Logfile of random's system information tool 1.10 (written by random/random)
Run by Otakar VavreÄŤka at 2019-01-26 11:56:45
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 17 GB (11%) free of 158 GB
Total RAM: 3066 MB (58% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:56:58, on 26.1.2019
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Unable to get Internet Explorer version!
Boot mode: Normal
Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\MSTMON_N.EXE
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Users\Otakar VavreÄŤka\AppData\Local\Viber\Viber.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Windows\System32\StikyNot.exe
C:\Program Files\Mamemail\Mamemail Postak\Postak.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\Users\Otakar VavreÄŤka\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Users\Otakar VavreÄŤka\Desktop\Gmail Notifier Plus.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\taskeng.exe
C:\Users\Otakar VavreÄŤka\Desktop\RSIT.exe
C:\Program Files\trend micro\Otakar VavreÄŤka.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.8.0_73\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre1.8.0_73\bin\jp2ssv.dll
O4 - HKLM\..\Run: [KONICA MINOLTA PagePro 1300WStatusDisplay] C:\Windows\system32\MSTMON_N.EXE
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\ecmds.exe" /launch /hide
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Viber] "C:\Users\Otakar VavreÄŤka\AppData\Local\Viber\Viber.exe" StartMinimized
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Otakar VavreÄŤka\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
O4 - HKCU\..\Run: [CCleaner Monitoring] "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
O4 - Startup: Mámemail Pošťák.lnk = C:\Program Files\Mamemail\Mamemail Postak\Postak.exe
O8 - Extra context menu item: Free YouTube Download - C:\Program Files\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm
O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Program Files\Common Files\DVDVideoSoft\plugins\freeytmp3downloader.htm
O9 - Extra button: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files\ICQ7.6\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.6 - {7644E42D-B096-457F-8B5B-901238FC81AE} - C:\Program Files\ICQ7.6\ICQ.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - (no file)
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: DESlock+ Service (dlpsrv) - DESlock Limited. - C:\Program Files\ESET\ESET Secure Data\dlpsrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: ESET Firewall Helper (ekrnEpfw) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Google Chrome Elevation Service (GoogleChromeElevationService) - Google Inc. - C:\Program Files\Google\Chrome\Application\71.0.3578.98\elevation_service.exe
O23 - Service: SluĹľba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: SluĹľba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\system32\IoctlSvc.exe
O23 - Service: TeamViewer 14 (TeamViewer) - TeamViewer GmbH - C:\Program Files\TeamViewer\TeamViewer_Service.exe
--
End of file - 4927 bytes
=========Mozilla firefox=========
ProfilePath - C:\Users\Otakar VavreÄŤka\AppData\Roaming\Mozilla\Firefox\Profiles\91phxdze.default-1494695803407
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 22.0.0.209 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_22_0_0_209.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@canon.com/MycameraPlugin]
"Description"=
"Path"=
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=11.73.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=11.73.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre1.8.0_73\bin\plugin2\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.33.23\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.33.23\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.6]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.2]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.1.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.1]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.2.6]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=3.0.3]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=3.0.4]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=3.0.6]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre1.8.0_73\bin\ssv.dll [2016-02-10 460384]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-02-10 172640]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"KONICA MINOLTA PagePro 1300WStatusDisplay"=C:\Windows\system32\MSTMON_N.EXE [2004-11-25 151552]
"egui"=C:\Program Files\ESET\ESET Smart Security\ecmds.exe [2018-11-29 169616]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016]
"Viber"=C:\Users\Otakar VavreÄŤka\AppData\Local\Viber\Viber.exe [2017-07-20 31348816]
"cz.seznam.software.szndesktop"=C:\Users\Otakar VavreÄŤka\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2018-03-27 109808]
"RESTART_STICKY_NOTES"=C:\Windows\System32\StikyNot.exe [2009-07-14 354304]
"CCleaner Monitoring"=C:\Program Files\CCleaner\CCleaner.exe [2014-10-29 4826904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CCleaner Monitoring]
C:\Program Files\CCleaner\CCleaner.exe [2014-10-29 4826904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.autoupdate]
C:\Users\Otakar VavreÄŤka\AppData\Roaming\Seznam.cz\szninstall.exe [2018-03-27 1069296]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop]
C:\Users\Otakar VavreÄŤka\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2018-03-27 109808]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hppwrsav]
C:\SCANJET\PrecisionScanLT\hppwrsav.exe [1999-06-07 23552]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KONICA MINOLTA PagePro 1300WStatusDisplay]
C:\Windows\system32\MSTMON_N.EXE [2004-11-25 151552]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KONICA MINOLTA PagePro 1400W STD]
C:\Windows\system32\MSTMON_Y.EXE [2006-03-01 184320]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MP3 Skype Recorder]
C:\Users\Otakar VavreÄŤka\AppData\Local\MP3 Skype recorder\MP3SkypeRecorder.exe [2015-11-13 2216600]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PAC7302_Monitor]
C:\Windows\PixArt\PAC7302\Monitor.exe [2006-11-03 319488]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Seznam Postak]
C:\Users\Otakar VavreÄŤka\AppData\Local\Seznam.cz\bin\postak.exe [2012-01-10 491040]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\seznam-listicka-distribuce]
C:\Program Files\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1174016]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMAXPnP]
C:\Program Files\Analog Devices\Core\smax4pnp.exe [2009-05-18 1314816]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Viber]
C:\Users\Otakar VavreÄŤka\AppData\Local\Viber\Viber.exe [2017-07-20 31348816]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^ImageBrowser EX Agent.lnk]
C:\PROGRA~1\Canon\IMAGEB~1\MFMANA~1.EXE [2013-01-29 69120]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Otakar Vavrečka^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Mámemail Pošťák.lnk]
C:\PROGRA~1\Mamemail\MAMEMA~1\Postak.exe [2015-04-13 740352]
C:\Users\Otakar VavreÄŤka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Mámemail Pošťák.lnk - C:\Program Files\Mamemail\Mamemail Postak\Postak.exe
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro37.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MBAMService]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 month======
2019-01-25 21:07:37 ----RAC---- C:\Windows\system32\CH341DLL.DLL
2019-01-25 21:07:37 ----RAC---- C:\Windows\system32\drivers\CH341WDM.SYS
2019-01-25 19:34:15 ----AC---- C:\Windows\system32\CH341PT.DLL
2019-01-25 19:34:15 ----AC---- C:\Windows\system32\drivers\CH341SER.SYS
2019-01-25 19:34:15 ----AC---- C:\Windows\system32\drivers\CH341S98.SYS
2019-01-25 16:11:16 ----DC---- C:\WCH.CN
2019-01-24 17:25:45 ----DC---- C:\SkyGz
2019-01-09 08:14:33 ----A---- C:\Windows\system32\mshtml.dll
2019-01-09 08:14:30 ----A---- C:\Windows\system32\ieframe.dll
2019-01-09 08:14:29 ----A---- C:\Windows\system32\wininet.dll
2019-01-09 08:14:29 ----A---- C:\Windows\system32\iertutil.dll
2019-01-09 08:14:28 ----A---- C:\Windows\system32\urlmon.dll
2019-01-09 08:14:28 ----A---- C:\Windows\system32\ntkrnlpa.exe
2019-01-09 08:14:28 ----A---- C:\Windows\system32\msrd3x40.dll
2019-01-09 08:14:28 ----A---- C:\Windows\system32\lsasrv.dll
2019-01-09 08:14:27 ----A---- C:\Windows\system32\rasdiag.dll
2019-01-09 08:14:27 ----A---- C:\Windows\system32\rascfg.dll
2019-01-09 08:14:27 ----A---- C:\Windows\system32\ntoskrnl.exe
2019-01-09 08:14:27 ----A---- C:\Windows\system32\msfeeds.dll
2019-01-09 08:14:27 ----A---- C:\Windows\system32\drivers\wanarp.sys
2019-01-09 08:14:26 ----A---- C:\Windows\system32\rasser.dll
2019-01-09 08:14:26 ----A---- C:\Windows\system32\rasmxs.dll
2019-01-09 08:14:26 ----A---- C:\Windows\system32\ntdll.dll
2019-01-09 08:14:26 ----A---- C:\Windows\system32\iedkcs32.dll
2019-01-09 08:14:26 ----A---- C:\Windows\system32\drivers\ntfs.sys
2019-01-09 08:14:26 ----A---- C:\Windows\system32\drivers\ndproxy.sys
2019-01-09 08:14:26 ----A---- C:\Windows\system32\drivers\ndistapi.sys
2019-01-09 08:14:25 ----A---- C:\Windows\system32\webcheck.dll
2019-01-09 08:14:25 ----A---- C:\Windows\system32\rstrui.exe
2019-01-09 08:14:25 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2019-01-09 08:14:25 ----A---- C:\Windows\system32\kerberos.dll
2019-01-09 08:14:25 ----A---- C:\Windows\system32\halmacpi.dll
2019-01-09 08:14:25 ----A---- C:\Windows\system32\halacpi.dll
2019-01-09 08:14:25 ----A---- C:\Windows\system32\hal.dll
2019-01-09 08:14:25 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2019-01-09 08:14:25 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2019-01-09 08:14:24 ----AC---- C:\Windows\system32\drivers\viac7.sys
2019-01-09 08:14:24 ----AC---- C:\Windows\system32\drivers\processr.sys
2019-01-09 08:14:24 ----AC---- C:\Windows\system32\drivers\intelppm.sys
2019-01-09 08:14:24 ----AC---- C:\Windows\system32\drivers\amdppm.sys
2019-01-09 08:14:24 ----AC---- C:\Windows\system32\drivers\amdk8.sys
2019-01-09 08:14:24 ----A---- C:\Windows\system32\wdigest.dll
2019-01-09 08:14:24 ----A---- C:\Windows\system32\TSpkg.dll
2019-01-09 08:14:24 ----A---- C:\Windows\system32\srcore.dll
2019-01-09 08:14:24 ----A---- C:\Windows\system32\smss.exe
2019-01-09 08:14:24 ----A---- C:\Windows\system32\schannel.dll
2019-01-09 08:14:24 ----A---- C:\Windows\system32\rpchttp.dll
2019-01-09 08:14:24 ----A---- C:\Windows\system32\rpcrt4.dll
2019-01-09 08:14:24 ----A---- C:\Windows\system32\ncrypt.dll
2019-01-09 08:14:24 ----A---- C:\Windows\system32\msv1_0.dll
2019-01-09 08:14:24 ----A---- C:\Windows\system32\drivers\videoprt.sys
2019-01-09 08:14:24 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2019-01-09 08:14:24 ----A---- C:\Windows\system32\csrsrv.dll
2019-01-09 08:14:24 ----A---- C:\Windows\system32\auditpol.exe
2019-01-09 08:14:24 ----A---- C:\Windows\system32\appidsvc.dll
2019-01-09 08:14:24 ----A---- C:\Windows\system32\appidapi.dll
2019-01-09 08:14:24 ----A---- C:\Windows\system32\advapi32.dll
2019-01-09 08:14:23 ----A---- C:\Windows\system32\jscript9.dll
2019-01-09 08:14:23 ----A---- C:\Windows\system32\apisetschema.dll
2019-01-09 08:14:22 ----A---- C:\Windows\system32\sspicli.dll
2019-01-09 08:14:22 ----A---- C:\Windows\system32\srclient.dll
2019-01-09 08:14:22 ----A---- C:\Windows\system32\setbcdlocale.dll
2019-01-09 08:14:22 ----A---- C:\Windows\system32\mshtmlmedia.dll
2019-01-09 08:14:22 ----A---- C:\Windows\system32\lsass.exe
2019-01-09 08:14:22 ----A---- C:\Windows\system32\ie4uinit.exe
2019-01-09 08:14:22 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2019-01-09 08:14:22 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2019-01-09 08:14:22 ----A---- C:\Windows\system32\drivers\appid.sys
2019-01-09 08:14:22 ----A---- C:\Windows\system32\credssp.dll
2019-01-09 08:14:22 ----A---- C:\Windows\system32\bcrypt.dll
2019-01-09 08:14:21 ----A---- C:\Windows\system32\vbscript.dll
2019-01-09 08:14:21 ----A---- C:\Windows\system32\sspisrv.dll
2019-01-09 08:14:21 ----A---- C:\Windows\system32\secur32.dll
2019-01-09 08:14:21 ----A---- C:\Windows\system32\msobjs.dll
2019-01-09 08:14:21 ----A---- C:\Windows\system32\msaudite.dll
2019-01-09 08:14:21 ----A---- C:\Windows\system32\jscript.dll
2019-01-09 08:14:21 ----A---- C:\Windows\system32\cryptbase.dll
2019-01-09 08:14:21 ----A---- C:\Windows\system32\appidpolicyconverter.exe
2019-01-09 08:14:21 ----A---- C:\Windows\system32\appidcertstorecheck.exe
2019-01-09 08:14:21 ----A---- C:\Windows\system32\adtschema.dll
2019-01-09 08:14:20 ----A---- C:\Windows\system32\ieui.dll
2019-01-09 08:14:20 ----A---- C:\Windows\system32\ieapfltr.dll
2019-01-09 08:14:19 ----A---- C:\Windows\system32\winsrv.dll
2019-01-09 08:14:19 ----A---- C:\Windows\system32\occache.dll
2019-01-09 08:14:19 ----A---- C:\Windows\system32\msrating.dll
2019-01-09 08:14:19 ----A---- C:\Windows\system32\mshtmled.dll
2019-01-09 08:14:19 ----A---- C:\Windows\system32\KernelBase.dll
2019-01-09 08:14:19 ----A---- C:\Windows\system32\jsproxy.dll
2019-01-09 08:14:19 ----A---- C:\Windows\system32\jscript9diag.dll
2019-01-09 08:14:19 ----A---- C:\Windows\system32\ieUnatt.exe
2019-01-09 08:14:19 ----A---- C:\Windows\system32\ieetwproxystub.dll
2019-01-09 08:14:19 ----A---- C:\Windows\system32\dxtrans.dll
2019-01-09 08:14:19 ----A---- C:\Windows\system32\dxtmsft.dll
2019-01-09 08:14:18 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2019-01-09 08:14:18 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2019-01-09 08:14:18 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2019-01-09 08:14:18 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2019-01-09 08:14:18 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-01-09 08:14:18 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2019-01-09 08:14:18 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2019-01-09 08:14:18 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2019-01-09 08:14:18 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2019-01-09 08:14:18 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2019-01-09 08:14:18 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2019-01-09 08:14:18 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2019-01-09 08:14:18 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2019-01-09 08:14:18 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2019-01-09 08:14:18 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2019-01-09 08:14:18 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2019-01-09 08:14:18 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2019-01-09 08:14:18 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2019-01-09 08:14:18 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2019-01-09 08:14:18 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2019-01-09 08:14:18 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2019-01-09 08:14:18 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2019-01-09 08:14:18 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2019-01-09 08:14:18 ----A---- C:\Windows\system32\MshtmlDac.dll
2019-01-09 08:14:18 ----A---- C:\Windows\system32\kernel32.dll
2019-01-09 08:14:18 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2019-01-09 08:14:18 ----A---- C:\Windows\system32\inseng.dll
2019-01-09 08:14:18 ----A---- C:\Windows\system32\iesetup.dll
2019-01-09 08:14:18 ----A---- C:\Windows\system32\iernonce.dll
2019-01-09 08:14:18 ----A---- C:\Windows\system32\ieetwcollector.exe
2019-01-09 08:14:18 ----A---- C:\Windows\system32\conhost.exe
2019-01-09 08:14:17 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2019-01-09 08:14:17 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2019-01-09 08:14:17 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2019-01-09 08:14:17 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2019-01-09 08:14:17 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2019-01-09 08:14:16 ----A---- C:\Windows\system32\ieetwcollectorres.dll
======List of files/folders modified in the last 1 month======
2019-01-26 11:56:50 ----DC---- C:\Program Files\trend micro
2019-01-26 11:56:39 ----DC---- C:\Windows\temp
2019-01-26 08:40:02 ----DC---- C:\Windows\system32\config
2019-01-26 08:21:35 ----DC---- C:\Users\Otakar VavreÄŤka\AppData\Roaming\ViberPC
2019-01-26 08:14:04 ----DC---- C:\Program Files\TeamViewer
2019-01-26 01:45:15 ----DC---- C:\Windows\Prefetch
2019-01-25 21:38:56 ----DC---- C:\Users\Otakar VavreÄŤka\AppData\Roaming\vlc
2019-01-25 21:07:37 ----DC---- C:\Windows\system32\drivers
2019-01-25 21:07:37 ----ADC---- C:\Windows\System32
2019-01-25 20:37:47 ----DC---- C:\Windows\system32\Tasks
2019-01-25 19:30:05 ----SHD---- C:\System Volume Information
2019-01-25 19:27:45 ----D---- C:\Windows\system32\DriverStore
2019-01-25 19:27:43 ----DC---- C:\Windows\inf
2019-01-25 19:08:42 ----DC---- C:\Windows
2019-01-25 17:21:45 ----DC---- C:\Windows\debug
2019-01-25 17:17:27 ----DC---- C:\Windows\Minidump
2019-01-25 16:24:24 ----SHDC---- C:\Windows\Installer
2019-01-25 16:24:23 ----SHDC---- C:\Config.Msi
2019-01-25 16:24:12 ----D---- C:\Program Files\ESET
2019-01-23 11:31:08 ----DC---- C:\Windows\system32\catroot2
2019-01-22 16:04:52 ----DC---- C:\Windows\system32\NDF
2019-01-21 15:56:10 ----D---- C:\Windows\rescache
2019-01-19 12:42:39 ----DC---- C:\Program Files\Microsoft Silverlight
2019-01-15 12:58:31 ----DC---- C:\Windows\Microsoft.NET
2019-01-15 12:54:26 ----RSDC---- C:\Windows\assembly
2019-01-13 16:42:05 ----DC---- C:\Shoty
2019-01-09 12:19:54 ----AC---- C:\Windows\system32\PerfStringBackup.INI
2019-01-09 12:13:33 ----D---- C:\Windows\winsxs
2019-01-09 12:10:03 ----DC---- C:\Program Files\Internet Explorer
2019-01-09 12:10:02 ----DC---- C:\Windows\system32\en-US
2019-01-09 12:10:02 ----DC---- C:\Windows\system32\cs-CZ
2019-01-09 10:56:03 ----DC---- C:\Windows\system32\MRT
2019-01-09 10:50:49 ----AC---- C:\Windows\system32\MRT.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 DLMFENC;DLMFENC; C:\Windows\system32\DRIVERS\DLMFENC.sys [2018-02-27 142408]
R0 DLPCRYPT;DLPCRYPT; C:\Windows\system32\DRIVERS\dlpcrypt.sys [2017-11-02 109824]
R0 dlpvdisk;dlpvdisk; C:\Windows\system32\DRIVERS\dlpvdisk.sys [2017-11-02 84984]
R0 edevmon;edevmon; C:\Windows\system32\DRIVERS\edevmon.sys [2018-11-29 92176]
R0 giveio;giveio; C:\Windows\system32\giveio.sys [1996-04-03 5248]
R0 hpdskflt;HP Filter; C:\Windows\system32\DRIVERS\hpdskflt.sys [2011-05-13 25656]
R0 PxHelp20;PxHelp20; C:\Windows\System32\Drivers\PxHelp20.sys [2013-06-03 46096]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2018-01-05 173288]
R0 VDLPToken2;VDLPToken2; C:\Windows\system32\DRIVERS\vdlptkn2.sys [2017-11-02 125432]
R1 aswKbd;aswKbd; C:\Windows\system32\drivers\aswKbd.sys [2013-05-09 21576]
R1 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2018-11-29 124776]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2018-10-17 149192]
R1 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2018-10-17 72912]
R1 EpfwLWF;ESET Personal Firewall; C:\Windows\system32\DRIVERS\EpfwLWF.sys [2018-10-17 54240]
R1 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2018-10-17 94712]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 ekbdflt;ekbdflt; C:\Windows\system32\DRIVERS\ekbdflt.sys [2018-10-17 43816]
R2 npf;NetGroup Packet Filter Driver; \??\C:\Windows\system32\drivers\npf.sys [2015-08-21 36600]
R3 5U876UVC;HP Webcam [2 MP series]; C:\Windows\system32\DRIVERS\5U876.sys [2009-11-13 114688]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2011-05-13 35896]
R3 ADIHdAudAddService;ADI UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\ADIHdAud.sys [2009-05-18 381440]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\Windows\system32\DRIVERS\AGRSM.sys [2010-01-26 1163328]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-08-18 4994560]
R3 BCM43XX;OvladaÄŤ sĂĹĄovĂ©ho adaptĂ©ru Broadcom 802.11; C:\Windows\system32\DRIVERS\bcmwl6.sys [2013-09-26 4268608]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-06-04 1303728]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
S2 MLPTDR_N;MLPTDR_N; \??\C:\Windows\system32\MLPTDR_N.SYS [2003-07-18 18848]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;OvladaÄŤ filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2018-02-10 52928]
S3 athur;Atheros AR9271 Wireless Network Adapter Service; C:\Windows\system32\DRIVERS\athur.sys [2010-01-05 1500160]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 78336]
S3 BthEnum;OvladaÄŤ pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
S3 BthPan;ZaĹ™ĂzenĂ Bluetooth (sĂĹĄ PAN); C:\Windows\system32\drivers\bthpan.sys [2017-07-06 94208]
S3 BTHPORT;OvladaÄŤ portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 BTHUSB;OvladaÄŤ rozhranĂ USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 FTDIBUS;USB Serial Converter Driver; C:\Windows\system32\drivers\ftdibus.sys [2016-10-04 96464]
S3 FTSER2K;USB Serial Port Driver; C:\Windows\system32\drivers\ftser2k.sys [2016-10-04 74864]
S3 glavcam;GL USB2.0 UVC Camera Device; C:\Windows\system32\DRIVERS\glavcam.sys [2017-02-20 1475584]
S3 CH341;CH341WDM; C:\Windows\System32\Drivers\CH341WDM.SYS [2017-01-02 20464]
S3 PAC7302;PAC7302 VGA USB Camera; C:\Windows\system32\DRIVERS\PAC7302.SYS [2007-06-14 457856]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 14848]
S3 Revoflt;Revoflt; C:\Windows\system32\DRIVERS\revoflt.sys [2009-12-30 27192]
S3 RFCOMM;ZaĹ™ĂzenĂ Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 Ser2plx86;Prolific Serial port WDF driver; C:\Windows\system32\DRIVERS\ser2pl.sys []
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2018-02-10 51904]
S3 sscdbus;SAMSUNG USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\sscdbus.sys [2005-08-17 58352]
S3 sscdmdfl;SAMSUNG CDMA Modem Filter; C:\Windows\system32\DRIVERS\sscdmdfl.sys [2005-08-17 8272]
S3 sscdmdm;SAMSUNG CDMA Modem Drivers; C:\Windows\system32\DRIVERS\sscdmdm.sys [2005-08-17 93872]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2013-10-02 49152]
S3 usbscan;OvladaÄŤ skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 36352]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\Windows\system32\DRIVERS\VBoxNetAdp.sys [2015-03-02 115672]
S3 VBoxNetFlt;VirtualBox Bridged Networking Service; C:\Windows\system32\DRIVERS\VBoxNetFlt.sys []
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2018-02-10 52928]
S3 ViaC7;OvladaÄŤ procesoru VIA C7; C:\Windows\system32\drivers\viac7.sys [2018-12-28 53248]
S3 WinUsb;WinUsb; C:\Windows\system32\drivers\WinUsb.sys [2010-11-20 35968]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2018-08-13 83984]
R2 DiagTrack;@%SystemRoot%\system32\UtcResources.dll,-3001; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 dlpsrv;DESlock+ Service; C:\Program Files\ESET\ESET Secure Data\dlpsrv.exe [2017-11-02 486080]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2018-11-29 1833552]
R2 PLFlash DeviceIoControl Service;PLFlash DeviceIoControl Service; C:\Windows\system32\IoctlSvc.exe [2006-12-19 81920]
R2 TeamViewer;TeamViewer 14; C:\Program Files\TeamViewer\TeamViewer_Service.exe [2018-11-14 11786992]
R3 ekrnEpfw;ESET Firewall Helper; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2018-11-29 1833552]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2018-03-26 107592]
S2 gupdate;SluĹľba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-03 144200]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2018-03-26 47200]
S3 GoogleChromeElevationService;Google Chrome Elevation Service; C:\Program Files\Google\Chrome\Application\71.0.3578.98\elevation_service.exe [2018-12-12 375776]
S3 gupdatem;SluĹľba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-03 144200]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2019-01-09 104960]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-02-23 1343400]
S4 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2016-07-13 270016]
S4 AEADIFilters;Andrea ADI Filters Service; C:\Windows\system32\AEADISRV.EXE [2008-07-15 90112]
S4 AgereModemAudio;Agere Modem Call Progress Audio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [2009-12-03 26112]
S4 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-08-18 176128]
S4 EPSON_EB_RPCV4_01;EPSON V5 Service4(01); C:\ProgramData\EPSON\EPW!3 SSRP\E_S40ST7.EXE [2007-12-17 143872]
S4 EPSON_PM_RPCV4_01;EPSON V3 Service4(01); C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE [2007-01-11 113664]
S4 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2011-05-13 26168]
S4 HPSupportSolutionsFrameworkService;HP Support Solutions Framework Service; C:\Program Files\Hp\Common\HPSupportSolutionsFrameworkService.exe [2014-12-11 89864]
S4 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2016-06-11 146888]
S4 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2008-04-08 800040]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2018-03-26 136288]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Prosím o kontrolu notebooku, poslední dobou je pomalý
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Prosím o kontrolu notebooku, poslední dobou je pomalý
Blbý můžeš být,ale musíš si umět poradit...
Re: Prosím o kontrolu notebooku, poslední dobou je pomalý
Dobry den.
Stiahnite si na plochu nastroj AdwCleaner, link. na stiahnutie tu: https://toolslib.net/downloads/finish/1/
Pred spustenim nastroja povypinajte vsetke beziace okna programov, to su vsetke beziace programy pod desktopom.
Kliknite pravym tlacidlom mysi na program -> spustit ako Administrator.
Pokracujte kliknutim na tlacidlo Prehladaj teraz (Scan now) a pockajte, kym sa system doskenuje.
Po skene nechajte oznacene vsetky chlieviky, pripadne najdene hrozieby a pokracujte v dolnom pravom rohu tlacidlom Vycistit Teraz (Clean and Repair).
Po restartovani PC sa spusti nastroj AdwCleaner, klikni na Zobrazit soubor protokolu.
Spusti sa log, jeho obsah skopirujte sem.
Stiahnite si na plochu nastroj AdwCleaner, link. na stiahnutie tu: https://toolslib.net/downloads/finish/1/Pred spustenim nastroja povypinajte vsetke beziace okna programov, to su vsetke beziace programy pod desktopom.
Kliknite pravym tlacidlom mysi na program -> spustit ako Administrator.
Pokracujte kliknutim na tlacidlo Prehladaj teraz (Scan now) a pockajte, kym sa system doskenuje.
Po skene nechajte oznacene vsetky chlieviky, pripadne najdene hrozieby a pokracujte v dolnom pravom rohu tlacidlom Vycistit Teraz (Clean and Repair).
Po restartovani PC sa spusti nastroj AdwCleaner, klikni na Zobrazit soubor protokolu.
Spusti sa log, jeho obsah skopirujte sem.
► Vyšla moja nová kniha BOTNETY! 
Informácie o nej nájdete tu: >> BOTNETY <<
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT <<
----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Informácie o nej nájdete tu: >> BOTNETY << ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << ----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Re: Prosím o kontrolu notebooku, poslední dobou je pomalý
# -------------------------------
# Malwarebytes AdwCleaner 7.2.6.0
# -------------------------------
# Build: 12-18-2018
# Database: 2019-01-21.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 01-26-2019
# Duration: 00:00:09
# OS: Windows 7 Home Premium
# Cleaned: 37
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
Deleted C:\Program Files\Carambis
Deleted C:\Users\Otakar Vavrečka\AppData\Roaming\Carambis
Deleted C:\Program Files\Seznam.cz
Deleted C:\Users\Otakar Vavrečka\AppData\Local\Seznam.cz
Deleted C:\Users\Otakar Vavrečka\AppData\Roaming\Seznam.cz
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon PhotoRecord\PhotoRecord unInstall.lnk
Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon PhotoRecord\PhotoRecord ReadMe.lnk
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OpenCandyHelperRunOnceE33EEA27F82E4A8B91A4B589E13BC177
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OpenCandyHelperRunOnceD2C14D34ADEA4DAEBF236CF1FB43DFFA
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OpenCandyHelperRunOnceC7745B11D50A45EF95BE8EC76290B365
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OpenCandyHelperRunOnce969634C6473644D6962A8C186E9C7BCC
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OpenCandyHelperRunOnce704D3AFD68934EBEAD5583531531B0C7
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OpenCandyHelperRunOnce5FF9A6793D2249459A5E33AFB884F189
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OpenCandyHelperRunOnce5AE40829E3994EAE927588237786C6FF
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OpenCandyHelperRunAsStandardUserFD96219D53F1428CA129905168E8AEF6
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OpenCandyHelperRunAsStandardUserD841DA392046453C875C2FF289730397
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OpenCandyHelperRunAsStandardUserC58FF41A73AE44389FEEBF94B1E6FA62
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OpenCandyHelperRunAsStandardUserC1BBEE3497A94DB1A63A8FAE5B9D0498
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OpenCandyHelperRunAsStandardUserACB2CAE89F644B409A1D7C4EA67BB01B
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OpenCandyHelperRunAsStandardUser6A1BAA85F076493EAEF7B2FF44EBE4CF
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OpenCandyHelperRunAsStandardUser33C766F3583240B5AA37F650CC7672A4
Deleted HKCU\Software\Carambis
Deleted HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\SoundMAXPnP
Deleted HKLM\SOFTWARE\Classes\Unknown\shell\openas\command|FileCure.old
Deleted HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Deleted HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\cz.seznam.software.szndesktop
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Run|cz.seznam.software.szndesktop
Deleted HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\cz.seznam.software.autoupdate
Deleted HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\seznam-listicka-distribuce
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SeznamInstall
Deleted HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-505298747-3480647553-2469496864-1000\Software\Seznam.cz
Deleted HKCU\Software\AppDataLow\Software\Seznam.cz
Deleted HKCU\Software\Seznam.cz
Deleted HKLM\Software\Seznam.cz
Deleted HKCU\Software\Mozilla\NativeMessagingHosts\sznpp_nm
***** [ Chromium (and derivatives) ] *****
Deleted Seznam doplněk - Email
Deleted Seznam doplněk - Esko
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [5614 octets] - [26/01/2019 14:05:00]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
# Malwarebytes AdwCleaner 7.2.6.0
# -------------------------------
# Build: 12-18-2018
# Database: 2019-01-21.1 (Cloud)
# Support: https://www.malwarebytes.com/support
#
# -------------------------------
# Mode: Clean
# -------------------------------
# Start: 01-26-2019
# Duration: 00:00:09
# OS: Windows 7 Home Premium
# Cleaned: 37
# Failed: 0
***** [ Services ] *****
No malicious services cleaned.
***** [ Folders ] *****
Deleted C:\Program Files\Carambis
Deleted C:\Users\Otakar Vavrečka\AppData\Roaming\Carambis
Deleted C:\Program Files\Seznam.cz
Deleted C:\Users\Otakar Vavrečka\AppData\Local\Seznam.cz
Deleted C:\Users\Otakar Vavrečka\AppData\Roaming\Seznam.cz
***** [ Files ] *****
No malicious files cleaned.
***** [ DLL ] *****
No malicious DLLs cleaned.
***** [ WMI ] *****
No malicious WMI cleaned.
***** [ Shortcuts ] *****
Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon PhotoRecord\PhotoRecord unInstall.lnk
Deleted C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Canon PhotoRecord\PhotoRecord ReadMe.lnk
***** [ Tasks ] *****
No malicious tasks cleaned.
***** [ Registry ] *****
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OpenCandyHelperRunOnceE33EEA27F82E4A8B91A4B589E13BC177
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OpenCandyHelperRunOnceD2C14D34ADEA4DAEBF236CF1FB43DFFA
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OpenCandyHelperRunOnceC7745B11D50A45EF95BE8EC76290B365
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OpenCandyHelperRunOnce969634C6473644D6962A8C186E9C7BCC
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OpenCandyHelperRunOnce704D3AFD68934EBEAD5583531531B0C7
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OpenCandyHelperRunOnce5FF9A6793D2249459A5E33AFB884F189
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OpenCandyHelperRunOnce5AE40829E3994EAE927588237786C6FF
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OpenCandyHelperRunAsStandardUserFD96219D53F1428CA129905168E8AEF6
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OpenCandyHelperRunAsStandardUserD841DA392046453C875C2FF289730397
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OpenCandyHelperRunAsStandardUserC58FF41A73AE44389FEEBF94B1E6FA62
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OpenCandyHelperRunAsStandardUserC1BBEE3497A94DB1A63A8FAE5B9D0498
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OpenCandyHelperRunAsStandardUserACB2CAE89F644B409A1D7C4EA67BB01B
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OpenCandyHelperRunAsStandardUser6A1BAA85F076493EAEF7B2FF44EBE4CF
Deleted HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\OpenCandyHelperRunAsStandardUser33C766F3583240B5AA37F650CC7672A4
Deleted HKCU\Software\Carambis
Deleted HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\SoundMAXPnP
Deleted HKLM\SOFTWARE\Classes\Unknown\shell\openas\command|FileCure.old
Deleted HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
Deleted HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\cz.seznam.software.szndesktop
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Run|cz.seznam.software.szndesktop
Deleted HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\cz.seznam.software.autoupdate
Deleted HKLM\Software\Microsoft\Shared Tools\MSConfig\startupreg\seznam-listicka-distribuce
Deleted HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\SeznamInstall
Deleted HKCU\Software\Microsoft\Internet Explorer\InternetRegistry\REGISTRY\USER\S-1-5-21-505298747-3480647553-2469496864-1000\Software\Seznam.cz
Deleted HKCU\Software\AppDataLow\Software\Seznam.cz
Deleted HKCU\Software\Seznam.cz
Deleted HKLM\Software\Seznam.cz
Deleted HKCU\Software\Mozilla\NativeMessagingHosts\sznpp_nm
***** [ Chromium (and derivatives) ] *****
Deleted Seznam doplněk - Email
Deleted Seznam doplněk - Esko
***** [ Chromium URLs ] *****
No malicious Chromium URLs cleaned.
***** [ Firefox (and derivatives) ] *****
No malicious Firefox entries cleaned.
***** [ Firefox URLs ] *****
No malicious Firefox URLs cleaned.
*************************
[+] Delete Tracing Keys
[+] Reset Winsock
*************************
AdwCleaner[S00].txt - [5614 octets] - [26/01/2019 14:05:00]
########## EOF - C:\AdwCleaner\Logs\AdwCleaner[C00].txt ##########
Blbý můžeš být,ale musíš si umět poradit...
Re: Prosím o kontrolu notebooku, poslední dobou je pomalý
Preskenujte pocitac s FRST - navod tu: https://forum.viry.cz/viewtopic.php?f=24&t=132509, skopirujte FRST.log + Addition log sem.
► Vyšla moja nová kniha BOTNETY! Informácie o nej nájdete tu: >> BOTNETY <<
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT <<
----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Informácie o nej nájdete tu: >> BOTNETY << ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << ----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Re: Prosím o kontrolu notebooku, poslední dobou je pomalý
Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 26-01-2019
Ran by Otakar Vavrečka (administrator) on PC-OTAKAR (26-01-2019 15:38:02)
Running from C:\Users\Otakar Vavrečka\Desktop
Loaded Profiles: Otakar Vavrečka (Available Profiles: Otakar Vavrečka & Guest)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(DESlock Limited.) C:\Program Files\ESET\ESET Secure Data\dlpsrv.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Prolific Technology Inc.) C:\Windows\System32\IoctlSvc.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.33.23\GoogleCrashHandler.exe
(KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) C:\Windows\System32\MSTMON_N.EXE
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Viber Media S.Ã r.l.) C:\Users\Otakar Vavrečka\AppData\Local\Viber\Viber.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(TB development & investment, s.r.o.) C:\Program Files\Mamemail\Mamemail Postak\Postak.exe
(Baptiste Girod) C:\Users\Otakar Vavrečka\Desktop\Gmail Notifier Plus.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [KONICA MINOLTA PagePro 1300WStatusDisplay] => C:\Windows\system32\MSTMON_N.EXE [151552 2004-11-25] (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\ecmds.exe [169616 2018-11-29] (ESET)
HKU\S-1-5-21-505298747-3480647553-2469496864-1000\...\Run: [Viber] => C:\Users\Otakar Vavrečka\AppData\Local\Viber\Viber.exe [31348816 2017-07-20] (Viber Media S.Ã r.l.)
HKU\S-1-5-21-505298747-3480647553-2469496864-1000\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [354304 2009-07-14] (Microsoft Corporation)
HKU\S-1-5-21-505298747-3480647553-2469496864-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [4826904 2014-10-29] (Piriform Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\71.0.3578.98\Installer\chrmstp.exe [2018-12-14] (Google Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2018-09-20] (Adobe Systems, Inc.)
Startup: C:\Users\Otakar Vavrečka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Mámemail Pošťák.lnk [2016-08-18]
ShortcutTarget: Mámemail Pošťák.lnk -> C:\Program Files\Mamemail\Mamemail Postak\Postak.exe (TB development & investment, s.r.o.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4548DDFA-1512-4BFA-82B7-BD949C6B66D7}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{7B2E29D8-C151-4499-9A12-89D37C4D46F3}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-505298747-3480647553-2469496864-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-505298747-3480647553-2469496864-1000 -> {AA1A8F4B-E651-4E8B-B7F0-B1F0544A65BF} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_73\bin\ssv.dll [2016-02-10] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-02-10] (Oracle Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - No File
FireFox:
========
FF ProfilePath: C:\Users\Otakar Vavrečka\AppData\Roaming\Mozilla\Firefox\Profiles\91phxdze.default-1494695803407 [2019-01-26]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => not found
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_22_0_0_209.dll [2016-07-13] ()
FF Plugin: @java.com/DTPlugin,version=11.73.2 -> C:\Program Files\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll [2016-02-10] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.73.2 -> C:\Program Files\Java\jre1.8.0_73\bin\plugin2\npjp2.dll [2016-02-10] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] ( Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-20] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-20] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-12-04] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-505298747-3480647553-2469496864-1000: @talk.google.com/GoogleTalkPlugin -> C:\Users\Otakar Vavrečka\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-505298747-3480647553-2469496864-1000: @talk.google.com/O1DPlugin -> C:\Users\Otakar Vavrečka\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-505298747-3480647553-2469496864-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Otakar Vavrečka\AppData\Local\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-30] (Google Inc.)
FF Plugin HKU\S-1-5-21-505298747-3480647553-2469496864-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Otakar Vavrečka\AppData\Local\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-30] (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Otakar Vavrečka\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Otakar Vavrečka\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-04-17] (Google)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.google.com
CHR StartupUrls: Default -> "hxxp://www.google.com"
CHR NewTab: Default -> Not-active:"chrome-extension://blmojkbhnkkphngknkmgccmlenfaelkd/speeddial/html/newTab.html"
CHR Profile: C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default [2019-01-26]
CHR Extension: (Dokumenty) - C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-12]
CHR Extension: (Disk Google) - C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-03]
CHR Extension: (Seznam doplněk - Esko-) - C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2018-11-23]
CHR Extension: (YouTube) - C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-03]
CHR Extension: (Vyhledávání Google) - C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-03]
CHR Extension: (Adobe Acrobat) - C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-03-04]
CHR Extension: (Dokumenty Google offline) - C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-17]
CHR Extension: (Avast Online Security) - C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-09-28]
CHR Extension: (VXG Media Player) - C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Extensions\hncknjnnbahamgpjoafdebabmoamcnni [2019-01-11]
CHR Extension: (Fast Music Search) - C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljjjecfkodpceolgcjgojpaffaehjdhn [2017-07-03]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03]
CHR Extension: (Gmail) - C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-07-15]
CHR Extension: (Chrome Media Router) - C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-12-15]
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S4 AgereModemAudio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [26112 2009-12-03] (LSI Corporation)
R2 dlpsrv; C:\Program Files\ESET\ESET Secure Data\dlpsrv.exe [486080 2017-11-02] (DESlock Limited.)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [1833552 2018-11-29] (ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [1833552 2018-11-29] (ESET)
S4 EPSON_EB_RPCV4_01; C:\ProgramData\EPSON\EPW!3 SSRP\E_S40ST7.EXE [143872 2007-12-17] (SEIKO EPSON CORPORATION)
S4 EPSON_PM_RPCV4_01; C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE [113664 2007-01-11] (SEIKO EPSON CORPORATION)
S4 HPSupportSolutionsFrameworkService; C:\Program Files\Hp\Common\HPSupportSolutionsFrameworkService.exe [89864 2014-12-11] (Hewlett-Packard Company)
R2 PLFlash DeviceIoControl Service; C:\Windows\system32\IoctlSvc.exe [81920 2006-12-19] (Prolific Technology Inc.) [File not signed]
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [11786992 2018-11-14] (TeamViewer GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 5U876UVC; C:\Windows\System32\DRIVERS\5U876.sys [114688 2009-11-13] (Ricoh co.,Ltd.)
R1 aswKbd; C:\Windows\system32\Drivers\aswKbd.sys [21576 2013-05-09] (AVAST Software)
S3 athur; C:\Windows\System32\DRIVERS\athur.sys [1500160 2010-01-05] (Atheros Communications, Inc.)
S3 CH341; C:\Windows\System32\Drivers\CH341WDM.SYS [20464 2017-01-02] (www.winchiphead.com)
R0 DLMFENC; C:\Windows\System32\DRIVERS\DLMFENC.sys [142408 2018-02-27] (DESlock Ltd.)
R0 DLPCRYPT; C:\Windows\System32\DRIVERS\dlpcrypt.sys [109824 2017-11-02] (DESlock Ltd.)
R0 dlpvdisk; C:\Windows\System32\DRIVERS\dlpvdisk.sys [84984 2017-11-02] (DESlock Ltd.)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [124776 2018-11-29] (ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [92176 2018-11-29] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [149192 2018-10-17] (ESET)
R2 ekbdflt; C:\Windows\System32\DRIVERS\ekbdflt.sys [43816 2018-10-17] (ESET)
R1 epfw; C:\Windows\System32\DRIVERS\epfw.sys [72912 2018-10-17] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [54240 2018-10-17] (ESET)
R1 epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [94712 2018-10-17] (ESET)
S3 FTDIBUS; C:\Windows\System32\drivers\ftdibus.sys [96464 2016-10-04] (Future Technology Devices International Ltd.)
S3 FTSER2K; C:\Windows\System32\drivers\ftser2k.sys [74864 2016-10-04] ()
R0 giveio; C:\Windows\System32\giveio.sys [5248 1996-04-03] () [File not signed]
S3 glavcam; C:\Windows\System32\DRIVERS\glavcam.sys [1475584 2017-02-20] (Windows (R) Codename Longhorn DDK provider)
S2 MLPTDR_N; C:\Windows\system32\MLPTDR_N.SYS [18848 2003-07-18] (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.)
R2 npf; C:\Windows\system32\drivers\npf.sys [36600 2015-08-21] (Riverbed Technology, Inc.)
S3 PAC7302; C:\Windows\System32\DRIVERS\PAC7302.SYS [457856 2007-06-14] (PixArt Imaging Inc.)
R0 PxHelp20; C:\Windows\System32\Drivers\PxHelp20.sys [46096 2013-06-03] (Corel Corporation)
R0 VDLPToken2; C:\Windows\System32\DRIVERS\vdlptkn2.sys [125432 2017-11-02] (DESlock Ltd.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S3 Ser2plx86; system32\DRIVERS\ser2pl.sys [X]
S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-01-26 15:38 - 2019-01-26 15:39 - 000015351 ____C C:\Users\Otakar Vavrečka\Desktop\FRST.txt
2019-01-26 15:37 - 2019-01-26 15:38 - 000000000 ___DC C:\FRST
2019-01-26 15:33 - 2019-01-26 15:34 - 001787904 ____C (Farbar) C:\Users\Otakar Vavrečka\Desktop\FRST.exe
2019-01-26 13:49 - 2019-01-26 13:49 - 007320272 ____C (Malwarebytes) C:\Users\Otakar Vavrečka\Desktop\adwcleaner_7.2.6.0.exe
2019-01-26 11:56 - 2019-01-26 11:56 - 001107968 ____C C:\Users\Otakar Vavrečka\Desktop\RSIT.exe
2019-01-25 21:07 - 2017-01-02 20:47 - 000031012 ___RC (www.winchiphead.com) C:\Windows\system32\CH341DLL.DLL
2019-01-25 21:07 - 2017-01-02 20:47 - 000020464 ___RC (www.winchiphead.com) C:\Windows\system32\Drivers\CH341WDM.SYS
2019-01-25 21:06 - 2019-01-25 21:06 - 000001713 ____C C:\Users\Otakar Vavrečka\Desktop\CH341A - USB Programmer 1.30.lnk
2019-01-25 21:06 - 2019-01-25 21:06 - 000000000 ___DC C:\Users\Otakar Vavrečka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CH341A - USB Programmer 1.30
2019-01-25 19:34 - 2015-01-26 00:00 - 000041472 ____C (www.winchiphead.com) C:\Windows\system32\Drivers\CH341SER.SYS
2019-01-25 19:34 - 2008-12-18 00:00 - 000020089 ____C C:\Windows\system32\CH341SER.VXD
2019-01-25 19:34 - 2007-06-12 00:00 - 000019680 ____C (www.winchiphead.com) C:\Windows\system32\Drivers\CH341S98.SYS
2019-01-25 19:34 - 2005-07-30 00:00 - 000006712 ____C (www.winchiphead.com) C:\Windows\system32\CH341PT.DLL
2019-01-25 16:24 - 2019-01-25 16:24 - 000000000 ___DC C:\Users\Otakar Vavrečka\AppData\Local\DESlock+
2019-01-25 16:11 - 2019-01-25 19:34 - 000000000 ___DC C:\WCH.CN
2019-01-25 14:46 - 2019-01-25 14:46 - 000001997 ____C C:\Users\Public\Desktop\ESET Ochrana bankovnictví a online plateb.lnk
2019-01-25 14:44 - 2019-01-25 14:44 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2019-01-25 14:01 - 2019-01-25 14:01 - 005455480 ____C (ESET) C:\Users\Otakar Vavrečka\Desktop\eset_smart_security_premium_live_installer.exe
2019-01-24 17:25 - 2019-01-25 21:06 - 000000000 ___DC C:\SkyGz
2019-01-20 08:53 - 2019-01-20 08:54 - 000000000 ___DC C:\Users\Otakar Vavrečka\Desktop\eRmail
2019-01-12 09:34 - 2019-01-12 09:35 - 000011943 ____C C:\Users\Otakar Vavrečka\Desktop\Tablet-hláška na displeji.odt
2019-01-10 12:21 - 2019-01-10 12:21 - 000067528 ____C C:\Users\Otakar Vavrečka\Downloads\splnomocnenie.pdf
2019-01-09 20:08 - 2019-01-09 20:08 - 000009328 ____C C:\Users\Otakar Vavrečka\Downloads\LIDI.cz.odt
2019-01-09 14:58 - 2019-01-23 13:48 - 000000000 ___DC C:\Users\Otakar Vavrečka\Desktop\Odhazování sněhu-Nikolka
2019-01-09 08:14 - 2019-01-09 10:49 - 020279808 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 013680640 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 004494848 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 004386816 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 004055272 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2019-01-09 08:14 - 2019-01-09 10:49 - 003960552 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2019-01-09 08:14 - 2019-01-09 10:49 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2019-01-09 08:14 - 2019-01-09 10:49 - 002295808 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 002060288 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2019-01-09 08:14 - 2019-01-09 10:49 - 001329664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 001310520 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 001214696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2019-01-09 08:14 - 2019-01-09 10:49 - 001155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 001072640 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000872448 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000696320 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000692224 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2019-01-09 08:14 - 2019-01-09 10:49 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000668160 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2019-01-09 08:14 - 2019-01-09 10:49 - 000663040 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000644096 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000554496 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000498176 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000476160 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000419608 _____ C:\Windows\system32\locale.nls
2019-01-09 08:14 - 2019-01-09 10:49 - 000416256 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000352768 _____ (Microsoft Corporation) C:\Windows\system32\msrd3x40.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000348760 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2019-01-09 08:14 - 2019-01-09 10:49 - 000294400 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000279040 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2019-01-09 08:14 - 2019-01-09 10:49 - 000262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2019-01-09 08:14 - 2019-01-09 10:49 - 000261120 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000254464 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000230400 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2019-01-09 08:14 - 2019-01-09 10:49 - 000223232 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000189672 _____ (Microsoft Corporation) C:\Windows\system32\halmacpi.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000189672 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000171008 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000141312 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000137960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2019-01-09 08:14 - 2019-01-09 10:49 - 000136424 _____ (Microsoft Corporation) C:\Windows\system32\halacpi.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000130048 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000126464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2019-01-09 08:14 - 2019-01-09 10:49 - 000115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2019-01-09 08:14 - 2019-01-09 10:49 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys
2019-01-09 08:14 - 2019-01-09 10:49 - 000104960 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2019-01-09 08:14 - 2019-01-09 10:49 - 000099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000098816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2019-01-09 08:14 - 2019-01-09 10:49 - 000097792 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2019-01-09 08:14 - 2019-01-09 10:49 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000082432 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000081408 _____ (Microsoft Corporation) C:\Windows\system32\rascfg.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000073216 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2019-01-09 08:14 - 2019-01-09 10:49 - 000070144 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2019-01-09 08:14 - 2019-01-09 10:49 - 000067304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2019-01-09 08:14 - 2019-01-09 10:49 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys
2019-01-09 08:14 - 2019-01-09 10:49 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000061952 _____ (Microsoft Corporation) C:\Windows\system32\rasdiag.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\ndptsp.tsp
2019-01-09 08:14 - 2019-01-09 10:49 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2019-01-09 08:14 - 2019-01-09 10:49 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2019-01-09 08:14 - 2019-01-09 10:49 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys
2019-01-09 08:14 - 2019-01-09 10:49 - 000047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000038912 _____ (Microsoft Corporation) C:\Windows\system32\kmddsp.tsp
2019-01-09 08:14 - 2019-01-09 10:49 - 000038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000036352 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000033280 _____ (Microsoft Corporation) C:\Windows\system32\rasmxs.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000029696 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000022528 _____ (Microsoft Corporation) C:\Windows\system32\rasser.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2019-01-09 08:14 - 2019-01-09 10:49 - 000020992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndistapi.sys
2019-01-09 08:14 - 2019-01-09 10:49 - 000017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2019-01-09 08:14 - 2019-01-09 10:49 - 000015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2019-01-09 08:14 - 2018-12-28 20:26 - 000055296 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys
2019-01-09 08:14 - 2018-12-28 20:26 - 000053760 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys
2019-01-09 08:14 - 2018-12-28 20:26 - 000053248 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\viac7.sys
2019-01-09 08:14 - 2018-12-28 20:26 - 000052736 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys
2019-01-09 08:14 - 2018-12-28 20:26 - 000052224 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys
2018-12-31 18:47 - 2019-01-10 18:07 - 000000000 ___DC C:\Users\Otakar Vavrečka\Desktop\LED podsvícení
2018-12-31 18:00 - 2019-01-14 08:55 - 000000000 ___DC C:\Users\Otakar Vavrečka\Desktop\Žárovky-Čína
2018-12-28 20:36 - 2018-12-28 20:36 - 008862695 ____C C:\Users\Otakar Vavrečka\Desktop\otf_color_462_463_sm.pdf
2018-12-27 21:59 - 2018-12-27 22:09 - 000000000 ___DC C:\Users\Otakar Vavrečka\Downloads\Martina Zack
2018-12-27 18:34 - 2018-12-27 18:54 - 000000000 ___DC C:\Users\Otakar Vavrečka\Desktop\NOKIA RM-1035
==================== One month (modified) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-01-26 14:15 - 2009-07-14 05:34 - 000018736 ___HC C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-01-26 14:15 - 2009-07-14 05:34 - 000018736 ___HC C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-01-26 14:07 - 2017-07-26 14:22 - 000000000 ___DC C:\Users\Otakar Vavrečka\AppData\Roaming\ViberPC
2019-01-26 14:07 - 2013-02-02 14:48 - 000000000 ___DC C:\Program Files\TeamViewer
2019-01-26 14:06 - 2009-07-14 05:53 - 000000006 ___HC C:\Windows\Tasks\SA.DAT
2019-01-26 14:05 - 2017-02-17 19:11 - 000000000 ___DC C:\AdwCleaner
2019-01-26 12:02 - 2017-02-10 19:00 - 000000000 ___DC C:\rsit
2019-01-26 11:56 - 2016-03-09 16:19 - 000000000 ___DC C:\Program Files\trend micro
2019-01-26 08:21 - 2017-07-26 15:05 - 000000000 ___DC C:\Users\Otakar Vavrečka\AppData\Local\Viber
2019-01-26 02:14 - 2018-04-07 06:25 - 000000000 ___DC C:\Users\Otakar Vavrečka\Desktop\Programátor-CH341A
2019-01-25 21:38 - 2013-04-10 07:18 - 000000000 ___DC C:\Users\Otakar Vavrečka\AppData\Roaming\vlc
2019-01-25 19:50 - 2014-09-15 16:39 - 000000000 ___DC C:\Users\Otakar Vavrečka\Documents\ViberDownloads
2019-01-25 19:27 - 2009-07-14 03:37 - 000000000 ___DC C:\Windows\inf
2019-01-25 17:17 - 2012-04-19 18:56 - 000000000 ___DC C:\Windows\Minidump
2019-01-25 16:24 - 2014-03-15 22:44 - 000000000 ____D C:\Program Files\ESET
2019-01-25 14:08 - 2016-07-13 07:23 - 000000000 ___DC C:\Users\Otakar Vavrečka\Data z plochy
2019-01-24 17:54 - 2018-04-02 08:50 - 000000000 ___DC C:\Users\Otakar Vavrečka\Desktop\Firmware
2019-01-22 16:04 - 2009-07-14 03:37 - 000000000 ___DC C:\Windows\system32\NDF
2019-01-21 15:56 - 2009-07-14 03:37 - 000000000 ____D C:\Windows\rescache
2019-01-19 12:42 - 2012-03-18 12:28 - 000000000 ___DC C:\Program Files\Microsoft Silverlight
2019-01-17 07:32 - 2012-03-18 12:28 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2019-01-14 09:01 - 2018-08-06 13:27 - 000001024 ____C C:\Users\Public\Desktop\VLC media player.lnk
2019-01-13 16:42 - 2012-01-12 08:08 - 000000000 ___DC C:\Shoty
2019-01-10 13:11 - 2017-04-09 14:53 - 000000000 ___DC C:\Users\Otakar Vavrečka\Desktop\LED žárovky
2019-01-09 12:19 - 2011-02-22 14:51 - 001587926 ____C C:\Windows\system32\PerfStringBackup.INI
2019-01-09 12:19 - 2009-08-14 04:45 - 000670164 ____C C:\Windows\system32\perfh005.dat
2019-01-09 12:19 - 2009-08-14 04:45 - 000142246 ____C C:\Windows\system32\perfc005.dat
2019-01-09 10:56 - 2013-08-14 06:58 - 000000000 ___DC C:\Windows\system32\MRT
2019-01-09 10:50 - 2011-02-23 08:18 - 129687688 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2019-01-04 13:58 - 2015-11-08 16:37 - 000002441 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
==================== Files in the root of some directories =======
2015-05-07 05:06 - 2015-05-07 05:06 - 000087608 ____C () C:\Users\Otakar Vavrečka\AppData\Roaming\inst.exe
2015-05-07 05:06 - 2015-05-07 05:06 - 000007887 ____C () C:\Users\Otakar Vavrečka\AppData\Roaming\pcouffin.cat
2015-05-07 05:06 - 2015-05-07 05:06 - 000001144 ____C () C:\Users\Otakar Vavrečka\AppData\Roaming\pcouffin.inf
2015-05-07 05:06 - 2015-05-07 05:06 - 000000055 ____C () C:\Users\Otakar Vavrečka\AppData\Roaming\pcouffin.log
2015-05-07 05:06 - 2015-05-07 05:06 - 000047360 ____C (VSO Software) C:\Users\Otakar Vavrečka\AppData\Roaming\pcouffin.sys
2011-08-28 17:17 - 2015-05-07 05:05 - 000001189 ____C () C:\Users\Otakar Vavrečka\AppData\Roaming\vso_ts_preview.xml
2012-03-07 11:43 - 2014-04-01 07:43 - 000012288 ____C () C:\Users\Otakar Vavrečka\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2011-08-28 09:31 - 2011-08-28 09:31 - 000000061 ____C () C:\Users\Otakar Vavrečka\AppData\Local\SRDownloader.err
2011-07-07 06:28 - 2013-06-10 20:39 - 000000888 ____C () C:\Users\Otakar Vavrečka\AppData\Local\SRDownloader.nast
2011-08-06 11:27 - 2011-08-06 11:27 - 000000000 ____C () C:\Users\Otakar Vavrečka\AppData\Local\{C9479304-8CCB-45C2-B189-3DC354E03AA2}
Some files in TEMP:
====================
2019-01-25 19:30 - 2019-01-24 17:26 - 000117447 ____C () C:\Users\Otakar Vavrečka\AppData\Local\Temp\Uninstall.exe
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\dllhost.exe => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2019-01-25 09:07
==================== End of FRST.txt ============================
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 26-01-2019
Ran by Otakar Vavrečka (26-01-2019 15:40:15)
Running from C:\Users\Otakar Vavrečka\Desktop
Microsoft Windows 7 Home Premium Service Pack 1 (X86) (2011-02-22 14:02:06)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-505298747-3480647553-2469496864-500 - Administrator - Disabled)
Guest (S-1-5-21-505298747-3480647553-2469496864-501 - Limited - Disabled) => C:\Users\Guest
HomeGroupUser$ (S-1-5-21-505298747-3480647553-2469496864-1002 - Limited - Enabled)
Otakar Vavrečka (S-1-5-21-505298747-3480647553-2469496864-1000 - Administrator - Enabled) => C:\Users\Otakar Vavrečka
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: ESET Security (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET Security (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Firewall (Enabled) {D426EE12-AE7E-4602-F40F-BBCA8137EB0B}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKLM\...\uTorrent) (Version: 2.2.1.25534 - emc, uTorrent.CZ)
7-Zip 18.01 (HKLM\...\7-Zip) (Version: 18.01 - Igor Pavlov)
Adobe Acrobat Reader DC - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.010.20069 - Adobe Systems Incorporated)
Adobe Flash Player 22 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 22.0.0.192 - Adobe Systems Incorporated)
Adobe Flash Player 22 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 22.0.0.209 - Adobe Systems Incorporated)
Any Video Converter 5.9.0 (HKLM\...\Any Video Converter_is1) (Version: - Any-Video-Converter.com)
Apowersoft Video Stahovač V6.1.6 (HKLM\...\{b3336f66-e079-4ff6-abdb-51e2fab781d5}_is1) (Version: 6.1.6 - APOWERSOFT LIMITED)
Ashampoo Burning Studio 6 FREE v.6.84 (HKLM\...\{91B33C97-3ED1-03EA-A67B-244AA4D7B559}_is1) (Version: 6.8.4 - Ashampoo GmbH & Co. KG)
Audacity 2.0.5 (HKLM\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
Autodesk MapGuide(R) Viewer ActiveX Control Release 6.5 (HKLM\...\{E031338C-839D-4EDD-9537-99B653C39D81}) (Version: 6.5.5.24 - Autodesk, Inc.)
Avidemux 2.6 - 32 bits (32-bit) (HKLM\...\Avidemux 2.6 - 32 bits) (Version: 2.6.20.170428 - )
AxCrypt 1.7.2976.0 (HKLM\...\{38350E9E-D50E-454A-BAFC-58BBDDBE08C4}) (Version: 1.7.2976.0 - Axantum Software AB)
Broadcom 802.11 Wireless LAN Adapter (HKLM\...\Broadcom 802.11 Wireless LAN Adapter) (Version: - Broadcom Corporation)
Canon MovieEdit Task for ZoomBrowser EX (HKLM\...\MovieEditTask) (Version: 3.9.0.6 - Canon Inc.)
Canon PhotoRecord (HKLM\...\PhotoRecord) (Version: - )
Canon RAW Codec (HKLM\...\Canon RAW Codec) (Version: 1.7.0.56 - Canon Inc.)
Canon Utilities CameraWindow DC 8 (HKLM\...\CameraWindowDC) (Version: 8.8.0.17 - Canon Inc.)
Canon Utilities EOS Video Snapshot Task for ZoomBrowser EX (HKLM\...\EOS Video Snapshot Task) (Version: 1.0.0.10 - Canon Inc.)
Canon Utilities ImageBrowser EX (HKLM\...\ImageBrowser EX) (Version: 1.2.1.13 - Canon Inc.)
Canon Utilities ZoomBrowser EX (HKLM\...\{C1D76D7A-F3BB-47EA-A746-5B1E2FFC1DF2}) (Version: 04.00.00024 - CISRA)
Canon Utilities ZoomBrowser EX (HKLM\...\ZoomBrowser EX) (Version: 6.9.0.1 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 4.19 - Piriform)
CDBurnerXP (HKLM\...\{5932A5C4-BB44-4CFB-AD66-1B826F4D788B}) (Version: 4.3.8.2568 - Canneverbe Limited)
Cisco EAP-FAST Module (HKLM\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.) Hidden
Cisco LEAP Module (HKLM\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.) Hidden
Cisco PEAP Module (HKLM\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.) Hidden
Cryptext (Remove Only) (HKLM\...\CryptextNT4) (Version: - )
Defraggler (HKLM\...\Defraggler) (Version: 2.18 - Piriform)
doPDF 7.2 printer (HKLM\...\doPDF 7 printer_is1) (Version: - Softland)
dreamboxEDIT -- The one and only settings editor for your Dreambox (HKLM\...\dreamboxEDIT) (Version: - )
EAGLE 6.4.0 (HKLM\...\EAGLE 6.4.0) (Version: 6.4.0 - CadSoft Computer GmbH)
EPSON Scan (HKLM\...\EPSON Scanner) (Version: - )
ESET Premium Line Encryption (HKLM\...\{A88A7368-8FEE-421F-A785-B067A5575AF6}) (Version: 1.0.14 - ESET) Hidden
ESET Security (HKLM\...\{0BA8BBB6-4354-40BD-AA15-D4FF2E551998}) (Version: 12.0.31.0 - ESET, spol. s r.o.)
Eusing Free MP3 Cutter (HKLM\...\Eusing Free MP3 Cutter) (Version: - )
EVEREST Ultimate Edition v5.50 (HKLM\...\EVEREST Ultimate Edition_is1) (Version: 5.50 - Lavalys, Inc.)
FastStone Image Viewer 4.6 (HKLM\...\FastStone Image Viewer) (Version: 4.6 - FastStone Soft)
FTP Commander (HKLM\...\FTP Commander) (Version: - )
GIMP 2.6.11 (HKLM\...\WinGimp-2.0_is1) (Version: 2.6.11 - The GIMP Team)
GL USB2.0 UVC Camera Device (HKLM\...\{9897BBD8-013A-49F3-928E-866A59B6E00C}) (Version: 14.03.11.0 - GenesysLogic)
Google Drive (HKLM\...\{A8DC81F2-D365-4248-892A-FA3B5951F731}) (Version: 2.34.9392.7803 - Google, Inc.)
Google Chrome (HKLM\...\Google Chrome) (Version: 71.0.3578.98 - Google Inc.)
Google Talk Plugin (HKLM\...\{CA3DD97D-1FD7-37A7-BD5C-FC4430C8B8E6}) (Version: 5.41.2.0 - Google)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden
Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
GPL Ghostscript (HKLM\...\GPL Ghostscript 9.09) (Version: 9.09 - Artifex Software Inc.)
HP PrecisionScan LT Software (HKLM\...\HP PrecisionScan LT Software) (Version: - )
HP Support Solutions Framework (HKLM\...\{96D12EC9-720B-45FB-904C-36D6307A1C76}) (Version: 11.51.0048 - Hewlett-Packard Company)
HP Webcam (HKLM\...\{1D61E881-43CD-447B-9E6B-D2C6138B2862}) (Version: 1.0 - Roxio)
CH341A - USB Programmer 1.30 (HKLM\...\CH341A - USB Programmer 1.30) (Version: 1.30 - SkyGz)
Chinese Traditional Fonts Support For Adobe Reader X (HKLM\...\{AC76BA86-7AD7-2448-0000-A00000000003}) (Version: 10.0.0 - Adobe Systems Incorporated)
ICQ7.6 (HKLM\...\{7644E42D-B096-457F-8B5B-901238FC81AE}) (Version: 7.6 - ICQ)
Integrated Camera Driver Installer Package Ver.1.33.110.0 (HKLM\...\{B0344B38-378B-47E0-BDCC-977785D24768}) (Version: 1.33.110.0 - BISON)
IrfanView (remove only) (HKLM\...\IrfanView) (Version: 4.37 - Irfan Skiljan)
Java 8 Update 73 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218073F0}) (Version: 8.0.730.2 - Oracle Corporation)
JavaFX 2.1.1 (HKLM\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)
KONICA MINOLTA PagePro 1300W (HKLM\...\KONICA MINOLTA PagePro 1300W) (Version: - )
KONICA MINOLTA PagePro 1400W (HKLM\...\KONICA MINOLTA PagePro 1400W) (Version: - )
Mámemail Pošťák verze 1.3 (HKLM\...\{FF58C679-3D55-4F3C-90CF-A5F026710AE0}_is1) (Version: 1.3 - Mamemail.cz)
Marvell Miniport Driver (HKLM\...\Marvell Miniport Driver) (Version: 11.45.4.3 - Marvell)
Microsoft .NET Framework 4.7.2 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft PowerPoint Viewer (HKLM\...\{95140000-00AF-0405-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mozilla Firefox 47.0 (x86 cs) (HKLM\...\Mozilla Firefox 47.0 (x86 cs)) (Version: 47.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 47.0.0.5999 - Mozilla)
MP3 Skype recorder (HKLM\...\{7CF296C0-583C-4BB7-8DBE-34DD6AE635B7}) (Version: 4.18.1.0 - Domit LTD)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB973685) (HKLM\...\{859DFA95-E4A6-48CD-B88E-A3E483E89B44}) (Version: 4.30.2107.0 - Microsoft Corporation)
Nero 7 Ultra Edition (HKLM\...\{F90D6825-8F1F-4E3A-9E42-A9C8A9DD1029}) (Version: 7.03.1152 - Nero AG)
Odinstalace tiskárny EPSON Stylus SX200 Series (HKLM\...\EPSON Stylus SX200 Series) (Version: - SEIKO EPSON Corporation)
OpenOffice 4.1.5 (HKLM\...\{2FEA9841-64DE-4FA5-A36F-1CD23E2790EB}) (Version: 4.15.9789 - Apache Software Foundation)
PL-2303 USB-to-Serial (HKLM\...\{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}) (Version: 1.8.12 - Prolific Technology INC)
ProfiCAD 9.3.9 (HKLM\...\ProfiCAD_is1) (Version: - )
Recover Files 3.31 (HKLM\...\Recover Files_is1) (Version: - Undelete & Unerase, Inc.)
Recuva (HKLM\...\Recuva) (Version: 1.48 - Piriform)
Revo Uninstaller Pro 2.5.8 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 2.5.8 - VS Revo Group, Ltd.)
Seznam Pošťák 2 (Pouze já.) (HKU\S-1-5-21-505298747-3480647553-2469496864-1000\...\szn-software-postak) (Version: - )
Skype verze 8.34 (HKLM\...\Skype_is1) (Version: 8.34 - Skype Technologies S.A.)
sPlan 7.0 (Demo) (HKLM\...\sPlan_70_Demo_is1) (Version: - )
SuperiorUSB v5.6.0 (HKLM\...\SuperiorUSB_is1) (Version: - )
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.0.24.0 - Synaptics Incorporated)
TeamViewer 14 (HKLM\...\TeamViewer) (Version: 14.0.13880 - TeamViewer)
Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version: 9.21a - Ghisler Software GmbH)
TuneUp Utilities 2014 (en-US) (HKLM\...\{14C8CE46-C68C-461B-BCA9-E276A85851C6}) (Version: 14.0.1000.88 - TuneUp Software) Hidden
Undelete 360 (HKLM\...\Undelete 360_is1) (Version: - File Recovery Ltd.)
Uschovna.cz 1.1.0 (HKLM\...\{8531A154-5045-4E32-885A-391F750C5DE2}_is1) (Version: 1.1.0 - Capsa.cz)
Viber (HKLM\...\{05247C1B-0AD7-43B0-B6F9-D29B376ADC9A}) (Version: 6.8.6.5 - Viber Media Inc.) Hidden
Viber (HKU\S-1-5-21-505298747-3480647553-2469496864-1000\...\{222ce6fa-97ef-411d-a3f3-51229b6827fc}) (Version: 6.8.6.5 - Viber Media Inc.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.6 - VideoLAN)
Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinRAR 4.01 (32-bit) (HKLM\...\WinRAR archiver) (Version: 4.01.0 - win.rar GmbH)
X-Lite 3.0 (HKLM\...\X-Lite 3.0_is1) (Version: - CounterPath Solutions Inc.)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{022105BD-948A-40C9-AB42-A3300DDF097F}\localserver32 -> C:\Users\Otakar Vavrečka\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{22181302-A8A6-4F84-A541-E5CBFC70CC43}\localserver32 -> C:\Users\Otakar Vavrečka\AppData\Local\Google\Update\1.3.28.13\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{2F0E2680-9FF5-43C0-B76E-114A56E93598}\localserver32 -> C:\Users\Otakar Vavrečka\AppData\Local\Google\Update\1.3.28.13\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{39125640-8D80-11DC-A2FE-C5C455D89593}\InprocServer32 -> C:\Users\Otakar Vavrečka\AppData\Local\Google\Google Talk Plugin\googletalkax.dll (Google)
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{51F9E8EF-59D7-475B-A106-C7EA6F30C119}\localserver32 -> C:\Users\Otakar Vavrečka\AppData\Local\Google\Update\1.3.28.13\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{78550997-5DEF-4A8A-BAF9-D5774E87AC98}\InprocServer32 -> C:\Users\Otakar Vavrečka\AppData\Local\Google\Update\1.3.28.13\psuser.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{AB9F4455-E591-4132-A386-0B91EAEDB96C}\InprocServer32 -> C:\Users\Otakar Vavrečka\AppData\Local\Google\Google Talk Plugin\o1dax.dll (Google)
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D}\InprocServer32 -> C:\Users\Otakar Vavrečka\AppData\Local\Google\Update\1.3.28.13\npGoogleUpdate3.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{C442AC41-9200-4770-8CC0-7CDB4F245C55}\InprocServer32 -> C:\Users\Otakar Vavrečka\AppData\Local\Google\Update\1.3.28.13\npGoogleUpdate3.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{E67BE843-BBBE-4484-95FB-05271AE86750}\localserver32 -> C:\Users\Otakar Vavrečka\AppData\Local\Google\Update\1.3.28.13\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Otakar Vavrečka\AppData\Local\Google\Update\1.3.28.13\psuser.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{EA837F47-5AD1-443E-AE34-FFE03CBF3099}\InprocServer32 -> C:\Users\Otakar Vavrečka\AppData\Local\Seznam.cz\bin\core.4.dll => No File
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{EA837F48-5AD1-443E-AE34-FFE03CBF3099}\InprocServer32 -> C:\Users\Otakar Vavrečka\AppData\Local\Seznam.cz\bin\core.4.dll => No File
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync32.dll [2018-04-23] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync32.dll [2018-04-23] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync32.dll [2018-04-23] (Google)
ShellIconOverlayIdentifiers: [ESD Shell Icon Overlay Identifier] -> {AF106685-9C86-48AF-8524-8F485C459E17} => C:\Program Files\ESET\ESET Secure Data\esdovrly.dll [2017-11-02] (DESlock Limited)
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-01-28] (Igor Pavlov)
ContextMenuHandlers1: [axcrypt.File] -> {C3DFC144-30F8-4138-81F9-578DBEB9324A} => C:\Program Files\Axantum\AxCrypt\ShellExt.dll [2012-11-12] (Axantum Software AB)
ContextMenuHandlers1: [Cover Designer] -> {73FCA462-9BD5-4065-A73F-A8E5F6904EF7} => C:\Program Files\Nero\Nero 7\Nero CoverDesigner\CoverEdExtension.dll [2007-07-24] (Nero AG)
ContextMenuHandlers1: [Cryptext] -> {990a81a0-b289-11cf-a800-00a0c903a2a6} => C:\Windows\system32\ShellExt\Cryptext.dll [1999-04-23] ()
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Smart Security\shellExt.dll [2018-11-29] (ESET)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu32.dll [2018-04-23] (Google)
ContextMenuHandlers1: [Print602] -> {D5F8CFC7-1A45-4517-A565-E42CDE7880CF} => -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2011-05-28] ()
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Smart Security\shellExt.dll [2018-11-29] (ESET)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-01-28] (Igor Pavlov)
ContextMenuHandlers4: [Cryptext] -> {990a81a0-b289-11cf-a800-00a0c903a2a6} => C:\Windows\system32\ShellExt\Cryptext.dll [1999-04-23] ()
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu32.dll [2018-04-23] (Google)
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers4: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2011-05-28] ()
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-01-28] (Igor Pavlov)
ContextMenuHandlers6: [axcrypt.File] -> {C3DFC144-30F8-4138-81F9-578DBEB9324A} => C:\Program Files\Axantum\AxCrypt\ShellExt.dll [2012-11-12] (Axantum Software AB)
ContextMenuHandlers6: [Cryptext] -> {990a81a0-b289-11cf-a800-00a0c903a2a6} => C:\Windows\system32\ShellExt\Cryptext.dll [1999-04-23] ()
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Smart Security\shellExt.dll [2018-11-29] (ESET)
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2010-08-12] (VS Revo Group)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2011-05-28] ()
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {1E97DEFE-56CD-43DA-9D17-E238D9194780} - \DriverCure -> No File <==== ATTENTION
Task: {2D705AC7-ABAB-4DB0-A2C6-E30C9394FEC6} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-13] (Adobe Systems Incorporated)
Task: {3E86EE08-3FAA-47A7-BA29-2059F745A87D} - System32\Tasks\{8C134072-3CE6-421D-9589-025BE960BDCF} => C:\Windows\system32\pcalua.exe -a "C:\Users\Otakar Vavrečka\Desktop\Programátor-CH341A\Nový\CH341PAR.EXE" -d "C:\Users\Otakar Vavrečka\Desktop\Programátor-CH341A\Nový"
Task: {6609F292-B444-4351-97BE-8955581B0502} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-10-29] (Piriform Ltd)
Task: {87D1AA01-FB73-4F54-AEC6-65047C803ED0} - System32\Tasks\GoogleUpdateTaskMachineCore1cf6a811f49157b => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-03] (Google Inc.)
Task: {D8F46F61-120B-4D71-AA30-06D8C4BF3E5B} - System32\Tasks\GoogleUpdateTaskMachineUA1cf8b84abba174e => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-03] (Google Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\Otakar Vavrečka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\VXG Media Player.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=hncknjnnbahamgpjoafdebabmoamcnni
==================== Loaded Modules (Whitelisted) ==============
2011-07-10 16:36 - 2001-10-28 16:42 - 000116224 _____ () C:\Windows\System32\pdfcmnnt.dll
2011-02-28 22:44 - 2011-05-28 22:04 - 000140288 _____ () C:\Program Files\WinRAR\rarext.dll
1999-04-23 03:21 - 1999-04-23 03:21 - 000142848 _____ () C:\Windows\system32\ShellExt\Cryptext.dll
2017-07-20 12:51 - 2017-07-20 12:51 - 000041040 ____C () C:\Users\Otakar Vavrečka\AppData\Local\Viber\qrencode.dll
2017-07-20 12:52 - 2017-07-20 12:52 - 000391760 ____C () C:\Users\Otakar Vavrečka\AppData\Local\Viber\imageformats\qsvg.dll
2017-07-20 12:51 - 2017-07-20 12:51 - 000019536 ____C () C:\Users\Otakar Vavrečka\AppData\Local\Viber\libEGL.DLL
2017-07-20 12:51 - 2017-07-20 12:51 - 001955408 ____C () C:\Users\Otakar Vavrečka\AppData\Local\Viber\libGLESv2.dll
2014-10-23 20:19 - 2014-10-23 20:19 - 000043520 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:04 - 2015-09-15 20:23 - 000000027 ____C C:\Windows\system32\drivers\etc\hosts
127.0.0.1 localhost
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\system32\wbem;C:\Program Files\Broadcom\Broadcom 802.11\Driver;;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0;C:\Program Files\Skype\Phone
HKU\S-1-5-21-505298747-3480647553-2469496864-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Otakar Vavrečka\AppData\Roaming\Mozilla\Firefox\Pozadí plochy.bmp
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
If an entry is included in the fixlist, it will be removed.
MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: AEADIFilters => 2
MSCONFIG\Services: AgereModemAudio => 2
MSCONFIG\Services: AMD External Events Utility => 2
MSCONFIG\Services: EPSON_EB_RPCV4_01 => 2
MSCONFIG\Services: EPSON_PM_RPCV4_01 => 2
MSCONFIG\Services: hpsrv => 2
MSCONFIG\Services: HPSupportSolutionsFrameworkService => 2
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: NBService => 3
MSCONFIG\Services: NMIndexingService => 3
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^ImageBrowser EX Agent.lnk => C:\Windows\pss\ImageBrowser EX Agent.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Otakar Vavrečka^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Mámemail Pošťák.lnk => C:\Windows\pss\Mámemail Pošťák.lnk.Startup
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
MSCONFIG\startupreg: hppwrsav => C:\SCANJET\PrecisionScanLT\hppwrsav.exe
MSCONFIG\startupreg: KONICA MINOLTA PagePro 1300WStatusDisplay => C:\Windows\system32\MSTMON_N.EXE
MSCONFIG\startupreg: KONICA MINOLTA PagePro 1400W STD => C:\Windows\system32\MSTMON_Y.EXE STARTUP
MSCONFIG\startupreg: MP3 Skype Recorder => C:\Users\Otakar Vavrečka\AppData\Local\MP3 Skype recorder\MP3SkypeRecorder.exe
MSCONFIG\startupreg: PAC7302_Monitor => C:\Windows\PixArt\PAC7302\Monitor.exe
MSCONFIG\startupreg: Seznam Postak => "C:\Users\Otakar Vavrečka\AppData\Local\Seznam.cz\bin\postak.exe" -s
MSCONFIG\startupreg: Sidebar => C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
MSCONFIG\startupreg: Viber => "C:\Users\Otakar Vavrečka\AppData\Local\Viber\Viber.exe" StartMinimized
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [TCP Query User{C12D7CA6-15BB-47EC-8CA7-23933E88D22D}C:\program files\counterpath\x-lite\x-lite.exe] => (Allow) C:\program files\counterpath\x-lite\x-lite.exe ()
FirewallRules: [UDP Query User{6A436787-7B16-469F-9F44-FC3FC0469E7D}C:\program files\counterpath\x-lite\x-lite.exe] => (Allow) C:\program files\counterpath\x-lite\x-lite.exe ()
FirewallRules: [TCP Query User{9A70AE46-C4D9-4B10-BDBD-5402881E6D1A}C:\program files\counterpath\x-lite\x-lite.exe] => (Allow) C:\program files\counterpath\x-lite\x-lite.exe ()
FirewallRules: [UDP Query User{7DFFE528-3065-4AC4-A3C2-5C44CE3ABCB1}C:\program files\counterpath\x-lite\x-lite.exe] => (Allow) C:\program files\counterpath\x-lite\x-lite.exe ()
FirewallRules: [TCP Query User{E90E4A23-CF53-4C85-902D-E86CF4DCC1D7}C:\program files\icq7.5\icq.exe] => (Allow) C:\program files\icq7.5\icq.exe (ICQ, LLC.)
FirewallRules: [UDP Query User{049F281A-D2AB-4D1F-853D-B84EFAC7C86F}C:\program files\icq7.5\icq.exe] => (Allow) C:\program files\icq7.5\icq.exe (ICQ, LLC.)
FirewallRules: [{2BE19BC0-E07A-4BB1-9016-9B4D3AB215C3}] => (Allow) C:\Program Files\ICQ7.6\ICQ.exe (ICQ, LLC.)
FirewallRules: [{CE36758B-9BEA-431C-A4E5-F8B4FB3AC211}] => (Allow) C:\Program Files\ICQ7.6\ICQ.exe (ICQ, LLC.)
FirewallRules: [{7DAB9A18-A07A-4B18-A816-B6102C5D0385}] => (Allow) C:\Program Files\ICQ7.6\ICQ.exe (ICQ, LLC.)
FirewallRules: [{2EACFA2A-F0D5-4F8C-8294-2568E5EA5FB7}] => (Allow) C:\Program Files\ICQ7.6\ICQ.exe (ICQ, LLC.)
FirewallRules: [TCP Query User{4A8AEC46-0EEB-420A-96A8-741B6FD10681}C:\program files\icq7.5\icq.exe] => (Allow) C:\program files\icq7.5\icq.exe (ICQ, LLC.)
FirewallRules: [UDP Query User{969C7F17-F2E3-4FDA-868C-120A541EC12C}C:\program files\icq7.5\icq.exe] => (Allow) C:\program files\icq7.5\icq.exe (ICQ, LLC.)
FirewallRules: [{F8036CE2-7026-4673-A991-D73F805113F0}] => (Allow) LPort=2869
FirewallRules: [{54C06B4D-5386-430F-B9E1-0A8D212B0D60}] => (Allow) LPort=1900
FirewallRules: [TCP Query User{0B8C7F57-9146-400A-A0CF-5FF70A101C27}C:\program files\icq7.6\icq.exe] => (Allow) C:\program files\icq7.6\icq.exe (ICQ, LLC.)
FirewallRules: [UDP Query User{FCB83ECD-3216-4505-B939-EE65EED7E084}C:\program files\icq7.6\icq.exe] => (Allow) C:\program files\icq7.6\icq.exe (ICQ, LLC.)
FirewallRules: [{2F5ED779-D282-4211-857F-FDBFAD58A1D5}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe (Microsoft Corporation)
FirewallRules: [{0E16DEA9-25A3-48A8-A05B-4D7D9D3C99C4}] => (Allow) C:\Users\Otakar Vavrečka\AppData\Roaming\uTorrent\utorrent.exe (BitTorrent, Inc.)
FirewallRules: [{58157869-02A9-4224-AD87-A2372AACCE46}] => (Allow) C:\Users\Otakar Vavrečka\AppData\Roaming\uTorrent\utorrent.exe (BitTorrent, Inc.)
FirewallRules: [{E971F3A4-CA71-463B-8F96-11F3AC755476}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
FirewallRules: [{FBAD154A-E5E7-4E2A-B135-078B5530CBFA}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
FirewallRules: [{C1AAEF9C-2F2C-40FB-91AE-CFA31C9E4288}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
FirewallRules: [{E0D5F073-CCD7-406D-B5A9-51A535DE6705}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
FirewallRules: [{300CCF1E-3648-4059-8D16-577AD2A86349}] => (Allow) C:\Program Files\Apowersoft\Video Download Capture 6\Video Download Capture 6.exe (Apowersoft)
FirewallRules: [{75161E8B-F1FE-424B-8360-04D0B43615B3}] => (Allow) C:\Program Files\Apowersoft\Video Download Capture 6\Video Download Capture 6.exe (Apowersoft)
FirewallRules: [{9A274ECC-D931-49C7-9C60-5C5EA6C3BDD3}] => (Allow) C:\Program Files\Apowersoft\Video Download Capture 6\rtmpsrv.exe ()
FirewallRules: [{96CA91A7-5EEA-47AF-8240-F9531C23D329}] => (Allow) C:\Program Files\Apowersoft\Video Download Capture 6\rtmpsrv.exe ()
FirewallRules: [{E86A656F-E516-4FBB-9D4B-9C342DFEE60C}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer GmbH)
FirewallRules: [{E94A3881-3A90-4702-8295-3757666FE176}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer GmbH)
FirewallRules: [{769DDB12-57E0-4B90-90BC-A09DFD806FA6}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH)
FirewallRules: [{25AFEC86-EEB1-4317-AA87-DCF99A57626D}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH)
FirewallRules: [{E8122F07-4585-4790-91A7-3D177C067AF1}] => (Allow) C:\Program Files\Microsoft\Skype for Desktop\Skype.exe (Skype Technologies S.A.)
FirewallRules: [{FE7D460A-9CB8-4754-BA27-7BD50F6C8B76}] => (Allow) C:\Program Files\Microsoft\Skype for Desktop\Skype.exe (Skype Technologies S.A.)
FirewallRules: [{5598FD04-AF2A-47CD-BF21-EE55A829CBF0}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
==================== Restore Points =========================
03-11-2018 01:04:38 Windows Update
10-11-2018 09:12:00 Naplánovaný kontrolní bod
14-11-2018 09:45:30 Windows Update
24-11-2018 14:29:32 Naplánovaný kontrolní bod
27-11-2018 09:47:00 Windows Update
04-12-2018 11:54:43 Naplánovaný kontrolní bod
13-12-2018 07:03:04 Windows Update
20-12-2018 11:35:44 Windows Update
27-12-2018 16:59:43 Naplánovaný kontrolní bod
09-01-2019 10:47:38 Windows Update
17-01-2019 07:27:51 Windows Update
23-01-2019 11:04:29 Windows Update
25-01-2019 14:09:53 Revo Uninstaller Pro's restore point - ESET Security
25-01-2019 19:27:08 Instalace balíčku ovladače zařízení: wch.cn Interface
25-01-2019 19:29:54 Revo Uninstaller Pro's restore point - CH341A - USB Programmer 1.30
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (01/25/2019 09:24:40 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: CH341A_130.exe, verze: 1.30.0.0, časové razítko: 0x56610000
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000
ID chybujícího procesu: 0x18b4
Čas spuštění chybující aplikace: 0x01d4b4e9a64ad7f3
Cesta k chybující aplikaci: C:\SkyGz\CH341A - USB Programmer\CH341A_130.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: 3d626a7e-20df-11e9-a641-18a905e47eaa
Error: (01/25/2019 05:23:16 PM) (Source: Windows Search Service) (EventID: 1019) (User: )
Description: Službě Windows Search se nepodařilo zpracovat seznam zahrnutých a vyloučených umístění, a to s chybou <30, 0x80040d07, iehistory://{S-1-5-21-505298747-3480647553-2469496864-1000}/>.
Error: (01/25/2019 05:23:02 PM) (Source: Windows Search Service) (EventID: 1019) (User: )
Description: Službě Windows Search se nepodařilo zpracovat seznam zahrnutých a vyloučených umístění, a to s chybou <30, 0x80040d07, iehistory://{S-1-5-21-505298747-3480647553-2469496864-1000}/>.
Error: (01/25/2019 05:21:41 PM) (Source: Windows Search Service) (EventID: 1019) (User: )
Description: Službě Windows Search se nepodařilo zpracovat seznam zahrnutých a vyloučených umístění, a to s chybou <30, 0x80040d07, iehistory://{S-1-5-21-505298747-3480647553-2469496864-1000}/>.
Error: (01/25/2019 02:32:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: egui.exe, verze: 10.2.164.0, časové razítko: 0x5a37ca53
Název chybujícího modulu: ucrtbase.DLL, verze: 10.0.14393.33, časové razítko: 0x579994fc
Kód výjimky: 0x40000015
Posun chyby: 0x000891da
ID chybujícího procesu: 0xcdc
Čas spuštění chybující aplikace: 0x01d4b4b26322c881
Cesta k chybující aplikaci: C:\Program Files\ESET\ESET Smart Security\egui.exe
Cesta k chybujícímu modulu: C:\Program Files\ESET\ESET Smart Security\ucrtbase.DLL
ID zprávy: a4c43d29-20a5-11e9-b041-18a905e47eaa
Error: (01/25/2019 02:30:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: egui.exe, verze: 10.2.164.0, časové razítko: 0x5a37ca53
Název chybujícího modulu: ucrtbase.DLL, verze: 10.0.14393.33, časové razítko: 0x579994fc
Kód výjimky: 0x40000015
Posun chyby: 0x000891da
ID chybujícího procesu: 0xa08
Čas spuštění chybující aplikace: 0x01d4b4b2279f4df3
Cesta k chybující aplikaci: C:\Program Files\ESET\ESET Smart Security\egui.exe
Cesta k chybujícímu modulu: C:\Program Files\ESET\ESET Smart Security\ucrtbase.DLL
ID zprávy: 6664bb34-20a5-11e9-b4e3-18a905e47eaa
Error: (01/25/2019 02:29:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: egui.exe, verze: 10.2.164.0, časové razítko: 0x5a37ca53
Název chybujícího modulu: ucrtbase.DLL, verze: 10.0.14393.33, časové razítko: 0x579994fc
Kód výjimky: 0x40000015
Posun chyby: 0x000891da
ID chybujícího procesu: 0x11c4
Čas spuštění chybující aplikace: 0x01d4b4b203cca254
Cesta k chybující aplikaci: C:\Program Files\ESET\ESET Smart Security\egui.exe
Cesta k chybujícímu modulu: C:\Program Files\ESET\ESET Smart Security\ucrtbase.DLL
ID zprávy: 42b10178-20a5-11e9-b4e3-18a905e47eaa
Error: (01/25/2019 02:29:35 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program egui.exe verze 10.2.164.0 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID procesu: c30
Čas spuštění: 01d4b4b13f5eeb22
Čas ukončení: 46
Cesta k aplikaci: C:\Program Files\ESET\ESET Smart Security\egui.exe
ID hlášení: 336c6df8-20a5-11e9-b4e3-18a905e47eaa
System errors:
=============
Error: (01/26/2019 03:24:28 PM) (Source: atikmdag) (EventID: 10261) (User: )
Description: Display is not active
Error: (01/26/2019 02:06:58 PM) (Source: Service Control Manager) (EventID: 7002) (User: )
Description: Služba MLPTDR_N závisí na skupině Parallel arbitrator a žádný člen této skupiny nebyl spuštěn.
Error: (01/26/2019 02:06:49 PM) (Source: atikmdag) (EventID: 10261) (User: )
Description: Display is not active
Error: (01/26/2019 02:06:49 PM) (Source: atikmdag) (EventID: 19468) (User: )
Description: CPLIB :: General - Invalid Parameter
Error: (01/26/2019 02:05:53 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.
Cesta k modulu: C:\Windows\System32\bcmihvsrv.dll
Error: (01/26/2019 02:05:53 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.
Cesta k modulu: C:\Windows\System32\bcmihvsrv.dll
Error: (01/26/2019 02:05:50 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Windows Media Player Network Sharing neuspěla při spuštění v důsledku následující chyby:
Služba nebyla zahájena, protože se nepodařilo přihlásit.
Error: (01/26/2019 02:05:50 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Služba WMPNetworkSvc se nemohla přihlásit jako NT AUTHORITY\NetworkService s aktuálně konfigurovaným heslem z důvodu následující chyby:
Požadavek není podporován.
Chcete-li zajistit správnou konfiguraci služby, použijte modul snap-in Služby konzoly Microsoft Management Console (MMC).
Windows Defender:
===================================
Date: 2018-03-26 08:49:32.668
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{299693A3-AD73-4D9D-BC99-931C9A20EC88}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:NT AUTHORITY\NETWORK SERVICE
Date: 2017-10-18 19:13:23.001
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{2C0446CC-8ABC-4FEF-B895-595629725D67}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:NT AUTHORITY\NETWORK SERVICE
Date: 2013-11-24 21:53:17.850
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{9FFAED12-FDAA-4AD7-946D-09EAE8988AAC}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:NT AUTHORITY\NETWORK SERVICE
Date: 2011-07-04 23:28:23.768
Description:
Prohledávání Windows Defender rozpoznalo spyware nebo jiný potenciálně nežádoucí software.
Další informace:
http://go.microsoft.com/fwlink/?linkid= ... tid=147745
Název:Program:Win32/RegCure
ID:147745
Závažnost:Vysoké
Kategorie:Potenciálně nežádoucí software
Nalezeno v cestě:containerfile:D:\Přenesené z dětské\Vymeniteľný disk\ProBook 4710s\USB-LG\USB L G\Downloads-Otík\RegCureSetup_RW.exe;file:D:\Přenesené z dětské\Vymeniteľný disk\ProBook 4710s\USB-LG\USB L G\Downloads-Otík\RegCureSetup_RW.exe->(nsis-6-RegCure.exe)
Typ zjišťování:Konkrétní
Zdroj zjišťování:Uživatel
Stav:Neznámý
Uživatel:PC-Otakar\Otakar Vavrečka
Název procesu:C:\Program Files\Windows Defender\MSASCui.exe
Date: 2011-07-04 23:28:23.768
Description:
Prohledávání Windows Defender rozpoznalo spyware nebo jiný potenciálně nežádoucí software.
Další informace:
http://go.microsoft.com/fwlink/?linkid= ... tid=153970
Název:Adware:JS/Pornpop.A
ID:153970
Závažnost:Střední
Kategorie:Software placený zobrazováním reklamy
Nalezeno v cestě:containerfile:C:\Users\Otakar Vavrečka\AppData\Local\Mozilla\Firefox\Profiles\fslv0uhv.default\Cache\F\00\1793Bd01;file:C:\Users\Otakar Vavrečka\AppData\Local\Mozilla\Firefox\Profiles\fslv0uhv.default\Cache\F\00\1793Bd01->(GZip)->(SCRIPT0003)
Typ zjišťování:Konkrétní
Zdroj zjišťování:Uživatel
Stav:Neznámý
Uživatel:PC-Otakar\Otakar Vavrečka
Název procesu:C:\Program Files\Windows Defender\MSASCui.exe
Date: 2018-03-27 11:54:44.432
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o načtení podpisů a pokusí se o obnovení sady podpisů, jejichž správnost je potvrzena.
Podpisy, které se měly načíst:Aktuální
Kód chyby:0x80070002
Popis chyby:Systém nemůže nalézt uvedený soubor.
Verze podpisu:0.0.0.0
Verze modulu:0.0.0.0
Date: 2018-03-27 11:54:44.416
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci.
Nová verze podpisu:
Předchozí verze podpisu:
Zdroj aktualizace:Složka aktualizace podpisů
Typ podpisu:Antispywarový program
Typ aktualizace:Delta
Uživatel:NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu:
Kód chyby:0x80070002
Popis chyby:Systém nemůže nalézt uvedený soubor.
Date: 2018-03-23 07:47:06.662
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o načtení podpisů a pokusí se o obnovení sady podpisů, jejichž správnost je potvrzena.
Podpisy, které se měly načíst:Aktuální
Kód chyby:0x80070002
Popis chyby:Systém nemůže nalézt uvedený soubor.
Verze podpisu:0.0.0.0
Verze modulu:0.0.0.0
Date: 2018-03-23 07:47:06.600
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci.
Nová verze podpisu:
Předchozí verze podpisu:
Zdroj aktualizace:Složka aktualizace podpisů
Typ podpisu:Antispywarový program
Typ aktualizace:Delta
Uživatel:NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu:
Kód chyby:0x80070002
Popis chyby:Systém nemůže nalézt uvedený soubor.
Date: 2018-03-23 07:12:51.120
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o načtení podpisů a pokusí se o obnovení sady podpisů, jejichž správnost je potvrzena.
Podpisy, které se měly načíst:Aktuální
Kód chyby:0x80070002
Popis chyby:Systém nemůže nalézt uvedený soubor.
Verze podpisu:0.0.0.0
Verze modulu:0.0.0.0
==================== Memory info ===========================
Processor: Intel(R) Core(TM)2 Duo CPU T5870 @ 2.00GHz
Percentage of memory in use: 40%
Total physical RAM: 3066.27 MB
Available physical RAM: 1814.79 MB
Total Virtual: 6130.89 MB
Available Virtual: 4870.92 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:154.29 GB) (Free:16.41 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (Nový zväzok) (Fixed) (Total:126.51 GB) (Free:11.35 GB) NTFS
Drive e: (HP_TOOLS) (Fixed) (Total:1.99 GB) (Free:1.92 GB) FAT32
Drive g: (HP_RECOVERY) (Fixed) (Total:15 GB) (Free:8.5 GB) NTFS ==>[system with boot components (obtained from drive)]
\\?\Volume{f98ec1df-59b4-11df-a6a6-00271361010a}\ (SYSTEM) (Fixed) (Total:0.29 GB) (Free:0.25 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 298.1 GB) (Disk ID: DCB86D34)
Partition 1: (Not Active) - (Size=993 KB) - (Type=42)
Partition 2: (Active) - (Size=300 MB) - (Type=42)
Partition 3: (Not Active) - (Size=154.3 GB) - (Type=42)
Partition 4: (Not Active) - (Size=143.5 GB) - (Type=42)
==================== End of Addition.txt ============================
Ran by Otakar Vavrečka (administrator) on PC-OTAKAR (26-01-2019 15:38:02)
Running from C:\Users\Otakar Vavrečka\Desktop
Loaded Profiles: Otakar Vavrečka (Available Profiles: Otakar Vavrečka & Guest)
Platform: Microsoft Windows 7 Home Premium Service Pack 1 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/
==================== Processes (Whitelisted) =================
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
(ESET) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
(DESlock Limited.) C:\Program Files\ESET\ESET Secure Data\dlpsrv.exe
(Microsoft Corporation) C:\Windows\System32\wlanext.exe
(Prolific Technology Inc.) C:\Windows\System32\IoctlSvc.exe
(TeamViewer GmbH) C:\Program Files\TeamViewer\TeamViewer_Service.exe
(Google Inc.) C:\Program Files\Google\Update\1.3.33.23\GoogleCrashHandler.exe
(KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.) C:\Windows\System32\MSTMON_N.EXE
(Microsoft Corporation) C:\Program Files\Windows Sidebar\sidebar.exe
(Viber Media S.Ã r.l.) C:\Users\Otakar Vavrečka\AppData\Local\Viber\Viber.exe
(ESET) C:\Program Files\ESET\ESET Smart Security\egui.exe
(Microsoft Corporation) C:\Windows\System32\StikyNot.exe
(Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe
(TB development & investment, s.r.o.) C:\Program Files\Mamemail\Mamemail Postak\Postak.exe
(Baptiste Girod) C:\Users\Otakar Vavrečka\Desktop\Gmail Notifier Plus.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
==================== Registry (Whitelisted) ===========================
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
HKLM\...\Run: [KONICA MINOLTA PagePro 1300WStatusDisplay] => C:\Windows\system32\MSTMON_N.EXE [151552 2004-11-25] (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.)
HKLM\...\Run: [egui] => C:\Program Files\ESET\ESET Smart Security\ecmds.exe [169616 2018-11-29] (ESET)
HKU\S-1-5-21-505298747-3480647553-2469496864-1000\...\Run: [Viber] => C:\Users\Otakar Vavrečka\AppData\Local\Viber\Viber.exe [31348816 2017-07-20] (Viber Media S.Ã r.l.)
HKU\S-1-5-21-505298747-3480647553-2469496864-1000\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [354304 2009-07-14] (Microsoft Corporation)
HKU\S-1-5-21-505298747-3480647553-2469496864-1000\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [4826904 2014-10-29] (Piriform Ltd)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\71.0.3578.98\Installer\chrmstp.exe [2018-12-14] (Google Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2018-09-20] (Adobe Systems, Inc.)
Startup: C:\Users\Otakar Vavrečka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Mámemail Pošťák.lnk [2016-08-18]
ShortcutTarget: Mámemail Pošťák.lnk -> C:\Program Files\Mamemail\Mamemail Postak\Postak.exe (TB development & investment, s.r.o.)
==================== Internet (Whitelisted) ====================
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{4548DDFA-1512-4BFA-82B7-BD949C6B66D7}: [DhcpNameServer] 192.168.1.1
Tcpip\..\Interfaces\{7B2E29D8-C151-4499-9A12-89D37C4D46F3}: [DhcpNameServer] 192.168.1.1
Internet Explorer:
==================
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-505298747-3480647553-2469496864-1000\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-505298747-3480647553-2469496864-1000 -> {AA1A8F4B-E651-4E8B-B7F0-B1F0544A65BF} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_12
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_73\bin\ssv.dll [2016-02-10] (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_73\bin\jp2ssv.dll [2016-02-10] (Oracle Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - No File
FireFox:
========
FF ProfilePath: C:\Users\Otakar Vavrečka\AppData\Roaming\Mozilla\Firefox\Profiles\91phxdze.default-1494695803407 [2019-01-26]
FF HKLM\...\Thunderbird\Extensions: [eplgTb@eset.com] - C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird => not found
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_22_0_0_209.dll [2016-07-13] ()
FF Plugin: @java.com/DTPlugin,version=11.73.2 -> C:\Program Files\Java\jre1.8.0_73\bin\dtplugin\npDeployJava1.dll [2016-02-10] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.73.2 -> C:\Program Files\Java\jre1.8.0_73\bin\plugin2\npjp2.dll [2016-02-10] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50918.0\npctrl.dll [2018-10-23] ( Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-20] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.33.23\npGoogleUpdate3.dll [2018-12-20] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.0.8 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.2 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.1 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.2.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.3 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=3.0.6 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2019-01-10] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2018-12-04] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-505298747-3480647553-2469496864-1000: @talk.google.com/GoogleTalkPlugin -> C:\Users\Otakar Vavrečka\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-505298747-3480647553-2469496864-1000: @talk.google.com/O1DPlugin -> C:\Users\Otakar Vavrečka\AppData\Roaming\Mozilla\plugins\npo1d.dll [2015-04-17] (Google)
FF Plugin HKU\S-1-5-21-505298747-3480647553-2469496864-1000: @tools.google.com/Google Update;version=3 -> C:\Users\Otakar Vavrečka\AppData\Local\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-30] (Google Inc.)
FF Plugin HKU\S-1-5-21-505298747-3480647553-2469496864-1000: @tools.google.com/Google Update;version=9 -> C:\Users\Otakar Vavrečka\AppData\Local\Google\Update\1.3.28.13\npGoogleUpdate3.dll [2015-08-30] (Google Inc.)
FF Plugin ProgramFiles/Appdata: C:\Users\Otakar Vavrečka\AppData\Roaming\mozilla\plugins\npgoogletalk.dll [2015-04-17] (Google)
FF Plugin ProgramFiles/Appdata: C:\Users\Otakar Vavrečka\AppData\Roaming\mozilla\plugins\npo1d.dll [2015-04-17] (Google)
Chrome:
=======
CHR DefaultProfile: Default
CHR HomePage: Default -> hxxp://www.google.com
CHR StartupUrls: Default -> "hxxp://www.google.com"
CHR NewTab: Default -> Not-active:"chrome-extension://blmojkbhnkkphngknkmgccmlenfaelkd/speeddial/html/newTab.html"
CHR Profile: C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default [2019-01-26]
CHR Extension: (Dokumenty) - C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2017-10-12]
CHR Extension: (Disk Google) - C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2015-12-03]
CHR Extension: (Seznam doplněk - Esko-) - C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Extensions\blmojkbhnkkphngknkmgccmlenfaelkd [2018-11-23]
CHR Extension: (YouTube) - C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2015-12-03]
CHR Extension: (Vyhledávání Google) - C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2015-12-03]
CHR Extension: (Adobe Acrobat) - C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2017-03-04]
CHR Extension: (Dokumenty Google offline) - C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ghbmnnjooekpmoecnnnilnnbdlolhkhi [2018-08-17]
CHR Extension: (Avast Online Security) - C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-09-28]
CHR Extension: (VXG Media Player) - C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Extensions\hncknjnnbahamgpjoafdebabmoamcnni [2019-01-11]
CHR Extension: (Fast Music Search) - C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Extensions\ljjjecfkodpceolgcjgojpaffaehjdhn [2017-07-03]
CHR Extension: (Platby Internetového obchodu Chrome) - C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2018-04-03]
CHR Extension: (Gmail) - C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2015-07-15]
CHR Extension: (Chrome Media Router) - C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm [2018-12-15]
CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - hxxps://clients2.google.com/service/update2/crx
==================== Services (Whitelisted) ====================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
S4 AgereModemAudio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [26112 2009-12-03] (LSI Corporation)
R2 dlpsrv; C:\Program Files\ESET\ESET Secure Data\dlpsrv.exe [486080 2017-11-02] (DESlock Limited.)
R2 ekrn; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [1833552 2018-11-29] (ESET)
R3 ekrnEpfw; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [1833552 2018-11-29] (ESET)
S4 EPSON_EB_RPCV4_01; C:\ProgramData\EPSON\EPW!3 SSRP\E_S40ST7.EXE [143872 2007-12-17] (SEIKO EPSON CORPORATION)
S4 EPSON_PM_RPCV4_01; C:\ProgramData\EPSON\EPW!3 SSRP\E_S40RP7.EXE [113664 2007-01-11] (SEIKO EPSON CORPORATION)
S4 HPSupportSolutionsFrameworkService; C:\Program Files\Hp\Common\HPSupportSolutionsFrameworkService.exe [89864 2014-12-11] (Hewlett-Packard Company)
R2 PLFlash DeviceIoControl Service; C:\Windows\system32\IoctlSvc.exe [81920 2006-12-19] (Prolific Technology Inc.) [File not signed]
R2 TeamViewer; C:\Program Files\TeamViewer\TeamViewer_Service.exe [11786992 2018-11-14] (TeamViewer GmbH)
S3 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
===================== Drivers (Whitelisted) ======================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
R3 5U876UVC; C:\Windows\System32\DRIVERS\5U876.sys [114688 2009-11-13] (Ricoh co.,Ltd.)
R1 aswKbd; C:\Windows\system32\Drivers\aswKbd.sys [21576 2013-05-09] (AVAST Software)
S3 athur; C:\Windows\System32\DRIVERS\athur.sys [1500160 2010-01-05] (Atheros Communications, Inc.)
S3 CH341; C:\Windows\System32\Drivers\CH341WDM.SYS [20464 2017-01-02] (www.winchiphead.com)
R0 DLMFENC; C:\Windows\System32\DRIVERS\DLMFENC.sys [142408 2018-02-27] (DESlock Ltd.)
R0 DLPCRYPT; C:\Windows\System32\DRIVERS\dlpcrypt.sys [109824 2017-11-02] (DESlock Ltd.)
R0 dlpvdisk; C:\Windows\System32\DRIVERS\dlpvdisk.sys [84984 2017-11-02] (DESlock Ltd.)
R1 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [124776 2018-11-29] (ESET)
R0 edevmon; C:\Windows\System32\DRIVERS\edevmon.sys [92176 2018-11-29] (ESET)
R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [149192 2018-10-17] (ESET)
R2 ekbdflt; C:\Windows\System32\DRIVERS\ekbdflt.sys [43816 2018-10-17] (ESET)
R1 epfw; C:\Windows\System32\DRIVERS\epfw.sys [72912 2018-10-17] (ESET)
R1 EpfwLWF; C:\Windows\System32\DRIVERS\EpfwLWF.sys [54240 2018-10-17] (ESET)
R1 epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [94712 2018-10-17] (ESET)
S3 FTDIBUS; C:\Windows\System32\drivers\ftdibus.sys [96464 2016-10-04] (Future Technology Devices International Ltd.)
S3 FTSER2K; C:\Windows\System32\drivers\ftser2k.sys [74864 2016-10-04] ()
R0 giveio; C:\Windows\System32\giveio.sys [5248 1996-04-03] () [File not signed]
S3 glavcam; C:\Windows\System32\DRIVERS\glavcam.sys [1475584 2017-02-20] (Windows (R) Codename Longhorn DDK provider)
S2 MLPTDR_N; C:\Windows\system32\MLPTDR_N.SYS [18848 2003-07-18] (KONICA MINOLTA BUSINESS TECHNOLOGIES, INC.)
R2 npf; C:\Windows\system32\drivers\npf.sys [36600 2015-08-21] (Riverbed Technology, Inc.)
S3 PAC7302; C:\Windows\System32\DRIVERS\PAC7302.SYS [457856 2007-06-14] (PixArt Imaging Inc.)
R0 PxHelp20; C:\Windows\System32\Drivers\PxHelp20.sys [46096 2013-06-03] (Corel Corporation)
R0 VDLPToken2; C:\Windows\System32\DRIVERS\vdlptkn2.sys [125432 2017-11-02] (DESlock Ltd.)
U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S3 Ser2plx86; system32\DRIVERS\ser2pl.sys [X]
S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X]
==================== NetSvcs (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
==================== One month (created) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-01-26 15:38 - 2019-01-26 15:39 - 000015351 ____C C:\Users\Otakar Vavrečka\Desktop\FRST.txt
2019-01-26 15:37 - 2019-01-26 15:38 - 000000000 ___DC C:\FRST
2019-01-26 15:33 - 2019-01-26 15:34 - 001787904 ____C (Farbar) C:\Users\Otakar Vavrečka\Desktop\FRST.exe
2019-01-26 13:49 - 2019-01-26 13:49 - 007320272 ____C (Malwarebytes) C:\Users\Otakar Vavrečka\Desktop\adwcleaner_7.2.6.0.exe
2019-01-26 11:56 - 2019-01-26 11:56 - 001107968 ____C C:\Users\Otakar Vavrečka\Desktop\RSIT.exe
2019-01-25 21:07 - 2017-01-02 20:47 - 000031012 ___RC (www.winchiphead.com) C:\Windows\system32\CH341DLL.DLL
2019-01-25 21:07 - 2017-01-02 20:47 - 000020464 ___RC (www.winchiphead.com) C:\Windows\system32\Drivers\CH341WDM.SYS
2019-01-25 21:06 - 2019-01-25 21:06 - 000001713 ____C C:\Users\Otakar Vavrečka\Desktop\CH341A - USB Programmer 1.30.lnk
2019-01-25 21:06 - 2019-01-25 21:06 - 000000000 ___DC C:\Users\Otakar Vavrečka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CH341A - USB Programmer 1.30
2019-01-25 19:34 - 2015-01-26 00:00 - 000041472 ____C (www.winchiphead.com) C:\Windows\system32\Drivers\CH341SER.SYS
2019-01-25 19:34 - 2008-12-18 00:00 - 000020089 ____C C:\Windows\system32\CH341SER.VXD
2019-01-25 19:34 - 2007-06-12 00:00 - 000019680 ____C (www.winchiphead.com) C:\Windows\system32\Drivers\CH341S98.SYS
2019-01-25 19:34 - 2005-07-30 00:00 - 000006712 ____C (www.winchiphead.com) C:\Windows\system32\CH341PT.DLL
2019-01-25 16:24 - 2019-01-25 16:24 - 000000000 ___DC C:\Users\Otakar Vavrečka\AppData\Local\DESlock+
2019-01-25 16:11 - 2019-01-25 19:34 - 000000000 ___DC C:\WCH.CN
2019-01-25 14:46 - 2019-01-25 14:46 - 000001997 ____C C:\Users\Public\Desktop\ESET Ochrana bankovnictví a online plateb.lnk
2019-01-25 14:44 - 2019-01-25 14:44 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ESET
2019-01-25 14:01 - 2019-01-25 14:01 - 005455480 ____C (ESET) C:\Users\Otakar Vavrečka\Desktop\eset_smart_security_premium_live_installer.exe
2019-01-24 17:25 - 2019-01-25 21:06 - 000000000 ___DC C:\SkyGz
2019-01-20 08:53 - 2019-01-20 08:54 - 000000000 ___DC C:\Users\Otakar Vavrečka\Desktop\eRmail
2019-01-12 09:34 - 2019-01-12 09:35 - 000011943 ____C C:\Users\Otakar Vavrečka\Desktop\Tablet-hláška na displeji.odt
2019-01-10 12:21 - 2019-01-10 12:21 - 000067528 ____C C:\Users\Otakar Vavrečka\Downloads\splnomocnenie.pdf
2019-01-09 20:08 - 2019-01-09 20:08 - 000009328 ____C C:\Users\Otakar Vavrečka\Downloads\LIDI.cz.odt
2019-01-09 14:58 - 2019-01-23 13:48 - 000000000 ___DC C:\Users\Otakar Vavrečka\Desktop\Odhazování sněhu-Nikolka
2019-01-09 08:14 - 2019-01-09 10:49 - 020279808 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 013680640 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 004494848 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 004386816 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 004055272 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2019-01-09 08:14 - 2019-01-09 10:49 - 003960552 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2019-01-09 08:14 - 2019-01-09 10:49 - 002724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb
2019-01-09 08:14 - 2019-01-09 10:49 - 002295808 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 002060288 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl
2019-01-09 08:14 - 2019-01-09 10:49 - 001329664 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 001310520 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 001214696 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ntfs.sys
2019-01-09 08:14 - 2019-01-09 10:49 - 001155072 _____ (Microsoft Corporation) C:\Windows\system32\mshtmlmedia.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 001072640 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000872448 _____ (Microsoft Corporation) C:\Windows\system32\kernel32.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000710144 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000696320 _____ (Microsoft Corporation) C:\Windows\system32\msfeeds.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000692224 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe
2019-01-09 08:14 - 2019-01-09 10:49 - 000690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000668160 _____ (Microsoft Corporation) C:\Windows\system32\MsSpellCheckingFacility.exe
2019-01-09 08:14 - 2019-01-09 10:49 - 000663040 _____ (Microsoft Corporation) C:\Windows\system32\jscript.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000644096 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000620032 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000554496 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000498176 _____ (Microsoft Corporation) C:\Windows\system32\vbscript.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000476160 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000419608 _____ C:\Windows\system32\locale.nls
2019-01-09 08:14 - 2019-01-09 10:49 - 000416256 _____ (Microsoft Corporation) C:\Windows\system32\dxtmsft.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000352768 _____ (Microsoft Corporation) C:\Windows\system32\msrd3x40.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000348760 _____ (Microsoft Corporation) C:\Windows\system32\iedkcs32.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000341504 _____ (Microsoft Corporation) C:\Windows\system32\html.iec
2019-01-09 08:14 - 2019-01-09 10:49 - 000294400 _____ (Microsoft Corporation) C:\Windows\system32\KernelBase.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000279040 _____ (Microsoft Corporation) C:\Windows\system32\dxtrans.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000271360 _____ (Microsoft Corporation) C:\Windows\system32\conhost.exe
2019-01-09 08:14 - 2019-01-09 10:49 - 000262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2019-01-09 08:14 - 2019-01-09 10:49 - 000261120 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000254464 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000230400 _____ (Microsoft Corporation) C:\Windows\system32\webcheck.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2019-01-09 08:14 - 2019-01-09 10:49 - 000223232 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000189672 _____ (Microsoft Corporation) C:\Windows\system32\halmacpi.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000189672 _____ (Microsoft Corporation) C:\Windows\system32\hal.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000171008 _____ (Microsoft Corporation) C:\Windows\system32\winsrv.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000168960 _____ (Microsoft Corporation) C:\Windows\system32\msrating.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000141312 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000137960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2019-01-09 08:14 - 2019-01-09 10:49 - 000136424 _____ (Microsoft Corporation) C:\Windows\system32\halacpi.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000130048 _____ (Microsoft Corporation) C:\Windows\system32\occache.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000126464 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2019-01-09 08:14 - 2019-01-09 10:49 - 000115712 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe
2019-01-09 08:14 - 2019-01-09 10:49 - 000107520 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\videoprt.sys
2019-01-09 08:14 - 2019-01-09 10:49 - 000104960 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe
2019-01-09 08:14 - 2019-01-09 10:49 - 000099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000098816 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2019-01-09 08:14 - 2019-01-09 10:49 - 000097792 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2019-01-09 08:14 - 2019-01-09 10:49 - 000091136 _____ (Microsoft Corporation) C:\Windows\system32\inseng.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000082432 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000081408 _____ (Microsoft Corporation) C:\Windows\system32\rascfg.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000076288 _____ (Microsoft Corporation) C:\Windows\system32\mshtmled.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000073216 _____ (Microsoft Corporation) C:\Windows\system32\tdc.ocx
2019-01-09 08:14 - 2019-01-09 10:49 - 000070144 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2019-01-09 08:14 - 2019-01-09 10:49 - 000067304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2019-01-09 08:14 - 2019-01-09 10:49 - 000064000 _____ (Microsoft Corporation) C:\Windows\system32\MshtmlDac.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000063488 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\wanarp.sys
2019-01-09 08:14 - 2019-01-09 10:49 - 000062464 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000061952 _____ (Microsoft Corporation) C:\Windows\system32\rasdiag.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000060416 _____ (Microsoft Corporation) C:\Windows\system32\JavaScriptCollectionAgent.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\ndptsp.tsp
2019-01-09 08:14 - 2019-01-09 10:49 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2019-01-09 08:14 - 2019-01-09 10:49 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2019-01-09 08:14 - 2019-01-09 10:49 - 000050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000048640 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndproxy.sys
2019-01-09 08:14 - 2019-01-09 10:49 - 000047616 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000047104 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000038912 _____ (Microsoft Corporation) C:\Windows\system32\kmddsp.tsp
2019-01-09 08:14 - 2019-01-09 10:49 - 000038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000036352 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000033280 _____ (Microsoft Corporation) C:\Windows\system32\rasmxs.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000030720 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000029696 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000022528 _____ (Microsoft Corporation) C:\Windows\system32\rasser.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2019-01-09 08:14 - 2019-01-09 10:49 - 000020992 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ndistapi.sys
2019-01-09 08:14 - 2019-01-09 10:49 - 000017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2019-01-09 08:14 - 2019-01-09 10:49 - 000015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000007168 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000006144 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000005120 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000004608 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000004096 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003584 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2019-01-09 08:14 - 2019-01-09 10:49 - 000003072 ____H (Microsoft Corporation) C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2019-01-09 08:14 - 2018-12-28 20:26 - 000055296 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\amdk8.sys
2019-01-09 08:14 - 2018-12-28 20:26 - 000053760 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\intelppm.sys
2019-01-09 08:14 - 2018-12-28 20:26 - 000053248 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\viac7.sys
2019-01-09 08:14 - 2018-12-28 20:26 - 000052736 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\amdppm.sys
2019-01-09 08:14 - 2018-12-28 20:26 - 000052224 ____C (Microsoft Corporation) C:\Windows\system32\Drivers\processr.sys
2018-12-31 18:47 - 2019-01-10 18:07 - 000000000 ___DC C:\Users\Otakar Vavrečka\Desktop\LED podsvícení
2018-12-31 18:00 - 2019-01-14 08:55 - 000000000 ___DC C:\Users\Otakar Vavrečka\Desktop\Žárovky-Čína
2018-12-28 20:36 - 2018-12-28 20:36 - 008862695 ____C C:\Users\Otakar Vavrečka\Desktop\otf_color_462_463_sm.pdf
2018-12-27 21:59 - 2018-12-27 22:09 - 000000000 ___DC C:\Users\Otakar Vavrečka\Downloads\Martina Zack
2018-12-27 18:34 - 2018-12-27 18:54 - 000000000 ___DC C:\Users\Otakar Vavrečka\Desktop\NOKIA RM-1035
==================== One month (modified) ========
(If an entry is included in the fixlist, the file/folder will be moved.)
2019-01-26 14:15 - 2009-07-14 05:34 - 000018736 ___HC C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2019-01-26 14:15 - 2009-07-14 05:34 - 000018736 ___HC C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2019-01-26 14:07 - 2017-07-26 14:22 - 000000000 ___DC C:\Users\Otakar Vavrečka\AppData\Roaming\ViberPC
2019-01-26 14:07 - 2013-02-02 14:48 - 000000000 ___DC C:\Program Files\TeamViewer
2019-01-26 14:06 - 2009-07-14 05:53 - 000000006 ___HC C:\Windows\Tasks\SA.DAT
2019-01-26 14:05 - 2017-02-17 19:11 - 000000000 ___DC C:\AdwCleaner
2019-01-26 12:02 - 2017-02-10 19:00 - 000000000 ___DC C:\rsit
2019-01-26 11:56 - 2016-03-09 16:19 - 000000000 ___DC C:\Program Files\trend micro
2019-01-26 08:21 - 2017-07-26 15:05 - 000000000 ___DC C:\Users\Otakar Vavrečka\AppData\Local\Viber
2019-01-26 02:14 - 2018-04-07 06:25 - 000000000 ___DC C:\Users\Otakar Vavrečka\Desktop\Programátor-CH341A
2019-01-25 21:38 - 2013-04-10 07:18 - 000000000 ___DC C:\Users\Otakar Vavrečka\AppData\Roaming\vlc
2019-01-25 19:50 - 2014-09-15 16:39 - 000000000 ___DC C:\Users\Otakar Vavrečka\Documents\ViberDownloads
2019-01-25 19:27 - 2009-07-14 03:37 - 000000000 ___DC C:\Windows\inf
2019-01-25 17:17 - 2012-04-19 18:56 - 000000000 ___DC C:\Windows\Minidump
2019-01-25 16:24 - 2014-03-15 22:44 - 000000000 ____D C:\Program Files\ESET
2019-01-25 14:08 - 2016-07-13 07:23 - 000000000 ___DC C:\Users\Otakar Vavrečka\Data z plochy
2019-01-24 17:54 - 2018-04-02 08:50 - 000000000 ___DC C:\Users\Otakar Vavrečka\Desktop\Firmware
2019-01-22 16:04 - 2009-07-14 03:37 - 000000000 ___DC C:\Windows\system32\NDF
2019-01-21 15:56 - 2009-07-14 03:37 - 000000000 ____D C:\Windows\rescache
2019-01-19 12:42 - 2012-03-18 12:28 - 000000000 ___DC C:\Program Files\Microsoft Silverlight
2019-01-17 07:32 - 2012-03-18 12:28 - 000000000 ___DC C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2019-01-14 09:01 - 2018-08-06 13:27 - 000001024 ____C C:\Users\Public\Desktop\VLC media player.lnk
2019-01-13 16:42 - 2012-01-12 08:08 - 000000000 ___DC C:\Shoty
2019-01-10 13:11 - 2017-04-09 14:53 - 000000000 ___DC C:\Users\Otakar Vavrečka\Desktop\LED žárovky
2019-01-09 12:19 - 2011-02-22 14:51 - 001587926 ____C C:\Windows\system32\PerfStringBackup.INI
2019-01-09 12:19 - 2009-08-14 04:45 - 000670164 ____C C:\Windows\system32\perfh005.dat
2019-01-09 12:19 - 2009-08-14 04:45 - 000142246 ____C C:\Windows\system32\perfc005.dat
2019-01-09 10:56 - 2013-08-14 06:58 - 000000000 ___DC C:\Windows\system32\MRT
2019-01-09 10:50 - 2011-02-23 08:18 - 129687688 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2019-01-04 13:58 - 2015-11-08 16:37 - 000002441 ____C C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
==================== Files in the root of some directories =======
2015-05-07 05:06 - 2015-05-07 05:06 - 000087608 ____C () C:\Users\Otakar Vavrečka\AppData\Roaming\inst.exe
2015-05-07 05:06 - 2015-05-07 05:06 - 000007887 ____C () C:\Users\Otakar Vavrečka\AppData\Roaming\pcouffin.cat
2015-05-07 05:06 - 2015-05-07 05:06 - 000001144 ____C () C:\Users\Otakar Vavrečka\AppData\Roaming\pcouffin.inf
2015-05-07 05:06 - 2015-05-07 05:06 - 000000055 ____C () C:\Users\Otakar Vavrečka\AppData\Roaming\pcouffin.log
2015-05-07 05:06 - 2015-05-07 05:06 - 000047360 ____C (VSO Software) C:\Users\Otakar Vavrečka\AppData\Roaming\pcouffin.sys
2011-08-28 17:17 - 2015-05-07 05:05 - 000001189 ____C () C:\Users\Otakar Vavrečka\AppData\Roaming\vso_ts_preview.xml
2012-03-07 11:43 - 2014-04-01 07:43 - 000012288 ____C () C:\Users\Otakar Vavrečka\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2011-08-28 09:31 - 2011-08-28 09:31 - 000000061 ____C () C:\Users\Otakar Vavrečka\AppData\Local\SRDownloader.err
2011-07-07 06:28 - 2013-06-10 20:39 - 000000888 ____C () C:\Users\Otakar Vavrečka\AppData\Local\SRDownloader.nast
2011-08-06 11:27 - 2011-08-06 11:27 - 000000000 ____C () C:\Users\Otakar Vavrečka\AppData\Local\{C9479304-8CCB-45C2-B189-3DC354E03AA2}
Some files in TEMP:
====================
2019-01-25 19:30 - 2019-01-24 17:26 - 000117447 ____C () C:\Users\Otakar Vavrečka\AppData\Local\Temp\Uninstall.exe
==================== Bamital & volsnap ======================
(There is no automatic fix for files that do not pass verification.)
C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\dllhost.exe => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed
LastRegBack: 2019-01-25 09:07
==================== End of FRST.txt ============================
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 26-01-2019
Ran by Otakar Vavrečka (26-01-2019 15:40:15)
Running from C:\Users\Otakar Vavrečka\Desktop
Microsoft Windows 7 Home Premium Service Pack 1 (X86) (2011-02-22 14:02:06)
Boot Mode: Normal
==========================================================
==================== Accounts: =============================
Administrator (S-1-5-21-505298747-3480647553-2469496864-500 - Administrator - Disabled)
Guest (S-1-5-21-505298747-3480647553-2469496864-501 - Limited - Disabled) => C:\Users\Guest
HomeGroupUser$ (S-1-5-21-505298747-3480647553-2469496864-1002 - Limited - Enabled)
Otakar Vavrečka (S-1-5-21-505298747-3480647553-2469496864-1000 - Administrator - Enabled) => C:\Users\Otakar Vavrečka
==================== Security Center ========================
(If an entry is included in the fixlist, it will be removed.)
AV: ESET Security (Enabled - Up to date) {EC1D6F37-E411-475A-DF50-12FF7FE4AC70}
AS: ESET Security (Enabled - Up to date) {577C8ED3-C22B-48D4-E5E0-298D0463E6CD}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: ESET Firewall (Enabled) {D426EE12-AE7E-4602-F40F-BBCA8137EB0B}
==================== Installed Programs ======================
(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
µTorrent (HKLM\...\uTorrent) (Version: 2.2.1.25534 - emc, uTorrent.CZ)
7-Zip 18.01 (HKLM\...\7-Zip) (Version: 18.01 - Igor Pavlov)
Adobe Acrobat Reader DC - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 19.010.20069 - Adobe Systems Incorporated)
Adobe Flash Player 22 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 22.0.0.192 - Adobe Systems Incorporated)
Adobe Flash Player 22 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 22.0.0.209 - Adobe Systems Incorporated)
Any Video Converter 5.9.0 (HKLM\...\Any Video Converter_is1) (Version: - Any-Video-Converter.com)
Apowersoft Video Stahovač V6.1.6 (HKLM\...\{b3336f66-e079-4ff6-abdb-51e2fab781d5}_is1) (Version: 6.1.6 - APOWERSOFT LIMITED)
Ashampoo Burning Studio 6 FREE v.6.84 (HKLM\...\{91B33C97-3ED1-03EA-A67B-244AA4D7B559}_is1) (Version: 6.8.4 - Ashampoo GmbH & Co. KG)
Audacity 2.0.5 (HKLM\...\Audacity_is1) (Version: 2.0.5 - Audacity Team)
Autodesk MapGuide(R) Viewer ActiveX Control Release 6.5 (HKLM\...\{E031338C-839D-4EDD-9537-99B653C39D81}) (Version: 6.5.5.24 - Autodesk, Inc.)
Avidemux 2.6 - 32 bits (32-bit) (HKLM\...\Avidemux 2.6 - 32 bits) (Version: 2.6.20.170428 - )
AxCrypt 1.7.2976.0 (HKLM\...\{38350E9E-D50E-454A-BAFC-58BBDDBE08C4}) (Version: 1.7.2976.0 - Axantum Software AB)
Broadcom 802.11 Wireless LAN Adapter (HKLM\...\Broadcom 802.11 Wireless LAN Adapter) (Version: - Broadcom Corporation)
Canon MovieEdit Task for ZoomBrowser EX (HKLM\...\MovieEditTask) (Version: 3.9.0.6 - Canon Inc.)
Canon PhotoRecord (HKLM\...\PhotoRecord) (Version: - )
Canon RAW Codec (HKLM\...\Canon RAW Codec) (Version: 1.7.0.56 - Canon Inc.)
Canon Utilities CameraWindow DC 8 (HKLM\...\CameraWindowDC) (Version: 8.8.0.17 - Canon Inc.)
Canon Utilities EOS Video Snapshot Task for ZoomBrowser EX (HKLM\...\EOS Video Snapshot Task) (Version: 1.0.0.10 - Canon Inc.)
Canon Utilities ImageBrowser EX (HKLM\...\ImageBrowser EX) (Version: 1.2.1.13 - Canon Inc.)
Canon Utilities ZoomBrowser EX (HKLM\...\{C1D76D7A-F3BB-47EA-A746-5B1E2FFC1DF2}) (Version: 04.00.00024 - CISRA)
Canon Utilities ZoomBrowser EX (HKLM\...\ZoomBrowser EX) (Version: 6.9.0.1 - Canon Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 4.19 - Piriform)
CDBurnerXP (HKLM\...\{5932A5C4-BB44-4CFB-AD66-1B826F4D788B}) (Version: 4.3.8.2568 - Canneverbe Limited)
Cisco EAP-FAST Module (HKLM\...\{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}) (Version: 2.2.14 - Cisco Systems, Inc.) Hidden
Cisco LEAP Module (HKLM\...\{51C7AD07-C3F6-4635-8E8A-231306D810FE}) (Version: 1.0.19 - Cisco Systems, Inc.) Hidden
Cisco PEAP Module (HKLM\...\{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}) (Version: 1.1.6 - Cisco Systems, Inc.) Hidden
Cryptext (Remove Only) (HKLM\...\CryptextNT4) (Version: - )
Defraggler (HKLM\...\Defraggler) (Version: 2.18 - Piriform)
doPDF 7.2 printer (HKLM\...\doPDF 7 printer_is1) (Version: - Softland)
dreamboxEDIT -- The one and only settings editor for your Dreambox (HKLM\...\dreamboxEDIT) (Version: - )
EAGLE 6.4.0 (HKLM\...\EAGLE 6.4.0) (Version: 6.4.0 - CadSoft Computer GmbH)
EPSON Scan (HKLM\...\EPSON Scanner) (Version: - )
ESET Premium Line Encryption (HKLM\...\{A88A7368-8FEE-421F-A785-B067A5575AF6}) (Version: 1.0.14 - ESET) Hidden
ESET Security (HKLM\...\{0BA8BBB6-4354-40BD-AA15-D4FF2E551998}) (Version: 12.0.31.0 - ESET, spol. s r.o.)
Eusing Free MP3 Cutter (HKLM\...\Eusing Free MP3 Cutter) (Version: - )
EVEREST Ultimate Edition v5.50 (HKLM\...\EVEREST Ultimate Edition_is1) (Version: 5.50 - Lavalys, Inc.)
FastStone Image Viewer 4.6 (HKLM\...\FastStone Image Viewer) (Version: 4.6 - FastStone Soft)
FTP Commander (HKLM\...\FTP Commander) (Version: - )
GIMP 2.6.11 (HKLM\...\WinGimp-2.0_is1) (Version: 2.6.11 - The GIMP Team)
GL USB2.0 UVC Camera Device (HKLM\...\{9897BBD8-013A-49F3-928E-866A59B6E00C}) (Version: 14.03.11.0 - GenesysLogic)
Google Drive (HKLM\...\{A8DC81F2-D365-4248-892A-FA3B5951F731}) (Version: 2.34.9392.7803 - Google, Inc.)
Google Chrome (HKLM\...\Google Chrome) (Version: 71.0.3578.98 - Google Inc.)
Google Talk Plugin (HKLM\...\{CA3DD97D-1FD7-37A7-BD5C-FC4430C8B8E6}) (Version: 5.41.2.0 - Google)
Google Update Helper (HKLM\...\{60EC980A-BDA2-4CB6-A427-B07A5498B4CA}) (Version: 1.3.33.23 - Google Inc.) Hidden
Google Update Helper (HKLM\...\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}) (Version: 1.3.25.11 - Google Inc.) Hidden
GPL Ghostscript (HKLM\...\GPL Ghostscript 9.09) (Version: 9.09 - Artifex Software Inc.)
HP PrecisionScan LT Software (HKLM\...\HP PrecisionScan LT Software) (Version: - )
HP Support Solutions Framework (HKLM\...\{96D12EC9-720B-45FB-904C-36D6307A1C76}) (Version: 11.51.0048 - Hewlett-Packard Company)
HP Webcam (HKLM\...\{1D61E881-43CD-447B-9E6B-D2C6138B2862}) (Version: 1.0 - Roxio)
CH341A - USB Programmer 1.30 (HKLM\...\CH341A - USB Programmer 1.30) (Version: 1.30 - SkyGz)
Chinese Traditional Fonts Support For Adobe Reader X (HKLM\...\{AC76BA86-7AD7-2448-0000-A00000000003}) (Version: 10.0.0 - Adobe Systems Incorporated)
ICQ7.6 (HKLM\...\{7644E42D-B096-457F-8B5B-901238FC81AE}) (Version: 7.6 - ICQ)
Integrated Camera Driver Installer Package Ver.1.33.110.0 (HKLM\...\{B0344B38-378B-47E0-BDCC-977785D24768}) (Version: 1.33.110.0 - BISON)
IrfanView (remove only) (HKLM\...\IrfanView) (Version: 4.37 - Irfan Skiljan)
Java 8 Update 73 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83218073F0}) (Version: 8.0.730.2 - Oracle Corporation)
JavaFX 2.1.1 (HKLM\...\{1111706F-666A-4037-7777-211328764D10}) (Version: 2.1.1 - Oracle Corporation)
KONICA MINOLTA PagePro 1300W (HKLM\...\KONICA MINOLTA PagePro 1300W) (Version: - )
KONICA MINOLTA PagePro 1400W (HKLM\...\KONICA MINOLTA PagePro 1400W) (Version: - )
Mámemail Pošťák verze 1.3 (HKLM\...\{FF58C679-3D55-4F3C-90CF-A5F026710AE0}_is1) (Version: 1.3 - Mamemail.cz)
Marvell Miniport Driver (HKLM\...\Marvell Miniport Driver) (Version: 11.45.4.3 - Marvell)
Microsoft .NET Framework 4.7.2 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft .NET Framework 4.7.2 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.7.03062 - Microsoft Corporation)
Microsoft PowerPoint Viewer (HKLM\...\{95140000-00AF-0405-0000-0000000FF1CE}) (Version: 14.0.7015.1000 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50918.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2015 Redistributable (x86) - 14.0.24215 (HKLM\...\{e2803110-78b3-4664-a479-3611a381656a}) (Version: 14.0.24215.1 - Microsoft Corporation)
Mozilla Firefox 47.0 (x86 cs) (HKLM\...\Mozilla Firefox 47.0 (x86 cs)) (Version: 47.0 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 47.0.0.5999 - Mozilla)
MP3 Skype recorder (HKLM\...\{7CF296C0-583C-4BB7-8DBE-34DD6AE635B7}) (Version: 4.18.1.0 - Domit LTD)
MSXML 4.0 SP3 Parser (KB2721691) (HKLM\...\{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}) (Version: 4.30.2114.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB2758694) (HKLM\...\{1D95BA90-F4F8-47EC-A882-441C99D30C1E}) (Version: 4.30.2117.0 - Microsoft Corporation)
MSXML 4.0 SP3 Parser (KB973685) (HKLM\...\{859DFA95-E4A6-48CD-B88E-A3E483E89B44}) (Version: 4.30.2107.0 - Microsoft Corporation)
Nero 7 Ultra Edition (HKLM\...\{F90D6825-8F1F-4E3A-9E42-A9C8A9DD1029}) (Version: 7.03.1152 - Nero AG)
Odinstalace tiskárny EPSON Stylus SX200 Series (HKLM\...\EPSON Stylus SX200 Series) (Version: - SEIKO EPSON Corporation)
OpenOffice 4.1.5 (HKLM\...\{2FEA9841-64DE-4FA5-A36F-1CD23E2790EB}) (Version: 4.15.9789 - Apache Software Foundation)
PL-2303 USB-to-Serial (HKLM\...\{ECC3713C-08A4-40E3-95F1-7D0704F1CE5E}) (Version: 1.8.12 - Prolific Technology INC)
ProfiCAD 9.3.9 (HKLM\...\ProfiCAD_is1) (Version: - )
Recover Files 3.31 (HKLM\...\Recover Files_is1) (Version: - Undelete & Unerase, Inc.)
Recuva (HKLM\...\Recuva) (Version: 1.48 - Piriform)
Revo Uninstaller Pro 2.5.8 (HKLM\...\{67579783-0FB7-4F7B-B881-E5BE47C9DBE0}_is1) (Version: 2.5.8 - VS Revo Group, Ltd.)
Seznam Pošťák 2 (Pouze já.) (HKU\S-1-5-21-505298747-3480647553-2469496864-1000\...\szn-software-postak) (Version: - )
Skype verze 8.34 (HKLM\...\Skype_is1) (Version: 8.34 - Skype Technologies S.A.)
sPlan 7.0 (Demo) (HKLM\...\sPlan_70_Demo_is1) (Version: - )
SuperiorUSB v5.6.0 (HKLM\...\SuperiorUSB_is1) (Version: - )
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 15.0.24.0 - Synaptics Incorporated)
TeamViewer 14 (HKLM\...\TeamViewer) (Version: 14.0.13880 - TeamViewer)
Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version: 9.21a - Ghisler Software GmbH)
TuneUp Utilities 2014 (en-US) (HKLM\...\{14C8CE46-C68C-461B-BCA9-E276A85851C6}) (Version: 14.0.1000.88 - TuneUp Software) Hidden
Undelete 360 (HKLM\...\Undelete 360_is1) (Version: - File Recovery Ltd.)
Uschovna.cz 1.1.0 (HKLM\...\{8531A154-5045-4E32-885A-391F750C5DE2}_is1) (Version: 1.1.0 - Capsa.cz)
Viber (HKLM\...\{05247C1B-0AD7-43B0-B6F9-D29B376ADC9A}) (Version: 6.8.6.5 - Viber Media Inc.) Hidden
Viber (HKU\S-1-5-21-505298747-3480647553-2469496864-1000\...\{222ce6fa-97ef-411d-a3f3-51229b6827fc}) (Version: 6.8.6.5 - Viber Media Inc.)
VLC media player (HKLM\...\VLC media player) (Version: 3.0.6 - VideoLAN)
Windows Media Player Firefox Plugin (HKLM\...\{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}) (Version: 1.0.0.8 - Microsoft Corp)
WinRAR 4.01 (32-bit) (HKLM\...\WinRAR archiver) (Version: 4.01.0 - win.rar GmbH)
X-Lite 3.0 (HKLM\...\X-Lite 3.0_is1) (Version: - CounterPath Solutions Inc.)
==================== Custom CLSID (Whitelisted): ==========================
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{022105BD-948A-40C9-AB42-A3300DDF097F}\localserver32 -> C:\Users\Otakar Vavrečka\AppData\Local\Google\Update\GoogleUpdate.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{22181302-A8A6-4F84-A541-E5CBFC70CC43}\localserver32 -> C:\Users\Otakar Vavrečka\AppData\Local\Google\Update\1.3.28.13\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{2F0E2680-9FF5-43C0-B76E-114A56E93598}\localserver32 -> C:\Users\Otakar Vavrečka\AppData\Local\Google\Update\1.3.28.13\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{39125640-8D80-11DC-A2FE-C5C455D89593}\InprocServer32 -> C:\Users\Otakar Vavrečka\AppData\Local\Google\Google Talk Plugin\googletalkax.dll (Google)
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{51F9E8EF-59D7-475B-A106-C7EA6F30C119}\localserver32 -> C:\Users\Otakar Vavrečka\AppData\Local\Google\Update\1.3.28.13\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{78550997-5DEF-4A8A-BAF9-D5774E87AC98}\InprocServer32 -> C:\Users\Otakar Vavrečka\AppData\Local\Google\Update\1.3.28.13\psuser.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{AB9F4455-E591-4132-A386-0B91EAEDB96C}\InprocServer32 -> C:\Users\Otakar Vavrečka\AppData\Local\Google\Google Talk Plugin\o1dax.dll (Google)
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{C3101A8B-0EE1-4612-BFE9-41FFC1A3C19D}\InprocServer32 -> C:\Users\Otakar Vavrečka\AppData\Local\Google\Update\1.3.28.13\npGoogleUpdate3.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{C442AC41-9200-4770-8CC0-7CDB4F245C55}\InprocServer32 -> C:\Users\Otakar Vavrečka\AppData\Local\Google\Update\1.3.28.13\npGoogleUpdate3.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{E67BE843-BBBE-4484-95FB-05271AE86750}\localserver32 -> C:\Users\Otakar Vavrečka\AppData\Local\Google\Update\1.3.28.13\GoogleUpdateOnDemand.exe (Google Inc.)
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{E8CF3E55-F919-49D9-ABC0-948E6CB34B9F}\InprocServer32 -> C:\Users\Otakar Vavrečka\AppData\Local\Google\Update\1.3.28.13\psuser.dll (Google Inc.)
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{EA837F47-5AD1-443E-AE34-FFE03CBF3099}\InprocServer32 -> C:\Users\Otakar Vavrečka\AppData\Local\Seznam.cz\bin\core.4.dll => No File
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{EA837F48-5AD1-443E-AE34-FFE03CBF3099}\InprocServer32 -> C:\Users\Otakar Vavrečka\AppData\Local\Seznam.cz\bin\core.4.dll => No File
ShellIconOverlayIdentifiers: [ GoogleDriveBlacklisted] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42} => C:\Program Files\Google\Drive\googledrivesync32.dll [2018-04-23] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSynced] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40} => C:\Program Files\Google\Drive\googledrivesync32.dll [2018-04-23] (Google)
ShellIconOverlayIdentifiers: [ GoogleDriveSyncing] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41} => C:\Program Files\Google\Drive\googledrivesync32.dll [2018-04-23] (Google)
ShellIconOverlayIdentifiers: [ESD Shell Icon Overlay Identifier] -> {AF106685-9C86-48AF-8524-8F485C459E17} => C:\Program Files\ESET\ESET Secure Data\esdovrly.dll [2017-11-02] (DESlock Limited)
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => -> No File
ContextMenuHandlers1: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-01-28] (Igor Pavlov)
ContextMenuHandlers1: [axcrypt.File] -> {C3DFC144-30F8-4138-81F9-578DBEB9324A} => C:\Program Files\Axantum\AxCrypt\ShellExt.dll [2012-11-12] (Axantum Software AB)
ContextMenuHandlers1: [Cover Designer] -> {73FCA462-9BD5-4065-A73F-A8E5F6904EF7} => C:\Program Files\Nero\Nero 7\Nero CoverDesigner\CoverEdExtension.dll [2007-07-24] (Nero AG)
ContextMenuHandlers1: [Cryptext] -> {990a81a0-b289-11cf-a800-00a0c903a2a6} => C:\Windows\system32\ShellExt\Cryptext.dll [1999-04-23] ()
ContextMenuHandlers1: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Smart Security\shellExt.dll [2018-11-29] (ESET)
ContextMenuHandlers1: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu32.dll [2018-04-23] (Google)
ContextMenuHandlers1: [Print602] -> {D5F8CFC7-1A45-4517-A565-E42CDE7880CF} => -> No File
ContextMenuHandlers1: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2011-05-28] ()
ContextMenuHandlers2: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Smart Security\shellExt.dll [2018-11-29] (ESET)
ContextMenuHandlers4: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-01-28] (Igor Pavlov)
ContextMenuHandlers4: [Cryptext] -> {990a81a0-b289-11cf-a800-00a0c903a2a6} => C:\Windows\system32\ShellExt\Cryptext.dll [1999-04-23] ()
ContextMenuHandlers4: [GDContextMenu] -> {BB02B294-8425-42E5-983F-41A1FA970CD6} => C:\Program Files\Google\Drive\contextmenu32.dll [2018-04-23] (Google)
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers4: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2011-05-28] ()
ContextMenuHandlers6: [7-Zip] -> {23170F69-40C1-278A-1000-000100020000} => C:\Program Files\7-Zip\7-zip.dll [2018-01-28] (Igor Pavlov)
ContextMenuHandlers6: [axcrypt.File] -> {C3DFC144-30F8-4138-81F9-578DBEB9324A} => C:\Program Files\Axantum\AxCrypt\ShellExt.dll [2012-11-12] (Axantum Software AB)
ContextMenuHandlers6: [Cryptext] -> {990a81a0-b289-11cf-a800-00a0c903a2a6} => C:\Windows\system32\ShellExt\Cryptext.dll [1999-04-23] ()
ContextMenuHandlers6: [ESET Security Shell] -> {B089FE88-FB52-11D3-BDF1-0050DA34150D} => C:\Program Files\ESET\ESET Smart Security\shellExt.dll [2018-11-29] (ESET)
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers6: [RUShellExt] -> {2C5515DC-2A7E-4BFD-B813-CACC2B685EB7} => C:\Program Files\VS Revo Group\Revo Uninstaller Pro\RUExt.dll [2010-08-12] (VS Revo Group)
ContextMenuHandlers6: [WinRAR] -> {B41DB860-8EE4-11D2-9906-E49FADC173CA} => C:\Program Files\WinRAR\rarext.dll [2011-05-28] ()
==================== Scheduled Tasks (Whitelisted) =============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
Task: {1E97DEFE-56CD-43DA-9D17-E238D9194780} - \DriverCure -> No File <==== ATTENTION
Task: {2D705AC7-ABAB-4DB0-A2C6-E30C9394FEC6} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-13] (Adobe Systems Incorporated)
Task: {3E86EE08-3FAA-47A7-BA29-2059F745A87D} - System32\Tasks\{8C134072-3CE6-421D-9589-025BE960BDCF} => C:\Windows\system32\pcalua.exe -a "C:\Users\Otakar Vavrečka\Desktop\Programátor-CH341A\Nový\CH341PAR.EXE" -d "C:\Users\Otakar Vavrečka\Desktop\Programátor-CH341A\Nový"
Task: {6609F292-B444-4351-97BE-8955581B0502} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe [2014-10-29] (Piriform Ltd)
Task: {87D1AA01-FB73-4F54-AEC6-65047C803ED0} - System32\Tasks\GoogleUpdateTaskMachineCore1cf6a811f49157b => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-03] (Google Inc.)
Task: {D8F46F61-120B-4D71-AA30-06D8C4BF3E5B} - System32\Tasks\GoogleUpdateTaskMachineUA1cf8b84abba174e => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-03] (Google Inc.)
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
==================== Shortcuts & WMI ========================
(The entries could be listed to be restored or removed.)
ShortcutWithArgument: C:\Users\Otakar Vavrečka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Aplikace Chrome\VXG Media Player.lnk -> C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) -> --profile-directory=Default --app-id=hncknjnnbahamgpjoafdebabmoamcnni
==================== Loaded Modules (Whitelisted) ==============
2011-07-10 16:36 - 2001-10-28 16:42 - 000116224 _____ () C:\Windows\System32\pdfcmnnt.dll
2011-02-28 22:44 - 2011-05-28 22:04 - 000140288 _____ () C:\Program Files\WinRAR\rarext.dll
1999-04-23 03:21 - 1999-04-23 03:21 - 000142848 _____ () C:\Windows\system32\ShellExt\Cryptext.dll
2017-07-20 12:51 - 2017-07-20 12:51 - 000041040 ____C () C:\Users\Otakar Vavrečka\AppData\Local\Viber\qrencode.dll
2017-07-20 12:52 - 2017-07-20 12:52 - 000391760 ____C () C:\Users\Otakar Vavrečka\AppData\Local\Viber\imageformats\qsvg.dll
2017-07-20 12:51 - 2017-07-20 12:51 - 000019536 ____C () C:\Users\Otakar Vavrečka\AppData\Local\Viber\libEGL.DLL
2017-07-20 12:51 - 2017-07-20 12:51 - 001955408 ____C () C:\Users\Otakar Vavrečka\AppData\Local\Viber\libGLESv2.dll
2014-10-23 20:19 - 2014-10-23 20:19 - 000043520 _____ () C:\Program Files\CCleaner\lang\lang-1029.dll
==================== Alternate Data Streams (Whitelisted) =========
(If an entry is included in the fixlist, only the ADS will be removed.)
==================== Safe Mode (Whitelisted) ===================
(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\MBAMService => ""="Service"
==================== Association (Whitelisted) ===============
(If an entry is included in the fixlist, the registry item will be restored to default or removed.)
==================== Internet Explorer trusted/restricted ===============
(If an entry is included in the fixlist, it will be removed from the registry.)
==================== Hosts content: ===============================
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
2009-07-14 03:04 - 2015-09-15 20:23 - 000000027 ____C C:\Windows\system32\drivers\etc\hosts
127.0.0.1 localhost
==================== Other Areas ============================
(Currently there is no automatic fix for this section.)
HKLM\System\CurrentControlSet\Control\Session Manager\Environment\\Path -> C:\ProgramData\Oracle\Java\javapath;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\system32\wbem;C:\Program Files\Broadcom\Broadcom 802.11\Driver;;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0;C:\Program Files\Skype\Phone
HKU\S-1-5-21-505298747-3480647553-2469496864-1000\Control Panel\Desktop\\Wallpaper -> C:\Users\Otakar Vavrečka\AppData\Roaming\Mozilla\Firefox\Pozadí plochy.bmp
DNS Servers: 192.168.1.1
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.
==================== MSCONFIG/TASK MANAGER disabled items ==
If an entry is included in the fixlist, it will be removed.
MSCONFIG\Services: AdobeARMservice => 2
MSCONFIG\Services: AdobeFlashPlayerUpdateSvc => 3
MSCONFIG\Services: AEADIFilters => 2
MSCONFIG\Services: AgereModemAudio => 2
MSCONFIG\Services: AMD External Events Utility => 2
MSCONFIG\Services: EPSON_EB_RPCV4_01 => 2
MSCONFIG\Services: EPSON_PM_RPCV4_01 => 2
MSCONFIG\Services: hpsrv => 2
MSCONFIG\Services: HPSupportSolutionsFrameworkService => 2
MSCONFIG\Services: MozillaMaintenance => 3
MSCONFIG\Services: NBService => 3
MSCONFIG\Services: NMIndexingService => 3
MSCONFIG\Services: SkypeUpdate => 2
MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^ImageBrowser EX Agent.lnk => C:\Windows\pss\ImageBrowser EX Agent.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^Otakar Vavrečka^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Mámemail Pošťák.lnk => C:\Windows\pss\Mámemail Pošťák.lnk.Startup
MSCONFIG\startupreg: CCleaner Monitoring => "C:\Program Files\CCleaner\CCleaner.exe" /MONITOR
MSCONFIG\startupreg: hppwrsav => C:\SCANJET\PrecisionScanLT\hppwrsav.exe
MSCONFIG\startupreg: KONICA MINOLTA PagePro 1300WStatusDisplay => C:\Windows\system32\MSTMON_N.EXE
MSCONFIG\startupreg: KONICA MINOLTA PagePro 1400W STD => C:\Windows\system32\MSTMON_Y.EXE STARTUP
MSCONFIG\startupreg: MP3 Skype Recorder => C:\Users\Otakar Vavrečka\AppData\Local\MP3 Skype recorder\MP3SkypeRecorder.exe
MSCONFIG\startupreg: PAC7302_Monitor => C:\Windows\PixArt\PAC7302\Monitor.exe
MSCONFIG\startupreg: Seznam Postak => "C:\Users\Otakar Vavrečka\AppData\Local\Seznam.cz\bin\postak.exe" -s
MSCONFIG\startupreg: Sidebar => C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
MSCONFIG\startupreg: Viber => "C:\Users\Otakar Vavrečka\AppData\Local\Viber\Viber.exe" StartMinimized
==================== FirewallRules (Whitelisted) ===============
(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)
FirewallRules: [TCP Query User{C12D7CA6-15BB-47EC-8CA7-23933E88D22D}C:\program files\counterpath\x-lite\x-lite.exe] => (Allow) C:\program files\counterpath\x-lite\x-lite.exe ()
FirewallRules: [UDP Query User{6A436787-7B16-469F-9F44-FC3FC0469E7D}C:\program files\counterpath\x-lite\x-lite.exe] => (Allow) C:\program files\counterpath\x-lite\x-lite.exe ()
FirewallRules: [TCP Query User{9A70AE46-C4D9-4B10-BDBD-5402881E6D1A}C:\program files\counterpath\x-lite\x-lite.exe] => (Allow) C:\program files\counterpath\x-lite\x-lite.exe ()
FirewallRules: [UDP Query User{7DFFE528-3065-4AC4-A3C2-5C44CE3ABCB1}C:\program files\counterpath\x-lite\x-lite.exe] => (Allow) C:\program files\counterpath\x-lite\x-lite.exe ()
FirewallRules: [TCP Query User{E90E4A23-CF53-4C85-902D-E86CF4DCC1D7}C:\program files\icq7.5\icq.exe] => (Allow) C:\program files\icq7.5\icq.exe (ICQ, LLC.)
FirewallRules: [UDP Query User{049F281A-D2AB-4D1F-853D-B84EFAC7C86F}C:\program files\icq7.5\icq.exe] => (Allow) C:\program files\icq7.5\icq.exe (ICQ, LLC.)
FirewallRules: [{2BE19BC0-E07A-4BB1-9016-9B4D3AB215C3}] => (Allow) C:\Program Files\ICQ7.6\ICQ.exe (ICQ, LLC.)
FirewallRules: [{CE36758B-9BEA-431C-A4E5-F8B4FB3AC211}] => (Allow) C:\Program Files\ICQ7.6\ICQ.exe (ICQ, LLC.)
FirewallRules: [{7DAB9A18-A07A-4B18-A816-B6102C5D0385}] => (Allow) C:\Program Files\ICQ7.6\ICQ.exe (ICQ, LLC.)
FirewallRules: [{2EACFA2A-F0D5-4F8C-8294-2568E5EA5FB7}] => (Allow) C:\Program Files\ICQ7.6\ICQ.exe (ICQ, LLC.)
FirewallRules: [TCP Query User{4A8AEC46-0EEB-420A-96A8-741B6FD10681}C:\program files\icq7.5\icq.exe] => (Allow) C:\program files\icq7.5\icq.exe (ICQ, LLC.)
FirewallRules: [UDP Query User{969C7F17-F2E3-4FDA-868C-120A541EC12C}C:\program files\icq7.5\icq.exe] => (Allow) C:\program files\icq7.5\icq.exe (ICQ, LLC.)
FirewallRules: [{F8036CE2-7026-4673-A991-D73F805113F0}] => (Allow) LPort=2869
FirewallRules: [{54C06B4D-5386-430F-B9E1-0A8D212B0D60}] => (Allow) LPort=1900
FirewallRules: [TCP Query User{0B8C7F57-9146-400A-A0CF-5FF70A101C27}C:\program files\icq7.6\icq.exe] => (Allow) C:\program files\icq7.6\icq.exe (ICQ, LLC.)
FirewallRules: [UDP Query User{FCB83ECD-3216-4505-B939-EE65EED7E084}C:\program files\icq7.6\icq.exe] => (Allow) C:\program files\icq7.6\icq.exe (ICQ, LLC.)
FirewallRules: [{2F5ED779-D282-4211-857F-FDBFAD58A1D5}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe (Microsoft Corporation)
FirewallRules: [{0E16DEA9-25A3-48A8-A05B-4D7D9D3C99C4}] => (Allow) C:\Users\Otakar Vavrečka\AppData\Roaming\uTorrent\utorrent.exe (BitTorrent, Inc.)
FirewallRules: [{58157869-02A9-4224-AD87-A2372AACCE46}] => (Allow) C:\Users\Otakar Vavrečka\AppData\Roaming\uTorrent\utorrent.exe (BitTorrent, Inc.)
FirewallRules: [{E971F3A4-CA71-463B-8F96-11F3AC755476}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
FirewallRules: [{FBAD154A-E5E7-4E2A-B135-078B5530CBFA}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
FirewallRules: [{C1AAEF9C-2F2C-40FB-91AE-CFA31C9E4288}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
FirewallRules: [{E0D5F073-CCD7-406D-B5A9-51A535DE6705}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
FirewallRules: [{300CCF1E-3648-4059-8D16-577AD2A86349}] => (Allow) C:\Program Files\Apowersoft\Video Download Capture 6\Video Download Capture 6.exe (Apowersoft)
FirewallRules: [{75161E8B-F1FE-424B-8360-04D0B43615B3}] => (Allow) C:\Program Files\Apowersoft\Video Download Capture 6\Video Download Capture 6.exe (Apowersoft)
FirewallRules: [{9A274ECC-D931-49C7-9C60-5C5EA6C3BDD3}] => (Allow) C:\Program Files\Apowersoft\Video Download Capture 6\rtmpsrv.exe ()
FirewallRules: [{96CA91A7-5EEA-47AF-8240-F9531C23D329}] => (Allow) C:\Program Files\Apowersoft\Video Download Capture 6\rtmpsrv.exe ()
FirewallRules: [{E86A656F-E516-4FBB-9D4B-9C342DFEE60C}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer GmbH)
FirewallRules: [{E94A3881-3A90-4702-8295-3757666FE176}] => (Allow) C:\Program Files\TeamViewer\TeamViewer.exe (TeamViewer GmbH)
FirewallRules: [{769DDB12-57E0-4B90-90BC-A09DFD806FA6}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH)
FirewallRules: [{25AFEC86-EEB1-4317-AA87-DCF99A57626D}] => (Allow) C:\Program Files\TeamViewer\TeamViewer_Service.exe (TeamViewer GmbH)
FirewallRules: [{E8122F07-4585-4790-91A7-3D177C067AF1}] => (Allow) C:\Program Files\Microsoft\Skype for Desktop\Skype.exe (Skype Technologies S.A.)
FirewallRules: [{FE7D460A-9CB8-4754-BA27-7BD50F6C8B76}] => (Allow) C:\Program Files\Microsoft\Skype for Desktop\Skype.exe (Skype Technologies S.A.)
FirewallRules: [{5598FD04-AF2A-47CD-BF21-EE55A829CBF0}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)
==================== Restore Points =========================
03-11-2018 01:04:38 Windows Update
10-11-2018 09:12:00 Naplánovaný kontrolní bod
14-11-2018 09:45:30 Windows Update
24-11-2018 14:29:32 Naplánovaný kontrolní bod
27-11-2018 09:47:00 Windows Update
04-12-2018 11:54:43 Naplánovaný kontrolní bod
13-12-2018 07:03:04 Windows Update
20-12-2018 11:35:44 Windows Update
27-12-2018 16:59:43 Naplánovaný kontrolní bod
09-01-2019 10:47:38 Windows Update
17-01-2019 07:27:51 Windows Update
23-01-2019 11:04:29 Windows Update
25-01-2019 14:09:53 Revo Uninstaller Pro's restore point - ESET Security
25-01-2019 19:27:08 Instalace balíčku ovladače zařízení: wch.cn Interface
25-01-2019 19:29:54 Revo Uninstaller Pro's restore point - CH341A - USB Programmer 1.30
==================== Faulty Device Manager Devices =============
==================== Event log errors: =========================
Application errors:
==================
Error: (01/25/2019 09:24:40 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: CH341A_130.exe, verze: 1.30.0.0, časové razítko: 0x56610000
Název chybujícího modulu: unknown, verze: 0.0.0.0, časové razítko: 0x00000000
Kód výjimky: 0xc0000005
Posun chyby: 0x00000000
ID chybujícího procesu: 0x18b4
Čas spuštění chybující aplikace: 0x01d4b4e9a64ad7f3
Cesta k chybující aplikaci: C:\SkyGz\CH341A - USB Programmer\CH341A_130.exe
Cesta k chybujícímu modulu: unknown
ID zprávy: 3d626a7e-20df-11e9-a641-18a905e47eaa
Error: (01/25/2019 05:23:16 PM) (Source: Windows Search Service) (EventID: 1019) (User: )
Description: Službě Windows Search se nepodařilo zpracovat seznam zahrnutých a vyloučených umístění, a to s chybou <30, 0x80040d07, iehistory://{S-1-5-21-505298747-3480647553-2469496864-1000}/>.
Error: (01/25/2019 05:23:02 PM) (Source: Windows Search Service) (EventID: 1019) (User: )
Description: Službě Windows Search se nepodařilo zpracovat seznam zahrnutých a vyloučených umístění, a to s chybou <30, 0x80040d07, iehistory://{S-1-5-21-505298747-3480647553-2469496864-1000}/>.
Error: (01/25/2019 05:21:41 PM) (Source: Windows Search Service) (EventID: 1019) (User: )
Description: Službě Windows Search se nepodařilo zpracovat seznam zahrnutých a vyloučených umístění, a to s chybou <30, 0x80040d07, iehistory://{S-1-5-21-505298747-3480647553-2469496864-1000}/>.
Error: (01/25/2019 02:32:22 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: egui.exe, verze: 10.2.164.0, časové razítko: 0x5a37ca53
Název chybujícího modulu: ucrtbase.DLL, verze: 10.0.14393.33, časové razítko: 0x579994fc
Kód výjimky: 0x40000015
Posun chyby: 0x000891da
ID chybujícího procesu: 0xcdc
Čas spuštění chybující aplikace: 0x01d4b4b26322c881
Cesta k chybující aplikaci: C:\Program Files\ESET\ESET Smart Security\egui.exe
Cesta k chybujícímu modulu: C:\Program Files\ESET\ESET Smart Security\ucrtbase.DLL
ID zprávy: a4c43d29-20a5-11e9-b041-18a905e47eaa
Error: (01/25/2019 02:30:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: egui.exe, verze: 10.2.164.0, časové razítko: 0x5a37ca53
Název chybujícího modulu: ucrtbase.DLL, verze: 10.0.14393.33, časové razítko: 0x579994fc
Kód výjimky: 0x40000015
Posun chyby: 0x000891da
ID chybujícího procesu: 0xa08
Čas spuštění chybující aplikace: 0x01d4b4b2279f4df3
Cesta k chybující aplikaci: C:\Program Files\ESET\ESET Smart Security\egui.exe
Cesta k chybujícímu modulu: C:\Program Files\ESET\ESET Smart Security\ucrtbase.DLL
ID zprávy: 6664bb34-20a5-11e9-b4e3-18a905e47eaa
Error: (01/25/2019 02:29:38 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: egui.exe, verze: 10.2.164.0, časové razítko: 0x5a37ca53
Název chybujícího modulu: ucrtbase.DLL, verze: 10.0.14393.33, časové razítko: 0x579994fc
Kód výjimky: 0x40000015
Posun chyby: 0x000891da
ID chybujícího procesu: 0x11c4
Čas spuštění chybující aplikace: 0x01d4b4b203cca254
Cesta k chybující aplikaci: C:\Program Files\ESET\ESET Smart Security\egui.exe
Cesta k chybujícímu modulu: C:\Program Files\ESET\ESET Smart Security\ucrtbase.DLL
ID zprávy: 42b10178-20a5-11e9-b4e3-18a905e47eaa
Error: (01/25/2019 02:29:35 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Program egui.exe verze 10.2.164.0 přestal spolupracovat se systémem Windows a byl ukončen. Chcete-li zjistit, zda je k dispozici více informací o tomto problému, vyhledejte historii problému v ovládacím panelu Centrum akcí.
ID procesu: c30
Čas spuštění: 01d4b4b13f5eeb22
Čas ukončení: 46
Cesta k aplikaci: C:\Program Files\ESET\ESET Smart Security\egui.exe
ID hlášení: 336c6df8-20a5-11e9-b4e3-18a905e47eaa
System errors:
=============
Error: (01/26/2019 03:24:28 PM) (Source: atikmdag) (EventID: 10261) (User: )
Description: Display is not active
Error: (01/26/2019 02:06:58 PM) (Source: Service Control Manager) (EventID: 7002) (User: )
Description: Služba MLPTDR_N závisí na skupině Parallel arbitrator a žádný člen této skupiny nebyl spuštěn.
Error: (01/26/2019 02:06:49 PM) (Source: atikmdag) (EventID: 10261) (User: )
Description: Display is not active
Error: (01/26/2019 02:06:49 PM) (Source: atikmdag) (EventID: 19468) (User: )
Description: CPLIB :: General - Invalid Parameter
Error: (01/26/2019 02:05:53 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.
Cesta k modulu: C:\Windows\System32\bcmihvsrv.dll
Error: (01/26/2019 02:05:53 PM) (Source: Microsoft-Windows-WLAN-AutoConfig) (EventID: 10003) (User: NT AUTHORITY)
Description: Rozšiřující modul sítě WLAN byl neočekávaně ukončen.
Cesta k modulu: C:\Windows\System32\bcmihvsrv.dll
Error: (01/26/2019 02:05:50 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba Služba Windows Media Player Network Sharing neuspěla při spuštění v důsledku následující chyby:
Služba nebyla zahájena, protože se nepodařilo přihlásit.
Error: (01/26/2019 02:05:50 PM) (Source: Service Control Manager) (EventID: 7038) (User: )
Description: Služba WMPNetworkSvc se nemohla přihlásit jako NT AUTHORITY\NetworkService s aktuálně konfigurovaným heslem z důvodu následující chyby:
Požadavek není podporován.
Chcete-li zajistit správnou konfiguraci služby, použijte modul snap-in Služby konzoly Microsoft Management Console (MMC).
Windows Defender:
===================================
Date: 2018-03-26 08:49:32.668
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{299693A3-AD73-4D9D-BC99-931C9A20EC88}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:NT AUTHORITY\NETWORK SERVICE
Date: 2017-10-18 19:13:23.001
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{2C0446CC-8ABC-4FEF-B895-595629725D67}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:NT AUTHORITY\NETWORK SERVICE
Date: 2013-11-24 21:53:17.850
Description:
Prohledávání Windows Defender bylo zastaveno před dokončením.
ID prohledávání:{9FFAED12-FDAA-4AD7-946D-09EAE8988AAC}
Typ prohledávání:Antispywarový program
Parametry prohledávání:Rychlé prohledávání
Uživatel:NT AUTHORITY\NETWORK SERVICE
Date: 2011-07-04 23:28:23.768
Description:
Prohledávání Windows Defender rozpoznalo spyware nebo jiný potenciálně nežádoucí software.
Další informace:
http://go.microsoft.com/fwlink/?linkid= ... tid=147745
Název:Program:Win32/RegCure
ID:147745
Závažnost:Vysoké
Kategorie:Potenciálně nežádoucí software
Nalezeno v cestě:containerfile:D:\Přenesené z dětské\Vymeniteľný disk\ProBook 4710s\USB-LG\USB L G\Downloads-Otík\RegCureSetup_RW.exe;file:D:\Přenesené z dětské\Vymeniteľný disk\ProBook 4710s\USB-LG\USB L G\Downloads-Otík\RegCureSetup_RW.exe->(nsis-6-RegCure.exe)
Typ zjišťování:Konkrétní
Zdroj zjišťování:Uživatel
Stav:Neznámý
Uživatel:PC-Otakar\Otakar Vavrečka
Název procesu:C:\Program Files\Windows Defender\MSASCui.exe
Date: 2011-07-04 23:28:23.768
Description:
Prohledávání Windows Defender rozpoznalo spyware nebo jiný potenciálně nežádoucí software.
Další informace:
http://go.microsoft.com/fwlink/?linkid= ... tid=153970
Název:Adware:JS/Pornpop.A
ID:153970
Závažnost:Střední
Kategorie:Software placený zobrazováním reklamy
Nalezeno v cestě:containerfile:C:\Users\Otakar Vavrečka\AppData\Local\Mozilla\Firefox\Profiles\fslv0uhv.default\Cache\F\00\1793Bd01;file:C:\Users\Otakar Vavrečka\AppData\Local\Mozilla\Firefox\Profiles\fslv0uhv.default\Cache\F\00\1793Bd01->(GZip)->(SCRIPT0003)
Typ zjišťování:Konkrétní
Zdroj zjišťování:Uživatel
Stav:Neznámý
Uživatel:PC-Otakar\Otakar Vavrečka
Název procesu:C:\Program Files\Windows Defender\MSASCui.exe
Date: 2018-03-27 11:54:44.432
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o načtení podpisů a pokusí se o obnovení sady podpisů, jejichž správnost je potvrzena.
Podpisy, které se měly načíst:Aktuální
Kód chyby:0x80070002
Popis chyby:Systém nemůže nalézt uvedený soubor.
Verze podpisu:0.0.0.0
Verze modulu:0.0.0.0
Date: 2018-03-27 11:54:44.416
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci.
Nová verze podpisu:
Předchozí verze podpisu:
Zdroj aktualizace:Složka aktualizace podpisů
Typ podpisu:Antispywarový program
Typ aktualizace:Delta
Uživatel:NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu:
Kód chyby:0x80070002
Popis chyby:Systém nemůže nalézt uvedený soubor.
Date: 2018-03-23 07:47:06.662
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o načtení podpisů a pokusí se o obnovení sady podpisů, jejichž správnost je potvrzena.
Podpisy, které se měly načíst:Aktuální
Kód chyby:0x80070002
Popis chyby:Systém nemůže nalézt uvedený soubor.
Verze podpisu:0.0.0.0
Verze modulu:0.0.0.0
Date: 2018-03-23 07:47:06.600
Description:
Program Windows Defender zjistil chybu při pokusu o aktualizaci.
Nová verze podpisu:
Předchozí verze podpisu:
Zdroj aktualizace:Složka aktualizace podpisů
Typ podpisu:Antispywarový program
Typ aktualizace:Delta
Uživatel:NT AUTHORITY\SYSTEM
Aktuální verze modulu:
Předchozí verze modulu:
Kód chyby:0x80070002
Popis chyby:Systém nemůže nalézt uvedený soubor.
Date: 2018-03-23 07:12:51.120
Description:
Prohledávání Windows Defender zjistilo chybu při pokusu o načtení podpisů a pokusí se o obnovení sady podpisů, jejichž správnost je potvrzena.
Podpisy, které se měly načíst:Aktuální
Kód chyby:0x80070002
Popis chyby:Systém nemůže nalézt uvedený soubor.
Verze podpisu:0.0.0.0
Verze modulu:0.0.0.0
==================== Memory info ===========================
Processor: Intel(R) Core(TM)2 Duo CPU T5870 @ 2.00GHz
Percentage of memory in use: 40%
Total physical RAM: 3066.27 MB
Available physical RAM: 1814.79 MB
Total Virtual: 6130.89 MB
Available Virtual: 4870.92 MB
==================== Drives ================================
Drive c: () (Fixed) (Total:154.29 GB) (Free:16.41 GB) NTFS ==>[system with boot components (obtained from drive)]
Drive d: (Nový zväzok) (Fixed) (Total:126.51 GB) (Free:11.35 GB) NTFS
Drive e: (HP_TOOLS) (Fixed) (Total:1.99 GB) (Free:1.92 GB) FAT32
Drive g: (HP_RECOVERY) (Fixed) (Total:15 GB) (Free:8.5 GB) NTFS ==>[system with boot components (obtained from drive)]
\\?\Volume{f98ec1df-59b4-11df-a6a6-00271361010a}\ (SYSTEM) (Fixed) (Total:0.29 GB) (Free:0.25 GB) NTFS
==================== MBR & Partition Table ==================
========================================================
Disk: 0 (MBR Code: Windows 7/8/10) (Size: 298.1 GB) (Disk ID: DCB86D34)
Partition 1: (Not Active) - (Size=993 KB) - (Type=42)
Partition 2: (Active) - (Size=300 MB) - (Type=42)
Partition 3: (Not Active) - (Size=154.3 GB) - (Type=42)
Partition 4: (Not Active) - (Size=143.5 GB) - (Type=42)
==================== End of Addition.txt ============================
Blbý můžeš být,ale musíš si umět poradit...
Re: Prosím o kontrolu notebooku, poslední dobou je pomalý
Otestujte tento subor na virustotal.com a vysledok skenu dajte sem:
C:\Windows\System32\Drivers\CH341WDM.SYS
Do poznamkoveho bloku skopirujte obsah dole:
Poznamkovy blok ulozte pod nazvom fixlist.txt do umiestnenia kde je FRST, pricom zvolte Kodovanie na UTF-8 (skopirujte do poznamkoveho bloku -> Subor -> Ulozit ako -> Encoding/Kodovaniee: zvolte UTF-8 -> ulozit).
Spustite FRST a odkliknite tlacidlo: Fix
Vykona sa funkcionalita po ktorej sa pocitac rebootuje. Po reboote sem vlozte obsah logu: fixlog.txt ulozeneho v umiestneni FRST.
C:\Windows\System32\Drivers\CH341WDM.SYS
Do poznamkoveho bloku skopirujte obsah dole:
Kód: Vybrat vše
CloseProcesses:
C:\Windows\system32\Drivers\aswKbd.sys
HKU\S-1-5-21-505298747-3480647553-2469496864-1000\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [354304 2009-07-14] (Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\71.0.3578.98\Installer\chrmstp.exe [2018-12-14] (Google Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2018-09-20] (Adobe Systems, Inc.)
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - No File
CHR Extension: (Avast Online Security) - C:\Users\Otakar Vavrečka\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-09-28]
R1 aswKbd; C:\Windows\system32\Drivers\aswKbd.sys [21576 2013-05-09] (AVAST Software)
U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S3 Ser2plx86; system32\DRIVERS\ser2pl.sys [X]
S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X]
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{EA837F47-5AD1-443E-AE34-FFE03CBF3099}\InprocServer32 -> C:\Users\Otakar Vavrečka\AppData\Local\Seznam.cz\bin\core.4.dll => No File
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{EA837F48-5AD1-443E-AE34-FFE03CBF3099}\InprocServer32 -> C:\Users\Otakar Vavrečka\AppData\Local\Seznam.cz\bin\core.4.dll => No File
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => -> No File
ContextMenuHandlers1: [Print602] -> {D5F8CFC7-1A45-4517-A565-E42CDE7880CF} => -> No File
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
Task: {1E97DEFE-56CD-43DA-9D17-E238D9194780} - \DriverCure -> No File <==== ATTENTION
Task: {2D705AC7-ABAB-4DB0-A2C6-E30C9394FEC6} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-13] (Adobe Systems Incorporated)
Task: {3E86EE08-3FAA-47A7-BA29-2059F745A87D} - System32\Tasks\{8C134072-3CE6-421D-9589-025BE960BDCF} => C:\Windows\system32\pcalua.exe -a "C:\Users\Otakar Vavrečka\Desktop\Programátor-CH341A\Nový\CH341PAR.EXE" -d "C:\Users\Otakar Vavrečka\Desktop\Programátor-CH341A\Nový"
Task: {87D1AA01-FB73-4F54-AEC6-65047C803ED0} - System32\Tasks\GoogleUpdateTaskMachineCore1cf6a811f49157b => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-03] (Google Inc.)
Task: {D8F46F61-120B-4D71-AA30-06D8C4BF3E5B} - System32\Tasks\GoogleUpdateTaskMachineUA1cf8b84abba174e => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-03] (Google Inc.)
Spustite FRST a odkliknite tlacidlo: Fix
Vykona sa funkcionalita po ktorej sa pocitac rebootuje. Po reboote sem vlozte obsah logu: fixlog.txt ulozeneho v umiestneni FRST.
► Vyšla moja nová kniha BOTNETY! Informácie o nej nájdete tu: >> BOTNETY <<
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT <<
----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Informácie o nej nájdete tu: >> BOTNETY << ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << ----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Re: Prosím o kontrolu notebooku, poslední dobou je pomalý
Po restartu mi přestala fungovat klávesnice, nemohu tím pádem zadat heslo pro přihlášení. Co mám delat?
Blbý můžeš být,ale musíš si umět poradit...
Re: Prosím o kontrolu notebooku, poslední dobou je pomalý
To je divne. Skuste system spustit v nudzovom rezime.
► Vyšla moja nová kniha BOTNETY! Informácie o nej nájdete tu: >> BOTNETY <<
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT <<
----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Informácie o nej nájdete tu: >> BOTNETY << ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << ----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Re: Prosím o kontrolu notebooku, poslední dobou je pomalý
Po několika restartech kdy jsem zkoušel mačkat f7, f8, esc abych se dostal do nouzového režimu se zacal PC připravovat na konfiguraci a zasekl se při spouštění systému windows. Mám počkat nebo natvrdo vypnout? Mám HP ProBook 4710s.
Blbý můžeš být,ale musíš si umět poradit...
Re: Prosím o kontrolu notebooku, poslední dobou je pomalý
Nemazali sme nic, preco by mal system skolabovat.
Skuste to restartovat..btw,
Skuste to restartovat..btw,
, tak wam klavesnica ide nie?Po několika restartech kdy jsem zkoušel mačkat f7, f8, esc abych se dostal do nouzového režimu
► Vyšla moja nová kniha BOTNETY! Informácie o nej nájdete tu: >> BOTNETY <<
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT <<
----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Informácie o nej nájdete tu: >> BOTNETY << ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << ----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Re: Prosím o kontrolu notebooku, poslední dobou je pomalý
Když jsem chtěl zadat to f s číslem tak to šlo ale pak při zadávání hesla nereagovala. Já jsem asi 3 x restartoval počítač a nic se nezměnilo. Nevím jak spustit nouzový režim.
Blbý můžeš být,ale musíš si umět poradit...
Re: Prosím o kontrolu notebooku, poslední dobou je pomalý
Vypnul jsem notebook natvrdo a za chvíli pustil, dalo mi to možnost oprava systému tak uvidím zda to nyní půjde až skončí ta oprava.
Blbý můžeš být,ale musíš si umět poradit...
Re: Prosím o kontrolu notebooku, poslední dobou je pomalý
Jasne a potom tu dajte, prosim, ten log z FRST.
► Vyšla moja nová kniha BOTNETY! Informácie o nej nájdete tu: >> BOTNETY <<
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT <<
----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Informácie o nej nájdete tu: >> BOTNETY << ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << ----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Re: Prosím o kontrolu notebooku, poslední dobou je pomalý
Tak po opravě systému počítač už naběhl normálně a šlo zadat heslo. Zde je log:
Fix result of Farbar Recovery Scan Tool (x86) Version: 26-01-2019
Ran by Otakar VavreÄŤka (26-01-2019 18:22:33) Run:1
Running from C:\Users\Otakar VavreÄŤka\Desktop
Loaded Profiles: Otakar VavreÄŤka (Available Profiles: Otakar VavreÄŤka & Guest)
Boot Mode: Normal
==============================================
fixlist content:
*****************
CloseProcesses:
C:\Windows\system32\Drivers\aswKbd.sys
HKU\S-1-5-21-505298747-3480647553-2469496864-1000\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [354304 2009-07-14] (Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\71.0.3578.98\Installer\chrmstp.exe [2018-12-14] (Google Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2018-09-20] (Adobe Systems, Inc.)
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - No File
CHR Extension: (Avast Online Security) - C:\Users\Otakar VavreÄŤka\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-09-28]
R1 aswKbd; C:\Windows\system32\Drivers\aswKbd.sys [21576 2013-05-09] (AVAST Software)
U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S3 Ser2plx86; system32\DRIVERS\ser2pl.sys [X]
S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X]
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{EA837F47-5AD1-443E-AE34-FFE03CBF3099}\InprocServer32 -> C:\Users\Otakar VavreÄŤka\AppData\Local\Seznam.cz\bin\core.4.dll => No File
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{EA837F48-5AD1-443E-AE34-FFE03CBF3099}\InprocServer32 -> C:\Users\Otakar VavreÄŤka\AppData\Local\Seznam.cz\bin\core.4.dll => No File
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => -> No File
ContextMenuHandlers1: [Print602] -> {D5F8CFC7-1A45-4517-A565-E42CDE7880CF} => -> No File
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
Task: {1E97DEFE-56CD-43DA-9D17-E238D9194780} - \DriverCure -> No File <==== ATTENTION
Task: {2D705AC7-ABAB-4DB0-A2C6-E30C9394FEC6} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-13] (Adobe Systems Incorporated)
Task: {3E86EE08-3FAA-47A7-BA29-2059F745A87D} - System32\Tasks\{8C134072-3CE6-421D-9589-025BE960BDCF} => C:\Windows\system32\pcalua.exe -a "C:\Users\Otakar Vavrečka\Desktop\Programátor-CH341A\Nový\CH341PAR.EXE" -d "C:\Users\Otakar Vavrečka\Desktop\Programátor-CH341A\Nový"
Task: {87D1AA01-FB73-4F54-AEC6-65047C803ED0} - System32\Tasks\GoogleUpdateTaskMachineCore1cf6a811f49157b => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-03] (Google Inc.)
Task: {D8F46F61-120B-4D71-AA30-06D8C4BF3E5B} - System32\Tasks\GoogleUpdateTaskMachineUA1cf8b84abba174e => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-03] (Google Inc.)
*****************
Processes closed successfully.
C:\Windows\system32\Drivers\aswKbd.sys => moved successfully
"HKU\S-1-5-21-505298747-3480647553-2469496864-1000\Software\Microsoft\Windows\CurrentVersion\Run\\RESTART_STICKY_NOTES" => removed successfully.
HKLM\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96} => removed successfully.
HKLM\Software\Microsoft\Active Setup\Installed Components\{A6EADE66-0000-0000-484E-7E8A45000000} => removed successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removed successfully.
HKLM\Software\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => not found
HKLM\Software\Classes\PROTOCOLS\Handler\skype4com => removed successfully.
HKLM\Software\Classes\CLSID\{FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} => not found
CHR Extension: (Avast Online Security) - C:\Users\Otakar VavreÄŤka\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-09-28] => Error: No automatic fix found for this entry.
aswKbd => Unable to stop service.
HKLM\System\CurrentControlSet\Services\aswKbd => removed successfully.
aswKbd => service removed successfully.
HKLM\System\CurrentControlSet\Services\AppMgmt => removed successfully.
AppMgmt => service removed successfully.
HKLM\System\CurrentControlSet\Services\Ser2plx86 => removed successfully.
Ser2plx86 => service removed successfully.
HKLM\System\CurrentControlSet\Services\VBoxNetFlt => removed successfully.
VBoxNetFlt => service removed successfully.
HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{EA837F47-5AD1-443E-AE34-FFE03CBF3099} => removed successfully.
HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{EA837F48-5AD1-443E-AE34-FFE03CBF3099} => removed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\GDriveSharedOverlay => removed successfully.
HKLM\Software\Classes\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => not found
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\Print602 => removed successfully.
HKLM\Software\Classes\CLSID\{D5F8CFC7-1A45-4517-A565-E42CDE7880CF} => not found
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\Offline Files => removed successfully.
HKLM\Software\Classes\CLSID\{474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => not found
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\Offline Files => removed successfully.
HKLM\Software\Classes\CLSID\{474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => not found
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1E97DEFE-56CD-43DA-9D17-E238D9194780} => removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1E97DEFE-56CD-43DA-9D17-E238D9194780} => removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\DriverCure => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{2D705AC7-ABAB-4DB0-A2C6-E30C9394FEC6}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2D705AC7-ABAB-4DB0-A2C6-E30C9394FEC6}" => removed successfully.
C:\Windows\System32\Tasks\Adobe Acrobat Update Task => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Acrobat Update Task" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3E86EE08-3FAA-47A7-BA29-2059F745A87D}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3E86EE08-3FAA-47A7-BA29-2059F745A87D}" => removed successfully.
C:\Windows\System32\Tasks\{8C134072-3CE6-421D-9589-025BE960BDCF} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{8C134072-3CE6-421D-9589-025BE960BDCF}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{87D1AA01-FB73-4F54-AEC6-65047C803ED0}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{87D1AA01-FB73-4F54-AEC6-65047C803ED0}" => removed successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore1cf6a811f49157b => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore1cf6a811f49157b" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D8F46F61-120B-4D71-AA30-06D8C4BF3E5B}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D8F46F61-120B-4D71-AA30-06D8C4BF3E5B}" => removed successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA1cf8b84abba174e => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA1cf8b84abba174e" => removed successfully.
The system needed a reboot.
==== End of Fixlog 18:23:14 ====
Fix result of Farbar Recovery Scan Tool (x86) Version: 26-01-2019
Ran by Otakar VavreÄŤka (26-01-2019 18:22:33) Run:1
Running from C:\Users\Otakar VavreÄŤka\Desktop
Loaded Profiles: Otakar VavreÄŤka (Available Profiles: Otakar VavreÄŤka & Guest)
Boot Mode: Normal
==============================================
fixlist content:
*****************
CloseProcesses:
C:\Windows\system32\Drivers\aswKbd.sys
HKU\S-1-5-21-505298747-3480647553-2469496864-1000\...\Run: [RESTART_STICKY_NOTES] => C:\Windows\System32\StikyNot.exe [354304 2009-07-14] (Microsoft Corporation)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\71.0.3578.98\Installer\chrmstp.exe [2018-12-14] (Google Inc.)
HKLM\Software\Microsoft\Active Setup\Installed Components: [{A6EADE66-0000-0000-484E-7E8A45000000}] -> C:\Program Files\Adobe\Acrobat Reader DC\Esl\AiodLite.dll [2018-09-20] (Adobe Systems, Inc.)
SearchScopes: HKLM -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKLM -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - No File
CHR Extension: (Avast Online Security) - C:\Users\Otakar VavreÄŤka\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-09-28]
R1 aswKbd; C:\Windows\system32\Drivers\aswKbd.sys [21576 2013-05-09] (AVAST Software)
U5 AppMgmt; C:\Windows\system32\svchost.exe [20992 2009-07-14] (Microsoft Corporation) <==== ATTENTION (no ServiceDLL)
S3 Ser2plx86; system32\DRIVERS\ser2pl.sys [X]
S3 VBoxNetFlt; system32\DRIVERS\VBoxNetFlt.sys [X]
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{EA837F47-5AD1-443E-AE34-FFE03CBF3099}\InprocServer32 -> C:\Users\Otakar VavreÄŤka\AppData\Local\Seznam.cz\bin\core.4.dll => No File
CustomCLSID: HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{EA837F48-5AD1-443E-AE34-FFE03CBF3099}\InprocServer32 -> C:\Users\Otakar VavreÄŤka\AppData\Local\Seznam.cz\bin\core.4.dll => No File
ShellIconOverlayIdentifiers: [GDriveSharedOverlay] -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => -> No File
ContextMenuHandlers1: [Print602] -> {D5F8CFC7-1A45-4517-A565-E42CDE7880CF} => -> No File
ContextMenuHandlers4: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
ContextMenuHandlers6: [Offline Files] -> {474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => -> No File
Task: {1E97DEFE-56CD-43DA-9D17-E238D9194780} - \DriverCure -> No File <==== ATTENTION
Task: {2D705AC7-ABAB-4DB0-A2C6-E30C9394FEC6} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2018-08-13] (Adobe Systems Incorporated)
Task: {3E86EE08-3FAA-47A7-BA29-2059F745A87D} - System32\Tasks\{8C134072-3CE6-421D-9589-025BE960BDCF} => C:\Windows\system32\pcalua.exe -a "C:\Users\Otakar Vavrečka\Desktop\Programátor-CH341A\Nový\CH341PAR.EXE" -d "C:\Users\Otakar Vavrečka\Desktop\Programátor-CH341A\Nový"
Task: {87D1AA01-FB73-4F54-AEC6-65047C803ED0} - System32\Tasks\GoogleUpdateTaskMachineCore1cf6a811f49157b => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-03] (Google Inc.)
Task: {D8F46F61-120B-4D71-AA30-06D8C4BF3E5B} - System32\Tasks\GoogleUpdateTaskMachineUA1cf8b84abba174e => C:\Program Files\Google\Update\GoogleUpdate.exe [2015-12-03] (Google Inc.)
*****************
Processes closed successfully.
C:\Windows\system32\Drivers\aswKbd.sys => moved successfully
"HKU\S-1-5-21-505298747-3480647553-2469496864-1000\Software\Microsoft\Windows\CurrentVersion\Run\\RESTART_STICKY_NOTES" => removed successfully.
HKLM\Software\Microsoft\Active Setup\Installed Components\{8A69D345-D564-463c-AFF1-A69D9E530F96} => removed successfully.
HKLM\Software\Microsoft\Active Setup\Installed Components\{A6EADE66-0000-0000-484E-7E8A45000000} => removed successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => removed successfully.
HKLM\Software\Classes\CLSID\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} => not found
HKLM\Software\Classes\PROTOCOLS\Handler\skype4com => removed successfully.
HKLM\Software\Classes\CLSID\{FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} => not found
CHR Extension: (Avast Online Security) - C:\Users\Otakar VavreÄŤka\AppData\Local\Google\Chrome\User Data\Default\Extensions\gomekmidlodglbbmalcneegieacbdmki [2018-09-28] => Error: No automatic fix found for this entry.
aswKbd => Unable to stop service.
HKLM\System\CurrentControlSet\Services\aswKbd => removed successfully.
aswKbd => service removed successfully.
HKLM\System\CurrentControlSet\Services\AppMgmt => removed successfully.
AppMgmt => service removed successfully.
HKLM\System\CurrentControlSet\Services\Ser2plx86 => removed successfully.
Ser2plx86 => service removed successfully.
HKLM\System\CurrentControlSet\Services\VBoxNetFlt => removed successfully.
VBoxNetFlt => service removed successfully.
HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{EA837F47-5AD1-443E-AE34-FFE03CBF3099} => removed successfully.
HKU\S-1-5-21-505298747-3480647553-2469496864-1000_Classes\CLSID\{EA837F48-5AD1-443E-AE34-FFE03CBF3099} => removed successfully.
HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellIconOverlayIdentifiers\GDriveSharedOverlay => removed successfully.
HKLM\Software\Classes\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} => not found
HKLM\Software\Classes\*\ShellEx\ContextMenuHandlers\Print602 => removed successfully.
HKLM\Software\Classes\CLSID\{D5F8CFC7-1A45-4517-A565-E42CDE7880CF} => not found
HKLM\Software\Classes\Directory\ShellEx\ContextMenuHandlers\Offline Files => removed successfully.
HKLM\Software\Classes\CLSID\{474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => not found
HKLM\Software\Classes\Folder\ShellEx\ContextMenuHandlers\Offline Files => removed successfully.
HKLM\Software\Classes\CLSID\{474C98EE-CF3D-41f5-80E3-4AAB0AB04301} => not found
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{1E97DEFE-56CD-43DA-9D17-E238D9194780} => removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1E97DEFE-56CD-43DA-9D17-E238D9194780} => removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\DriverCure => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{2D705AC7-ABAB-4DB0-A2C6-E30C9394FEC6}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{2D705AC7-ABAB-4DB0-A2C6-E30C9394FEC6}" => removed successfully.
C:\Windows\System32\Tasks\Adobe Acrobat Update Task => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Adobe Acrobat Update Task" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{3E86EE08-3FAA-47A7-BA29-2059F745A87D}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{3E86EE08-3FAA-47A7-BA29-2059F745A87D}" => removed successfully.
C:\Windows\System32\Tasks\{8C134072-3CE6-421D-9589-025BE960BDCF} => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\{8C134072-3CE6-421D-9589-025BE960BDCF}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{87D1AA01-FB73-4F54-AEC6-65047C803ED0}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{87D1AA01-FB73-4F54-AEC6-65047C803ED0}" => removed successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineCore1cf6a811f49157b => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineCore1cf6a811f49157b" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{D8F46F61-120B-4D71-AA30-06D8C4BF3E5B}" => removed successfully.
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{D8F46F61-120B-4D71-AA30-06D8C4BF3E5B}" => removed successfully.
C:\Windows\System32\Tasks\GoogleUpdateTaskMachineUA1cf8b84abba174e => moved successfully
"HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\GoogleUpdateTaskMachineUA1cf8b84abba174e" => removed successfully.
The system needed a reboot.
==== End of Fixlog 18:23:14 ====
Blbý můžeš být,ale musíš si umět poradit...
Re: Prosím o kontrolu notebooku, poslední dobou je pomalý
Super.
Preskenujte pocitac s FRST - navod tu: https://forum.viry.cz/viewtopic.php?f=24&t=132509, skopirujte FRST.log + Addition log sem.
Preskenujte pocitac s FRST - navod tu: https://forum.viry.cz/viewtopic.php?f=24&t=132509, skopirujte FRST.log + Addition log sem.
► Vyšla moja nová kniha BOTNETY! Informácie o nej nájdete tu: >> BOTNETY <<
¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT <<
----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Informácie o nej nájdete tu: >> BOTNETY << ¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯¯
---
Hľadáme nové posily do nášej CyberSecurity UNIT jednotky. Viac informácií o tom, čo to obnáša a ako sa pripojiť nájdete tu: >> CyberSecurity UNIT << ----
► Nízkoúrovňový, Vysokoúrovňový programátor - profilová karta tu: card <<
----
► Háveťárna - UPLOAD Malwaru: >> upload <<
---
► Ak sa Vám ľúbi moja práca a ste sňou spokojný, môžete ma kontaktovať na: diallix@centrum.sk, info@diallix.net alebo diallix@forum.viry.cz .
---
Momentálne aktívny ako:
- konzultant, vývojár a tutor výskumu inteligentného malwaru.
- tutor v oblasti dotazovacích jazykoch SQL (TSQL, PLSQL), objektového programovania (c++,c#,php) pre študentov.
Na fóre pôsobím ako:
- Bezpečnostná autorita viry.cz
- Zástupca tutora pre vzdelávanie nováčikov
- Zakladateľ Cyber Security jednotky
Přispějete na provoz fóra?