Asi jsem si natáhnul do pc nějakej bordel. Někdy nefunguje klávesnice, myš, vyskakujou různý okna co jsem vůbec neotvíral...
Logfile of random's system information tool 1.10 (written by random/random)
Run by demoniaco at 2017-12-18 15:38:46
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 413 GB (87%) free of 476 GB
Total RAM: 3944 MB (39% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:38:57, on 18.12.2017
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18860)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe
C:\Program Files\Zoner\Photo Studio 19\Program32\ZPSTray.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\avpui.exe
C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 2.0\ksdeui.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files\trend micro\demoniaco.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: ScriptInjectionPluginBrowserHelperObject - {0E2877D3-2641-4970-B794-A553E295428D} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\IEExt\ie_plugin.dll
O3 - Toolbar: Kaspersky Protection Toolbar - {4853DF44-7D6B-48E9-9258-D800EEE54AF6} - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\IEExt\ie_plugin.dll
O4 - HKCU\..\Run: [PC Suite Tray] "C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
O4 - HKCU\..\Run: [Zoner Photo Studio Autoupdate] "C:\Program Files\Zoner\Photo Studio 19\Program32\ZPSTRAY.EXE"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Služba Kaspersky Anti-Virus 18.0.0 (AVP18.0.0) - AO Kaspersky Lab - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\avp.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: PIXMA Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: klvssbridge64_18.0.0 - AO Kaspersky Lab - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\x64\vssbridge64.exe
O23 - Service: Služba Kaspersky Secure Connection 2.0.0 (KSDE2.0.0) - AO Kaspersky Lab - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 2.0\ksde.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 6692 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\avp.exe" -r
C:\Windows\System32\svchost.exe -k utcsvc
"C:\Windows\system32\Dwm.exe"
"C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE"
C:\Windows\Explorer.EXE
C:\Windows\system32\svchost.exe -k imgsvc
"taskhost.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-b8415ce0-ed3a-4bd7-9952-5e4ba7646b59 -SystemEventPortName:HostProcess-a8697967-4eb0-4cc3-a696-5a739bf78bf6 -IoCancelEventPortName:HostProcess-15dffa80-daa7-40ac-8d63-b808fb8c2db4 -NonStateChangingEventPortName:HostProcess-0328175b-9e38-4276-8de9-f6f2d302a529 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:285d7a26-39ea-46c0-a4dc-b77cfd4ca394 -DeviceGroupId:WpdFsGroup
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe" -onlytray
"C:\Program Files\Zoner\Photo Studio 19\Program32\ZPSTray.exe"
"C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\avpui.exe" -hidden
"C:\Program Files\Mozilla Firefox\firefox.exe"
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="1520.0.292176550\1033497866" -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" "C:\Users\demoniaco\AppData\LocalLow\Mozilla\Temp-{b37363db-94b4-4973-a854-8434c60e759d}" 1520 "\\.\pipe\gecko-crash-server-pipe.1520" gpu
"C:\Program Files\Mozilla Firefox\firefox.exe" -contentproc --channel="1520.20.1896204173\1464306255" -childID 3 -isForBrowser -intPrefs 5:50|6:-1|28:1000|34:20|35:5|36:10|45:128|46:10000|51:0|53:400|54:1|55:0|56:0|61:0|62:120|63:120|98:2|99:1|114:5000|124:0|126:0|137:10000|149:-1|154:128|155:10000|156:0|162:24|163:32768|165:0|166:0|174:5|178:1048576|179:100|180:5000|182:600|184:1|193:3|197:0|206:60000| -boolPrefs 1:0|2:0|4:0|26:1|27:1|30:0|33:1|37:1|38:0|39:0|40:0|43:1|44:1|47:0|48:0|49:0|50:0|52:0|57:1|58:1|59:0|60:1|64:1|65:1|66:0|67:1|68:1|69:0|70:1|73:0|74:0|77:1|78:1|82:1|83:1|84:1|85:0|86:0|88:0|89:0|90:1|91:0|92:1|95:1|97:0|100:1|101:0|108:0|113:0|116:1|119:1|121:1|125:0|128:1|131:1|132:1|138:1|139:0|140:1|142:0|148:0|150:1|151:0|152:1|153:1|160:0|161:0|164:1|167:0|169:1|171:1|172:0|177:0|181:1|186:0|187:0|188:0|189:1|190:0|191:1|192:1|195:0|198:0|199:0|200:1|201:1|202:0|203:1|204:1|205:1|207:0|208:0|210:0|218:1|219:1|220:0|221:0|222:0| -stringPrefs "3:7;release|96:0;|141:3;1.0|158:332; ¼½¾ǃː̷̸։֊׃״؉؊٪۔܁܂܃܄ᅟᅠ᜵ ‐’․‧
‹›⁁⁄⁒ ⅓⅔⅕⅖⅗⅘⅙⅚⅛⅜⅝⅞⅟∕∶⎮╱⧶⧸⫻⫽⿰⿱⿲⿳⿴⿵⿶⿷⿸⿹⿺⿻ 。〔〕〳゠ㅤ㈝㈞㎮㎯㏆㏟꞉︔︕︿﹝﹞./。ᅠ�|159:4;high|194:38;{b37363db-94b4-4973-a854-8434c60e759d}|" -schedulerPrefs 0001,2 -greomni "C:\Program Files\Mozilla Firefox\omni.ja" -appomni "C:\Program Files\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files\Mozilla Firefox\browser" 1520 "\\.\pipe\gecko-crash-server-pipe.1520" tab
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 2.0\ksde.exe" -r
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 2.0\ksdeui.exe" -hidden
"C:\Program Files\Internet Explorer\iexplore.exe"
"C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2840 CREDAT:267521 /prefetch:2
{6384AABF-C55D-499D-BE0B-DEF9A1BA7389}
{FA7C0688-DCD9-4690-8785-CDB1F9548A95}
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=crashpad-handler "--user-data-dir=C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data" /prefetch:7 --monitor-self-annotation=ptype=crashpad-handler "--database=C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Crashpad" "--metrics-dir=C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data" --url=https://clients2.google.com/cr/report --annotation=channel= --annotation=plat=Win64 --annotation=prod=Chrome --annotation=ver=63.0.3239.84 --initial-client-data=0x80,0x84,0x88,0x7c,0x8c,0x7fee6de5720,0x7fee6de5760,0x7fee6de5738
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=watcher --main-thread-id=3840 --on-initialized-event-handle=312 --parent-handle=316 /prefetch:6
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=gpu-process --field-trial-handle=1064,3269286740196275827,2042010709314194236,131072 --gpu-vendor-id=0x8086 --gpu-device-id=0x0102 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=9.17.10.2884 --gpu-driver-date=11-7-2012 --service-request-channel-token=B5E8333BDA993F7973C3668B5ED0C9B7 --mojo-platform-channel-handle=1092 --ignored=" --type=renderer " /prefetch:2
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1064,3269286740196275827,2042010709314194236,131072 --service-pipe-token=1955045A5E5756D7C2A9FE40ED4BDF58 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553 --service-request-channel-token=1955045A5E5756D7C2A9FE40ED4BDF58 --renderer-client-id=8 --mojo-platform-channel-handle=4824 /prefetch:1
C:\Windows\sysWOW64\wbem\wmiprvse.exe -Embedding
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1064,3269286740196275827,2042010709314194236,131072 --service-pipe-token=D0BF4EF032C84225A2804FE5597D5F65 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553 --service-request-channel-token=D0BF4EF032C84225A2804FE5597D5F65 --renderer-client-id=16 --mojo-platform-channel-handle=4040 /prefetch:1
taskeng.exe {B4A93B73-0B9A-4C10-9CB3-33161933889E}
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1064,3269286740196275827,2042010709314194236,131072 --service-pipe-token=6BAB3D37CF3391E48724FD3D07E95D73 --lang=cs --extension-process --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553 --service-request-channel-token=6BAB3D37CF3391E48724FD3D07E95D73 --renderer-client-id=41 --mojo-platform-channel-handle=4260 /prefetch:1
"C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --type=renderer --field-trial-handle=1064,3269286740196275827,2042010709314194236,131072 --service-pipe-token=0FD13758C2FED4017E366FBA8A571FB0 --lang=cs --enable-offline-auto-reload --enable-offline-auto-reload-visible-only --blink-settings=disallowFetchForDocWrittenScriptsInMainFrame=false,disallowFetchForDocWrittenScriptsInMainFrameOnSlowConnections=true --enable-pinch --device-scale-factor=1 --num-raster-threads=1 --enable-gpu-async-worker-context --content-image-texture-target=0,0,3553;0,1,3553;0,2,3553;0,3,3553;0,4,3553;0,5,3553;0,6,3553;0,7,3553;0,8,3553;0,9,3553;0,10,3553;0,11,3553;0,12,3553;0,13,3553;0,14,3553;0,15,3553;0,16,3553;0,17,3553;1,0,3553;1,1,3553;1,2,3553;1,3,3553;1,4,3553;1,5,3553;1,6,3553;1,7,3553;1,8,3553;1,9,3553;1,10,3553;1,11,3553;1,12,3553;1,13,3553;1,14,3553;1,15,3553;1,16,3553;1,17,3553;2,0,3553;2,1,3553;2,2,3553;2,3,3553;2,4,3553;2,5,3553;2,6,3553;2,7,3553;2,8,3553;2,9,3553;2,10,3553;2,11,3553;2,12,3553;2,13,3553;2,14,3553;2,15,3553;2,16,3553;2,17,3553;3,0,3553;3,1,3553;3,2,3553;3,3,3553;3,4,3553;3,5,3553;3,6,3553;3,7,3553;3,8,3553;3,9,3553;3,10,3553;3,11,3553;3,12,3553;3,13,3553;3,14,3553;3,15,3553;3,16,3553;3,17,3553;4,0,3553;4,1,3553;4,2,3553;4,3,3553;4,4,3553;4,5,3553;4,6,3553;4,7,3553;4,8,3553;4,9,3553;4,10,3553;4,11,3553;4,12,3553;4,13,3553;4,14,3553;4,15,3553;4,16,3553;4,17,3553;5,0,3553;5,1,3553;5,2,3553;5,3,3553;5,4,3553;5,5,3553;5,6,3553;5,7,3553;5,8,3553;5,9,3553;5,10,3553;5,11,3553;5,12,3553;5,13,3553;5,14,3553;5,15,3553;5,16,3553;5,17,3553;6,0,3553;6,1,3553;6,2,3553;6,3,3553;6,4,3553;6,5,3553;6,6,3553;6,7,3553;6,8,3553;6,9,3553;6,10,3553;6,11,3553;6,12,3553;6,13,3553;6,14,3553;6,15,3553;6,16,3553;6,17,3553 --service-request-channel-token=0FD13758C2FED4017E366FBA8A571FB0 --renderer-client-id=52 --mojo-platform-channel-handle=6524 /prefetch:1
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe4_ Global\UsGthrCtrlFltPipeMssGthrPipe4 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 512 516 524 65536 520
"C:\Users\demoniaco\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
=========Mozilla firefox=========
ProfilePath - C:\Users\demoniaco\AppData\Roaming\Mozilla\Firefox\Profiles\d9nevbql.default
prefs.js - "browser.startup.homepage" - "moz-extension://ee4e033f-544b-4814-8b0e-982398c13e3c/dynamicHomePage.html"
"light_plugin_448EC0843447455C9DA355B3C2811D6A@kaspersky.com"=C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\FFExt\light_plugin_firefox\addon.xpi
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.33.7\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E2877D3-2641-4970-B794-A553E295428D}]
Kaspersky Protection - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\x64\IEExt\ie_plugin.dll [2017-12-17 1429352]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0E2877D3-2641-4970-B794-A553E295428D}]
Kaspersky Protection - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\IEExt\ie_plugin.dll [2017-12-17 1150312]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{4853DF44-7D6B-48E9-9258-D800EEE54AF6} - Kaspersky Protection Toolbar - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\x64\IEExt\ie_plugin.dll [2017-12-17 1429352]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{4853DF44-7D6B-48E9-9258-D800EEE54AF6} - Kaspersky Protection Toolbar - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\IEExt\ie_plugin.dll [2017-12-17 1150312]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2012-11-27 171064]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2012-11-27 399416]
"Persistence"=C:\Windows\system32\igfxpers.exe [2012-11-27 441912]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2016-01-26 8305664]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"PC Suite Tray"=C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe [2012-06-26 1516632]
"Zoner Photo Studio Autoupdate"=C:\Program Files\Zoner\Photo Studio 19\Program32\ZPSTRAY.EXE [2017-01-09 568904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2012-11-27 441344]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2017-12-18 15:38:47 ----D---- C:\Program Files\trend micro
2017-12-18 15:38:46 ----D---- C:\rsit
2017-12-17 19:28:18 ----A---- C:\Windows\ntbtlog.txt
2017-12-17 15:34:07 ----D---- C:\Program Files\Common Files\AV
2017-12-17 15:33:27 ----A---- C:\Windows\system32\klfphc.dll
2017-12-17 15:33:16 ----D---- C:\ProgramData\Kaspersky Lab
2017-12-17 15:33:16 ----D---- C:\Program Files (x86)\Kaspersky Lab
2017-12-17 15:33:10 ----A---- C:\Windows\system32\klhkum.dll
2017-12-17 15:33:10 ----A---- C:\Windows\system32\drivers\klif.sys
2017-12-17 15:33:10 ----A---- C:\Windows\system32\drivers\klhk.sys
2017-12-17 15:33:10 ----A---- C:\Windows\system32\drivers\klflt.sys
2017-12-17 15:21:09 ----D---- C:\ProgramData\Kaspersky Lab Setup Files
2017-12-14 20:48:48 ----D---- C:\Users\demoniaco\AppData\Roaming\Mozilla
2017-12-14 20:48:44 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2017-12-14 20:48:42 ----D---- C:\Program Files\Mozilla Firefox
2017-12-13 15:04:51 ----A---- C:\Windows\system32\mshtml.dll
2017-12-13 15:04:49 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2017-12-13 15:04:48 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2017-12-13 15:04:48 ----A---- C:\Windows\system32\ieframe.dll
2017-12-13 15:04:47 ----A---- C:\Windows\system32\jscript9.dll
2017-12-13 15:04:46 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2017-12-13 15:04:46 ----A---- C:\Windows\system32\win32k.sys
2017-12-13 15:04:46 ----A---- C:\Windows\system32\urlmon.dll
2017-12-13 15:04:45 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2017-12-13 15:04:45 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2017-12-13 15:04:45 ----A---- C:\Windows\SYSWOW64\jscript.dll
2017-12-13 15:04:45 ----A---- C:\Windows\system32\vbscript.dll
2017-12-13 15:04:45 ----A---- C:\Windows\system32\jscript.dll
2017-12-13 15:04:45 ----A---- C:\Windows\system32\drivers\rdbss.sys
2017-12-13 15:04:44 ----A---- C:\Windows\SYSWOW64\gpedit.dll
2017-12-13 15:04:44 ----A---- C:\Windows\system32\gpedit.dll
2017-12-13 15:04:43 ----A---- C:\Windows\SYSWOW64\wininet.dll
2017-12-13 15:04:43 ----A---- C:\Windows\SYSWOW64\rtm.dll
2017-12-13 15:04:43 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2017-12-13 15:04:43 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2017-12-13 15:04:43 ----A---- C:\Windows\SYSWOW64\mprdim.dll
2017-12-13 15:04:43 ----A---- C:\Windows\SYSWOW64\itss.dll
2017-12-13 15:04:43 ----A---- C:\Windows\SYSWOW64\itircl.dll
2017-12-13 15:04:43 ----A---- C:\Windows\SYSWOW64\iprtrmgr.dll
2017-12-13 15:04:43 ----A---- C:\Windows\SYSWOW64\iprtprio.dll
2017-12-13 15:04:43 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2017-12-13 15:04:43 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2017-12-13 15:04:43 ----A---- C:\Windows\system32\wininet.dll
2017-12-13 15:04:43 ----A---- C:\Windows\system32\rtm.dll
2017-12-13 15:04:43 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2017-12-13 15:04:43 ----A---- C:\Windows\system32\mshtmlmedia.dll
2017-12-13 15:04:43 ----A---- C:\Windows\system32\msfeeds.dll
2017-12-13 15:04:43 ----A---- C:\Windows\system32\mprdim.dll
2017-12-13 15:04:43 ----A---- C:\Windows\system32\itss.dll
2017-12-13 15:04:43 ----A---- C:\Windows\system32\itircl.dll
2017-12-13 15:04:43 ----A---- C:\Windows\system32\iprtrmgr.dll
2017-12-13 15:04:43 ----A---- C:\Windows\system32\iprtprio.dll
2017-12-13 15:04:43 ----A---- C:\Windows\system32\iertutil.dll
2017-12-13 15:04:43 ----A---- C:\Windows\system32\iedkcs32.dll
2017-12-13 15:04:42 ----A---- C:\Windows\SYSWOW64\webcheck.dll
2017-12-13 15:04:42 ----A---- C:\Windows\SYSWOW64\tzres.dll
2017-12-13 15:04:42 ----A---- C:\Windows\SYSWOW64\occache.dll
2017-12-13 15:04:42 ----A---- C:\Windows\SYSWOW64\msrating.dll
2017-12-13 15:04:42 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2017-12-13 15:04:42 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2017-12-13 15:04:42 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2017-12-13 15:04:42 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2017-12-13 15:04:42 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2017-12-13 15:04:42 ----A---- C:\Windows\SYSWOW64\inseng.dll
2017-12-13 15:04:42 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2017-12-13 15:04:42 ----A---- C:\Windows\SYSWOW64\ieui.dll
2017-12-13 15:04:42 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2017-12-13 15:04:42 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2017-12-13 15:04:42 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2017-12-13 15:04:42 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2017-12-13 15:04:42 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2017-12-13 15:04:42 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2017-12-13 15:04:42 ----A---- C:\Windows\system32\webcheck.dll
2017-12-13 15:04:42 ----A---- C:\Windows\system32\tzres.dll
2017-12-13 15:04:42 ----A---- C:\Windows\system32\occache.dll
2017-12-13 15:04:42 ----A---- C:\Windows\system32\msrating.dll
2017-12-13 15:04:42 ----A---- C:\Windows\system32\mshtmled.dll
2017-12-13 15:04:42 ----A---- C:\Windows\system32\MshtmlDac.dll
2017-12-13 15:04:42 ----A---- C:\Windows\system32\jsproxy.dll
2017-12-13 15:04:42 ----A---- C:\Windows\system32\jscript9diag.dll
2017-12-13 15:04:42 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2017-12-13 15:04:42 ----A---- C:\Windows\system32\inseng.dll
2017-12-13 15:04:42 ----A---- C:\Windows\system32\ieUnatt.exe
2017-12-13 15:04:42 ----A---- C:\Windows\system32\ieui.dll
2017-12-13 15:04:42 ----A---- C:\Windows\system32\iesetup.dll
2017-12-13 15:04:42 ----A---- C:\Windows\system32\iernonce.dll
2017-12-13 15:04:42 ----A---- C:\Windows\system32\ieetwproxystub.dll
2017-12-13 15:04:42 ----A---- C:\Windows\system32\ieetwcollector.exe
2017-12-13 15:04:42 ----A---- C:\Windows\system32\ieapfltr.dll
2017-12-13 15:04:42 ----A---- C:\Windows\system32\ie4uinit.exe
2017-12-13 15:04:42 ----A---- C:\Windows\system32\dxtrans.dll
2017-12-13 15:04:42 ----A---- C:\Windows\system32\dxtmsft.dll
2017-12-13 15:04:41 ----A---- C:\Windows\system32\ieetwcollectorres.dll
======List of files/folders modified in the last 1 month======
2017-12-18 15:38:50 ----D---- C:\Windows\Temp
2017-12-18 15:38:47 ----RD---- C:\Program Files
2017-12-18 15:18:21 ----D---- C:\Windows\system32\config
2017-12-18 15:06:53 ----D---- C:\Windows\System32
2017-12-18 15:06:53 ----D---- C:\Windows\inf
2017-12-18 15:06:53 ----A---- C:\Windows\system32\PerfStringBackup.INI
2017-12-18 15:03:41 ----D---- C:\Windows\Prefetch
2017-12-18 15:00:02 ----SHD---- C:\System Volume Information
2017-12-17 19:28:18 ----D---- C:\Windows
2017-12-17 16:07:31 ----D---- C:\Windows\system32\catroot
2017-12-17 15:56:50 ----D---- C:\Windows\system32\drivers
2017-12-17 15:52:10 ----SHD---- C:\Windows\Installer
2017-12-17 15:34:11 ----D---- C:\Windows\system32\Tasks
2017-12-17 15:34:07 ----D---- C:\Program Files\Common Files
2017-12-17 15:33:58 ----D---- C:\Windows\system32\DriverStore
2017-12-17 15:33:36 ----D---- C:\Windows\SYSWOW64\config
2017-12-17 15:33:16 ----RD---- C:\Program Files (x86)
2017-12-17 15:33:16 ----HD---- C:\ProgramData
2017-12-17 11:58:51 ----RSD---- C:\Windows\Fonts
2017-12-14 18:23:25 ----D---- C:\Windows\rescache
2017-12-14 16:48:36 ----D---- C:\Windows\winsxs
2017-12-14 16:45:33 ----D---- C:\Program Files\Internet Explorer
2017-12-14 16:45:32 ----D---- C:\Windows\SYSWOW64\sk-SK
2017-12-14 16:45:32 ----D---- C:\Windows\SYSWOW64\Setup
2017-12-14 16:45:32 ----D---- C:\Windows\SYSWOW64\en-US
2017-12-14 16:45:32 ----D---- C:\Windows\SYSWOW64\cs-CZ
2017-12-14 16:45:32 ----D---- C:\Windows\SysWOW64
2017-12-14 16:45:32 ----D---- C:\Windows\system32\sk-SK
2017-12-14 16:45:32 ----D---- C:\Windows\system32\Setup
2017-12-14 16:45:32 ----D---- C:\Windows\system32\en-US
2017-12-14 16:45:32 ----D---- C:\Windows\system32\cs-CZ
2017-12-14 16:45:32 ----D---- C:\Program Files (x86)\Internet Explorer
2017-12-14 16:29:46 ----SD---- C:\Users\demoniaco\AppData\Roaming\Microsoft
2017-12-14 16:02:11 ----D---- C:\Windows\system32\MRT
2017-12-14 15:58:20 ----AC---- C:\Windows\system32\MRT-KB890830.exe
2017-12-14 15:57:28 ----AC---- C:\Windows\system32\MRT.exe
2017-12-13 15:02:36 ----D---- C:\Windows\system32\catroot2
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 cm_km;AO Kaspersky Lab Cryptographic Module x64 (56 bit); C:\Windows\system32\DRIVERS\cm_km.sys [2016-12-26 247008]
R0 kl1;kl1; C:\Windows\system32\DRIVERS\kl1.sys [2016-10-01 554408]
R0 klbackupdisk;Kaspersky Lab klbackupdisk; C:\Windows\system32\DRIVERS\klbackupdisk.sys [2017-12-17 70880]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 klbackupflt;Kaspersky Lab klbackupflt; C:\Windows\system32\DRIVERS\klbackupflt.sys [2017-12-17 117984]
R1 klhk;Kaspersky Lab service driver; C:\Windows\system32\DRIVERS\klhk.sys [2017-12-17 350944]
R1 KLIF;Kaspersky Lab Driver; C:\Windows\system32\DRIVERS\klif.sys [2017-12-17 1071808]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter; C:\Windows\system32\DRIVERS\klim6.sys [2016-10-11 57936]
R1 klpd;Kaspersky Lab format recognizer driver; C:\Windows\system32\DRIVERS\klpd.sys [2017-10-15 50672]
R1 kltdi;kltdi; C:\Windows\system32\DRIVERS\kltdi.sys [2017-10-15 81904]
R1 Klwtp;KLwtp - WFP callout traffic inspector; C:\Windows\system32\DRIVERS\klwtp.sys [2017-12-17 140000]
R1 kneps;kneps; C:\Windows\system32\DRIVERS\kneps.sys [2017-12-17 199392]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 kldisk;kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [2016-05-31 78216]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-11-27 5337184]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2009-10-27 2018080]
R3 klflt;Kaspersky Lab Kernel DLL; C:\Windows\system32\DRIVERS\klflt.sys [2017-12-17 206040]
R3 klkbdflt;Kaspersky Lab KLKBDFLT; C:\Windows\system32\DRIVERS\klkbdflt.sys [2016-12-23 57568]
R3 klmouflt;Kaspersky Lab KLMOUFLT; C:\Windows\system32\DRIVERS\klmouflt.sys [2016-12-07 58592]
R3 kltap;Kaspersky Security Data Escort Adapter; C:\Windows\system32\DRIVERS\kltap.sys [2016-06-07 52152]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2012-07-03 62784]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2015-08-24 987888]
S3 ApfiltrService;Alps Touch Pad Filter Driver for Windows x64; C:\Windows\system32\DRIVERS\Apfiltr.sys []
S3 BCM43XX;Ovladač síťového adaptéru Broadcom 802.11; C:\Windows\system32\DRIVERS\bcmwl664.sys [2011-07-01 4745280]
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-20 71168]
S3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2012-07-03 62784]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2012-01-09 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2012-01-09 27136]
S3 nmwcdnsux64;Nokia USB Flashing Phone Parent; C:\Windows\system32\drivers\nmwcdnsux64.sys [2012-01-09 171008]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2012-06-11 26112]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 sdbus;sdbus; C:\Windows\system32\drivers\sdbus.sys [2010-11-20 109056]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 terminpt;Microsoft Remote Desktop Input Driver; C:\Windows\system32\drivers\terminpt.sys [2012-08-23 29696]
S3 TPM;Čip TPM; C:\Windows\system32\drivers\tpm.sys [2016-02-05 147904]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2013-10-02 56832]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2013-10-02 29696]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2012-01-09 9216]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2013-08-29 33280]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2012-01-09 9216]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AVP18.0.0;Služba Kaspersky Anti-Virus 18.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\avp.exe [2017-01-24 354672]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 IJPLMSVC;PIXMA Extended Survey Program; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [2006-11-10 99936]
R2 KSDE2.0.0;Služba Kaspersky Secure Connection 2.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Secure Connection 2.0\ksde.exe [2017-01-24 354672]
R3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2012-06-11 724376]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2017-04-21 107656]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2017-04-21 128648]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-10-07 107848]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 cphs;Intel(R) Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2016-01-26 269312]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2017-10-07 107848]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2017-11-14 116224]
S3 klvssbridge64_18.0.0;klvssbridge64_18.0.0; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Free 18.0.0\x64\vssbridge64.exe [2017-12-17 426416]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2017-12-15 194000]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2016-06-21 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2017-04-21 52856]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-04-21 136312]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-04-21 136312]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2017-04-21 136312]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu logu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Prosím o kontrolu logu
Ahoj,
Poprosim o vlozeni logu FRST.txt a Addition.txt z aplikace FRSTLauncher.exe (Farbar Recovery Scan Tool). Navod naleznes zde: https://forum.viry.cz/viewtopic.php?f=13&t=152707
Obsah Additional.txt muzes vlozit rovnou sem do vlakna.
Poprosim o vlozeni logu FRST.txt a Addition.txt z aplikace FRSTLauncher.exe (Farbar Recovery Scan Tool). Navod naleznes zde: https://forum.viry.cz/viewtopic.php?f=13&t=152707
Obsah Additional.txt muzes vlozit rovnou sem do vlakna.
Re: Prosím o kontrolu logu
Prilozil jsi mi oba potrebne soubory 
Na plose, tam kde mas umisteny FRST vytvor TXT soubor, ktery pojmenujes fixlist.txt a do nej vloz nasledujici text:
( Spusť znovu FRST a klikni na >Fix<. Po skončení akce se objeví log, který sem zkopíruj).
Na plose, tam kde mas umisteny FRST vytvor TXT soubor, ktery pojmenujes fixlist.txt a do nej vloz nasledujici text:
( Spusť znovu FRST a klikni na >Fix<. Po skončení akce se objeví log, který sem zkopíruj).
start
CreateRestorePoint:
CloseProcesses:
Hosts:
EmptyTemp:
FF Homepage: Mozilla\Firefox\Profiles\d9nevbql.default -> moz-extension://ee4e033f-544b-4814-8b0e-982398c13e3c/dynamicHomePage.html
FF NewTabOverride: Mozilla\Firefox\Profiles\d9nevbql.default -> Enabled: _j7Members_@www.convertdocsonline.com
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Extension: (ConvertDocsOnline) - C:\Users\demoniaco\AppData\Roaming\Mozilla\Firefox\Profiles\d9nevbql.default\Extensions\_j7Members_@www.convertdocsonline.com.xpi [2017-12-17]
S3 ApfiltrService; system32\DRIVERS\Apfiltr.sys [X]
R4 cm_km; system32\DRIVERS\cm_km.sys [X]
R4 kl1; system32\DRIVERS\kl1.sys [X]
R4 klbackupdisk; system32\DRIVERS\klbackupdisk.sys [X]
R4 klbackupflt; system32\DRIVERS\klbackupflt.sys [X]
R4 kldisk; system32\DRIVERS\kldisk.sys [X]
R4 klflt; system32\DRIVERS\klflt.sys [X]
R4 klhk; system32\DRIVERS\klhk.sys [X]
R4 KLIF; system32\DRIVERS\klif.sys [X]
R4 klkbdflt; system32\DRIVERS\klkbdflt.sys [X]
R4 klmouflt; system32\DRIVERS\klmouflt.sys [X]
R4 klpd; system32\DRIVERS\klpd.sys [X]
R4 kltdi; system32\DRIVERS\kltdi.sys [X]
R4 kneps; system32\DRIVERS\kneps.sys [X]
end
-
Thomas
- Návštěvník
- Příspěvky: 260
- Registrován: 07 dub 2005 20:02
- Bydliště: Hradec Králové
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
Fix result of Farbar Recovery Scan Tool (x64) Version: 17-12-2017
Ran by demoniaco (18-12-2017 16:26:13) Run:1
Running from C:\Users\demoniaco\Desktop
Loaded Profiles: demoniaco (Available Profiles: demoniaco)
Boot Mode: Normal
==============================================
fixlist content:
*****************
start
CreateRestorePoint:
CloseProcesses:
Hosts:
EmptyTemp:
FF Homepage: Mozilla\Firefox\Profiles\d9nevbql.default -> moz-extension://ee4e033f-544b-4814-8b0e-982398c13e3c/dynamicHomePage.html
FF NewTabOverride: Mozilla\Firefox\Profiles\d9nevbql.default -> Enabled: _j7Members_@www.convertdocsonline.com
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Extension: (ConvertDocsOnline) - C:\Users\demoniaco\AppData\Roaming\Mozilla\Firefox\Profiles\d9nevbql.default\Extensions\_j7Members_@www.convertdocsonline.com.xpi [2017-12-17]
S3 ApfiltrService; system32\DRIVERS\Apfiltr.sys [X]
R4 cm_km; system32\DRIVERS\cm_km.sys [X]
R4 kl1; system32\DRIVERS\kl1.sys [X]
R4 klbackupdisk; system32\DRIVERS\klbackupdisk.sys [X]
R4 klbackupflt; system32\DRIVERS\klbackupflt.sys [X]
R4 kldisk; system32\DRIVERS\kldisk.sys [X]
R4 klflt; system32\DRIVERS\klflt.sys [X]
R4 klhk; system32\DRIVERS\klhk.sys [X]
R4 KLIF; system32\DRIVERS\klif.sys [X]
R4 klkbdflt; system32\DRIVERS\klkbdflt.sys [X]
R4 klmouflt; system32\DRIVERS\klmouflt.sys [X]
R4 klpd; system32\DRIVERS\klpd.sys [X]
R4 kltdi; system32\DRIVERS\kltdi.sys [X]
R4 kneps; system32\DRIVERS\kneps.sys [X]
end
*****************
Restore point was successfully created.
Processes closed successfully.
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
FF Homepage: Mozilla\Firefox\Profiles\d9nevbql.default -> moz-extension://ee4e033f-544b-4814-8b0e-982398c13e3c/dynamicHomePage.html => not found.
"Firefox homepage" => removed successfully
"Firefox NewTabOverride (_j7Members_@www.convertdocsonline.com) " => removed successfully
"HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE" => removed successfully
C:\Users\demoniaco\AppData\Roaming\Mozilla\Firefox\Profiles\d9nevbql.default\Extensions\_j7Members_@www.convertdocsonline.com.xpi => moved successfully
"HKLM\System\CurrentControlSet\Services\ApfiltrService" => removed successfully
ApfiltrService => service removed successfully
cm_km => Unable to stop service.
HKLM\System\CurrentControlSet\Services\cm_km => key not found
cm_km => service removed successfully
kl1 => Unable to stop service.
"HKLM\System\CurrentControlSet\Services\kl1" => removed successfully
kl1 => service removed successfully
klbackupdisk => Unable to stop service.
"HKLM\System\CurrentControlSet\Services\klbackupdisk" => removed successfully
klbackupdisk => service removed successfully
klbackupflt => Unable to stop service.
"HKLM\System\CurrentControlSet\Services\klbackupflt" => removed successfully
klbackupflt => service removed successfully
kldisk => Unable to stop service.
HKLM\System\CurrentControlSet\Services\kldisk => key not found
kldisk => service removed successfully
klflt => Unable to stop service.
"HKLM\System\CurrentControlSet\Services\klflt" => removed successfully
klflt => service removed successfully
klhk => Unable to stop service.
"HKLM\System\CurrentControlSet\Services\klhk" => removed successfully
klhk => service removed successfully
KLIF => Unable to stop service.
"HKLM\System\CurrentControlSet\Services\KLIF" => removed successfully
KLIF => service removed successfully
klkbdflt => Unable to stop service.
"HKLM\System\CurrentControlSet\Services\klkbdflt" => removed successfully
klkbdflt => service removed successfully
klmouflt => Unable to stop service.
"HKLM\System\CurrentControlSet\Services\klmouflt" => removed successfully
klmouflt => service removed successfully
klpd => Unable to stop service.
HKLM\System\CurrentControlSet\Services\klpd => key not found
klpd => service removed successfully
kltdi => Unable to stop service.
"HKLM\System\CurrentControlSet\Services\kltdi" => removed successfully
kltdi => service removed successfully
kneps => Unable to stop service.
HKLM\System\CurrentControlSet\Services\kneps => key not found
kneps => service removed successfully
=========== EmptyTemp: ==========
BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 83514936 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 13895419085 B
Edge => 0 B
Chrome => 847644723 B
Firefox => 384956165 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 66228 B
Public => 0 B
ProgramData => 0 B
systemprofile => 16802 B
systemprofile32 => 66228 B
LocalService => 0 B
NetworkService => 14750 B
demoniaco => 212908552 B
RecycleBin => 2613608887 B
EmptyTemp: => 16.8 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 16:27:59 ====
Ran by demoniaco (18-12-2017 16:26:13) Run:1
Running from C:\Users\demoniaco\Desktop
Loaded Profiles: demoniaco (Available Profiles: demoniaco)
Boot Mode: Normal
==============================================
fixlist content:
*****************
start
CreateRestorePoint:
CloseProcesses:
Hosts:
EmptyTemp:
FF Homepage: Mozilla\Firefox\Profiles\d9nevbql.default -> moz-extension://ee4e033f-544b-4814-8b0e-982398c13e3c/dynamicHomePage.html
FF NewTabOverride: Mozilla\Firefox\Profiles\d9nevbql.default -> Enabled: _j7Members_@www.convertdocsonline.com
FF Plugin: @microsoft.com/GENUINE -> disabled [No File]
FF Plugin-x32: @microsoft.com/GENUINE -> disabled [No File]
FF Extension: (ConvertDocsOnline) - C:\Users\demoniaco\AppData\Roaming\Mozilla\Firefox\Profiles\d9nevbql.default\Extensions\_j7Members_@www.convertdocsonline.com.xpi [2017-12-17]
S3 ApfiltrService; system32\DRIVERS\Apfiltr.sys [X]
R4 cm_km; system32\DRIVERS\cm_km.sys [X]
R4 kl1; system32\DRIVERS\kl1.sys [X]
R4 klbackupdisk; system32\DRIVERS\klbackupdisk.sys [X]
R4 klbackupflt; system32\DRIVERS\klbackupflt.sys [X]
R4 kldisk; system32\DRIVERS\kldisk.sys [X]
R4 klflt; system32\DRIVERS\klflt.sys [X]
R4 klhk; system32\DRIVERS\klhk.sys [X]
R4 KLIF; system32\DRIVERS\klif.sys [X]
R4 klkbdflt; system32\DRIVERS\klkbdflt.sys [X]
R4 klmouflt; system32\DRIVERS\klmouflt.sys [X]
R4 klpd; system32\DRIVERS\klpd.sys [X]
R4 kltdi; system32\DRIVERS\kltdi.sys [X]
R4 kneps; system32\DRIVERS\kneps.sys [X]
end
*****************
Restore point was successfully created.
Processes closed successfully.
C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.
FF Homepage: Mozilla\Firefox\Profiles\d9nevbql.default -> moz-extension://ee4e033f-544b-4814-8b0e-982398c13e3c/dynamicHomePage.html => not found.
"Firefox homepage" => removed successfully
"Firefox NewTabOverride (_j7Members_@www.convertdocsonline.com) " => removed successfully
"HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE" => removed successfully
"HKLM\Software\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE" => removed successfully
C:\Users\demoniaco\AppData\Roaming\Mozilla\Firefox\Profiles\d9nevbql.default\Extensions\_j7Members_@www.convertdocsonline.com.xpi => moved successfully
"HKLM\System\CurrentControlSet\Services\ApfiltrService" => removed successfully
ApfiltrService => service removed successfully
cm_km => Unable to stop service.
HKLM\System\CurrentControlSet\Services\cm_km => key not found
cm_km => service removed successfully
kl1 => Unable to stop service.
"HKLM\System\CurrentControlSet\Services\kl1" => removed successfully
kl1 => service removed successfully
klbackupdisk => Unable to stop service.
"HKLM\System\CurrentControlSet\Services\klbackupdisk" => removed successfully
klbackupdisk => service removed successfully
klbackupflt => Unable to stop service.
"HKLM\System\CurrentControlSet\Services\klbackupflt" => removed successfully
klbackupflt => service removed successfully
kldisk => Unable to stop service.
HKLM\System\CurrentControlSet\Services\kldisk => key not found
kldisk => service removed successfully
klflt => Unable to stop service.
"HKLM\System\CurrentControlSet\Services\klflt" => removed successfully
klflt => service removed successfully
klhk => Unable to stop service.
"HKLM\System\CurrentControlSet\Services\klhk" => removed successfully
klhk => service removed successfully
KLIF => Unable to stop service.
"HKLM\System\CurrentControlSet\Services\KLIF" => removed successfully
KLIF => service removed successfully
klkbdflt => Unable to stop service.
"HKLM\System\CurrentControlSet\Services\klkbdflt" => removed successfully
klkbdflt => service removed successfully
klmouflt => Unable to stop service.
"HKLM\System\CurrentControlSet\Services\klmouflt" => removed successfully
klmouflt => service removed successfully
klpd => Unable to stop service.
HKLM\System\CurrentControlSet\Services\klpd => key not found
klpd => service removed successfully
kltdi => Unable to stop service.
"HKLM\System\CurrentControlSet\Services\kltdi" => removed successfully
kltdi => service removed successfully
kneps => Unable to stop service.
HKLM\System\CurrentControlSet\Services\kneps => key not found
kneps => service removed successfully
=========== EmptyTemp: ==========
BITS transfer queue => 8388608 B
DOMStore, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 83514936 B
Java, Flash, Steam htmlcache => 0 B
Windows/system/drivers => 13895419085 B
Edge => 0 B
Chrome => 847644723 B
Firefox => 384956165 B
Opera => 0 B
Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 66228 B
Public => 0 B
ProgramData => 0 B
systemprofile => 16802 B
systemprofile32 => 66228 B
LocalService => 0 B
NetworkService => 14750 B
demoniaco => 212908552 B
RecycleBin => 2613608887 B
EmptyTemp: => 16.8 GB temporary data Removed.
================================
The system needed a reboot.
==== End of Fixlog 16:27:59 ====
Re: Prosím o kontrolu logu
Stáhni AdwCleaner https://toolslib.net/downloads/viewdown ... dwcleaner/Ulož na plochu
Ukonči všechny programy
Klikni nejprve na >Scan<(hledání) a pak na >Clean< (mazání).
Proběhne skenováni a pak se objeví log, který sem vlož.
nasledne tento tool MBAM: http://forum.viry.cz/viewtopic.php?f=29&t=144868-Nainstaluj,dej úplný sken ( ujisti se ze mas zaskrtle i rootkit)
-Log zkopíruj sem.
-
Thomas
- Návštěvník
- Příspěvky: 260
- Registrován: 07 dub 2005 20:02
- Bydliště: Hradec Králové
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
# AdwCleaner 7.0.5.0 - Logfile created on Mon Dec 18 15:46:53 2017
# Updated on 2017/29/11 by Malwarebytes
# Database: 12-15-2017.1
# Running on Windows 7 Professional (X64)
# Mode: scan
# Support: https://www.malwarebytes.com/support
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
No malicious folders found.
***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
No malicious registry entries found.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries.
*************************
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt ##########
# Updated on 2017/29/11 by Malwarebytes
# Database: 12-15-2017.1
# Running on Windows 7 Professional (X64)
# Mode: scan
# Support: https://www.malwarebytes.com/support
***** [ Services ] *****
No malicious services found.
***** [ Folders ] *****
No malicious folders found.
***** [ Files ] *****
No malicious files found.
***** [ DLL ] *****
No malicious DLLs found.
***** [ WMI ] *****
No malicious WMI found.
***** [ Shortcuts ] *****
No malicious shortcuts found.
***** [ Tasks ] *****
No malicious tasks found.
***** [ Registry ] *****
No malicious registry entries found.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries.
***** [ Chromium (and derivatives) ] *****
No malicious Chromium entries.
*************************
########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt ##########
-
Thomas
- Návštěvník
- Příspěvky: 260
- Registrován: 07 dub 2005 20:02
- Bydliště: Hradec Králové
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
Malwarebytes
www.malwarebytes.com
-Podrobnosti logovacího souboru-
Datum skenování: 18.12.17
Čas skenování: 16:53
Logovací soubor: 8970295e-e40b-11e7-baea-8c89a5ee9c23.json
Správce: Ano
-Informace o softwaru-
Verze: 3.3.1.2183
Verze komponentů: 1.0.262
Aktualizovat verzi balíku komponent: 1.0.3513
Licence: Zkušební
-Systémová informace-
OS: Windows 7 Service Pack 1
CPU: x64
Systém souborů: NTFS
Uživatel: demoniaco-PC\demoniaco
-Shrnutí skenování-
Typ skenování: Skenování hrozeb (Threat Scan)
Výsledek: Dokončeno
Skenované objekty: 223982
Zjištěné hrozby: 50
Hrozby umístěné do karantény: 0
(Nebyly zjištěny žádné škodlivé položky)
Uplynulý čas: 2 min, 7 sek
-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Zakázáno
Heuristika: Povoleno
Potenciálně nežádoucí program: Detekovat
Potenciálně nežádoucí modifikace: Detekovat
-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)
Modul: 0
(Nebyly zjištěny žádné škodlivé položky)
Klíč registru: 0
(Nebyly zjištěny žádné škodlivé položky)
Hodnota v registru: 0
(Nebyly zjištěny žádné škodlivé položky)
Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)
Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)
Adresář: 9
PUP.Optional.MindSpark.Generic, C:\USERS\DEMONIACO\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\D9NEVBQL.DEFAULT\BROWSER-EXTENSION-DATA\_j7Members_@www.convertdocsonline.com, Žádná uživatelská akce, [1394], [468075],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\hfabogadkbndhkibepllmkfgmfgfafjc, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\_metadata, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\config, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\icons, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\libs, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\js, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\USERS\DEMONIACO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\HFABOGADKBNDHKIBEPLLMKFGMFGFAFJC, Žádná uživatelská akce, [1394], [467555],1.0.3513
Soubor: 41
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Roaming\Mozilla\Firefox\Profiles\d9nevbql.default\browser-extension-data\_j7Members_@www.convertdocsonline.com\storage.js, Žádná uživatelská akce, [1394], [468075],1.0.3513
PUP.Optional.MindSpark.Generic, C:\USERS\DEMONIACO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Secure Preferences, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\USERS\DEMONIACO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Preferences, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\hfabogadkbndhkibepllmkfgmfgfafjc\000003.log, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\hfabogadkbndhkibepllmkfgmfgfafjc\CURRENT, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\hfabogadkbndhkibepllmkfgmfgfafjc\LOCK, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\hfabogadkbndhkibepllmkfgmfgfafjc\LOG, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\hfabogadkbndhkibepllmkfgmfgfafjc\LOG.old, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\hfabogadkbndhkibepllmkfgmfgfafjc\MANIFEST-000001, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\USERS\DEMONIACO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\HFABOGADKBNDHKIBEPLLMKFGMFGFAFJC\13.321.12.24541_0\MANIFEST.JSON, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\config\config.json, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\icons\icon128.png, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\icons\icon16.png, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\icons\icon19disabled.png, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\icons\icon19on.png, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\icons\icon48.png, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\js\ajax.js, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\js\background.js, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\js\chrome.js, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\js\content_script.js, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\js\dlp.js, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\js\dlpHelper.js, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\js\extension_detect.js, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\js\index.js, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\js\logger.js, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\js\pageUtils.js, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\js\product.js, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\js\storage.js, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\js\TabManager.js, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\js\TemplateParser.js, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\js\ul.js, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\js\urlFragmentActions.js, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\js\urlUtils.js, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\js\util.js, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\js\webtooltabAPI.js, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\libs\PartnerId.js, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\_metadata\computed_hashes.json, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\_metadata\verified_contents.json, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\dynamicNewTab.html, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\product.html, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\stubby.html, Žádná uživatelská akce, [1394], [467555],1.0.3513
Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)
(end)
www.malwarebytes.com
-Podrobnosti logovacího souboru-
Datum skenování: 18.12.17
Čas skenování: 16:53
Logovací soubor: 8970295e-e40b-11e7-baea-8c89a5ee9c23.json
Správce: Ano
-Informace o softwaru-
Verze: 3.3.1.2183
Verze komponentů: 1.0.262
Aktualizovat verzi balíku komponent: 1.0.3513
Licence: Zkušební
-Systémová informace-
OS: Windows 7 Service Pack 1
CPU: x64
Systém souborů: NTFS
Uživatel: demoniaco-PC\demoniaco
-Shrnutí skenování-
Typ skenování: Skenování hrozeb (Threat Scan)
Výsledek: Dokončeno
Skenované objekty: 223982
Zjištěné hrozby: 50
Hrozby umístěné do karantény: 0
(Nebyly zjištěny žádné škodlivé položky)
Uplynulý čas: 2 min, 7 sek
-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Zakázáno
Heuristika: Povoleno
Potenciálně nežádoucí program: Detekovat
Potenciálně nežádoucí modifikace: Detekovat
-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)
Modul: 0
(Nebyly zjištěny žádné škodlivé položky)
Klíč registru: 0
(Nebyly zjištěny žádné škodlivé položky)
Hodnota v registru: 0
(Nebyly zjištěny žádné škodlivé položky)
Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)
Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)
Adresář: 9
PUP.Optional.MindSpark.Generic, C:\USERS\DEMONIACO\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\D9NEVBQL.DEFAULT\BROWSER-EXTENSION-DATA\_j7Members_@www.convertdocsonline.com, Žádná uživatelská akce, [1394], [468075],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\hfabogadkbndhkibepllmkfgmfgfafjc, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\_metadata, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\config, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\icons, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\libs, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\js, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\USERS\DEMONIACO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\HFABOGADKBNDHKIBEPLLMKFGMFGFAFJC, Žádná uživatelská akce, [1394], [467555],1.0.3513
Soubor: 41
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Roaming\Mozilla\Firefox\Profiles\d9nevbql.default\browser-extension-data\_j7Members_@www.convertdocsonline.com\storage.js, Žádná uživatelská akce, [1394], [468075],1.0.3513
PUP.Optional.MindSpark.Generic, C:\USERS\DEMONIACO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Secure Preferences, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\USERS\DEMONIACO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\Default\Preferences, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\hfabogadkbndhkibepllmkfgmfgfafjc\000003.log, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\hfabogadkbndhkibepllmkfgmfgfafjc\CURRENT, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\hfabogadkbndhkibepllmkfgmfgfafjc\LOCK, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\hfabogadkbndhkibepllmkfgmfgfafjc\LOG, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\hfabogadkbndhkibepllmkfgmfgfafjc\LOG.old, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\hfabogadkbndhkibepllmkfgmfgfafjc\MANIFEST-000001, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\USERS\DEMONIACO\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\EXTENSIONS\HFABOGADKBNDHKIBEPLLMKFGMFGFAFJC\13.321.12.24541_0\MANIFEST.JSON, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\config\config.json, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\icons\icon128.png, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\icons\icon16.png, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\icons\icon19disabled.png, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\icons\icon19on.png, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\icons\icon48.png, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\js\ajax.js, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\js\background.js, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\js\chrome.js, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\js\content_script.js, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\js\dlp.js, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\js\dlpHelper.js, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\js\extension_detect.js, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\js\index.js, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\js\logger.js, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\js\pageUtils.js, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\js\product.js, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\js\storage.js, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\js\TabManager.js, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\js\TemplateParser.js, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\js\ul.js, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\js\urlFragmentActions.js, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\js\urlUtils.js, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\js\util.js, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\js\webtooltabAPI.js, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\libs\PartnerId.js, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\_metadata\computed_hashes.json, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\_metadata\verified_contents.json, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\dynamicNewTab.html, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\product.html, Žádná uživatelská akce, [1394], [467555],1.0.3513
PUP.Optional.MindSpark.Generic, C:\Users\demoniaco\AppData\Local\Google\Chrome\User Data\Default\Extensions\hfabogadkbndhkibepllmkfgmfgfafjc\13.321.12.24541_0\stubby.html, Žádná uživatelská akce, [1394], [467555],1.0.3513
Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)
(end)
Re: Prosím o kontrolu logu
nezaskrtl jsi skenovat rootkity.
muzes znovu pustit MBAM, zaskrtni krome ostatniho skenovat i rootkit a pak muzes dat odstranit vse.
muzes znovu pustit MBAM, zaskrtni krome ostatniho skenovat i rootkit a pak muzes dat odstranit vse.
-
Thomas
- Návštěvník
- Příspěvky: 260
- Registrován: 07 dub 2005 20:02
- Bydliště: Hradec Králové
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
Aktualizovat verzi balíku komponent: 1.0.3521
Licence: Zkušební
-Systémová informace-
OS: Windows 7 Service Pack 1
CPU: x64
Systém souborů: NTFS
Uživatel: demoniaco-PC\demoniaco
-Shrnutí skenování-
Typ skenování: Skenování hrozeb (Threat Scan)
Výsledek: Dokončeno
Skenované objekty: 224654
Zjištěné hrozby: 0
(Nebyly zjištěny žádné škodlivé položky)
Hrozby umístěné do karantény: 0
(Nebyly zjištěny žádné škodlivé položky)
Uplynulý čas: 5 min, 20 sek
-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Povoleno
Heuristika: Povoleno
Potenciálně nežádoucí program: Detekovat
Potenciálně nežádoucí modifikace: Detekovat
-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)
Modul: 0
(Nebyly zjištěny žádné škodlivé položky)
Klíč registru: 0
(Nebyly zjištěny žádné škodlivé položky)
Hodnota v registru: 0
(Nebyly zjištěny žádné škodlivé položky)
Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)
Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)
Adresář: 0
(Nebyly zjištěny žádné škodlivé položky)
Soubor: 0
(Nebyly zjištěny žádné škodlivé položky)
Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)
(end)
Licence: Zkušební
-Systémová informace-
OS: Windows 7 Service Pack 1
CPU: x64
Systém souborů: NTFS
Uživatel: demoniaco-PC\demoniaco
-Shrnutí skenování-
Typ skenování: Skenování hrozeb (Threat Scan)
Výsledek: Dokončeno
Skenované objekty: 224654
Zjištěné hrozby: 0
(Nebyly zjištěny žádné škodlivé položky)
Hrozby umístěné do karantény: 0
(Nebyly zjištěny žádné škodlivé položky)
Uplynulý čas: 5 min, 20 sek
-Možnosti skenování-
Paměť: Povoleno
Start: Povoleno
Systém souborů: Povoleno
Archivy: Povoleno
Rootkity: Povoleno
Heuristika: Povoleno
Potenciálně nežádoucí program: Detekovat
Potenciálně nežádoucí modifikace: Detekovat
-Podrobnosti skenování-
Proces: 0
(Nebyly zjištěny žádné škodlivé položky)
Modul: 0
(Nebyly zjištěny žádné škodlivé položky)
Klíč registru: 0
(Nebyly zjištěny žádné škodlivé položky)
Hodnota v registru: 0
(Nebyly zjištěny žádné škodlivé položky)
Data registrů: 0
(Nebyly zjištěny žádné škodlivé položky)
Datové proudy: 0
(Nebyly zjištěny žádné škodlivé položky)
Adresář: 0
(Nebyly zjištěny žádné škodlivé položky)
Soubor: 0
(Nebyly zjištěny žádné škodlivé položky)
Fyzický sektor: 0
(Nebyly zjištěny žádné škodlivé položky)
(end)
Re: Prosím o kontrolu logu
vypada to ciste.
jinak doporucuji si nainstalovat nejaky AV.
jinak doporucuji si nainstalovat nejaky AV.
-
Thomas
- Návštěvník
- Příspěvky: 260
- Registrován: 07 dub 2005 20:02
- Bydliště: Hradec Králové
- Kontaktovat uživatele:
Re: Prosím o kontrolu logu
Díky! Zaslal jsem vám $ příspěvek, páč jste mi pomohli ne naposled určitě... 
Re: Prosím o kontrolu logu
Muzes odinstalovat MBAM.
nemas zac...rad jsem pomohl....
nemas zac...rad jsem pomohl....
Přispějete na provoz fóra?