\AdwCleaner\AdwCleaner[S27].txt - [1094 Bytes] - [14/01/2016 17:38:09]
C:\AdwCleaner\AdwCleaner[S28].txt - [5939 Bytes] - [22/08/2016 02:23:09]
C:\AdwCleaner\AdwCleaner[S29].txt - [5570 Bytes] - [22/08/2016 02:28:34]
C:\AdwCleaner\AdwCleaner[S2].txt - [6608 Bytes] - [14/09/2014 21:35:55]
C:\AdwCleaner\AdwCleaner[S30].txt - [6089 Bytes] - [23/08/2016 17:59:10]
C:\AdwCleaner\AdwCleaner[S31].txt - [5894 Bytes] - [24/08/2016 03:45:26]
C:\AdwCleaner\AdwCleaner[S32].txt - [5970 Bytes] - [24/08/2016 12:52:09]
C:\AdwCleaner\AdwCleaner[S33].txt - [6255 Bytes] - [30/08/2016 13:54:19]
C:\AdwCleaner\AdwCleaner[S34].txt - [6162 Bytes] - [31/08/2016 01:17:57]
C:\AdwCleaner\AdwCleaner[S35].txt - [11286 Bytes] - [04/10/2016 07:54:33]
C:\AdwCleaner\AdwCleaner[S36].txt - [6519 Bytes] - [24/10/2016 12:53:28]
C:\AdwCleaner\AdwCleaner[S37].txt - [6548 Bytes] - [24/10/2016 13:02:09]
C:\AdwCleaner\AdwCleaner[S38].txt - [6858 Bytes] - [23/12/2016 23:40:39]
C:\AdwCleaner\AdwCleaner[S39].txt - [6889 Bytes] - [17/01/2017 15:18:26]
C:\AdwCleaner\AdwCleaner[S3].txt - [6337 Bytes] - [28/09/2014 02:06:37]
C:\AdwCleaner\AdwCleaner[S40].txt - [7041 Bytes] - [19/01/2017 01:10:59]
C:\AdwCleaner\AdwCleaner[S41].txt - [7189 Bytes] - [26/01/2017 14:12:22]
C:\AdwCleaner\AdwCleaner[S42].txt - [7333 Bytes] - [20/02/2017 20:03:51]
C:\AdwCleaner\AdwCleaner[S43].txt - [7481 Bytes] - [03/03/2017 00:42:58]
C:\AdwCleaner\AdwCleaner[S44].txt - [7638 Bytes] - [22/03/2017 11:05:00]
C:\AdwCleaner\AdwCleaner[S45].txt - [7952 Bytes] - [24/03/2017 18:43:59]
C:\AdwCleaner\AdwCleaner[S46].txt - [7969 Bytes] - [16/04/2017 22:32:09]
C:\AdwCleaner\AdwCleaner[S47].txt - [7998 Bytes] - [18/04/2017 23:54:16]
C:\AdwCleaner\AdwCleaner[S48].txt - [8225 Bytes] - [23/04/2017 20:27:00]
C:\AdwCleaner\AdwCleaner[S49].txt - [8250 Bytes] - [24/04/2017 20:47:19]
C:\AdwCleaner\AdwCleaner[S4].txt - [6618 Bytes] - [11/10/2014 23:02:45]
C:\AdwCleaner\AdwCleaner[S50].txt - [8561 Bytes] - [29/04/2017 13:55:00]
C:\AdwCleaner\AdwCleaner[S51].txt - [8709 Bytes] - [11/05/2017 21:51:05]
C:\AdwCleaner\AdwCleaner[S52].txt - [8856 Bytes] - [12/05/2017 13:54:32]
C:\AdwCleaner\AdwCleaner[S53].txt - [8842 Bytes] - [12/05/2017 22:19:51]
C:\AdwCleaner\AdwCleaner[S54].txt - [9203 Bytes] - [14/05/2017 20:39:03]
C:\AdwCleaner\AdwCleaner[S55].txt - [9257 Bytes] - [15/05/2017 16:29:37]
C:\AdwCleaner\AdwCleaner[S56].txt - [9405 Bytes] - [18/05/2017 20:19:03]
C:\AdwCleaner\AdwCleaner[S57].txt - [9553 Bytes] - [19/05/2017 09:52:15]
C:\AdwCleaner\AdwCleaner[S58].txt - [9744 Bytes] - [19/05/2017 22:31:18]
C:\AdwCleaner\AdwCleaner[S59].txt - [9848 Bytes] - [21/05/2017 13:12:31]
C:\AdwCleaner\AdwCleaner[S5].txt - [6804 Bytes] - [17/10/2014 23:12:18]
C:\AdwCleaner\AdwCleaner[S60].txt - [9997 Bytes] - [25/05/2017 12:59:59]
C:\AdwCleaner\AdwCleaner[S61].txt - [10026 Bytes] - [27/05/2017 19:27:24]
C:\AdwCleaner\AdwCleaner[S62].txt - [10219 Bytes] - [28/05/2017 16:03:49]
C:\AdwCleaner\AdwCleaner[S63].txt - [10325 Bytes] - [28/05/2017 21:16:18]
C:\AdwCleaner\AdwCleaner[S64].txt - [10551 Bytes] - [29/05/2017 14:24:43]
C:\AdwCleaner\AdwCleaner[S65].txt - [10821 Bytes] - [31/05/2017 09:11:17]
C:\AdwCleaner\AdwCleaner[S66].txt - [10971 Bytes] - [02/06/2017 01:06:46]
C:\AdwCleaner\AdwCleaner[S67].txt - [11050 Bytes] - [04/06/2017 13:07:23]
C:\AdwCleaner\AdwCleaner[S68].txt - [11275 Bytes] - [06/06/2017 20:05:45]
C:\AdwCleaner\AdwCleaner[S6].txt - [1596 Bytes] - [26/10/2014 05:31:24]
C:\AdwCleaner\AdwCleaner[S7].txt - [1790 Bytes] - [28/10/2014 18:06:18]
C:\AdwCleaner\AdwCleaner[S8].txt - [2304 Bytes] - [13/11/2014 00:33:29]
C:\AdwCleaner\AdwCleaner[S9].txt - [2039 Bytes] - [27/11/2014 17:46:37]

########## EOF - C:\AdwCleaner\AdwCleaner[C49].txt - [11097 Bytes] ##########

#4 Příspěvek od **Rudy** » 06 čer 2017 20:00

Dejte nový log FRST.

Astronaut · #5 Příspěvek od **Astronaut** » 06 čer 2017 20:28

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 05-06-2017
Ran by Cecko (administrator) on CECKO-PC (06-06-2017 21:25:06)
Running from C:\Users\Cecko\Desktop
Loaded Profiles: Cecko (Available Profiles: Cecko)
Platform: Windows 7 Home Premium Service Pack 1 (X64) Language: ÄŚeĹˇtina (ÄŚeskĂˇ republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AMD) C:\Windows\System32\atiesrxx.exe
(AMD) C:\Windows\System32\atieclxx.exe
(Andrea Electronics Corporation) C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe
(Adobe Systems, Incorporated) C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe
(AnchorFree Inc.) C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe
(LogMeIn, Inc.) C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe
(Razer Inc.) D:\Programy\Razer\Razer Game Booster\RzKLService.exe
(LULU SOFTWARE LIMITED) D:\Programy\Soda PDF 3D Reader\creator-ws.exe
(Realtek Semiconductor) C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\Apoint.exe
(Dell Inc.) C:\Program Files\Dell\QuickSet\quickset.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApMsgFwd.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\hidfind.exe
(Alps Electric Co., Ltd.) C:\Program Files\DellTPad\ApntEx.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner64.exe
(Advanced Micro Devices Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(ATI Technologies Inc.) C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Skype Technologies S.A.) C:\Program Files (x86)\Skype\Phone\Skype.exe
(Skype Technologies) C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe
(Skype Technologies) C:\Program Files (x86)\Skype\Browser\SkypeBrowserHost.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Users\Cecko\Desktop\FRSTLauncher.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [RtHDVCpl] => C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [8158240 2009-10-09] (Realtek Semiconductor)
HKLM\...\Run: [Apoint] => C:\Program Files\DellTPad\Apoint.exe [357376 2009-09-16] (Alps Electric Co., Ltd.)
HKLM\...\Run: [QuickSet] => C:\Program Files\Dell\QuickSet\QuickSet.exe [3189016 2009-10-01] (Dell Inc.)
HKLM\...\Run: [AdobeAAMUpdater-1.0] => C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [508240 2015-08-05] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [StartCCC] => C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2010-01-22] (Advanced Micro Devices, Inc.)
HKLM-x32\...\Run: [Lightshot] => C:\Program Files (x86)\Skillbrains\lightshot\Lightshot.exe [226560 2014-10-16] ()
HKLM-x32\...\Run: [GrooveMonitor] => d:\programy\microsoft office\office12\groovemonitor.exe [31016 2006-10-27] (Microsoft Corporation)
HKU\S-1-5-21-2153277708-1227587191-2765475175-1000\...\Run: [Xvid] => C:\Programy\Xvid\CheckUpdate.exe [8192 2011-01-17] ()
HKU\S-1-5-21-2153277708-1227587191-2765475175-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner64.exe [7394584 2014-12-12] (Piriform Ltd)
HKU\S-1-5-21-2153277708-1227587191-2765475175-1000\...\MountPoints2: {e4284d93-de05-11e3-9b84-b8ac6f55ccb5} - G:\Setup.now.exe
Startup: C:\Users\Cecko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\VĂ˝Ĺ™ezy obrazovky a spuĹˇtÄ›nĂ aplikace OneNote 2007.lnk [2016-08-09]
ShortcutTarget: VĂ˝Ĺ™ezy obrazovky a spuĹˇtÄ›nĂ aplikace OneNote 2007.lnk -> D:\Programy\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

ProxyServer: [S-1-5-21-2153277708-1227587191-2765475175-1000] => http=127.0.0.1:8555;https=127.0.0.1:8555
Hosts: 127.0.0.1 nlsk.neulion.com
Tcpip\..\Interfaces\{610AFE7D-7EF5-4778-91A3-B1E3904A5AC9}: [DhcpNameServer] 192.168.0.1
Tcpip\..\Interfaces\{C5112575-C41F-401D-9812-E71002D93DF1}: [DhcpNameServer] 192.168.0.1

Internet Explorer:
==================
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.google.com
BHO-x32: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> D:\Programy\Microsoft Office\Office12\GrooveShellExtensions.dll [2006-10-27] (Microsoft Corporation)
BHO-x32: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\ssv.dll [2016-06-30] (Oracle Corporation)
BHO-x32: Soda PDF 3D Reader Helper -> {841263D3-B7F7-42B7-9C72-0959BDBEC346} -> D:\Programy\Soda PDF 3D Reader\creator-ie-helper.dll [2015-03-06] (LULU SOFTWARE LIMITED)
BHO-x32: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\jp2ssv.dll [2016-06-30] (Oracle Corporation)
Toolbar: HKLM-x32 - Soda PDF 3D Reader Toolbar - {4DB8FC50-B206-44B3-9B28-442F326056B9} - D:\Programy\Soda PDF 3D Reader\creator-ie-plugin.dll [2015-03-06] (LULU SOFTWARE LIMITED)
Handler-x32: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\Programy\Microsoft Office\Office12\GrooveSystemServices.dll [2006-10-27] (Microsoft Corporation)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll [2017-01-02] (Skype Technologies)

FireFox:
========
FF DefaultProfile: tinxjr3p.default
FF ProfilePath: C:\Users\Cecko\AppData\Roaming\Mozilla\Firefox\Profiles\tinxjr3p.default [2017-06-06]
FF Extension: (Firefox Hotfix) - C:\Users\Cecko\AppData\Roaming\Mozilla\Firefox\Profiles\tinxjr3p.default\Extensions\firefox-hotfix@mozilla.org.xpi [2016-09-20]
FF Extension: (Adblock Plus) - C:\Users\Cecko\AppData\Roaming\Mozilla\Firefox\Profiles\tinxjr3p.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2016-09-20]
FF HKLM-x32\...\Firefox\Extensions: [soda_pdf_3d_reader@sodapdf.com] - D:\Programy\Soda PDF 3D Reader\resources\soda3dreaderfirefoxextension
FF Extension: (Soda PDF 3D Reader Creator) - D:\Programy\Soda PDF 3D Reader\resources\soda3dreaderfirefoxextension [2015-11-09] [not signed]
FF HKU\S-1-5-21-2153277708-1227587191-2765475175-1000\...\Firefox\Extensions: [acewebextension_unlisted@acestream.org] - C:\Users\Cecko\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi => not found
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF64_23_0_0_162.dll [2016-10-08] ()
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.50709.0\npctrl.dll [2016-07-11] ( Microsoft Corporation)
FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect64.dll [2015-08-06] (Adobe Systems)
FF Plugin-x32: @adobe.com/FlashPlayer -> C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_23_0_0_162.dll [2016-10-08] ()
FF Plugin-x32: @adobe.com/ShockwavePlayer -> C:\Windows\SysWOW64\Adobe\Director\np32dsw_1224194.dll [2016-02-19] (Adobe Systems, Inc.)
FF Plugin-x32: @java.com/DTPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\dtplugin\npDeployJava1.dll [2016-06-30] (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=11.91.2 -> C:\Program Files (x86)\Java\jre1.8.0_91\bin\plugin2\npjp2.dll [2016-06-30] (Oracle Corporation)
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files (x86)\Microsoft Silverlight\5.1.50709.0\npctrl.dll [2016-07-11] ( Microsoft Corporation)
FF Plugin-x32: @pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [2014-06-29] (Pando Networks)
FF Plugin-x32: @tools.google.com/Google Update;version=3 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 -> C:\Program Files (x86)\Google\Update\1.3.33.5\npGoogleUpdate3.dll [2017-04-28] (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.5 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.1 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: @videolan.org/vlc,version=2.2.4 -> C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin-x32: Adobe Reader -> C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2017-04-05] (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect -> C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll [2015-08-06] (Adobe Systems)
FF Plugin HKU\S-1-5-21-2153277708-1227587191-2765475175-1000: @acestream.net/acestreamplugin,version=3.1.7 -> C:\Users\Cecko\AppData\Roaming\ACEStream\player\npace_plugin.dll [No File]
FF Plugin HKU\S-1-5-21-2153277708-1227587191-2765475175-1000: @unity3d.com/UnityPlayer,version=1.0 -> C:\Users\Cecko\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll [2015-07-14] (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-2153277708-1227587191-2765475175-1000: pandonetworks.com/PandoWebPlugin -> C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll [2014-06-29] (Pando Networks)
StartMenuInternet: FIREFOX.EXE - C:\Programy\Mozilla Firefox\firefox.exe

Chrome:
=======
CHR DefaultProfile: Default
CHR Profile: C:\Users\Cecko\AppData\Local\Google\Chrome\User Data\Default [2017-06-06]
CHR Extension: (uBlock Origin) - C:\Users\Cecko\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjpalhdlnbpafiamejdnhcphjbkeiagm [2017-05-19]
CHR Extension: (The Great Suspender) - C:\Users\Cecko\AppData\Local\Google\Chrome\User Data\Default\Extensions\klbibkeccnjlkjkiokjodocebajanakg [2017-06-05]
CHR Extension: (Platby InternetovĂ©ho obchodu Chrome) - C:\Users\Cecko\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2017-03-10]
CHR Extension: (Chrome Media Router) - C:\Users\Cecko\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2017-05-12]
CHR HKU\S-1-5-21-2153277708-1227587191-2765475175-1000\SOFTWARE\Google\Chrome\Extensions\...\Chrome\Extension: [mjbepbhonbojpoaenhckjocchgfiaofo] - hxxps://clients2.google.com/service/update2/crx

Opera:
=======
OPR Extension: (Adblock Plus) - C:\Users\Cecko\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2016-04-21]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

R2 AGSService; C:\Program Files (x86)\Common Files\Adobe\AdobeGCClient\AGSService.exe [2246256 2017-05-18] (Adobe Systems, Incorporated)
S4 Hamachi2Svc; C:\Program Files (x86)\LogMeIn Hamachi\x64\hamachi-2.exe [2627080 2016-11-11] (LogMeIn Inc.)
S3 HssTrayService; C:\Program Files (x86)\Hotspot Shield\bin\HssTrayService.EXE [96600 2015-12-19] ()
R2 HssWd; C:\Program Files (x86)\Hotspot Shield\bin\hsswd.exe [864464 2015-12-19] (AnchorFree Inc.)
S2 LiveUpdateSvc; C:\Program Files (x86)\IObit\LiveUpdate\LiveUpdate.exe [2960672 2016-05-27] (IObit)
R2 LMIGuardianSvc; C:\Program Files (x86)\LogMeIn Hamachi\x64\LMIGuardianSvc.exe [419248 2016-11-11] (LogMeIn, Inc.)
S3 LULU Software CrashHandler; D:\Programy\Soda PDF 3D Reader\crash-handler-ws.exe [784152 2015-03-06] (LULU SOFTWARE LIMITED)
S3 Microsoft Office Groove Audit Service; D:\Programy\Microsoft Office\Office12\GrooveAuditService.exe [65824 2006-10-27] (Microsoft Corporation)
R2 RzKLService; D:\Programy\Razer\Razer Game Booster\RzKLService.exe [105448 2013-11-22] (Razer Inc.)
S3 Soda PDF 3D Reader; D:\Programy\Soda PDF 3D Reader\ws.exe [1860888 2015-03-06] (LULU SOFTWARE LIMITED)
R2 Soda PDF 3D Reader Creator; D:\Programy\Soda PDF 3D Reader\creator-ws.exe [623384 2015-03-06] (LULU SOFTWARE LIMITED)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [1011712 2013-05-27] (Microsoft Corporation)

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 DDDriver; C:\Windows\System32\drivers\DDDriver64Dcsa.sys [23760 2015-01-31] (Dell Computer Corporation)
S3 DellProf; C:\Windows\System32\drivers\DellProf.sys [23312 2015-01-31] (Dell Computer Corporation)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2014-05-18] (Disc Soft Ltd)
R3 taphss6; C:\Windows\System32\DRIVERS\taphss6.sys [42088 2015-10-12] (Anchorfree Inc.)
S3 lmimirr; system32\DRIVERS\lmimirr.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-06-06 20:02 - 2017-06-06 20:02 - 04110280 _____ C:\Users\Cecko\Downloads\adwcleaner_6.047 (2).exe
2017-06-06 19:32 - 2017-06-06 21:26 - 00014811 _____ C:\Users\Cecko\Desktop\FRST.txt
2017-06-06 19:31 - 2017-06-06 19:31 - 00112640 _____ (forum.viry.cz) C:\Users\Cecko\Desktop\FRSTLauncher.exe
2017-06-06 19:29 - 2017-06-06 19:29 - 00000000 ____D C:\Users\Cecko\Desktop\FRST-OlderVersion
2017-06-06 14:19 - 2017-06-06 15:53 - 904040937 _____ C:\Users\Cecko\Downloads\HledĂˇm-Amy_10-21_00-23-00_BARRANDOV-TV.mp4
2017-06-05 12:46 - 2017-06-05 12:46 - 00000000 ____D C:\Users\Cecko\Downloads\carnivalee_freakshow
2017-06-05 09:44 - 2017-06-05 09:44 - 00000000 ____D C:\Users\Cecko\Downloads\Photos (5)
2017-06-05 06:45 - 2017-06-05 11:38 - 00000000 ____D C:\Users\Cecko\Downloads\Zabransky
2017-06-04 13:05 - 2017-06-04 13:05 - 04110280 _____ C:\Users\Cecko\Downloads\adwcleaner_6.047 (1).exe
2017-06-01 23:31 - 2017-06-01 23:31 - 00151958 _____ C:\Users\Cecko\Downloads\smernice-ke-stridavemu-startu-hrace.pdf
2017-06-01 23:28 - 2017-06-01 23:28 - 00360514 _____ C:\Users\Cecko\Downloads\soutezni-rad-bsmk.pdf
2017-06-01 11:15 - 2017-06-01 11:15 - 00040905 _____ C:\Users\Cecko\Downloads\El-cadaver-de-Anna-Fritz(0000279918).srt
2017-06-01 10:39 - 2017-06-01 10:39 - 02942436 _____ C:\Users\Cecko\Downloads\propozice-k-3-eko-century-lize-2016-2017.pdf
2017-05-31 12:23 - 2017-05-31 12:23 - 05011923 _____ C:\Users\Cecko\Downloads\the-european-elite-2016.pdf
2017-05-31 10:32 - 2017-05-31 10:32 - 04995416 _____ (Microsoft Corporation) C:\Users\Cecko\Downloads\vcredist_x86 (4).exe
2017-05-31 10:30 - 2017-05-31 10:30 - 05673816 _____ (Microsoft Corporation) C:\Users\Cecko\Downloads\vcredist_x64 (5).exe
2017-05-31 07:08 - 2017-05-31 07:41 - 597323775 _____ C:\Users\Cecko\Downloads\Prach-a-broky-HD-(CZ-dabing).mp4
2017-05-31 02:28 - 2017-05-31 02:28 - 00014511 _____ C:\Users\Cecko\Downloads\[CzT]Naprosti_cizinci_Perfetti_Sconosciuti_2016_IT_ (1).torrent
2017-05-30 23:29 - 2017-05-30 23:29 - 00014512 _____ C:\Users\Cecko\Downloads\[CzT]Naprosti_cizinci_Perfetti_Sconosciuti_2016_IT_.torrent
2017-05-30 21:01 - 2017-05-30 21:01 - 00000000 ____D C:\Users\Cecko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DispeÄŤer
2017-05-30 21:00 - 2017-05-30 21:00 - 03741555 _____ C:\Users\Cecko\Downloads\dispecer.exe
2017-05-30 11:00 - 2017-05-30 11:00 - 00000647 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CurveFever.lnk
2017-05-30 11:00 - 2017-05-30 11:00 - 00000000 ____D C:\Users\Cecko\AppData\LocalLow\Curve Fever
2017-05-30 10:58 - 2017-05-30 10:59 - 12625896 _____ (Curve Fever ) C:\Users\Cecko\Downloads\CurveFever.exe
2017-05-29 15:50 - 2017-05-29 15:50 - 07201336 _____ (Microsoft Corporation) C:\Users\Cecko\Downloads\vcredist_x64 (4).exe
2017-05-29 15:49 - 2017-05-29 15:49 - 04995416 _____ (Microsoft Corporation) C:\Users\Cecko\Downloads\vcredist_x86 (3).exe
2017-05-29 15:48 - 2017-05-29 15:49 - 04995416 _____ (Microsoft Corporation) C:\Users\Cecko\Downloads\vcredist_x86 (2).exe
2017-05-29 15:48 - 2017-05-29 15:48 - 05673816 _____ (Microsoft Corporation) C:\Users\Cecko\Downloads\vcredist_x64 (3).exe
2017-05-25 18:28 - 2017-05-28 19:58 - 01166242 _____ C:\Users\Cecko\Downloads\pecan-rozdelane.psd
2017-05-24 21:02 - 2017-05-24 21:02 - 01002237 _____ C:\Users\Cecko\Downloads\futsalovy-klub-deportivo-ROZDELANY.psd
2017-05-24 19:56 - 2017-05-24 19:56 - 00000829 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Photoshop CC 2015.lnk
2017-05-24 19:56 - 2017-05-24 19:56 - 00000000 ____D C:\Users\Cecko\Documents\Adobe
2017-05-24 19:56 - 2017-05-24 19:56 - 00000000 ____D C:\ProgramData\regid.1986-12.com.adobe
2017-05-24 19:51 - 2017-05-24 20:16 - 00000000 ____D C:\Program Files\Common Files\Adobe
2017-05-24 19:51 - 2017-05-24 20:11 - 00001534 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Application Manager.lnk
2017-05-24 19:51 - 2017-05-24 20:11 - 00001522 _____ C:\Users\Public\Desktop\Adobe Application Manager.lnk
2017-05-24 19:22 - 2017-05-24 19:22 - 00141352 _____ C:\Users\Cecko\Downloads\[CzT]Adobe_Photoshop_CC_2015_16_1_2_Final_x86_x64_CZ_.torrent
2017-05-24 17:39 - 2017-05-24 17:39 - 00553759 _____ C:\Users\Cecko\Downloads\MKalousekNFPKObsahla.pdf
2017-05-24 16:36 - 2017-05-24 16:37 - 00705760 _____ C:\Users\Cecko\Downloads\Promlceni_a_jeho_uprava_v_novem_trestnim_zakoniku_zayhihkc.pdf
2017-05-19 22:29 - 2017-05-19 22:30 - 04110280 _____ C:\Users\Cecko\Downloads\adwcleaner_6.047.exe
2017-05-16 00:25 - 2017-06-04 12:47 - 00002441 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-05-16 00:25 - 2017-05-16 00:25 - 00002047 _____ C:\Users\Public\Desktop\Acrobat Reader DC.lnk
2017-05-16 00:25 - 2017-05-16 00:25 - 00000000 ____D C:\Program Files (x86)\Adobe
2017-05-12 00:25 - 2017-05-12 00:26 - 11101248 _____ C:\Users\Cecko\Documents\Fejk Gol.mp4
2017-05-08 05:01 - 2017-05-08 05:01 - 06091204 _____ C:\Users\Cecko\Documents\kopnuti.mpg
2017-05-08 05:01 - 2017-05-08 05:01 - 00000180 _____ C:\Users\Cecko\Documents\kopnuti.mpg.sfl
2017-05-08 04:55 - 2017-05-08 04:56 - 17447440 _____ C:\Users\Cecko\Documents\kopnuti3.mp4
2017-05-08 04:51 - 2017-05-08 04:53 - 00007872 _____ C:\Users\Cecko\Documents\kopnuti-brusli.mp4.sfk
2017-05-08 04:41 - 2017-05-08 04:42 - 05488924 _____ C:\Users\Cecko\Documents\kopnuti2.mp4
2017-05-08 04:33 - 2017-05-08 04:34 - 07485111 _____ C:\Users\Cecko\Documents\kopnuti-brusli.mp4
2017-05-08 04:28 - 2017-05-08 04:29 - 00186080 _____ C:\Users\Cecko\Downloads\Slovenia - Canada Highlights IIHFWorlds 2017.mp4.sfk
2017-05-08 04:27 - 2017-05-08 04:28 - 03265722 _____ C:\Users\Cecko\Downloads\Slovenia - Canada Highlights IIHFWorlds 2017.m4a
2017-05-08 00:10 - 2017-05-08 00:11 - 00064546 _____ C:\Users\Cecko\Downloads\IHM416000_85B_11_0.pdf
2017-05-07 09:43 - 2017-05-07 09:43 - 00090294 _____ C:\Users\Cecko\Downloads\IHM416000_84_9_0.pdf

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-06-06 20:48 - 2014-04-28 20:54 - 00000000 ____D C:\Users\Cecko\AppData\Roaming\Skype
2017-06-06 20:14 - 2009-07-14 06:45 - 00014240 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-06-06 20:14 - 2009-07-14 06:45 - 00014240 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-06-06 20:08 - 2014-08-15 23:16 - 00000000 ____D C:\Users\Cecko\AppData\Local\Adobe
2017-06-06 20:07 - 2009-07-14 07:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-06-06 20:05 - 2014-07-25 16:25 - 00000000 ____D C:\AdwCleaner
2017-06-06 19:40 - 2016-08-24 03:58 - 00006322 _____ C:\Users\Cecko\Desktop\Addition.rar
2017-06-06 19:32 - 2015-05-21 21:40 - 00000000 ____D C:\FRST
2017-06-06 19:29 - 2016-08-24 03:47 - 02433536 _____ (Farbar) C:\Users\Cecko\Desktop\FRST64.exe
2017-06-06 19:28 - 2014-05-26 01:52 - 00000000 ____D C:\Users\Cecko\Desktop\hamachi_2-0-1-66-cz(1)
2017-06-06 19:24 - 2017-02-08 10:11 - 00006740 _____ C:\Users\Cecko\Desktop\0802.txt
2017-06-06 13:32 - 2014-05-10 17:48 - 00000000 ____D C:\Users\Cecko\AppData\Roaming\uTorrent
2017-06-05 13:57 - 2014-04-28 19:28 - 00116176 _____ C:\Users\Cecko\AppData\Local\GDIPFONTCACHEV1.DAT
2017-06-05 13:57 - 2009-07-14 06:45 - 00432400 _____ C:\Windows\system32\FNTCACHE.DAT
2017-06-05 13:57 - 2009-07-14 05:20 - 00000000 ____D C:\Windows\inf
2017-06-05 07:59 - 2016-06-02 03:21 - 00000000 ____D C:\ProgramData\Package Cache
2017-06-04 13:09 - 2016-07-15 15:57 - 00000000 ____D C:\ProgramData\ProductData
2017-06-04 13:09 - 2014-04-28 20:19 - 00000000 ____D C:\Windows\SysWOW64\Macromed
2017-06-02 09:20 - 2014-11-06 01:04 - 00003846 _____ C:\Windows\System32\Tasks\Opera scheduled Autoupdate 1398709478
2017-06-02 09:20 - 2014-04-28 20:24 - 00000000 ____D C:\Program Files (x86)\Opera
2017-06-02 01:10 - 2016-07-15 15:57 - 00000000 ____D C:\Users\Cecko\AppData\Roaming\IObit
2017-06-02 01:10 - 2016-07-15 15:57 - 00000000 ____D C:\Program Files (x86)\IObit
2017-05-27 19:35 - 2014-04-29 04:28 - 00671734 _____ C:\Windows\system32\perfh005.dat
2017-05-27 19:35 - 2014-04-29 04:28 - 00142298 _____ C:\Windows\system32\perfc005.dat
2017-05-27 19:35 - 2009-07-14 07:13 - 01590850 _____ C:\Windows\system32\PerfStringBackup.INI
2017-05-24 20:08 - 2014-06-13 13:18 - 00000000 ____D C:\ProgramData\Adobe
2017-05-24 20:08 - 2014-04-28 20:20 - 00000000 ____D C:\Users\Cecko\AppData\Roaming\Adobe
2017-05-23 04:20 - 2014-10-19 01:07 - 00000000 ____D C:\Users\Cecko\AppData\Roaming\vlc
2017-05-17 06:31 - 2014-05-16 17:56 - 00000000 ____D C:\Users\Cecko\Downloads\Subs
2017-05-16 00:26 - 2015-05-16 15:53 - 00004476 _____ C:\Windows\System32\Tasks\Adobe Acrobat Update Task
2017-05-12 00:13 - 2016-12-28 15:29 - 00000000 ____D C:\Users\Cecko\Documents\Sony Vegas project
2017-05-08 04:24 - 2016-10-24 10:06 - 00000000 ____D C:\Users\Cecko\AppData\Roaming\YouTube Downloader

==================== Files in the root of some directories =======

2016-08-27 12:17 - 2017-03-11 00:30 - 0010240 _____ () C:\Users\Cecko\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-11-10 18:48 - 2015-02-04 07:05 - 0007607 _____ () C:\Users\Cecko\AppData\Local\Resmon.ResmonCfg
2016-02-18 19:17 - 2016-02-18 19:17 - 0000003 _____ () C:\Users\Cecko\AppData\Local\updater.log
2016-02-18 19:17 - 2016-02-18 19:17 - 0000424 _____ () C:\Users\Cecko\AppData\Local\UserProducts.xml

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\SysWOW64\wininit.exe => File is digitally signed
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\SysWOW64\explorer.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\SysWOW64\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\SysWOW64\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\SysWOW64\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\SysWOW64\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-06-02 13:43

==================== End of FRST.txt ============================

===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: () (Fixed) (Total:100 GB) (Free:11.02 GB) NTFS
Drive d: () (Fixed) (Total:365.66 GB) (Free:14.3 GB) NTFS

Available physical RAM: 776.43 MB
Total physical RAM: 3956.52 MB
Percentage of memory in use: 80%

==================== MBR and Partition Table ==================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 465.8 GB) (Disk ID: 2C2B8104)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=100 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=365.7 GB) - (Type=07 NTFS)

==================== Scheduled Tasks (whitelisted) ==================

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

==================== Alternate Data Streams (whitelisted) ==================

==================== Security Center ==================

AS: Windows Defender (Enabled - Out of date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)

***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Cecko\Desktop" je 28 MB.

***** Startup Programs *****

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring
"C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite
"d:\programy\daemon tools lite\dtlite.exe" -autorun [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\dellsupportcenter
"C:\Program Files (x86)\Dell Support Center\bin\sprtcmd.exe" /P dellsupportcenter [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Discord
C:\Users\Cecko\AppData\Local\Discord\app-0.0.297\Discord.exe [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor
C:\Users\Cecko\Downloads\hotkeyp\HotkeyP.exe 0 [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotkeyP
C:\Users\Cecko\AppData\Roaming\ICQM\icq.exe -CU [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\icq
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui
"D:\Programy\Steam\steam.exe" -silent [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam
Re§im ECHO je vypnut.

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Adobe Gamma Loader.lnk
C:\PROGRA~2\COMMON~1\Adobe\CALIBR~1\ADOBEG~1.EXE [x]

HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Cecko^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^MultiSkypeLauncher.lnk
D:\Programy\MULTIS~1\MULTIS~1.EXE /autologin [x]

***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
DisableNotifications REG_DWORD 0x0
EnableFirewall REG_DWORD 0x1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000

==================== End Of Log ==============================

#6 Příspěvek od **Rudy** » 06 čer 2017 21:01

Otevřte poznámkový blok a zkopírujte do něj:

Start
HKU\S-1-5-21-2153277708-1227587191-2765475175-1000\...\MountPoints2: {e4284d93-de05-11e3-9b84-b8ac6f55ccb5} - G:\Setup.now.exe
FF HKU\S-1-5-21-2153277708-1227587191-2765475175-1000\...\Firefox\Extensions: [acewebextension_unlisted@acestream.org] - C:\Users\Cecko\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi => not found
C:\Users\Cecko\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

EmptyTemp:
End

Uložte na plochu jako fixlist.txt. Spusťte znovu FRST a klikněte na >Fix<. Po skončení akce se objeví log, který sem zkopírujte.

Astronaut · #7 Příspěvek od **Astronaut** » 06 čer 2017 21:27

Fix result of Farbar Recovery Scan Tool (x64) Version: 05-06-2017
Ran by Cecko (06-06-2017 22:21:47) Run:3
Running from C:\Users\Cecko\Desktop
Loaded Profiles: Cecko (Available Profiles: Cecko)
Boot Mode: Normal
==============================================

fixlist content:
*****************
Start
HKU\S-1-5-21-2153277708-1227587191-2765475175-1000\...\MountPoints2: {e4284d93-de05-11e3-9b84-b8ac6f55ccb5} - G:\Setup.now.exe
FF HKU\S-1-5-21-2153277708-1227587191-2765475175-1000\...\Firefox\Extensions: [acewebextension_unlisted@acestream.org] - C:\Users\Cecko\AppData\Roaming\ACEStream\extensions\awe\firefox\acewebextension_unlisted.xpi => not found
C:\Users\Cecko\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

EmptyTemp:
End
*****************

HKU\S-1-5-21-2153277708-1227587191-2765475175-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{e4284d93-de05-11e3-9b84-b8ac6f55ccb5} => key removed successfully
HKCR\CLSID\{e4284d93-de05-11e3-9b84-b8ac6f55ccb5} => key not found.
HKU\S-1-5-21-2153277708-1227587191-2765475175-1000\Software\Mozilla\Firefox\Extensions\\acewebextension_unlisted@acestream.org => value removed successfully
C:\Users\Cecko\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini => moved successfully

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 1944033 B
Java, Flash, Steam htmlcache => 444453993 B
Windows/system/drivers => 11886 B
Edge => 0 B
Chrome => 593098494 B
Firefox => 11109877 B
Opera => 544768 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 103810190 B
systemprofile32 => 75768 B
LocalService => 132244 B
NetworkService => 66228 B
Cecko => 33993039 B

RecycleBin => 0 B
EmptyTemp: => 1.1 GB temporary data Removed.

================================

The system needed a reboot.

==== End of Fixlog 22:22:15 ====

#8 Příspěvek od **Rudy** » 07 čer 2017 16:01

Smazáno, log by již měl být OK.

Astronaut · #9 Příspěvek od **Astronaut** » 07 čer 2017 16:43

Děkuji moc.

#10 Příspěvek od **Rudy** » 07 čer 2017 17:51

Rádo se stalo!

VIRY.CZ

Prosím o kontrolu logu

Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu