VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

POmaly beh pc

https://forum.viry.cz:443/viewtopic.php?t=151692

Stránka 2 z 3

Re: POmaly beh pc

Napsal: 23 bře 2017 11:25
od jack68
ComboFix 17-03-21.01 - s 23.03.2017 11:30:45.1.8 - x86
Microsoft Windows 7 Professional 6.1.7601.1.1250.420.1029.18.3557.2016 [GMT 1:00]
Spuštěný z: c:\users\s\Desktop\ComboFix.exe
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\1451306107.bdinstall.bin
c:\programdata\Adobe\conhost.exe
c:\programdata\Adobe\explorer.exe
c:\programdata\Adobe\hansa.exe
c:\programdata\Adobe\rundll32.exe
c:\programdata\Adobe\wget.exe
c:\programdata\Adobe\winlogon.exe
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\background.html
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\content.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\DJSs.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\lsdb.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\manifest.json
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\background.html
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\content.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\lsdb.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\MVXl.js
c:\users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\newtab.html
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\background.html
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\content.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\DJSs.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\lsdb.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\manifest.json
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\background.html
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\content.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\lsdb.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\MVXl.js
c:\users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\newtab.html
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\background.html
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\content.js
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\DJSs.js
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\lsdb.js
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\manifest.json
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\background.html
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\content.js
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\lsdb.js
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\MVXl.js
c:\users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\newtab.html
c:\users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee
c:\users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\background.html
c:\users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\content.js
c:\users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\DJSs.js
c:\users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\lsdb.js
c:\users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\manifest.json
c:\users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi
c:\users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\background.html
c:\users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\content.js
c:\users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\lsdb.js
c:\users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\MVXl.js
c:\users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\newtab.html
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\background.html
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\content.js
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\DJSs.js
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\lsdb.js
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\manifest.json
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\background.html
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\content.js
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\lsdb.js
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\MVXl.js
c:\users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\newtab.html
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\background.html
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\content.js
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\DJSs.js
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\lsdb.js
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\manifest.json
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\background.html
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\content.js
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\lsdb.js
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\MVXl.js
c:\users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\newtab.html
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\background.html
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\content.js
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\DJSs.js
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\lsdb.js
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\manifest.json
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\background.html
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\content.js
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\lsdb.js
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\MVXl.js
c:\users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\newtab.html
c:\users\Guest\AppData\Local\Torch\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee
c:\users\Guest\AppData\Local\Torch\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\background.html
c:\users\Guest\AppData\Local\Torch\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\content.js
c:\users\Guest\AppData\Local\Torch\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\DJSs.js
c:\users\Guest\AppData\Local\Torch\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\lsdb.js
c:\users\Guest\AppData\Local\Torch\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\manifest.json
c:\users\Guest\AppData\Local\Torch\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi
c:\users\Guest\AppData\Local\Torch\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\background.html
c:\users\Guest\AppData\Local\Torch\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\content.js
c:\users\Guest\AppData\Local\Torch\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\lsdb.js
c:\users\Guest\AppData\Local\Torch\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\MVXl.js
c:\users\Guest\AppData\Local\Torch\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\newtab.html
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\background.html
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\content.js
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\DJSs.js
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\lsdb.js
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\manifest.json
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\background.html
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\content.js
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\lsdb.js
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\MVXl.js
c:\users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\newtab.html
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\background.html
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\content.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\DJSs.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\lsdb.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\manifest.json
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\background.html
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\content.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\lsdb.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\MVXl.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\newtab.html
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\background.html
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\content.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\DJSs.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\lsdb.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\manifest.json
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\background.html
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\content.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\lsdb.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\MVXl.js
c:\users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\newtab.html
c:\users\HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee
c:\users\HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\background.html
c:\users\HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\content.js
c:\users\HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\DJSs.js
c:\users\HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\lsdb.js
c:\users\HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\manifest.json
c:\users\HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi
c:\users\HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\background.html
c:\users\HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\content.js
c:\users\HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\lsdb.js
c:\users\HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\MVXl.js
c:\users\HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\newtab.html
c:\users\kubaa\AppData\Roaming\12729244.tmp-shm
c:\users\kubaa\AppData\Roaming\12729244.tmp-wal
c:\users\kubaa\AppData\Roaming\12729244.tmp
c:\users\kubaa\AppData\Roaming\12736748.tmp-shm
c:\users\kubaa\AppData\Roaming\12736748.tmp-wal
c:\users\kubaa\AppData\Roaming\12736748.tmp
c:\users\kubaa\AppData\Roaming\12743456.tmp-shm
c:\users\kubaa\AppData\Roaming\12743456.tmp-wal
c:\users\kubaa\AppData\Roaming\12743456.tmp
c:\users\kubaa\AppData\Roaming\12750211.tmp-shm
c:\users\kubaa\AppData\Roaming\12750211.tmp-wal
c:\users\kubaa\AppData\Roaming\12750211.tmp
c:\users\kubaa\AppData\Roaming\12756794.tmp-shm
c:\users\kubaa\AppData\Roaming\12756794.tmp-wal
c:\users\kubaa\AppData\Roaming\12756794.tmp
c:\users\kubaa\AppData\Roaming\12763455.tmp-shm
c:\users\kubaa\AppData\Roaming\12763455.tmp-wal
c:\users\kubaa\AppData\Roaming\12763455.tmp
c:\users\kubaa\AppData\Roaming\12770148.tmp-shm
c:\users\kubaa\AppData\Roaming\12770148.tmp-wal
c:\users\kubaa\AppData\Roaming\12770148.tmp
c:\users\kubaa\AppData\Roaming\12771521.tmp-shm
c:\users\kubaa\AppData\Roaming\12771521.tmp-wal
c:\users\kubaa\AppData\Roaming\12771521.tmp
c:\users\kubaa\AppData\Roaming\12776871.tmp-shm
c:\users\kubaa\AppData\Roaming\12776871.tmp-wal
c:\users\kubaa\AppData\Roaming\12776871.tmp
c:\users\kubaa\AppData\Roaming\12784313.tmp-shm
c:\users\kubaa\AppData\Roaming\12784313.tmp-wal
c:\users\kubaa\AppData\Roaming\12784313.tmp
c:\users\kubaa\AppData\Roaming\12790740.tmp-shm
c:\users\kubaa\AppData\Roaming\12790740.tmp-wal
c:\users\kubaa\AppData\Roaming\12790740.tmp
c:\users\kubaa\AppData\Roaming\12797120.tmp-shm
c:\users\kubaa\AppData\Roaming\12797120.tmp-wal
c:\users\kubaa\AppData\Roaming\12797120.tmp
c:\users\kubaa\AppData\Roaming\12803594.tmp-shm
c:\users\kubaa\AppData\Roaming\12803594.tmp-wal
c:\users\kubaa\AppData\Roaming\12803594.tmp
c:\users\kubaa\AppData\Roaming\12809959.tmp-shm
c:\users\kubaa\AppData\Roaming\12809959.tmp-wal
c:\users\kubaa\AppData\Roaming\12809959.tmp
c:\users\kubaa\AppData\Roaming\12816402.tmp-shm
c:\users\kubaa\AppData\Roaming\12816402.tmp-wal
c:\users\kubaa\AppData\Roaming\12816402.tmp
c:\users\kubaa\AppData\Roaming\12822907.tmp-shm
c:\users\kubaa\AppData\Roaming\12822907.tmp-wal
c:\users\kubaa\AppData\Roaming\12822907.tmp
c:\users\kubaa\AppData\Roaming\12829335.tmp-shm
c:\users\kubaa\AppData\Roaming\12829335.tmp-wal
c:\users\kubaa\AppData\Roaming\12829335.tmp
c:\users\kubaa\AppData\Roaming\12835824.tmp-shm
c:\users\kubaa\AppData\Roaming\12835824.tmp-wal
c:\users\kubaa\AppData\Roaming\12835824.tmp
c:\users\kubaa\AppData\Roaming\12842423.tmp-shm
c:\users\kubaa\AppData\Roaming\12842423.tmp-wal
c:\users\kubaa\AppData\Roaming\12842423.tmp
c:\users\kubaa\AppData\Roaming\12848866.tmp-shm
c:\users\kubaa\AppData\Roaming\12848866.tmp-wal
c:\users\kubaa\AppData\Roaming\12848866.tmp
c:\users\kubaa\AppData\Roaming\12855527.tmp-shm
c:\users\kubaa\AppData\Roaming\12855527.tmp-wal
c:\users\kubaa\AppData\Roaming\12855527.tmp
c:\users\kubaa\AppData\Roaming\12862001.tmp-shm
c:\users\kubaa\AppData\Roaming\12862001.tmp-wal
c:\users\kubaa\AppData\Roaming\12862001.tmp
c:\users\kubaa\AppData\Roaming\12868974.tmp-shm
c:\users\kubaa\AppData\Roaming\12868974.tmp-wal
c:\users\kubaa\AppData\Roaming\12868974.tmp
c:\users\kubaa\AppData\Roaming\12875433.tmp-shm
c:\users\kubaa\AppData\Roaming\12875433.tmp-wal
c:\users\kubaa\AppData\Roaming\12875433.tmp
c:\users\kubaa\AppData\Roaming\12882063.tmp-shm
c:\users\kubaa\AppData\Roaming\12882063.tmp-wal
c:\users\kubaa\AppData\Roaming\12882063.tmp
c:\users\kubaa\AppData\Roaming\12888553.tmp-shm
c:\users\kubaa\AppData\Roaming\12888553.tmp-wal
c:\users\kubaa\AppData\Roaming\12888553.tmp
c:\users\kubaa\AppData\Roaming\12895541.tmp-shm
c:\users\kubaa\AppData\Roaming\12895541.tmp-wal
c:\users\kubaa\AppData\Roaming\12895541.tmp
c:\users\kubaa\AppData\Roaming\12902593.tmp-shm
c:\users\kubaa\AppData\Roaming\12902593.tmp-wal
c:\users\kubaa\AppData\Roaming\12902593.tmp
c:\users\kubaa\AppData\Roaming\12909503.tmp-shm
c:\users\kubaa\AppData\Roaming\12909503.tmp-wal
c:\users\kubaa\AppData\Roaming\12909503.tmp
c:\users\kubaa\AppData\Roaming\12915962.tmp-shm
c:\users\kubaa\AppData\Roaming\12915962.tmp-wal
c:\users\kubaa\AppData\Roaming\12915962.tmp
c:\users\kubaa\AppData\Roaming\12922420.tmp-shm
c:\users\kubaa\AppData\Roaming\12922420.tmp-wal
c:\users\kubaa\AppData\Roaming\12922420.tmp
c:\users\kubaa\AppData\Roaming\66908.tmp
c:\users\kubaa\AppData\Roaming\86658.tmp
c:\users\kubaa\AppData\Roaming\95847.tmp
c:\users\s\AppData\Local\MSGBOX.EXE
c:\windows\msdownld.tmp
c:\windows\system32\tmp4598.tmp
c:\windows\system32\tmp7734.tmp
c:\windows\system32\tmp7745.tmp
C:\Windupdt
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_NETHFDRV
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2017-02-23 do 2017-03-23 )))))))))))))))))))))))))))))))
.
.
2017-03-23 10:37 . 2017-03-23 10:37 -------- d-----w- c:\users\me\AppData\Local\temp
2017-03-23 10:37 . 2017-03-23 10:37 -------- d-----w- c:\users\kubaa\AppData\Local\temp
2017-03-23 10:37 . 2017-03-23 10:37 -------- d-----w- c:\users\Default\AppData\Local\temp
2017-03-23 07:04 . 2017-03-23 07:04 62576 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{E89BDF05-000A-4623-8368-72AC59FA8CA8}\offreg.3940.dll
2017-03-23 05:13 . 2017-03-23 10:18 170200 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2017-03-23 05:13 . 2017-03-23 10:38 -------- d-----w- c:\program files\Malwarebytes Anti-Malware
2017-03-23 05:13 . 2017-03-23 05:13 -------- d-----w- c:\programdata\Malwarebytes
2017-03-23 05:13 . 2016-03-10 13:09 53120 ----a-w- c:\windows\system32\drivers\mwac.sys
2017-03-23 05:13 . 2016-03-10 13:08 126336 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2017-03-23 05:13 . 2016-03-10 13:08 24448 ----a-w- c:\windows\system32\drivers\mbam.sys
2017-03-22 18:08 . 2017-03-22 18:08 -------- d-----w- c:\users\s\AppData\Local\Apps
2017-03-22 18:08 . 2017-03-22 18:09 -------- d-----w- c:\users\s\AppData\Local\Deployment
2017-03-22 18:07 . 2017-03-22 18:07 -------- d-----w- c:\program files\Common Files\Java
2017-03-22 18:07 . 2017-03-22 18:07 95808 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2017-03-22 18:07 . 2017-03-22 18:07 -------- d-----w- c:\program files\Java
2017-03-22 17:58 . 2017-03-22 17:58 -------- d-----w- c:\program files\reports
2017-03-22 16:45 . 2017-03-22 16:45 62576 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{E89BDF05-000A-4623-8368-72AC59FA8CA8}\offreg.2436.dll
2017-03-22 16:34 . 2017-02-22 11:48 9992952 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{E89BDF05-000A-4623-8368-72AC59FA8CA8}\mpengine.dll
2017-03-22 13:51 . 2017-03-22 16:41 -------- d-----w- C:\FRST
2017-03-22 12:19 . 2017-03-21 10:55 103424 ----a-w- c:\programdata\Microsoft\Phone Tools\CoreCon\12.0\addons\SDKFilesVer.dll
2017-03-20 16:57 . 2017-02-18 14:05 1331200 ----a-w- c:\windows\system32\appraiser.dll
2017-03-20 16:57 . 2017-02-22 23:29 71400 ----a-w- c:\windows\system32\CompatTelRunner.exe
2017-03-20 16:57 . 2017-02-22 23:24 971776 ----a-w- c:\windows\system32\aeinv.dll
2017-03-20 16:57 . 2017-02-18 14:05 505344 ----a-w- c:\windows\system32\generaltel.dll
2017-03-20 16:57 . 2016-12-31 15:36 442368 ----a-w- c:\windows\system32\devinv.dll
2017-03-20 16:57 . 2016-12-31 15:36 270848 ----a-w- c:\windows\system32\invagent.dll
2017-03-20 16:57 . 2016-12-31 15:36 212480 ----a-w- c:\windows\system32\centel.dll
2017-03-20 16:57 . 2016-12-31 15:36 183808 ----a-w- c:\windows\system32\aepic.dll
2017-03-20 16:57 . 2016-12-31 15:36 104960 ----a-w- c:\windows\system32\acmigration.dll
2017-03-20 12:19 . 2017-03-20 12:19 -------- d-----w- c:\programdata\SWCUTemp
2017-03-15 16:20 . 2017-03-20 12:52 -------- d-----w- c:\users\s\AppData\Roaming\SmartSteamEmu
2017-03-14 15:27 . 2017-03-20 12:52 -------- d-----w- c:\users\s\AppData\Roaming\vlc
2017-03-13 07:27 . 2017-03-13 10:39 -------- d-----w- c:\users\s\AppData\Roaming\Mount&Blade Warband
2017-03-06 15:02 . 2017-03-13 08:55 -------- d-----w- c:\program files\MK
2017-03-05 18:31 . 2017-03-05 18:31 -------- d-----w- C:\$AV_ASW
2017-03-05 18:25 . 2017-03-05 18:25 -------- d-----w- c:\users\s\AppData\Roaming\AVAST Software
2017-03-05 17:42 . 2017-03-05 18:26 -------- d-----w- c:\program files\AVAST Software
2017-03-01 22:01 . 2017-03-20 12:52 -------- d-----w- c:\program files\GTA San Andreas
2017-03-01 17:06 . 2017-03-01 17:06 -------- d-----w- c:\windows\IObit
2017-03-01 17:06 . 2017-03-04 15:01 -------- d-----w- c:\users\s\AppData\Roaming\IObit
2017-03-01 17:01 . 2017-03-01 17:01 -------- d-----w- c:\users\s\AppData\Roaming\Profiles
2017-02-24 00:07 . 2017-02-24 00:07 -------- d-----w- c:\windows\system32\{F18D63B5-F945-4736-825F-70129CBFE9C3}
2017-02-23 13:41 . 2017-02-23 13:41 -------- d-----w- c:\programdata\Apple
2017-02-22 12:08 . 2017-03-13 05:58 -------- d-----w- c:\users\s\AppData\Roaming\The Creative Assembly
2017-02-21 11:18 . 2017-02-21 11:18 -------- d-----w- c:\windows\system32\{9571F033-E27D-48CC-917F-4DC705F1B23A}
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2017-03-22 13:12 . 2015-12-10 13:34 802904 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2017-03-22 13:12 . 2015-12-10 13:34 144472 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2017-02-09 16:14 . 2017-03-20 16:59 254464 ----a-w- c:\windows\system32\schannel.dll
2017-02-09 16:14 . 2017-03-20 16:59 141312 ----a-w- c:\windows\system32\rpchttp.dll
2017-01-24 14:31 . 2014-01-19 14:50 281688 ----a-w- c:\windows\system32\PnkBstrB.xtr
2017-01-24 14:29 . 2014-01-19 14:51 281688 ----a-w- c:\windows\system32\PnkBstrB.exe
2017-01-24 07:17 . 2014-01-19 14:51 281688 ----a-w- c:\windows\system32\PnkBstrB.ex0
2017-01-22 19:30 . 2014-01-19 14:51 138032 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2017-01-13 21:02 . 2015-02-14 21:37 395536 ----a-w- c:\windows\system32\EasyAntiCheat.exe
2017-01-09 21:45 . 2017-01-09 21:45 1243391 ----a-w- c:\windows\unins000.exe
2016-12-28 05:17 . 2016-12-29 18:50 475648 ----a-w- c:\programdata\Microsoft\Phone Tools\CoreCon\12.0\1042\NonSDKAddonLangVer.dll
2010-08-03 10:11 819200 --sha-w- c:\windows\System32\xvidcore.dll
2010-08-03 10:11 180224 --sha-w- c:\windows\System32\xvidvfw.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IEService"="c:\users\s\AppData\Local\Microsoft Windows\taskhost.exe" [2017-01-13 89600]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SysTrayApp"="c:\program files\IDT\WDM\sttray.exe" [2012-04-24 1433692]
"BeatsOSDApp"="c:\program files\IDT\WDM\beats.exe" [2011-08-24 30208]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2016-12-12 587288]
.
c:\users\kubaa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE /tsr [2017-1-9 97680]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
"SoftwareSASGeneration"= 1 (0x1)
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk]
backup=c:\windows\pss\McAfee Security Scan Plus.lnk.CommonStartup
backupExtension=.CommonStartup
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk
.
[HKLM\~\startupfolder\C:^Users^kuba^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk]
backup=c:\windows\pss\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk.Startup
backupExtension=.Startup
path=c:\users\kuba\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe RGB Color]
2014-06-30 07:10 105 ----a-w- c:\programdata\adobe\Color.vbs
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BeatsOSDApp]
2011-08-24 02:04 30208 ----a-w- c:\program files\IDT\WDM\beats.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonMyPrinter]
2010-03-25 02:50 2516296 ----a-w- c:\program files\Canon\MyPrinter\BJMYPRT.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonSolutionMenuEx]
2010-04-02 09:18 1185112 ----a-w- c:\program files\Canon\Solution Menu EX\CNSEMAIN.EXE
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\cz.seznam.software.szndesktop]
c:\users\s\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [BU]
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Pro Agent]
2012-10-23 08:25 3108480 ----a-w- c:\program files\DAEMON Tools Pro\DTAgent.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
2009-02-26 17:36 30040 ----a-w- c:\program files\Microsoft Office\Office12\GrooveMonitor.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MouseDriver]
2012-12-19 07:42 241152 ----a-w- c:\windows\System32\TiltWheelMouse.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvBackend]
2013-12-10 02:22 2279712 ----a-w- c:\program files\NVIDIA Corporation\Update Core\NvBackend.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ShadowPlay]
2013-12-10 02:15 982232 ----a-w- c:\windows\System32\nvspcap.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2016-12-12 18:21 587288 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SysTrayApp]
2012-04-24 18:38 1433692 ----a-w- c:\program files\IDT\WDM\sttray.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\USB3MON]
2011-12-05 01:14 291096 ----a-w- c:\program files\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
2017-02-02 06:11 2143936 ----a-w- c:\users\s\AppData\Roaming\uTorrent\uTorrent.exe
.
2;2 NvNetworkService;NVIDIA Network Service;c:\program files\NVIDIA Corporation\NetService\NvNetworkService.exe [x]
R2 LiveUpdateSvc;LiveUpdate;c:\program files\IObit\LiveUpdate\LiveUpdate.exe [2015-08-06 2909472]
R3 BEService;BattlEye Service;c:\program files\Common Files\BattlEye\BEService.exe [2016-01-23 1056288]
R3 BRDriver;BRDriver;c:\programdata\BitRaider\BRDriver.sys [x]
R3 BRDriver_1_3_3_E02B25FC;BRDriver_1_3_3_E02B25FC;c:\programdata\BitRaider\support\1.3.3\E02B25FC\BRDriver.sys [x]
R3 BRSptSvc;BitRaider Mini-Support Service;c:\programdata\BitRaider\BRSptSvc.exe [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [2010-11-20 62464]
R3 EasyAntiCheat;EasyAntiCheat;c:\windows\system32\EasyAntiCheat.exe [2017-01-13 395536]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2015-01-31 102912]
R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys [2017-03-23 170200]
R3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des [2016-05-15 5741064]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
S0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hcs.sys [2011-12-05 13592]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2016-03-13 242240]
S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe [2009-07-14 20992]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe [2011-12-08 423136]
S2 Intel(R) ME Service;Intel(R) ME Service;c:\program files\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [2012-04-11 128280]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-04-11 161560]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [2013-12-10 14658848]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-12-19 411936]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-04-11 363800]
S3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hub.sys [2011-12-05 347928]
S3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3xhc.sys [2011-12-05 788248]
S3 L1C;NDIS Miniport Driver for Atheros AR81xx PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x86.sys [2011-09-19 91760]
S3 MEI;Intel(R) Management Engine Interface ;c:\windows\system32\DRIVERS\HECI.sys [2012-04-11 46080]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad32v.sys [2013-12-05 34080]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr fdrespub AppIDSvc QWAVE wcncsvc Mcx2Svc SensrSvc
utcsvc REG_MULTI_SZ DiagTrack
Hecerry REG_MULTI_SZ Hecerry
bilibiliGroupEx REG_MULTI_SZ bilibili
apple_config REG_MULTI_SZ Apple_Cfg
WinSAPSvc REG_MULTI_SZ WinSAPSvc
WPDService REG_MULTI_SZ WPDTSrv
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2017-03-22 18:09 1319256 ----a-w- c:\program files\Google\Chrome\Application\57.0.2987.110\Installer\chrmstp.exe
.
.
------- Doplňkový sken -------
.
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~1\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 85.132.180.62
.
.
------- Asociace souborů -------
.
inifile="%SystemRoot%\system32\NOTEPAD.EXE" %1
txtfile="%SystemRoot%\system32\NOTEPAD.EXE" %1
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKLM-Run-InstallerLauncher - c:\program files\Common Files\Bitdefender\SetupInformation\{6F57816A-791A-4159-A75F-CFD0C7EA4FBF}\setuplauncher.exe
MSConfigStartUp-4StoryPrePatch - c:\program files\GameforgeLive\Games\CZE_ces\4Story\PrePatch.exe
MSConfigStartUp-AvastUI - c:\program files\AVAST Software\Avast\AvastUI.exe
MSConfigStartUp-cz.seznam.software - c:\users\s\AppData\Roaming\Seznam.cz\szninstall.exe
MSConfigStartUp-DivXMediaServer - c:\program files\DivX\DivX Media Server\DivXMediaServer.exe
MSConfigStartUp-seznam-listicka-distribuce - c:\program files\Seznam.cz\distribution\szninstall.exe
MSConfigStartUp-Skype - c:\program files\Skype\Phone\Skype.exe
MSConfigStartUp-Steam - c:\program files (x86)\Steam\steam.exe
HKLM_ActiveSetup-installed components - c:\program files\Crossbrowse\Crossbrowse\Application\39.6.2171.95\Installer\chrmstp.exe
AddRemove-1430740694_is1 - c:\gog games\Saints Row 3\unins000.exe
AddRemove-Medieval II - Total War_is1 - c:\program files\SEGA\Medieval II - Total War\unins000.exe
AddRemove-Mozilla Firefox 42.0 (x86 cs) - c:\program files\Mozilla Firefox\uninstall\helper.exe
AddRemove-MozillaMaintenanceService - c:\program files\Mozilla Maintenance Service\uninstall.exe
AddRemove-Need For Speed Hot Pursuit_is1 - c:\program files\Mr DJ\Need For Speed Hot Pursuit\Uninstall\unins000.exe
AddRemove-Need For Speed Most Wanted Black Edition_is1 - c:\program files\Mr DJ\Need For Speed Most Wanted Black Edition\Uninstall\unins000.exe
AddRemove-Splinter Cell Conviction_is1 - c:\program files\Mr DJ\Splinter Cell Conviction\Uninstall\unins000.exe
AddRemove-Tomb Raider GOTY_is1 - c:\program files\Mr DJ\Tomb Raider GOTY\Uninstall\unins000.exe
AddRemove-U25pcGVyRWxpdGUz_is1 - c:\program files\Sniper Elite 3\unins000.exe
AddRemove-{65BE85A8-13BB-4B4A-B1AF-EC6054292C00}_is1 - c:\program files\The Walking Dead Epizody 1-5\unins000.exe
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\npggsvc]
"ImagePath"="c:\windows\system32\GameMon.des -service"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\nvvsvc.exe
c:\program files\IDT\WDM\STacSV.exe
c:\program files\NVIDIA Corporation\Display\nvxdsync.exe
c:\windows\system32\nvvsvc.exe
c:\windows\system32\taskhost.exe
c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\windows\system32\PnkBstrA.exe
c:\windows\system32\rundll32.exe
c:\windows\system32\conhost.exe
c:\program files\NVIDIA Corporation\Display\nvtray.exe
c:\windows\system32\taskhost.exe
c:\windows\System32\rundll32.exe
c:\windows\System32\WUDFHost.exe
c:\windows\system32\conhost.exe
c:\program files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
c:\windows\system32\sppsvc.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\\?\c:\windows\system32\wbem\WMIADAP.EXE
c:\program files\DAEMON Tools Pro\DTShellHlp.exe
.
**************************************************************************
.
Celkový čas: 2017-03-23 11:43:24 - počítač byl restartován
ComboFix-quarantined-files.txt 2017-03-23 10:43
.
Před spuštěním: Volných bajtů: 658 097 127 424
Po spuštění: Volných bajtů: 657 846 476 800
.
- - End Of File - - C9F7C9205F5DC52561857EA5F81146B7
A36C5E4F47E84449FF07ED3517B43A31

Re: POmaly beh pc

Napsal: 23 bře 2017 11:32
od altrok
ComboFix uspesne prosel, ale po restartu nemuzete nalezt log? Log byva ulozen primo v korenovem adresari, tedy v C:\ComboFix.txt

Re: POmaly beh pc

Napsal: 23 bře 2017 11:45
od jack68
jj uz jsem ho vlozil. nevim proc ale objevil se az po restartu ktery jsem nesmel kvuli rkill nesmel delat

Re: POmaly beh pc

Napsal: 23 bře 2017 13:08
od altrok
Krasne se nam to procistuje. Jeste tam pustte ESET Online Scanner - jeste se mi nepodarilo aktualizovat navod pro novou verzi, proto se postup muze mirne lisit.

:arrow: Ulozte na plochu ESET Online Scanner kliknutim na esetsmartinstaller_csy.exe
  • ulozeny esetsmartinstaller_csy.exe dvojklikem spustte
  • zaskrtnete Ano, souhlasim s podminkami uziti a kliknete na Spustit
  • vyberte moznost Povolit detekci nechtenych aplikaci
  • rozkliknete moznost Rozsirene nastaveni a
    • zruste zatrzitko u volby Odstranit nalezene infiltrace
    • ponechte zatrhnutou moznost Pouzit technologii Anti-Stealth
  • kliknete na Kontrola, cimz se spusti az nekolikahodinovy sken
  • po dokonceni skenu kliknete na Seznam nalezenych infiltraci (v pripade zadneho nalezu log nevytvorite)
  • kliknete na Ulozit do textoveho souboru, log pojmenujte jako ESETlog a ulozte na plochu
  • obsah logu vlozte do pristi odpovedi
  • kliknete na << Zpet a zatrhnete moznost Odinstalovat
  • klikem na Dokoncit ESET Online Scanner zavrete.

Re: POmaly beh pc

Napsal: 23 bře 2017 15:02
od jack68
C:\AdwCleaner\quarantine\files\biaiidkhxsxbquxrrigloiqyjzevmyij.back varianta infiltrace Win32/Amonetize.DY potenciálně nechtěná aplikace
C:\AdwCleaner\quarantine\files\dxjnskjtadctmfgxslqtwcdchufilavc.back varianta infiltrace Win32/Techsnab.J potenciálně nechtěná aplikace
C:\AdwCleaner\quarantine\files\edtwaxloxbyqocrhzfcixnxidmudcghg.back varianta infiltrace Win32/ELEX.EJ potenciálně nechtěná aplikace
C:\AdwCleaner\quarantine\files\fgmkupqftldyeggnspcusjmbbenedhxp.back varianta infiltrace Win32/ELEX.EJ potenciálně nechtěná aplikace
C:\AdwCleaner\quarantine\files\nauabgsfzgkgfjmpojrasqtppacfytzh.back varianta infiltrace Win32/Adware.RK.AM aplikace
C:\AdwCleaner\quarantine\files\sagedtnxlwpbrcgkjifilxuvgqgxejww.back varianta infiltrace Win32/Adware.ELEX.CH aplikace
C:\AdwCleaner\quarantine\files\smhekwtnqtlqkpxhfgafdoqfhxvccjgt.back varianta infiltrace Win32/Adware.ELEX.GK aplikace
C:\AdwCleaner\quarantine\files\vyygwfwmnsikbrcbvragayvzkkuzofam.back varianta infiltrace Win32/Adware.Agent.NPN aplikace
C:\AdwCleaner\quarantine\files\besocpjsbqeolbnrjylndzjqoqultezp\AnTamdox.dll varianta infiltrace Win32/Toolbar.Linkury.Y potenciálně nechtěná aplikace
C:\AdwCleaner\quarantine\files\besocpjsbqeolbnrjylndzjqoqultezp\Gravejob.exe varianta infiltrace Win32/Toolbar.Linkury.AF potenciálně nechtěná aplikace
C:\AdwCleaner\quarantine\files\besocpjsbqeolbnrjylndzjqoqultezp\Homephase.dll varianta infiltrace Win64/Toolbar.Linkury.M potenciálně nechtěná aplikace
C:\AdwCleaner\quarantine\files\besocpjsbqeolbnrjylndzjqoqultezp\Saophase.exe varianta infiltrace Win32/Toolbar.Linkury.AC potenciálně nechtěná aplikace
C:\AdwCleaner\quarantine\files\besocpjsbqeolbnrjylndzjqoqultezp\Silcom.dll varianta infiltrace Win32/Toolbar.Linkury.Y potenciálně nechtěná aplikace
C:\AdwCleaner\quarantine\files\besocpjsbqeolbnrjylndzjqoqultezp\TranPlus.dll varianta infiltrace Win64/Toolbar.Linkury.M potenciálně nechtěná aplikace
C:\AdwCleaner\quarantine\files\besocpjsbqeolbnrjylndzjqoqultezp\Y-tough.exe varianta infiltrace Win64/Toolbar.Linkury.I potenciálně nechtěná aplikace
C:\AdwCleaner\quarantine\files\bwnhvwomkizzzsegtirnmxzxdtzxiqaq\WinSnare.dll varianta infiltrace Win32/Snarasite.A trojský kůň
C:\AdwCleaner\quarantine\files\bxaoxcbpyaiedkvgcwcjogglkuesvvgu\Freshfan.dll varianta infiltrace Win32/Toolbar.Linkury.AQ potenciálně nechtěná aplikace
C:\AdwCleaner\quarantine\files\bxaoxcbpyaiedkvgcwcjogglkuesvvgu\Green-It.exe varianta infiltrace Win64/Toolbar.Linkury.M potenciálně nechtěná aplikace
C:\AdwCleaner\quarantine\files\bxaoxcbpyaiedkvgcwcjogglkuesvvgu\Truststock.exe varianta infiltrace Win32/Toolbar.Linkury.AF potenciálně nechtěná aplikace
C:\AdwCleaner\quarantine\files\bxaoxcbpyaiedkvgcwcjogglkuesvvgu\Vaiafineco.exe varianta infiltrace Win32/Toolbar.Linkury.AA potenciálně nechtěná aplikace
C:\AdwCleaner\quarantine\files\bxaoxcbpyaiedkvgcwcjogglkuesvvgu\Zoobam.dll varianta infiltrace Win64/Toolbar.Linkury.M potenciálně nechtěná aplikace
C:\AdwCleaner\quarantine\files\cdncudoeymonzpufcthmverxlcwsfqni\GubZL.dll varianta infiltrace Win32/Adware.ELEX.ES aplikace
C:\AdwCleaner\quarantine\files\cdqjlzgprgtnuhzgsiyzpsdartbrugnc\WinSAP.dll varianta infiltrace Win32/Adware.ELEX.FQ aplikace
C:\AdwCleaner\quarantine\files\dmtbalzistwxtrpjdivfufpkmupghyxo\chrome.exe varianta infiltrace Win32/Adware.Eszjuxuan.D aplikace
C:\AdwCleaner\quarantine\files\drvusrekfomivobikbdgzczrbrhndhmu\WinSnare.dll varianta infiltrace Win32/Snarasite.A trojský kůň
C:\AdwCleaner\quarantine\files\efnugyixkugzfyqbnqbaccfrnrbtnlhm\gpup.exe varianta infiltrace Win32/Techsnab.B potenciálně nechtěná aplikace
C:\AdwCleaner\quarantine\files\efnugyixkugzfyqbnqbaccfrnrbtnlhm\tasks.dll varianta infiltrace Win32/Tasks.A potenciálně nechtěná aplikace
C:\AdwCleaner\quarantine\files\havpcbfzrezsrvcodqqwkrrmokcgzxlt\MIO.exe varianta infiltrace Win32/Tencent.I potenciálně nechtěná aplikace
C:\AdwCleaner\quarantine\files\hlahdpubscerhrvcfvhpuscmhqvpvxsv\GubedZL.dll varianta infiltrace Win32/Adware.ELEX.DC aplikace
C:\AdwCleaner\quarantine\files\hozkznpukpajqipbeilebgmwerwsoddh\bin\FirefoxUpdate.exe varianta infiltrace Win32/Adware.ELEX.EM aplikace
C:\AdwCleaner\quarantine\files\hrmdsovmbxebfbmjzzlobiwogykfdtkd\Archer.dll varianta infiltrace Win32/Adware.ELEX.EI aplikace
C:\AdwCleaner\quarantine\files\jgrtjgzkbpdzxcxpncvxyezfharfaknf\wintool.exe varianta infiltrace Win32/Adware.ELEX.GQ aplikace
C:\AdwCleaner\quarantine\files\jgrtjgzkbpdzxcxpncvxyezfharfaknf\WintoolUprI.exe varianta infiltrace Win32/Adware.ELEX.GQ aplikace
C:\AdwCleaner\quarantine\files\kccpkvjnptysvmjcowhnmzmgmkcmomty\WinSnare.dll varianta infiltrace Win32/Snarasite.A trojský kůň
C:\AdwCleaner\quarantine\files\kmwxnynuknlwyzeiuciiyhmesbuylokf\bin\FirefoxUpdate.exe varianta infiltrace Win32/Adware.ELEX.FP aplikace
C:\AdwCleaner\quarantine\files\kuunnwvpldqoabwbofstcpabwycxsufi\rlls.dll varianta infiltrace Win32/Adware.RK.AM aplikace
C:\AdwCleaner\quarantine\files\kuunnwvpldqoabwbofstcpabwycxsufi\rlservice.exe varianta infiltrace Win32/Adware.RK.AU aplikace
C:\AdwCleaner\quarantine\files\kuunnwvpldqoabwbofstcpabwycxsufi\rlvknlg32.exe varianta infiltrace Win32/Adware.RK.AV aplikace
C:\AdwCleaner\quarantine\files\lbuwfwhtjtvapaymklxwjkwcbsxsvgdh\UpdateAdmin.exe varianta infiltrace Win32/DownloadAdmin.K potenciálně nechtěná aplikace
C:\AdwCleaner\quarantine\files\ldjeubavjeboqyipjfliizzncuymwwed\WinSAP.dll varianta infiltrace Win32/Adware.ELEX.FQ aplikace
C:\AdwCleaner\quarantine\files\msbzuslxwdgsjdxflbmvdutuwvdrvcmp\CloudPrinter.exe varianta infiltrace Win32/GenKryptik.PJS trojský kůň
C:\AdwCleaner\quarantine\files\ngwyfsbgcwjqvdpyxpaaqfvlbradbnfa\default.filter HTML/ScrInject.B trojský kůň
C:\AdwCleaner\quarantine\files\ngwyfsbgcwjqvdpyxpaaqfvlbradbnfa\jsweb.dll varianta infiltrace Win32/Techsnab.H potenciálně nechtěná aplikace
C:\AdwCleaner\quarantine\files\ngwyfsbgcwjqvdpyxpaaqfvlbradbnfa\jswff.exe varianta infiltrace Win32/Techsnab.H potenciálně nechtěná aplikace
C:\AdwCleaner\quarantine\files\nttjxqxccwnoceeojnkrzgiivngsxqac\WinSnare.dll Win32/Snarasite.A trojský kůň
C:\AdwCleaner\quarantine\files\nttjxqxccwnoceeojnkrzgiivngsxqac\WinSnare64.dll varianta infiltrace Win64/Snarasite.A trojský kůň
C:\AdwCleaner\quarantine\files\ouxkacbdehskcqncuwzsqyfdxcvnkhyl\set.exe varianta infiltrace MSIL/Toolbar.Linkury.BB potenciálně nechtěná aplikace
C:\AdwCleaner\quarantine\files\pekfhepaqfzvsvpylzkcfvihqdqjeyum\WinSAP.dll varianta infiltrace Win32/Adware.ELEX.FQ aplikace
C:\AdwCleaner\quarantine\files\phatvhhzmyeekjnlnjeyaoksyoxztzuv\ed2k.exe varianta infiltrace Win32/Adware.ELEX.EL aplikace
C:\AdwCleaner\quarantine\files\qddjkcgxrsddhmezbslcwrzhsywwgnet\application.xap varianta infiltrace Win32/Speedchecker.A potenciálně nechtěná aplikace
C:\AdwCleaner\quarantine\files\sqqbqdexsrynqcaruokrwckbchaktjjg\SystemConsole.exe varianta infiltrace Win32/Adware.Adposhel.X aplikace
C:\AdwCleaner\quarantine\files\sqqbqdexsrynqcaruokrwckbchaktjjg\Uninstaller.exe varianta infiltrace Win32/Packed.NSISmod.AG podezřelá aplikace
C:\AdwCleaner\quarantine\files\ubslpwkamecdvmofhdsrilzpvcjtxlce\wintooll.exe varianta infiltrace Win32/Adware.ELEX.EE aplikace
C:\AdwCleaner\quarantine\files\upakagnvpjhgweenmtbvqcpqcivffwyt\bin\30384bbc-44b6-44ed-beb1-5333b1dc51a4\Jackson.exe varianta infiltrace Win32/Toolbar.Linkury.AC potenciálně nechtěná aplikace
C:\AdwCleaner\quarantine\files\uzcjvwhqfbcqawpwosxlwxzavpgjimfg\Freshtom.dll Win64/Toolbar.Linkury.P potenciálně nechtěná aplikace
C:\AdwCleaner\quarantine\files\uzcjvwhqfbcqawpwosxlwxzavpgjimfg\Hotfresh.exe varianta infiltrace Win32/GenKryptik.PJS trojský kůň
C:\AdwCleaner\quarantine\files\uzcjvwhqfbcqawpwosxlwxzavpgjimfg\Labstring.exe MSIL/TrojanDownloader.Agent.CIY trojský kůň
C:\AdwCleaner\quarantine\files\uzcjvwhqfbcqawpwosxlwxzavpgjimfg\Lotstrong.dll Win32/Toolbar.Linkury.BA potenciálně nechtěná aplikace
C:\AdwCleaner\quarantine\files\uzcjvwhqfbcqawpwosxlwxzavpgjimfg\Trust-Kix.exe MSIL/Toolbar.Linkury.BP potenciálně nechtěná aplikace
C:\AdwCleaner\quarantine\files\uzcjvwhqfbcqawpwosxlwxzavpgjimfg\VaiaStateco.exe varianta infiltrace Win64/Toolbar.Linkury.R potenciálně nechtěná aplikace
C:\AdwCleaner\quarantine\files\wkjnevaoejcnzkavpodoiidsvktehptg\caMyciloP.exe varianta infiltrace Win32/Toolbar.Linkury.AC potenciálně nechtěná aplikace
C:\AdwCleaner\quarantine\files\wkjnevaoejcnzkavpodoiidsvktehptg\Dalttone.dll varianta infiltrace Win64/Toolbar.Linkury.M potenciálně nechtěná aplikace
C:\AdwCleaner\quarantine\files\wkjnevaoejcnzkavpodoiidsvktehptg\Danphase.dll varianta infiltrace Win64/Toolbar.Linkury.M potenciálně nechtěná aplikace
C:\AdwCleaner\quarantine\files\wkjnevaoejcnzkavpodoiidsvktehptg\Dingcore.exe varianta infiltrace Win64/Toolbar.Linkury.I potenciálně nechtěná aplikace
C:\AdwCleaner\quarantine\files\wkjnevaoejcnzkavpodoiidsvktehptg\Scotdom.dll varianta infiltrace Win32/Toolbar.Linkury.Y potenciálně nechtěná aplikace
C:\AdwCleaner\quarantine\files\wkjnevaoejcnzkavpodoiidsvktehptg\StimDex.dll varianta infiltrace Win32/Toolbar.Linkury.Y potenciálně nechtěná aplikace
C:\AdwCleaner\quarantine\files\wkjnevaoejcnzkavpodoiidsvktehptg\Volfax.exe varianta infiltrace Win32/Toolbar.Linkury.AF potenciálně nechtěná aplikace
C:\AdwCleaner\quarantine\files\xhtxqkqrsgkdbbubxbtjlufhxmflogmn\bilibili.dll varianta infiltrace Win32/Adware.ELEX.DC aplikace
C:\AdwCleaner\quarantine\files\xicaxohtevhcfycofskdbymnwgsnrccz\WinSnare.dll Win32/Snarasite.A trojský kůň
C:\AdwCleaner\quarantine\files\znfwsjrsxywlzssqvlaegifhyvhhxlhx\WinSnare.dll varianta infiltrace Win32/Snarasite.A trojský kůň
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns1288.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns132C.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns1547.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns1634.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns18F6.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns1A85.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns1C04.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns1E50.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns2060.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns23DE.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns281D.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns2DFB.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns33A5.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns3555.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns366A.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns370B.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns389B.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns4A79.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns4ABB.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns4ADC.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns4CB1.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns4D73.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns4E1A.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns5285.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns559D.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns5626.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns59A8.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns5C39.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns5ED8.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns629B.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns685.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns6A48.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns6CAD.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns6CE7.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns6E.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns71D7.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns726D.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns747C.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns79DB.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns7BA7.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns7BEE.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns8329.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns840B.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns8545.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns86DD.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns8AC6.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns8F8B.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns8FE2.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns915B.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns92B6.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns96FA.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns9937.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns99C3.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns9AF6.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns9D95.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\kns9FA7.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\knsA4A7.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\knsA59.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\knsA61.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\knsACA6.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\knsAEED.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\knsAFF3.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\knsB05B.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\knsB0F0.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\knsB156.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\knsB526.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\knsB8A0.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\knsB915.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\knsBCAF.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\knsC182.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\knsC583.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\knsCEA6.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\knsD031.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\knsD384.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\knsD4BF.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\knsD5F1.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\knsD966.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\knsDE88.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\knsE0E8.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\knsE5E2.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\knsE7EF.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\knsEA5C.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\knsEC0.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\knsEFD9.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\knsF0E9.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\knsF28C.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\knsF693.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\knsF86.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\knsFAA.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\knsFB83.tmp varianta infiltrace Win32/Adware.ConvertAd.AKA aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\pro15B7.tmp varianta infiltrace Win32/Adware.ConvertAd.AJW aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\pro2DEB.tmp varianta infiltrace Win32/Adware.ConvertAd.AJW aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\pro3545.tmp varianta infiltrace Win32/Adware.ConvertAd.AJW aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\pro4A9B.tmp varianta infiltrace Win32/Adware.ConvertAd.AJW aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\pro559D.tmp varianta infiltrace Win32/Adware.ConvertAd.AJW aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\pro69EB.tmp varianta infiltrace Win32/Adware.ConvertAd.AJW aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\pro72AB.tmp varianta infiltrace Win32/Adware.ConvertAd.AJW aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\pro92B6.tmp varianta infiltrace Win32/Adware.ConvertAd.AJW aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\proAFD4.tmp varianta infiltrace Win32/Adware.ConvertAd.AJW aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\proCE87.tmp varianta infiltrace Win32/Adware.ConvertAd.AJW aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\proEFC9.tmp varianta infiltrace Win32/Adware.ConvertAd.AJW aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\proF60B.tmp varianta infiltrace Win32/Adware.ConvertAd.AJW aplikace
C:\FRST\Quarantine\C\Program Files\bce00fed-6ac1-425f-917e-c9908a873bb41488560863\proF67.tmp varianta infiltrace Win32/Adware.ConvertAd.AJW aplikace
C:\FRST\Quarantine\C\Program Files\Common Files\1xxnaodt.exe.xBAD varianta infiltrace Win32/Toolbar.Linkury.AM.gen potenciálně nechtěná aplikace
C:\FRST\Quarantine\C\Program Files\Common Files\2qprdj5r.exe.xBAD varianta infiltrace Win32/Toolbar.Linkury.AH potenciálně nechtěná aplikace
C:\FRST\Quarantine\C\Program Files\Common Files\3womdxag.exe.xBAD Win32/Toolbar.Linkury.AE potenciálně nechtěná aplikace
C:\FRST\Quarantine\C\Program Files\Common Files\3zccem2c.exe.xBAD varianta infiltrace Win32/Toolbar.Linkury.AM.gen potenciálně nechtěná aplikace
C:\FRST\Quarantine\C\Program Files\Common Files\44nn0132.exe.xBAD varianta infiltrace Win32/Toolbar.Linkury.AH potenciálně nechtěná aplikace
C:\FRST\Quarantine\C\Program Files\Common Files\4buyq1go.exe.xBAD varianta infiltrace Win32/Toolbar.Linkury.AI potenciálně nechtěná aplikace
C:\FRST\Quarantine\C\Program Files\Common Files\5inzu34z.exe.xBAD varianta infiltrace Win32/Toolbar.Linkury.AM.gen potenciálně nechtěná aplikace
C:\FRST\Quarantine\C\Program Files\Common Files\5zoueghr.exe.xBAD varianta infiltrace Win32/Toolbar.Linkury.AJ potenciálně nechtěná aplikace
C:\FRST\Quarantine\C\Program Files\Common Files\a4clk2oc.exe.xBAD varianta infiltrace Win32/Toolbar.Linkury.AM.gen potenciálně nechtěná aplikace
C:\FRST\Quarantine\C\Program Files\Common Files\ak4plgox.exe.xBAD varianta infiltrace Win32/Toolbar.Linkury.AI potenciálně nechtěná aplikace
C:\FRST\Quarantine\C\Program Files\Common Files\box245sl.exe.xBAD Win32/Toolbar.Linkury.AE potenciálně nechtěná aplikace
C:\FRST\Quarantine\C\Program Files\Common Files\ccjjwkjc.exe.xBAD varianta infiltrace Win32/Toolbar.Linkury.AJ potenciálně nechtěná aplikace
C:\FRST\Quarantine\C\Program Files\Common Files\cwal4sh3.exe.xBAD varianta infiltrace Win32/Toolbar.Linkury.AC potenciálně nechtěná aplikace
C:\FRST\Quarantine\C\Program Files\Common Files\dxkrp20l.exe.xBAD varianta infiltrace Win32/Toolbar.Linkury.AI potenciálně nechtěná aplikace
C:\FRST\Quarantine\C\Program Files\Common Files\edtopeeq.exe.xBAD varianta infiltrace Win32/Toolbar.Linkury.AH potenciálně nechtěná aplikace
C:\FRST\Quarantine\C\Program Files\Common Files\femfic1x.exe.xBAD varianta infiltrace Win32/Toolbar.Linkury.AD potenciálně nechtěná aplikace
C:\FRST\Quarantine\C\Program Files\Common Files\fqbgdyeo.exe.xBAD Win32/Toolbar.Linkury.AE potenciálně nechtěná aplikace
C:\FRST\Quarantine\C\Program Files\Common Files\fzzyt2bh.exe.xBAD varianta infiltrace Win32/Toolbar.Linkury.AH potenciálně nechtěná aplikace
C:\FRST\Quarantine\C\Program Files\Common Files\hmh0dy0z.exe.xBAD varianta infiltrace Win32/Toolbar.Linkury.AC potenciálně nechtěná aplikace
C:\FRST\Quarantine\C\Program Files\Common Files\i1u2btob.exe.xBAD Win32/Toolbar.Linkury.AE potenciálně nechtěná aplikace
C:\FRST\Quarantine\C\Program Files\Common Files\i24oo3wc.exe.xBAD varianta infiltrace Win32/Toolbar.Linkury.AC potenciálně nechtěná aplikace
C:\FRST\Quarantine\C\Program Files\Common Files\ifl2esnr.exe.xBAD varianta infiltrace Win32/Toolbar.Linkury.AJ potenciálně nechtěná aplikace
C:\FRST\Quarantine\C\Program Files\Common Files\il01xa0m.exe.xBAD varianta infiltrace Win32/Toolbar.Linkury.AH potenciálně nechtěná aplikace
C:\FRST\Quarantine\C\Program Files\Common Files\in0uxazu.exe.xBAD varianta infiltrace Win32/Toolbar.Linkury.AJ potenciálně nechtěná aplikace
C:\FRST\Quarantine\C\Program Files\Common Files\iw1zjmpz.exe.xBAD Win32/Toolbar.Linkury.AD potenciálně nechtěná aplikace
C:\FRST\Quarantine\C\Program Files\Common Files\k54sj0z3.exe.xBAD varianta infiltrace Win32/Toolbar.Linkury.AG potenciálně nechtěná aplikace
C:\FRST\Quarantine\C\Program Files\Common Files\miiyzbya.exe.xBAD varianta infiltrace Win32/Toolbar.Linkury.AI potenciálně nechtěná aplikace
C:\FRST\Quarantine\C\Program Files\Common Files\n34r25yh.exe.xBAD varianta infiltrace Win32/Toolbar.Linkury.AH potenciálně nechtěná aplikace
C:\FRST\Quarantine\C\Program Files\Common Files\n3keeb2a.exe.xBAD varianta infiltrace Win32/Toolbar.Linkury.AG potenciálně nechtěná aplikace
C:\FRST\Quarantine\C\Program Files\Common Files\odfxo124.exe.xBAD varianta infiltrace Win32/Toolbar.Linkury.AI potenciálně nechtěná aplikace
C:\FRST\Quarantine\C\Program Files\Common Files\pasitm4z.exe.xBAD varianta infiltrace Win32/Toolbar.Linkury.AM.gen potenciálně nechtěná aplikace
C:\FRST\Quarantine\C\Program Files\Common Files\q1vg24p3.exe.xBAD varianta infiltrace Win32/Toolbar.Linkury.AJ potenciálně nechtěná aplikace
C:\FRST\Quarantine\C\Program Files\Common Files\qczf4sn2.exe.xBAD Win32/Toolbar.Linkury.AE potenciálně nechtěná aplikace
C:\FRST\Quarantine\C\Program Files\Common Files\tmtgesrj.exe.xBAD varianta infiltrace Win32/Toolbar.Linkury.AM.gen potenciálně nechtěná aplikace
C:\FRST\Quarantine\C\Program Files\Common Files\ukyjy3fb.exe.xBAD varianta infiltrace Win32/Toolbar.Linkury.AC potenciálně nechtěná aplikace
C:\FRST\Quarantine\C\Program Files\Common Files\um4n1huw.exe.xBAD Win32/Toolbar.Linkury.AE potenciálně nechtěná aplikace
C:\FRST\Quarantine\C\Program Files\Common Files\vzqvrxtq.exe.xBAD varianta infiltrace Win32/Toolbar.Linkury.AH potenciálně nechtěná aplikace
C:\FRST\Quarantine\C\Program Files\Common Files\wz1uh45r.exe.xBAD varianta infiltrace Win32/Toolbar.Linkury.AC potenciálně nechtěná aplikace
C:\FRST\Quarantine\C\Program Files\Common Files\xe1jd04g.exe.xBAD varianta infiltrace Win32/Toolbar.Linkury.AH potenciálně nechtěná aplikace
C:\FRST\Quarantine\C\Program Files\Common Files\xjwhbx45.exe.xBAD varianta infiltrace Win32/Toolbar.Linkury.AD potenciálně nechtěná aplikace
C:\FRST\Quarantine\C\Program Files\Drowotywervught\cksControls.dll varianta infiltrace Win32/Adware.ELEX.CP.gen aplikace
C:\FRST\Quarantine\C\Program Files\Drowotywervught\CrashReport.dll varianta infiltrace Win32/Adware.ELEX.CX aplikace
C:\FRST\Quarantine\C\Program Files\Drowotywervught\Release_6607.dll varianta infiltrace Win32/Adware.ELEX.CW aplikace
C:\FRST\Quarantine\C\Program Files\Drowotywervught\_ALLOWDEL_294a7ff\Archer.dll varianta infiltrace Win32/Adware.ELEX.DA aplikace
C:\FRST\Quarantine\C\Program Files\Drowotywervught\_ALLOWDEL_294a7ff\ClearLog.dll varianta infiltrace Win32/Adware.ELEX.BI aplikace
C:\FRST\Quarantine\C\Program Files\Drowotywervught\_ALLOWDEL_294a7ff\de_svr.exe varianta infiltrace Win32/Adware.ELEX.CH aplikace
C:\FRST\Quarantine\C\Program Files\Drowotywervught\_ALLOWDEL_294a7ff\Gubed.exe varianta infiltrace Win32/Adware.ELEX.CR aplikace
C:\FRST\Quarantine\C\Program Files\Drowotywervught\_ALLOWDEL_294a7ff\Lancer.dll varianta infiltrace Win32/Adware.ELEX.DB aplikace
C:\FRST\Quarantine\C\Program Files\Drowotywervught\_ALLOWDEL_294a7ff\regkey.exe varianta infiltrace Win32/ELEX.KE potenciálně nechtěná aplikace
C:\FRST\Quarantine\C\Program Files\Drowotywervught\_ALLOWDEL_294a7ff\WinSAP.dll varianta infiltrace Win32/Adware.ELEX.FW aplikace
C:\FRST\Quarantine\C\Program Files\Firefox\bin\FirefoxUpdate.exe Win32/Adware.ELEX.IB aplikace
C:\FRST\Quarantine\C\Windows\system32\{82D33A6B-D655-45BA-8E60-AF0661A9601F}\_ALLOWDEL_6qm\co.tmp varianta infiltrace Win32/Adware.ELEX.HJ aplikace
C:\Program Files\Paradox Interactive\Crusader Kings II The Reaper's Due\steam_api.dll varianta infiltrace Win32/Packed.VMProtect.ABO trojský kůň
C:\Program Files (x86)\BrowseToSave\uninstall.exe Win32/SProtector.B potenciálně nechtěná aplikace
C:\Program Files (x86)\Conduit\Community Alerts\Alert.dll Win32/Toolbar.Conduit.Y potenciálně nechtěná aplikace
C:\Program Files (x86)\DAEMON Tools Pro\DTCommonRes.dll varianta infiltrace Win32/HackTool.Crack.DM trojský kůň
C:\Program Files (x86)\FilesFrog Update Checker\update_checker.exe Win32/Somoto.D potenciálně nechtěná aplikace
C:\Program Files (x86)\MagniPic\uninstall.exe Win32/SProtector.B potenciálně nechtěná aplikace
C:\Program Files (x86)\Minibar\Minibar.dll Win32/Somoto.O potenciálně nechtěná aplikace
C:\Program Files (x86)\Movies Toolbar\SafetyNut\del_DM_LL_nstE30B.dll Win32/Toolbar.SearchSuite.F potenciálně nechtěná aplikace
C:\Program Files (x86)\Movies Toolbar\SafetyNut\del_DM_LL_nsv187B.dll Win32/Toolbar.SearchSuite.F potenciálně nechtěná aplikace
C:\Program Files (x86)\Movies Toolbar\SafetyNut\del_DM_LL_nsv51D5.dll Win32/Toolbar.SearchSuite.F potenciálně nechtěná aplikace
C:\Program Files (x86)\Movies Toolbar\SafetyNut\del_DM_LL_nsv8469.dll Win32/Toolbar.SearchSuite.F potenciálně nechtěná aplikace
C:\Program Files (x86)\Movies Toolbar\SafetyNut\Internet Explorer Settings.exe varianta infiltrace Win32/Toolbar.SearchSuite.Q potenciálně nechtěná aplikace
C:\Program Files (x86)\Movies Toolbar\SafetyNut\safetycrt.dll Win32/Toolbar.SearchSuite.F potenciálně nechtěná aplikace
C:\Program Files (x86)\Movies Toolbar\SafetyNut\safetyldr.dll varianta infiltrace Win32/Toolbar.SearchSuite.C potenciálně nechtěná aplikace
C:\Program Files (x86)\Movies Toolbar\SafetyNut\safetyldr_u.dll varianta infiltrace Win32/Toolbar.SearchSuite.C potenciálně nechtěná aplikace
C:\Program Files (x86)\Movies Toolbar\SafetyNut\safetynut.dll varianta infiltrace Win32/Toolbar.SearchSuite.Q potenciálně nechtěná aplikace
C:\Program Files (x86)\Movies Toolbar\SafetyNut\SafetyNutManager.exe varianta infiltrace Win32/Toolbar.SearchSuite.Q potenciálně nechtěná aplikace
C:\Program Files (x86)\Movies Toolbar\SafetyNut\safetynut_ie.dll varianta infiltrace Win32/Toolbar.SearchSuite.Q potenciálně nechtěná aplikace
C:\Program Files (x86)\Movies Toolbar\SafetyNut\Uninstall.exe varianta infiltrace Win32/Toolbar.SearchSuite.AA.gen potenciálně nechtěná aplikace
C:\Program Files (x86)\Movies Toolbar\SafetyNut\SRTOOL~1\IE\dtUser.exe varianta infiltrace Win32/Toolbar.Visicom.C potenciálně nechtěná aplikace
C:\Program Files (x86)\Movies Toolbar\SafetyNut\SRTOOL~1\IE\__searchresultsDx.dll varianta infiltrace Win32/Toolbar.Visicom.B potenciálně nechtěná aplikace
C:\Program Files (x86)\Movies Toolbar\SafetyNut\SRTOOL~1\IE\__searchresultstb.dll varianta infiltrace Win32/Toolbar.Visicom.A potenciálně nechtěná aplikace
C:\Program Files (x86)\Movies Toolbar\SafetyNut\x64\del_DM_LL_nsq71B2.dll varianta infiltrace Win64/Toolbar.SearchSuite.A potenciálně nechtěná aplikace
C:\Program Files (x86)\Movies Toolbar\SafetyNut\x64\del_DM_LL_nsv187B.dll varianta infiltrace Win64/Toolbar.SearchSuite.A potenciálně nechtěná aplikace
C:\Program Files (x86)\Movies Toolbar\SafetyNut\x64\del_DM_LL_nsv8469.dll varianta infiltrace Win64/Toolbar.SearchSuite.A potenciálně nechtěná aplikace
C:\Program Files (x86)\Movies Toolbar\SafetyNut\x64\Internet Explorer Settings.exe varianta infiltrace Win32/Toolbar.SearchSuite.Q potenciálně nechtěná aplikace
C:\Program Files (x86)\Movies Toolbar\SafetyNut\x64\safetycrt.dll varianta infiltrace Win64/Toolbar.SearchSuite.A potenciálně nechtěná aplikace
C:\Program Files (x86)\Movies Toolbar\SafetyNut\x64\safetyldr.dll varianta infiltrace Win64/Toolbar.SearchSuite.A potenciálně nechtěná aplikace
C:\Program Files (x86)\Movies Toolbar\SafetyNut\x64\safetyldr_u.dll varianta infiltrace Win64/Toolbar.SearchSuite.A potenciálně nechtěná aplikace
C:\Program Files (x86)\Movies Toolbar\SafetyNut\x64\safetynut.dll varianta infiltrace Win64/Toolbar.SearchSuite.A potenciálně nechtěná aplikace
C:\Program Files (x86)\Movies Toolbar\SafetyNut\x64\safetynut_ie.dll varianta infiltrace Win64/Toolbar.SearchSuite.A potenciálně nechtěná aplikace
C:\Program Files (x86)\Optimizer Pro\OptimizerPro.exe varianta infiltrace Win32/SpeedingUpMyPC.O aplikace
C:\Program Files (x86)\Optimizer Pro\OptProCrash_x64.dll varianta infiltrace Win64/SProtector.B potenciálně nechtěná aplikace
C:\Program Files (x86)\Optimizer Pro\OptProGuard.exe varianta infiltrace Win32/Adware.SpeedingUpMyPC.X aplikace
C:\Program Files (x86)\Optimizer Pro\OptProLauncher.exe varianta infiltrace Win32/AdWare.SpeedingUpMyPC.D aplikace
C:\Program Files (x86)\Optimizer Pro\OptProReminder.exe varianta infiltrace Win32/Adware.SpeedingUpMyPC.V aplikace
C:\Program Files (x86)\Optimizer Pro\OptProSchedule.exe varianta infiltrace Win32/Adware.SpeedingUpMyPC.AL aplikace
C:\Program Files (x86)\Optimizer Pro\OptProSmartScan.exe varianta infiltrace Win32/Adware.SpeedingUpMyPC.C aplikace
C:\Program Files (x86)\Optimizer Pro\OptProStart.exe varianta infiltrace Win32/Adware.SpeedingUpMyPC.AG aplikace
C:\Program Files (x86)\Optimizer Pro\OptProUninstaller.exe varianta infiltrace Win32/Adware.SpeedingUpMyPC.AL aplikace
C:\Program Files (x86)\RelevantKnowledge\rlls.dll varianta infiltrace Win32/Adware.RK aplikace
C:\Program Files (x86)\RelevantKnowledge\rlls64.dll varianta infiltrace Win64/Adware.RK.A aplikace
C:\Program Files (x86)\RelevantKnowledge\rlservice.exe varianta infiltrace Win32/Adware.RK aplikace
C:\Program Files (x86)\RelevantKnowledge\rlvknlg32.exe varianta infiltrace Win32/Adware.RK.AV aplikace
C:\Program Files (x86)\RelevantKnowledge\rlvknlg64.exe varianta infiltrace Win64/Adware.RK.A aplikace
C:\Program Files (x86)\SearchNewTab\4Er0.dll varianta infiltrace Win32/AdWare.MultiPlug.N aplikace
C:\Program Files (x86)\SearchNewTab\4Er0.x64.dll varianta infiltrace Win64/Adware.MultiPlug.A aplikace
C:\Program Files (x86)\Sk-Enhancer\uninstall.exe varianta infiltrace Win32/SProtector.B potenciálně nechtěná aplikace
C:\Program Files (x86)\SoftwareUpdater\AppsUpdater.exe varianta infiltrace MSIL/Vittalia.C potenciálně nechtěná aplikace
C:\Program Files (x86)\SoftwareUpdater\KeyGen.dll Win32/Vittalia.K potenciálně nechtěná aplikace
C:\Program Files (x86)\SoftwareUpdater\uninstall.exe varianta infiltrace Win32/ToolkitOffers.A potenciálně nechtěná aplikace
C:\Program Files (x86)\SoftwareUpdater\UpdaterService.exe varianta infiltrace MSIL/Vittalia.B potenciálně nechtěná aplikace
C:\Program Files (x86)\ss helper\uninstall.exe varianta infiltrace Win32/SProtector.B potenciálně nechtěná aplikace
C:\Program Files (x86)\Ss.Helper\uninstall.exe varianta infiltrace Win32/SProtector.B potenciálně nechtěná aplikace
C:\Program Files (x86)\surrf ande KEep\b.dll varianta infiltrace Win32/AdWare.MultiPlug.N aplikace
C:\Program Files (x86)\surrf ande KEep\b.x64.dll varianta infiltrace Win64/Adware.MultiPlug.A aplikace
C:\Program Files (x86)\suurf aNid keep\O_bN.dll varianta infiltrace Win32/AdWare.MultiPlug.N aplikace
C:\Program Files (x86)\suurf aNid keep\O_bN.x64.dll varianta infiltrace Win64/Adware.MultiPlug.A aplikace
C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\ubiorbitapi_r2.dll varianta infiltrace Win32/Packed.VMProtect.AAA trojský kůň
C:\Program Files (x86)\uTorrentControl_v2\ldrtbuTor.dll varianta infiltrace Win32/Toolbar.Conduit.P potenciálně nechtěná aplikace
C:\Program Files (x86)\uTorrentControl_v2\prxtbuTor.dll Win32/Toolbar.Conduit.O potenciálně nechtěná aplikace
C:\Program Files (x86)\uTorrentControl_v2\tbuTor.dll varianta infiltrace Win32/Toolbar.Conduit.P potenciálně nechtěná aplikace
C:\Program Files (x86)\uTorrentControl_v2\uninstall.exe varianta infiltrace Win32/Toolbar.Conduit.AR potenciálně nechtěná aplikace
C:\Program Files (x86)\uTorrentControl_v2\uTorrentControl_v2ToolbarHelper.exe Win32/Toolbar.Conduit.Q potenciálně nechtěná aplikace
C:\Program Files (x86)\WebSearch\uninstall.exe Win32/SProtector.B potenciálně nechtěná aplikace
C:\Program Files (x86)\WxDownload\uninstall.exe varianta infiltrace Win32/SProtector.B potenciálně nechtěná aplikace
C:\Program Files (x86)\Yontoo\OptChrome.exe varianta infiltrace Win32/Adware.Yontoo.G aplikace
C:\Program Files (x86)\Yontoo\Y2Desktop.Updater.exe Win32/AdWare.Yontoo.F aplikace
C:\Program Files (x86)\YoutubeAdblocker\GQ.x64.dll varianta infiltrace Win64/Adware.MultiPlug.A aplikace
C:\Program Files (x86)\ZoomEx\uninstall.exe varianta infiltrace Win32/SProtector.B potenciálně nechtěná aplikace
C:\ProgramData\Microsoft\Phone Tools\CoreCon\12.0\1042\NonSDKAddonLangVer.dll varianta infiltrace Win32/Adware.ELEX.EJ aplikace
C:\ProgramData\Viafresh\Geostock.dll varianta infiltrace Win32/Toolbar.Linkury.Y potenciálně nechtěná aplikace
C:\ProgramData\Viafresh\Joyfix.dll varianta infiltrace Win64/Toolbar.Linkury.M potenciálně nechtěná aplikace
C:\ProgramData\Viafresh\Keytom.exe varianta infiltrace Win32/Toolbar.Linkury.AF potenciálně nechtěná aplikace
C:\ProgramData\Viafresh\StrongAir.exe varianta infiltrace Win64/Toolbar.Linkury.I potenciálně nechtěná aplikace
C:\ProgramData\Viafresh\StrongQuadstock.dll varianta infiltrace Win64/Toolbar.Linkury.M potenciálně nechtěná aplikace
C:\ProgramData\Viafresh\Viafresh.exe varianta infiltrace Win32/Toolbar.Linkury.AC potenciálně nechtěná aplikace
C:\ProgramData\Viafresh\Zotity.dll varianta infiltrace Win32/Toolbar.Linkury.Y potenciálně nechtěná aplikace
C:\Qoobox\Quarantine\C\ProgramData\adobe\conhost.exe.vir BAT/CoinMiner.GS trojský kůň
C:\Qoobox\Quarantine\C\ProgramData\adobe\explorer.exe.vir BAT/TrojanDownloader.Agent.NGC trojský kůň
C:\Qoobox\Quarantine\C\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\content.js.vir JS/Chromex.Agent.L trojský kůň
C:\Qoobox\Quarantine\C\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\DJSs.js.vir JS/Kryptik.ATB trojský kůň
C:\Qoobox\Quarantine\C\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\content.js.vir JS/Chromex.Agent.L trojský kůň
C:\Qoobox\Quarantine\C\Users\Administrator\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\MVXl.js.vir JS/Kryptik.ATB trojský kůň
C:\Qoobox\Quarantine\C\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\content.js.vir JS/Chromex.Agent.L trojský kůň
C:\Qoobox\Quarantine\C\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\DJSs.js.vir JS/Kryptik.ATB trojský kůň
C:\Qoobox\Quarantine\C\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\content.js.vir JS/Chromex.Agent.L trojský kůň
C:\Qoobox\Quarantine\C\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\MVXl.js.vir JS/Kryptik.ATB trojský kůň
C:\Qoobox\Quarantine\C\Users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\content.js.vir JS/Chromex.Agent.L trojský kůň
C:\Qoobox\Quarantine\C\Users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\DJSs.js.vir JS/Kryptik.ATB trojský kůň
C:\Qoobox\Quarantine\C\Users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\content.js.vir JS/Chromex.Agent.L trojský kůň
C:\Qoobox\Quarantine\C\Users\Administrator\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\MVXl.js.vir JS/Kryptik.ATB trojský kůň
C:\Qoobox\Quarantine\C\Users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\content.js.vir JS/Chromex.Agent.L trojský kůň
C:\Qoobox\Quarantine\C\Users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\DJSs.js.vir JS/Kryptik.ATB trojský kůň
C:\Qoobox\Quarantine\C\Users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\content.js.vir JS/Chromex.Agent.L trojský kůň
C:\Qoobox\Quarantine\C\Users\Administrator\AppData\Local\Torch\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\MVXl.js.vir JS/Kryptik.ATB trojský kůň
C:\Qoobox\Quarantine\C\Users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\content.js.vir JS/Chromex.Agent.L trojský kůň
C:\Qoobox\Quarantine\C\Users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\DJSs.js.vir JS/Kryptik.ATB trojský kůň
C:\Qoobox\Quarantine\C\Users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\content.js.vir JS/Chromex.Agent.L trojský kůň
C:\Qoobox\Quarantine\C\Users\Guest\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\MVXl.js.vir JS/Kryptik.ATB trojský kůň
C:\Qoobox\Quarantine\C\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\content.js.vir JS/Chromex.Agent.L trojský kůň
C:\Qoobox\Quarantine\C\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\DJSs.js.vir JS/Kryptik.ATB trojský kůň
C:\Qoobox\Quarantine\C\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\content.js.vir JS/Chromex.Agent.L trojský kůň
C:\Qoobox\Quarantine\C\Users\Guest\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\MVXl.js.vir JS/Kryptik.ATB trojský kůň
C:\Qoobox\Quarantine\C\Users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\content.js.vir JS/Chromex.Agent.L trojský kůň
C:\Qoobox\Quarantine\C\Users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\DJSs.js.vir JS/Kryptik.ATB trojský kůň
C:\Qoobox\Quarantine\C\Users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\content.js.vir JS/Chromex.Agent.L trojský kůň
C:\Qoobox\Quarantine\C\Users\Guest\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\MVXl.js.vir JS/Kryptik.ATB trojský kůň
C:\Qoobox\Quarantine\C\Users\Guest\AppData\Local\Torch\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\content.js.vir JS/Chromex.Agent.L trojský kůň
C:\Qoobox\Quarantine\C\Users\Guest\AppData\Local\Torch\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\DJSs.js.vir JS/Kryptik.ATB trojský kůň
C:\Qoobox\Quarantine\C\Users\Guest\AppData\Local\Torch\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\content.js.vir JS/Chromex.Agent.L trojský kůň
C:\Qoobox\Quarantine\C\Users\Guest\AppData\Local\Torch\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\MVXl.js.vir JS/Kryptik.ATB trojský kůň
C:\Qoobox\Quarantine\C\Users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\content.js.vir JS/Chromex.Agent.L trojský kůň
C:\Qoobox\Quarantine\C\Users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\DJSs.js.vir JS/Kryptik.ATB trojský kůň
C:\Qoobox\Quarantine\C\Users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\content.js.vir JS/Chromex.Agent.L trojský kůň
C:\Qoobox\Quarantine\C\Users\HomeGroupUser$\AppData\Local\Comodo\Dragon\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\MVXl.js.vir JS/Kryptik.ATB trojský kůň
C:\Qoobox\Quarantine\C\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\content.js.vir JS/Chromex.Agent.L trojský kůň
C:\Qoobox\Quarantine\C\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\DJSs.js.vir JS/Kryptik.ATB trojský kůň
C:\Qoobox\Quarantine\C\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\content.js.vir JS/Chromex.Agent.L trojský kůň
C:\Qoobox\Quarantine\C\Users\HomeGroupUser$\AppData\Local\Google\Chrome\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\MVXl.js.vir JS/Kryptik.ATB trojský kůň
C:\Qoobox\Quarantine\C\Users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\content.js.vir JS/Chromex.Agent.L trojský kůň
C:\Qoobox\Quarantine\C\Users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\DJSs.js.vir JS/Kryptik.ATB trojský kůň
C:\Qoobox\Quarantine\C\Users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\content.js.vir JS/Chromex.Agent.L trojský kůň
C:\Qoobox\Quarantine\C\Users\HomeGroupUser$\AppData\Local\Google\Chrome SxS\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\MVXl.js.vir JS/Kryptik.ATB trojský kůň
C:\Qoobox\Quarantine\C\Users\HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\content.js.vir JS/Chromex.Agent.L trojský kůň
C:\Qoobox\Quarantine\C\Users\HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\gihecdmkdbidbaceiknlbajmmomnpeee\1.1\DJSs.js.vir JS/Kryptik.ATB trojský kůň
C:\Qoobox\Quarantine\C\Users\HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\content.js.vir JS/Chromex.Agent.L trojský kůň
C:\Qoobox\Quarantine\C\Users\HomeGroupUser$\AppData\Local\Torch\User Data\Default\Extensions\jpkandnmeoelnplgpbcdjdjmcahdbfpi\2.1\MVXl.js.vir JS/Kryptik.ATB trojský kůň
C:\smaz\Windows.old\ProgramData\InstallMate\MagniPic\_Setupx.dll varianta infiltrace Win32/InstalleRex.T potenciálně nechtěná aplikace
C:\smaz\Windows.old\ProgramData\InstallMate\OptimizerPro\Custom.dll Win32/InstalleRex.T potenciálně nechtěná aplikace
C:\smaz\Windows.old\ProgramData\InstallMate\ZoomEx\_Setupx.dll varianta infiltrace Win32/InstalleRex.T potenciálně nechtěná aplikace
C:\smaz\Windows.old\ProgramData\InstallMate\{1060B962-293C-9693-7478-611ECB839B94}\_Setupx.dll Win32/InstalleRex.T potenciálně nechtěná aplikace
C:\smaz\Windows.old\ProgramData\InstallMate\{1107AE6B-E440-46F3-A418-AC62CAE48C9D}\_Setupx.dll varianta infiltrace Win32/InstalleRex.T potenciálně nechtěná aplikace
C:\smaz\Windows.old\ProgramData\InstallMate\{20DBC573-D899-425A-A0B1-90BBFB38E785}\_Setupx.dll varianta infiltrace Win32/InstalleRex.T potenciálně nechtěná aplikace
C:\smaz\Windows.old\ProgramData\InstallMate\{3251529A-629F-4396-A17D-2ABDE9B2706C}\Custom.dll Win32/InstalleRex.L potenciálně nechtěná aplikace
C:\smaz\Windows.old\ProgramData\InstallMate\{34EAD934-16DB-4351-A1BA-5EF9EF09FBC2}\_Setupx.dll varianta infiltrace Win32/InstalleRex.T potenciálně nechtěná aplikace
C:\smaz\Windows.old\ProgramData\InstallMate\{3A999CD5-6FAD-4D7E-AF95-278FE17ABE23}\_Setupx.dll varianta infiltrace Win32/InstalleRex.T potenciálně nechtěná aplikace
C:\smaz\Windows.old\ProgramData\InstallMate\{71F00AEC-EA50-44C0-A62B-A272AA13281A}\Custom.dll varianta infiltrace Win32/InstalleRex.T potenciálně nechtěná aplikace
C:\smaz\Windows.old\ProgramData\InstallMate\{7EAFDD2A-88C4-4BA0-A94B-C0E6A54CFFDC}\Custom.dll varianta infiltrace Win32/InstalleRex.T potenciálně nechtěná aplikace
C:\smaz\Windows.old\ProgramData\InstallMate\{7EC76460-AC18-4F4D-ADA6-E43AA5244696}\Custom.dll Win32/InstalleRex.L potenciálně nechtěná aplikace
C:\smaz\Windows.old\ProgramData\InstallMate\{89B827C0-3C76-4488-A663-7454525B0536}\_Setupx.dll varianta infiltrace Win32/InstalleRex.T potenciálně nechtěná aplikace
C:\smaz\Windows.old\ProgramData\InstallMate\{AAFF0625-5086-44B6-A65D-18A4711C24D3}\_Setupx.dll varianta infiltrace Win32/InstalleRex.T potenciálně nechtěná aplikace
C:\smaz\Windows.old\ProgramData\InstallMate\{BB00E40E-502F-4D57-AFBC-180D60E3C6F8}\_Setupx.dll Win32/InstalleRex.T potenciálně nechtěná aplikace
C:\smaz\Windows.old\ProgramData\InstallMate\{C1302F0D-1ACD-477C-A597-52EF1AD30DFB}\Custom.dll Win32/InstalleRex.L potenciálně nechtěná aplikace
C:\smaz\Windows.old\ProgramData\InstallMate\{D5AB10E1-6658-4597-A77C-2E7A0E483217}\_Setupx.dll Win32/InstalleRex.T potenciálně nechtěná aplikace
C:\smaz\Windows.old\ProgramData\InstallMate\{E18655B9-4AA4-4147-A3AC-02863A65774F}\Custom.dll Win32/InstalleRex.L potenciálně nechtěná aplikace
C:\smaz\Windows.old\ProgramData\InstallMate\{E365FF3D-769D-4DEA-AF01-3EBF3886DDCB}\_Setupx.dll varianta infiltrace Win32/InstalleRex.T potenciálně nechtěná aplikace
C:\smaz\Windows.old\ProgramData\InstallMate\{F1A417DC-6D3E-4395-A17E-251C2A47352A}\Custom.dll varianta infiltrace Win32/InstalleRex.T potenciálně nechtěná aplikace
C:\smaz\Windows.old\ProgramData\InstallMate\{FC4E0758-6684-46FD-A416-2EA627AD25AE}\_Setupx.dll Win32/InstalleRex.T potenciálně nechtěná aplikace
C:\smaz\Windows.old\ProgramData\Tarma Installer\{361E80BE-388B-4270-BF54-A10C2B756504}\_Setupx.dll varianta infiltrace Win32/Adware.Yontoo.B aplikace
C:\smaz\Windows.old\ProgramData\Tarma Installer\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}\_Setupx.dll varianta infiltrace Win32/Adware.Yontoo.B aplikace
C:\smaz\Windows.old\Users\Uživatel\AppData\Local\Microsoft\Windows Mail\Stationery\Bears.jpg.vbs pravděpodobně varianta infiltrace VBS/LoveLetter.BC virus
C:\smaz\Windows.old\Users\Uživatel\AppData\Local\Microsoft\Windows Mail\Stationery\Blue_Gradient.jpg.vbs pravděpodobně varianta infiltrace VBS/LoveLetter.BC virus
C:\smaz\Windows.old\Users\Uživatel\AppData\Local\Microsoft\Windows Mail\Stationery\Garden.jpg.vbs pravděpodobně varianta infiltrace VBS/LoveLetter.BC virus
C:\smaz\Windows.old\Users\Uživatel\AppData\Local\Microsoft\Windows Mail\Stationery\GreenBubbles.jpg.vbs pravděpodobně varianta infiltrace VBS/LoveLetter.BC virus
C:\smaz\Windows.old\Users\Uživatel\AppData\Local\Microsoft\Windows Mail\Stationery\HandPrints.jpg.vbs pravděpodobně varianta infiltrace VBS/LoveLetter.BC virus
C:\smaz\Windows.old\Users\Uživatel\AppData\Local\Microsoft\Windows Mail\Stationery\Monet.jpg.vbs pravděpodobně varianta infiltrace VBS/LoveLetter.BC virus
C:\smaz\Windows.old\Users\Uživatel\AppData\Local\Microsoft\Windows Mail\Stationery\Notebook.jpg.vbs pravděpodobně varianta infiltrace VBS/LoveLetter.BC virus
C:\smaz\Windows.old\Users\Uživatel\AppData\Local\Microsoft\Windows Mail\Stationery\OrangeCircles.jpg.vbs pravděpodobně varianta infiltrace VBS/LoveLetter.BC virus
C:\smaz\Windows.old\Users\Uživatel\AppData\Local\Microsoft\Windows Mail\Stationery\Peacock.jpg.vbs pravděpodobně varianta infiltrace VBS/LoveLetter.BC virus
C:\smaz\Windows.old\Users\Uživatel\AppData\Local\Microsoft\Windows Mail\Stationery\Pine_Lumber.jpg.vbs pravděpodobně varianta infiltrace VBS/LoveLetter.BC virus
C:\smaz\Windows.old\Users\Uživatel\AppData\Local\Microsoft\Windows Mail\Stationery\Pretty_Peacock.jpg.vbs pravděpodobně varianta infiltrace VBS/LoveLetter.BC virus
C:\smaz\Windows.old\Users\Uživatel\AppData\Local\Microsoft\Windows Mail\Stationery\Roses.jpg.vbs pravděpodobně varianta infiltrace VBS/LoveLetter.BC virus
C:\smaz\Windows.old\Users\Uživatel\AppData\Local\Microsoft\Windows Mail\Stationery\Sand_Paper.jpg.vbs pravděpodobně varianta infiltrace VBS/LoveLetter.BC virus
C:\smaz\Windows.old\Users\Uživatel\AppData\Local\Microsoft\Windows Mail\Stationery\ShadesOfBlue.jpg.vbs pravděpodobně varianta infiltrace VBS/LoveLetter.BC virus
C:\smaz\Windows.old\Users\Uživatel\AppData\Local\Microsoft\Windows Mail\Stationery\Small_News.jpg.vbs pravděpodobně varianta infiltrace VBS/LoveLetter.BC virus
C:\smaz\Windows.old\Users\Uživatel\AppData\Local\Microsoft\Windows Mail\Stationery\SoftBlue.jpg.vbs pravděpodobně varianta infiltrace VBS/LoveLetter.BC virus
C:\smaz\Windows.old\Users\Uživatel\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg.vbs pravděpodobně varianta infiltrace VBS/LoveLetter.BC virus
C:\smaz\Windows.old\Users\Uživatel\AppData\Roaming\update_tc\update.exe varianta infiltrace Win32/CoinMiner.DJ trojský kůň,je v pořádku
C:\smaz\Windows.old\Windows\inf\msesqhws.vbe VBS/CoinMiner.AC trojský kůň
C:\smaz\Windows.old\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\LIXMVQOA\upgrade[2].cab varianta infiltrace Win32/Adware.OneStep.BZ aplikace
C:\smaz\Windows.old\Windows\SysWOW64\config\systemprofile\AppData\Local\Windows Internet Name Service\wins.exe varianta infiltrace Win32/Kryptik.BJHS trojský kůň
C:\SWSETUP\APP\Applications\Corel\WinZipTrial\16.0\src\winzip160.exe varianta infiltrace Win32/Systweak.L potenciálně nechtěná aplikace,varianta infiltrace Win32/Systweak.N potenciálně nechtěná aplikace
C:\SYSTEM.SAV\util\DelFLC.vbs pravděpodobně varianta infiltrace VBS/LoveLetter.BC virus
C:\Users\All Users\Microsoft\Phone Tools\CoreCon\12.0\1042\NonSDKAddonLangVer.dll varianta infiltrace Win32/Adware.ELEX.EJ aplikace
C:\Users\All Users\Viafresh\Geostock.dll varianta infiltrace Win32/Toolbar.Linkury.Y potenciálně nechtěná aplikace
C:\Users\All Users\Viafresh\Joyfix.dll varianta infiltrace Win64/Toolbar.Linkury.M potenciálně nechtěná aplikace
C:\Users\All Users\Viafresh\Keytom.exe varianta infiltrace Win32/Toolbar.Linkury.AF potenciálně nechtěná aplikace
C:\Users\All Users\Viafresh\StrongAir.exe varianta infiltrace Win64/Toolbar.Linkury.I potenciálně nechtěná aplikace
C:\Users\All Users\Viafresh\StrongQuadstock.dll varianta infiltrace Win64/Toolbar.Linkury.M potenciálně nechtěná aplikace
C:\Users\All Users\Viafresh\Viafresh.exe varianta infiltrace Win32/Toolbar.Linkury.AC potenciálně nechtěná aplikace
C:\Users\All Users\Viafresh\Zotity.dll varianta infiltrace Win32/Toolbar.Linkury.Y potenciálně nechtěná aplikace
C:\Users\s\AppData\Local\1\de_svr.exe varianta infiltrace Win32/Adware.ELEX.CH aplikace
C:\Users\s\AppData\Local\1\GubedZL.dll varianta infiltrace Win32/Adware.ELEX.DC aplikace
C:\Users\s\AppData\Local\1\yacqq.exe varianta infiltrace Win32/Obfuscated.NJZ trojský kůň
C:\Windows\Installer\5768a97.msi varianta infiltrace Win32/Adware.ELEX.EL aplikace
C:\Windows\Installer\df46d8f.msi více hrozeb,varianta infiltrace Win32/Adware.ELEX.CJ aplikace,varianta infiltrace Win32/Adware.ELEX.BY aplikace
C:\Windows\System32\tasks.dll varianta infiltrace Win32/Tasks.A potenciálně nechtěná aplikace
C:\Windows\System32\{9571F033-E27D-48CC-917F-4DC705F1B23A}\_ALLOWDEL_zzg\co.tmp varianta infiltrace Win32/Adware.ELEX.DF aplikace
C:\Windows\System32\{F18D63B5-F945-4736-825F-70129CBFE9C3}\_ALLOWDEL_6qm\co.tmp varianta infiltrace Win32/Adware.ELEX.DF aplikace

Re: POmaly beh pc

Napsal: 23 bře 2017 16:25
od altrok
Vyborne. Dejte prosim nove logy FRST.txt a Addition.txt (bez FRSTLauncheru) a vecer, jak dojdu domu, budeme pokracovat.

Re: POmaly beh pc

Napsal: 23 bře 2017 17:37
od jack68
Additional scan result of Farbar Recovery Scan Tool (x86) Version: 15-03-2017
Ran by s (23-03-2017 17:36:58)
Running from C:\Users\s\Desktop
Microsoft Windows 7 Professional Service Pack 1 (X86) (2014-01-12 09:40:13)
Boot Mode: Normal
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1732726701-269562743-775657971-500 - Administrator - Disabled)
Guest (S-1-5-21-1732726701-269562743-775657971-501 - Limited - Disabled)
HomeGroupUser$ (S-1-5-21-1732726701-269562743-775657971-1002 - Limited - Enabled)
s (S-1-5-21-1732726701-269562743-775657971-1012 - Administrator - Enabled) => C:\Users\s

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AS: Windows Defender (Enabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

==================== Installed Programs ======================

(Only the adware programs with "Hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

µTorrent (HKU\S-1-5-21-1732726701-269562743-775657971-1012\...\uTorrent) (Version: 3.4.9.43295 - BitTorrent Inc.)
Adobe Acrobat Reader DC - Czech (HKLM\...\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}) (Version: 15.023.20070 - Adobe Systems Incorporated)
Adobe Flash Player 25 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 25.0.0.127 - Adobe Systems Incorporated)
Adobe Flash Player 25 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 25.0.0.127 - Adobe Systems Incorporated)
Adobe Flash Player 25 PPAPI (HKLM\...\Adobe Flash Player PPAPI) (Version: 25.0.0.127 - Adobe Systems Incorporated)
Aktualizace NVIDIA 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
Battle.net (HKLM\...\Battle.net) (Version: - Blizzard Entertainment)
Canon Easy-PhotoPrint EX (HKLM\...\Easy-PhotoPrint EX) (Version: - )
Canon Easy-WebPrint EX (HKLM\...\Easy-WebPrint EX) (Version: 1.3.5.0 - Canon Inc.)
Canon MG5100 series MP Drivers (HKLM\...\{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_Canon_MG5100_series) (Version: - )
Canon MP Navigator EX 4.0 (HKLM\...\MP Navigator EX 4.0) (Version: - )
Canon My Printer (HKLM\...\CanonMyPrinter) (Version: - )
Canon Solution Menu EX (HKLM\...\CanonSolutionMenuEX) (Version: - )
DAEMON Tools Pro (HKLM\...\DAEMON Tools Pro) (Version: 5.2.0.0348 - DT Soft Ltd)
DivX Setup (HKLM\...\DivX Setup) (Version: 2.8.0.18 - DivX, LLC)
FEAR (HKLM\...\{2B653229-9854-4989-B780-D978F5F13EAB}) (Version: 1.00.0000 - Vivendi Universal Games, Inc.)
GeForce Experience NvStream Client Components (Version: 1.6.28 - NVIDIA Corporation) Hidden
Google Chrome (HKLM\...\Google Chrome) (Version: 57.0.2987.110 - Google Inc.)
Google Update Helper (Version: 1.3.32.7 - Google Inc.) Hidden
Hearthstone (HKLM\...\Hearthstone) (Version: - Blizzard Entertainment)
How to Survive - Storm Warning Edition (HKLM\...\How to Survive - Storm Warning Edition_R.G. Mechanics_is1) (Version: - R.G. Mechanics, markfiter)
IDT Audio (HKLM\...\{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}) (Version: 1.0.6395.0 - IDT)
Intel(R) Management Engine Components (HKLM\...\{65153EA5-8B6E-43B6-857B-C6E4FC25798A}) (Version: 8.0.0.1351 - Intel Corporation)
Intel® Trusted Connect Service Client (HKLM\...\{852F940A-BE93-4DF9-98E5-6F5FA7AFF3EE}) (Version: 1.23.216.0 - Intel Corporation)
Java 8 Update 121 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F32180121F0}) (Version: 8.0.1210.13 - Oracle Corporation)
Malwarebytes Anti-Malware verze 2.2.1.1043 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.2.1.1043 - Malwarebytes)
Microsoft .NET Framework 1.1 (HKLM\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft)
Microsoft .NET Framework 4.6.1 (čeština) (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1029) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft .NET Framework 4.6.1 (HKLM\...\{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033) (Version: 4.6.01055 - Microsoft Corporation)
Microsoft Games for Windows - LIVE Redistributable (HKLM\...\{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}) (Version: 3.5.92.0 - Microsoft Corporation)
Microsoft Games for Windows Marketplace (HKLM\...\{67F42018-F647-4D3C-BE62-F8CB4FE2FCD5}) (Version: 3.5.67.0 - Microsoft Corporation)
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170) (HKLM\...\{41785C66-90F2-40CE-8CB5-1C94BFC97280}) (Version: 3.5.30730.0 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 3 (SP3) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}) (Version: - Microsoft)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6612.1000 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.50905.0 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{837b34e3-7c30-493c-8f6a-2b0f04e2912c}) (Version: 8.0.59193 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}) (Version: 11.0.61030.0 - Microsoft Corporation)
Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.61030 (HKLM\...\{f0080ca2-80ae-4958-b6eb-e8fa916d744a}) (Version: 11.0.61030.0 - Корпорация Майкрософт)
Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501 (HKLM\...\{f65db027-aff3-4070-886a-0d87064aabb1}) (Version: 12.0.30501.0 - Microsoft Corporation)
Microsoft XNA Framework Redistributable 4.0 Refresh (HKLM\...\{D69C8EDE-BBC5-436B-8E0E-C5A6D311CF4F}) (Version: 4.0.30901.0 - Microsoft Corporation)
Minecraft (HKLM\...\{1C16BCA3-EBC1-49F6-8623-8FBFB9CCC872}) (Version: 1.0.3.0 - Mojang)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
MSXML 4.0 SP2 Parser and SDK (HKLM\...\{716E0306-8318-4364-8B8F-0CC4E9376BAC}) (Version: 4.20.9818.0 - Microsoft Corporation)
NVIDIA GeForce Experience 1.8.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 1.8.1 - NVIDIA Corporation)
NVIDIA Ovladač 3D Vision 332.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision) (Version: 332.21 - NVIDIA Corporation)
NVIDIA Ovladač HD audia 1.3.30.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver) (Version: 1.3.30.1 - NVIDIA Corporation)
NVIDIA Ovladač řídící jednotky 3D Vision 332.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB) (Version: 332.21 - NVIDIA Corporation)
NVIDIA Ovladače grafiky 332.21 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 332.21 - NVIDIA Corporation)
NVIDIA PhysX (HKLM\...\{80407BA7-7763-4395-AB98-5233F1B34E65}) (Version: 9.13.1220 - NVIDIA Corporation)
NVIDIA Virtual Audio 1.2.19 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver) (Version: 1.2.19 - NVIDIA Corporation)
Opera Stable 43.0.2442.991 (HKLM\...\Opera 43.0.2442.991) (Version: 43.0.2442.991 - Opera Software)
Ovládací panel NVIDIA 332.21 (Version: 332.21 - NVIDIA Corporation) Hidden
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 6.0.1.7487 - Realtek Semiconductor Corp.)
SHIELD Streaming (Version: 1.6.85 - NVIDIA Corporation) Hidden
Star Wars: The Old Republic (HKLM\...\{3B11D799-48E0-48ED-BFD7-EA655676D8BB}) (Version: 1.00 - Electronic Arts, Inc.)
swMSM (Version: 12.0.0.1 - Adobe Systems, Inc) Hidden
The Walking Dead Season 2 version 1.0 (HKLM\...\The Walking Dead Season 2_is1) (Version: 1.0 - GMT-MAX.ORG) <==== ATTENTION
Total Commander (Remove or Repair) (HKLM\...\Totalcmd) (Version: 9.0a - Ghisler Software GmbH)
Tropico 5 (HKLM\...\{25FE50A5-A5D4-4438-8D22-7F12E9977067}) (Version: 1.9 - SteveHood)
Update for 2007 Microsoft Office System (KB967642) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{C444285D-5E4F-48A4-91DD-47AAAA68E92D}) (Version: - Microsoft)
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0 - DivX, Inc) Hidden
Visual Studio 2012 x86 Redistributables (HKLM\...\{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}) (Version: 14.0.0.1 - AVG Technologies CZ, s.r.o.)
VLC media player (HKLM\...\VLC media player) (Version: 2.2.4 - VideoLAN)
Warface Launcher (Beta) (HKLM\...\{28D1723C-31C4-4A83-9799-DFFB3739026D}) (Version: 1.0.0 - Crytek GmbH)
WinRAR 5.01 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
World of Warcraft (HKLM\...\World of Warcraft) (Version: - Blizzard Entertainment)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

Task: {07F007D7-44B5-4EE9-93DF-AB707F8AD8F9} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe
Task: {44CA2046-3960-4751-B93B-6158A8BF0906} - System32\Tasks\Uninstaller_SkipUac_kuba => C:\Program Files\IObit\IObit Uninstaller\IObitUninstaler.exe
Task: {51A9D80D-F356-4BD0-ACDF-EF7431A15C2F} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files\Google\Update\GoogleUpdate.exe [2017-03-22] (Google Inc.)
Task: {A3700F35-4D33-4E36-B8E9-1F50786A7BA3} - System32\Tasks\Bitdefender Update Product Data_A17FD818A96743FAB28AC221BEB4B2C8 => C:\Program Files\Bitdefender\Bitdefender 2015\bdproductdata.exe
Task: {A4BF0AEE-74B6-4D0E-8B2F-B27FA5EB161A} - System32\Tasks\Adobe Flash Player Updater => C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2017-03-22] (Adobe Systems Incorporated)
Task: {C7294865-ADB3-49DB-9734-CE2A0A94DCE7} - System32\Tasks\Adobe Acrobat Update Task => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2016-12-19] (Adobe Systems Incorporated)
Task: {E01AB26A-B7CD-4475-A405-E6B5AA46B23C} - System32\Tasks\Adobe Flash Player PPAPI Notifier => C:\Windows\system32\Macromed\Flash\FlashUtil32_25_0_0_127_pepper.exe [2017-03-22] (Adobe Systems Incorporated)
Task: {E0723D5F-2D98-42C2-BB95-01284CB5C9E0} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2017-01-28] (AVAST Software)
Task: {E3CF25F6-052F-4FD2-AC82-6A72A4A87F50} - System32\Tasks\Opera scheduled Autoupdate 1403472431 => C:\Program Files\Opera\launcher.exe [2017-02-20] (Opera Software)
Task: {F23B902E-7289-4CF9-8885-D526C3038DED} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files\Google\Update\GoogleUpdate.exe [2017-03-22] (Google Inc.)

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)


==================== Shortcuts =============================

(The entries could be listed to be restored or removed.)

==================== Loaded Modules (Whitelisted) ==============

2014-01-12 11:28 - 2013-12-19 19:37 - 00107296 _____ () C:\Program Files\NVIDIA Corporation\Display\NvSmartMax.dll
2014-01-12 11:07 - 2012-04-11 05:10 - 00128280 _____ () C:\Program Files\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
2014-01-19 15:50 - 2016-05-29 11:08 - 00076152 _____ () C:\Windows\system32\PnkBstrA.exe
2014-01-12 11:07 - 2012-04-11 05:13 - 01198872 _____ () C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\ACE.dll
2016-03-13 13:56 - 2016-03-13 13:56 - 00002560 _____ () C:\Program Files\DAEMON Tools Pro\MSIMG32.dll
2017-03-22 19:09 - 2017-03-16 04:21 - 02187096 _____ () C:\Program Files\Google\Chrome\Application\57.0.2987.110\libglesv2.dll
2017-03-22 19:09 - 2017-03-16 04:21 - 00086360 _____ () C:\Program Files\Google\Chrome\Application\57.0.2987.110\libegl.dll

==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\ProgramData:NT [40]
AlternateDataStreams: C:\ProgramData:NT2 [346]
AlternateDataStreams: C:\Users\3:Heroes & Generals [38]
AlternateDataStreams: C:\Users\All Users:NT [40]
AlternateDataStreams: C:\Users\All Users:NT2 [346]
AlternateDataStreams: C:\Users\3\AppData\Roaming:NT2 [346]
AlternateDataStreams: C:\ProgramData\Application Data:NT [40]
AlternateDataStreams: C:\ProgramData\Application Data:NT2 [346]
AlternateDataStreams: C:\ProgramData\Data aplikací:NT [40]
AlternateDataStreams: C:\ProgramData\Data aplikací:NT2 [346]
AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT [40]
AlternateDataStreams: C:\ProgramData\MTA San Andreas All:NT2 [346]

==================== Safe Mode (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The "AlternateShell" value will be restored.)


==================== Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE trusted site: HKU\.DEFAULT\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\.DEFAULT\...\freerealms.com -> freerealms.com
IE trusted site: HKU\.DEFAULT\...\soe.com -> soe.com
IE trusted site: HKU\.DEFAULT\...\sony.com -> sony.com
IE trusted site: HKU\S-1-5-19\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-19\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-19\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-19\...\sony.com -> sony.com
IE trusted site: HKU\S-1-5-20\...\clonewarsadventures.com -> clonewarsadventures.com
IE trusted site: HKU\S-1-5-20\...\freerealms.com -> freerealms.com
IE trusted site: HKU\S-1-5-20\...\soe.com -> soe.com
IE trusted site: HKU\S-1-5-20\...\sony.com -> sony.com

==================== Hosts content: ===============================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-07-14 03:04 - 2017-03-23 11:40 - 00000027 ____A C:\Windows\system32\Drivers\etc\hosts

127.0.0.1 localhost

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1732726701-269562743-775657971-1012\Control Panel\Desktop\\Wallpaper -> C:\Users\s\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jpg
DNS Servers: 85.132.180.62
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System => (ConsentPromptBehaviorAdmin: 5) (ConsentPromptBehaviorUser: 3) (EnableLUA: 1)
Windows Firewall is enabled.

==================== MSCONFIG/TASK MANAGER disabled items ==

MSCONFIG\startupfolder: C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk => C:\Windows\pss\McAfee Security Scan Plus.lnk.CommonStartup
MSCONFIG\startupfolder: C:^Users^kuba^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk => C:\Windows\pss\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk.Startup
MSCONFIG\startupreg: Adobe RGB Color => C:\ProgramData\Adobe\color.vbs
MSCONFIG\startupreg: BeatsOSDApp => C:\Program Files\IDT\WDM\beats.exe
MSCONFIG\startupreg: CanonMyPrinter => C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
MSCONFIG\startupreg: CanonSolutionMenuEx => C:\Program Files\Canon\Solution Menu EX\CNSEMAIN.EXE /logon
MSCONFIG\startupreg: cz.seznam.software.szndesktop => "C:\Users\s\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
MSCONFIG\startupreg: DAEMON Tools Pro Agent => "C:\Program Files\DAEMON Tools Pro\DTAgent.exe" -autorun
MSCONFIG\startupreg: GrooveMonitor => "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
MSCONFIG\startupreg: MouseDriver => TiltWheelMouse.exe
MSCONFIG\startupreg: NvBackend => "C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe"
MSCONFIG\startupreg: ShadowPlay => C:\Windows\system32\rundll32.exe C:\Windows\system32\nvspcap.dll,ShadowPlayOnSystemStart
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: SysTrayApp => C:\Program Files\IDT\WDM\sttray.exe
MSCONFIG\startupreg: USB3MON => "C:\Program Files\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
MSCONFIG\startupreg: uTorrent => "C:\Users\s\AppData\Roaming\uTorrent\uTorrent.exe" /MINIMIZED

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

FirewallRules: [SPPSVC-In-TCP] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [SPPSVC-In-TCP-NoScope] => (Allow) %SystemRoot%\system32\sppsvc.exe
FirewallRules: [{74449505-4E67-4A2F-BB6A-F8C074D39A73}] => (Allow) C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
FirewallRules: [{FCE62D27-D9C5-4951-AAC9-FAF2FBFA0B83}] => (Allow) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{321EDBF0-966E-4645-AEA9-D7FBD875FF6A}] => (Allow) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{3C7A582B-F76F-4E0D-AB9F-A835C0613442}] => (Allow) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{88F8F296-0C0D-4231-A807-DB81CEBC39A2}] => (Allow) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
FirewallRules: [{BD22B655-345C-4A68-8426-41AB111B6941}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{2ACC8132-595E-428F-A3C2-B30E6F7978AB}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
FirewallRules: [{3E22AFCD-7CD1-4CC6-AD4B-EEA642272C98}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [{9D22184C-0F00-4155-B25C-ED0F4D44BC61}] => (Allow) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamer.exe
FirewallRules: [TCP Query User{3956772A-24CE-408B-BE42-F2D7939E8C32}C:\program files\call of duty - world at war\codwaw.exe] => (Block) C:\program files\call of duty - world at war\codwaw.exe
FirewallRules: [UDP Query User{0F191F7D-1AE9-46DD-8E60-08D3F260A126}C:\program files\call of duty - world at war\codwaw.exe] => (Block) C:\program files\call of duty - world at war\codwaw.exe
FirewallRules: [TCP Query User{CC29DA9D-F351-49FF-B7C2-B1406493130D}C:\program files\call of duty - world at war\codwaw.exe] => (Block) C:\program files\call of duty - world at war\codwaw.exe
FirewallRules: [UDP Query User{1173410C-8F37-46DB-B1F6-D4900C18CF9A}C:\program files\call of duty - world at war\codwaw.exe] => (Block) C:\program files\call of duty - world at war\codwaw.exe
FirewallRules: [{9EE945E8-95F8-4E2D-93B9-F877DD284896}] => (Allow) LPort=80
FirewallRules: [{0EA2047A-AC15-41F8-ADF0-1D24A3CA88FC}] => (Allow) LPort=443
FirewallRules: [{27480D6D-F796-4881-8E12-0FC027A1DEFE}] => (Allow) LPort=20010
FirewallRules: [{A440F035-5910-4FB8-B9B2-B8394A0C4B5D}] => (Allow) LPort=3478
FirewallRules: [{8F956054-649B-4B5E-A5F4-6927E498128E}] => (Allow) LPort=7850
FirewallRules: [{6663A261-E40D-4855-89BD-7FAA32A7FF6E}] => (Allow) LPort=7852
FirewallRules: [{56320A42-A64A-4DAC-AC5C-C71B969B1D72}] => (Allow) LPort=7853
FirewallRules: [{034C959B-9AD1-4A36-A392-46C94287A865}] => (Allow) LPort=27022
FirewallRules: [{5D44D053-7055-49E1-8518-FF17567EFFDB}] => (Allow) LPort=6881
FirewallRules: [{A9DFAD9F-C654-4C86-A7BC-5839D6D516C8}] => (Allow) LPort=33333
FirewallRules: [{00DC5F49-6AF9-4978-9F9D-FDCEB327C12B}] => (Allow) LPort=20443
FirewallRules: [{512B0444-B1BD-4326-B3FB-231833F077C3}] => (Allow) LPort=8090
FirewallRules: [{8B85F6F7-A48A-40D6-8E56-2F6D77E652D6}] => (Allow) C:\Windows\System32\PnkBstrA.exe
FirewallRules: [{0007119E-8B14-4F99-BCD5-489060108CDA}] => (Allow) C:\Windows\System32\PnkBstrA.exe
FirewallRules: [{6F6301F4-78A2-4BA7-8A7D-A9639EA3B735}] => (Allow) C:\Windows\System32\PnkBstrB.exe
FirewallRules: [{AB36C587-B153-47CB-973C-9FBEFAD22BF9}] => (Allow) C:\Windows\System32\PnkBstrB.exe
FirewallRules: [{D4230777-A227-4D0A-BE21-788B39250A17}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{59BFC6A3-A4F0-4928-8CCC-2BE63AD51214}] => (Allow) C:\Program Files (x86)\Steam\Steam.exe
FirewallRules: [{A8D357AD-6C45-4774-A678-618D8B0DA13E}] => (Allow) C:\Program Files\Battle.net\Battle.net.exe
FirewallRules: [{E38C99E0-8F3A-44BF-BDEF-3D5FA5734BA7}] => (Allow) C:\Program Files\Battle.net\Battle.net.exe
FirewallRules: [{050528B6-9624-4A77-A46E-37CDE1722C8C}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe
FirewallRules: [{86FA192D-418C-4548-A8CF-1E6DA38728C1}] => (Allow) C:\ProgramData\Battle.net\Agent\Agent.beta.2737\Agent.exe
FirewallRules: [{193E5A9F-F55D-4051-A80D-C7112E91FBA8}] => (Allow) LPort=56290
FirewallRules: [{4C7E3B38-272A-4371-A2F6-173452C17158}] => (Allow) LPort=56290
FirewallRules: [{CAE30620-98C0-4A0D-A47D-D778D4DB0DD4}] => (Allow) LPort=56290
FirewallRules: [{DEB3AFEB-B09E-4472-8C36-C15B3D79CA3A}] => (Allow) LPort=56290
FirewallRules: [TCP Query User{51A5E0DB-A4F2-4ED4-9AAB-E308119101D7}C:\program files\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => (Block) C:\program files\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [UDP Query User{0E1A0B48-0043-4C10-B27D-CFBBE9999CAF}C:\program files\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe] => (Block) C:\program files\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe
FirewallRules: [{ED7415FF-DF0B-48E8-BBD5-D835A683A671}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{0B867C4B-43A7-46F9-838C-85B79E524359}] => (Allow) C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
FirewallRules: [{4CFE82CD-6CFE-47C7-A9EC-4A88AA7ED080}] => (Allow) C:\Program Files\Sierra\FEAR\FEAR.exe
FirewallRules: [{7156EB73-AC6E-49AA-BE1C-323C5ADF6BC5}] => (Allow) C:\Program Files\Sierra\FEAR\FEAR.exe
FirewallRules: [{7DD1C79E-DE91-4B3A-99BE-F6EFB3C93575}] => (Allow) C:\Program Files\Sierra\FEAR\FEARMP.exe
FirewallRules: [{32828ED9-BEA4-41B2-B32C-58956ECD015C}] => (Allow) C:\Program Files\Sierra\FEAR\FEARMP.exe
FirewallRules: [{0D3506B0-3073-499A-9FED-BE3289E90252}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{0B572848-B0FD-429B-AF33-D2C391617252}] => (Allow) C:\Program Files\Mozilla Firefox\firefox.exe
FirewallRules: [{3E39F3AB-13D3-498B-8DF9-48850F8EF666}] => (Allow) C:\Users\3\AppData\Roaming\uTorrent\utorrent.exe
FirewallRules: [{A9A2355C-4588-46E6-A77F-C7D7AD8CF948}] => (Allow) C:\Users\3\AppData\Roaming\uTorrent\utorrent.exe
FirewallRules: [{0E801571-0F52-4715-8ECA-502618E87978}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warface\live\nw.exe
FirewallRules: [{513C8BDE-8D0C-4AEC-83BA-C403496C8CF7}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warface\live\nw.exe
FirewallRules: [{D51EE150-563C-4680-A7F6-E31F3E7D948E}] => (Allow) C:\Program Files\Electronic Arts\BioWare\Star Wars - The Old Republic\launcher.exe
FirewallRules: [{6FEDEE53-6F3D-43D5-89AC-0A07E5208D6D}] => (Allow) C:\Program Files\Electronic Arts\BioWare\Star Wars - The Old Republic\launcher.exe
FirewallRules: [{D81B87BE-13D9-42CB-8784-115E9EF59E7A}] => (Allow) C:\Program Files\Electronic Arts\BioWare\Star Wars - The Old Republic\launcher.exe
FirewallRules: [{14659358-F18B-4AA2-94D3-D5F1CAAE2583}] => (Allow) C:\Program Files\Electronic Arts\BioWare\Star Wars - The Old Republic\launcher.exe
FirewallRules: [{8AFE9B71-487C-419C-9073-EB8302E4E632}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{05936A38-7D4F-4F2B-A1BF-953E995729DE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Warframe\Tools\Launcher.exe
FirewallRules: [{C1CCE121-9EF3-41FA-A040-624A7B353D4A}] => (Allow) C:\Program Files\Mr DJ\Crusader Kings II\CK2game.exe
FirewallRules: [{B62F6250-C2A4-4B25-93BA-22AF69F0CBFB}] => (Allow) C:\Program Files\Mr DJ\Crusader Kings II\CK2game.exe
FirewallRules: [{FCA94500-EE88-47C5-877F-3210CBD940D8}] => (Allow) C:\Program Files\Mr DJ\Deus Ex Human Revolution Directors Cut\DXHRDC.exe
FirewallRules: [{F1E1154C-F5D6-4F46-BE93-EFDEDC9DA512}] => (Allow) C:\Program Files\Mr DJ\Deus Ex Human Revolution Directors Cut\DXHRDC.exe
FirewallRules: [{0E9B5110-F583-4CBF-8864-C470DC1AEDD2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Magic Duels\MagicDuels.exe
FirewallRules: [{E98D7951-52C4-4FA2-AE81-EDE87F28E696}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Magic Duels\MagicDuels.exe
FirewallRules: [{0917399B-AD5B-49A5-98E1-9DFA20996FB2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{A118A8E0-6679-489B-BE29-52CA739CA31C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Dirty Bomb\Binaries\Win32\ShooterGame-Win32-Shipping.exe
FirewallRules: [{358CF433-BF02-4CFC-A18F-F4FABDE1A9B2}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\VillagersAndHeroes\AMysticalLandSAC\VillagersAndHeroes.exe
FirewallRules: [{C69D3390-6E30-457F-AD8C-743AB2847EDF}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\VillagersAndHeroes\AMysticalLandSAC\VillagersAndHeroes.exe
FirewallRules: [{556B1637-A9B4-4CC5-BFE1-F24425277224}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\APB Reloaded\Binaries\APB.exe
FirewallRules: [{C4A9BD8E-FAEF-438B-A0BD-9B83103C88CD}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\APB Reloaded\Binaries\APB.exe
FirewallRules: [{8C3DFDF1-86E3-4977-B866-4F7BE0FC6748}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\APB Reloaded\Binaries\VivoxVoiceService.exe
FirewallRules: [{567A6DAB-E3CE-4AFE-ADAA-051296FCAE3C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\APB Reloaded\Binaries\VivoxVoiceService.exe
FirewallRules: [{81579E67-FD5D-456A-A3E8-EC55ED37D884}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{86D1451D-197C-43DD-A52F-D2367D9FBAC9}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\rocketleague\Binaries\Win32\RocketLeague.exe
FirewallRules: [{D9832B6B-1191-4038-904F-5B1BC1464169}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Double Action\bin\hammer.exe
FirewallRules: [{20E74C9B-3818-4F8D-96AC-C356ECD0BEFE}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\Double Action\bin\hammer.exe
FirewallRules: [TCP Query User{869D2670-716D-4FE3-869E-E54F85FE9A62}C:\program files\bethesda softworks\dishonored - game of the year edition\binaries\win32\dishonored.exe] => (Allow) C:\program files\bethesda softworks\dishonored - game of the year edition\binaries\win32\dishonored.exe
FirewallRules: [UDP Query User{582A6BBC-180A-4553-9DBA-BA272FE6674F}C:\program files\bethesda softworks\dishonored - game of the year edition\binaries\win32\dishonored.exe] => (Allow) C:\program files\bethesda softworks\dishonored - game of the year edition\binaries\win32\dishonored.exe
FirewallRules: [{362CD370-8231-48C9-A5F5-0DAC8CFC894F}] => (Allow) C:\Program Files\Mr DJ\Need For Speed Hot Pursuit\NFS11.exe
FirewallRules: [{F887B2C6-B74C-40B9-94B2-B7789DB365DA}] => (Allow) C:\Program Files\Mr DJ\Need For Speed Hot Pursuit\NFS11.exe
FirewallRules: [{369341E8-11E1-478C-A9BF-7371FD73A88B}] => (Allow) C:\Program Files\Mr DJ\Need For Speed Hot Pursuit\ConfigTool.exe
FirewallRules: [{E3B3C42C-2E0B-4012-A042-04984D998567}] => (Allow) C:\Program Files\Mr DJ\Need For Speed Hot Pursuit\ConfigTool.exe
FirewallRules: [{DAA67301-27D4-404D-93A3-737D85CA43D9}] => (Allow) C:\Program Files\Mr DJ\Need For Speed Most Wanted Black Edition\speed.exe
FirewallRules: [{332F0FD4-4CB6-4E1F-9D55-3DEE72788573}] => (Allow) C:\Program Files\Mr DJ\Need For Speed Most Wanted Black Edition\speed.exe
FirewallRules: [{E698C08B-648D-4A6B-A064-BBD1302BE43F}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [{A148C8AE-7C84-4C7F-A3C9-98B8D6183C8B}] => (Allow) C:\Program Files (x86)\Steam\bin\cef\cef.win7\steamwebhelper.exe
FirewallRules: [TCP Query User{62F488BE-ED3E-4E60-A3E2-100B20583926}C:\gog games\saints row 3\saintsrowthethird_dx11.exe] => (Block) C:\gog games\saints row 3\saintsrowthethird_dx11.exe
FirewallRules: [UDP Query User{EB815391-62A2-4525-BEFE-AAF0772C91EC}C:\gog games\saints row 3\saintsrowthethird_dx11.exe] => (Block) C:\gog games\saints row 3\saintsrowthethird_dx11.exe
FirewallRules: [{FAF0BC01-7B48-41A5-8BB2-25EFE1A6B948}] => (Allow) C:\Users\s\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{27071B0C-2EE1-4790-A92B-176391172FA5}] => (Allow) C:\Users\s\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{D0C375F1-0F4A-45DD-A6A6-375F40FA424D}] => (Allow) C:\Users\s\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{40C1F99E-60A8-4670-A678-7AC9EB1CF48F}] => (Allow) C:\Users\s\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{5AA127B8-6E8C-4E53-A869-500FDDC7D393}] => (Allow) C:\Users\s\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [{93F1CE5B-7E26-46FC-87B9-12A56575BEC8}] => (Allow) C:\Users\s\AppData\Roaming\uTorrent\uTorrent.exe
FirewallRules: [TCP Query User{9783DCB3-287F-40F9-BBB0-A6CBF8A02A8D}C:\program files\minecraft\runtime\jre-x32\1.8.0_25\bin\javaw.exe] => (Block) C:\program files\minecraft\runtime\jre-x32\1.8.0_25\bin\javaw.exe
FirewallRules: [UDP Query User{0B676C1E-634B-451B-AB48-311362082B60}C:\program files\minecraft\runtime\jre-x32\1.8.0_25\bin\javaw.exe] => (Block) C:\program files\minecraft\runtime\jre-x32\1.8.0_25\bin\javaw.exe
FirewallRules: [TCP Query User{F14BFCF6-E5E0-494E-A4A1-7FF79D3D4C1C}C:\program files (x86)\steam\steamapps\common\artofwar\game\u1game.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\artofwar\game\u1game.exe
FirewallRules: [UDP Query User{D607BE8F-4DD5-45C3-8284-BC4869D16826}C:\program files (x86)\steam\steamapps\common\artofwar\game\u1game.exe] => (Allow) C:\program files (x86)\steam\steamapps\common\artofwar\game\u1game.exe
FirewallRules: [{27F7F50E-AE21-4C49-8B1E-1C32D13846A6}] => (Allow) C:\Program Files\Mr DJ\Splinter Cell Conviction\play-TCSCC.exe
FirewallRules: [{27250E11-B1CE-4740-A46F-6C9073F85D21}] => (Allow) C:\Program Files\Mr DJ\Splinter Cell Conviction\play-TCSCC.exe
FirewallRules: [TCP Query User{DF7CB311-D32C-4C40-A280-DCC58F346641}C:\program files\mr dj\splinter cell conviction\src\system\conviction_game.exe] => (Block) C:\program files\mr dj\splinter cell conviction\src\system\conviction_game.exe
FirewallRules: [UDP Query User{1481AB86-9B10-4D53-AA10-20CDFD2C537A}C:\program files\mr dj\splinter cell conviction\src\system\conviction_game.exe] => (Block) C:\program files\mr dj\splinter cell conviction\src\system\conviction_game.exe
FirewallRules: [{BE709FDC-B629-42CE-AE04-2D5CB314947E}] => (Allow) C:\Program Files\Mr DJ\Tomb Raider GOTY\TombRaider.exe
FirewallRules: [{A9B3D357-1119-4FD7-AF36-FBB28B8E7EE1}] => (Allow) C:\Program Files\Mr DJ\Tomb Raider GOTY\TombRaider.exe
FirewallRules: [TCP Query User{A8285C46-40DE-4BC5-80EF-919DD7B0C948}C:\program files\r.g. mechanics\far cry 3\bin\farcry3.exe] => (Allow) C:\program files\r.g. mechanics\far cry 3\bin\farcry3.exe
FirewallRules: [UDP Query User{217F9626-738C-4BF2-972E-E31B97EC87F5}C:\program files\r.g. mechanics\far cry 3\bin\farcry3.exe] => (Allow) C:\program files\r.g. mechanics\far cry 3\bin\farcry3.exe
FirewallRules: [{FBDEF342-CB7A-4B2F-B51A-860ED9E1642C}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TigerKnight_EW\frontend\bin\frontend.exe
FirewallRules: [{7C59109E-9880-4F16-9346-FF51A08C7C9A}] => (Allow) C:\Program Files (x86)\Steam\steamapps\common\TigerKnight_EW\frontend\bin\frontend.exe
FirewallRules: [{9521B69C-19B4-4F66-B20A-F1DC25643F03}] => (Allow) C:\Games\Homefront\Binaries\HOMEFRONT.exe
FirewallRules: [{544D91C6-6EBC-416E-A201-9C0EE73DC921}] => (Allow) C:\Games\Homefront\Binaries\HOMEFRONT.exe
FirewallRules: [{27A5A574-0005-4A20-AC0A-90F8E6D76416}] => (Allow) C:\Program Files\Mr DJ\Grand Theft Auto IV\LaunchGTAIV.exe
FirewallRules: [{44392E1D-F9C4-4823-A216-6A196B22A600}] => (Allow) C:\Program Files\Mr DJ\Grand Theft Auto IV\LaunchGTAIV.exe
FirewallRules: [{BAC7A4E1-C547-4BE2-AA4C-7C78D1B1CD87}] => (Allow) C:\Program Files\Opera\43.0.2442.806\opera.exe
FirewallRules: [{949309F8-0EE0-46B6-AD0B-087963D4F824}] => (Allow) C:\Program Files\MIO\loader\st31000524as_9vpgb79g.exe
FirewallRules: [{B0818C44-5A4C-4D2A-9C83-9C072665A9B0}] => (Allow) C:\Program Files\MIO\loader\st31000524as_9vpgb79g.exe
FirewallRules: [{8C39AA90-3E4C-4949-B7CB-07D42E5DF005}] => (Allow) C:\Program Files\Birdjob\Application\chrome.exe
FirewallRules: [{C7083160-5D28-4E4E-9421-7182172FA361}] => (Allow) C:\Program Files\Opera\43.0.2442.991\opera.exe
FirewallRules: [{FE42F232-9550-42E4-AA63-3B03827CB1F6}] => (Allow) C:\Program Files\MIO\loader\st31000524as_9vpgb79g.exe
FirewallRules: [{FC041C6F-FA9B-4009-A6DA-A140DDF2A918}] => (Allow) C:\Program Files\MIO\loader\st31000524as_9vpgb79g.exe
FirewallRules: [{C2E51D06-94B1-4E11-B1A1-72B2CD2E5F77}] => (Allow) C:\Program Files\Google\Chrome\Application\chrome.exe

==================== Restore Points =========================

28-02-2017 14:55:32 Naplánovaný kontrolní bod
02-03-2017 03:00:20 Windows Update
06-03-2017 14:03:34 Removed WinSnare
08-03-2017 17:18:35 Installed Tom Clancy's Rainbow Six Vegas 2
08-03-2017 17:38:51 Nainstalováno rozhraní DirectX
12-03-2017 12:57:38 Removed BikaQ Rss
13-03-2017 08:29:40 Nainstalováno rozhraní DirectX
18-03-2017 20:36:05 Removed deskapp
19-03-2017 22:46:44 Installed Zkušební verze produktu Microsoft Office Professional 2010
20-03-2017 14:35:40 Removed WinSnare
20-03-2017 17:48:13 Windows Update
20-03-2017 19:16:53 Windows Update
22-03-2017 12:57:29 Windows Update
22-03-2017 17:25:34 Removed Java 7 Update 60
22-03-2017 17:26:26 Restore Point Created by FRST
22-03-2017 17:26:48 Removed Java 8 Update 45
22-03-2017 17:30:25 Removed Java 7 Update 60
22-03-2017 17:33:29 Removed Java 8 Update 45
22-03-2017 17:36:39 Removed Hi-Rez Studios Games
22-03-2017 17:46:41 Removed WinSnare
22-03-2017 17:47:34 Removed Ubisoft Game Launcher
22-03-2017 17:48:21 Removed UpdateAdmin
22-03-2017 17:49:14 Removed Windows Live ID Sign-in Assistant
22-03-2017 19:01:00 Removed Serif DrawPlus X8
22-03-2017 19:10:50 Windows Update
22-03-2017 19:14:34 Windows Update
23-03-2017 08:05:20 Windows Update

==================== Faulty Device Manager Devices =============

Name: Řadič sběrnice SM
Description: Řadič sběrnice SM
Class Guid:
Manufacturer:
Service:
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.

Name: Teredo Tunneling Pseudo-Interface
Description: Adaptér tunelového režimu Microsoft Teredo
Class Guid: {4d36e972-e325-11ce-bfc1-08002be10318}
Manufacturer: Microsoft
Service: tunnel
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.


==================== Event log errors: =========================

Application errors:
==================
Error: (03/23/2017 11:39:54 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (03/23/2017 11:38:51 AM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: Event-ID 1

Error: (03/23/2017 11:38:51 AM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: Event-ID 1

Error: (03/23/2017 11:11:42 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (03/23/2017 11:11:01 AM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: Event-ID 1

Error: (03/23/2017 11:11:01 AM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: Event-ID 1

Error: (03/23/2017 06:08:07 AM) (Source: WinMgmt) (EventID: 10) (User: )
Description: Event filter with query "SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 99" could not be reactivated in namespace "//./root/CIMV2" because of error 0x80041003. Events cannot be delivered through this filter until the problem is corrected.

Error: (03/23/2017 06:07:06 AM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: Event-ID 1

Error: (03/23/2017 06:07:06 AM) (Source: NvStreamSvc) (EventID: 1) (User: )
Description: Event-ID 1

Error: (03/22/2017 05:44:27 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Název chybující aplikace: iSafeSvc.exe, verze: 6.11.109.30775, časové razítko: 0x57b6a237
Název chybujícího modulu: ntdll.dll, verze: 6.1.7601.23677, časové razítko: 0x589c95de
Kód výjimky: 0xc0000005
Posun chyby: 0x0002df9e
ID chybujícího procesu: 0x47c
Čas spuštění chybující aplikace: 0x01d2a32af3833e7f
Cesta k chybující aplikaci: C:\Program Files\Elex-tech\YAC\iSafeSvc.exe
Cesta k chybujícímu modulu: C:\Windows\SYSTEM32\ntdll.dll
ID zprávy: cf7d6751-0f1e-11e7-a820-4c72b9029005


System errors:
=============
Error: (03/23/2017 11:38:25 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba atksgt neuspěla při spuštění v důsledku následující chyby:
Načtení tohoto ovladače je blokováno.

Error: (03/23/2017 11:38:25 AM) (Source: Application Popup) (EventID: 875) (User: )
Description: Načtení ovladače atksgt.sys je blokováno.

Error: (03/23/2017 11:38:14 AM) (Source: EventLog) (EventID: 6008) (User: )
Description: Předchozí vypnutí systému (11:36:50, ‎23.‎3.‎2017) bylo neočekávané.

Error: (03/23/2017 11:37:18 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (03/23/2017 11:37:17 AM) (Source: Microsoft-Windows-Kernel-General) (EventID: 5) (User: kuba-PC)
Description: 0x8000002a32\??\c:\windows\erdnt\subs\system

Error: (03/23/2017 11:37:12 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (03/23/2017 11:34:36 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (03/23/2017 11:30:30 AM) (Source: Service Control Manager) (EventID: 7030) (User: )
Description: Služba PEVSystemStart je označena jako interaktivní služba. Avšak systém je nakonfigurován tak, že neumožňuje použití interaktivní služby. Tato služba nebude fungovat správně.

Error: (03/23/2017 11:10:24 AM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: Služba atksgt neuspěla při spuštění v důsledku následující chyby:
Načtení tohoto ovladače je blokováno.

Error: (03/23/2017 11:10:24 AM) (Source: Application Popup) (EventID: 875) (User: )
Description: Načtení ovladače atksgt.sys je blokováno.


CodeIntegrity:
===================================
Date: 2017-03-20 17:26:55.801
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\smaz\Windows.old\Windows\winsxs\wow64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.22411_none_c04d416616480b5a\appidapi.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-03-20 17:26:55.754
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\smaz\Windows.old\Windows\winsxs\wow64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.22411_none_c04d416616480b5a\appidapi.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-03-20 17:26:55.723
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\smaz\Windows.old\Windows\winsxs\wow64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.22411_none_c04d416616480b5a\appidapi.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-03-20 17:26:55.629
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\smaz\Windows.old\Windows\winsxs\wow64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.22411_none_c04d416616480b5a\appidapi.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-03-20 17:26:55.379
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\smaz\Windows.old\Windows\winsxs\wow64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.22280_none_c0008ddc1681bb4c\appidapi.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-03-20 17:26:55.333
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\smaz\Windows.old\Windows\winsxs\wow64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.22280_none_c0008ddc1681bb4c\appidapi.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-03-20 17:26:55.301
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\smaz\Windows.old\Windows\winsxs\wow64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.22280_none_c0008ddc1681bb4c\appidapi.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-03-20 17:26:55.270
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\smaz\Windows.old\Windows\winsxs\wow64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.22280_none_c0008ddc1681bb4c\appidapi.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-01-13 00:40:28.109
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\smaz\Windows.old\Windows\winsxs\wow64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.22411_none_c04d416616480b5a\appidapi.dll because the set of per-page image hashes could not be found on the system.

Date: 2017-01-13 00:40:28.062
Description: Code Integrity is unable to verify the image integrity of the file \Device\HarddiskVolume2\smaz\Windows.old\Windows\winsxs\wow64_microsoft-windows-appid_31bf3856ad364e35_6.1.7601.22411_none_c04d416616480b5a\appidapi.dll because the set of per-page image hashes could not be found on the system.


==================== Memory info ===========================

Processor: Intel(R) Core(TM) i7-3770 CPU @ 3.40GHz
Percentage of memory in use: 34%
Total physical RAM: 3557.4 MB
Available physical RAM: 2324.38 MB
Total Virtual: 31555.72 MB
Available Virtual: 30091.47 MB

==================== Drives ================================

Drive c: (OS) (Fixed) (Total:914.85 GB) (Free:610.81 GB) NTFS
Drive d: (HP_RECOVERY) (Fixed) (Total:16.47 GB) (Free:1.94 GB) NTFS ==>[system with boot components (obtained from drive)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows 7 or 8) (Size: 931.5 GB) (Disk ID: 6FF49CA9)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=914.8 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=16.5 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=100 MB) - (Type=27)

==================== End of Addition.txt ============================

Re: POmaly beh pc

Napsal: 23 bře 2017 17:37
od jack68
LastRegBack: 2017-03-14 01:02

==================== End of FRST.txt ============================

Re: POmaly beh pc

Napsal: 23 bře 2017 22:12
od altrok
Pokuste se vygenerovat novy FRST.txt. Z tohodle zrovna moc informaci nevyctu :)

Re: POmaly beh pc

Napsal: 24 bře 2017 06:10
od jack68
omlouvam se. nevim proc predtim se ukazalo tak malo

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 15-03-2017
Ran by s (administrator) on KUBA-PC (24-03-2017 06:08:32)
Running from C:\Users\s\Desktop
Loaded Profiles: s (Available Profiles: s)
Platform: Microsoft Windows 7 Professional Service Pack 1 (X86) Language: Čeština (Česká republika)
Internet Explorer Version 11 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\stacsv.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
(NVIDIA Corporation) C:\Windows\System32\nvvsvc.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
() C:\Program Files\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
() C:\Windows\System32\PnkBstrA.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
(Microsoft Corporation) C:\Windows\System32\rundll32.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(IDT, Inc.) C:\Program Files\IDT\WDM\sttray.exe
(Hewlett-Packard ) C:\Program Files\IDT\WDM\beats.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(DT Soft Ltd) C:\Program Files\DAEMON Tools Pro\DTShellHlp.exe
(Microsoft Corporation) C:\Windows\System32\wuauclt.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe
(Microsoft Corporation) C:\Windows\System32\dllhost.exe

==================== Registry (Whitelisted) ====================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [SysTrayApp] => C:\Program Files\IDT\WDM\sttray.exe [1433692 2012-04-24] (IDT, Inc.)
HKLM\...\Run: [BeatsOSDApp] => C:\Program Files\IDT\WDM\beats.exe [30208 2011-08-24] (Hewlett-Packard )
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [587288 2016-12-12] (Oracle Corporation)
Startup: C:\Users\kubaa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk [2015-12-04]
ShortcutTarget: Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk -> C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

Tcpip\Parameters: [DhcpNameServer] 85.132.180.62
Tcpip\..\Interfaces\{C59B3122-B807-4B33-8088-306510F3ED4A}: [DhcpNameServer] 85.132.180.62

Internet Explorer:
==================
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-1732726701-269562743-775657971-1012\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131346792448345932&GUID=00000000-0000-0000-0000-000000000000
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome
HKU\S-1-5-21-1732726701-269562743-775657971-1012\Software\Microsoft\Internet Explorer\Main,Search Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-1732726701-269562743-775657971-1012\Software\Microsoft\Internet Explorer\Main,Start Page = hxxp://go.microsoft.com/fwlink/?LinkID=617910&ResetID=131346792448501932&GUID=00000000-0000-0000-0000-000000000000
SearchScopes: HKLM -> DefaultScope value is missing
SearchScopes: HKU\S-1-5-21-1732726701-269562743-775657971-1012 -> {79B42868-76A4-4D41-A161-DD320FA61180} URL = hxxp://tv.seznam.cz/hledej?w={searchTerms}&sourceid=QuickSearch_16194
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26] (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_121\bin\ssv.dll [2017-03-22] (Oracle Corporation)
BHO: No Name -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> No File
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_121\bin\jp2ssv.dll [2017-03-22] (Oracle Corporation)
Toolbar: HKLM - No Name - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - No File
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll [2009-02-26] (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - No File

FireFox:
========
FF Plugin: @adobe.com/FlashPlayer -> C:\Windows\system32\Macromed\Flash\NPSWF32_25_0_0_127.dll [2017-03-22] ()
FF Plugin: @canon.com/EPPEX -> C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL [2010-04-15] (CANON INC.)
FF Plugin: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.52 -> C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll [2012-04-11] (Intel Corporation)
FF Plugin: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll [2012-04-11] (Intel Corporation)
FF Plugin: @java.com/DTPlugin,version=11.121.2 -> C:\Program Files\Java\jre1.8.0_121\bin\dtplugin\npDeployJava1.dll [2017-03-22] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.121.2 -> C:\Program Files\Java\jre1.8.0_121\bin\plugin2\npjp2.dll [2017-03-22] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.50905.0\npctrl.dll [2017-02-10] ( Microsoft Corporation)
FF Plugin: @nvidia.com/3DVision -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll [2013-12-19] (NVIDIA Corporation)
FF Plugin: @nvidia.com/3DVisionStreaming -> C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll [2013-12-19] (NVIDIA Corporation)
FF Plugin: @pandonetworks.com/PandoWebPlugin -> C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll [No File]
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2017-03-22] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.32.7\npGoogleUpdate3.dll [2017-03-22] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.2.4 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2016-06-01] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Acrobat Reader DC\Reader\AIR\nppdf32.dll [2016-12-23] (Adobe Systems Inc.)

Chrome:
=======
CHR DefaultProfile: ChromeDefaultData
CHR Profile: C:\Users\s\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2017-03-23] <==== ATTENTION
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\ChromeExtension\skype_chrome_extension.crx [2015-10-12]

Opera:
=======
OPR Extension: (Adblock Plus) - C:\Users\s\AppData\Roaming\Opera Software\Opera Stable\Extensions\oidhhegpmlfpoeialbgcdocjalghfpkp [2017-03-20]

==================== Services (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S3 BEService; C:\Program Files\Common Files\BattlEye\BEService.exe [1056288 2016-01-23] ()
S3 EasyAntiCheat; C:\Windows\system32\EasyAntiCheat.exe [395536 2017-01-13] (EasyAntiCheat Ltd)
R2 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [423136 2011-12-08] (Intel(R) Corporation)
R2 Intel(R) ME Service; C:\Program Files\Intel\Intel(R) Management Engine Components\FWService\IntelMeFWService.exe [128280 2012-04-11] ()
R2 jhi_service; C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2012-04-11] (Intel Corporation)
S2 LiveUpdateSvc; C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe [2909472 2015-08-06] (IObit)
S3 npggsvc; C:\Windows\system32\GameMon.des [5741064 2016-05-15] (INCA Internet Co., Ltd.)
U2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-10] (NVIDIA Corporation)
R2 NvStreamSvc; C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [14658848 2013-12-10] (NVIDIA Corporation)
R2 PnkBstrA; C:\Windows\system32\PnkBstrA.exe [76152 2016-05-29] ()
R2 STacSV; C:\Program Files\IDT\WDM\STacSV.exe [299090 2012-04-24] (IDT, Inc.)
R2 WinDefend; C:\Program Files\Windows Defender\mpsvc.dll [680960 2013-05-27] (Microsoft Corporation)
S3 BRSptSvc; "C:\ProgramData\BitRaider\BRSptSvc.exe" [X]

===================== Drivers (Whitelisted) ======================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 atksgt; C:\Windows\System32\DRIVERS\atksgt.sys [271360 2014-08-29] () [File not signed]
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [242240 2016-03-13] (DT Soft Ltd)
R0 iusb3hcs; C:\Windows\System32\DRIVERS\iusb3hcs.sys [13592 2011-12-05] (Intel Corporation)
R3 iusb3hub; C:\Windows\System32\DRIVERS\iusb3hub.sys [347928 2011-12-05] (Intel Corporation)
R3 iusb3xhc; C:\Windows\System32\DRIVERS\iusb3xhc.sys [788248 2011-12-05] (Intel Corporation)
R2 lirsgt; C:\Windows\System32\DRIVERS\lirsgt.sys [18048 2014-01-30] () [File not signed]
R3 MEI; C:\Windows\System32\DRIVERS\HECI.sys [46080 2012-04-11] (Intel Corporation)
R3 nvvad_WaveExtensible; C:\Windows\System32\drivers\nvvad32v.sys [34080 2013-12-05] (NVIDIA Corporation)
S4 secdrv; C:\Windows\system32\Drivers\secdrv.sys [12528 2016-11-23] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [File not signed]
R0 sptd; C:\Windows\System32\Drivers\sptd.sys [466008 2014-03-01] (Duplex Secure Ltd.)
S3 BRDriver; \??\C:\ProgramData\BitRaider\BRDriver.sys [X]
S3 BRDriver_1_3_3_E02B25FC; \??\C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver.sys [X]
S3 catchme; \??\C:\Users\s\AppData\Local\Temp\catchme.sys [X] <==== ATTENTION
U5 VWiFiFlt; C:\Windows\System32\Drivers\VWiFiFlt.sys [48128 2009-07-14] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)


==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-03-23 17:37 - 2017-03-24 06:08 - 00011755 _____ C:\Users\s\Desktop\FRST.txt
2017-03-23 17:36 - 2017-03-23 17:37 - 00046525 _____ C:\Users\s\Desktop\Addition.txt
2017-03-23 13:44 - 2017-03-23 15:39 - 00059832 _____ C:\Users\s\Desktop\ESETlog.txt
2017-03-23 13:21 - 2017-03-23 13:21 - 00000000 ____D C:\Users\s\AppData\Local\ESET
2017-03-23 13:20 - 2017-03-24 05:58 - 00000080 _____ C:\Users\s\AppData\Roaming\Microsoft\Windows\Start Menu\uTorrent.lnk
2017-03-23 13:20 - 2017-03-24 05:58 - 00000080 _____ C:\ProgramData\Microsoft\Windows\Start Menu\uTorrent.lnk
2017-03-23 13:20 - 2017-03-23 13:21 - 06750336 _____ (ESET spol. s r.o.) C:\Users\s\Desktop\esetonlinescanner_csy.exe
2017-03-23 11:43 - 2017-03-23 11:43 - 00040986 _____ C:\ComboFix.txt
2017-03-23 11:27 - 2011-06-26 07:45 - 00256000 _____ C:\Windows\PEV.exe
2017-03-23 11:27 - 2010-11-07 18:20 - 00208896 _____ C:\Windows\MBR.exe
2017-03-23 11:27 - 2009-04-20 05:56 - 00060416 _____ (NirSoft) C:\Windows\NIRCMD.exe
2017-03-23 11:27 - 2000-08-31 01:00 - 00518144 _____ (SteelWerX) C:\Windows\SWREG.exe
2017-03-23 11:27 - 2000-08-31 01:00 - 00406528 _____ (SteelWerX) C:\Windows\SWSC.exe
2017-03-23 11:27 - 2000-08-31 01:00 - 00098816 _____ C:\Windows\sed.exe
2017-03-23 11:27 - 2000-08-31 01:00 - 00080412 _____ C:\Windows\grep.exe
2017-03-23 11:27 - 2000-08-31 01:00 - 00068096 _____ C:\Windows\zip.exe
2017-03-23 11:23 - 2017-03-24 05:58 - 00000634 _____ C:\Users\s\Desktop\Total Commander.lnk
2017-03-23 11:23 - 2017-03-23 11:23 - 00000000 ____D C:\Users\s\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Total Commander
2017-03-23 11:23 - 2017-03-23 11:23 - 00000000 ____D C:\Users\s\AppData\Roaming\GHISLER
2017-03-23 11:23 - 2017-03-23 11:23 - 00000000 ____D C:\Users\s\AppData\Local\GHISLER
2017-03-23 11:23 - 2017-03-23 11:23 - 00000000 ____D C:\totalcmd
2017-03-23 11:23 - 2016-12-14 09:00 - 00000545 _____ C:\Windows\UC.PIF
2017-03-23 11:23 - 2016-12-14 09:00 - 00000545 _____ C:\Windows\RAR.PIF
2017-03-23 11:23 - 2016-12-14 09:00 - 00000545 _____ C:\Windows\PKZIP.PIF
2017-03-23 11:23 - 2016-12-14 09:00 - 00000545 _____ C:\Windows\PKUNZIP.PIF
2017-03-23 11:23 - 2016-12-14 09:00 - 00000545 _____ C:\Windows\LHA.PIF
2017-03-23 11:23 - 2016-12-14 09:00 - 00000545 _____ C:\Windows\ARJ.PIF
2017-03-23 11:22 - 2017-03-23 11:22 - 04289984 _____ (Ghisler Software GmbH) C:\Users\s\Downloads\tcmd900ax32.exe
2017-03-23 11:19 - 2017-03-23 11:43 - 00000000 ____D C:\Windows\erdnt
2017-03-23 11:19 - 2017-03-23 11:43 - 00000000 ____D C:\Qoobox
2017-03-23 11:18 - 2017-03-23 11:18 - 05659269 ____R (Swearware) C:\Users\s\Desktop\ComboFix.exe
2017-03-23 11:17 - 2017-03-24 05:59 - 00001016 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2017-03-23 11:16 - 2017-03-23 11:16 - 22851472 _____ (Malwarebytes ) C:\Users\s\Downloads\mbam-setup-bc.1878-2.2.1.1043 (1).exe
2017-03-23 11:13 - 2017-03-23 11:13 - 02030536 _____ (Bleeping Computer, LLC) C:\Users\s\Desktop\rkill.exe
2017-03-23 06:13 - 2017-03-23 11:46 - 00170200 _____ (Malwarebytes) C:\Windows\system32\Drivers\MBAMSwissArmy.sys
2017-03-23 06:13 - 2017-03-23 11:38 - 00000000 ____D C:\Program Files\Malwarebytes Anti-Malware
2017-03-23 06:13 - 2017-03-23 06:13 - 00000000 ____D C:\ProgramData\Malwarebytes
2017-03-23 06:13 - 2016-03-10 14:09 - 00053120 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mwac.sys
2017-03-23 06:13 - 2016-03-10 14:08 - 00126336 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbamchameleon.sys
2017-03-23 06:13 - 2016-03-10 14:08 - 00024448 _____ (Malwarebytes) C:\Windows\system32\Drivers\mbam.sys
2017-03-23 06:12 - 2017-03-23 06:12 - 22851472 _____ (Malwarebytes ) C:\Users\s\Desktop\mbam-setup-bc.1878-2.2.1.1043.exe
2017-03-22 19:09 - 2017-03-24 05:59 - 00002157 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2017-03-22 19:08 - 2017-03-22 19:09 - 00000000 ____D C:\Users\s\AppData\Local\Deployment
2017-03-22 19:08 - 2017-03-22 19:08 - 00000000 ____D C:\Users\s\AppData\Local\Apps\2.0
2017-03-22 19:07 - 2017-03-22 19:07 - 00095808 _____ (Oracle Corporation) C:\Windows\system32\WindowsAccessBridge.dll
2017-03-22 19:07 - 2017-03-22 19:07 - 00000000 ____D C:\Users\s\AppData\Roaming\Sun
2017-03-22 19:07 - 2017-03-22 19:07 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java
2017-03-22 19:07 - 2017-03-22 19:07 - 00000000 ____D C:\Program Files\Java
2017-03-22 19:07 - 2017-03-22 19:07 - 00000000 ____D C:\Program Files\Common Files\Java
2017-03-22 18:58 - 2017-03-22 18:58 - 00000040 _____ C:\Program Files\settings.dat
2017-03-22 18:58 - 2017-03-22 18:58 - 00000000 ____D C:\Program Files\reports
2017-03-22 18:58 - 2017-03-22 18:58 - 00000000 _____ C:\Program Files\metadata
2017-03-22 17:34 - 2017-03-22 17:34 - 00000000 ____D C:\Users\s\AppData\LocalLow\Sun
2017-03-22 14:51 - 2017-03-24 06:08 - 00000000 ____D C:\FRST
2017-03-22 14:50 - 2017-03-22 14:50 - 01766912 _____ (Farbar) C:\Users\s\Desktop\FRST.exe
2017-03-22 14:39 - 2017-03-22 14:41 - 00112640 _____ (forum.viry.cz) C:\Users\s\Desktop\FRSTLauncher.exe
2017-03-20 17:59 - 2017-02-11 16:50 - 00313856 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv2.sys
2017-03-20 17:59 - 2017-02-11 16:50 - 00311808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srv.sys
2017-03-20 17:59 - 2017-02-11 16:50 - 00116224 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\srvnet.sys
2017-03-20 17:59 - 2017-02-10 17:17 - 00628736 _____ (Microsoft Corporation) C:\Windows\system32\usp10.dll
2017-03-20 17:59 - 2017-02-10 17:17 - 00306688 _____ (Microsoft Corporation) C:\Windows\system32\gdi32.dll
2017-03-20 17:59 - 2017-02-09 17:19 - 04000488 _____ (Microsoft Corporation) C:\Windows\system32\ntkrnlpa.exe
2017-03-20 17:59 - 2017-02-09 17:19 - 03945192 _____ (Microsoft Corporation) C:\Windows\system32\ntoskrnl.exe
2017-03-20 17:59 - 2017-02-09 17:19 - 00137960 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecpkg.sys
2017-03-20 17:59 - 2017-02-09 17:19 - 00067304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\ksecdd.sys
2017-03-20 17:59 - 2017-02-09 17:16 - 01310528 _____ (Microsoft Corporation) C:\Windows\system32\ntdll.dll
2017-03-20 17:59 - 2017-02-09 17:14 - 01062912 _____ (Microsoft Corporation) C:\Windows\system32\lsasrv.dll
2017-03-20 17:59 - 2017-02-09 17:14 - 00690688 _____ (Microsoft Corporation) C:\Windows\system32\adtschema.dll
2017-03-20 17:59 - 2017-02-09 17:14 - 00655360 _____ (Microsoft Corporation) C:\Windows\system32\rpcrt4.dll
2017-03-20 17:59 - 2017-02-09 17:14 - 00644096 _____ (Microsoft Corporation) C:\Windows\system32\advapi32.dll
2017-03-20 17:59 - 2017-02-09 17:14 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\kerberos.dll
2017-03-20 17:59 - 2017-02-09 17:14 - 00481792 _____ (Microsoft Corporation) C:\Windows\system32\mscms.dll
2017-03-20 17:59 - 2017-02-09 17:14 - 00400896 _____ (Microsoft Corporation) C:\Windows\system32\srcore.dll
2017-03-20 17:59 - 2017-02-09 17:14 - 00261120 _____ (Microsoft Corporation) C:\Windows\system32\msv1_0.dll
2017-03-20 17:59 - 2017-02-09 17:14 - 00254464 _____ (Microsoft Corporation) C:\Windows\system32\schannel.dll
2017-03-20 17:59 - 2017-02-09 17:14 - 00223232 _____ (Microsoft Corporation) C:\Windows\system32\ncrypt.dll
2017-03-20 17:59 - 2017-02-09 17:14 - 00215040 _____ (Microsoft Corporation) C:\Windows\system32\icm32.dll
2017-03-20 17:59 - 2017-02-09 17:14 - 00172032 _____ (Microsoft Corporation) C:\Windows\system32\wdigest.dll
2017-03-20 17:59 - 2017-02-09 17:14 - 00146432 _____ (Microsoft Corporation) C:\Windows\system32\msaudite.dll
2017-03-20 17:59 - 2017-02-09 17:14 - 00141312 _____ (Microsoft Corporation) C:\Windows\system32\rpchttp.dll
2017-03-20 17:59 - 2017-02-09 17:14 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\sspicli.dll
2017-03-20 17:59 - 2017-02-09 17:14 - 00082432 _____ (Microsoft Corporation) C:\Windows\system32\bcrypt.dll
2017-03-20 17:59 - 2017-02-09 17:14 - 00065536 _____ (Microsoft Corporation) C:\Windows\system32\TSpkg.dll
2017-03-20 17:59 - 2017-02-09 17:14 - 00060416 _____ (Microsoft Corporation) C:\Windows\system32\msobjs.dll
2017-03-20 17:59 - 2017-02-09 17:14 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\appidapi.dll
2017-03-20 17:59 - 2017-02-09 17:14 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\setbcdlocale.dll
2017-03-20 17:59 - 2017-02-09 17:14 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\srclient.dll
2017-03-20 17:59 - 2017-02-09 17:14 - 00038912 _____ (Microsoft Corporation) C:\Windows\system32\csrsrv.dll
2017-03-20 17:59 - 2017-02-09 17:14 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\secur32.dll
2017-03-20 17:59 - 2017-02-09 17:14 - 00017408 _____ (Microsoft Corporation) C:\Windows\system32\credssp.dll
2017-03-20 17:59 - 2017-02-09 17:14 - 00006656 _____ (Microsoft Corporation) C:\Windows\system32\apisetschema.dll
2017-03-20 17:59 - 2017-02-09 16:53 - 00097792 _____ (Microsoft Corporation) C:\Windows\system32\appidpolicyconverter.exe
2017-03-20 17:59 - 2017-02-09 16:53 - 00050688 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\appid.sys
2017-03-20 17:59 - 2017-02-09 16:53 - 00050176 _____ (Microsoft Corporation) C:\Windows\system32\auditpol.exe
2017-03-20 17:59 - 2017-02-09 16:53 - 00029696 _____ (Microsoft Corporation) C:\Windows\system32\appidsvc.dll
2017-03-20 17:59 - 2017-02-09 16:53 - 00016896 _____ (Microsoft Corporation) C:\Windows\system32\appidcertstorecheck.exe
2017-03-20 17:59 - 2017-02-09 16:52 - 02400256 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2017-03-20 17:59 - 2017-02-09 16:51 - 00262656 _____ (Microsoft Corporation) C:\Windows\system32\rstrui.exe
2017-03-20 17:59 - 2017-02-09 16:51 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\WcsPlugInService.dll
2017-03-20 17:59 - 2017-02-09 16:49 - 00226304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb10.sys
2017-03-20 17:59 - 2017-02-09 16:49 - 00124416 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb.sys
2017-03-20 17:59 - 2017-02-09 16:49 - 00098304 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\mrxsmb20.sys
2017-03-20 17:59 - 2017-02-09 16:49 - 00069632 _____ (Microsoft Corporation) C:\Windows\system32\smss.exe
2017-03-20 17:59 - 2017-02-09 16:49 - 00036352 _____ (Microsoft Corporation) C:\Windows\system32\cryptbase.dll
2017-03-20 17:59 - 2017-02-09 16:49 - 00022016 _____ (Microsoft Corporation) C:\Windows\system32\lsass.exe
2017-03-20 17:59 - 2017-02-09 16:49 - 00015872 _____ (Microsoft Corporation) C:\Windows\system32\sspisrv.dll
2017-03-20 17:59 - 2017-02-06 17:03 - 00497152 _____ (Microsoft Corporation) C:\Windows\HelpPane.exe
2017-03-20 17:59 - 2017-01-13 18:45 - 00741888 _____ (Microsoft Corporation) C:\Windows\system32\inetcomm.dll
2017-03-20 17:59 - 2017-01-13 18:45 - 00084480 _____ (Microsoft Corporation) C:\Windows\system32\INETRES.dll
2017-03-20 17:59 - 2017-01-11 18:43 - 01241088 _____ (Microsoft Corporation) C:\Windows\system32\msxml3.dll
2017-03-20 17:59 - 2017-01-11 18:43 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\msxml3r.dll
2017-03-20 17:59 - 2017-01-06 18:44 - 01329664 _____ (Microsoft Corporation) C:\Windows\system32\quartz.dll
2017-03-20 17:57 - 2017-02-23 00:29 - 00071400 _____ (Microsoft Corporation) C:\Windows\system32\CompatTelRunner.exe
2017-03-20 17:57 - 2017-02-23 00:24 - 00971776 _____ (Microsoft Corporation) C:\Windows\system32\aeinv.dll
2017-03-20 17:57 - 2017-02-18 15:05 - 01331200 _____ (Microsoft Corporation) C:\Windows\system32\appraiser.dll
2017-03-20 17:57 - 2017-02-18 15:05 - 00505344 _____ (Microsoft Corporation) C:\Windows\system32\generaltel.dll
2017-03-20 17:57 - 2016-12-31 16:36 - 00442368 _____ (Microsoft Corporation) C:\Windows\system32\devinv.dll
2017-03-20 17:57 - 2016-12-31 16:36 - 00270848 _____ (Microsoft Corporation) C:\Windows\system32\invagent.dll
2017-03-20 17:57 - 2016-12-31 16:36 - 00212480 _____ (Microsoft Corporation) C:\Windows\system32\centel.dll
2017-03-20 17:57 - 2016-12-31 16:36 - 00183808 _____ (Microsoft Corporation) C:\Windows\system32\aepic.dll
2017-03-20 17:57 - 2016-12-31 16:36 - 00104960 _____ (Microsoft Corporation) C:\Windows\system32\acmigration.dll
2017-03-20 13:19 - 2017-03-20 13:19 - 00000000 ____D C:\ProgramData\SWCUTemp
2017-03-16 15:12 - 2017-03-20 13:52 - 00000000 ____D C:\Users\s\Documents\Freedom Fighters
2017-03-15 17:20 - 2017-03-20 13:52 - 00000000 ____D C:\Users\s\AppData\Roaming\SmartSteamEmu
2017-03-14 16:27 - 2017-03-20 13:52 - 00000000 ____D C:\Users\s\AppData\Roaming\vlc
2017-03-13 08:34 - 2017-03-14 17:46 - 00000000 ____D C:\Users\s\Documents\Mount&Blade Warband Savegames
2017-03-13 08:27 - 2017-03-13 21:15 - 00000000 ____D C:\Users\s\Documents\Mount&Blade Warband
2017-03-13 08:27 - 2017-03-13 11:39 - 00000000 ____D C:\Users\s\AppData\Roaming\Mount&Blade Warband
2017-03-11 08:37 - 2017-03-11 08:37 - 00000000 ____D C:\Users\s\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Vietcong 2
2017-03-06 16:02 - 2017-03-13 09:55 - 00000000 ____D C:\Program Files\MK
2017-03-05 19:31 - 2017-03-05 19:31 - 00000000 ____D C:\$AV_ASW
2017-03-05 19:25 - 2017-03-05 19:25 - 00000000 ____D C:\Users\s\AppData\Roaming\AVAST Software
2017-03-05 18:42 - 2017-03-05 19:26 - 00000000 ____D C:\Program Files\AVAST Software
2017-03-05 18:38 - 2017-03-20 13:52 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
2017-03-01 23:15 - 2017-03-01 23:15 - 00000000 ____D C:\Users\s\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer
2017-03-01 23:01 - 2017-03-20 13:52 - 00000000 ____D C:\Program Files\GTA San Andreas
2017-03-01 18:06 - 2017-03-04 16:01 - 00000000 ____D C:\Users\s\AppData\Roaming\IObit
2017-03-01 18:06 - 2017-03-01 18:06 - 00000000 ____D C:\Windows\IObit
2017-02-26 18:25 - 2017-03-23 13:20 - 00000000 ____D C:\Users\s\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Games
2017-02-26 18:25 - 2017-03-20 13:52 - 00000000 ____D C:\Users\s\Documents\GTA San Andreas User Files
2017-02-24 01:07 - 2017-02-24 01:07 - 00000000 ____D C:\Windows\system32\{F18D63B5-F945-4736-825F-70129CBFE9C3}
2017-02-23 14:41 - 2017-02-23 14:41 - 00000000 ____D C:\ProgramData\Apple
2017-02-22 13:21 - 2017-02-22 13:21 - 00000000 ____D C:\Users\s\Documents\My Cheat Tables
2017-02-22 13:08 - 2017-03-13 06:58 - 00000000 ____D C:\Users\s\AppData\Roaming\The Creative Assembly

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2017-03-24 06:00 - 2014-06-22 22:27 - 00000000 ____D C:\Program Files\Opera
2017-03-24 06:00 - 2010-11-21 02:16 - 00681234 _____ C:\Windows\system32\perfh005.dat
2017-03-24 06:00 - 2010-11-21 02:16 - 00148068 _____ C:\Windows\system32\perfc005.dat
2017-03-24 06:00 - 2010-11-20 22:01 - 01622020 _____ C:\Windows\system32\PerfStringBackup.INI
2017-03-24 06:00 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\inf
2017-03-24 05:59 - 2016-12-29 19:55 - 00002163 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk
2017-03-24 05:59 - 2016-09-08 19:30 - 00002429 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Acrobat Reader DC.lnk
2017-03-24 05:59 - 2016-07-31 21:00 - 00000946 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sniper Elite 3.lnk
2017-03-24 05:59 - 2015-12-01 23:36 - 00001836 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
2017-03-24 05:59 - 2014-10-25 23:29 - 00000998 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sid Meiers Civilization Beyond Earth.lnk
2017-03-24 05:59 - 2014-05-02 22:38 - 00000880 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Amazing Spider-Man 2.lnk
2017-03-24 05:59 - 2014-03-29 14:15 - 00000970 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Betrayer.lnk
2017-03-24 05:59 - 2014-03-01 08:32 - 00001026 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NARUTO SHIPPUDEN Ultimate Ninja STORM 3 Full Burst.lnk
2017-03-24 05:59 - 2014-02-17 20:58 - 00000844 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Call of Duty Ghosts.lnk
2017-03-24 05:59 - 2014-01-12 10:14 - 00001333 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk
2017-03-24 05:59 - 2014-01-12 10:13 - 00001314 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk
2017-03-24 05:59 - 2009-07-14 05:46 - 00001503 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk
2017-03-24 05:59 - 2009-07-14 05:42 - 00001340 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Anytime Upgrade.lnk
2017-03-24 05:59 - 2009-07-14 05:42 - 00001318 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sidebar.lnk
2017-03-24 05:59 - 2009-07-14 05:42 - 00001234 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XPS Viewer.lnk
2017-03-24 05:59 - 2009-07-14 05:42 - 00001198 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Fax and Scan.lnk
2017-03-24 05:58 - 2017-01-03 23:08 - 00001004 _____ C:\Users\s\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2017-03-24 05:58 - 2009-07-14 05:46 - 00001282 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Default Programs.lnk
2017-03-24 05:58 - 2009-07-14 05:37 - 00001266 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Windows Update.lnk
2017-03-24 05:57 - 2015-02-27 02:31 - 00000000 ____D C:\ProgramData\IObit
2017-03-24 05:57 - 2015-01-30 18:38 - 00000270 __RSH C:\ProgramData\ntuser.pol
2017-03-24 05:55 - 2016-05-14 13:06 - 00065536 _____ C:\Windows\system32\Ikeext.etl
2017-03-24 05:55 - 2014-01-12 11:10 - 00000000 ____D C:\ProgramData\NVIDIA
2017-03-24 05:55 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2017-03-24 05:55 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\PolicyDefinitions
2017-03-23 15:07 - 2017-01-13 12:29 - 00000000 ____D C:\Users\s\AppData\Local\1
2017-03-23 15:06 - 2015-09-20 19:09 - 00000000 ____D C:\ProgramData\Viafresh
2017-03-23 13:20 - 2017-02-07 16:39 - 00000000 ____D C:\Users\s\AppData\Local\5
2017-03-23 13:20 - 2017-02-07 14:39 - 00000000 ____D C:\Users\s\AppData\Local\3
2017-03-23 13:20 - 2017-01-26 06:30 - 00000000 ____D C:\Users\s\AppData\Local\Microsoft Windows
2017-03-23 13:20 - 2017-01-20 17:09 - 00000000 ____D C:\ProgramData\ie8
2017-03-23 13:20 - 2014-03-24 23:59 - 00000000 ____D C:\Program Files\saafeweB
2017-03-23 13:20 - 2009-07-14 05:52 - 00000000 ___RD C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games
2017-03-23 11:48 - 2009-07-14 05:34 - 00021680 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2017-03-23 11:48 - 2009-07-14 05:34 - 00021680 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2017-03-23 11:43 - 2015-12-27 23:30 - 00000000 ____D C:\Users\kuba.kuba-PC
2017-03-23 11:40 - 2009-07-14 03:04 - 00000215 _____ C:\Windows\system.ini
2017-03-23 11:37 - 2009-07-14 03:03 - 60555264 _____ C:\Windows\system32\config\software.bak
2017-03-23 11:37 - 2009-07-14 03:03 - 22282240 _____ C:\Windows\system32\config\system.bak
2017-03-23 11:37 - 2009-07-14 03:03 - 01310720 _____ C:\Windows\system32\config\default.bak
2017-03-23 11:37 - 2009-07-14 03:03 - 00262144 _____ C:\Windows\system32\config\security.bak
2017-03-23 11:37 - 2009-07-14 03:03 - 00262144 _____ C:\Windows\system32\config\sam.bak
2017-03-23 11:36 - 2014-05-25 17:39 - 00000000 ____D C:\ProgramData\adobe
2017-03-22 19:09 - 2014-01-12 11:24 - 00000000 ____D C:\Program Files\Google
2017-03-22 19:08 - 2014-01-12 11:10 - 00000000 ____D C:\ProgramData\Oracle
2017-03-22 19:06 - 2014-07-28 21:23 - 00000000 ____D C:\Windows\system32\Adobe
2017-03-22 19:04 - 2014-02-16 09:13 - 00000000 ____D C:\Program Files\Canon
2017-03-22 19:00 - 2017-01-03 22:48 - 00001004 _____ C:\Users\me\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2017-03-22 19:00 - 2015-06-04 18:19 - 00001004 _____ C:\Users\kubaa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk
2017-03-22 18:15 - 2014-01-12 11:13 - 00000000 ____D C:\smaz
2017-03-22 18:15 - 2009-07-14 04:20 - 00000000 ____D C:\Program Files (x86)
2017-03-22 17:49 - 2009-07-14 03:37 - 00000000 ____D C:\Program Files\Common Files\microsoft shared
2017-03-22 17:47 - 2014-01-12 11:01 - 00000000 ___HD C:\Program Files\InstallShield Installation Information
2017-03-22 17:37 - 2016-06-04 17:09 - 00000000 ____D C:\Program Files\Hi-Rez Studios
2017-03-22 17:37 - 2014-03-30 12:22 - 00000000 ____D C:\ProgramData\Hi-Rez Studios
2017-03-22 15:42 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\rescache
2017-03-22 14:12 - 2015-12-10 14:34 - 00802904 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe
2017-03-22 14:12 - 2015-12-10 14:34 - 00144472 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl
2017-03-22 14:12 - 2014-01-12 11:11 - 00000000 ____D C:\Windows\system32\Macromed
2017-03-22 13:18 - 2009-07-14 05:33 - 00571008 _____ C:\Windows\system32\FNTCACHE.DAT
2017-03-22 13:16 - 2015-04-16 02:26 - 00000000 ___SD C:\Windows\system32\CompatTel
2017-03-22 13:16 - 2015-04-16 02:26 - 00000000 ____D C:\Windows\system32\appraiser
2017-03-22 13:16 - 2009-07-14 05:52 - 00000000 ____D C:\Program Files\DVD Maker
2017-03-22 11:47 - 2017-01-03 23:04 - 00000000 ____D C:\Users\s\AppData\Local\NVIDIA
2017-03-21 05:59 - 2015-02-27 02:31 - 00000000 ____D C:\ProgramData\ProductData
2017-03-21 05:58 - 2009-07-14 05:53 - 00032542 _____ C:\Windows\Tasks\SCHEDLGU.TXT
2017-03-21 05:57 - 2014-04-10 21:05 - 00000000 ____D C:\Program Files\Microsoft Silverlight
2017-03-20 19:19 - 2015-02-01 03:24 - 135706696 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe
2017-03-20 19:19 - 2015-02-01 03:24 - 00000000 ____D C:\Windows\system32\MRT
2017-03-20 19:18 - 2014-04-10 21:05 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
2017-03-20 18:54 - 2017-02-20 14:20 - 00000000 ____D C:\AdwCleaner
2017-03-20 17:59 - 2017-02-11 21:16 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Stainless Steel
2017-03-20 17:59 - 2017-01-27 19:18 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Homefront
2017-03-20 17:38 - 2017-01-18 17:13 - 00000000 ____D C:\Users\s\AppData\LocalLow\Mozilla
2017-03-20 13:55 - 2017-01-03 23:04 - 00000000 ____D C:\Users\s
2017-03-20 13:53 - 2017-01-08 20:22 - 00000000 ____D C:\Program Files\Victotria II
2017-03-20 13:53 - 2017-01-07 14:58 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Minecraft
2017-03-20 13:53 - 2017-01-07 14:58 - 00000000 ____D C:\Program Files\Minecraft
2017-03-20 13:53 - 2017-01-03 23:24 - 00000000 ____D C:\Users\s\AppData\Roaming\ProductData
2017-03-20 13:53 - 2017-01-03 23:12 - 00000000 ____D C:\Users\s\AppData\Roaming\uTorrent
2017-03-20 13:53 - 2017-01-03 22:48 - 00000000 ____D C:\Users\me
2017-03-20 13:53 - 2016-12-08 18:34 - 00000000 ____D C:\Program Files\TaleWorlds Entertainment
2017-03-20 13:53 - 2016-11-03 17:50 - 00000000 ____D C:\Program Files\Paradox Interactive
2017-03-20 13:53 - 2016-08-04 07:34 - 00000000 ____D C:\Program Files\SteveHood
2017-03-20 13:53 - 2016-03-27 12:31 - 00000000 ____D C:\Program Files\Ubisoft
2017-03-20 13:53 - 2016-02-11 20:44 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Tanks
2017-03-20 13:53 - 2015-12-30 13:27 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\San Andreas Multiplayer
2017-03-20 13:53 - 2015-08-01 19:57 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\XCOM Enemy Within
2017-03-20 13:53 - 2015-07-07 22:16 - 00000000 ____D C:\Program Files\PhotoFiltre 7
2017-03-20 13:53 - 2015-06-04 18:19 - 00000000 ____D C:\Users\kubaa
2017-03-20 13:53 - 2015-04-03 15:35 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Hearthstone
2017-03-20 13:53 - 2015-02-09 20:26 - 00000000 ____D C:\Program Files\TeamSpeak 3 Client
2017-03-20 13:53 - 2015-02-02 14:39 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Call of Duty 4 - Modern Warfare
2017-03-20 13:53 - 2014-09-17 18:55 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Warcraft
2017-03-20 13:53 - 2014-09-17 18:53 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Battle.net
2017-03-20 13:53 - 2014-09-12 18:13 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fable III
2017-03-20 13:53 - 2014-06-30 17:23 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\7554
2017-03-20 13:53 - 2014-01-24 23:41 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Repacky od tomi2k9
2017-03-20 13:53 - 2014-01-12 13:24 - 00000000 ____D C:\ProgramData\DAEMON Tools Pro
2017-03-20 13:53 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system32\NDF
2017-03-20 13:52 - 2014-02-13 21:08 - 00000000 ____D C:\Program Files\Common Files\Steam
2017-03-20 13:52 - 2014-01-12 11:01 - 00000000 ____D C:\Program Files\IDT
2017-03-20 13:52 - 2010-11-21 02:25 - 00000000 ___RD C:\Users\Public\Recorded TV
2017-03-20 13:52 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\registration
2017-03-20 13:45 - 2017-01-03 23:09 - 00000000 ____D C:\Users\s\AppData\Local\Google
2017-03-20 13:45 - 2014-01-12 11:17 - 00000000 ____D C:\ProgramData\AVAST Software
2017-03-20 13:44 - 2015-02-27 02:31 - 00000000 ____D C:\Program Files\IObit
2017-03-20 13:13 - 2017-01-03 23:08 - 00000000 ____D C:\Users\s\AppData\Roaming\DAEMON Tools Pro
2017-03-06 19:07 - 2017-01-03 23:08 - 00000000 ____D C:\Users\s\AppData\Roaming\Adobe
2017-03-05 19:25 - 2013-08-19 18:18 - 00000000 ____D C:\Temp
2017-03-05 18:14 - 2017-01-03 23:08 - 00000000 ____D C:\Users\s\AppData\Roaming\Seznam.cz
2017-03-05 18:13 - 2015-05-20 16:02 - 00000000 ____D C:\Program Files\Seznam.cz
2017-02-22 13:17 - 2015-12-30 10:00 - 00000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.4

==================== Files in the root of some directories =======

2017-03-22 18:58 - 2017-03-22 18:58 - 0000000 _____ () C:\Program Files\metadata
2017-03-22 18:58 - 2017-03-22 18:58 - 0000040 _____ () C:\Program Files\settings.dat

==================== Bamital & volsnap ======================

(There is no automatic fix for files that do not pass verification.)

C:\Windows\explorer.exe => File is digitally signed
C:\Windows\system32\winlogon.exe => File is digitally signed
C:\Windows\system32\wininit.exe => File is digitally signed
C:\Windows\system32\svchost.exe => File is digitally signed
C:\Windows\system32\services.exe => File is digitally signed
C:\Windows\system32\User32.dll => File is digitally signed
C:\Windows\system32\userinit.exe => File is digitally signed
C:\Windows\system32\rpcss.dll => File is digitally signed
C:\Windows\system32\dnsapi.dll => File is digitally signed
C:\Windows\system32\Drivers\volsnap.sys => File is digitally signed

LastRegBack: 2017-03-14 01:02

==================== End of FRST.txt ============================

Re: POmaly beh pc

Napsal: 24 bře 2017 10:24
od altrok
  • Do Poznamkoveho bloku (Start -> spustit -> notepad) zkopirujte obsah bileho pole
  • ulozte na plochu jako fixlist (Typ souboru: Textovy dokument)
  • znovu spustte FRST a kliknete na Fix
  • po restartu bude na plose ulozen fixlog, jehoz obsah vlozte do pristi odpovedi

    Kód: Vybrat vše

    Start
CreateRestorePoint:
CloseProcesses:
Task: {07F007D7-44B5-4EE9-93DF-AB707F8AD8F9} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe 
Task: {44CA2046-3960-4751-B93B-6158A8BF0906} - System32\Tasks\Uninstaller_SkipUac_kuba => C:\Program Files\IObit\IObit Uninstaller\IObitUninstaler.exe 
Task: {A3700F35-4D33-4E36-B8E9-1F50786A7BA3} - System32\Tasks\Bitdefender Update Product Data_A17FD818A96743FAB28AC221BEB4B2C8 => C:\Program Files\Bitdefender\Bitdefender 2015\bdproductdata.exe 
Task: {E0723D5F-2D98-42C2-BB95-01284CB5C9E0} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2017-01-28] (AVAST Software)
FirewallRules: [{949309F8-0EE0-46B6-AD0B-087963D4F824}] => (Allow) C:\Program Files\MIO\loader\st31000524as_9vpgb79g.exe
FirewallRules: [{B0818C44-5A4C-4D2A-9C83-9C072665A9B0}] => (Allow) C:\Program Files\MIO\loader\st31000524as_9vpgb79g.exe
FirewallRules: [{8C39AA90-3E4C-4949-B7CB-07D42E5DF005}] => (Allow) C:\Program Files\Birdjob\Application\chrome.exe
FirewallRules: [{FE42F232-9550-42E4-AA63-3B03827CB1F6}] => (Allow) C:\Program Files\MIO\loader\st31000524as_9vpgb79g.exe
FirewallRules: [{FC041C6F-FA9B-4009-A6DA-A140DDF2A918}] => (Allow) C:\Program Files\MIO\loader\st31000524as_9vpgb79g.exe
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-1732726701-269562743-775657971-1012\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
SearchScopes: HKLM -> DefaultScope value is missing
BHO: No Name -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> No File
Toolbar: HKLM - No Name - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - No File
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - No File
CHR Profile: C:\Users\s\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2017-03-23] <==== ATTENTION
S3 BRSptSvc; "C:\ProgramData\BitRaider\BRSptSvc.exe" [X]
S3 BRDriver; \??\C:\ProgramData\BitRaider\BRDriver.sys [X]
S3 BRDriver_1_3_3_E02B25FC; \??\C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver.sys [X]
S3 catchme; \??\C:\Users\s\AppData\Local\Temp\catchme.sys [X] <==== ATTENTION
Folder: C:\Windows\system32\{F18D63B5-F945-4736-825F-70129CBFE9C3}
2017-03-23 15:07 - 2017-01-13 12:29 - 00000000 ____D C:\Users\s\AppData\Local\1
2017-03-23 15:06 - 2015-09-20 19:09 - 00000000 ____D C:\ProgramData\Viafresh
2017-03-23 13:20 - 2017-02-07 16:39 - 00000000 ____D C:\Users\s\AppData\Local\5
Folder: C:\Users\s\AppData\Local\3
2017-03-23 13:20 - 2017-02-07 14:39 - 00000000 ____D C:\Users\s\AppData\Local\3
2017-03-23 13:20 - 2017-01-26 06:30 - 00000000 ____D C:\Users\s\AppData\Local\Microsoft Windows
Folder: C:\ProgramData\ie8
2017-03-23 13:20 - 2017-01-20 17:09 - 00000000 ____D C:\ProgramData\ie8
Folder: C:\Program Files\saafeweB
2017-03-23 13:20 - 2014-03-24 23:59 - 00000000 ____D C:\Program Files\saafeweB
Folder: C:\ProgramData\adobe
2017-03-23 11:36 - 2014-05-25 17:39 - 00000000 ____D C:\ProgramData\adobe
Folder: C:\Windows\system32\Adobe
2017-03-22 18:58 - 2017-03-22 18:58 - 0000000 _____ () C:\Program Files\metadata
2017-03-22 18:58 - 2017-03-22 18:58 - 0000040 _____ () C:\Program Files\settings.dat
DeleteValue: HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost|Hecerry
DeleteValue: HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost|bilibiliGroupEx
DeleteValue: HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost|apple_config
DeleteValue: HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost|WinSAPSvc
C:\Program Files (x86)\BrowseToSave
C:\Program Files (x86)\Conduit
C:\Program Files (x86)\MagniPic
C:\Program Files (x86)\Minibar
C:\Program Files (x86)\Movies Toolbar
C:\Program Files (x86)\Optimizer Pro
C:\Program Files (x86)\RelevantKnowledge
C:\Program Files (x86)\SearchNewTab
C:\Program Files (x86)\Sk-Enhancer
C:\Program Files (x86)\SoftwareUpdater
C:\Program Files (x86)\Ss.Helper
C:\Program Files (x86)\ss helper
C:\Program Files (x86)\surrf ande KEep
C:\Program Files (x86)\suurf aNid keep
C:\Program Files (x86)\WebSearch
C:\Program Files (x86)\WxDownload
C:\Program Files (x86)\Yontoo
C:\ProgramData\Microsoft\Phone Tools\CoreCon\12.0\1042\NonSDKAddonLangVer.dll
C:\ProgramData\Viafresh
C:\Users\All Users\Microsoft\Phone Tools\CoreCon\12.0\1042\NonSDKAddonLangVer.dll
C:\Users\All Users\Viafresh
C:\Windows\Installer\5768a97.msi
C:\Windows\Installer\df46d8f.msi
C:\Windows\System32\tasks.dll
C:\Windows\System32\{9571F033-E27D-48CC-917F-4DC705F1B23A}\_ALLOWDEL_zzg\co.tmp
C:\Windows\System32\{F18D63B5-F945-4736-825F-70129CBFE9C3}\_ALLOWDEL_6qm\co.tmp
CMD: dir "C:\PROGRA~1"
CMD: dir "C:\PROGRA~2"
CMD: dir "C:\PROGRA~3"
CMD: dir "%localappdata%"
CMD: dir "%appdata%"
Hosts:
EmptyTemp:
End

Re: POmaly beh pc

Napsal: 24 bře 2017 11:23
od jack68
Fix result of Farbar Recovery Scan Tool (x86) Version: 15-03-2017
Ran by s (24-03-2017 11:17:02) Run:2
Running from C:\Users\s\Desktop
Loaded Profiles: s (Available Profiles: s)
Boot Mode: Normal

==============================================

fixlist content:
*****************
Start
CreateRestorePoint:
CloseProcesses:
Task: {07F007D7-44B5-4EE9-93DF-AB707F8AD8F9} - System32\Tasks\CCleanerSkipUAC => C:\Program Files\CCleaner\CCleaner.exe
Task: {44CA2046-3960-4751-B93B-6158A8BF0906} - System32\Tasks\Uninstaller_SkipUac_kuba => C:\Program Files\IObit\IObit Uninstaller\IObitUninstaler.exe
Task: {A3700F35-4D33-4E36-B8E9-1F50786A7BA3} - System32\Tasks\Bitdefender Update Product Data_A17FD818A96743FAB28AC221BEB4B2C8 => C:\Program Files\Bitdefender\Bitdefender 2015\bdproductdata.exe
Task: {E0723D5F-2D98-42C2-BB95-01284CB5C9E0} - System32\Tasks\AVAST Software\Avast settings backup => C:\Program Files\Common Files\AV\avast! Antivirus\backup.exe [2017-01-28] (AVAST Software)
FirewallRules: [{949309F8-0EE0-46B6-AD0B-087963D4F824}] => (Allow) C:\Program Files\MIO\loader\st31000524as_9vpgb79g.exe
FirewallRules: [{B0818C44-5A4C-4D2A-9C83-9C072665A9B0}] => (Allow) C:\Program Files\MIO\loader\st31000524as_9vpgb79g.exe
FirewallRules: [{8C39AA90-3E4C-4949-B7CB-07D42E5DF005}] => (Allow) C:\Program Files\Birdjob\Application\chrome.exe
FirewallRules: [{FE42F232-9550-42E4-AA63-3B03827CB1F6}] => (Allow) C:\Program Files\MIO\loader\st31000524as_9vpgb79g.exe
FirewallRules: [{FC041C6F-FA9B-4009-A6DA-A140DDF2A918}] => (Allow) C:\Program Files\MIO\loader\st31000524as_9vpgb79g.exe
CHR HKLM\SOFTWARE\Policies\Google: Restriction <======= ATTENTION
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
HKU\S-1-5-21-1732726701-269562743-775657971-1012\SOFTWARE\Policies\Microsoft\Internet Explorer: Restriction <======= ATTENTION
SearchScopes: HKLM -> DefaultScope value is missing
BHO: No Name -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> No File
Toolbar: HKLM - No Name - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - No File
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - No File
CHR Profile: C:\Users\s\AppData\Local\Google\Chrome\User Data\ChromeDefaultData [2017-03-23] <==== ATTENTION
S3 BRSptSvc; "C:\ProgramData\BitRaider\BRSptSvc.exe" [X]
S3 BRDriver; \??\C:\ProgramData\BitRaider\BRDriver.sys [X]
S3 BRDriver_1_3_3_E02B25FC; \??\C:\ProgramData\BitRaider\support\1.3.3\E02B25FC\BRDriver.sys [X]
S3 catchme; \??\C:\Users\s\AppData\Local\Temp\catchme.sys [X] <==== ATTENTION
Folder: C:\Windows\system32\{F18D63B5-F945-4736-825F-70129CBFE9C3}
2017-03-23 15:07 - 2017-01-13 12:29 - 00000000 ____D C:\Users\s\AppData\Local\1
2017-03-23 15:06 - 2015-09-20 19:09 - 00000000 ____D C:\ProgramData\Viafresh
2017-03-23 13:20 - 2017-02-07 16:39 - 00000000 ____D C:\Users\s\AppData\Local\5
Folder: C:\Users\s\AppData\Local\3
2017-03-23 13:20 - 2017-02-07 14:39 - 00000000 ____D C:\Users\s\AppData\Local\3
2017-03-23 13:20 - 2017-01-26 06:30 - 00000000 ____D C:\Users\s\AppData\Local\Microsoft Windows
Folder: C:\ProgramData\ie8
2017-03-23 13:20 - 2017-01-20 17:09 - 00000000 ____D C:\ProgramData\ie8
Folder: C:\Program Files\saafeweB
2017-03-23 13:20 - 2014-03-24 23:59 - 00000000 ____D C:\Program Files\saafeweB
Folder: C:\ProgramData\adobe
2017-03-23 11:36 - 2014-05-25 17:39 - 00000000 ____D C:\ProgramData\adobe
Folder: C:\Windows\system32\Adobe
2017-03-22 18:58 - 2017-03-22 18:58 - 0000000 _____ () C:\Program Files\metadata
2017-03-22 18:58 - 2017-03-22 18:58 - 0000040 _____ () C:\Program Files\settings.dat
DeleteValue: HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost|Hecerry
DeleteValue: HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost|bilibiliGroupEx
DeleteValue: HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost|apple_config
DeleteValue: HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost|WinSAPSvc
C:\Program Files (x86)\BrowseToSave
C:\Program Files (x86)\Conduit
C:\Program Files (x86)\MagniPic
C:\Program Files (x86)\Minibar
C:\Program Files (x86)\Movies Toolbar
C:\Program Files (x86)\Optimizer Pro
C:\Program Files (x86)\RelevantKnowledge
C:\Program Files (x86)\SearchNewTab
C:\Program Files (x86)\Sk-Enhancer
C:\Program Files (x86)\SoftwareUpdater
C:\Program Files (x86)\Ss.Helper
C:\Program Files (x86)\ss helper
C:\Program Files (x86)\surrf ande KEep
C:\Program Files (x86)\suurf aNid keep
C:\Program Files (x86)\WebSearch
C:\Program Files (x86)\WxDownload
C:\Program Files (x86)\Yontoo
C:\ProgramData\Microsoft\Phone Tools\CoreCon\12.0\1042\NonSDKAddonLangVer.dll
C:\ProgramData\Viafresh
C:\Users\All Users\Microsoft\Phone Tools\CoreCon\12.0\1042\NonSDKAddonLangVer.dll
C:\Users\All Users\Viafresh
C:\Windows\Installer\5768a97.msi
C:\Windows\Installer\df46d8f.msi
C:\Windows\System32\tasks.dll
C:\Windows\System32\{9571F033-E27D-48CC-917F-4DC705F1B23A}\_ALLOWDEL_zzg\co.tmp
C:\Windows\System32\{F18D63B5-F945-4736-825F-70129CBFE9C3}\_ALLOWDEL_6qm\co.tmp
CMD: dir "C:\PROGRA~1"
CMD: dir "C:\PROGRA~2"
CMD: dir "C:\PROGRA~3"
CMD: dir "%localappdata%"
CMD: dir "%appdata%"
Hosts:
EmptyTemp:
End
*****************

Restore point was successfully created.
Processes closed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{07F007D7-44B5-4EE9-93DF-AB707F8AD8F9} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{07F007D7-44B5-4EE9-93DF-AB707F8AD8F9} => key removed successfully.
C:\Windows\System32\Tasks\CCleanerSkipUAC => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\CCleanerSkipUAC => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\{44CA2046-3960-4751-B93B-6158A8BF0906} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{44CA2046-3960-4751-B93B-6158A8BF0906} => key removed successfully.
C:\Windows\System32\Tasks\Uninstaller_SkipUac_kuba => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Uninstaller_SkipUac_kuba => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{A3700F35-4D33-4E36-B8E9-1F50786A7BA3} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A3700F35-4D33-4E36-B8E9-1F50786A7BA3} => key removed successfully.
C:\Windows\System32\Tasks\Bitdefender Update Product Data_A17FD818A96743FAB28AC221BEB4B2C8 => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\Bitdefender Update Product Data_A17FD818A96743FAB28AC221BEB4B2C8 => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Boot\{E0723D5F-2D98-42C2-BB95-01284CB5C9E0} => key removed successfully.
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{E0723D5F-2D98-42C2-BB95-01284CB5C9E0} => key removed successfully.
C:\Windows\System32\Tasks\AVAST Software\Avast settings backup => moved successfully
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tree\AVAST Software\Avast settings backup => key removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{949309F8-0EE0-46B6-AD0B-087963D4F824} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{B0818C44-5A4C-4D2A-9C83-9C072665A9B0} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{8C39AA90-3E4C-4949-B7CB-07D42E5DF005} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FE42F232-9550-42E4-AA63-3B03827CB1F6} => value removed successfully.
HKLM\SYSTEM\CurrentControlSet\services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{FC041C6F-FA9B-4009-A6DA-A140DDF2A918} => value removed successfully.
HKLM\SOFTWARE\Policies\Google => key removed successfully.
HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer => key removed successfully.
HKU\S-1-5-21-1732726701-269562743-775657971-1012\SOFTWARE\Policies\Microsoft\Internet Explorer => key removed successfully.
HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value restored successfully
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6} => key removed successfully.
HKCR\CLSID\{9030D464-4C02-4ABF-8ECC-5164760863C6} => key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar\\{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} => value removed successfully.
HKCR\CLSID\{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} => key not found.
HKCR\PROTOCOLS\Handler\skype4com => key not found.
HKCR\CLSID\{FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} => key not found.
C:\Users\s\AppData\Local\Google\Chrome\User Data\ChromeDefaultData => moved successfully
HKLM\System\CurrentControlSet\Services\BRSptSvc => key removed successfully.
BRSptSvc => service removed successfully.
HKLM\System\CurrentControlSet\Services\BRDriver => key removed successfully.
BRDriver => service removed successfully.
HKLM\System\CurrentControlSet\Services\BRDriver_1_3_3_E02B25FC => key removed successfully.
BRDriver_1_3_3_E02B25FC => service removed successfully.
HKLM\System\CurrentControlSet\Services\catchme => key removed successfully.
catchme => service removed successfully.

========================= Folder: C:\Windows\system32\{F18D63B5-F945-4736-825F-70129CBFE9C3} ========================

2017-02-24 01:07 - 2017-03-23 15:07 - 0000000 ____D () C:\Windows\system32\{F18D63B5-F945-4736-825F-70129CBFE9C3}\_ALLOWDEL_6qm

====== End of Folder: ======

C:\Users\s\AppData\Local\1 => moved successfully
C:\ProgramData\Viafresh => moved successfully
C:\Users\s\AppData\Local\5 => moved successfully

========================= Folder: C:\Users\s\AppData\Local\3 ========================

2017-02-07 14:39 - 2017-01-13 16:29 - 0243300 _____ () C:\Users\s\AppData\Local\3\License
2017-02-07 14:39 - 2017-01-13 16:28 - 0096256 _____ () C:\Users\s\AppData\Local\3\RegKey.dll
2017-02-07 14:39 - 2017-02-07 16:07 - 0001282 _____ () C:\Users\s\AppData\Local\3\uvconv

====== End of Folder: ======

C:\Users\s\AppData\Local\3 => moved successfully
C:\Users\s\AppData\Local\Microsoft Windows => moved successfully

========================= Folder: C:\ProgramData\ie8 ========================


====== End of Folder: ======

C:\ProgramData\ie8 => moved successfully

========================= Folder: C:\Program Files\saafeweB ========================

2013-03-24 23:59 - 2013-03-24 23:59 - 0003460 _____ () C:\Program Files\saafeweB\W.dat

====== End of Folder: ======

C:\Program Files\saafeweB => moved successfully

========================= Folder: C:\ProgramData\adobe ========================

2013-11-07 00:59 - 2013-11-07 00:59 - 0599040 _____ () C:\ProgramData\adobe\backtrace.dll
2013-12-14 14:29 - 2014-06-30 08:10 - 0000105 _____ () C:\ProgramData\adobe\Color.vbs
2013-11-07 00:59 - 2013-11-07 00:59 - 0038190 _____ () C:\ProgramData\adobe\libblkmaker_jansson-0.1-0.dll
2013-11-07 00:59 - 2013-11-07 00:59 - 0043854 _____ () C:\ProgramData\adobe\libblkmaker-0.1-0.dll
2013-11-07 00:59 - 2013-11-07 00:59 - 0369664 _____ () C:\ProgramData\adobe\libcurl-4.dll
2008-09-03 20:49 - 2008-09-03 20:49 - 1177600 _____ (GnuWin32 <http://gnuwin32.sourceforge.net>) C:\ProgramData\adobe\libeay32.dll
2008-03-14 22:21 - 2008-03-14 22:21 - 1008128 _____ (GnuWin32 <http://gnuwin32.sourceforge.net>) C:\ProgramData\adobe\libiconv2.dll
2005-05-06 19:52 - 2005-05-06 19:52 - 0103424 _____ (GNU <www.gnu.org>) C:\ProgramData\adobe\libintl3.dll
2013-11-07 00:59 - 2013-11-07 00:59 - 0052736 _____ () C:\ProgramData\adobe\libjansson-4.dll
2013-11-07 00:59 - 2013-11-07 00:59 - 0082944 _____ () C:\ProgramData\adobe\libmicrohttpd-10.dll
2013-11-07 00:59 - 2013-11-07 00:59 - 0132096 _____ () C:\ProgramData\adobe\libplibc-1.dll
2008-09-03 20:49 - 2008-09-03 20:49 - 0232960 _____ (GnuWin32 <http://gnuwin32.sourceforge.net>) C:\ProgramData\adobe\libssl32.dll
2013-11-07 00:59 - 2013-11-07 00:59 - 0167936 _____ (libusbx.org) C:\ProgramData\adobe\libusb-1.0.dll
2013-11-07 00:59 - 2013-11-07 00:59 - 0102912 _____ () C:\ProgramData\adobe\pdcurses.dll
2013-11-07 00:59 - 2013-11-07 00:59 - 0045056 _____ (Open Source Software community project) C:\ProgramData\adobe\pthreadGC2.dll
2013-11-07 00:59 - 2013-11-07 00:59 - 0023825 _____ () C:\ProgramData\adobe\scrypt130511.cl
2014-05-25 17:57 - 2014-05-25 17:57 - 0943045 _____ () C:\ProgramData\adobe\scrypt130511GeForceGT640glg2tc6080w256l4pOpenCL1_1CUDA6_0_1.bin
2013-11-07 00:59 - 2013-11-07 00:59 - 0109568 _____ () C:\ProgramData\adobe\zlib1.dll
2016-09-08 19:32 - 2017-03-23 15:20 - 0000000 ____D () C:\ProgramData\adobe\ARM
2016-09-11 09:03 - 2017-03-23 15:20 - 0000000 ____D () C:\ProgramData\adobe\ARM\{291AA914-A987-4CE9-BD63-AC0A92D435E5}
2016-09-08 19:32 - 2016-09-08 19:37 - 0000000 ____D () C:\ProgramData\adobe\ARM\Reader_15.007.20033
2016-09-11 23:05 - 2016-10-12 22:36 - 0000000 ____D () C:\ProgramData\adobe\ARM\Reader_15.017.20053
2016-10-16 11:00 - 2016-11-04 00:55 - 0000000 ____D () C:\ProgramData\adobe\ARM\Reader_15.020.20039
2016-11-07 13:55 - 2017-01-13 04:20 - 0000000 ____D () C:\ProgramData\adobe\ARM\Reader_15.020.20042
2017-01-09 04:41 - 2017-01-09 04:41 - 25853952 _____ () C:\ProgramData\adobe\ARM\Reader_15.020.20042\AcroRdrDCUpd1502320053_incr.msp
2017-01-10 12:53 - 2017-01-10 12:53 - 0021504 _____ () C:\ProgramData\adobe\ARM\Reader_15.020.20042\ReaderDCManifest.msi
2017-01-16 09:24 - 2017-01-22 16:11 - 0000000 ____D () C:\ProgramData\adobe\ARM\Reader_15.023.20053
2017-01-25 17:58 - 2017-02-22 06:02 - 0000000 ____D () C:\ProgramData\adobe\ARM\Reader_15.023.20056
2017-02-25 08:19 - 2017-03-23 15:20 - 0000000 ____D () C:\ProgramData\adobe\ARM\Reader_15.023.20070
2016-11-10 19:32 - 2017-03-23 15:20 - 0000000 ____D () C:\ProgramData\adobe\ARM\S
2016-09-08 19:29 - 2016-09-08 19:29 - 0000000 ____D () C:\ProgramData\adobe\Setup
2016-09-08 19:29 - 2016-09-08 19:29 - 0000000 ____D () C:\ProgramData\adobe\Setup\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}
2015-03-17 09:34 - 2015-03-17 09:34 - 0000625 _____ () C:\ProgramData\adobe\Setup\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}\ABCPY.INI
2015-03-17 09:39 - 2015-03-17 09:39 - 2798080 _____ () C:\ProgramData\adobe\Setup\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}\AcroRead.msi
2015-03-17 09:35 - 2015-03-17 09:35 - 180307797 _____ () C:\ProgramData\adobe\Setup\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}\Data1.cab
2015-03-17 09:34 - 2015-03-17 09:34 - 0420512 _____ (Adobe Systems Incorporated) C:\ProgramData\adobe\Setup\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}\setup.exe
2015-03-17 09:34 - 2015-03-17 09:34 - 0000282 _____ () C:\ProgramData\adobe\Setup\{AC76BA86-7AD7-1029-7B44-AC0F074E4100}\Setup.ini

====== End of Folder: ======

C:\ProgramData\adobe => moved successfully

========================= Folder: C:\Windows\system32\Adobe ========================

2014-07-28 21:23 - 2017-03-22 19:06 - 0000000 ____D () C:\Windows\system32\Adobe\Shockwave 12

====== End of Folder: ======

C:\Program Files\metadata => moved successfully
C:\Program Files\settings.dat => moved successfully
HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost\\Hecerry => value removed successfully.
HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost\\bilibiliGroupEx => value removed successfully.
HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost\\apple_config => value removed successfully.
HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost\\WinSAPSvc => value removed successfully.
C:\Program Files (x86)\BrowseToSave => moved successfully
C:\Program Files (x86)\Conduit => moved successfully
C:\Program Files (x86)\MagniPic => moved successfully
C:\Program Files (x86)\Minibar => moved successfully
C:\Program Files (x86)\Movies Toolbar => moved successfully
C:\Program Files (x86)\Optimizer Pro => moved successfully
C:\Program Files (x86)\RelevantKnowledge => moved successfully
C:\Program Files (x86)\SearchNewTab => moved successfully
C:\Program Files (x86)\Sk-Enhancer => moved successfully
C:\Program Files (x86)\SoftwareUpdater => moved successfully
C:\Program Files (x86)\Ss.Helper => moved successfully
C:\Program Files (x86)\ss helper => moved successfully
C:\Program Files (x86)\surrf ande KEep => moved successfully
"C:\Program Files (x86)\suurf aNid keep" => not found.
C:\Program Files (x86)\WebSearch => moved successfully
C:\Program Files (x86)\WxDownload => moved successfully
C:\Program Files (x86)\Yontoo => moved successfully
"C:\ProgramData\Microsoft\Phone Tools\CoreCon\12.0\1042\NonSDKAddonLangVer.dll" => not found.
"C:\ProgramData\Viafresh" => not found.
"C:\Users\All Users\Microsoft\Phone Tools\CoreCon\12.0\1042\NonSDKAddonLangVer.dll" => not found.
"C:\Users\All Users\Viafresh" => not found.
"C:\Windows\Installer\5768a97.msi" => not found.
"C:\Windows\Installer\df46d8f.msi" => not found.
"C:\Windows\System32\tasks.dll" => not found.
"C:\Windows\System32\{9571F033-E27D-48CC-917F-4DC705F1B23A}\_ALLOWDEL_zzg\co.tmp" => not found.
"C:\Windows\System32\{F18D63B5-F945-4736-825F-70129CBFE9C3}\_ALLOWDEL_6qm\co.tmp" => not found.

========= dir "C:\PROGRA~1" =========

Svazek v jednotce C je OS.
S‚riov‚ źˇslo svazku je 66FE-6EC7.

Věpis adres ýe C:\PROGRA~1

24.03.2017 11:18 <DIR> .
24.03.2017 11:18 <DIR> ..
08.09.2016 19:30 <DIR> Adobe
05.03.2017 19:26 <DIR> AVAST Software
10.04.2016 20:19 <DIR> AVG
02.02.2017 13:07 <DIR> Bethesda Softworks
22.03.2017 19:04 <DIR> Canon
23.03.2017 13:20 <DIR> Common Files
13.03.2016 14:01 <DIR> DAEMON Tools Pro
25.06.2016 16:22 <DIR> DivX
22.03.2017 13:16 <DIR> DVD Maker
08.02.2017 20:43 <DIR> Europa.Universalis.IV.v1.19.2.Inclu.ALL.DLC
21.08.2016 15:06 <DIR> GameforgeLive
26.12.2016 19:14 <DIR> GMT-MAX.ORG
22.03.2017 19:09 <DIR> Google
20.03.2017 13:52 <DIR> GTA San Andreas
22.03.2017 17:37 <DIR> Hi-Rez Studios
20.03.2017 13:52 <DIR> IDT
12.01.2014 11:07 <DIR> Intel
31.01.2015 23:56 <DIR> Internet Explorer
20.03.2017 13:44 <DIR> IObit
22.03.2017 19:07 <DIR> Java
23.03.2017 11:38 <DIR> Malwarebytes Anti-Malware
25.03.2016 13:54 <DIR> Microsoft
24.04.2014 19:59 <DIR> Microsoft Chart Controls
24.01.2014 23:45 <DIR> Microsoft Games for Windows - LIVE
12.01.2017 14:17 <DIR> Microsoft Office
21.03.2017 05:57 <DIR> Microsoft Silverlight
22.12.2016 00:37 <DIR> Microsoft Studios
12.01.2017 14:17 <DIR> Microsoft Visual Studio
12.01.2017 14:17 <DIR> Microsoft Visual Studio 8
12.01.2017 14:17 <DIR> Microsoft Works
10.11.2015 15:03 <DIR> Microsoft XNA
12.01.2017 14:17 <DIR> Microsoft.NET
20.03.2017 13:53 <DIR> Minecraft
13.03.2017 09:55 <DIR> MK
12.01.2017 14:17 <DIR> MSBuild
27.12.2015 12:45 <DIR> NortonInstaller
27.01.2017 19:23 <DIR> NVIDIA Corporation
18.05.2014 14:38 <DIR> OpenAL
24.03.2017 06:00 <DIR> Opera
05.02.2017 17:01 <DIR> Origin
25.06.2016 16:33 <DIR> paint.net
20.03.2017 13:53 <DIR> Paradox Interactive
20.03.2017 13:53 <DIR> PhotoFiltre 7
31.03.2016 18:29 <DIR> Pluto TV
09.05.2015 22:12 <DIR> Realtek
14.07.2009 05:52 <DIR> Reference Assemblies
22.03.2017 18:58 <DIR> reports
05.03.2017 18:13 <DIR> Seznam.cz
25.06.2016 16:35 <DIR> Skype
20.03.2017 13:53 <DIR> SteveHood
20.03.2017 13:53 <DIR> TaleWorlds Entertainment
20.03.2017 13:53 <DIR> TeamSpeak 3 Client
21.08.2014 18:06 <DIR> thechineseroom
20.03.2017 13:53 <DIR> Ubisoft
20.03.2017 13:53 <DIR> Victotria II
20.06.2016 08:26 <DIR> VideoLAN
25.06.2016 16:31 <DIR> VS Revo Group
01.02.2015 02:20 <DIR> Windows Defender
21.11.2010 02:16 <DIR> Windows Mail
13.10.2016 02:24 <DIR> Windows Media Player
12.01.2014 10:40 <DIR> Windows NT
21.11.2010 02:16 <DIR> Windows Photo Viewer
20.11.2010 22:33 <DIR> Windows Portable Devices
21.11.2010 02:16 <DIR> Windows Sidebar
14.01.2014 01:49 <DIR> WinRAR
Soubor…: 0, Bajt…: 0
Adres ý…: 67, Volněch bajt…: 660˙248˙616˙960

========= End of CMD: =========


========= dir "C:\PROGRA~2" =========

Svazek v jednotce C je OS.
S‚riov‚ źˇslo svazku je 66FE-6EC7.

Věpis adres ýe C:\PROGRA~2

24.03.2017 11:18 <DIR> .
24.03.2017 11:18 <DIR> ..
18.08.2013 09:56 <DIR> Adobe
27.01.2013 08:30 <DIR> Aero Enabler
08.01.2013 15:13 <DIR> AMD
20.03.2017 13:52 <DIR> CoD RconTool
11.10.2013 17:28 <DIR> Common Files
17.06.2013 18:12 <DIR> Creative
20.03.2017 13:52 <DIR> Cyberlink
24.09.2014 14:19 <DIR> DAEMON Tools Pro
13.08.2013 18:47 <DIR> directx
20.01.2013 15:38 <DIR> Dxtory Software
13.11.2013 19:36 <DIR> EZDownloader
29.12.2012 19:07 <DIR> FilesFrog Update Checker
25.08.2013 12:26 <DIR> Firefly Studios
02.10.2013 14:46 <DIR> Free Media Player
30.12.2012 19:10 <DIR> FreeTime
23.09.2013 19:03 <DIR> GameforgeLive
15.02.2013 21:38 <DIR> Game_Maker8
24.01.2013 17:10 <DIR> GOG.com
16.12.2013 05:45 <DIR> Google
20.03.2017 13:52 <DIR> GTA San Andreas
22.11.2012 16:11 <DIR> Hewlett-Packard
17.04.2013 20:52 <DIR> Hi-Rez Studios
22.11.2012 16:10 <DIR> HP Games
07.09.2012 09:19 <DIR> Intel
29.12.2012 19:23 <DIR> Intelore
13.12.2013 22:11 <DIR> Internet Explorer
20.03.2017 13:52 <DIR> Java
07.12.2013 13:21 <DIR> LogMeIn Hamachi
26.12.2012 22:34 <DIR> MegaDev
26.03.2013 14:23 <DIR> Microsoft
05.11.2013 14:28 <DIR> Microsoft Application Virtualization Client
06.04.2013 10:47 <DIR> Microsoft Chart Controls
12.04.2013 19:27 <DIR> Microsoft Games for Windows - LIVE
06.11.2013 02:45 <DIR> Microsoft Silverlight
03.04.2013 22:18 <DIR> Microsoft WSE
11.02.2011 21:25 <DIR> Microsoft.NET
02.10.2013 14:39 <DIR> MKV Player
11.03.2013 20:08 <DIR> Movie Maker 2.6
20.03.2017 13:52 <DIR> Mozilla Firefox
24.12.2012 22:35 <DIR> Mozilla Maintenance Service
27.12.2015 17:29 <DIR> Mp3Tube Toolbar
14.07.2009 06:32 <DIR> MSBuild
14.05.2013 12:58 <DIR> MSXML 4.0
15.12.2013 16:48 <DIR> NVIDIA Corporation
22.11.2012 16:01 <DIR> Online Services
02.11.2013 13:15 <DIR> OpenAL
03.01.2014 16:44 <DIR> Origin
26.01.2013 22:23 <DIR> Pando Networks
25.12.2013 14:11 <DIR> PasswordBox
10.01.2013 22:51 <DIR> PhotoFiltre 7
15.02.2013 16:06 <DIR> QuickTime
04.01.2013 19:46 <DIR> Red Sky
14.07.2009 06:32 <DIR> Reference Assemblies
29.12.2012 19:07 <DIR> Seznam.cz
19.08.2013 18:18 <DIR> Shmehao.com
20.03.2017 13:52 <DIR> Skype
11.03.2013 20:34 <DIR> Sony
11.10.2013 17:27 <DIR> Steinberg
23.03.2017 15:06 <DIR> suurf aNid keep
07.09.2012 09:30 <DIR> SymSilent
24.03.2013 17:18 <DIR> SystemRequirementsLab
20.03.2017 13:52 <DIR> Tor
04.01.2013 21:56 <DIR> TuneUp Utilities 2013
20.03.2017 13:52 <DIR> Ubisoft
24.12.2012 21:19 <DIR> uTorrent
23.03.2017 15:06 <DIR> uTorrentControl_v2
07.03.2013 19:36 <DIR> VS Revo Group
25.06.2016 16:15 <DIR> Wanadoo Edition
11.07.2013 02:27 <DIR> Windows Defender
18.12.2012 14:06 <DIR> Windows Mail
13.12.2013 22:11 <DIR> Windows Media Player
14.07.2009 06:32 <DIR> Windows NT
18.12.2012 14:06 <DIR> Windows Photo Viewer
21.11.2010 04:31 <DIR> Windows Portable Devices
18.12.2012 14:06 <DIR> Windows Sidebar
24.12.2012 18:30 <DIR> WinRAR
29.12.2012 19:31 <DIR> WinRAR Password Cracker
20.03.2017 13:52 <DIR> wxDownload Fast
07.03.2013 19:35 <DIR> Your Uninstaller! 7
21.09.2015 19:04 <DIR> YoutubeAdblocker
31.01.2013 14:25 <DIR> Zemi Interactive
28.09.2013 15:01 <DIR> Zen Studios
23.03.2017 15:06 <DIR> ZoomEx
26.08.2013 08:31 <DIR> Zrychleni Pocitace
Soubor…: 0, Bajt…: 0
Adres ý…: 86, Volněch bajt…: 660˙248˙612˙864

========= End of CMD: =========


========= dir "C:\PROGRA~3" =========

Svazek v jednotce C je OS.
S‚riov‚ źˇslo svazku je 66FE-6EC7.

Věpis adres ýe C:\PROGRA~3

24.03.2017 11:18 <DIR> .
24.03.2017 11:18 <DIR> ..
13.07.2015 16:44 <DIR> .mono
22.12.2016 01:17 <DIR> Age of Empires 3
08.07.2014 15:28 <DIR> ALI213
23.02.2017 14:41 <DIR> Apple
20.03.2017 13:45 <DIR> AVAST Software
10.04.2016 20:19 <DIR> Avg
03.03.2016 13:57 <DIR> Battle.net
27.12.2015 12:59 <DIR> BDLogging
18.03.2014 21:36 <DIR> Blizzard Entertainment
02.08.2014 18:20 <DIR> CanonIJ
16.02.2014 09:16 <DIR> CanonIJMSetup
16.02.2014 09:16 <DIR> CanonIJWSpt
20.03.2017 13:53 <DIR> DAEMON Tools Pro
25.06.2016 16:22 <DIR> DivX
15.01.2014 18:01 <DIR> EA Core
27.06.2016 14:00 <DIR> Elder Scrolls Online
18.09.2014 20:45 <DIR> Electronic Arts
15.10.2014 15:31 <DIR> Firefly Studios
29.12.2015 11:48 <DIR> GFACE
25.08.2014 22:20 <DIR> Glyph
22.03.2017 17:37 <DIR> Hi-Rez Studios
06.06.2014 18:51 <DIR> Hunter
30.12.2015 09:17 <DIR> InstallMate
12.01.2014 11:07 <DIR> Intel
24.03.2017 11:14 <DIR> IObit
20.09.2014 23:30 <DIR> Iron Sky
23.03.2017 06:13 <DIR> Malwarebytes
28.01.2014 08:12 <DIR> McAfee
22.03.2017 13:01 <DIR> Microsoft Help
17.01.2016 20:07 <DIR> Microsoft Toolkit
03.01.2016 10:51 <DIR> MTA San Andreas All
27.12.2015 12:44 <DIR> Norton
28.07.2014 23:52 <DIR> NortonInstaller
24.03.2017 11:13 <DIR> NVIDIA
12.01.2014 11:46 <DIR> NVIDIA Corporation
22.03.2017 19:08 <DIR> Oracle
17.02.2017 19:50 <DIR> Orbit
05.02.2017 17:01 <DIR> Origin
15.04.2015 13:34 <DIR> Package Cache
25.06.2014 14:49 <DIR> PlayFirst
09.05.2014 16:44 <DIR> PMB Files
21.03.2017 05:59 <DIR> ProductData
18.01.2014 19:36 <DIR> RELOADED
15.05.2016 19:23 <DIR> REVOLT
25.03.2015 23:15 <DIR> Riot Games
13.04.2016 06:30 <DIR> saafeweB
04.12.2015 00:58 <DIR> SkidRow
25.06.2016 16:35 <DIR> Skype
18.01.2014 01:06 <DIR> Solidshield
26.08.2015 08:05 <DIR> SonicFocus
15.01.2017 13:48 <DIR> Steam
12.01.2014 11:10 <DIR> Sun
20.03.2017 13:19 <DIR> SWCUTemp
20.01.2017 17:11 <DIR> ttff
14.01.2017 20:29 <DIR> Ubisoft
16.02.2014 09:34 <DIR> VS Revo Group
19.01.2014 11:32 <DIR> WarThunder
27.02.2015 02:33 <DIR> {BAF091CA-86C4-4627-ADA1-897E2621C1B0}
Soubor…: 0, Bajt…: 0
Adres ý…: 60, Volněch bajt…: 660˙248˙612˙864

========= End of CMD: =========


========= dir "%localappdata%" =========

Svazek v jednotce C je OS.
S‚riov‚ źˇslo svazku je 66FE-6EC7.

Věpis adres ýe C:\Users\s\AppData\Local

24.03.2017 11:18 <DIR> .
24.03.2017 11:18 <DIR> ..
13.01.2017 13:50 <DIR> 0
08.02.2017 13:41 <DIR> 2
08.02.2017 13:41 <DIR> 4
05.02.2017 15:51 <DIR> Adobe
22.03.2017 19:08 <DIR> Apps
13.01.2017 21:04 <DIR> CEF
13.01.2017 21:04 <DIR> Chromium
22.03.2017 19:09 <DIR> Deployment
19.03.2017 20:58 <DIR> Diagnostics
23.03.2017 13:21 <DIR> ESET
12.01.2017 19:13 166˙968 GDIPFONTCACHEV1.DAT
23.03.2017 11:23 <DIR> GHISLER
20.03.2017 13:45 <DIR> Google
13.01.2017 23:20 <DIR> gslauncher
13.01.2017 23:19 <DIR> gslaunchershell
13.01.2017 22:41 <DIR> HirezLauncherUI
01.02.2017 14:52 <DIR> Macromedia
20.03.2017 13:45 <DIR> Microsoft
01.02.2015 03:05 <DIR> Microsoft Help
22.03.2017 11:47 <DIR> NVIDIA
03.01.2017 23:05 <DIR> NVIDIA Corporation
04.01.2017 12:49 <DIR> Opera Software
03.01.2017 23:43 <DIR> Programs
22.01.2017 18:30 <DIR> PunkBuster
29.01.2017 15:56 <DIR> Rockstar Games
27.01.2017 16:07 <DIR> Setup Integrity Check
13.01.2017 21:08 <DIR> Steam
14.01.2017 20:29 <DIR> storage
24.03.2017 11:17 <DIR> Temp
02.02.2017 13:12 <DIR> VirtualStore
Soubor…: 1, Bajt…: 166˙968
Adres ý…: 31, Volněch bajt…: 660˙248˙608˙768

========= End of CMD: =========


========= dir "%appdata%" =========

Svazek v jednotce C je OS.
S‚riov‚ źˇslo svazku je 66FE-6EC7.

Věpis adres ýe C:\Users\s\AppData\Roaming

23.03.2017 13:20 <DIR> .
23.03.2017 13:20 <DIR> ..
13.01.2017 20:35 <DIR> .minecraft
13.01.2017 23:24 <DIR> .mono
06.03.2017 19:07 <DIR> Adobe
05.03.2017 19:25 <DIR> AVAST Software
03.01.2017 23:45 <DIR> Battle.net
20.03.2017 13:13 <DIR> DAEMON Tools Pro
23.03.2017 11:23 <DIR> GHISLER
25.01.2017 07:13 <DIR> How to Survive - Storm Warning Edition
03.01.2017 23:08 <DIR> Identities
04.03.2017 16:01 <DIR> IObit
07.01.2017 15:01 <DIR> java
19.02.2017 22:57 <DIR> Kalypso Media
13.01.2017 22:53 <DIR> Macromedia
21.11.2010 02:25 <DIR> Media Center Programs
13.03.2017 11:39 <DIR> Mount&Blade Warband
18.01.2017 17:13 <DIR> Mozilla
27.01.2017 22:17 <DIR> NVIDIA
04.01.2017 12:49 <DIR> Opera Software
20.03.2017 13:53 <DIR> ProductData
01.03.2017 18:01 <DIR> Profiles
05.03.2017 18:14 <DIR> Seznam.cz
20.03.2017 13:52 <DIR> SmartSteamEmu
08.02.2017 20:36 <DIR> Steam
22.03.2017 19:07 <DIR> Sun
13.03.2017 06:58 <DIR> The Creative Assembly
19.02.2017 22:58 <DIR> Tropico 5
20.03.2017 13:53 <DIR> uTorrent
20.03.2017 13:52 <DIR> vlc
07.01.2017 15:45 <DIR> WinRAR
Soubor…: 0, Bajt…: 0
Adres ý…: 31, Volněch bajt…: 660˙248˙608˙768

========= End of CMD: =========

C:\Windows\System32\Drivers\etc\hosts => moved successfully
Hosts restored successfully.

=========== EmptyTemp: ==========

BITS transfer queue => 8388608 B
DOMStoree, IE Recovery, AppCache, Feeds Cache, Thumbcache, IconCache => 7471690 B
Java, Flash, Steam htmlcache => 492 B
Windows/system/drivers => 4739023 B
Edge => 0 B
Chrome => 0 B
Firefox => 0 B
Opera => 0 B

Temp, IE cache, history, cookies, recent:
Users => 0 B
Default => 0 B
Public => 0 B
ProgramData => 0 B
systemprofile => 128 B
LocalService => 0 B
NetworkService => 1904 B
kubaa => 0 B
me => 0 B
s => 21622787 B

RecycleBin => 106941 B
EmptyTemp: => 40.4 MB temporary data Removed.

================================


The system needed a reboot.

==== End of Fixlog 11:18:24 ====

Re: POmaly beh pc

Napsal: 24 bře 2017 11:35
od altrok
Odtsrante jeste tyto slozky:
  • C:\Program Files(x86)\suurf aNid keep
    C:\Program Files(x86)\wxDownload Fast
    C:\Program Files(x86)\ZoomEx
    C:\Program Files(x86)\Zrychleni Pocitace
    C:\ProgramData\saafeweB
    C:\Users\s\AppData\Local\0
    C:\Users\s\AppData\Local\2
    C:\Users\s\AppData\Local\4

Pouzijte JRT https://www.bleepingcomputer.com/downlo ... oval-tool/
Log vlozte do pristi odpovedi.

Re: POmaly beh pc

Napsal: 24 bře 2017 12:09
od jack68
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Malwarebytes
Version: 8.1.2 (03.10.2017)
Operating System: Windows 7 Professional x86
Ran by s (Administrator) on p  24.03.2017 at 12:04:59,31
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




File System: 4

Successfully deleted: C:\ai_recyclebin (Folder)
Successfully deleted: C:\ProgramData\productdata (Folder)
Successfully deleted: C:\Users\s\AppData\Roaming\productdata (Folder)
Successfully deleted: C:\Windows\System32\ai_recyclebin (Folder)



Registry: 1

Successfully deleted: HKLM\Software\Microsoft\Internet Explorer\Search\\SearchAssistant (Registry Value)




~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on p  24.03.2017 at 12:08:12,06
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Re: POmaly beh pc

Napsal: 24 bře 2017 12:13
od altrok
Pocitac je cisty, jak uz dlouho ne, takze jeste uklidime.
A pokud nejsou dotazy ci jine problemy, je to ode mne vse.
Všechny časy jsou v UTC+01:00
Stránka 2 z 3

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz